Bump the actions group with 3 updates #69

dependabot · 2024-10-07T13:58:07Z

Bumps the actions group with 3 updates: actions/attest-build-provenance, mamba-org/setup-micromamba and codecov/codecov-action.

Updates actions/attest-build-provenance from 1.4.1 to 1.4.3

Release notes

Sourced from actions/attest-build-provenance's releases.

v1.4.3

What's Changed

Bump predicate from 1.1.2 to 1.1.3 by @bdehamer in actions/attest-build-provenance#226

Bump @actions/attest from 1.3.1 to 1.4.1 by @dependabot in actions/attest-build-provenance#212

Bump @actions/attest from 1.4.1 to 1.4.2 by @bdehamer in actions/attest-build-provenance#225

Fix bug w/ customized OIDC issuer URL for enterprise accounts (#222)

Full Changelog: actions/attest-build-provenance@v1.4.2...v1.4.3

v1.4.2

What's Changed

Bump actions/attest from 1.4.0 to 1.4.1 by @bdehamer in actions/attest-build-provenance#209

Includes bug fix for issue with authenticated proxies (actions/toolkit#1798)

Full Changelog: actions/attest-build-provenance@v1.4.1...v1.4.2

Commits

1c608d1 bump predicate from 1.1.2 to 1.1.3 (#226)
f1185f1 bump @actions/attest from 1.4.1 to 1.4.2 (#225)
d438876 add sigstore prober (#224)
8f30a5c Bump the npm-development group with 3 updates (#218)
13f0f0d Bump @actions/attest from 1.3.1 to 1.4.1 (#212)
a950611 Bump the npm-development group with 2 updates (#211)
814a778 Bump the npm-development group with 3 updates (#206)
6149ea5 bump actions/attest from 1.4.0 to 1.4.1 (#209)
3eb3242 Bump super-linter/super-linter from 6 to 7 (#205)
399bb17 Bump @types/node from 22.2.0 to 22.4.0 in the npm-development group (#203)
Additional commits viewable in compare view

Updates mamba-org/setup-micromamba from 1 to 2

Release notes

Sourced from mamba-org/setup-micromamba's releases.

v2.0.0

What's Changed

Bug fixes

Copy generated mamba.bat to micromamba.bat to workaround cmd.exe Auto… by @JohanMabille in mamba-org/setup-micromamba#234

New Contributors

@JohanMabille made their first contribution in mamba-org/setup-micromamba#234

Full Changelog: mamba-org/setup-micromamba@v1...v2.0.0

v1.11.0

What's Changed

New features

pin micromamba default version to 1.* by @pavelzw in mamba-org/setup-micromamba#232

Full Changelog: mamba-org/setup-micromamba@v1.10.0...v1.11.0

v1.10.0

What's Changed

New features

Include bin hash in cache key by @bhperry in mamba-org/setup-micromamba#228

Dependency updates

Bump the actions group with 2 updates by @dependabot in mamba-org/setup-micromamba#215

Bump softprops/action-gh-release from 2.0.5 to 2.0.6 in the actions group by @dependabot in mamba-org/setup-micromamba#218

Bump softprops/action-gh-release from 2.0.6 to 2.0.8 in the actions group by @dependabot in mamba-org/setup-micromamba#220

New Contributors

@bhperry made their first contribution in mamba-org/setup-micromamba#228

Full Changelog: mamba-org/setup-micromamba@v1.9.0...v1.10.0

v1.9.0

What's Changed

Bug fixes

Fix saving cache taking too long by @pavelzw in mamba-org/setup-micromamba#211

Documentation

Improve micromamba-version mention in docs by @pavelzw in mamba-org/setup-micromamba#200

Dependency updates

Bump tsup from 8.0.1 to 8.0.2 by @dependabot in mamba-org/setup-micromamba#202

Bump pnpm/action-setup from 2 to 3 by @dependabot in mamba-org/setup-micromamba#203

Bump the dev-dependencies group with 5 updates by @dependabot in mamba-org/setup-micromamba#201

... (truncated)

Commits

617811f Copy generated mamba.bat to micromamba.bat to workaround cmd.exe Auto… (#234)
See full diff in compare view

Updates codecov/codecov-action from 4.5.0 to 4.6.0

Release notes

Sourced from codecov/codecov-action's releases.

v4.6.0

What's Changed

build(deps): bump github/codeql-action from 3.25.8 to 3.25.10 by @dependabot in codecov/codecov-action#1481

build(deps): bump actions/checkout from 4.1.6 to 4.1.7 by @dependabot in codecov/codecov-action#1480

build(deps-dev): bump ts-jest from 29.1.4 to 29.1.5 by @dependabot in codecov/codecov-action#1479

build(deps-dev): bump @typescript-eslint/parser from 7.13.0 to 7.13.1 by @dependabot in codecov/codecov-action#1485

build(deps-dev): bump @typescript-eslint/eslint-plugin from 7.13.0 to 7.13.1 by @dependabot in codecov/codecov-action#1484

build(deps-dev): bump typescript from 5.4.5 to 5.5.2 by @dependabot in codecov/codecov-action#1490

build(deps-dev): bump @typescript-eslint/parser from 7.13.1 to 7.14.1 by @dependabot in codecov/codecov-action#1493

build(deps-dev): bump @typescript-eslint/eslint-plugin from 7.13.1 to 7.14.1 by @dependabot in codecov/codecov-action#1492

build(deps): bump github/codeql-action from 3.25.10 to 3.25.11 by @dependabot in codecov/codecov-action#1496

build(deps-dev): bump @typescript-eslint/eslint-plugin from 7.14.1 to 7.15.0 by @dependabot in codecov/codecov-action#1501

build(deps-dev): bump typescript from 5.5.2 to 5.5.3 by @dependabot in codecov/codecov-action#1500

build(deps-dev): bump @typescript-eslint/parser from 7.14.1 to 7.15.0 by @dependabot in codecov/codecov-action#1499

build(deps): bump actions/upload-artifact from 4.3.3 to 4.3.4 by @dependabot in codecov/codecov-action#1502

build(deps-dev): bump ts-jest from 29.1.5 to 29.2.0 by @dependabot in codecov/codecov-action#1504

build(deps-dev): bump @typescript-eslint/eslint-plugin from 7.15.0 to 7.16.0 by @dependabot in codecov/codecov-action#1503

build(deps-dev): bump ts-jest from 29.2.0 to 29.2.2 by @dependabot in codecov/codecov-action#1507

build(deps-dev): bump @typescript-eslint/parser from 7.15.0 to 7.16.0 by @dependabot in codecov/codecov-action#1505

build(deps): bump github/codeql-action from 3.25.11 to 3.25.12 by @dependabot in codecov/codecov-action#1509

chore(ci): restrict scorecards to codecov/codecov-action by @thomasrockhu-codecov in codecov/codecov-action#1512

build(deps-dev): bump @typescript-eslint/eslint-plugin from 7.16.0 to 7.16.1 by @dependabot in codecov/codecov-action#1514

build(deps-dev): bump @typescript-eslint/parser from 7.16.0 to 7.16.1 by @dependabot in codecov/codecov-action#1513

test: versionInfo by @marcobiedermann in codecov/codecov-action#1407

build(deps-dev): bump ts-jest from 29.2.2 to 29.2.3 by @dependabot in codecov/codecov-action#1515

build(deps): bump github/codeql-action from 3.25.12 to 3.25.13 by @dependabot in codecov/codecov-action#1516

build(deps-dev): bump typescript from 5.5.3 to 5.5.4 by @dependabot in codecov/codecov-action#1521

build(deps-dev): bump @typescript-eslint/parser from 7.16.1 to 7.17.0 by @dependabot in codecov/codecov-action#1520

build(deps-dev): bump @typescript-eslint/parser from 7.17.0 to 7.18.0 by @dependabot in codecov/codecov-action#1528

build(deps): bump github/codeql-action from 3.25.13 to 3.25.15 by @dependabot in codecov/codecov-action#1526

build(deps): bump ossf/scorecard-action from 2.3.3 to 2.4.0 by @dependabot in codecov/codecov-action#1525

build(deps-dev): bump ts-jest from 29.2.3 to 29.2.4 by @dependabot in codecov/codecov-action#1532

build(deps): bump actions/upload-artifact from 4.3.4 to 4.3.5 by @dependabot in codecov/codecov-action#1534

build(deps): bump github/codeql-action from 3.25.15 to 3.26.0 by @dependabot in codecov/codecov-action#1542

build(deps): bump actions/upload-artifact from 4.3.5 to 4.3.6 by @dependabot in codecov/codecov-action#1541

ref: Tidy up types and remove string coercion by @nicholas-codecov in codecov/codecov-action#1536

build(deps-dev): bump @octokit/webhooks-types from 3.77.1 to 7.5.1 by @dependabot in codecov/codecov-action#1545

build(deps): bump github/codeql-action from 3.26.0 to 3.26.2 by @dependabot in codecov/codecov-action#1551

feat: pass tokenless value as branch override by @joseph-sentry in codecov/codecov-action#1511

build(deps): bump actions/upload-artifact from 4.3.6 to 4.4.0 by @dependabot in codecov/codecov-action#1563

Create makefile.yml by @Hawthorne001 in codecov/codecov-action#1555

build(deps): bump github/codeql-action from 3.26.2 to 3.26.6 by @dependabot in codecov/codecov-action#1562

build(deps-dev): bump ts-jest from 29.2.4 to 29.2.5 by @dependabot in codecov/codecov-action#1557

Spell evenName in the logs correctly by @webknjaz in codecov/codecov-action#1560

build(deps-dev): bump typescript from 5.5.4 to 5.6.2 by @dependabot in codecov/codecov-action#1566

build(deps-dev): bump @types/jest from 29.5.12 to 29.5.13 by @dependabot in codecov/codecov-action#1567

build(deps): bump github/codeql-action from 3.26.6 to 3.26.7 by @dependabot in codecov/codecov-action#1569

build(deps-dev): bump eslint from 8.57.0 to 8.57.1 by @dependabot in codecov/codecov-action#1571

build(deps): bump github/codeql-action from 3.26.7 to 3.26.8 by @dependabot in codecov/codecov-action#1575

build(deps-dev): bump @vercel/ncc from 0.38.1 to 0.38.2 by @dependabot in codecov/codecov-action#1577

... (truncated)

Commits

b9fd7d1 chore(release):4.6.0 (#1587)
6f7612c fix: bump eslint parser deps (#1586)
26c7e28 build(deps): bump actions/checkout from 4.1.7 to 4.2.0 (#1583)
6f744f7 build(deps): bump github/codeql-action from 3.26.8 to 3.26.9 (#1584)
543c3d4 chore: fix typo of OSS (#1578)
e379426 build(deps-dev): bump @vercel/ncc from 0.38.1 to 0.38.2 (#1577)
42656e4 build(deps): bump github/codeql-action from 3.26.7 to 3.26.8 (#1575)
2296b6b build(deps-dev): bump eslint from 8.57.0 to 8.57.1 (#1571)
bd77bc3 build(deps): bump github/codeql-action from 3.26.6 to 3.26.7 (#1569)
180b964 build(deps-dev): bump @types/jest from 29.5.12 to 29.5.13 (#1567)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

VeckoTheGecko · 2024-10-08T10:05:10Z

The dependency on seabird here for that one test is proving to be problematic.

dependabot · 2024-10-15T10:49:32Z

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

Bumps the actions group with 3 updates: [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance), [mamba-org/setup-micromamba](https://github.com/mamba-org/setup-micromamba) and [codecov/codecov-action](https://github.com/codecov/codecov-action). Updates `actions/attest-build-provenance` from 1.4.1 to 1.4.3 - [Release notes](https://github.com/actions/attest-build-provenance/releases) - [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md) - [Commits](actions/attest-build-provenance@v1.4.1...v1.4.3) Updates `mamba-org/setup-micromamba` from 1 to 2 - [Release notes](https://github.com/mamba-org/setup-micromamba/releases) - [Commits](mamba-org/setup-micromamba@v1...v2) Updates `codecov/codecov-action` from 4.5.0 to 4.6.0 - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@v4.5.0...v4.6.0) --- updated-dependencies: - dependency-name: actions/attest-build-provenance dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: mamba-org/setup-micromamba dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2024-11-11T08:02:48Z

Superseded by #81.

dependabot bot added the dependencies Pull requests that update a dependency file label Oct 7, 2024

dependabot bot force-pushed the dependabot/github_actions/actions-5312e35480 branch from 87f9a67 to 5039318 Compare October 14, 2024 07:33

VeckoTheGecko closed this Oct 15, 2024

VeckoTheGecko reopened this Oct 15, 2024

dependabot bot force-pushed the dependabot/github_actions/actions-5312e35480 branch from 5039318 to 54520dd Compare October 28, 2024 07:59

dependabot bot closed this Nov 11, 2024

dependabot bot deleted the dependabot/github_actions/actions-5312e35480 branch November 11, 2024 08:02

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the actions group with 3 updates #69

Bump the actions group with 3 updates #69

Uh oh!

dependabot bot commented on behalf of github Oct 7, 2024 •

edited

Loading

Uh oh!

VeckoTheGecko commented Oct 8, 2024 •

edited

Loading

Uh oh!

dependabot bot commented on behalf of github Oct 15, 2024

Uh oh!

dependabot bot commented on behalf of github Nov 11, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Bump the actions group with 3 updates #69

Bump the actions group with 3 updates #69

Uh oh!

Conversation

dependabot bot commented on behalf of github Oct 7, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v1.4.3

What's Changed

v1.4.2

What's Changed

v2.0.0

What's Changed

Bug fixes

New Contributors

v1.11.0

What's Changed

New features

v1.10.0

What's Changed

New features

Dependency updates

New Contributors

v1.9.0

What's Changed

Bug fixes

Documentation

Dependency updates

v4.6.0

What's Changed

Uh oh!

VeckoTheGecko commented Oct 8, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

dependabot bot commented on behalf of github Oct 15, 2024

Uh oh!

dependabot bot commented on behalf of github Nov 11, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

dependabot bot commented on behalf of github Oct 7, 2024 •

edited

Loading

VeckoTheGecko commented Oct 8, 2024 •

edited

Loading