build(dependencies): bump the github-actions group across 1 directory with 8 updates #8
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the github-actions group with 8 updates in the / directory:
2.7.0
2.8.1
4.1.1
4.1.7
4.3.1
4.3.3
4.1.2
4.1.7
3.0.0
3.3.0
5.1.0
6.2.0
12.2676.0
12.2790.0
3.24.3
3.25.10
Updates
step-security/harden-runner
from 2.7.0 to 2.8.1Release notes
Sourced from step-security/harden-runner's releases.
Commits
17d0e2b
Merge pull request #425 from step-security/rc-9bb112d0
Update isGitHubHosted implementationf4f3f44
Merge pull request #407 from step-security/dependabot/github_actions/actions/...7a946b5
Bump actions/dependency-review-action from 3.1.3 to 4.3.275a01c2
Merge pull request #417 from step-security/dependabot/github_actions/step-sec...53413f1
Bump step-security/harden-runner from 2.7.1 to 2.8.0f086349
Merge pull request #416 from step-security/rc-8b9c325d
Update image808a771
Add info about file and process events7171429
Update agentUpdates
actions/checkout
from 4.1.1 to 4.1.7Release notes
Sourced from actions/checkout's releases.
... (truncated)
Changelog
Sourced from actions/checkout's changelog.
... (truncated)
Commits
692973e
Prepare 4.1.7 release (#1775)6ccd57f
Pin actions/checkout's own workflows to a known, good, stable version. (#1776)b17fe1e
Handle hidden refs (#1774)b80ff79
Bump actions/checkout from 3 to 4 (#1697)b1ec302
Bump the minor-npm-dependencies group across 1 directory with 4 updates (#1739)a5ac7e5
Update for 4.1.6 release (#1733)24ed1a3
Check platform for extension (#1732)44c2b7a
README: Suggestuser.email
to be `41898282+github-actions[bot]@users
.norepl...8459bc0
Bump actions/upload-artifact from 2 to 4 (#1695)3f603f6
Bump actions/setup-node from 1 to 4 (#1696)Updates
actions/upload-artifact
from 4.3.1 to 4.3.3Release notes
Sourced from actions/upload-artifact's releases.
Commits
6546280
updating package versionc004fb4
Merge branch 'main' into eggyhead/use-artifact-v2.1.690aba49
updating toolkit artifact dependency to 2.1.6b06cde3
Merge pull request #563 from actions/eggyhead/release-4.3.21746f4a
Revert "updating to release 4.3.2"31685d0
updating to release 4.3.218bf333
Merge pull request #562 from actions/eggyhead/update-artifact-v215dac413b
update package lock versionbb3b4a3
updating package version3e3da83
updating artifact and core dependenciesUpdates
actions/download-artifact
from 4.1.2 to 4.1.7Release notes
Sourced from actions/download-artifact's releases.
Commits
65a9edc
Merge pull request #325 from bethanyj28/mainfdd1595
licensedc13dba1
update@actions/artifact
dependency0daa75e
Merge pull request #324 from actions/eggyhead/use-artifact-v2.1.69c19ed7
Merge branch 'main' into eggyhead/use-artifact-v2.1.63d3ea87
updating license89af5db
updating artifact package v2.1.6b4aefff
Merge pull request #323 from actions/eggyhead/update-artifact-v2158caf195
package lock updated7a2ec4
updating package versionUpdates
docker/setup-buildx-action
from 3.0.0 to 3.3.0Release notes
Sourced from docker/setup-buildx-action's releases.
Commits
d70bba7
Merge pull request #307 from crazy-max/bump-toolkit7638634
chore: update generated contentc68420f
bump@docker/actions-toolkit
from 0.19.0 to 0.20.02b51285
Merge pull request #306 from docker/dependabot/npm_and_yarn/docker/actions-to...0f00370
chore: update generated content11c9683
build(deps): bump@docker/actions-toolkit
from 0.18.0 to 0.19.056a16b8
Merge pull request #303 from crazy-max/fix-inputsc23f46e
chore: update generated contentf876da6
rename and align config inputsb7cf918
Merge pull request #304 from crazy-max/rm-docs-dirUpdates
docker/build-push-action
from 5.1.0 to 6.2.0Release notes
Sourced from docker/build-push-action's releases.
... (truncated)
Commits
1556069
Merge pull request #1158 from docker/dependabot/npm_and_yarn/docker/actions-t...57e1d34
chore: update generated content309982e
chore(deps): Bump@docker/actions-toolkit
from 0.27.0 to 0.28.09476c25
Merge pull request #1153 from crazy-max/export-retention97be5a4
chore: update generated content9cac6c8
use default retention days for build export artifact31159d4
Merge pull request #1149 from docker/dependabot/npm_and_yarn/docker/actions-t...07e1c3e
chore: update generated contentf7febd6
chore(deps): Bump@docker/actions-toolkit
from 0.26.2 to 0.27.0f6010ea
Merge pull request #1147 from docker/dependabot/npm_and_yarn/docker/actions-t...Updates
bridgecrewio/checkov-action
from 12.2676.0 to 12.2790.0Commits
88470c4
Bump checkov container version to 3.2.149c85d40d
Bump checkov container version to 3.2.1480e3571b
Bump checkov container version to 3.2.147ebff1eb
Bump checkov container version to 3.2.1454a43ee1
Bump checkov container version to 3.2.144d3328ad
Bump checkov container version to 3.2.1418b9814d
Bump checkov container version to 3.2.14014c88c2
Bump checkov container version to 3.2.13952f5b59
Bump checkov container version to 3.2.1382d2a17c
Bump checkov container version to 3.2.137Updates
github/codeql-action
from 3.24.3 to 3.25.10Changelog
Sourced from github/codeql-action's changelog.
... (truncated)
Commits
23acc5c
Merge pull request #2337 from github/update-v3.25.10-5bf6dad359b72dbd
Update changelog for v3.25.105bf6dad
Merge pull request #2329 from github/henrymercer/csharp-buildless-rollback-me...feec81c
Merge branch 'main' into henrymercer/csharp-buildless-rollback-mechanism789b5f8
Merge pull request #2328 from github/henrymercer/direct-tracing-fixc36b5fc
Merge pull request #2327 from github/update-bundle/codeql-bundle-v2.17.5b3642aa
Merge branch 'main' into update-bundle/codeql-bundle-v2.17.51fc6e20
Merge pull request #2335 from github/mergeback/v3.25.9-to-main-530d4fea356bee4
Update checked-in dependencies385808c
Update changelog and version after v3.25.9Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditions