Bump the actions group with 8 updates #1285

dependabot · 2025-01-20T20:18:18Z

Bumps the actions group with 8 updates:

Package	From	To
actions/checkout	`3.5.3`	`4.2.2`
crazy-max/ghaction-github-labeler	`4.1.0`	`5.1.0`
pypa/gh-action-pypi-publish	`1.8.7`	`1.12.3`
release-drafter/release-drafter	`5.24.0`	`6.1.0`
actions/cache	`3.3.1`	`4.2.0`
actions/upload-artifact	`3.1.2`	`4.6.0`
actions/download-artifact	`3.0.2`	`4.1.8`
codecov/codecov-action	`3.1.4`	`5.1.2`

Updates actions/checkout from 3.5.3 to 4.2.2

Release notes

Sourced from actions/checkout's releases.

v4.2.2

What's Changed

url-helper.ts now leverages well-known environment variables by @jww3 in actions/checkout#1941

Expand unit test coverage for isGhes by @jww3 in actions/checkout#1946

Full Changelog: actions/checkout@v4.2.1...v4.2.2

v4.2.1

What's Changed

Check out other refs/* by commit if provided, fall back to ref by @orhantoy in actions/checkout#1924

New Contributors

@Jcambass made their first contribution in actions/checkout#1919

Full Changelog: actions/checkout@v4.2.0...v4.2.1

v4.2.0

What's Changed

Add Ref and Commit outputs by @lucacome in actions/checkout#1180

Dependabot updates in actions/checkout#1777 & actions/checkout#1872

New Contributors

@yasonk made their first contribution in actions/checkout#1869

@lucacome made their first contribution in actions/checkout#1180

Full Changelog: actions/checkout@v4.1.7...v4.2.0

v4.1.7

What's Changed

Bump the minor-npm-dependencies group across 1 directory with 4 updates by @dependabot in actions/checkout#1739

Bump actions/checkout from 3 to 4 by @dependabot in actions/checkout#1697

Check out other refs/* by commit by @orhantoy in actions/checkout#1774

Pin actions/checkout's own workflows to a known, good, stable version. by @jww3 in actions/checkout#1776

New Contributors

@orhantoy made their first contribution in actions/checkout#1774

Full Changelog: actions/checkout@v4.1.6...v4.1.7

v4.1.6

What's Changed

Check platform to set archive extension appropriately by @cory-miller in actions/checkout#1732

Update for 4.1.6 release by @cory-miller in actions/checkout#1733

Full Changelog: actions/checkout@v4.1.5...v4.1.6

v4.1.5

What's Changed

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

v4.2.2

url-helper.ts now leverages well-known environment variables by @jww3 in actions/checkout#1941

Expand unit test coverage for isGhes by @jww3 in actions/checkout#1946

v4.2.1

Check out other refs/* by commit if provided, fall back to ref by @orhantoy in actions/checkout#1924

v4.2.0

Add Ref and Commit outputs by @lucacome in actions/checkout#1180

Dependency updates by @dependabot- actions/checkout#1777, actions/checkout#1872

v4.1.7

Bump the minor-npm-dependencies group across 1 directory with 4 updates by @dependabot in actions/checkout#1739

Bump actions/checkout from 3 to 4 by @dependabot in actions/checkout#1697

Check out other refs/* by commit by @orhantoy in actions/checkout#1774

Pin actions/checkout's own workflows to a known, good, stable version. by @jww3 in actions/checkout#1776

v4.1.6

Check platform to set archive extension appropriately by @cory-miller in actions/checkout#1732

v4.1.5

Update NPM dependencies by @cory-miller in actions/checkout#1703

Bump github/codeql-action from 2 to 3 by @dependabot in actions/checkout#1694

Bump actions/setup-node from 1 to 4 by @dependabot in actions/checkout#1696

Bump actions/upload-artifact from 2 to 4 by @dependabot in actions/checkout#1695

README: Suggest user.email to be 41898282+github-actions[bot]@users.noreply.github.com by @cory-miller in actions/checkout#1707

v4.1.4

Disable extensions.worktreeConfig when disabling sparse-checkout by @jww3 in actions/checkout#1692

Add dependabot config by @cory-miller in actions/checkout#1688

Bump the minor-actions-dependencies group with 2 updates by @dependabot in actions/checkout#1693

Bump word-wrap from 1.2.3 to 1.2.5 by @dependabot in actions/checkout#1643

v4.1.3

Check git version before attempting to disable sparse-checkout by @jww3 in actions/checkout#1656

Add SSH user parameter by @cory-miller in actions/checkout#1685

Update actions/checkout version in update-main-version.yml by @jww3 in actions/checkout#1650

v4.1.2

Fix: Disable sparse checkout whenever sparse-checkout option is not present @dscho in actions/checkout#1598

v4.1.1

Correct link to GitHub Docs by @peterbe in actions/checkout#1511

Link to release page from what's new section by @cory-miller in actions/checkout#1514

v4.1.0

Add support for partial checkout filters

v4.0.0

... (truncated)

Commits

11bd719 Prepare 4.2.2 Release (#1953)
e3d2460 Expand unit test coverage (#1946)
163217d url-helper.ts now leverages well-known environment variables. (#1941)
eef6144 Prepare 4.2.1 release (#1925)
6b42224 Add workflow file for publishing releases to immutable action package (#1919)
de5a000 Check out other refs/* by commit if provided, fall back to ref (#1924)
d632683 Prepare 4.2.0 release (#1878)
6d193bf Bump braces from 3.0.2 to 3.0.3 (#1777)
db0cee9 Bump the minor-npm-dependencies group across 1 directory with 4 updates (#1872)
b684943 Add Ref and Commit outputs (#1180)
Additional commits viewable in compare view

Updates crazy-max/ghaction-github-labeler from 4.1.0 to 5.1.0

Release notes

Sourced from crazy-max/ghaction-github-labeler's releases.

v5.1.0

Sanitize the color field to allow using hex codes by @pjpires in crazy-max/ghaction-github-labeler#207

Fix intermediate values by @crazy-max in crazy-max/ghaction-github-labeler#218

Bump micromatch from 4.0.5 to 4.0.8 in crazy-max/ghaction-github-labeler#215

Bump @actions/core from 1.10.0 to 1.11.1 in crazy-max/ghaction-github-labeler#217

Bump @actions/github from 5.1.1 to 6.0.0 in crazy-max/ghaction-github-labeler#205

Bump @babel/traverse from 7.17.9 to 7.23.2 in crazy-max/ghaction-github-labeler#206

Bump braces from 3.0.2 to 3.0.3 in crazy-max/ghaction-github-labeler#212

Bump ip from 2.0.0 to 2.0.1 in crazy-max/ghaction-github-labeler#208

Bump debug from 4.1.1 to 4.3.4 in crazy-max/ghaction-github-labeler#204

Bump tar from 6.1.11 to 6.2.1 in crazy-max/ghaction-github-labeler#210

Full Changelog: crazy-max/ghaction-github-labeler@v5...v5.1.0

v5.0.0

Node 20 as default runtime (requires Actions Runner v2.308.0 or later) by @crazy-max in crazy-max/ghaction-github-labeler#199

Full Changelog: crazy-max/ghaction-github-labeler@v4.2.0...v5.0.0

v4.2.0

Use fixture for repo labels test by @crazy-max in crazy-max/ghaction-github-labeler#192

Bump http-cache-semantics from 4.1.0 to 4.1.1 in crazy-max/ghaction-github-labeler#183

Bump json5 from 2.2.1 to 2.2.3 in crazy-max/ghaction-github-labeler#181

Bump minimatch from 3.0.4 to 3.1.2 in crazy-max/ghaction-github-labeler#182

Bump semver from 5.7.1 to 5.7.2 in crazy-max/ghaction-github-labeler#187

Bump word-wrap from 1.2.3 to 1.2.5 in crazy-max/ghaction-github-labeler#190

Update yarn to 3.5.1 by @crazy-max in crazy-max/ghaction-github-labeler#186 crazy-max/ghaction-github-labeler#177

Update dev dependencies by @crazy-max in crazy-max/ghaction-github-labeler#179

Full Changelog: crazy-max/ghaction-github-labeler@v4.1.0...v4.2.0

Commits

b54af0c Merge pull request #205 from crazy-max/dependabot/npm_and_yarn/actions/github...
b0fa869 chore: update generated content
6aa30ec Bump @actions/github from 5.1.1 to 6.0.0
ea3997f Merge pull request #217 from crazy-max/dependabot/npm_and_yarn/actions/core-1...
29171d6 chore: update generated content
b2f62da build(deps): bump @actions/core from 1.10.0 to 1.11.1
9d4405d Merge pull request #218 from crazy-max/fix-non-iterable
a69137f chore: update generated content
b3ff7bd fix intermediate values
77c39e1 fix missing js-yaml types
Additional commits viewable in compare view

Updates pypa/gh-action-pypi-publish from 1.8.7 to 1.12.3

Release notes

Sourced from pypa/gh-action-pypi-publish's releases.

v1.12.3

✨ What's Improved

With the updates by @woodruffw💰 and @webknjaz💰 via #309 and #313, it is now possible to publish distribution packages that include core metadata v2.4, like those built using maturin. This is done by bumping Twine to v6.0.1 and pkginfo to v1.12.0.

📝 Docs

We've made an attempt to clarify the runtime and workflow shape that are expected to be supported for calling this action in: https://github.com/marketplace/actions/pypi-publish#Non-goals.

[!TIP] Please, let us know in the release discussion if anything still remains unclear. TL;DR always call pypi-publish once per job; don't invoke it in reusable workflows; physically move building the dists into separate jobs having restricted permissions and storing the dists as GitHub Actions artifacts; when using self-hosted runners, make sure to still use pypi-publish on a GitHub-provided infra with runs-on: ubuntu-latest, while building and testing may remain self-hosted; don't perform any other actions in the publishing job; don't call pypi-publish from composite actions.

🛠️ Internal Updates

@br3ndonland💰 improved the container image generation automation to include Git SHA in #301. And @woodruffw💰 added the workflow_ref context to Trusted Publishing debug logging in #305, helping us diagnose misconfigurations faster. #313 also extends the smoke test in the CI to check against the maturin-made dists. Additionally, jeepney and secretstorage transitive deps have been added to the pip constraint-based lock file, as Dependabot seems to have missed those earlier.

🪞 Full Diff: pypa/gh-action-pypi-publish@v1.12.2...v1.12.3

🧔‍♂️ Release Manager: @webknjaz 🇺🇦

🙏 Special Thanks to @samuelcolvin💰 for nudging me to cut this release sooner and for sponsoring me via @pydantic💰!

🔌 Shameless Plug: The other day I've made this 🦋 Bluesky 🇺🇦 FOSS Maintainers Starter Pack subscribe to read news from people like me :)

💬 Discuss on Bluesky 🦋, on Mastodon 🐘 and on GitHub.

v1.12.2

🐛 What's Fixed

The fix for signing legacy zip sdists turned out to be incomplete, so @woodruffw💰 promptly produced another follow-up that updated pypi-attestations from v0.0.13 to v0.0.15 in #297. This is the only change since the previous release.

🪞 Full Diff: pypa/gh-action-pypi-publish@v1.12.1...v1.12.2

🧔‍♂️ Release Manager: @webknjaz 🇺🇦

v1.12.1

🐛 What's Fixed

Version v1.12.0 hit several rare corner cases we never considered fully supported, and this release fixes a few of those. In #294, @webknjaz💰 improved the self-hosted runner experience by pre-installing Python if it's not there, and with #293 the ability to use the action on GitHub Enterprise instances has been restored. The latter should've also fixed the ability to invoke pypi-publish from nested in-repo composite actions — another exotic use-case that was never tested in our CI.

... (truncated)

Commits

67339c7 📦 Only keep lower bounds @ input requirements
cbd6d01 📝Fix a typo in "privileges" @ README
7252a9a 📝 Outline unsupported scenarios in README
a536fa9 📌📦 Include jeepney & secretstorage pins
43caae4 💅📦 Split transitive dep constraints
f371c3d Merge pull request #313 from webknjaz/maintenance/metadata-2.4
138a121 📌📦 Pin pkginfo to v1.12 @ runtime deps
ff2b051 🧪 Add a Maturin-based package to CI
0a0a6ae 🧪 Allow CI to register multiple distributions
e7723a4 Merge pull request #309 from trail-of-forks/ww/bumptwine
Additional commits viewable in compare view

Updates release-drafter/release-drafter from 5.24.0 to 6.1.0

Release notes

Sourced from release-drafter/release-drafter's releases.

v6.1.0

What's Changed

New

Add config option for PR query limit (#1362) @ssolbeck

Bug Fixes

Fix: Correctly mention bot accounts in release notes (#1376) @jamietanna

Update only drafts with the same prerelease status (#1385) @jaap3

Documentation

docs: Fix Fork Link (#1412) @Dor-bl

Ensure support new default branch name (#1079) @Triloworld

update schema generation and update schema to draft 07 (#1422) @jetersen

fix typo: therelease (#1407) @billykern

Document added action outputs introduced in #1300 (#1406) @SVNKoch

Update README.md (#1421) @yusufraji

fix: update broken link in readme (#1416) @kopach

Update v6 README.md (#1384) @taku333

Full Changelog: release-drafter/release-drafter@v6.0.0...v6.1.0

v6.0.0

What's Changed

Update Node.js to 20 (#1379) @massongit

Full Changelog: release-drafter/release-drafter@v5.25.0...v6.0.0

v6.0.0-beta.1

Prerelease of v6, first release of the CLI, feel free to provide feedback in the pull request: release-drafter/release-drafter#1204

v5.25.0

What's Changed

New

add prerelease increment behavior (#1303) @neilime

add latest input (#1348) @o-mago

Full Changelog: release-drafter/release-drafter@v5.24.0...v5.25.0

Commits

b1476f6 v6.1.0
d7328d2 Add config option for pull-request-limit (#1362)
5faffa9 docs: Fix Fork Link (#1412)
a914231 Ensure support new main branch name (#1079)
d6eceac Fix: Correctly mention bot accounts in release notes (#1376)
41c11a2 update schema generation and update schema to draft 07 (#1422)
8296e40 fix typo: therelease (#1407)
0ad4f70 Document action outputs introduced in #1300 (#1406)
378bacb Update README.md (#1421)
c139411 Update only drafts with the same prerelease status (#1385)
Additional commits viewable in compare view

Updates actions/cache from 3.3.1 to 4.2.0

Release notes

Sourced from actions/cache's releases.

v4.2.0

⚠️ Important Changes

The cache backend service has been rewritten from the ground up for improved performance and reliability. actions/cache now integrates with the new cache service (v2) APIs.

The new service will gradually roll out as of February 1st, 2025. The legacy service will also be sunset on the same date. Changes in these release are fully backward compatible.

We are deprecating some versions of this action. We recommend upgrading to version v4 or v3 as soon as possible before February 1st, 2025. (Upgrade instructions below).

If you are using pinned SHAs, please use the SHAs of versions v4.2.0 or v3.4.0

If you do not upgrade, all workflow runs using any of the deprecated actions/cache will fail.

Upgrading to the recommended versions will not break your workflows.

Read more about the change & access the migration guide: reference to the announcement.

Minor changes

Minor and patch version updates for these dependencies:

@actions/core: 1.11.1

@actions/io: 1.1.3

@vercel/ncc: 0.38.3

Full Changelog: actions/cache@v4...v4.2.0

v4.1.2

What's Changed

Add Bun example by @idleberg in actions/cache#1456

Revise isGhes logic by @jww3 in actions/cache#1474

Bump braces from 3.0.2 to 3.0.3 by @dependabot in actions/cache#1475

Add dependabot.yml to enable automatic dependency upgrades by @Link- in actions/cache#1476

Bump actions/checkout from 3 to 4 by @dependabot in actions/cache#1478

Bump actions/stale from 3 to 9 by @dependabot in actions/cache#1479

Bump github/codeql-action from 2 to 3 by @dependabot in actions/cache#1483

Bump actions/setup-node from 3 to 4 by @dependabot in actions/cache#1481

Prepare 4.1.2 release by @Link- in actions/cache#1477

New Contributors

@idleberg made their first contribution in actions/cache#1456

@jww3 made their first contribution in actions/cache#1474

@Link- made their first contribution in actions/cache#1476

Full Changelog: actions/cache@v4...v4.1.2

v4.1.1

What's Changed

Restore original behavior of cache-hit output by @joshmgross in actions/cache#1467

... (truncated)

Changelog

Sourced from actions/cache's changelog.

4.2.0

TLDR; The cache backend service has been rewritten from the ground up for improved performance and reliability. actions/cache now integrates with the new cache service (v2) APIs.

The new service will gradually roll out as of February 1st, 2025. The legacy service will also be sunset on the same date. Changes in these release are fully backward compatible.

We are deprecating some versions of this action. We recommend upgrading to version v4 or v3 as soon as possible before February 1st, 2025. (Upgrade instructions below).

If you are using pinned SHAs, please use the SHAs of versions v4.2.0 or v3.4.0

If you do not upgrade, all workflow runs using any of the deprecated actions/cache will fail.

Upgrading to the recommended versions will not break your workflows.

4.1.2

Add GitHub Enterprise Cloud instances hostname filters to inform API endpoint choices - #1474

Security fix: Bump braces from 3.0.2 to 3.0.3 - #1475

4.1.1

Restore original behavior of cache-hit output - #1467

4.1.0

Ensure cache-hit output is set when a cache is missed - #1404

Deprecate save-always input - #1452

4.0.2

Fixed restore fail-on-cache-miss not working.

4.0.1

Updated isGhes check

4.0.0

Updated minimum runner version support from node 12 -> node 20

3.4.0

Integrated with the new cache service (v2) APIs

3.3.3

Updates @actions/cache to v3.2.3 to fix accidental mutated path arguments to getCacheVersion actions/toolkit#1378

Additional audit fixes of npm package(s)

3.3.2

... (truncated)

Commits

1bd1e32 Merge pull request #1509 from actions/Link-/cache-4.2.0
882d7ce Add 3.4.0 release notes
f2695d7 Rerun CI
f46ceeb Add licensed output
e6f5858 Add lodash to list of reviewed licenses
4ae6f21 Add reviewed licensed packages
c16df86 Add licensed output
b109c12 Upgrade @actions/core to 1.11.1 and other deps
b7d227d Upgrade @vercel/ncc to 0.38.3
faf6392 Update RELEASES.md
Additional commits viewable in compare view

Updates actions/upload-artifact from 3.1.2 to 4.6.0

Release notes

Sourced from actions/upload-artifact's releases.

v4.6.0

What's Changed

Expose env vars to control concurrency and timeout by @yacaovsnc in actions/upload-artifact#662

Full Changelog: actions/upload-artifact@v4...v4.6.0

v4.5.0

What's Changed

fix: deprecated Node.js version in action by @hamirmahal in actions/upload-artifact#578

Add new artifact-digest output by @bdehamer in actions/upload-artifact#656

New Contributors

@hamirmahal made their first contribution in actions/upload-artifact#578

@bdehamer made their first contribution in actions/upload-artifact#656

Full Changelog: actions/upload-artifact@v4.4.3...v4.5.0

v4.4.3

What's Changed

Undo indirect dependency updates from #627 by @joshmgross in actions/upload-artifact#632

Full Changelog: actions/upload-artifact@v4.4.2...v4.4.3

v4.4.2

What's Changed

Bump @actions/artifact to 2.1.11 by @robherley in actions/upload-artifact#627

Includes fix for relative symlinks not resolving properly

Full Changelog: actions/upload-artifact@v4.4.1...v4.4.2

v4.4.1

What's Changed

Add a section about hidden files by @joshmgross in actions/upload-artifact#607

Add workflow file for publishing releases to immutable action package by @Jcambass in actions/upload-artifact#621

Update @actions/artifact to latest version, includes symlink and timeout fixes by @robherley in actions/upload-artifact#625

New Contributors

@Jcambass made their first contribution in actions/upload-artifact#621

Full Changelog: actions/upload-artifact@v4.4.0...v4.4.1

v4.4.0

Notice: Breaking Changes ⚠️

We will no longer include hidden files and folders by default in the upload-artifact action of this version. This reduces the risk that credentials are accidentally uploaded into artifacts. Customers who need to continue to upload these files can use a new option, include-hidden-files, to continue to do so.

See "Notice of upcoming deprecations and breaking changes in GitHub Actions runners" changelog and this issue for more details.

... (truncated)

Commits

65c4c4a Merge pull request #662 from actions/yacaovsnc/add_variable_for_concurrency_a...
0207619 move files back to satisfy licensed ci
1ecca81 licensed cache updates
9742269 Expose env vars to controll concurrency and timeout
6f51ac0 Merge pull request #656 from bdehamer/bdehamer/artifact-digest
c40c16d add new artifact-digest output
735efb4 bump @actions/artifact from 2.1.11 to 2.2.0
184d73b Merge pull request #578 from hamirmahal/fix/deprecated-nodejs-usage-in-action
b4a0a98 Merge branch 'main' into fix/deprecated-nodejs-usage-in-action
b4b15b8 Merge pull request #632 from actions/joshmgross/undo-dependency-changes
Additional commits viewable in compare view

Updates actions/download-artifact from 3.0.2 to 4.1.8

Release notes

Sourced from actions/download-artifact's releases.

v4.1.8

What's Changed

Update @actions/artifact version, bump dependencies by @robherley in actions/download-artifact#341

Full Changelog: actions/download-artifact@v4...v4.1.8

v4.1.7

What's Changed

Update @actions/artifact dependency by @bethanyj28 in actions/download-artifact#325

Full Changelog: actions/download-artifact@v4.1.6...v4.1.7

v4.1.6

What's Changed

updating @actions/artifact dependency to v2.1.6 by @eggyhead in actions/download-artifact#324

Full Changelog: actions/download-artifact@v4.1.5...v4.1.6

v4.1.5

What's Changed

Update readme with v3/v2/v1 deprecation notice by @robherley in actions/download-artifact#322

Update dependencies @actions/core to v1.10.1 and @actions/artifact to v2.1.5

Full Changelog: actions/download-artifact@v4.1.4...v4.1.5

v4.1.4

What's Changed

Update @actions/artifact by @bethanyj28 in actions/download-artifact#307

Full Changelog: actions/download-artifact@v4...v4.1.4

v4.1.3

What's Changed

Update release-new-action-version.yml by @konradpabjan in actions/download-artifact#292

Update toolkit dependency with updated unzip logic by @bethanyj28 in actions/download-artifact#299

Update @actions/artifact by @bethanyj28 in actions/download-artifact#303

New Contributors

@bethanyj28 made their first contribution in actions/download-artifact#299

Full Changelog: actions/download-artifact@v4...v4.1.3

v4.1.2

Bump @actions/artifacts to latest version to include updated GHES host check

v4.1.1

... (truncated)

Commits

fa0a91b Merge pull request #341 from actions/robherley/bump-pkgs
b54d088 Update @actions/artifact version, bump dependencies
65a9edc Merge pull request #325 from bethanyj28/main
fdd1595 licensed
c13dba1 update @actions/artifact dependency
0daa75e Merge pull request #324 from actions/eggyhead/use-artifact-v2.1.6
9c19ed7 Merge branch 'main' into eggyhead/use-artifact-v2.1.6
3d3ea87 updating license
89af5db updating artifact package v2.1.6
b4aefff Merge pull request #323 from actions/eggyhead/update-artifact-v215
Additional commits viewable in compare view

Updates codecov/codecov-action from 3.1.4 to 5.1.2

Release notes

Sourced from codecov/codecov-action's releases.

v5.1.2

What's Changed

build(deps): bump github/codeql-action from 3.27.5 to 3.27.6 by @dependabot in codecov/codecov-action#1717

Remove mistake from options table by @Acconut in codecov/codecov-action#1718

build(deps): bump github/codeql-action from 3.27.6 to 3.27.9 by @dependabot in codecov/codecov-action#1722

Put quotes around ${{ inputs.token }} in action.yml by @jwodder in codecov/codecov-action#1721

chore(release): wrapper-0.0.31 by @codecov-releaser-app in codecov/codecov-action#1723

fix: prevent oidc on tokenless due to permissioning by @thomasrockhu-codecov in codecov/codecov-action#1724

fix: update action script by @thomasrockhu-codecov in codecov/codecov-action#1725

fix: update statment by @thomasrockhu-codecov in codecov/codecov-action#1726

chore(release): 5.1.2 by @thomasrockhu-codecov in codecov/codecov-action#1727

New Contributors

@Acconut made their first contribution in codecov/codecov-action#1718

Full Changelog: codecov/codecov-action@v5.1.1...v5.1.2

v5.1.1

What's Changed

chore(release): wrapper-0.0.30 by @codecov-releaser-app in codecov/codecov-action#1715

Full Changelog: codecov/codecov-action@v5.1.0...v5.1.1

v5.1.0

What's Changed

build(deps): bump github/codeql-action from 3.27.4 to 3.27.5 by @dependabot in codecov/codecov-action#1701

fix: hide unnecessary error on shasum by @thomasrockhu-codecov in codecov/codecov-action#1692
...
Description has been truncated

edgarrmondragon · 2025-01-21T00:36:23Z

@dependabot rebase

Bumps the actions group with 8 updates: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `3.5.3` | `4.2.2` | | [crazy-max/ghaction-github-labeler](https://github.com/crazy-max/ghaction-github-labeler) | `4.1.0` | `5.1.0` | | [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) | `1.8.7` | `1.12.3` | | [release-drafter/release-drafter](https://github.com/release-drafter/release-drafter) | `5.24.0` | `6.1.0` | | [actions/cache](https://github.com/actions/cache) | `3.3.1` | `4.2.0` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `3.1.2` | `4.6.0` | | [actions/download-artifact](https://github.com/actions/download-artifact) | `3.0.2` | `4.1.8` | | [codecov/codecov-action](https://github.com/codecov/codecov-action) | `3.1.4` | `5.1.2` | Updates `actions/checkout` from 3.5.3 to 4.2.2 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v3.5.3...v4.2.2) Updates `crazy-max/ghaction-github-labeler` from 4.1.0 to 5.1.0 - [Release notes](https://github.com/crazy-max/ghaction-github-labeler/releases) - [Commits](crazy-max/ghaction-github-labeler@v4.1.0...v5.1.0) Updates `pypa/gh-action-pypi-publish` from 1.8.7 to 1.12.3 - [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases) - [Commits](pypa/gh-action-pypi-publish@v1.8.7...v1.12.3) Updates `release-drafter/release-drafter` from 5.24.0 to 6.1.0 - [Release notes](https://github.com/release-drafter/release-drafter/releases) - [Commits](release-drafter/release-drafter@v5.24.0...v6.1.0) Updates `actions/cache` from 3.3.1 to 4.2.0 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](actions/cache@v3.3.1...v4.2.0) Updates `actions/upload-artifact` from 3.1.2 to 4.6.0 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@v3.1.2...v4.6.0) Updates `actions/download-artifact` from 3.0.2 to 4.1.8 - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@v3.0.2...v4.1.8) Updates `codecov/codecov-action` from 3.1.4 to 5.1.2 - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@v3.1.4...v5.1.2) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: crazy-max/ghaction-github-labeler dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: pypa/gh-action-pypi-publish dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: release-drafter/release-drafter dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/download-artifact dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions ... Signed-off-by: dependabot[bot] <support@github.com>

edgarrmondragon · 2025-01-21T03:56:25Z

.github/workflows/tests.yml

        with:
-          name: coverage-data
+          include-hidden-files: true


https://github.com/actions/upload-artifact/releases/tag/v4.4.0

dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code labels Jan 20, 2025

dependabot bot force-pushed the dependabot/github_actions/actions-eb191ddb75 branch from bb34dee to e799aa6 Compare January 21, 2025 00:37

edgarrmondragon self-assigned this Jan 21, 2025

edgarrmondragon approved these changes Jan 21, 2025

View reviewed changes

edgarrmondragon force-pushed the dependabot/github_actions/actions-eb191ddb75 branch from 9de1ef0 to aca92df Compare January 21, 2025 03:31

Fix coverage artifact upload and download

a704294

edgarrmondragon force-pushed the dependabot/github_actions/actions-eb191ddb75 branch from aca92df to a704294 Compare January 21, 2025 03:51

edgarrmondragon reviewed Jan 21, 2025

View reviewed changes

edgarrmondragon approved these changes Jan 21, 2025

View reviewed changes

edgarrmondragon merged commit 4d74d15 into main Jan 21, 2025
20 checks passed

dependabot bot deleted the dependabot/github_actions/actions-eb191ddb75 branch January 21, 2025 04:14

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the actions group with 8 updates #1285

Bump the actions group with 8 updates #1285

dependabot bot commented on behalf of github Jan 20, 2025 •

edited

Loading

edgarrmondragon commented Jan 21, 2025

edgarrmondragon Jan 21, 2025

Bump the actions group with 8 updates #1285

Bump the actions group with 8 updates #1285

Conversation

dependabot bot commented on behalf of github Jan 20, 2025 • edited Loading

v4.2.2

What's Changed

v4.2.1

What's Changed

New Contributors

v4.2.0

What's Changed

New Contributors

v4.1.7

What's Changed

New Contributors

v4.1.6

What's Changed

v4.1.5

What's Changed

v4.2.2

v4.2.1

v4.2.0

v4.1.7

v4.1.6

v4.1.5

v4.1.4

v4.1.3

v4.1.2

v4.1.1

v4.1.0

v4.0.0

v5.1.0

v5.0.0

v4.2.0

v1.12.3

✨ What's Improved

📝 Docs

🛠️ Internal Updates

v1.12.2

🐛 What's Fixed

v1.12.1

🐛 What's Fixed

v6.1.0

What's Changed

New

Bug Fixes

Documentation

v6.0.0

What's Changed

v6.0.0-beta.1

v5.25.0

What's Changed

New

v4.2.0

⚠️ Important Changes

Minor changes

v4.1.2

What's Changed

New Contributors

v4.1.1

What's Changed

4.2.0

4.1.2

4.1.1

4.1.0

4.0.2

4.0.1

4.0.0

3.4.0

3.3.3

3.3.2

v4.6.0

What's Changed

v4.5.0

What's Changed

New Contributors

v4.4.3

What's Changed

v4.4.2

What's Changed

dependabot bot commented on behalf of github Jan 20, 2025 •

edited

Loading