build(dependencies): bump the github-actions group with 7 updates [skip ci] #52
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the github-actions group with 7 updates:
2.7.0
2.8.1
3
4
3
4
4.1.2
4.1.7
3
5
2
3
2
4
Updates
step-security/harden-runner
from 2.7.0 to 2.8.1Release notes
Sourced from step-security/harden-runner's releases.
Commits
17d0e2b
Merge pull request #425 from step-security/rc-9bb112d0
Update isGitHubHosted implementationf4f3f44
Merge pull request #407 from step-security/dependabot/github_actions/actions/...7a946b5
Bump actions/dependency-review-action from 3.1.3 to 4.3.275a01c2
Merge pull request #417 from step-security/dependabot/github_actions/step-sec...53413f1
Bump step-security/harden-runner from 2.7.1 to 2.8.0f086349
Merge pull request #416 from step-security/rc-8b9c325d
Update image808a771
Add info about file and process events7171429
Update agentUpdates
actions/checkout
from 3 to 4Release notes
Sourced from actions/checkout's releases.
... (truncated)
Commits
692973e
Prepare 4.1.7 release (#1775)6ccd57f
Pin actions/checkout's own workflows to a known, good, stable version. (#1776)b17fe1e
Handle hidden refs (#1774)b80ff79
Bump actions/checkout from 3 to 4 (#1697)b1ec302
Bump the minor-npm-dependencies group across 1 directory with 4 updates (#1739)a5ac7e5
Update for 4.1.6 release (#1733)24ed1a3
Check platform for extension (#1732)44c2b7a
README: Suggestuser.email
to be `41898282+github-actions[bot]@users
.norepl...8459bc0
Bump actions/upload-artifact from 2 to 4 (#1695)3f603f6
Bump actions/setup-node from 1 to 4 (#1696)Updates
actions/setup-node
from 3 to 4Release notes
Sourced from actions/setup-node's releases.
... (truncated)
Commits
60edb5d
Add support for arm64 Windows (#927)d86ebcd
Add support forvolta.extends
(#921)b39b52d
Fix node-version-file interprets entire package.json as a version (#865)7247617
Addpackage.json
tonode-version-file
list of examples. (#879)f3ec4ca
Fix README.md (#898)ec97f37
Add fix for cache (#917)5ef044f
Update reusable workflows to use Node.js v20 (#889)c45882a
update to setup-node@v4 in docs (#884)ee36e8b
Ignore engines check in Yarn 1 e2e-cache tests (#882)8f152de
Update actions/checkout for documentation and yaml (#876)Updates
actions/download-artifact
from 4.1.2 to 4.1.7Release notes
Sourced from actions/download-artifact's releases.
Commits
65a9edc
Merge pull request #325 from bethanyj28/mainfdd1595
licensedc13dba1
update@actions/artifact
dependency0daa75e
Merge pull request #324 from actions/eggyhead/use-artifact-v2.1.69c19ed7
Merge branch 'main' into eggyhead/use-artifact-v2.1.63d3ea87
updating license89af5db
updating artifact package v2.1.6b4aefff
Merge pull request #323 from actions/eggyhead/update-artifact-v2158caf195
package lock updated7a2ec4
updating package versionUpdates
actions/configure-pages
from 3 to 5Release notes
Sourced from actions/configure-pages's releases.
... (truncated)
Commits
983d773
Merge pull request #139 from actions/config-auto-detect9cf6e24
Tweak commentf304bd8
Update distributables215cd51
Attempt to detect existing config files matching the expected basename plus o...e9382ac
Front-load the file extension warning7781abd
Merge pull request #138 from actions/error-utilsfc47e3c
Update distributables9c9f8a2
Update tests to use the Octokit RequestError class9a4705d
Update distributablesf6ded38
Fix syntax error and formattingUpdates
actions/upload-pages-artifact
from 2 to 3Release notes
Sourced from actions/upload-pages-artifact's releases.
Commits
56afc60
Merge pull request #94 from SilverRainZ/maind12fdfb
Merge branch 'main' into mainaef5542
Merge pull request #88 from uiolee/patch-129cedd7
Merge branch 'main' into patch-1a69c22e
Merge pull request #92 from actions/dependabot/github_actions/non-breaking-ch...794e304
Group tar's output to prevent it from messing up logs14007f6
Bump the non-breaking-changes group with 1 update0191170
Merge pull request #91 from actions/dependabot-grouping0e7832d
Update Dependabot config to group non-breaking changes1a6d9fa
Update README.mdUpdates
actions/deploy-pages
from 2 to 4Release notes
Sourced from actions/deploy-pages's releases.
... (truncated)
Commits
d6db901
Merge pull request #324 from actions/error-message-request-id055f425
compile changes5ab929b
Include request id in the error message of an error response3ff795b
Merge pull request #318 from actions/dependabot/npm_and_yarn/non-breaking-cha...f5a2f0d
Update distributables after Dependabot 🤖1364cde
Bump the non-breaking-changes group with 2 updates2ed07f7
Merge pull request #316 from actions/dependabot/npm_and_yarn/non-breaking-cha...d5a892b
Bump the non-breaking-changes group with 1 update05977f5
Merge pull request #314 from actions/dependabot/npm_and_yarn/non-breaking-cha...9414024
Update distributables after Dependabot 🤖Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditions