Bump the github-actions group with 3 updates

[dependabot]

Bumps the github-actions group with 3 updates: actions/setup-node, cloudflare/wrangler-action and github/codeql-action.

Updates actions/setup-node from 4.1.0 to 4.2.0

Release notes

Sourced from actions/setup-node's releases.

v4.2.0

What's Changed

• Enhance workflows and upgrade publish-actions from 0.2.2 to 0.3.0 by @​aparnajyothi-y in actions/setup-node#1174
• Add recommended permissions section to readme by @​benwells in actions/setup-node#1193
• Configure Dependabot settings by @​HarithaVattikuti in actions/setup-node#1192
• Upgrade @actions/cache to ^4.0.0 by @​priyagupta108 in actions/setup-node#1191
• Upgrade pnpm/action-setup from 2 to 4 by @​dependabot in actions/setup-node#1194
• Upgrade actions/publish-immutable-action from 0.0.3 to 0.0.4 by @​dependabot in actions/setup-node#1195
• Upgrade semver from 7.6.0 to 7.6.3 by @​dependabot in actions/setup-node#1196
• Upgrade @​types/jest from 29.5.12 to 29.5.14 by @​dependabot in actions/setup-node#1201
• Upgrade undici from 5.28.4 to 5.28.5 by @​dependabot in actions/setup-node#1205

New Contributors

• @​benwells made their first contribution in actions/setup-node#1193

Full Changelog: actions/setup-node@v4...v4.2.0

Commits

• 1d0ff46 Bump undici from 5.28.4 to 5.28.5 (#1205)
• 574f09a Bump @​types/jest from 29.5.12 to 29.5.14 (#1201)
• 260f870 Bump semver from 7.6.0 to 7.6.3 (#1196)
• 111c4be Bump actions/publish-immutable-action from 0.0.3 to 0.0.4 (#1195)
• 0bc26de Bump pnpm/action-setup from 2 to 4 (#1194)
• 8f9cc17 Use the new cache service: upgrade @actions/cache to ^4.0.0 (#1191)
• 5eef37b Create dependabot.yml (#1192)
• fbeca22 Update README.md (#1193)
• 48b9067 Add macos-13 to the workflows and upgrade publish-actions from 0.2.2 to 0.3.0...
• See full diff in compare view

Updates cloudflare/wrangler-action from 3.13.0 to 3.13.1

Release notes

Sourced from cloudflare/wrangler-action's releases.

v3.13.1

Patch Changes

• #345 e819570 Thanks @​Maximo-Guk! - fix: Pages GitHub Deployment not triggering

Changelog

Sourced from cloudflare/wrangler-action's changelog.

Changelog

3.13.1

Patch Changes

• #345 e819570 Thanks @​Maximo-Guk! - fix: Pages GitHub Deployment not triggering

3.13.0

Minor Changes

• #325 cada7a6 Thanks @​Maximo-Guk! - Add GitHub deployments and job summaries for parity with pages-action

• #334 9fed19a Thanks @​Maximo-Guk! - Bump default wrangler version to 3.90.0

3.12.1

Patch Changes

• #319 59c04629408d58978884fadd18755f1a15f96157 Thanks @​Maximo-Guk! - Fixes #317: Generate a new output directory with a randomUUID in the tmpDir, so that when the action is executed multiple times, we use the artifacts from that run, opposed to the artifacts from a previous run.

3.12.0

Minor Changes

• #312 122ee5cf5b66847e0b6cfa67ecd9e03e38a67a42 Thanks @​Maximo-Guk! - This reapplies 303 add parity with pages-action for pages deploy outputs. Thanks @​courtney-sims! - Support pages-deployment-id, pages-environment, pages-deployment-alias-url and deployment-url outputs for Pages deploys when wrangler version is >=3.81.0. deployment-alias-url was also deprecated in favour of pages-deployment-alias.

3.11.0

Minor Changes

• #309 10d5b9c1c1826adaec0a9ee49fdf5b91113508ef Thanks @​Maximo-Guk! - Revert "Add parity with pages-action for pages deploy outputs"

3.10.0

Minor Changes

• #303 3ec7f8943ef83351f743cfaa8763a9056ef70993 Thanks @​courtney-sims! - Support id, environment, url, and alias outputs for Pages deploys.

3.9.0

Minor Changes

• #298 134b5c2a3252d66b8c4d1cddd0b9baaeed6a4daa Thanks @​Maximo-Guk! - Update wrangler version from 3.13.2 to 3.78.10

Patch Changes

• #278 47d51f25c113ee9205110728599b43ed6a1e273b Thanks @​acusti! - fix: Detect existing wrangler install even when wrangler version output is multiline

... (truncated)

Commits

• 7a5f8bb Automatic compilation
• 181b9fb Merge pull request #346 from cloudflare/changeset-release/main
• aac328d Version Packages
• fc89533 Merge pull request #345 from cloudflare/fix/pages-gh-deployment
• e819570 Remove stages from pages-deploy-detailed artifact and add changeset
• 923db6f fix: pages github deployment not triggering due to missing pages artifact stages
• d5031c3 Merge pull request #340 from armandsalle/patch-1
• 17da943 Update typo in README.md
• See full diff in compare view

Updates github/codeql-action from 3.28.0 to 3.28.8

Release notes

Sourced from github/codeql-action's releases.

v3.28.8

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.8 - 29 Jan 2025

• Enable support for Kotlin 2.1.10 when running with CodeQL CLI v2.20.3. #2744

See the full CHANGELOG.md for more information.

v3.28.7

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.7 - 29 Jan 2025

No user facing changes.

See the full CHANGELOG.md for more information.

v3.28.6

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.6 - 27 Jan 2025

• Re-enable debug artifact upload for CLI versions 2.20.3 or greater. #2726

See the full CHANGELOG.md for more information.

v3.28.5

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.5 - 24 Jan 2025

• Update default CodeQL bundle version to 2.20.3. #2717

See the full CHANGELOG.md for more information.

v3.28.4

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.4 - 23 Jan 2025

... (truncated)

Changelog

Sourced from github/codeql-action's changelog.

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

[UNRELEASED]

No user facing changes.

3.28.8 - 29 Jan 2025

• Enable support for Kotlin 2.1.10 when running with CodeQL CLI v2.20.3. #2744

3.28.7 - 29 Jan 2025

No user facing changes.

3.28.6 - 27 Jan 2025

• Re-enable debug artifact upload for CLI versions 2.20.3 or greater. #2726

3.28.5 - 24 Jan 2025

• Update default CodeQL bundle version to 2.20.3. #2717

3.28.4 - 23 Jan 2025

No user facing changes.

3.28.3 - 22 Jan 2025

• Update default CodeQL bundle version to 2.20.2. #2707
• Fix an issue downloading the CodeQL Bundle from a GitHub Enterprise Server instance which occurred when the CodeQL Bundle had been synced to the instance using the CodeQL Action sync tool and the Actions runner did not have Zstandard installed. #2710
• Uploading debug artifacts for CodeQL analysis is temporarily disabled. #2712

3.28.2 - 21 Jan 2025

No user facing changes.

3.28.1 - 10 Jan 2025

• CodeQL Action v2 is now deprecated, and is no longer updated or supported. For better performance, improved security, and new features, upgrade to v3. For more information, see this changelog post. #2677
• Update default CodeQL bundle version to 2.20.1. #2678

3.28.0 - 20 Dec 2024

• Bump the minimum CodeQL bundle version to 2.15.5. #2655
• Don't fail in the unusual case that a file is on the search path. #2660.

3.27.9 - 12 Dec 2024

... (truncated)

Commits

• dd74661 Merge pull request #2746 from github/update-v3.28.8-a91a3f767
• 3210a3c Fix Kotlin version in changelog
• 72f9d02 Update changelog for v3.28.8
• a91a3f7 Merge pull request #2744 from github/igfoo/kot2.1.10
• c520fb5 Merge pull request #2745 from github/mergeback/v3.28.7-to-main-6e545590
• 3879c57 Add changelog entry
• 0c21937 Run "npm run build"
• 5a61bf0 Kotlin: The 2.20.3 release supports Kotlin 2.1.10.
• 163d119 Update checked-in dependencies
• bcf5cec Update changelog and version after v3.28.7
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

👋 Thanks for opening a pull request!

If you are new, please check out the trimmed down summary of our deployment process below:

1. 👀 Observe the CI jobs and tests to ensure they are passing

2. ✔️ Obtain an approval/review on this pull request

3. 🚀 Deploy your pull request to the development environment with .deploy to development

4. 🚀 Deploy your pull request to the production environment with .deploy

   If anything goes wrong, rollback with .deploy main

5. 🎉 Merge!

Note: If you have a larger change and want to block deployments, you can run .lock --reason <reason> to lock all other deployments (remove with .unlock)

You can view the branch deploy usage guide for additional information

[Razzmatazzz]

.deploy

[github-actions]

Deployment Triggered 🚀

Razzmatazzz, started a branch deployment to production (branch: dependabot/github_actions/github-actions-b74d5469ed)

You can watch the progress here 🔗

Details

{
  "type": "branch",
  "environment": {
    "name": "production",
    "url": "https://tarkov.dev"
  },
  "deployment": {
    "timestamp": "2025-02-06T12:59:08.287Z",
    "logs": "https://github.com/the-hideout/tarkov-dev/actions/runs/13179323657"
  },
  "git": {
    "branch": "dependabot/github_actions/github-actions-b74d5469ed",
    "commit": "569c47e9ade56e4de48b50a8d5a09f14c0674253",
    "verified": true
  },
  "context": {
    "actor": "Razzmatazzz",
    "noop": false,
    "fork": false,
    "comment": {
      "created_at": "2025-02-06T12:58:50Z",
      "updated_at": "2025-02-06T12:58:50Z",
      "body": ".deploy",
      "html_url": "https://github.com/the-hideout/tarkov-dev/pull/1041#issuecomment-2639761022"
    }
  },
  "parameters": {
    "raw": null,
    "parsed": null
  }
}

[github-actions]

Deployment Results ✅

Razzmatazzz successfully deployed branch dependabot/github_actions/github-actions-b74d5469ed to production

Details

{
  "status": "success",
  "environment": {
    "name": "production",
    "url": "https://tarkov.dev"
  },
  "deployment": {
    "id": 2179510537,
    "timestamp": "2025-02-06T13:00:56.130Z",
    "logs": "https://github.com/the-hideout/tarkov-dev/actions/runs/13179323657",
    "duration": 108
  },
  "git": {
    "branch": "dependabot/github_actions/github-actions-b74d5469ed",
    "commit": "569c47e9ade56e4de48b50a8d5a09f14c0674253",
    "verified": true
  },
  "context": {
    "actor": "Razzmatazzz",
    "noop": false,
    "fork": false
  },
  "reviews": {
    "count": 1,
    "decision": "APPROVED"
  },
  "parameters": {
    "raw": null,
    "parsed": null
  }
}

Environment URL: tarkov.dev