dependabot[bot]
fd34782bcc
Bump actions/setup-java from 4.7.0 to 4.7.1 ( #3339 )
...
Bumps [actions/setup-java](https://github.com/actions/setup-java ) from
4.7.0 to 4.7.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/setup-java/releases ">actions/setup-java's
releases</a>.</em></p>
<blockquote>
<h2>v4.7.1</h2>
<h2>What's Changed</h2>
<h3>Documentation changes</h3>
<ul>
<li>Add Documentation to Recommend Using GraalVM JDK 17 Version to
17.0.12 to Align with GFTC License Terms by <a
href="https://github.com/aparnajyothi-y "><code>@aparnajyothi-y</code></a>
in <a
href="https://redirect.github.com/actions/setup-java/pull/704 ">actions/setup-java#704</a></li>
<li>Remove duplicated GraalVM section in documentation by <a
href="https://github.com/Marcono1234 "><code>@Marcono1234</code></a> in
<a
href="https://redirect.github.com/actions/setup-java/pull/716 ">actions/setup-java#716</a></li>
</ul>
<h3>Dependency updates:</h3>
<ul>
<li>Upgrade <code>@action/cache</code> from 4.0.0 to 4.0.2 by <a
href="https://github.com/aparnajyothi-y "><code>@aparnajyothi-y</code></a>
in <a
href="https://redirect.github.com/actions/setup-java/pull/766 ">actions/setup-java#766</a></li>
<li>Upgrade <code>@actions/glob</code> from 0.4.0 to 0.5.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/actions/setup-java/pull/744 ">actions/setup-java#744</a></li>
<li>Upgrade ts-jest from 29.1.2 to 29.2.5 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/actions/setup-java/pull/743 ">actions/setup-java#743</a></li>
<li>Upgrade <code>@action/cache</code> to 4.0.3 by <a
href="https://github.com/aparnajyothi-y "><code>@aparnajyothi-y</code></a>
in <a
href="https://redirect.github.com/actions/setup-java/pull/773 ">actions/setup-java#773</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/setup-java/compare/v4...v4.7.1 ">https://github.com/actions/setup-java/compare/v4...v4.7.1 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="c5195efecfhttps://redirect.github.com/actions/setup-java/issues/773 ">#773</a>)</li>
<li><a
href="dd38875f93https://redirect.github.com/actions/setup-java/issues/743 ">#743</a>)</li>
<li><a
href="148017a9b0https://redirect.github.com/actions/setup-java/issues/744 ">#744</a>)</li>
<li><a
href="3b6c050358https://redirect.github.com/actions/setup-java/issues/716 ">#716</a>)</li>
<li><a
href="b8ebb8ba1dhttps://redirect.github.com/actions/setup-java/issues/766 ">#766</a>)</li>
<li><a
href="799ee7c97e3a4f6e1af5...c5195efecfhttps://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-java&package-manager=github_actions&previous-version=4.7.0&new-version=4.7.1 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-04-12 17:03:17 +01:00
dependabot[bot]
076a2d5e6a
Bump actions/create-github-app-token from 1.12.0 to 2.0.2 ( #3304 )
...
Bumps
[actions/create-github-app-token](https://github.com/actions/create-github-app-token )
from 1.12.0 to 2.0.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/create-github-app-token/releases ">actions/create-github-app-token's
releases</a>.</em></p>
<blockquote>
<h2>v2.0.2</h2>
<h2><a
href="https://github.com/actions/create-github-app-token/compare/v2.0.1...v2.0.2 ">2.0.2</a>
(2025-04-03)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>improve log messages for token creation (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/226 ">#226</a>)
(<a
href="eaef29498fhttps://github.com/actions/create-github-app-token/compare/v2.0.0...v2.0.1 ">2.0.1</a>
(2025-04-03)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> bump the production-dependencies group across
1 directory with 2 updates (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/228 ">#228</a>)
(<a
href="2411bfc792https://github.com/actions/create-github-app-token/compare/v1.12.0...v2.0.0 ">2.0.0</a>
(2025-04-03)</h1>
<ul>
<li>feat!: remove deprecated inputs (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/213 ">#213</a>)
(<a
href="5cc811bc403ff1caaa28eaef29498fhttps://redirect.github.com/actions/create-github-app-token/issues/226 ">#226</a>)</li>
<li><a
href="86e24964d62411bfc792f17d09a7b5https://redirect.github.com/actions/create-github-app-token/issues/225 ">#225</a>)</li>
<li><a
href="e250d17c7ahttps://redirect.github.com/actions/create-github-app-token/issues/230 ">#230</a>)</li>
<li><a
href="ed258b491a5c652ca71560ee75db78https://redirect.github.com/actions/create-github-app-token/issues/229 ">#229</a>)</li>
<li><a
href="064492a9a1d72941d797...3ff1caaa28https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/create-github-app-token&package-manager=github_actions&previous-version=1.12.0&new-version=2.0.2 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-04-09 09:54:33 +01:00
dependabot[bot]
2938fcc044
Bump step-security/harden-runner from 2.11.0 to 2.11.1 ( #3285 )
...
Bumps
[step-security/harden-runner](https://github.com/step-security/harden-runner )
from 2.11.0 to 2.11.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/step-security/harden-runner/releases ">step-security/harden-runner's
releases</a>.</em></p>
<blockquote>
<h2>v2.11.1</h2>
<h2>What's Changed</h2>
<ul>
<li>cache: add support for GitHub Actions cache v2 by <a
href="https://github.com/h0x0er "><code>@h0x0er</code></a> in <a
href="https://redirect.github.com/step-security/harden-runner/pull/529 ">step-security/harden-runner#529</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/step-security/harden-runner/compare/v2...v2.11.1 ">https://github.com/step-security/harden-runner/compare/v2...v2.11.1 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="c6295a65d1https://redirect.github.com/step-security/harden-runner/issues/530 ">#530</a>
from step-security/rc-19</li>
<li><a
href="3e118b145bb38e918ba8https://redirect.github.com/step-security/harden-runner/issues/529 ">#529</a>
from h0x0er/jatin/cache-fix</li>
<li><a
href="0664d30cdab131ca5ebfhttps://redirect.github.com/step-security/harden-runner/issues/524 ">#524</a>
from step-security/fix/security/GHSA-968p-4wvh-cqc8</li>
<li><a
href="2dc9579753f054d811b5https://redirect.github.com/step-security/harden-runner/issues/522 ">#522</a>)</li>
<li><a
href="8a09271fedhttps://redirect.github.com/step-security/harden-runner/issues/520 ">#520</a>)</li>
<li><a
href="6ec6af7d62https://redirect.github.com/step-security/harden-runner/issues/518 ">#518</a>)</li>
<li><a
href="539365ba33https://redirect.github.com/step-security/harden-runner/issues/516 ">#516</a>
from vorburger/patch-1</li>
<li>Additional commits viewable in <a
href="4d991eb9b9...c6295a65d1https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=step-security/harden-runner&package-manager=github_actions&previous-version=2.11.0&new-version=2.11.1 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-04-02 16:53:13 +01:00
dependabot[bot]
30d7053150
Bump actions/create-github-app-token from 1.11.7 to 1.12.0 ( #3279 )
...
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps
[actions/create-github-app-token](https://github.com/actions/create-github-app-token )
from 1.11.7 to 1.12.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/create-github-app-token/releases ">actions/create-github-app-token's
releases</a>.</em></p>
<blockquote>
<h2>v1.12.0</h2>
<h1><a
href="https://github.com/actions/create-github-app-token/compare/v1.11.7...v1.12.0 ">1.12.0</a>
(2025-03-27)</h1>
<h3>Features</h3>
<ul>
<li>permissions (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/168 ">#168</a>)
(<a
href="0e0aa99a86d72941d7970e0aa99a86https://redirect.github.com/actions/create-github-app-token/issues/168 ">#168</a>)</li>
<li><a
href="f577941506https://redirect.github.com/actions/create-github-app-token/issues/215 ">#215</a>)</li>
<li>See full diff in <a
href="af35edadc0...d72941d797https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/create-github-app-token&package-manager=github_actions&previous-version=1.11.7&new-version=1.12.0 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-04-02 13:41:56 +01:00
dependabot[bot]
472d0b14db
Bump gradle/actions from 4.3.0 to 4.3.1 ( #3276 )
...
Bumps [gradle/actions](https://github.com/gradle/actions ) from 4.3.0 to
4.3.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/gradle/actions/releases ">gradle/actions's
releases</a>.</em></p>
<blockquote>
<h2>v4.3.1</h2>
<p>This release fixes a couple of minor issues, as well as keeping
dependencies up to date.</p>
<h2>Fixed issues</h2>
<ul>
<li>The develocity-allow-untrusted-server parameter should be honoured
when fetching short-lived access tokens <a
href="https://redirect.github.com/gradle/actions/issues/583 ">#583</a></li>
<li>Build summary may incorrectly report build success <a
href="https://redirect.github.com/gradle/actions/issues/415 ">#415</a></li>
</ul>
<h2>What's Changed</h2>
<ul>
<li>Update develocity-injection init script to v1.1.1 by <a
href="https://github.com/bot-githubaction "><code>@bot-githubaction</code></a>
in <a
href="https://redirect.github.com/gradle/actions/pull/545 ">gradle/actions#545</a></li>
<li>Bump the github-actions group across 2 directories with 3 updates by
<a href="https://github.com/dependabot "><code>@dependabot</code></a> in
<a
href="https://redirect.github.com/gradle/actions/pull/547 ">gradle/actions#547</a></li>
<li>Bump the npm-dependencies group in /sources with 2 updates by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/548 ">gradle/actions#548</a></li>
<li>Update develocity-injection init script to v1.2 by <a
href="https://github.com/bot-githubaction "><code>@bot-githubaction</code></a>
in <a
href="https://redirect.github.com/gradle/actions/pull/550 ">gradle/actions#550</a></li>
<li>Bump the github-actions group across 1 directory with 2 updates by
<a href="https://github.com/dependabot "><code>@dependabot</code></a> in
<a
href="https://redirect.github.com/gradle/actions/pull/552 ">gradle/actions#552</a></li>
<li>Bump the npm-dependencies group across 1 directory with 5 updates by
<a href="https://github.com/dependabot "><code>@dependabot</code></a> in
<a
href="https://redirect.github.com/gradle/actions/pull/558 ">gradle/actions#558</a></li>
<li>Update known wrapper checksums by <a
href="https://github.com/github-actions "><code>@github-actions</code></a>
in <a
href="https://redirect.github.com/gradle/actions/pull/560 ">gradle/actions#560</a></li>
<li>Bump references to Develocity Gradle plugin from 3.19.1 to 3.19.2 by
<a
href="https://github.com/bot-githubaction "><code>@bot-githubaction</code></a>
in <a
href="https://redirect.github.com/gradle/actions/pull/561 ">gradle/actions#561</a></li>
<li>Catch more build failures in job summary by <a
href="https://github.com/bigdaz "><code>@bigdaz</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/571 ">gradle/actions#571</a></li>
<li>Scope captured build failures by <a
href="https://github.com/erichaagdev "><code>@erichaagdev</code></a> in
<a
href="https://redirect.github.com/gradle/actions/pull/574 ">gradle/actions#574</a></li>
<li>Ignore SSL certificate validation when fetching Develocity
short-lived access token if
<code>develocity-allow-untrusted-server</code> is enabled by <a
href="https://github.com/remcomokveld "><code>@remcomokveld</code></a>
in <a
href="https://redirect.github.com/gradle/actions/pull/575 ">gradle/actions#575</a></li>
<li>Dependency updates by <a
href="https://github.com/bigdaz "><code>@bigdaz</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/579 ">gradle/actions#579</a></li>
<li>Bump com.google.guava:guava from 33.4.5-jre to 33.4.6-jre in
/.github/workflow-samples/kotlin-dsl in the gradle group across 1
directory by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/580 ">gradle/actions#580</a></li>
<li>Bump the github-actions group across 2 directories with 2 updates by
<a href="https://github.com/dependabot "><code>@dependabot</code></a> in
<a
href="https://redirect.github.com/gradle/actions/pull/582 ">gradle/actions#582</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/erichaagdev "><code>@erichaagdev</code></a>
made their first contribution in <a
href="https://redirect.github.com/gradle/actions/pull/574 ">gradle/actions#574</a></li>
<li><a
href="https://github.com/remcomokveld "><code>@remcomokveld</code></a>
made their first contribution in <a
href="https://redirect.github.com/gradle/actions/pull/575 ">gradle/actions#575</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/gradle/actions/compare/v4.3.0...v4.3.1 ">https://github.com/gradle/actions/compare/v4.3.0...v4.3.1 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="06832c7b30b7b029e5c4a0bd2ca5cb7974541d55https://redirect.github.com/gradle/actions/issues/579 ">#579</a>)</li>
<li><a
href="a581639303acd2925667aa88309fbd086c9e4b25d31b81842d2778b4a12094baf225fe...06832c7b30https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gradle/actions&package-manager=github_actions&previous-version=4.3.0&new-version=4.3.1 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-04-02 13:40:34 +01:00
dependabot[bot]
1f8b5ce41e
Bump actions/create-github-app-token from 1.11.6 to 1.11.7 ( #3227 )
...
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps
[actions/create-github-app-token](https://github.com/actions/create-github-app-token )
from 1.11.6 to 1.11.7.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/create-github-app-token/releases ">actions/create-github-app-token's
releases</a>.</em></p>
<blockquote>
<h2>v1.11.7</h2>
<h2><a
href="https://github.com/actions/create-github-app-token/compare/v1.11.6...v1.11.7 ">1.11.7</a>
(2025-03-20)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> bump undici from 5.28.4 to 7.5.0 (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/214 ">#214</a>)
(<a
href="a24b46a462af35edadc0a24b46a462https://redirect.github.com/actions/create-github-app-token/issues/214 ">#214</a>)</li>
<li>See full diff in <a
href="21cfef2b49...af35edadc0https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/create-github-app-token&package-manager=github_actions&previous-version=1.11.6&new-version=1.11.7 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-24 10:37:23 +00:00
dependabot[bot]
b2ca702301
Bump actions/upload-artifact from 4.6.1 to 4.6.2 ( #3223 )
...
Bumps
[actions/upload-artifact](https://github.com/actions/upload-artifact )
from 4.6.1 to 4.6.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/upload-artifact/releases ">actions/upload-artifact's
releases</a>.</em></p>
<blockquote>
<h2>v4.6.2</h2>
<h2>What's Changed</h2>
<ul>
<li>Update to use artifact 2.3.2 package & prepare for new
upload-artifact release by <a
href="https://github.com/salmanmkc "><code>@salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/upload-artifact/pull/685 ">actions/upload-artifact#685</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/salmanmkc "><code>@salmanmkc</code></a>
made their first contribution in <a
href="https://redirect.github.com/actions/upload-artifact/pull/685 ">actions/upload-artifact#685</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/upload-artifact/compare/v4...v4.6.2 ">https://github.com/actions/upload-artifact/compare/v4...v4.6.2 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ea165f8d65https://redirect.github.com/actions/upload-artifact/issues/685 ">#685</a>
from salmanmkc/salmanmkc/3-new-upload-artifacts-release</li>
<li><a
href="08396203c14cec3d8aa0...ea165f8d65https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=4.6.1&new-version=4.6.2 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-24 10:21:36 +00:00
dependabot[bot]
d65974a7e1
Bump peter-evans/create-pull-request from 7.0.7 to 7.0.8 ( #3145 )
...
Bumps
[peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request )
from 7.0.7 to 7.0.8.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/peter-evans/create-pull-request/releases ">peter-evans/create-pull-request's
releases</a>.</em></p>
<blockquote>
<h2>Create Pull Request v7.0.8</h2>
<h2>What's Changed</h2>
<ul>
<li>build(deps-dev): bump ts-jest from 29.2.5 to 29.2.6 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3751 ">peter-evans/create-pull-request#3751</a></li>
<li>build(deps-dev): bump eslint-import-resolver-typescript from 3.8.1
to 3.8.3 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3752 ">peter-evans/create-pull-request#3752</a></li>
<li>build(deps): bump <code>@octokit/plugin-paginate-rest</code> from
11.4.2 to 11.4.3 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3753 ">peter-evans/create-pull-request#3753</a></li>
<li>build(deps-dev): bump prettier from 3.5.1 to 3.5.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3754 ">peter-evans/create-pull-request#3754</a></li>
<li>fix: suppress output for some git operations by <a
href="https://github.com/peter-evans "><code>@peter-evans</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3776 ">peter-evans/create-pull-request#3776</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/peter-evans/create-pull-request/compare/v7.0.7...v7.0.8 ">https://github.com/peter-evans/create-pull-request/compare/v7.0.7...v7.0.8 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="271a8d0340https://redirect.github.com/peter-evans/create-pull-request/issues/3776 ">#3776</a>)</li>
<li><a
href="6f7efd1c2413c47c5747https://redirect.github.com/peter-evans/create-pull-request/issues/3754 ">#3754</a>)</li>
<li><a
href="63e58290d7https://redirect.github.com/peter-evans/create-pull-request/issues/3753 ">#3753</a>)</li>
<li><a
href="a92c90fcabhttps://redirect.github.com/peter-evans/create-pull-request/issues/3752 ">#3752</a>)</li>
<li><a
href="b23b62d487https://redirect.github.com/peter-evans/create-pull-request/issues/3751 ">#3751</a>)</li>
<li>See full diff in <a
href="dd2324fc52...271a8d0340https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=peter-evans/create-pull-request&package-manager=github_actions&previous-version=7.0.7&new-version=7.0.8 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-10 08:21:15 +00:00
dependabot[bot]
58edc777c0
Bump actions/create-github-app-token from 1.11.5 to 1.11.6 ( #3109 )
...
Bumps
[actions/create-github-app-token](https://github.com/actions/create-github-app-token )
from 1.11.5 to 1.11.6.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/create-github-app-token/releases ">actions/create-github-app-token's
releases</a>.</em></p>
<blockquote>
<h2>v1.11.6</h2>
<h2><a
href="https://github.com/actions/create-github-app-token/compare/v1.11.5...v1.11.6 ">1.11.6</a>
(2025-03-03)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> bump the production-dependencies group with 2
updates (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/210 ">#210</a>)
(<a
href="1ff1dea6a921cfef2b491ff1dea6a9https://redirect.github.com/actions/create-github-app-token/issues/210 ">#210</a>)</li>
<li>See full diff in <a
href="0d564482f0...21cfef2b49https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/create-github-app-token&package-manager=github_actions&previous-version=1.11.5&new-version=1.11.6 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-05 08:39:41 +00:00
dependabot[bot]
f64d7d42d9
Bump peter-evans/create-pull-request from 7.0.6 to 7.0.7 ( #3051 )
...
Bumps
[peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request )
from 7.0.6 to 7.0.7.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/peter-evans/create-pull-request/releases ">peter-evans/create-pull-request's
releases</a>.</em></p>
<blockquote>
<h2>Create Pull Request v7.0.7</h2>
<p>⚙️ Fixes an issue with commit signing where modifications to the same
file in multiple commits squash into the first commit.</p>
<h2>What's Changed</h2>
<ul>
<li>build(deps): bump <code>@octokit/core</code> from 6.1.2 to 6.1.3 by
<a href="https://github.com/dependabot "><code>@dependabot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3593 ">peter-evans/create-pull-request#3593</a></li>
<li>build(deps-dev): bump <code>@types/node</code> from 18.19.68 to
18.19.70 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3594 ">peter-evans/create-pull-request#3594</a></li>
<li>Update distribution by <a
href="https://github.com/actions-bot "><code>@actions-bot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3603 ">peter-evans/create-pull-request#3603</a></li>
<li>build(deps-dev): bump typescript from 5.7.2 to 5.7.3 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3610 ">peter-evans/create-pull-request#3610</a></li>
<li>build(deps): bump octokit dependencies by <a
href="https://github.com/peter-evans "><code>@peter-evans</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3618 ">peter-evans/create-pull-request#3618</a></li>
<li>docs: add workflow tip for showing message via workflow command by
<a href="https://github.com/ybiquitous "><code>@ybiquitous</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3626 ">peter-evans/create-pull-request#3626</a></li>
<li>build(deps-dev): bump eslint-plugin-prettier from 5.2.1 to 5.2.3 by
<a href="https://github.com/dependabot "><code>@dependabot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3628 ">peter-evans/create-pull-request#3628</a></li>
<li>build(deps): bump node-fetch-native from 1.6.4 to 1.6.6 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3627 ">peter-evans/create-pull-request#3627</a></li>
<li>build(deps-dev): bump undici from 6.21.0 to 6.21.1 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3630 ">peter-evans/create-pull-request#3630</a></li>
<li>build(deps-dev): bump <code>@types/node</code> from 18.19.70 to
18.19.71 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3629 ">peter-evans/create-pull-request#3629</a></li>
<li>Update distribution by <a
href="https://github.com/actions-bot "><code>@actions-bot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3647 ">peter-evans/create-pull-request#3647</a></li>
<li>build(deps-dev): bump <code>@types/node</code> from 18.19.71 to
18.19.74 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3657 ">peter-evans/create-pull-request#3657</a></li>
<li>build(deps-dev): bump <code>@types/node</code> from 18.19.74 to
18.19.75 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3663 ">peter-evans/create-pull-request#3663</a></li>
<li>build(deps): bump
<code>@octokit/plugin-rest-endpoint-methods</code> from 13.3.0 to
13.3.1 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3670 ">peter-evans/create-pull-request#3670</a></li>
<li>build(deps-dev): bump prettier from 3.4.2 to 3.5.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3671 ">peter-evans/create-pull-request#3671</a></li>
<li>Update distribution by <a
href="https://github.com/actions-bot "><code>@actions-bot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3680 ">peter-evans/create-pull-request#3680</a></li>
<li>build(deps): bump <code>@octokit/request-error</code> from 6.1.6 to
6.1.7 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3685 ">peter-evans/create-pull-request#3685</a></li>
<li>build(deps): bump <code>@octokit/plugin-paginate-rest</code> from
11.4.0 to 11.4.1 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3688 ">peter-evans/create-pull-request#3688</a></li>
<li>build(deps): bump <code>@octokit/endpoint</code> from 10.1.2 to
10.1.3 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3700 ">peter-evans/create-pull-request#3700</a></li>
<li>Update distribution by <a
href="https://github.com/actions-bot "><code>@actions-bot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3691 ">peter-evans/create-pull-request#3691</a></li>
<li>build(deps-dev): bump prettier from 3.5.0 to 3.5.1 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3709 ">peter-evans/create-pull-request#3709</a></li>
<li>build(deps-dev): bump eslint-import-resolver-typescript from 3.7.0
to 3.8.1 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3710 ">peter-evans/create-pull-request#3710</a></li>
<li>build(deps): bump <code>@octokit/plugin-paginate-rest</code> from
11.4.1 to 11.4.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3713 ">peter-evans/create-pull-request#3713</a></li>
<li>build(deps-dev): bump <code>@types/node</code> from 18.19.75 to
18.19.76 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3712 ">peter-evans/create-pull-request#3712</a></li>
<li>build(deps): bump <code>@octokit/core</code> from 6.1.3 to 6.1.4 by
<a href="https://github.com/dependabot "><code>@dependabot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3711 ">peter-evans/create-pull-request#3711</a></li>
<li>Update distribution by <a
href="https://github.com/actions-bot "><code>@actions-bot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3736 ">peter-evans/create-pull-request#3736</a></li>
<li>Use showFileAtRefBase64 to read per-commit file contents by <a
href="https://github.com/grahamc "><code>@grahamc</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3744 ">peter-evans/create-pull-request#3744</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/ybiquitous "><code>@ybiquitous</code></a> made
their first contribution in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3626 ">peter-evans/create-pull-request#3626</a></li>
<li><a href="https://github.com/grahamc "><code>@grahamc</code></a> made
their first contribution in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3744 ">peter-evans/create-pull-request#3744</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/peter-evans/create-pull-request/compare/v7.0.6...v7.0.7 ">https://github.com/peter-evans/create-pull-request/compare/v7.0.6...v7.0.7 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="dd2324fc52https://redirect.github.com/peter-evans/create-pull-request/issues/3744 ">#3744</a>)</li>
<li><a
href="367180cbdf25575a12f3https://redirect.github.com/peter-evans/create-pull-request/issues/3736 ">#3736</a>)</li>
<li><a
href="a56e7a56e9https://redirect.github.com/peter-evans/create-pull-request/issues/3711 ">#3711</a>)</li>
<li><a
href="eac17dc6a3https://redirect.github.com/peter-evans/create-pull-request/issues/3712 ">#3712</a>)</li>
<li><a
href="a2e685f814https://redirect.github.com/peter-evans/create-pull-request/issues/3713 ">#3713</a>)</li>
<li><a
href="6cfd146ec9https://redirect.github.com/peter-evans/create-pull-request/issues/3710 ">#3710</a>)</li>
<li><a
href="b38e8d38a1https://redirect.github.com/peter-evans/create-pull-request/issues/3709 ">#3709</a>)</li>
<li><a
href="8a41570d99https://redirect.github.com/peter-evans/create-pull-request/issues/3691 ">#3691</a>)</li>
<li><a
href="2e9b4cc10ehttps://redirect.github.com/peter-evans/create-pull-request/issues/3700 ">#3700</a>)</li>
<li>Additional commits viewable in <a
href="67ccf781d6...dd2324fc52https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=peter-evans/create-pull-request&package-manager=github_actions&previous-version=7.0.6&new-version=7.0.7 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-02-25 21:29:06 +00:00
dependabot[bot]
6aad45fcec
Bump actions/upload-artifact from 4.6.0 to 4.6.1 ( #3034 )
...
Bumps
[actions/upload-artifact](https://github.com/actions/upload-artifact )
from 4.6.0 to 4.6.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/upload-artifact/releases ">actions/upload-artifact's
releases</a>.</em></p>
<blockquote>
<h2>v4.6.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Update to use artifact 2.2.2 package by <a
href="https://github.com/yacaovsnc "><code>@yacaovsnc</code></a> in <a
href="https://redirect.github.com/actions/upload-artifact/pull/673 ">actions/upload-artifact#673</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/upload-artifact/compare/v4...v4.6.1 ">https://github.com/actions/upload-artifact/compare/v4...v4.6.1 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4cec3d8aa0https://redirect.github.com/actions/upload-artifact/issues/673 ">#673</a>
from actions/yacaovsnc/artifact_2.2.2</li>
<li><a
href="e9fad966ccb26fd06e9d65c4c4a1dd...4cec3d8aa0https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=4.6.0&new-version=4.6.1 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-02-23 19:55:08 +00:00
dependabot[bot]
880ca6af7f
Bump actions/create-github-app-token from 1.11.3 to 1.11.5 ( #3008 )
...
Bumps
[actions/create-github-app-token](https://github.com/actions/create-github-app-token )
from 1.11.3 to 1.11.5.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/create-github-app-token/releases ">actions/create-github-app-token's
releases</a>.</em></p>
<blockquote>
<h2>v1.11.5</h2>
<h2><a
href="https://github.com/actions/create-github-app-token/compare/v1.11.4...v1.11.5 ">1.11.5</a>
(2025-02-15)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> bump <code>@octokit/request</code> from
9.2.0 to 9.2.2 (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/209 ">#209</a>)
(<a
href="8cedd97af1https://redirect.github.com/actions/create-github-app-token/issues/740 ">#740</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/738 ">#738</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/740 ">#740</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/737 ">#737</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/738 ">#738</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/736 ">#736</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/735 ">#735</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/734 ">#734</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/733 ">#733</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/732 ">#732</a></li>
<li><strong>deps:</strong> bump <code>@octokit/request-error</code>
from 6.1.6 to 6.1.7 (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/208 ">#208</a>)
(<a
href="415f6a523dhttps://redirect.github.com/actions/create-github-app-token/issues/494 ">#494</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/491 ">#491</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/490 ">#490</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/488 ">#488</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/486 ">#486</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/487 ">#487</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/485 ">#485</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/484 ">#484</a></li>
</ul>
<h2>v1.11.4</h2>
<h2><a
href="https://github.com/actions/create-github-app-token/compare/v1.11.3...v1.11.4 ">1.11.4</a>
(2025-02-15)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> bump <code>@octokit/endpoint</code> from
10.1.1 to 10.1.3 (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/207 ">#207</a>)
(<a
href="d30def842ehttps://redirect.github.com/actions/create-github-app-token/issues/507 ">#507</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/514 ">#514</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/512 ">#512</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/511 ">#511</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/509 ">#509</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/508 ">#508</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/507 ">#507</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/506 ">#506</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/505 ">#505</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/504 ">#504</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0d564482f08cedd97af1https://redirect.github.com/actions/create-github-app-token/issues/209 ">#209</a>)</li>
<li><a
href="415f6a523dhttps://redirect.github.com/actions/create-github-app-token/issues/208 ">#208</a>)</li>
<li><a
href="c14f92a8f9d30def842ehttps://redirect.github.com/actions/create-github-app-token/issues/207 ">#207</a>)</li>
<li><a
href="a5be4722a6https://redirect.github.com/actions/create-github-app-token/issues/206 ">#206</a>)</li>
<li>See full diff in <a
href="67e27a7eb7...0d564482f0https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/create-github-app-token&package-manager=github_actions&previous-version=1.11.3&new-version=1.11.5 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Ludy <Ludy87@users.noreply.github.com>
2025-02-22 22:55:09 +00:00
dependabot[bot]
11a5b2e79f
Bump actions/create-github-app-token from 1.11.2 to 1.11.3 ( #2878 )
...
Bumps
[actions/create-github-app-token](https://github.com/actions/create-github-app-token )
from 1.11.2 to 1.11.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/create-github-app-token/releases ">actions/create-github-app-token's
releases</a>.</em></p>
<blockquote>
<h2>v1.11.3</h2>
<h2><a
href="https://github.com/actions/create-github-app-token/compare/v1.11.2...v1.11.3 ">1.11.3</a>
(2025-02-04)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> bump the production-dependencies group with 3
updates (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/203 ">#203</a>)
(<a
href="8e85a3cf14https://redirect.github.com/actions/create-github-app-token/issues/665 ">#665</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/665 ">#665</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/663 ">#663</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/662 ">#662</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/661 ">#661</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/659 ">#659</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/660 ">#660</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/658 ">#658</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/656 ">#656</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/657 ">#657</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/655 ">#655</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/731 ">#731</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/4016 ">nodejs/undici#4016</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/4017 ">nodejs/undici#4017</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/4018 ">nodejs/undici#4018</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/4008 ">nodejs/undici#4008</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3991 ">nodejs/undici#3991</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/4001 ">nodejs/undici#4001</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3980 ">nodejs/undici#3980</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/4003 ">nodejs/undici#4003</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3965 ">nodejs/undici#3965</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/4002 ">nodejs/undici#4002</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/4006 ">nodejs/undici#4006</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3956 ">nodejs/undici#3956</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3964 ">nodejs/undici#3964</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3447 ">nodejs/undici#3447</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/3966 ">#3966</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3967 ">nodejs/undici#3967</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3971 ">nodejs/undici#3971</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3954 ">nodejs/undici#3954</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3972 ">nodejs/undici#3972</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3974 ">nodejs/undici#3974</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3976 ">nodejs/undici#3976</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/3975 ">#3975</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3977 ">nodejs/undici#3977</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3978 ">nodejs/undici#3978</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3981 ">nodejs/undici#3981</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3983 ">nodejs/undici#3983</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3986 ">nodejs/undici#3986</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/4021 ">#4021</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/4018 ">#4018</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/4017 ">#4017</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/4016 ">#4016</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/4008 ">#4008</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/4007 ">#4007</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/4006 ">#4006</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/3965 ">#3965</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="67e27a7eb78e85a3cf14https://redirect.github.com/actions/create-github-app-token/issues/203 ">#203</a>)</li>
<li>See full diff in <a
href="136412a57a...67e27a7eb7https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/create-github-app-token&package-manager=github_actions&previous-version=1.11.2&new-version=1.11.3 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com>
Co-authored-by: Ludy <Ludy87@users.noreply.github.com>
2025-02-19 22:17:42 +00:00
dependabot[bot]
554c112a94
Bump step-security/harden-runner from 2.10.4 to 2.11.0 ( #2980 )
...
Bumps
[step-security/harden-runner](https://github.com/step-security/harden-runner )
from 2.10.4 to 2.11.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/step-security/harden-runner/releases ">step-security/harden-runner's
releases</a>.</em></p>
<blockquote>
<h2>v2.11.0</h2>
<h2>What's Changed</h2>
<p>Release v2.11.0 in <a
href="https://redirect.github.com/step-security/harden-runner/issues/498 ">#498</a>
Harden-Runner Enterprise tier now supports the use of eBPF for DNS
resolution and network call monitoring</p>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/step-security/harden-runner/compare/v2...v2.11.0 ">https://github.com/step-security/harden-runner/compare/v2...v2.11.0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4d991eb9b9https://redirect.github.com/step-security/harden-runner/issues/498 ">#498</a>
from step-security/rc-18</li>
<li><a
href="4ea872f89765d6f6e4ee1034c9a805ab221e2d7a7cb6c2fb52cb605e52c2...4d991eb9b9https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=step-security/harden-runner&package-manager=github_actions&previous-version=2.10.4&new-version=2.11.0 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-02-18 12:07:08 +00:00
dependabot[bot]
b9bfcd59cd
Bump gradle/actions from 4.2.2 to 4.3.0 ( #2870 )
...
Bumps [gradle/actions](https://github.com/gradle/actions ) from 4.2.2 to
4.3.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/gradle/actions/releases ">gradle/actions's
releases</a>.</em></p>
<blockquote>
<h2>v4.3.0</h2>
<p>This release brings some significant improvements to cache-cleanup
and dependency-submission:</p>
<ul>
<li>Cleanup cache entries written by newly released Gradle versions (<a
href="https://redirect.github.com/gradle/actions/issues/436 ">#436</a>)</li>
<li>Use existing Gradle wrapper distribution for cache-cleanup where
possible (<a
href="https://redirect.github.com/gradle/actions/issues/515 ">#515</a>)</li>
<li>Automatically save each dependency-graph that is submitted by
<code>dependency-submission</code> (<a
href="https://redirect.github.com/gradle/actions/issues/519 ">#519</a>)</li>
<li>Fix deprecation warnings emitted by Gradle 8.12+ when:
<ul>
<li>Using <code>build-scan-publish: true</code> or Develocity injection
(<a
href="https://redirect.github.com/gradle/actions/issues/543 ">#543</a>)</li>
<li>Using dependency-submission with an authenticated plugin repository
with Gradle (<a
href="https://redirect.github.com/gradle/actions/issues/541 ">#541</a>)</li>
</ul>
</li>
<li>Fix warning when using toolchain support with Gradle 7.x (<a
href="https://redirect.github.com/gradle/actions/issues/511 ">#511</a>)</li>
</ul>
<h2>What's Changed</h2>
<ul>
<li>Update known wrapper checksums by <a
href="https://github.com/github-actions "><code>@github-actions</code></a>
in <a
href="https://redirect.github.com/gradle/actions/pull/493 ">gradle/actions#493</a></li>
<li>Fix typo in <code>cache-reporting.ts</code> by <a
href="https://github.com/SimonMarquis "><code>@SimonMarquis</code></a>
in <a
href="https://redirect.github.com/gradle/actions/pull/492 ">gradle/actions#492</a></li>
<li>Bump Gradle Wrappers by <a
href="https://github.com/github-actions "><code>@github-actions</code></a>
in <a
href="https://redirect.github.com/gradle/actions/pull/499 ">gradle/actions#499</a></li>
<li>Bump the github-actions group across 3 directories with 7 updates by
<a href="https://github.com/dependabot "><code>@dependabot</code></a> in
<a
href="https://redirect.github.com/gradle/actions/pull/510 ">gradle/actions#510</a></li>
<li>Bump the npm-dependencies group across 1 directory with 6 updates by
<a href="https://github.com/dependabot "><code>@dependabot</code></a> in
<a
href="https://redirect.github.com/gradle/actions/pull/512 ">gradle/actions#512</a></li>
<li>Clean-up missing imports for tests by <a
href="https://github.com/bigdaz "><code>@bigdaz</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/513 ">gradle/actions#513</a></li>
<li>Bump the npm-dependencies group in /sources with 3 updates by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/521 ">gradle/actions#521</a></li>
<li>Add npm build scans by <a
href="https://github.com/bigdaz "><code>@bigdaz</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/517 ">gradle/actions#517</a></li>
<li>Avoid env-var interpolation in toolchains.xml by <a
href="https://github.com/bigdaz "><code>@bigdaz</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/518 ">gradle/actions#518</a></li>
<li>Avoid saving build-results for cache cleanup by <a
href="https://github.com/bigdaz "><code>@bigdaz</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/520 ">gradle/actions#520</a></li>
<li>Save dependency graph as workflow artifact by <a
href="https://github.com/bigdaz "><code>@bigdaz</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/522 ">gradle/actions#522</a></li>
<li>Update to CCUDGP 2.1 by <a
href="https://github.com/bigdaz "><code>@bigdaz</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/524 ">gradle/actions#524</a></li>
<li>Bump references to Develocity Gradle plugin from 3.19 to 3.19.1 by
<a
href="https://github.com/bot-githubaction "><code>@bot-githubaction</code></a>
in <a
href="https://redirect.github.com/gradle/actions/pull/527 ">gradle/actions#527</a></li>
<li>Choose best Gradle version to use for cache cleanup by <a
href="https://github.com/bigdaz "><code>@bigdaz</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/526 ">gradle/actions#526</a></li>
<li>Uppercase cache-encryption-key by <a
href="https://github.com/Goooler "><code>@Goooler</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/528 ">gradle/actions#528</a></li>
<li>Attempt to use gradle wrapper for cache cleanup by <a
href="https://github.com/bigdaz "><code>@bigdaz</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/525 ">gradle/actions#525</a></li>
<li>Document GRADLE_ACTIONS_SKIP_BUILD_RESULT_CAPTURE by <a
href="https://github.com/bigdaz "><code>@bigdaz</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/529 ">gradle/actions#529</a></li>
<li>Update known wrapper checksums by <a
href="https://github.com/github-actions "><code>@github-actions</code></a>
in <a
href="https://redirect.github.com/gradle/actions/pull/509 ">gradle/actions#509</a></li>
<li>Bump Gradle Wrappers by <a
href="https://github.com/github-actions "><code>@github-actions</code></a>
in <a
href="https://redirect.github.com/gradle/actions/pull/535 ">gradle/actions#535</a></li>
<li>Bump the github-actions group across 2 directories with 2 updates by
<a href="https://github.com/dependabot "><code>@dependabot</code></a> in
<a
href="https://redirect.github.com/gradle/actions/pull/538 ">gradle/actions#538</a></li>
<li>Update undici to resolve vulnerability by <a
href="https://github.com/bigdaz "><code>@bigdaz</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/536 ">gradle/actions#536</a></li>
<li>Bump the npm-dependencies group across 1 directory with 2 updates by
<a href="https://github.com/dependabot "><code>@dependabot</code></a> in
<a
href="https://redirect.github.com/gradle/actions/pull/539 ">gradle/actions#539</a></li>
<li>Update docs for dependency review by <a
href="https://github.com/bigdaz "><code>@bigdaz</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/540 ">gradle/actions#540</a></li>
<li>Fix space assignment deprecations in init-scripts by <a
href="https://github.com/bigdaz "><code>@bigdaz</code></a> in <a
href="https://redirect.github.com/gradle/actions/pull/542 ">gradle/actions#542</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/SimonMarquis "><code>@SimonMarquis</code></a>
made their first contribution in <a
href="https://redirect.github.com/gradle/actions/pull/492 ">gradle/actions#492</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/gradle/actions/compare/v4.2.2...v4.3.0 ">https://github.com/gradle/actions/compare/v4.2.2...v4.3.0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="94baf225fehttps://redirect.github.com/gradle/actions/issues/542 ">#542</a>)</li>
<li><a
href="6f10c21ec50b492c475f79bad900c0986922f6a6https://redirect.github.com/gradle/actions/issues/540 ">#540</a>)</li>
<li><a
href="65a3beb9410e67f6d83bb6ac71fd869053a599ae7560c304a60bdd871935...94baf225fehttps://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gradle/actions&package-manager=github_actions&previous-version=4.2.2&new-version=4.3.0 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Anthony Stirling <77850077+Frooodle@users.noreply.github.com>
2025-02-04 10:42:29 +00:00
Ludy
9e8c16f313
checks the compatibility of the licenses ( #2844 )
...
# Description of Changes
### What was changed
- An **automated license check** was integrated into the CI/CD workflow
(`build.yml` and `licenses-update.yml`).
- A new file, `allowed-licenses.json`, was added to explicitly define
the permitted licenses.
- The **Gradle build process** was updated to run `checkLicense` and
detect any non-compliant licenses.
### Why the change was made
- **Improved license compliance** to ensure only compatible licenses are
used.
- **Automated license validation** within the CI/CD workflow to detect
potential incompatibilities early.
- **Legal risk mitigation** by excluding problematic licenses like
**GPL-2.0 (without Classpath Exception)**.
### Any challenges encountered
- The **allowed license list had to be manually curated** to ensure all
relevant open-source libraries were covered.
- Some dependencies use **slightly different license names** (e.g.,
`"Apache License, Version 2.0"` vs. `"Apache-2.0"`), which needed to be
handled in the validation process.
---
## Checklist
### General
- [x] I have read the [Contribution
Guidelines](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/CONTRIBUTING.md )
- [x] I have read the [Stirling-PDF Developer
Guide](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/DeveloperGuide.md )
(if applicable)
- [x] I have read the [How to add new languages to
Stirling-PDF](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md )
(if applicable)
- [x] I have performed a self-review of my own code
- [x] My changes generate no new warnings
### Documentation
- [x] I have updated relevant docs on [Stirling-PDF's doc
repo](https://github.com/Stirling-Tools/Stirling-Tools.github.io/blob/main/docs/ )
(if functionality has heavily changed)
- [ ] I have read the section [Add New Translation
Tags](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md#add-new-translation-tags )
(for new translation tags only)
### UI Changes (if applicable)
- [ ] Screenshots or videos demonstrating the UI changes are attached
(e.g., as comments or direct attachments in the PR)
### Testing (if applicable)
- [x] I have tested my changes locally. Refer to the [Testing
Guide](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/DeveloperGuide.md#6-testing )
for more details.
2025-02-03 10:13:02 +00:00
dependabot[bot]
637446fab8
Bump actions/setup-java from 4.6.0 to 4.7.0 ( #2855 )
...
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [actions/setup-java](https://github.com/actions/setup-java ) from
4.6.0 to 4.7.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/setup-java/releases ">actions/setup-java's
releases</a>.</em></p>
<blockquote>
<h2>v4.7.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Configure Dependabot settings by <a
href="https://github.com/HarithaVattikuti "><code>@HarithaVattikuti</code></a>
in <a
href="https://redirect.github.com/actions/setup-java/pull/722 ">actions/setup-java#722</a></li>
<li>README Update: Added a permissions section by <a
href="https://github.com/benwells "><code>@benwells</code></a> in <a
href="https://redirect.github.com/actions/setup-java/pull/723 ">actions/setup-java#723</a></li>
<li>Upgrade <code>cache</code> from version 3.2.4 to 4.0.0 by <a
href="https://github.com/aparnajyothi-y "><code>@aparnajyothi-y</code></a>
in <a
href="https://redirect.github.com/actions/setup-java/pull/724 ">actions/setup-java#724</a></li>
<li>Upgrade <code>@actions/http-client</code> from 2.2.1 to 2.2.3 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/actions/setup-java/pull/728 ">actions/setup-java#728</a></li>
<li>Upgrade <code>actions/publish-immutable-action</code> from 0.0.3 to
0.0.4 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/actions/setup-java/pull/727 ">actions/setup-java#727</a></li>
<li>Upgrade <code>@types/jest</code> from 29.5.12 to 29.5.14 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/actions/setup-java/pull/729 ">actions/setup-java#729</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/benwells "><code>@benwells</code></a>
made their first contribution in <a
href="https://redirect.github.com/actions/setup-java/pull/723 ">actions/setup-java#723</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/setup-java/compare/v4...v4.7.0 ">https://github.com/actions/setup-java/compare/v4...v4.7.0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3a4f6e1af5https://redirect.github.com/actions/setup-java/issues/729 ">#729</a>)</li>
<li><a
href="25f376e348https://redirect.github.com/actions/setup-java/issues/727 ">#727</a>)</li>
<li><a
href="d4e4b6bbc1https://redirect.github.com/actions/setup-java/issues/728 ">#728</a>)</li>
<li><a
href="28b532bcb3https://redirect.github.com/actions/setup-java/issues/722 ">#722</a>)</li>
<li><a
href="51ab6d2e30https://redirect.github.com/actions/setup-java/issues/724 ">#724</a>)</li>
<li><a
href="99d3141d9bhttps://redirect.github.com/actions/setup-java/issues/723 ">#723</a>)</li>
<li>See full diff in <a
href="7a6d8a8234...3a4f6e1af5https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-java&package-manager=github_actions&previous-version=4.6.0&new-version=4.7.0 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-02-03 10:08:34 +00:00
dependabot[bot]
f9b92eec71
Bump actions/create-github-app-token from 1.11.1 to 1.11.2 ( #2853 )
...
Bumps
[actions/create-github-app-token](https://github.com/actions/create-github-app-token )
from 1.11.1 to 1.11.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/create-github-app-token/releases ">actions/create-github-app-token's
releases</a>.</em></p>
<blockquote>
<h2>v1.11.2</h2>
<h2><a
href="https://github.com/actions/create-github-app-token/compare/v1.11.1...v1.11.2 ">1.11.2</a>
(2025-01-30)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> bump <code>@octokit/request</code> from
9.1.3 to 9.1.4 in the production-dependencies group (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/196 ">#196</a>)
(<a
href="b4192a5b36https://redirect.github.com/actions/create-github-app-token/issues/730 ">#730</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/730 ">#730</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/729 ">#729</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/727 ">#727</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/726 ">#726</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/723 ">#723</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/724 ">#724</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/722 ">#722</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/721 ">#721</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/720 ">#720</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/719 ">#719</a></li>
<li><strong>deps:</strong> bump undici from 6.19.8 to 7.2.0 (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/198 ">#198</a>)
(<a
href="29aa0514a7https://redirect.github.com/nodejs/undici/issues/3958 ">nodejs/undici#3958</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3955 ">nodejs/undici#3955</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3962 ">nodejs/undici#3962</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3921 ">nodejs/undici#3921</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3923 ">nodejs/undici#3923</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3925 ">nodejs/undici#3925</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3926 ">nodejs/undici#3926</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3924 ">nodejs/undici#3924</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3933 ">nodejs/undici#3933</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3916 ">nodejs/undici#3916</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3930 ">nodejs/undici#3930</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3938 ">nodejs/undici#3938</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/3937 ">#3937</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3940 ">nodejs/undici#3940</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3931 ">nodejs/undici#3931</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3941 ">nodejs/undici#3941</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3911 ">nodejs/undici#3911</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3888 ">nodejs/undici#3888</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3939 ">nodejs/undici#3939</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3947 ">nodejs/undici#3947</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3945 ">nodejs/undici#3945</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3916 ">nodejs/undici#3916</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3893 ">nodejs/undici#3893</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3902 ">nodejs/undici#3902</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/3901 ">#3901</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3903 ">nodejs/undici#3903</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3905 ">nodejs/undici#3905</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3900 ">nodejs/undici#3900</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3913 ">nodejs/undici#3913</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3910 ">nodejs/undici#3910</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3909 ">nodejs/undici#3909</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3906 ">nodejs/undici#3906</a>
<a
href="https://redirect.github.com/nodejs/undici/issues/3922 ">nodejs/undici#3922</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/3962 ">#3962</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/3955 ">#3955</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/3958 ">#3958</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/3945 ">#3945</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/3947 ">#3947</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/3939 ">#3939</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/3888 ">#3888</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/3911 ">#3911</a>
<a
href="https://redirect.github.com/actions/create-github-app-token/issues/3941 ">#3941</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="136412a57ab4192a5b3629aa0514a7https://redirect.github.com/actions/create-github-app-token/issues/198 ">#198</a>)</li>
<li><a
href="a5f8600f58https://redirect.github.com/actions/create-github-app-token/issues/199 ">#199</a>)</li>
<li><a
href="0edddd70c8https://redirect.github.com/actions/create-github-app-token/issues/197 ">#197</a>)</li>
<li><a
href="bb3ca765afhttps://redirect.github.com/actions/create-github-app-token/issues/201 ">#201</a>)</li>
<li>See full diff in <a
href="c1a285145b...136412a57ahttps://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/create-github-app-token&package-manager=github_actions&previous-version=1.11.1&new-version=1.11.2 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-02-03 10:07:37 +00:00
dependabot[bot]
c5ae576541
Bump step-security/harden-runner from 2.10.3 to 2.10.4 ( #2761 )
...
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps
[step-security/harden-runner](https://github.com/step-security/harden-runner )
from 2.10.3 to 2.10.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/step-security/harden-runner/releases ">step-security/harden-runner's
releases</a>.</em></p>
<blockquote>
<h2>v2.10.4</h2>
<h2>What's Changed</h2>
<p>Fixed a potential Harden-Runner post step failure that could occur
when printing agent service logs. The fix gracefully handles failures
without failing the post step.</p>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/step-security/harden-runner/compare/v2...v2.10.4 ">https://github.com/step-security/harden-runner/compare/v2...v2.10.4 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="cb605e52c2https://redirect.github.com/step-security/harden-runner/issues/496 ">#496</a>
from step-security/fix-enobufs</li>
<li><a
href="61144dda3bb8be370ff46f6fa07e4718f6947f13https://redirect.github.com/step-security/harden-runner/issues/495 ">#495</a>
from AkhigbeEromo/Update-README</li>
<li><a
href="81f844e7434c766de2dbhttps://github.com/AkhigbeEromo/harden-runner ">https://github.com/AkhigbeEromo/harden-runner </a>...</li>
<li><a
href="c9c5f3273c2877824267be87de076dc95a14d0e5...cb605e52c2https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=step-security/harden-runner&package-manager=github_actions&previous-version=2.10.3&new-version=2.10.4 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-01-21 11:11:01 +00:00
Anthony Stirling
1de33cf36c
quick fix var to secret ( #2707 )
...
# Description
Please provide a summary of the changes, including relevant motivation
and context.
Closes #(issue_number)
## Checklist
- [ ] I have read the [Contribution
Guidelines](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/CONTRIBUTING.md )
- [ ] I have performed a self-review of my own code
- [ ] I have attached images of the change if it is UI based
- [ ] I have commented my code, particularly in hard-to-understand areas
- [ ] If my code has heavily changed functionality I have updated
relevant docs on [Stirling-PDFs doc
repo](https://github.com/Stirling-Tools/Stirling-Tools.github.io/blob/main/docs/ )
- [ ] My changes generate no new warnings
- [ ] I have read the section [Add New Translation
Tags](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md#add-new-translation-tags )
(for new translation tags only)
2025-01-15 19:50:06 +00:00
Anthony Stirling
fcb3d48a1f
Auto merge test ( #2706 )
...
# Description
Please provide a summary of the changes, including relevant motivation
and context.
Closes #(issue_number)
## Checklist
- [ ] I have read the [Contribution
Guidelines](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/CONTRIBUTING.md )
- [ ] I have performed a self-review of my own code
- [ ] I have attached images of the change if it is UI based
- [ ] I have commented my code, particularly in hard-to-understand areas
- [ ] If my code has heavily changed functionality I have updated
relevant docs on [Stirling-PDFs doc
repo](https://github.com/Stirling-Tools/Stirling-Tools.github.io/blob/main/docs/ )
- [ ] My changes generate no new warnings
- [ ] I have read the section [Add New Translation
Tags](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md#add-new-translation-tags )
(for new translation tags only)
2025-01-15 19:43:14 +00:00
Ludy
888ef104a2
Bump: Harden Runner from v2.10.2 to v2.10.3 ( #2686 )
...
# Description
https://github.com/Stirling-Tools/Stirling-PDF/security/code-scanning/197
https://github.com/Stirling-Tools/Stirling-PDF/security/code-scanning/198
https://github.com/Stirling-Tools/Stirling-PDF/security/code-scanning/199
## Checklist
- [x] I have read the [Contribution
Guidelines](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/CONTRIBUTING.md )
- [x] I have performed a self-review of my own code
- [ ] I have attached images of the change if it is UI based
- [ ] I have commented my code, particularly in hard-to-understand areas
- [ ] If my code has heavily changed functionality I have updated
relevant docs on [Stirling-PDFs doc
repo](https://github.com/Stirling-Tools/Stirling-Tools.github.io/blob/main/docs/ )
- [x] My changes generate no new warnings
- [ ] I have read the section [Add New Translation
Tags](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md#add-new-translation-tags )
(for new translation tags only)
2025-01-13 22:26:05 +00:00
Ludy
875f5a85ef
Token-Permissions & Pinned-Dependencies ( #2586 )
...
# Description
Please provide a summary of the changes, including relevant motivation
and context.
Closes #(issue_number)
## Checklist
- [ ] I have read the [Contribution
Guidelines](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/CONTRIBUTING.md )
- [ ] I have performed a self-review of my own code
- [ ] I have attached images of the change if it is UI based
- [ ] I have commented my code, particularly in hard-to-understand areas
- [ ] If my code has heavily changed functionality I have updated
relevant docs on [Stirling-PDFs doc
repo](https://github.com/Stirling-Tools/Stirling-Tools.github.io/blob/main/docs/ )
- [ ] My changes generate no new warnings
- [ ] I have read the section [Add New Translation
Tags](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md#add-new-translation-tags )
(for new translation tags only)
2025-01-02 18:22:14 +00:00
dependabot[bot]
5e173b92d4
Bump peter-evans/create-pull-request from 7.0.5 to 7.0.6 ( #2574 )
...
Bumps
[peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request )
from 7.0.5 to 7.0.6.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/peter-evans/create-pull-request/releases ">peter-evans/create-pull-request's
releases</a>.</em></p>
<blockquote>
<h2>Create Pull Request v7.0.6</h2>
<p>⚙️ Fixes an issue with commit signing where unicode characters in
file paths were not preserved.</p>
<h2>What's Changed</h2>
<ul>
<li>build(deps-dev): bump <code>@vercel/ncc</code> from 0.38.1 to
0.38.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3365 ">peter-evans/create-pull-request#3365</a></li>
<li>Update distribution by <a
href="https://github.com/actions-bot "><code>@actions-bot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3370 ">peter-evans/create-pull-request#3370</a></li>
<li>build(deps): bump
<code>@octokit/plugin-rest-endpoint-methods</code> from 13.2.4 to
13.2.5 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3375 ">peter-evans/create-pull-request#3375</a></li>
<li>build(deps-dev): bump <code>@types/node</code> from 18.19.50 to
18.19.54 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3376 ">peter-evans/create-pull-request#3376</a></li>
<li>build(deps): bump <code>@octokit/plugin-paginate-rest</code> from
11.3.3 to 11.3.5 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3377 ">peter-evans/create-pull-request#3377</a></li>
<li>Update distribution by <a
href="https://github.com/actions-bot "><code>@actions-bot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3388 ">peter-evans/create-pull-request#3388</a></li>
<li>build(deps-dev): bump <code>@types/node</code> from 18.19.54 to
18.19.55 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3400 ">peter-evans/create-pull-request#3400</a></li>
<li>build(deps): bump <code>@actions/core</code> from 1.10.1 to 1.11.1
by <a href="https://github.com/dependabot "><code>@dependabot</code></a>
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3401 ">peter-evans/create-pull-request#3401</a></li>
<li>build(deps): bump
<code>@octokit/plugin-rest-endpoint-methods</code> from 13.2.5 to
13.2.6 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3403 ">peter-evans/create-pull-request#3403</a></li>
<li>build(deps-dev): bump eslint-plugin-import from 2.30.0 to 2.31.0 by
<a href="https://github.com/dependabot "><code>@dependabot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3402 ">peter-evans/create-pull-request#3402</a></li>
<li>build(deps): bump <code>@octokit/plugin-throttling</code> from
9.3.1 to 9.3.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3404 ">peter-evans/create-pull-request#3404</a></li>
<li>Update distribution by <a
href="https://github.com/actions-bot "><code>@actions-bot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3423 ">peter-evans/create-pull-request#3423</a></li>
<li>build(deps-dev): bump typescript from 5.6.2 to 5.6.3 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3441 ">peter-evans/create-pull-request#3441</a></li>
<li>build(deps): bump undici from 6.19.8 to 6.20.1 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3442 ">peter-evans/create-pull-request#3442</a></li>
<li>Update distribution by <a
href="https://github.com/actions-bot "><code>@actions-bot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3451 ">peter-evans/create-pull-request#3451</a></li>
<li>build(deps-dev): bump <code>@types/node</code> from 18.19.55 to
18.19.58 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3457 ">peter-evans/create-pull-request#3457</a></li>
<li>build(deps-dev): bump <code>@types/jest</code> from 29.5.13 to
29.5.14 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3462 ">peter-evans/create-pull-request#3462</a></li>
<li>build(deps-dev): bump <code>@types/node</code> from 18.19.58 to
18.19.60 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3463 ">peter-evans/create-pull-request#3463</a></li>
<li>chore: don't bundle undici by <a
href="https://github.com/benmccann "><code>@benmccann</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3475 ">peter-evans/create-pull-request#3475</a></li>
<li>Update distribution by <a
href="https://github.com/actions-bot "><code>@actions-bot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3478 ">peter-evans/create-pull-request#3478</a></li>
<li>chore: use node-fetch-native support for proxy env vars by <a
href="https://github.com/peter-evans "><code>@peter-evans</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3483 ">peter-evans/create-pull-request#3483</a></li>
<li>build(deps-dev): bump <code>@types/node</code> from 18.19.60 to
18.19.64 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3488 ">peter-evans/create-pull-request#3488</a></li>
<li>build(deps-dev): bump undici from 6.20.1 to 6.21.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3499 ">peter-evans/create-pull-request#3499</a></li>
<li>build(deps-dev): bump <code>@vercel/ncc</code> from 0.38.2 to
0.38.3 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3500 ">peter-evans/create-pull-request#3500</a></li>
<li>docs: note <code>push-to-repo</code> classic PAT
<code>workflow</code> scope requirement by <a
href="https://github.com/scop "><code>@scop</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3511 ">peter-evans/create-pull-request#3511</a></li>
<li>docs: spelling fixes by <a
href="https://github.com/scop "><code>@scop</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3512 ">peter-evans/create-pull-request#3512</a></li>
<li>build(deps-dev): bump typescript from 5.6.3 to 5.7.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3516 ">peter-evans/create-pull-request#3516</a></li>
<li>build(deps-dev): bump prettier from 3.3.3 to 3.4.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3517 ">peter-evans/create-pull-request#3517</a></li>
<li>build(deps-dev): bump <code>@types/node</code> from 18.19.64 to
18.19.66 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3518 ">peter-evans/create-pull-request#3518</a></li>
<li>docs(README): clarify that an existing open PR is managed by <a
href="https://github.com/caugner "><code>@caugner</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3498 ">peter-evans/create-pull-request#3498</a></li>
<li>Update distribution by <a
href="https://github.com/actions-bot "><code>@actions-bot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3529 ">peter-evans/create-pull-request#3529</a></li>
<li>build(deps): bump <code>@octokit/plugin-paginate-rest</code> from
11.3.5 to 11.3.6 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3542 ">peter-evans/create-pull-request#3542</a></li>
<li>build(deps-dev): bump <code>@types/node</code> from 18.19.66 to
18.19.67 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3543 ">peter-evans/create-pull-request#3543</a></li>
<li>build(deps-dev): bump prettier from 3.4.0 to 3.4.1 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3544 ">peter-evans/create-pull-request#3544</a></li>
<li>build(deps-dev): bump eslint-import-resolver-typescript from 3.6.3
to 3.7.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3559 ">peter-evans/create-pull-request#3559</a></li>
<li>build(deps-dev): bump prettier from 3.4.1 to 3.4.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3560 ">peter-evans/create-pull-request#3560</a></li>
<li>build(deps-dev): bump <code>@types/node</code> from 18.19.67 to
18.19.68 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3570 ">peter-evans/create-pull-request#3570</a></li>
<li>build(deps): bump p-limit from 6.1.0 to 6.2.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3578 ">peter-evans/create-pull-request#3578</a></li>
<li>Update distribution by <a
href="https://github.com/actions-bot "><code>@actions-bot</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3583 ">peter-evans/create-pull-request#3583</a></li>
<li>fix: preserve unicode in filepaths when commit signing by <a
href="https://github.com/peter-evans "><code>@peter-evans</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3588 ">peter-evans/create-pull-request#3588</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/benmccann "><code>@benmccann</code></a>
made their first contribution in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3475 ">peter-evans/create-pull-request#3475</a></li>
<li><a href="https://github.com/scop "><code>@scop</code></a> made their
first contribution in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3511 ">peter-evans/create-pull-request#3511</a></li>
<li><a href="https://github.com/caugner "><code>@caugner</code></a> made
their first contribution in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/3498 ">peter-evans/create-pull-request#3498</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="67ccf781d6https://redirect.github.com/peter-evans/create-pull-request/issues/3588 ">#3588</a>)</li>
<li><a
href="bb88e27d3fhttps://redirect.github.com/peter-evans/create-pull-request/issues/3583 ">#3583</a>)</li>
<li><a
href="b378ed537ahttps://redirect.github.com/peter-evans/create-pull-request/issues/3578 ">#3578</a>)</li>
<li><a
href="fa9200e5b4https://redirect.github.com/peter-evans/create-pull-request/issues/3570 ">#3570</a>)</li>
<li><a
href="16e0059bfdhttps://redirect.github.com/peter-evans/create-pull-request/issues/3560 ">#3560</a>)</li>
<li><a
href="5bffd5ae80https://redirect.github.com/peter-evans/create-pull-request/issues/3559 ">#3559</a>)</li>
<li><a
href="a22a0ddc21https://redirect.github.com/peter-evans/create-pull-request/issues/3544 ">#3544</a>)</li>
<li><a
href="b27ce378c8https://redirect.github.com/peter-evans/create-pull-request/issues/3543 ">#3543</a>)</li>
<li><a
href="4e0cc19e22https://redirect.github.com/peter-evans/create-pull-request/issues/3542 ">#3542</a>)</li>
<li><a
href="25b6871a4e5e914681df...67ccf781d6https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=peter-evans/create-pull-request&package-manager=github_actions&previous-version=7.0.5&new-version=7.0.6 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-01-02 14:24:04 +00:00
Ludy87
6697cccfa9
Bump peter-evans/create-pull-request from 6.1.0 to 7.0.5
2024-12-22 01:41:45 +01:00
Ludy87
f29d4db31e
[Security] Token permissions no. 2
2024-12-22 00:33:41 +01:00
StepSecurity Bot
dc5b214932
[StepSecurity] Apply security best practices
...
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
2024-12-21 12:28:35 +00:00
Ludy
09e963b160
correction action bot ( #1782 )
2024-08-31 15:30:18 +02:00
Ludy
56a07bbf3a
increases some versions in the workflows ( #1707 )
2024-08-18 13:07:14 +01:00
Anthony Stirling
ea2d755808
Update licenses-update.yml
2024-08-16 12:15:07 +01:00
Anthony Stirling
09c93cebe3
PR changes ( #1693 )
...
* Update licenses-update.yml
* Update build.yml
* Update test.yml
* Delete .github/workflows/test.yml
* Update build.yml
* Update build.yml
* Update auto-labeler.yml
* Update build.yml
* Update auto-labeler.yml
* Update labeler-config.yml
2024-08-16 11:00:10 +01:00
Ludy
5185fd13b8
updating the build files ( #1100 )
2024-04-21 16:30:17 +01:00
Anthony Stirling
3930c25a75
Frooodle patch 2 ( #913 )
...
* Update licenses-update.yml
* Update build.gradle
2024-03-13 22:34:24 +00:00
Anthony Stirling
daf6486b86
Update licenses-update.yml ( #911 )
2024-03-13 22:26:39 +00:00
Anthony Stirling
db64b3f71d
lang and footer updates
2024-01-04 20:59:52 +00:00
Anthony Stirling
7ed8a69326
test
2024-01-04 19:17:38 +00:00
dependabot[bot]