Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the github-actions group with 7 updates #61

Closed

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Apr 17, 2024

Bumps the github-actions group with 7 updates:

Package From To
actions/checkout 4.1.1 4.1.2
actions/download-artifact 4.1.2 4.1.4
tj-actions/changed-files 42.0.2 44.1.0
actions/cache 4.0.0 4.0.2
peaceiris/actions-gh-pages 3.9.3 4.0.0
shivammathur/setup-php 2.29.0 2.30.2
ramsey/composer-install 2.2.0 3.0.0

Updates actions/checkout from 4.1.1 to 4.1.2

Release notes

Sourced from actions/checkout's releases.

v4.1.2

We are investigating the following issue with this release and have rolled-back the v4 tag to point to v4.1.1

What's Changed

New Contributors

Full Changelog: actions/checkout@v4.1.1...v4.1.2

Changelog

Sourced from actions/checkout's changelog.

Changelog

v4.1.2

v4.1.1

v4.1.0

v4.0.0

v3.6.0

v3.5.3

v3.5.2

v3.5.1

v3.5.0

v3.4.0

v3.3.0

v3.2.0

... (truncated)

Commits

Updates actions/download-artifact from 4.1.2 to 4.1.4

Release notes

Sourced from actions/download-artifact's releases.

v4.1.4

What's Changed

Full Changelog: actions/download-artifact@v4...v4.1.4

v4.1.3

What's Changed

New Contributors

Full Changelog: actions/download-artifact@v4...v4.1.3

Commits

Updates tj-actions/changed-files from 42.0.2 to 44.1.0

Release notes

Sourced from tj-actions/changed-files's releases.

v44.1.0

What's Changed

Full Changelog: tj-actions/changed-files@v44.0.1...v44.1.0

v44.0.1

What's Changed

Full Changelog: tj-actions/changed-files@v44...v44.0.1

v44.0.0

🔥🔥 BREAKING CHANGE 🔥🔥

Overview

We've made a significant update to how pull requests (PRs) from forked repositories are processed. This improvement not only streamlines the handling of such PRs but also fixes a previously identified issue.

Before the Change

Previously, when you created a pull request from a forked repository, any files changed in the target branch after the PR creation would erroneously appear as part of the PR's changed files. This made it difficult to distinguish between the actual changes introduced by the PR and subsequent changes made directly to the target branch.

What Has Changed

With this update, a pull request from a fork will now only include the files that were explicitly changed in the fork. This ensures that the list of changed files in a PR accurately reflects the contributions from the fork, without being muddled by unrelated changes to the target branch.

... (truncated)

Changelog

Sourced from tj-actions/changed-files's changelog.

Changelog

44.1.0 - (2024-04-17)

🚀 Features

  • Add option to exclude submodules when detecting changes (#2047) (e052d30) - (Tonye Jack)

➕ Add

  • Added missing changes and modified dist assets. (d477ae5) - (GitHub Action)

⚙️ Miscellaneous Tasks

  • deps: Update peter-evans/create-pull-request action to v6.0.4 (23a4490) - (renovate[bot])
  • deps: Update typescript-eslint monorepo to v7.7.0 (60e2739) - (renovate[bot])
  • deps: Lock file maintenance (0f319d7) - (renovate[bot])
  • deps: Lock file maintenance (5891cbd) - (renovate[bot])
  • deps: Update dependency @​types/micromatch to v4.0.7 (c9eaa5c) - (renovate[bot])
  • deps: Update peter-evans/create-pull-request action to v6.0.3 (fd91508) - (renovate[bot])
  • deps: Update dependency typescript to v5.4.5 (e8a7e82) - (renovate[bot])

⬆️ Upgrades

  • Upgraded to v44.0.1 (#2037)

Co-authored-by: jackton1 [email protected] (159b053) - (tj-actions[bot])

44.0.1 - (2024-04-09)

🐛 Bug Fixes

  • deps: Update dependency @​octokit/rest to v20.1.0 (57d40e6) - (renovate[bot])

➕ Add

  • Added missing changes and modified dist assets. (5f084a5) - (GitHub Action)

⚙️ Miscellaneous Tasks

  • deps: Update dependency @​types/node to v20.12.7 (635f118) - (renovate[bot])
  • deps: Update dependency @​types/node to v20.12.6 (634b615) - (renovate[bot])
  • deps: Update typescript-eslint monorepo to v7.6.0 (77fcf43) - (renovate[bot])
  • deps: Lock file maintenance (ff2cb1b) - (renovate[bot])
  • deps: Update dependency eslint-plugin-jest to v28.2.0 (5d5da31) - (renovate[bot])
  • deps: Update dependency eslint-plugin-jest to v28.1.1 (29bc0d3) - (renovate[bot])
  • deps: Update dependency eslint-plugin-jest to v28 (#2030) (c9f9d57) - (renovate[bot])
  • deps: Update dependency @​types/node to v20.12.5 (a4fba01) - (renovate[bot])

... (truncated)

Commits
  • e052d30 feat: add option to exclude submodules when detecting changes (#2047)
  • 23a4490 chore(deps): update peter-evans/create-pull-request action to v6.0.4
  • 60e2739 chore(deps): update typescript-eslint monorepo to v7.7.0
  • 0f319d7 chore(deps): lock file maintenance
  • d477ae5 Added missing changes and modified dist assets.
  • 5891cbd chore(deps): lock file maintenance
  • c9eaa5c chore(deps): update dependency @​types/micromatch to v4.0.7
  • fd91508 chore(deps): update peter-evans/create-pull-request action to v6.0.3
  • e8a7e82 chore(deps): update dependency typescript to v5.4.5
  • 159b053 Upgraded to v44.0.1 (#2037)
  • Additional commits viewable in compare view

Updates actions/cache from 4.0.0 to 4.0.2

Release notes

Sourced from actions/cache's releases.

v4.0.2

What's Changed

Full Changelog: actions/cache@v4.0.1...v4.0.2

v4.0.1

What's Changed

New Contributors

Full Changelog: actions/cache@v4...v4.0.1

Changelog

Sourced from actions/cache's changelog.

Releases

4.0.2

  • Fixed restore fail-on-cache-miss not working.

4.0.1

  • Updated isGhes check

4.0.0

  • Updated minimum runner version support from node 12 -> node 20

3.3.3

  • Updates @​actions/cache to v3.2.3 to fix accidental mutated path arguments to getCacheVersion actions/toolkit#1378
  • Additional audit fixes of npm package(s)

3.3.2

  • Fixes bug with Azure SDK causing blob downloads to get stuck.

3.3.1

  • Reduced segment size to 128MB and segment timeout to 10 minutes to fail fast in case the cache download is stuck.

3.3.0

  • Added option to lookup cache without downloading it.

3.2.6

  • Fix zstd not being used after zstd version upgrade to 1.5.4 on hosted runners.

3.2.5

  • Added fix to prevent from setting MYSYS environment variable globally.

3.2.4

  • Added option to fail job on cache miss.

3.2.3

  • Support cross os caching on Windows as an opt-in feature.
  • Fix issue with symlink restoration on Windows for cross-os caches.

3.2.2

... (truncated)

Commits

Updates peaceiris/actions-gh-pages from 3.9.3 to 4.0.0

Release notes

Sourced from peaceiris/actions-gh-pages's releases.

actions-github-pages v4.0.0

See CHANGELOG.md for more details.

Changelog

Sourced from peaceiris/actions-gh-pages's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

4.0.0 (2024-04-08)

build

chore

ci

docs

3.9.3 (2023-03-30)

docs

fix

3.9.2 (2023-01-17)

chore

... (truncated)

Commits
  • 4f9cc66 chore(release): 4.0.0
  • 9c75028 chore(release): Add build assets
  • 5049354 build: node 20.11.1
  • 4eb285e chore: bump node16 to node20 (#1067)
  • cdc09a3 chore(deps): update dependency @​types/node to v16.18.77 (#1065)
  • d830378 chore(deps): update dependency @​types/node to v16.18.76 (#1063)
  • 80daa1d chore(deps): update dependency @​types/node to v16.18.75 (#1061)
  • 108285e chore(deps): update dependency ts-jest to v29.1.2 (#1060)
  • 99c95ff chore(deps): update dependency @​types/node to v16.18.74 (#1058)
  • 1f46537 chore(deps): update dependency @​types/node to v16.18.73 (#1057)
  • Additional commits viewable in compare view

Updates shivammathur/setup-php from 2.29.0 to 2.30.2

Release notes

Sourced from shivammathur/setup-php's releases.

2.30.2

Changelog

  • Added support for vld extension (shivammathur/homebrew-extensions#3827).

  • Added support to update brew along with the core tap on macOS to handle breaking changes in core tap formulae.

  • Updated Node.js dependencies.

For the complete list of changes, please refer to the Full Changelog

2.30.1

Changelog

  • Improved updating Homebrew core tap on macOS using a retry logic.

  • Fixed support for phalcon on Windows.

  • Fixed support for OCI extensions for PHP 8.4 on Linux and macOS.

  • Fixed support for sqlsrv and pdo_sqlsrv on PHP 8.0.

  • Fixed type error on Windows in Get-File function.

  • Minified the release file dist/index.js file generated by vercel/ncc.

  • Updated pre-installed PHP versions for GitHub runners in the README.

  • Updated Node.js dependencies.

For the complete list of changes, please refer to the Full Changelog

2.30.0

Changelog

  • Added support to set custom composer timeout (#811)

... (truncated)

Commits
  • 8872c78 Bump version to 2.30.2
  • b203b24 Hotfix: update brew along with core tap
  • 116fe4d Add vld for macOS
  • 73963f5 Uprade existing macOS version
  • f4fb0af Fix phalcon5 support on Windows
  • eb73c01 Fix oci extensions for PHP 8.4
  • 3d8c103 Fix support for sqlsrv and pdo_sqlsrv extensions
  • db8db3c Fix type error in Get-File in win32.ps1
  • 31bfaba Bump Node.js dependencies
  • 21eeae3 Cleanup dependency code on macOS and add retry to git fetch
  • Additional commits viewable in compare view

Updates ramsey/composer-install from 2.2.0 to 3.0.0

Release notes

Sourced from ramsey/composer-install's releases.

3.0.0

Changed

  • Update actions/cache to v4 to avoid deprecation notices.

    This requires a new major version because actions/cache requires Node.js 20, which could cause backwards-compatibility breaks for any projects that require earlier versions of Node.js.

    For more details, see the discussion on #252.

2.3.1

Fixed

  • Removed upgrade to cache action runner v4 to avoid potential backwards-compatibility issues that might arise when using self-hosted runners that use Node.js 16 instead of version 20. For more details, see the discussion here: #252.

To avoid the actions/cache deprecation notices, upgrade to @v3 or @3.0.0.

2.3.0

Added

  • Add new require-lock-file input that forces a build failure if a composer.lock file is not present. (#251)

Fixed

  • Add --working-dir when looking up Composer's cache directory. This fixes "File composer.json could not be found in the current directory" errors when running composer install in sub-directories or other non-standard locations. (#225, #233, #246, #247)
  • Update cache action runner to v4 to avoid deprecation notices. (#252, #253, #254)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the github-actions group with 7 updates:

| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout) | `4.1.1` | `4.1.2` |
| [actions/download-artifact](https://github.com/actions/download-artifact) | `4.1.2` | `4.1.4` |
| [tj-actions/changed-files](https://github.com/tj-actions/changed-files) | `42.0.2` | `44.1.0` |
| [actions/cache](https://github.com/actions/cache) | `4.0.0` | `4.0.2` |
| [peaceiris/actions-gh-pages](https://github.com/peaceiris/actions-gh-pages) | `3.9.3` | `4.0.0` |
| [shivammathur/setup-php](https://github.com/shivammathur/setup-php) | `2.29.0` | `2.30.2` |
| [ramsey/composer-install](https://github.com/ramsey/composer-install) | `2.2.0` | `3.0.0` |


Updates `actions/checkout` from 4.1.1 to 4.1.2
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@b4ffde6...9bb5618)

Updates `actions/download-artifact` from 4.1.2 to 4.1.4
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](actions/download-artifact@v4.1.2...v4.1.4)

Updates `tj-actions/changed-files` from 42.0.2 to 44.1.0
- [Release notes](https://github.com/tj-actions/changed-files/releases)
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md)
- [Commits](tj-actions/changed-files@90a06d6...e052d30)

Updates `actions/cache` from 4.0.0 to 4.0.2
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](actions/cache@13aacd8...0c45773)

Updates `peaceiris/actions-gh-pages` from 3.9.3 to 4.0.0
- [Release notes](https://github.com/peaceiris/actions-gh-pages/releases)
- [Changelog](https://github.com/peaceiris/actions-gh-pages/blob/main/CHANGELOG.md)
- [Commits](peaceiris/actions-gh-pages@373f7f2...4f9cc66)

Updates `shivammathur/setup-php` from 2.29.0 to 2.30.2
- [Release notes](https://github.com/shivammathur/setup-php/releases)
- [Commits](shivammathur/setup-php@6d7209f...8872c78)

Updates `ramsey/composer-install` from 2.2.0 to 3.0.0
- [Release notes](https://github.com/ramsey/composer-install/releases)
- [Commits](ramsey/composer-install@83af392...57532f8)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: tj-actions/changed-files
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: peaceiris/actions-gh-pages
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: shivammathur/setup-php
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: ramsey/composer-install
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <[email protected]>
Copy link
Author

dependabot bot commented on behalf of github Apr 17, 2024

The following labels could not be found: GitHub Actions, [Type] Build Tooling.

Copy link
Author

dependabot bot commented on behalf of github Apr 18, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Apr 18, 2024
@dependabot dependabot bot deleted the dependabot/github_actions/github-actions-e2b72ed8f1 branch April 18, 2024 16:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants