Bump the actions group across 1 directory with 5 updates #2927

dependabot · 2024-11-14T09:46:32Z

Bumps the actions group with 5 updates in the / directory:

Package	From	To
actions/checkout	`4.2.1`	`4.2.2`
chainguard-dev/digestabot	`1.2.0`	`1.2.1`
tj-actions/changed-files	`45.0.3`	`45.0.4`
chainguard-dev/setup-chainctl	`0.2.3`	`0.2.4`
rtCamp/action-slack-notify	`2.3.0`	`2.3.2`

Updates actions/checkout from 4.2.1 to 4.2.2

Release notes

Sourced from actions/checkout's releases.

v4.2.2

What's Changed

url-helper.ts now leverages well-known environment variables by @jww3 in actions/checkout#1941

Expand unit test coverage for isGhes by @jww3 in actions/checkout#1946

Full Changelog: actions/checkout@v4.2.1...v4.2.2

Changelog

Sourced from actions/checkout's changelog.

Changelog

v4.2.2

url-helper.ts now leverages well-known environment variables by @jww3 in actions/checkout#1941

Expand unit test coverage for isGhes by @jww3 in actions/checkout#1946

v4.2.1

Check out other refs/* by commit if provided, fall back to ref by @orhantoy in actions/checkout#1924

v4.2.0

Add Ref and Commit outputs by @lucacome in actions/checkout#1180

Dependency updates by @dependabot- actions/checkout#1777, actions/checkout#1872

v4.1.7

Bump the minor-npm-dependencies group across 1 directory with 4 updates by @dependabot in actions/checkout#1739

Bump actions/checkout from 3 to 4 by @dependabot in actions/checkout#1697

Check out other refs/* by commit by @orhantoy in actions/checkout#1774

Pin actions/checkout's own workflows to a known, good, stable version. by @jww3 in actions/checkout#1776

v4.1.6

Check platform to set archive extension appropriately by @cory-miller in actions/checkout#1732

v4.1.5

Update NPM dependencies by @cory-miller in actions/checkout#1703

Bump github/codeql-action from 2 to 3 by @dependabot in actions/checkout#1694

Bump actions/setup-node from 1 to 4 by @dependabot in actions/checkout#1696

Bump actions/upload-artifact from 2 to 4 by @dependabot in actions/checkout#1695

README: Suggest user.email to be 41898282+github-actions[bot]@users.noreply.github.com by @cory-miller in actions/checkout#1707

v4.1.4

Disable extensions.worktreeConfig when disabling sparse-checkout by @jww3 in actions/checkout#1692

Add dependabot config by @cory-miller in actions/checkout#1688

Bump the minor-actions-dependencies group with 2 updates by @dependabot in actions/checkout#1693

Bump word-wrap from 1.2.3 to 1.2.5 by @dependabot in actions/checkout#1643

v4.1.3

Check git version before attempting to disable sparse-checkout by @jww3 in actions/checkout#1656

Add SSH user parameter by @cory-miller in actions/checkout#1685

Update actions/checkout version in update-main-version.yml by @jww3 in actions/checkout#1650

v4.1.2

Fix: Disable sparse checkout whenever sparse-checkout option is not present @dscho in actions/checkout#1598

v4.1.1

Correct link to GitHub Docs by @peterbe in actions/checkout#1511

Link to release page from what's new section by @cory-miller in actions/checkout#1514

v4.1.0

Add support for partial checkout filters

... (truncated)

Commits

11bd719 Prepare 4.2.2 Release (#1953)
e3d2460 Expand unit test coverage (#1946)
163217d url-helper.ts now leverages well-known environment variables. (#1941)
See full diff in compare view

Updates chainguard-dev/digestabot from 1.2.0 to 1.2.1

Release notes

Sourced from chainguard-dev/digestabot's releases.

v1.2.1

What's Changed

feat(action): support multiple items per file and output diff in PR body by @billimek in chainguard-dev/digestabot#34

feat: make github commit signing configurable by @found-it in chainguard-dev/digestabot#44

add makefile for test and fix blank spaces by @cpanato in chainguard-dev/digestabot#46

New Contributors

@found-it made their first contribution in chainguard-dev/digestabot#44

Full Changelog: chainguard-dev/digestabot@v1.2.0...v1.2.1

Commits

cee67ce add makefile for test and fix blank spaces (#46)
a52c17b Bump actions/checkout from 4.2.1 to 4.2.2 (#45)
8013418 Bump actions/checkout from 4.2.0 to 4.2.1 (#42)
caa15f4 feat: make github commit signing configurable (#44)
eedd1d7 Bump actions/checkout from 4.1.7 to 4.2.0 (#41)
5477b8d Bump peter-evans/create-pull-request from 7.0.3 to 7.0.5 (#40)
fe3c6c5 feat(action): support multiple items per file and output diff in PR body (#34)
958f7d5 Bump peter-evans/create-pull-request from 7.0.1 to 7.0.3 (#39)
88d36a2 Bump peter-evans/create-pull-request from 6.1.0 to 7.0.1 (#37)
See full diff in compare view

Updates tj-actions/changed-files from 45.0.3 to 45.0.4

Release notes

Sourced from tj-actions/changed-files's releases.

v45.0.4

What's Changed

Upgraded to v45.0.3 by @tj-actions-bot in tj-actions/changed-files#2308

fix(deps): update dependency @actions/core to v1.11.1 by @renovate in tj-actions/changed-files#2309

chore(deps): lock file maintenance by @renovate in tj-actions/changed-files#2310

chore(deps): update dependency @types/node to v22.7.5 by @renovate in tj-actions/changed-files#2312

chore(deps): update dependency typescript to v5.6.3 by @renovate in tj-actions/changed-files#2313

chore(deps): lock file maintenance by @renovate in tj-actions/changed-files#2315

skip: step for dependabot PRs by @jackton1 in tj-actions/changed-files#2317

feat: prevent ignore files warning by @jackton1 in tj-actions/changed-files#2318

chore(deps): update dependency @types/node to v22.7.6 by @renovate in tj-actions/changed-files#2321

chore(deps): update dependency @types/lodash to v4.17.11 by @renovate in tj-actions/changed-files#2322

chore(deps): update dependency @types/node to v22.7.7 by @renovate in tj-actions/changed-files#2323

chore(deps): update dependency @types/lodash to v4.17.12 by @renovate in tj-actions/changed-files#2324

chore(deps): lock file maintenance by @renovate in tj-actions/changed-files#2325

chore(deps): update dependency @types/node to v22.7.8 by @renovate in tj-actions/changed-files#2327

chore(deps): update dependency @types/jest to v29.5.14 by @renovate in tj-actions/changed-files#2328

chore(deps): update dependency @types/node to v22.7.9 by @renovate in tj-actions/changed-files#2329

chore(deps): update actions/setup-node action to v4.1.0 by @renovate in tj-actions/changed-files#2330

chore(deps): update dependency @types/node to v22.8.0 by @renovate in tj-actions/changed-files#2331

chore(deps): update dependency @types/node to v22.8.1 by @renovate in tj-actions/changed-files#2332

chore(deps): lock file maintenance by @renovate in tj-actions/changed-files#2333

chore(deps): update dependency @types/node to v22.8.2 by @renovate in tj-actions/changed-files#2334

chore(deps): update dependency @types/node to v22.8.4 by @renovate in tj-actions/changed-files#2335

chore(deps): update dependency @types/lodash to v4.17.13 by @renovate in tj-actions/changed-files#2336

chore(deps): update dependency @types/node to v22.8.5 by @renovate in tj-actions/changed-files#2337

chore(deps): update dependency @types/node to v22.8.6 by @renovate in tj-actions/changed-files#2338

chore(deps): update dependency @types/node to v22.8.7 by @renovate in tj-actions/changed-files#2339

chore(deps): lock file maintenance by @renovate in tj-actions/changed-files#2340

chore(deps): update dependency @types/node to v22.9.0 by @renovate in tj-actions/changed-files#2341

chore(deps): update dependency eslint-plugin-jest to v28.9.0 by @renovate in tj-actions/changed-files#2342

Full Changelog: tj-actions/changed-files@v45...v45.0.4

Changelog

Sourced from tj-actions/changed-files's changelog.

Changelog

45.0.4 - (2024-11-05)

🚀 Features

Prevent ignore files warning (#2318) (1f772e9) - (Tonye Jack)

🐛 Bug Fixes

deps: Update dependency @actions/core to v1.11.1 (4d0aab9) - (renovate[bot])

➕ Add

Added missing changes and modified dist assets. (9d7201d) - (GitHub Action)

Added missing changes and modified dist assets. (0104c75) - (GitHub Action)

📝 Other

Step for dependabot PRs (#2317) (684c5e6) - (Tonye Jack)

⚙️ Miscellaneous Tasks

deps: Update dependency eslint-plugin-jest to v28.9.0 (4edd678) - (renovate[bot])

deps: Update dependency @types/node to v22.9.0 (f082558) - (renovate[bot])

deps: Lock file maintenance (92c02a0) - (renovate[bot])

deps: Update dependency @types/node to v22.8.7 (b702211) - (renovate[bot])

deps: Update dependency @types/node to v22.8.6 (435fd74) - (renovate[bot])

deps: Update dependency @types/node to v22.8.5 (0626fa3) - (renovate[bot])

deps: Update dependency @types/lodash to v4.17.13 (8817a79) - (renovate[bot])

deps: Update dependency @types/node to v22.8.4 (5417491) - (renovate[bot])

deps: Update dependency @types/node to v22.8.2 (84ef162) - (renovate[bot])

deps: Lock file maintenance (b672a51) - (renovate[bot])

deps: Update dependency @types/node to v22.8.1 (678cdc2) - (renovate[bot])

deps: Update dependency @types/node to v22.8.0 (27b7bbb) - (renovate[bot])

deps: Update actions/setup-node action to v4.1.0 (8361072) - (renovate[bot])

deps: Update dependency @types/node to v22.7.9 (21acf46) - (renovate[bot])

deps: Update dependency @types/jest to v29.5.14 (f356b3c) - (renovate[bot])

deps: Update dependency @types/node to v22.7.8 (66275de) - (renovate[bot])

deps: Lock file maintenance (a16702b) - (renovate[bot])

deps: Update dependency @types/lodash to v4.17.12 (aa11897) - (renovate[bot])

deps: Update dependency @types/node to v22.7.7 (6513fe1) - (renovate[bot])

deps: Update dependency @types/lodash to v4.17.11 (45e0c78) - (renovate[bot])

deps: Update dependency @types/node to v22.7.6 (a949a83) - (renovate[bot])

deps: Lock file maintenance (f93ff33) - (renovate[bot])

deps: Update dependency typescript to v5.6.3 (729c704) - (renovate[bot])

deps: Update dependency @types/node to v22.7.5 (2009d44) - (renovate[bot])

deps: Lock file maintenance (b693fc2) - (renovate[bot])

... (truncated)

Commits

4edd678 chore(deps): update dependency eslint-plugin-jest to v28.9.0
f082558 chore(deps): update dependency @types/node to v22.9.0
92c02a0 chore(deps): lock file maintenance
b702211 chore(deps): update dependency @types/node to v22.8.7
435fd74 chore(deps): update dependency @types/node to v22.8.6
0626fa3 chore(deps): update dependency @types/node to v22.8.5
8817a79 chore(deps): update dependency @types/lodash to v4.17.13
5417491 chore(deps): update dependency @types/node to v22.8.4
84ef162 chore(deps): update dependency @types/node to v22.8.2
b672a51 chore(deps): lock file maintenance
Additional commits viewable in compare view

Updates chainguard-dev/setup-chainctl from 0.2.3 to 0.2.4

Release notes

Sourced from chainguard-dev/setup-chainctl's releases.

v0.2.4

What's Changed

Bump actions/checkout from 4.2.0 to 4.2.2 in the actions group across 1 directory by @dependabot in chainguard-dev/setup-chainctl#16

fix: export HTTP_AUTH to github env by @89luca89 in chainguard-dev/setup-chainctl#17

New Contributors

@89luca89 made their first contribution in chainguard-dev/setup-chainctl#17

Full Changelog: chainguard-dev/setup-chainctl@v0...v0.2.4

Commits

8d93dcb fix: export HTTP_AUTH to github env (#17)
a2e4820 Bump actions/checkout from 4.2.0 to 4.2.2 in the actions group across 1 direc...
See full diff in compare view

Updates rtCamp/action-slack-notify from 2.3.0 to 2.3.2

Release notes

Sourced from rtCamp/action-slack-notify's releases.

v2.3.2

What's Changed

Changelog:

What's Changed

Bump golang from e0ea2a1 to f6392ff by @dependabot in rtCamp/action-slack-notify#206

Update the way text is set using status-specific messages by @L0RD-ZER0 in rtCamp/action-slack-notify#207

Full Changelog: rtCamp/action-slack-notify@v2.3.1...v2.3.2

v2.3.1

What's Changed

Changelog:

What's Changed

Fix variable names for custom status messages in readme by @modalkonform in rtCamp/action-slack-notify#171

Add markdown conversion for custom status messages by @modalkonform in rtCamp/action-slack-notify#172

Pin Dockerfile digests to the index instead of a specific manifest by @noamcohen97 in rtCamp/action-slack-notify#175

Use only major version of slackify-markdown-action by @anagyzambo-kx in rtCamp/action-slack-notify#180

Make calling Slackify-Markdown more robust by @L0RD-ZER0 in rtCamp/action-slack-notify#181

Update CI and add Dependabot by @L0RD-ZER0 in rtCamp/action-slack-notify#182

Bump alpine from c5b1261 to 77726ef by @dependabot in rtCamp/action-slack-notify#184

Bump golang from 0466223 to 65b5d2d by @dependabot in rtCamp/action-slack-notify#183

Update README.md by @Issei0804-ie in rtCamp/action-slack-notify#197

Bump golang from 1.22-alpine3.19 to 1.23-alpine3.19 by @dependabot in rtCamp/action-slack-notify#196

Bump alpine from 77726ef to 0a4eaa0 by @dependabot in rtCamp/action-slack-notify#195

fix: typo in readme by @cseas in rtCamp/action-slack-notify#186

Bump alpine from 0a4eaa0 to beefdbd by @dependabot in rtCamp/action-slack-notify#199

Bump golang from fe8f9c7 to e0ea2a1 by @dependabot in rtCamp/action-slack-notify#198

New Contributors

@modalkonform made their first contribution in rtCamp/action-slack-notify#171

@noamcohen97 made their first contribution in rtCamp/action-slack-notify#175

@anagyzambo-kx made their first contribution in rtCamp/action-slack-notify#180

@dependabot made their first contribution in rtCamp/action-slack-notify#184

@Issei0804-ie made their first contribution in rtCamp/action-slack-notify#197

@cseas made their first contribution in rtCamp/action-slack-notify#186

Full Changelog: rtCamp/action-slack-notify@v2...v2.3.1

Commits

c337377 Update action image version to v2.3.2
1134e51 Merge pull request #207 from L0RD-ZER0/master
2e9d8e4 Update the way text is set
3154c16 Merge pull request #206 from rtCamp/dependabot/docker/golang-f6392ff
083cc1d Bump golang from e0ea2a1 to f6392ff
65e6fc1 Update action image version to v2.3.1
dbbd015 Merge pull request #198 from rtCamp/dependabot/docker/golang-e0ea2a1
9cf45d7 Merge pull request #199 from rtCamp/dependabot/docker/alpine-beefdbd8a1da6d29...
17200f4 Bump alpine from 0a4eaa0 to beefdbd
e01e65e Bump golang from fe8f9c7 to e0ea2a1
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the actions group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `4.2.1` | `4.2.2` | | [chainguard-dev/digestabot](https://github.com/chainguard-dev/digestabot) | `1.2.0` | `1.2.1` | | [tj-actions/changed-files](https://github.com/tj-actions/changed-files) | `45.0.3` | `45.0.4` | | [chainguard-dev/setup-chainctl](https://github.com/chainguard-dev/setup-chainctl) | `0.2.3` | `0.2.4` | | [rtCamp/action-slack-notify](https://github.com/rtcamp/action-slack-notify) | `2.3.0` | `2.3.2` | Updates `actions/checkout` from 4.2.1 to 4.2.2 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@eef6144...11bd719) Updates `chainguard-dev/digestabot` from 1.2.0 to 1.2.1 - [Release notes](https://github.com/chainguard-dev/digestabot/releases) - [Commits](chainguard-dev/digestabot@02ea60d...cee67ce) Updates `tj-actions/changed-files` from 45.0.3 to 45.0.4 - [Release notes](https://github.com/tj-actions/changed-files/releases) - [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md) - [Commits](tj-actions/changed-files@c3a1bb2...4edd678) Updates `chainguard-dev/setup-chainctl` from 0.2.3 to 0.2.4 - [Release notes](https://github.com/chainguard-dev/setup-chainctl/releases) - [Commits](chainguard-dev/setup-chainctl@5984995...8d93dcb) Updates `rtCamp/action-slack-notify` from 2.3.0 to 2.3.2 - [Release notes](https://github.com/rtcamp/action-slack-notify/releases) - [Commits](rtCamp/action-slack-notify@4e5fb42...c337377) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: chainguard-dev/digestabot dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: tj-actions/changed-files dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: chainguard-dev/setup-chainctl dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: rtCamp/action-slack-notify dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2024-11-19T09:29:45Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Nov 14, 2024

dependabot bot closed this Nov 19, 2024

dependabot bot deleted the dependabot/github_actions/actions-6dec8630d3 branch November 19, 2024 09:29

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the actions group across 1 directory with 5 updates #2927

Bump the actions group across 1 directory with 5 updates #2927

dependabot bot commented on behalf of github Nov 14, 2024 •

edited

Loading

dependabot bot commented on behalf of github Nov 19, 2024

Bump the actions group across 1 directory with 5 updates #2927

Bump the actions group across 1 directory with 5 updates #2927

Conversation

dependabot bot commented on behalf of github Nov 14, 2024 • edited Loading

v4.2.2

What's Changed

Changelog

v4.2.2

v4.2.1

v4.2.0

v4.1.7

v4.1.6

v4.1.5

v4.1.4

v4.1.3

v4.1.2

v4.1.1

v4.1.0

v1.2.1

What's Changed

New Contributors

v45.0.4

What's Changed

Changelog

45.0.4 - (2024-11-05)

🚀 Features

🐛 Bug Fixes

➕ Add

📝 Other

⚙️ Miscellaneous Tasks

v0.2.4

What's Changed

New Contributors

v2.3.2

What's Changed

What's Changed

v2.3.1

What's Changed

What's Changed

New Contributors

dependabot bot commented on behalf of github Nov 19, 2024

dependabot bot commented on behalf of github Nov 14, 2024 •

edited

Loading