deps: bump the production-dependencies group with 3 updates #102

dependabot · 2025-01-17T17:12:48Z

Bumps the production-dependencies group with 3 updates: actions/checkout, dorny/paths-filter and actions/github-script.

Updates actions/checkout from 2 to 4

Release notes

Sourced from actions/checkout's releases.

v4.0.0

What's Changed

Update default runtime to node20 by @takost in actions/checkout#1436

Support fetching without the --progress option by @simonbaird in actions/checkout#1067

Release 4.0.0 by @takost in actions/checkout#1447

New Contributors

@takost made their first contribution in actions/checkout#1436

@simonbaird made their first contribution in actions/checkout#1067

Full Changelog: actions/checkout@v3...v4.0.0

v3.6.0

What's Changed

Mark test scripts with Bash'isms to be run via Bash by @dscho in actions/checkout#1377

Add option to fetch tags even if fetch-depth > 0 by @RobertWieczoreck in actions/checkout#579

Release 3.6.0 by @luketomlinson in actions/checkout#1437

New Contributors

@RobertWieczoreck made their first contribution in actions/checkout#579

@luketomlinson made their first contribution in actions/checkout#1437

Full Changelog: actions/checkout@v3.5.3...v3.6.0

v3.5.3

What's Changed

Fix: Checkout Issue in self hosted runner due to faulty submodule check-ins by @megamanics in actions/checkout#1196

Fix typos found by codespell by @DimitriPapadopoulos in actions/checkout#1287

Add support for sparse checkouts by @dscho and @dfdez in actions/checkout#1369

Release v3.5.3 by @TingluoHuang in actions/checkout#1376

New Contributors

@megamanics made their first contribution in actions/checkout#1196

@DimitriPapadopoulos made their first contribution in actions/checkout#1287

@dfdez made their first contribution in actions/checkout#1369

Full Changelog: actions/checkout@v3...v3.5.3

v3.5.2

What's Changed

Fix: Use correct API url / endpoint in GHES by @fhammerl in actions/checkout#1289 based on #1286 by @1newsr

Full Changelog: actions/checkout@v3.5.1...v3.5.2

v3.5.1

What's Changed

Improve checkout performance on Windows runners by upgrading @actions/github dependency by @BrettDong in actions/checkout#1246

New Contributors

@BrettDong made their first contribution in actions/checkout#1246

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

Changelog

v4.2.2

url-helper.ts now leverages well-known environment variables by @jww3 in actions/checkout#1941

Expand unit test coverage for isGhes by @jww3 in actions/checkout#1946

v4.2.1

Check out other refs/* by commit if provided, fall back to ref by @orhantoy in actions/checkout#1924

v4.2.0

Add Ref and Commit outputs by @lucacome in actions/checkout#1180

Dependency updates by @dependabot- actions/checkout#1777, actions/checkout#1872

v4.1.7

Bump the minor-npm-dependencies group across 1 directory with 4 updates by @dependabot in actions/checkout#1739

Bump actions/checkout from 3 to 4 by @dependabot in actions/checkout#1697

Check out other refs/* by commit by @orhantoy in actions/checkout#1774

Pin actions/checkout's own workflows to a known, good, stable version. by @jww3 in actions/checkout#1776

v4.1.6

Check platform to set archive extension appropriately by @cory-miller in actions/checkout#1732

v4.1.5

Update NPM dependencies by @cory-miller in actions/checkout#1703

Bump github/codeql-action from 2 to 3 by @dependabot in actions/checkout#1694

Bump actions/setup-node from 1 to 4 by @dependabot in actions/checkout#1696

Bump actions/upload-artifact from 2 to 4 by @dependabot in actions/checkout#1695

README: Suggest user.email to be 41898282+github-actions[bot]@users.noreply.github.com by @cory-miller in actions/checkout#1707

v4.1.4

Disable extensions.worktreeConfig when disabling sparse-checkout by @jww3 in actions/checkout#1692

Add dependabot config by @cory-miller in actions/checkout#1688

Bump the minor-actions-dependencies group with 2 updates by @dependabot in actions/checkout#1693

Bump word-wrap from 1.2.3 to 1.2.5 by @dependabot in actions/checkout#1643

v4.1.3

Check git version before attempting to disable sparse-checkout by @jww3 in actions/checkout#1656

Add SSH user parameter by @cory-miller in actions/checkout#1685

Update actions/checkout version in update-main-version.yml by @jww3 in actions/checkout#1650

v4.1.2

Fix: Disable sparse checkout whenever sparse-checkout option is not present @dscho in actions/checkout#1598

v4.1.1

Correct link to GitHub Docs by @peterbe in actions/checkout#1511

Link to release page from what's new section by @cory-miller in actions/checkout#1514

v4.1.0

Add support for partial checkout filters

... (truncated)

Commits

11bd719 Prepare 4.2.2 Release (#1953)
e3d2460 Expand unit test coverage (#1946)
163217d url-helper.ts now leverages well-known environment variables. (#1941)
eef6144 Prepare 4.2.1 release (#1925)
6b42224 Add workflow file for publishing releases to immutable action package (#1919)
de5a000 Check out other refs/* by commit if provided, fall back to ref (#1924)
d632683 Prepare 4.2.0 release (#1878)
6d193bf Bump braces from 3.0.2 to 3.0.3 (#1777)
db0cee9 Bump the minor-npm-dependencies group across 1 directory with 4 updates (#1872)
b684943 Add Ref and Commit outputs (#1180)
Additional commits viewable in compare view

Updates dorny/paths-filter from 2.11.1 to 3.0.2

Release notes

Sourced from dorny/paths-filter's releases.

v3.0.2

What's Changed

feat: add config parameter for predicate quantifier by @petermetz in dorny/paths-filter#224

New Contributors

@petermetz made their first contribution in dorny/paths-filter#224

Full Changelog: dorny/paths-filter@v3...v3.0.2

v3.0.1

What's Changed

Compare base and ref when token is empty by @frouioui in dorny/paths-filter#133

New Contributors

@frouioui made their first contribution in dorny/paths-filter#133

Full Changelog: dorny/paths-filter@v3...v3.0.1

v3.0.0

What's Changed

Update README.md: added real world usage example by @iamtodor in dorny/paths-filter#178

Update Node.js to version 20 by @danielhjacobs in dorny/paths-filter#206

Update to nodejs 20 by @dorny in dorny/paths-filter#210

chore(deps): bump checkout action to v4 and use setup-node to setup node and cache npm deps by @chenrui333 in dorny/paths-filter#211

Update all dependencies by @dorny in dorny/paths-filter#215

New Contributors

@iamtodor made their first contribution in dorny/paths-filter#178

@danielhjacobs made their first contribution in dorny/paths-filter#206

@chenrui333 made their first contribution in dorny/paths-filter#211

Full Changelog: dorny/paths-filter@v2.11.1...v3.0.0

Changelog

Sourced from dorny/paths-filter's changelog.

Changelog

v3.0.2

Add config parameter for predicate quantifier

v3.0.1

Compare base and ref when token is empty

v3.0.0

Update to Node.js 20

Update all dependencies

v2.11.1

Update @actions/core to v1.10.0 - Fixes warning about deprecated set-output

Document need for pull-requests: read permission

Updating to actions/checkout@v3

v2.11.0

Set list-files input parameter as not required

Update Node.js

Fix incorrect handling of Unicode characters in exec()

Use Octokit pagination

Updates real world links

v2.10.2

Fix getLocalRef() returns wrong ref

v2.10.1

Improve robustness of change detection

v2.10.0

Add ref input parameter

Fix change detection in PR when pullRequest.changed_files is incorrect

v2.9.3

Fix change detection when base is a tag

v2.9.2

Fix fetching git history

v2.9.1

Fix fetching git history + fallback to unshallow repo

v2.9.0

Add list-files: csv format

v2.8.0

Add count output variable

Fix log grouping of changes

... (truncated)

Commits

de90cc6 Update dist and CHANGELOG for v3.0.2
cf89abd Merge pull request #224 from petermetz/feat-filter-predicate-quantifier
f90d526 feat: add config parameter for predicate quantifier
ebc4d7e Update CHANGELOG for v3.0.1
45f16f1 Merge pull request #133 from frouioui/main
5da0e4c Merge branch 'master'
1441771 Update README.md
0bc4621 Bump major version to v3
7267a85 Update CHANGELOG for v2.12.0
e36f112 Merge pull request #215 from dorny/update-dependencies
Additional commits viewable in compare view

Updates actions/github-script from 3 to 7

Release notes

Sourced from actions/github-script's releases.

v7.0.0

What's Changed

Add base-url option by @robandpdx in actions/github-script#429

Expose async-function argument type by @viktorlott in actions/github-script#402, see for details https://github.com/actions/github-script#use-scripts-with-jsdoc-support

Update dependencies and use Node 20 by @joshmgross in actions/github-script#425

New Contributors

@navarroaxel made their first contribution in actions/github-script#285

@robandpdx made their first contribution in actions/github-script#429

@viktorlott made their first contribution in actions/github-script#402

Full Changelog: actions/github-script@v6.4.1...v7.0.0

v6.4.1

What's Changed

Add @octokit/plugin-request-log, to produce debug output for requests by @mjpieters in actions/github-script#358

fix input handling by @mjpieters in actions/github-script#357

Remove unused dependencies by @mjpieters in actions/github-script#356

Default debug to current runner debug state by @mjpieters in actions/github-script#363

New Contributors

@mjpieters made their first contribution in actions/github-script#358

Full Changelog: actions/github-script@v6.4.0...v6.4.1

v6.4.0

What's Changed

Bump json5 from 2.1.3 to 2.2.3 by @dependabot in actions/github-script#319

Bump minimatch from 3.0.4 to 3.1.2 by @dependabot in actions/github-script#320

Add node-fetch by @danmichaelo in actions/github-script#321

New Contributors

@jongwooo made their first contribution in actions/github-script#313

@austinvazquez made their first contribution in actions/github-script#306

@danmichaelo made their first contribution in actions/github-script#321

Full Changelog: actions/github-script@v6.3.3...v6.4.0

v6.3.3

What's Changed

Update @actions/glob to 0.3.0 by @nineinchnick in actions/github-script#279

New Contributors

@nineinchnick made their first contribution in actions/github-script#279

Full Changelog: actions/github-script@v6.3.2...v6.3.3

v6.3.2

What's Changed

Update @actions/core to 1.10.0 by @rentziass in actions/github-script#295

... (truncated)

Commits

60a0d83 Merge pull request #440 from actions/joshmgross/v7.0.1
b7fb200 Update version to 7.0.1
12e22ed Merge pull request #439 from actions/joshmgross/avoid-setting-base-url
d319f8f Avoid setting baseUrl to undefined when input is not provided
e69ef54 Merge pull request #425 from actions/joshmgross/node-20
ee0914b Update licenses
d6fc56f Use @types/node for Node 20
384d6cf Fix quotations in tests
8472492 Only validate GraphQL previews
84903f5 Remove node-fetch from type
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the production-dependencies group with 3 updates: [actions/checkout](https://github.com/actions/checkout), [dorny/paths-filter](https://github.com/dorny/paths-filter) and [actions/github-script](https://github.com/actions/github-script). Updates `actions/checkout` from 2 to 4 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v2...v4) Updates `dorny/paths-filter` from 2.11.1 to 3.0.2 - [Release notes](https://github.com/dorny/paths-filter/releases) - [Changelog](https://github.com/dorny/paths-filter/blob/master/CHANGELOG.md) - [Commits](dorny/paths-filter@4512585...de90cc6) Updates `actions/github-script` from 3 to 7 - [Release notes](https://github.com/actions/github-script/releases) - [Commits](actions/github-script@v3...v7) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major dependency-group: production-dependencies - dependency-name: dorny/paths-filter dependency-type: direct:production update-type: version-update:semver-major dependency-group: production-dependencies - dependency-name: actions/github-script dependency-type: direct:production update-type: version-update:semver-major dependency-group: production-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added the dependencies Pull requests that update a dependency file label Jan 17, 2025

dependabot bot requested a review from a team January 17, 2025 17:12

GeekMasher approved these changes Jan 20, 2025

View reviewed changes

GeekMasher merged commit bd01391 into main Jan 20, 2025
14 checks passed

GeekMasher deleted the dependabot/github_actions/main/production-dependencies-6ea1e44ab2 branch January 20, 2025 10:08

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

deps: bump the production-dependencies group with 3 updates #102

deps: bump the production-dependencies group with 3 updates #102

Uh oh!

dependabot bot commented on behalf of github Jan 17, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Uh oh!

deps: bump the production-dependencies group with 3 updates #102

deps: bump the production-dependencies group with 3 updates #102

Uh oh!

Conversation

dependabot bot commented on behalf of github Jan 17, 2025

v4.0.0

What's Changed

New Contributors

v3.6.0

What's Changed

New Contributors

v3.5.3

What's Changed

New Contributors

v3.5.2

What's Changed

v3.5.1

What's Changed

New Contributors

Changelog

v4.2.2

v4.2.1

v4.2.0

v4.1.7

v4.1.6

v4.1.5

v4.1.4

v4.1.3

v4.1.2

v4.1.1

v4.1.0

v3.0.2

What's Changed

New Contributors

v3.0.1

What's Changed

New Contributors

v3.0.0

What's Changed

New Contributors

Changelog

v3.0.2

v3.0.1

v3.0.0

v2.11.1

v2.11.0

v2.10.2

v2.10.1

v2.10.0

v2.9.3

v2.9.2

v2.9.1

v2.9.0

v2.8.0

v7.0.0

What's Changed

New Contributors

v6.4.1

What's Changed

New Contributors

v6.4.0

What's Changed

New Contributors

v6.3.3

What's Changed

New Contributors

v6.3.2

What's Changed

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants