Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

build(deps): bump r-lib/actions from 2.9.0 to 2.10.1 #2849

Merged

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 1, 2024

Bumps r-lib/actions from 2.9.0 to 2.10.1.

Changelog

Sourced from r-lib/actions's changelog.

v2.10.1 (2024-08-08)

  • [setup-r-dependencies] now pins quarto-dev/quarto-actions/setup version to a constant sha, to be compatible with organizations where this is a requirement (#901).

  • [setup-renv] now also caches R packages in renv/library, used when RENV_CONFIG_PAK_ENABLED: true (#900).

  • [setup-manifest]: new action to set up an R project with a Posit Connect manifest.json file (#880).

v2.10.0 (2024-08-02)

  • [setup-r]: on R 3.6.x we now use the P3M snapshot from 2024-06-01 by default. This is because many newer CRAN packages do not work on R 3.6.x any more. The default CRAN mirror is still added, so newer packages may be used if they are required, but setup-r-dependencies@v2 will prefer the binary packages from P3M.

    Note that this only happens if you opt in to use P3M with the use-public-rspm: true input parameter. This is the default in all example workflows.

    If the RSPM environment variable is already set, then it is used unchanged, on all R versions. To avoid using a P3M snapshot on R 3.6.x, set the RSPM_PIN_3_6 environment variable to false.

  • [setup-r] now installs the x86_64 build of R on arm64 macOS, if there is no arm64 build available for this R version (#883).

  • Example blogdown, bookdown, document, pr-commands and render-markdown workflows now correctly have write permission to repository contents (#874, @​remlapmot).

  • [check-r-package]: you can now setupload-snapshots to always, to upload snapshots even after failures (#871).

  • [setup-r-dependencies] now always sets the R_LIBS_USER GitHub environment variable, so it can be used without [setup-r] or without setting it manually (#881).

  • The example workflows now use their file names as workflow names. This is to make it easier to match worflow runs to workflow files. Most of the the check-* workflows use R-CMD-check.yaml, however, to anticipate the usethis package renaming them by default (#888).

  • [setup-renv]: you can now set bypass-cache to never, to save the cache even if the workflow fails (#873, @​jaradkohl-mfj).

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [r-lib/actions](https://github.com/r-lib/actions) from 2.9.0 to 2.10.1.
- [Release notes](https://github.com/r-lib/actions/releases)
- [Changelog](https://github.com/r-lib/actions/blob/v2-branch/NEWS.md)
- [Commits](r-lib/actions@929c772...e6be4b3)

---
updated-dependencies:
- dependency-name: r-lib/actions
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added Dependencies Issue or pull request related to project dependencies. github_actions Pull requests that update GitHub Actions code. labels Sep 1, 2024
Signed-off-by: Philipp Burckhardt <pburckhardt@outlook.com>
Signed-off-by: Philipp Burckhardt <pburckhardt@outlook.com>
@Planeshifter Planeshifter merged commit b0f3086 into develop Sep 2, 2024
6 checks passed
@Planeshifter Planeshifter deleted the dependabot/github_actions/r-lib/actions-2.10.1 branch September 2, 2024 19:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Dependencies Issue or pull request related to project dependencies. github_actions Pull requests that update GitHub Actions code.
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant