Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the github-actions-dependencies group with 2 updates #375

Closed
wants to merge 1 commit into from
Closed

chore(deps): bump the github-actions-dependencies group with 2 updates #375

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 1, 2024
edited

Bumps the github-actions-dependencies group with 2 updates: codecov/codecov-action and go-semantic-release/action.

Updates codecov/codecov-action from 3.1.4 to 4.1.0

Release notes

Sourced from codecov/codecov-action's releases.

v4.1.0

What's Changed

Full Changelog: codecov/codecov-action@v4.0.2...v4.1.0

v4.0.2

What's Changed

New Contributors

Full Changelog: codecov/codecov-action@v4.0.1...v4.0.2

v4.0.1

What's Changed

Full Changelog: codecov/codecov-action@v4.0.0...v4.0.1

v4.0.0

v4 of the Codecov Action uses the CLI as the underlying upload. The CLI has helped to power new features including local upload, the global upload token, and new upcoming features.

Breaking Changes

  • The Codecov Action runs as a node20 action due to node16 deprecation. See this post from GitHub on how to migrate.
  • Tokenless uploading is unsupported. However, PRs made from forks to the upstream public repos will support tokenless (e.g. contributors to OS projects do not need the upstream repo's Codecov token). This doc shows instructions on how to add the Codecov token.

... (truncated)

Changelog

Sourced from codecov/codecov-action's changelog.

4.0.0-beta.2

Fixes

  • #1085 not adding -n if empty to do-upload command

4.0.0-beta.1

v4 represents a move from the universal uploader to the Codecov CLI. Although this will unlock new features for our users, the CLI is not yet at feature parity with the universal uploader.

Breaking Changes

  • No current support for aarch64 and alpine architectures.
  • Tokenless uploading is unsuported
  • Various arguments to the Action have been removed
Commits
  • 54bcd87 chore(release): v4.1.0 (#1307)
  • 8ba77ef build(deps-dev): bump eslint from 8.56.0 to 8.57.0 (#1305)
  • c60aa80 build(deps): bump github/codeql-action from 3.24.3 to 3.24.5 (#1306)
  • 2fc4847 fix: set safe directory (#1304)
  • 0cfda1d chore(release): bump to 4.0.2 (#1302)
  • 7d3a55e build(deps): bump actions/upload-artifact from 4.3.0 to 4.3.1 (#1286)
  • fe84a0b build(deps-dev): bump @​typescript-eslint/eslint-plugin from 6.21.0 to 7.0.0 (...
  • e12c940 Use updated syntax for GitHub Markdown notes (#1300)
  • ef7f8a5 build(deps): bump github/codeql-action from 3.24.0 to 3.24.3 (#1298)
  • b8a1d6a build(deps-dev): bump @​typescript-eslint/eslint-plugin from 6.20.0 to 6.21.0 ...
  • Additional commits viewable in compare view

Updates go-semantic-release/action from 1.21 to 1.23

Release notes

Sourced from go-semantic-release/action's releases.

v1.23.0

1.23.0 (2024-02-18)

Feature

  • use bun as bundler (7798e561)

Bug Fixes

  • use mjs (48d83acd)

v1.22.0

1.22.0 (2024-02-18)

Feature

  • use bun (6c83899c)
  • update dependencies (e9871c83)

v1.21.1

1.21.1 (2024-02-18)

Bug Fixes

  • action: use node 20 (2db6db23)

CI

  • Use node 20 (8728a771)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code labels Mar 1, 2024
@m4mm4r
Copy link
Contributor

m4mm4r commented Mar 18, 2024

@dependabot recreate

@dependabot dependabot bot force-pushed the dependabot/github_actions/github-actions-dependencies-b06706ac39 branch from efb846e to 169e4eb Compare March 18, 2024 12:46
@dependabot dependabot bot requested a review from a team as a code owner March 18, 2024 12:46
@m4mm4r
Copy link
Contributor

m4mm4r commented Mar 19, 2024

@dependabot recreate

@dependabot
chore(deps): bump the github-actions-dependencies group with 2 updates
4cad5cf 
Bumps the github-actions-dependencies group with 2 updates: [codecov/codecov-action](https://github.com/codecov/codecov-action) and [go-semantic-release/action](https://github.com/go-semantic-release/action).


Updates `codecov/codecov-action` from 3.1.4 to 4.1.0
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](codecov/codecov-action@v3.1.4...v4.1.0)

Updates `go-semantic-release/action` from 1.21 to 1.23
- [Release notes](https://github.com/go-semantic-release/action/releases)
- [Commits](go-semantic-release/action@v1.21...v1.23)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions-dependencies
- dependency-name: go-semantic-release/action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/github_actions/github-actions-dependencies-b06706ac39 branch from 169e4eb to 4cad5cf Compare March 19, 2024 10:05
@m4mm4r m4mm4r closed this Mar 19, 2024
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Mar 19, 2024

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

@m4mm4r m4mm4r deleted the dependabot/github_actions/github-actions-dependencies-b06706ac39 branch March 19, 2024 10:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@m4mm4r