Skip to content
This repository has been archived by the owner on Oct 4, 2024. It is now read-only.

gh-action: bump the all group across 1 directory with 5 updates #83

Closed
wants to merge 1 commit into from
Closed

gh-action: bump the all group across 1 directory with 5 updates #83

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 3, 2024

Bumps the all group with 5 updates in the / directory:

Package From To
actions/checkout 3 4
actions/setup-node 3 4
github/codeql-action 2 3
cloudflare/wrangler-action 2.0.0 3.8.0
softprops/action-gh-release 1 2

Updates actions/checkout from 3 to 4

Release notes

Sourced from actions/checkout's releases.

v4.0.0

What's Changed

New Contributors

Full Changelog: actions/checkout@v3...v4.0.0

v3.6.0

What's Changed

New Contributors

Full Changelog: actions/checkout@v3.5.3...v3.6.0

v3.5.3

What's Changed

New Contributors

Full Changelog: actions/checkout@v3...v3.5.3

v3.5.2

What's Changed

Full Changelog: actions/checkout@v3.5.1...v3.5.2

v3.5.1

What's Changed

New Contributors

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

Changelog

v4.2.0

v4.1.7

v4.1.6

v4.1.5

v4.1.4

v4.1.3

v4.1.2

v4.1.1

v4.1.0

v4.0.0

v3.6.0

... (truncated)

Commits

Updates actions/setup-node from 3 to 4

Release notes

Sourced from actions/setup-node's releases.

v4.0.0

What's Changed

In scope of this release we changed version of node runtime for action from node16 to node20 and updated dependencies in actions/setup-node#866

Besides, release contains such changes as:

New Contributors

Full Changelog: actions/setup-node@v3...v4.0.0

v3.8.2

What's Changed

Full Changelog: actions/setup-node@v3...v3.8.2

v3.8.1

What's Changed

In scope of this release, the filter was removed within the cache-save step by @​dmitry-shibanov in actions/setup-node#831. It is filtered and checked in the toolkit/cache library.

Full Changelog: actions/setup-node@v3...v3.8.1

v3.8.0

What's Changed

Bug fixes:

Feature implementations:

Documentation changes:

Update dependencies:

... (truncated)

Commits

Updates github/codeql-action from 2 to 3

Release notes

Sourced from github/codeql-action's releases.

CodeQL Bundle v2.19.1

Bundles CodeQL CLI v2.19.1

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.19.1:

CodeQL Bundle v2.19.0

Bundles CodeQL CLI v2.19.0

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.19.0:

CodeQL Bundle v2.18.4

Bundles CodeQL CLI v2.18.4

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.18.4:

... (truncated)

Changelog

Sourced from github/codeql-action's changelog.

Commits
  • 4d015b8 Fall back to gzip if zstd fails
  • 07e8133 Merge pull request #2501 from github/henrymercer/missing-autobuild-config-error
  • 662c71a Check telemetry in PR check to ensure .tar.zst downloaded
  • a7a6a69 Determine zstd availability earlier on to simplify log
  • db98c27 Gate zstd enablement on tar version
  • b1ca017 Add PR check for zstd bundle
  • 990feb5 Catch gotcha in PR check workflow generator
  • ac3fca3 Use zstd bundle by default when feature flag enabled
  • e7309d2 Add feature flag for using zstd bundle
  • e0a151e Fix inconsistency in autobuild error tracking
  • Additional commits viewable in compare view

Updates cloudflare/wrangler-action from 2.0.0 to 3.8.0

Release notes

Sourced from cloudflare/wrangler-action's releases.

v3.8.0

Minor Changes

v3.7.0

Minor Changes

v3.6.1

Patch Changes

v3.6.0

Minor Changes

v3.5.0

Minor Changes

  • #255 31a6263ef3ec73ff2d03cb4c0260379f96f7598c Thanks @​matthewdavidrodgers! - Stop racing secret uploads

    For up to date versions of wrangler, secrets are uploaded via the 'secret:bulk' command, which batches updates in a single API call.

    For versions of wrangler without that capability, the action falls back to the single 'secret put' command for each secret. It races all these with a Promise.all()

    Unfortunately, the single secret API cannot handle concurrency - at best, these calls have to wait on one another, holding requests open all the while. Often it times out and errors.

    This fixes the legacy secret upload errors by making these calls serially instead of concurrently.

v3.4.1

Patch Changes

v3.4.0

Minor Changes

  • #213 d13856dfc92816473ebf47f66e263a2668a97896 Thanks @​GrantBirki! - This change introduces three new GitHub Actions output variables. These variables are as follows:

    • command-output - contains the string results of stdout
    • command-stderr - contains the string results of stderr
    • deployment-url - contains the string results of the URL that was deployed (ex: https://<your_pages_site>.pages.dev)

    These output variables are intended to be used by more advanced workflows that require the output results or deployment url from Wrangler commands in subsequent workflow steps.

Patch Changes

... (truncated)

Changelog

Sourced from cloudflare/wrangler-action's changelog.

3.8.0

Minor Changes

3.7.0

Minor Changes

3.6.1

Patch Changes

3.6.0

Minor Changes

3.5.0

Minor Changes

  • #255 31a6263ef3ec73ff2d03cb4c0260379f96f7598c Thanks @​matthewdavidrodgers! - Stop racing secret uploads

    For up to date versions of wrangler, secrets are uploaded via the 'secret:bulk' command, which batches updates in a single API call.

    For versions of wrangler without that capability, the action falls back to the single 'secret put' command for each secret. It races all these with a Promise.all()

    Unfortunately, the single secret API cannot handle concurrency - at best, these calls have to wait on one another, holding requests open all the while. Often it times out and errors.

    This fixes the legacy secret upload errors by making these calls serially instead of concurrently.

3.4.1

Patch Changes

3.4.0

Minor Changes

... (truncated)

Commits
  • 168bc28 Automatic compilation
  • 66334df Merge pull request #297 from cloudflare/changeset-release/main
  • 9966912 Version Packages
  • 7b9aec5 Merge pull request #291 from Ambroos/add-pages-deployment-alias
  • bcff538 Merge pull request #294 from Cherry/chore/bun-lockfile-new
  • c15498d Merge pull request #293 from cloudflare/hrushikeshdeshpande-updating-semgrep-...
  • 8bc5c5f chore: add support for new bun.lock
  • ac21b71 Updating semgrep docker image for the exising semgrep workflow.
  • f111269 Merge pull request #292 from cloudflare/hrushikeshdeshpande-updating-semgrep-yml
  • 570d521 Update semgrep.yml
  • Additional commits viewable in compare view

Updates softprops/action-gh-release from 1 to 2

Release notes

Sourced from softprops/action-gh-release's releases.

v2.0.0

  • update actions.yml declaration to node20 to address warnings
Changelog

Sourced from softprops/action-gh-release's changelog.

0.1.12

  • fix bug leading to empty strings subsituted for inputs users don't provide breaking api calls #144
Commits
  • c062e08 release 2.0.8
  • 380635c chore(deps): bump @​actions/github from 5.1.1 to 6.0.0 (#470)
  • 20adb42 refactor: write jest config in ts (#485)
  • f808f15 chore(deps): bump glob from 10.4.2 to 11.0.0 (#477)
  • 6145241 chore(deps): bump @​octokit/plugin-throttling from 9.3.0 to 9.3.1 (#484)
  • 4ac522d chore(deps): bump @​types/node from 20.14.9 to 20.14.11 (#483)
  • 25849b1 chore(deps): bump prettier from 2.8.0 to 3.3.3 (#480)
  • 6206056 chore: update dependabot commit msg
  • 39aadf1 chore: run frizbee actions .github/workflows/
  • 6f3ab65 chore: update dist file
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
gh-action: bump the all group across 1 directory with 5 updates
b6561c7 
Bumps the all group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout) | `3` | `4` |
| [actions/setup-node](https://github.com/actions/setup-node) | `3` | `4` |
| [github/codeql-action](https://github.com/github/codeql-action) | `2` | `3` |
| [cloudflare/wrangler-action](https://github.com/cloudflare/wrangler-action) | `2.0.0` | `3.8.0` |
| [softprops/action-gh-release](https://github.com/softprops/action-gh-release) | `1` | `2` |



Updates `actions/checkout` from 3 to 4
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@v3...v4)

Updates `actions/setup-node` from 3 to 4
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](actions/setup-node@v3...v4)

Updates `github/codeql-action` from 2 to 3
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@v2...v3)

Updates `cloudflare/wrangler-action` from 2.0.0 to 3.8.0
- [Release notes](https://github.com/cloudflare/wrangler-action/releases)
- [Changelog](https://github.com/cloudflare/wrangler-action/blob/main/CHANGELOG.md)
- [Commits](cloudflare/wrangler-action@2.0.0...v3.8.0)

Updates `softprops/action-gh-release` from 1 to 2
- [Release notes](https://github.com/softprops/action-gh-release/releases)
- [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md)
- [Commits](softprops/action-gh-release@v1...v2)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all
- dependency-name: cloudflare/wrangler-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all
- dependency-name: softprops/action-gh-release
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the chore Naming, organizing folder structure, and less impactful tasks. label Oct 3, 2024
@dependabot dependabot bot mentioned this pull request Oct 3, 2024
Closed
@ricardobrg ricardobrg closed this Oct 4, 2024
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 4, 2024

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

@dependabot dependabot bot deleted the dependabot/github_actions/all-47037a1cfd branch October 4, 2024 13:10
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
chore Naming, organizing folder structure, and less impactful tasks.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@ricardobrg