Tags: PSModule/Template-Action
Tags
Bump PSModule/Auto-Release from 1.9.5 to 2.0.2 (#27) Bumps [PSModule/Auto-Release](https://github.com/psmodule/auto-release) from 1.9.5 to 2.0.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/psmodule/auto-release/releases">PSModule/Auto-Release's releases</a>.</em></p> <blockquote> <h2>v2.0.2</h2> <h1>🩹 [Patch]: Standardize project structure and update dependencies (<a href="https://redirect.github.com/psmodule/auto-release/issues/92">#92</a>)</h1> <p>Standardizes the repository structure by renaming the scripts folder to src, simplifies the Release workflow naming, and updates dependencies.</p> <h2>Changes</h2> <h3>Renamed scripts folder to src</h3> <ul> <li>Moved <code>scripts/main.ps1</code> to <code>src/main.ps1</code> for consistency with other PSModule actions</li> <li>Updated the path reference in <code>action.yml</code> to use the new location</li> </ul> <h3>Simplified Release workflow</h3> <ul> <li>Renamed <code>Release-GHRepository.yml</code> to <code>Release.yml</code></li> <li>Updated workflow name from <code>Release-GHRepository</code> to <code>Release</code> for simplicity</li> <li>Updated run-name and job names accordingly</li> <li>Added path filters to only trigger on changes to <code>action.yml</code> and <code>src/**</code></li> </ul> <h3>Updated dependencies</h3> <ul> <li>Bumped <code>PSModule/GitHub-Script</code> from <code>v1.7.9</code> to <code>v1.7.10</code></li> </ul> <h3>Linter configuration cleanup</h3> <ul> <li>Removed unused <code>.jscpd.json</code> configuration file</li> <li>Disabled JSCPD validation in Linter workflow as it's not needed for this repository</li> </ul> <h2>v2.0.1</h2> <h1>🩹 [Patch]: Fix typos in README.md (<a href="https://redirect.github.com/psmodule/auto-release/issues/91">#91</a>)</h1> <p>This PR fixes several typos in the README.md documentation file to improve clarity and professionalism.</p> <h3>Fixed</h3> <ul> <li>Corrected grammar: "prereleases that <strong>was</strong> created" → "prereleases that <strong>were</strong> created"</li> <li>Fixed possessive form: "actions configuration" → "action's configuration"</li> <li>Fixed spelling: "change" → "changed" for proper verb tense</li> <li>Corrected typo: "in <strong>you</strong> repository" → "in <strong>your</strong> repository"</li> </ul> <h2>v2.0.0</h2> <h1>🌟[Major]: Rename action from <code>Auto-Release</code> to <code>Release-GHRepository</code> (<a href="https://redirect.github.com/psmodule/auto-release/issues/90">#90</a>)</h1> <p>Updates all references from the previous repository name <code>Auto-Release</code> to the new name <code>Release-GHRepository</code> following the repository rename.</p> <ul> <li>Fixes <a href="https://redirect.github.com/psmodule/auto-release/issues/89">#89</a></li> </ul> <h2>Changes</h2> <h3>Configuration</h3> <ul> <li><strong>action.yml</strong>: Updated action name from <code>Auto Release (by PSModule)</code> to <code>Release GHRepository (by PSModule)</code> and updated internal step names</li> </ul> <h3>Documentation</h3> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/PSModule/Release-GHRepository/commit/5a5165d66f485d1aad217ef34a190178b214fdcb"><code>5a5165d</code></a> 🩹 [Patch]: Standardize project structure and update dependencies (<a href="https://redirect.github.com/psmodule/auto-release/issues/92">#92</a>)</li> <li><a href="https://github.com/PSModule/Release-GHRepository/commit/88c70461c8f16cc09682005bcf3b7fca4dd8dc1a"><code>88c7046</code></a> 🩹 [Patch]: Fix typos in README.md (<a href="https://redirect.github.com/psmodule/auto-release/issues/91">#91</a>)</li> <li><a href="https://github.com/PSModule/Release-GHRepository/commit/0d11e5f165846c8a5efde164b4b1cb6f71f93392"><code>0d11e5f</code></a> 🌟[Major]: Rename action from <code>Auto-Release</code> to <code>Release-GHRepository</code> (<a href="https://redirect.github.com/psmodule/auto-release/issues/90">#90</a>)</li> <li><a href="https://github.com/PSModule/Release-GHRepository/commit/5f5f02307e5d4e72cc3c8d3db7fe5678af467661"><code>5f5f023</code></a> 🩹[Patch]: Configure Dependabot for daily schedule with 7-day cooldown (<a href="https://redirect.github.com/psmodule/auto-release/issues/88">#88</a>)</li> <li>See full diff in <a href="https://github.com/psmodule/auto-release/compare/eabd533035e2cb9822160f26f2eda584bd012356...5a5165d66f485d1aad217ef34a190178b214fdcb">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Marius Storhaug <marstor@hotmail.com>
Bump PSModule/GitHub-Script from 1.7.8 to 1.7.10 (#26) Bumps [PSModule/GitHub-Script](https://github.com/psmodule/github-script) from 1.7.8 to 1.7.10. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/psmodule/github-script/releases">PSModule/GitHub-Script's releases</a>.</em></p> <blockquote> <h2>v1.7.10</h2> <h1>🩹 [Patch]: Standardize project structure and rename release workflow (<a href="https://redirect.github.com/psmodule/github-script/issues/81">#81</a>)</h1> <p>This PR standardizes the project structure and updates workflows to align with PSModule conventions.</p> <h2>Changed</h2> <ul> <li>Rename <code>Auto-Release.yml</code> workflow to <code>Release.yml</code> for consistency</li> <li>Update release action from <code>PSModule/Auto-Release@v1.9.5</code> to <code>PSModule/Release-GHRepository@v2</code></li> <li>Rename <code>scripts/</code> folder to <code>src/</code> to follow standard project layout</li> <li>Update <code>action.yml</code> to reference scripts from new <code>src/</code> location</li> <li>Add linter workflow configuration</li> </ul> <h2>Removed</h2> <ul> <li>Remove unused <code>.jscpd.json</code> linter configuration file</li> </ul> <h2>Summary</h2> <p>This PR brings the GitHub-Script action in line with PSModule's standardized project structure. The <code>scripts/</code> folder is renamed to <code>src/</code> for consistency across all actions, and the release workflow is updated to use the renamed <code>Release-GHRepository</code> action.</p> <h2>v1.7.9</h2> <h1>🩹[Patch]: Update workflow configurations (<a href="https://redirect.github.com/psmodule/github-script/issues/79">#79</a>)</h1> <p>Updates workflow configurations to use the latest pinned action versions for improved security and reproducibility.</p> <ul> <li>Related to PSModule workflow standardization</li> </ul> <h2>Action pinning</h2> <p>Pinned all GitHub Actions to specific commit SHAs:</p> <ul> <li><code>actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd</code> (v6.0.2) - Updated from v6.0.1</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/PSModule/GitHub-Script/commit/0097f3bbe3f413f3b577b9bcc600727b0ca3201a"><code>0097f3b</code></a> 🩹 [Patch]: Standardize project structure and rename release workflow (<a href="https://redirect.github.com/psmodule/github-script/issues/81">#81</a>)</li> <li><a href="https://github.com/PSModule/GitHub-Script/commit/e827bea46d70eebc668bdd59e4654e0846177da4"><code>e827bea</code></a> 🩹[Patch]: Update workflow configurations (<a href="https://redirect.github.com/psmodule/github-script/issues/79">#79</a>)</li> <li>See full diff in <a href="https://github.com/psmodule/github-script/compare/2010983167dc7a41bcd84cb88e698ec18eccb7ca...0097f3bbe3f413f3b577b9bcc600727b0ca3201a">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump PSModule/Auto-Release from 1.9.5 to 2.0.2 (#27) Bumps [PSModule/Auto-Release](https://github.com/psmodule/auto-release) from 1.9.5 to 2.0.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/psmodule/auto-release/releases">PSModule/Auto-Release's releases</a>.</em></p> <blockquote> <h2>v2.0.2</h2> <h1>🩹 [Patch]: Standardize project structure and update dependencies (<a href="https://redirect.github.com/psmodule/auto-release/issues/92">#92</a>)</h1> <p>Standardizes the repository structure by renaming the scripts folder to src, simplifies the Release workflow naming, and updates dependencies.</p> <h2>Changes</h2> <h3>Renamed scripts folder to src</h3> <ul> <li>Moved <code>scripts/main.ps1</code> to <code>src/main.ps1</code> for consistency with other PSModule actions</li> <li>Updated the path reference in <code>action.yml</code> to use the new location</li> </ul> <h3>Simplified Release workflow</h3> <ul> <li>Renamed <code>Release-GHRepository.yml</code> to <code>Release.yml</code></li> <li>Updated workflow name from <code>Release-GHRepository</code> to <code>Release</code> for simplicity</li> <li>Updated run-name and job names accordingly</li> <li>Added path filters to only trigger on changes to <code>action.yml</code> and <code>src/**</code></li> </ul> <h3>Updated dependencies</h3> <ul> <li>Bumped <code>PSModule/GitHub-Script</code> from <code>v1.7.9</code> to <code>v1.7.10</code></li> </ul> <h3>Linter configuration cleanup</h3> <ul> <li>Removed unused <code>.jscpd.json</code> configuration file</li> <li>Disabled JSCPD validation in Linter workflow as it's not needed for this repository</li> </ul> <h2>v2.0.1</h2> <h1>🩹 [Patch]: Fix typos in README.md (<a href="https://redirect.github.com/psmodule/auto-release/issues/91">#91</a>)</h1> <p>This PR fixes several typos in the README.md documentation file to improve clarity and professionalism.</p> <h3>Fixed</h3> <ul> <li>Corrected grammar: "prereleases that <strong>was</strong> created" → "prereleases that <strong>were</strong> created"</li> <li>Fixed possessive form: "actions configuration" → "action's configuration"</li> <li>Fixed spelling: "change" → "changed" for proper verb tense</li> <li>Corrected typo: "in <strong>you</strong> repository" → "in <strong>your</strong> repository"</li> </ul> <h2>v2.0.0</h2> <h1>🌟[Major]: Rename action from <code>Auto-Release</code> to <code>Release-GHRepository</code> (<a href="https://redirect.github.com/psmodule/auto-release/issues/90">#90</a>)</h1> <p>Updates all references from the previous repository name <code>Auto-Release</code> to the new name <code>Release-GHRepository</code> following the repository rename.</p> <ul> <li>Fixes <a href="https://redirect.github.com/psmodule/auto-release/issues/89">#89</a></li> </ul> <h2>Changes</h2> <h3>Configuration</h3> <ul> <li><strong>action.yml</strong>: Updated action name from <code>Auto Release (by PSModule)</code> to <code>Release GHRepository (by PSModule)</code> and updated internal step names</li> </ul> <h3>Documentation</h3> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/PSModule/Release-GHRepository/commit/5a5165d66f485d1aad217ef34a190178b214fdcb"><code>5a5165d</code></a> 🩹 [Patch]: Standardize project structure and update dependencies (<a href="https://redirect.github.com/psmodule/auto-release/issues/92">#92</a>)</li> <li><a href="https://github.com/PSModule/Release-GHRepository/commit/88c70461c8f16cc09682005bcf3b7fca4dd8dc1a"><code>88c7046</code></a> 🩹 [Patch]: Fix typos in README.md (<a href="https://redirect.github.com/psmodule/auto-release/issues/91">#91</a>)</li> <li><a href="https://github.com/PSModule/Release-GHRepository/commit/0d11e5f165846c8a5efde164b4b1cb6f71f93392"><code>0d11e5f</code></a> 🌟[Major]: Rename action from <code>Auto-Release</code> to <code>Release-GHRepository</code> (<a href="https://redirect.github.com/psmodule/auto-release/issues/90">#90</a>)</li> <li><a href="https://github.com/PSModule/Release-GHRepository/commit/5f5f02307e5d4e72cc3c8d3db7fe5678af467661"><code>5f5f023</code></a> 🩹[Patch]: Configure Dependabot for daily schedule with 7-day cooldown (<a href="https://redirect.github.com/psmodule/auto-release/issues/88">#88</a>)</li> <li>See full diff in <a href="https://github.com/psmodule/auto-release/compare/eabd533035e2cb9822160f26f2eda584bd012356...5a5165d66f485d1aad217ef34a190178b214fdcb">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Marius Storhaug <marstor@hotmail.com>
Bump PSModule/Auto-Release from 1.9.5 to 2.0.2 (#27) Bumps [PSModule/Auto-Release](https://github.com/psmodule/auto-release) from 1.9.5 to 2.0.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/psmodule/auto-release/releases">PSModule/Auto-Release's releases</a>.</em></p> <blockquote> <h2>v2.0.2</h2> <h1>🩹 [Patch]: Standardize project structure and update dependencies (<a href="https://redirect.github.com/psmodule/auto-release/issues/92">#92</a>)</h1> <p>Standardizes the repository structure by renaming the scripts folder to src, simplifies the Release workflow naming, and updates dependencies.</p> <h2>Changes</h2> <h3>Renamed scripts folder to src</h3> <ul> <li>Moved <code>scripts/main.ps1</code> to <code>src/main.ps1</code> for consistency with other PSModule actions</li> <li>Updated the path reference in <code>action.yml</code> to use the new location</li> </ul> <h3>Simplified Release workflow</h3> <ul> <li>Renamed <code>Release-GHRepository.yml</code> to <code>Release.yml</code></li> <li>Updated workflow name from <code>Release-GHRepository</code> to <code>Release</code> for simplicity</li> <li>Updated run-name and job names accordingly</li> <li>Added path filters to only trigger on changes to <code>action.yml</code> and <code>src/**</code></li> </ul> <h3>Updated dependencies</h3> <ul> <li>Bumped <code>PSModule/GitHub-Script</code> from <code>v1.7.9</code> to <code>v1.7.10</code></li> </ul> <h3>Linter configuration cleanup</h3> <ul> <li>Removed unused <code>.jscpd.json</code> configuration file</li> <li>Disabled JSCPD validation in Linter workflow as it's not needed for this repository</li> </ul> <h2>v2.0.1</h2> <h1>🩹 [Patch]: Fix typos in README.md (<a href="https://redirect.github.com/psmodule/auto-release/issues/91">#91</a>)</h1> <p>This PR fixes several typos in the README.md documentation file to improve clarity and professionalism.</p> <h3>Fixed</h3> <ul> <li>Corrected grammar: "prereleases that <strong>was</strong> created" → "prereleases that <strong>were</strong> created"</li> <li>Fixed possessive form: "actions configuration" → "action's configuration"</li> <li>Fixed spelling: "change" → "changed" for proper verb tense</li> <li>Corrected typo: "in <strong>you</strong> repository" → "in <strong>your</strong> repository"</li> </ul> <h2>v2.0.0</h2> <h1>🌟[Major]: Rename action from <code>Auto-Release</code> to <code>Release-GHRepository</code> (<a href="https://redirect.github.com/psmodule/auto-release/issues/90">#90</a>)</h1> <p>Updates all references from the previous repository name <code>Auto-Release</code> to the new name <code>Release-GHRepository</code> following the repository rename.</p> <ul> <li>Fixes <a href="https://redirect.github.com/psmodule/auto-release/issues/89">#89</a></li> </ul> <h2>Changes</h2> <h3>Configuration</h3> <ul> <li><strong>action.yml</strong>: Updated action name from <code>Auto Release (by PSModule)</code> to <code>Release GHRepository (by PSModule)</code> and updated internal step names</li> </ul> <h3>Documentation</h3> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/PSModule/Release-GHRepository/commit/5a5165d66f485d1aad217ef34a190178b214fdcb"><code>5a5165d</code></a> 🩹 [Patch]: Standardize project structure and update dependencies (<a href="https://redirect.github.com/psmodule/auto-release/issues/92">#92</a>)</li> <li><a href="https://github.com/PSModule/Release-GHRepository/commit/88c70461c8f16cc09682005bcf3b7fca4dd8dc1a"><code>88c7046</code></a> 🩹 [Patch]: Fix typos in README.md (<a href="https://redirect.github.com/psmodule/auto-release/issues/91">#91</a>)</li> <li><a href="https://github.com/PSModule/Release-GHRepository/commit/0d11e5f165846c8a5efde164b4b1cb6f71f93392"><code>0d11e5f</code></a> 🌟[Major]: Rename action from <code>Auto-Release</code> to <code>Release-GHRepository</code> (<a href="https://redirect.github.com/psmodule/auto-release/issues/90">#90</a>)</li> <li><a href="https://github.com/PSModule/Release-GHRepository/commit/5f5f02307e5d4e72cc3c8d3db7fe5678af467661"><code>5f5f023</code></a> 🩹[Patch]: Configure Dependabot for daily schedule with 7-day cooldown (<a href="https://redirect.github.com/psmodule/auto-release/issues/88">#88</a>)</li> <li>See full diff in <a href="https://github.com/psmodule/auto-release/compare/eabd533035e2cb9822160f26f2eda584bd012356...5a5165d66f485d1aad217ef34a190178b214fdcb">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Marius Storhaug <marstor@hotmail.com>
Bump actions/checkout from 6.0.1 to 6.0.2 (#25) Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.1 to 6.0.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p> <blockquote> <h2>v6.0.2</h2> <h2>What's Changed</h2> <ul> <li>Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set by <a href="https://github.com/TingluoHuang"><code>@TingluoHuang</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2355">actions/checkout#2355</a></li> <li>Fix tag handling: preserve annotations and explicit fetch-tags by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2356">actions/checkout#2356</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v6.0.1...v6.0.2">https://github.com/actions/checkout/compare/v6.0.1...v6.0.2</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/blob/main/CHANGELOG.md">actions/checkout's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <h2>v6.0.2</h2> <ul> <li>Fix tag handling: preserve annotations and explicit fetch-tags by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2356">actions/checkout#2356</a></li> </ul> <h2>v6.0.1</h2> <ul> <li>Add worktree support for persist-credentials includeIf by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2327">actions/checkout#2327</a></li> </ul> <h2>v6.0.0</h2> <ul> <li>Persist creds to a separate file by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2286">actions/checkout#2286</a></li> <li>Update README to include Node.js 24 support details and requirements by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2248">actions/checkout#2248</a></li> </ul> <h2>v5.0.1</h2> <ul> <li>Port v6 cleanup to v5 by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2301">actions/checkout#2301</a></li> </ul> <h2>v5.0.0</h2> <ul> <li>Update actions checkout to use node 24 by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2226">actions/checkout#2226</a></li> </ul> <h2>v4.3.1</h2> <ul> <li>Port v6 cleanup to v4 by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2305">actions/checkout#2305</a></li> </ul> <h2>v4.3.0</h2> <ul> <li>docs: update README.md by <a href="https://github.com/motss"><code>@motss</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1971">actions/checkout#1971</a></li> <li>Add internal repos for checking out multiple repositories by <a href="https://github.com/mouismail"><code>@mouismail</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1977">actions/checkout#1977</a></li> <li>Documentation update - add recommended permissions to Readme by <a href="https://github.com/benwells"><code>@benwells</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2043">actions/checkout#2043</a></li> <li>Adjust positioning of user email note and permissions heading by <a href="https://github.com/joshmgross"><code>@joshmgross</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2044">actions/checkout#2044</a></li> <li>Update README.md by <a href="https://github.com/nebuk89"><code>@nebuk89</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2194">actions/checkout#2194</a></li> <li>Update CODEOWNERS for actions by <a href="https://github.com/TingluoHuang"><code>@TingluoHuang</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2224">actions/checkout#2224</a></li> <li>Update package dependencies by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2236">actions/checkout#2236</a></li> </ul> <h2>v4.2.2</h2> <ul> <li><code>url-helper.ts</code> now leverages well-known environment variables by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1941">actions/checkout#1941</a></li> <li>Expand unit test coverage for <code>isGhes</code> by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1946">actions/checkout#1946</a></li> </ul> <h2>v4.2.1</h2> <ul> <li>Check out other refs/* by commit if provided, fall back to ref by <a href="https://github.com/orhantoy"><code>@orhantoy</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1924">actions/checkout#1924</a></li> </ul> <h2>v4.2.0</h2> <ul> <li>Add Ref and Commit outputs by <a href="https://github.com/lucacome"><code>@lucacome</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1180">actions/checkout#1180</a></li> <li>Dependency updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a>- <a href="https://redirect.github.com/actions/checkout/pull/1777">actions/checkout#1777</a>, <a href="https://redirect.github.com/actions/checkout/pull/1872">actions/checkout#1872</a></li> </ul> <h2>v4.1.7</h2> <ul> <li>Bump the minor-npm-dependencies group across 1 directory with 4 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1739">actions/checkout#1739</a></li> <li>Bump actions/checkout from 3 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1697">actions/checkout#1697</a></li> <li>Check out other refs/* by commit by <a href="https://github.com/orhantoy"><code>@orhantoy</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1774">actions/checkout#1774</a></li> <li>Pin actions/checkout's own workflows to a known, good, stable version. by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1776">actions/checkout#1776</a></li> </ul> <h2>v4.1.6</h2> <ul> <li>Check platform to set archive extension appropriately by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1732">actions/checkout#1732</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/checkout/commit/de0fac2e4500dabe0009e67214ff5f5447ce83dd"><code>de0fac2</code></a> Fix tag handling: preserve annotations and explicit fetch-tags (<a href="https://redirect.github.com/actions/checkout/issues/2356">#2356</a>)</li> <li><a href="https://github.com/actions/checkout/commit/064fe7f3312418007dea2b49a19844a9ee378f49"><code>064fe7f</code></a> Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...</li> <li>See full diff in <a href="https://github.com/actions/checkout/compare/8e8c483db84b4bee98b60c0593521ed34d9990e8...de0fac2e4500dabe0009e67214ff5f5447ce83dd">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
🩹 [Patch]: Pin GitHub Actions to specific versions for improved secur… …ity (#23) GitHub Actions are now pinned to specific commit SHAs instead of version tags, improving security by preventing supply chain attacks through tag manipulation. Additionally, Dependabot has been configured to run daily with a 7-day cooldown to keep dependencies up-to-date automatically. - Fixes #22 ## GitHub Actions SHA pinning All workflow files now reference actions by their full commit SHA rather than version tags. This ensures workflows always use a verified, immutable version of each action. **Changed actions:** - `actions/checkout@v5` → `actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8` (v6.0.1) - `PSModule/Auto-Release@v1` → `PSModule/Auto-Release@eabd533035e2cb9822160f26f2eda584bd012356` (v1.9.5) - `super-linter/super-linter@latest` → `super-linter/super-linter@d5b0a2ab116623730dd094f15ddc1b6b25bf7b99` (v8.3.2) - `PSModule/GitHub-Script@v1` → `PSModule/GitHub-Script@2010983167dc7a41bcd84cb88e698ec18eccb7ca` (v1.7.8) ## Dependabot configuration Dependabot now checks for updates daily with a 7-day cooldown between updates, replacing the previous weekly schedule. This provides faster awareness of security updates while avoiding excessive noise. ```yaml schedule: interval: daily cooldown: default-days: 7 ``` ## Linter configuration Added configuration to disable validation checks that are not applicable to this repository: - `VALIDATE_BIOME_FORMAT: false` - `VALIDATE_JSCPD: false` --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MariusStorhaug <17722253+MariusStorhaug@users.noreply.github.com>
🩹 [Patch]: Pin GitHub-Script action to specific version (#21) The GitHub-Script action is now pinned to a specific SHA version for improved security and consistency. - Fixes #20 ## Pin GitHub-Script action Updated the action reference from version tag to specific SHA: - `PSModule/GitHub-Script` → `2010983167dc7a41bcd84cb88e698ec18eccb7ca` (v1.7.8) This ensures the action version is locked and cannot be changed without updating the SHA, preventing supply chain attacks.
🩹[Patch]: Update dependabot schedule and pin actions to SHA (#19) Dependabot now checks for updates daily with a 7-day cooldown period, reducing noise while maintaining timely security updates. All GitHub Actions are pinned to specific commit SHAs with version comments for enhanced security and reproducibility. ## Dependabot Configuration Updated the schedule from `weekly` to `daily` with a `cooldown` of 7 days. This means Dependabot will check for updates daily but will wait 7 days after a new version is released before creating a PR, helping to avoid early adoption of potentially unstable releases. ```yaml schedule: interval: daily cooldown: default-days: 7 ``` ## Pinned Actions All actions are now pinned to specific commit SHAs with version tag comments for traceability: | Action | Version | Commit SHA | |--------|---------|------------| | `actions/checkout` | v6.0.1 | `8e8c483db84b4bee98b60c0593521ed34d9990e8` | | `super-linter/super-linter` | v8.3.2 | `d5b0a2ab116623730dd094f15ddc1b6b25bf7b99` | | `PSModule/Auto-Release` | v1.9.5 | `eabd533035e2cb9822160f26f2eda584bd012356` |
Disable Biome format linter in super-linter (#18) Disables the Biome format linter in the super-linter workflow. ## Changes - Added `VALIDATE_BIOME_FORMAT: false` to `.github/workflows/Linter.yml` environment variables This prevents Biome's formatter from running during CI linting while keeping other linters active (Prettier for JSON/Markdown/YAML remains disabled as before). <!-- START COPILOT CODING AGENT SUFFIX --> <!-- START COPILOT ORIGINAL PROMPT --> <details> <summary>Original prompt</summary> > Disable the Biome format linter </details> <!-- START COPILOT CODING AGENT TIPS --> --- 💡 You can make Copilot smarter by setting up custom instructions, customizing its development environment and configuring Model Context Protocol (MCP) servers. Learn more [Copilot coding agent tips](https://gh.io/copilot-coding-agent-tips) in the docs. --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MariusStorhaug <17722253+MariusStorhaug@users.noreply.github.com> Co-authored-by: Marius Storhaug <marstor@hotmail.com>
Add cooldown configuration to dependabot config for Zizmor compliance (… …#16) This pull request updates the Dependabot configuration to increase the frequency of dependency update checks and introduces a cooldown period to help manage update noise. Dependabot configuration changes: * Changed the update schedule interval from weekly to daily in `.github/dependabot.yml`. * Added a `cooldown` setting with `default-days: 7` to limit how often Dependabot will open new pull requests for the same dependency. --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: MariusStorhaug <17722253+MariusStorhaug@users.noreply.github.com> Co-authored-by: Marius Storhaug <marstor@hotmail.com>
PreviousNext