Bump the github-actions group with 3 updates by dependabot[bot] · Pull Request #10 · AGIBuild/dotnet.CI.template

dependabot · 2026-03-14T04:24:52Z

Bumps the github-actions group with 3 updates: dorny/test-reporter, actions/attest-build-provenance and actions/upload-pages-artifact.

Updates dorny/test-reporter from 1 to 2

Release notes

Sourced from dorny/test-reporter's releases.

v2.0.0

What's Changed

Merge v1.7.0 to v1 branche by @j-catania in dorny/test-reporter#298

Bump development to v2.0.0-preview by @jozefizso in dorny/test-reporter#449

Update checkout and upload-artifact actions versions by @Akaame in dorny/test-reporter#419

README.md: Update GitHub Actions by @cclauss in dorny/test-reporter#404

Update project to Node 20 runtime by @jozefizso in dorny/test-reporter#450

Add support for NUnit v3 XML results files by @kring in dorny/test-reporter#225

Fix JUnit message / type fields. by @AnthonyBarbier in dorny/test-reporter#399

Update mocha-json usage instructions by @MonkeyDo in dorny/test-reporter#145

Clarify .NET support is dotnet test command support by @anatawa12 in dorny/test-reporter#232

Target node20 by @jozefizso in dorny/test-reporter#489

Support displaying test results in markdown using GitHub Actions Job Summaries by @ritchxu in dorny/test-reporter#463

Support displaying test results in markdown using GitHub Actions Job Summaries by @ritchxu in dorny/test-reporter#383

Fix parsing of ESLint reports in jest-junit format by @phjardas in dorny/test-reporter#134

Change docs for mocha-json by @chdanielmueller in dorny/test-reporter#517

Remove unused development dependency @types/github-slugger by @jozefizso in dorny/test-reporter#524

Merge v1 branch to main by @jozefizso in dorny/test-reporter#525

Update bug_report.md by @j-catania in dorny/test-reporter#553

Update feature.md by @j-catania in dorny/test-reporter#554

feat: parse junit report with message by @cmonaghan1 in dorny/test-reporter#559

Update dependencies by @jozefizso in dorny/test-reporter#560

test-reporter release v2.0.0 by @jozefizso in dorny/test-reporter#561

New Contributors

@Akaame made their first contribution in dorny/test-reporter#419

@cclauss made their first contribution in dorny/test-reporter#404

@kring made their first contribution in dorny/test-reporter#225

@AnthonyBarbier made their first contribution in dorny/test-reporter#399

@MonkeyDo made their first contribution in dorny/test-reporter#145

@anatawa12 made their first contribution in dorny/test-reporter#232

@ritchxu made their first contribution in dorny/test-reporter#463

@phjardas made their first contribution in dorny/test-reporter#134

@chdanielmueller made their first contribution in dorny/test-reporter#517

@cmonaghan1 made their first contribution in dorny/test-reporter#559

Full Changelog: dorny/test-reporter@v1.9.1...v2.0.0

v1.9.1

What's Changed

fix: reporting wrong number of tests in Dart by @dominicmh in dorny/test-reporter#426

Fix problematic retransmission of authentication token (alternative solution) by @JojOatXGME in dorny/test-reporter#438

Update development dependencies by @jozefizso in dorny/test-reporter#442

New Contributors

@dominicmh made their first contribution in dorny/test-reporter#426

@JojOatXGME made their first contribution in dorny/test-reporter#438

Full Changelog: dorny/test-reporter@v1.9.0...v1.9.1

... (truncated)

Changelog

Sourced from dorny/test-reporter's changelog.

Changelog

2.6.0

Fix: For workflow_run events, resolve the commit of the check run from related pull request head commits first (matching workflow_run.head_branch, then first PR), and fall back to workflow_run.head_sha for non-PR runs dorny/test-reporter#673

Change: The test-reporter action will listed all artifacts associated with the build run dorny/test-reporter#693

Maintenance: Upgrade to ESLint v9 dorny/test-reporter#629

2.5.0

Feature: Add Nette Tester support with tester-junit reporter dorny/test-reporter#707

Maintenance: Bump actions/upload-artifact from 5 to 6 dorny/test-reporter#695

2.4.0

Feature: Add PHPUnit support with JUnit XML dialect parser dorny/test-reporter#422

Feature: Add JUnit XML sample files and tests for validation dorny/test-reporter#701

Fix: Refactor deprecated String.substr() function to use String.substring() dorny/test-reporter#704

2.3.0

Feature: Add Python support with python-xunit reporter (pytest) dorny/test-reporter#643

Feature: Add pytest traceback parsing and directory-mapping option dorny/test-reporter#238

Performance: Update sax.js to fix large XML file parsing dorny/test-reporter#681

Documentation: Complete documentation for all supported reporters dorny/test-reporter#691

Security: Bump js-yaml and mocha in /reports/mocha (fixes prototype pollution) dorny/test-reporter#682

2.2.0

Feature: Add collapsed option to control report summary visibility dorny/test-reporter#664

Fix badge encoding for values including underscore and hyphens dorny/test-reporter#672

Fix missing report-title attribute in action definition dorny/test-reporter#637

Refactor variable names to fix shadowing issues dorny/test-reporter#630

2.1.1

Fix error when a TestMethod element does not have a className attribute in a trx file dorny/test-reporter#623

Add stack trace from trx to summary dorny/test-reporter#615

List only failed tests dorny/test-reporter#606

Add type definitions to github-utils.ts dorny/test-reporter#604

Avoid split on undefined dorny/test-reporter#258

Return links to summary report dorny/test-reporter#588

Add step summary short summary dorny/test-reporter#589

Fix for empty TRX TestDefinitions dorny/test-reporter#582

Increase step summary limit to 1MiB dorny/test-reporter#581

Fix input description for list options dorny/test-reporter#572

2.1.0

Feature: Add summary title dorny/test-reporter#568

Feature: Add Golang test parser dorny/test-reporter#571

Increase step summary limit to 1MiB dorny/test-reporter#581

Fix for empty TRX TestDefinitions dorny/test-reporter#582

Fix input description for list options dorny/test-reporter#572

Update npm packages dorny/test-reporter#583

2.0.0

... (truncated)

Commits

3d76b34 Merge pull request #730 from dorny/feature/166-list-all-artifacts
a71adbe Update changelog
34ed02c Merge pull request #728 from dorny/dependabot/npm_and_yarn/ts-jest-29.4.6
5204d85 Bump ts-jest from 29.4.5 to 29.4.6
6658c27 Merge pull request #727 from dorny/feature/fix_vulnerabilities
9b46772 Use npm audit fix to update sub dependencies
b3a9df8 Merge pull request #629 from dorny/feature/601_eslint_v9
deb1d02 Rebuild the dist/index.js file
69312b9 Update changelog
eed2d2d Modernize ESLint configuration
Additional commits viewable in compare view

Updates actions/attest-build-provenance from 2 to 4

Release notes

Sourced from actions/attest-build-provenance's releases.

v4.0.0

[!NOTE] As of version 4, actions/attest-build-provenance is simply a wrapper on top of actions/attest.

Existing applications may continue to use the attest-build-provenance action, but new implementations should use actions/attest instead.

What's Changed

Prepare v4 release by @bdehamer in actions/attest-build-provenance#835

Full Changelog: actions/attest-build-provenance@v3.2.0...v4.0.0

v3.2.0

What's Changed

Bump @actions/core from 1.11.1 to 2.0.1 by @dependabot[bot] in actions/attest-build-provenance#776

Add more documentation on Artifact Metadata Storage Records by @malancas in actions/attest-build-provenance#797

Update actions/attest to latest version v3.2.0 by @malancas in actions/attest-build-provenance#812

Full Changelog: actions/attest-build-provenance@v3.1.0...v3.2.0

v3.1.0

What's Changed

Prepare v3 release by @bdehamer in actions/attest-build-provenance#697

Bump js-yaml from 3.14.1 to 3.14.2 by @dependabot[bot] in actions/attest-build-provenance#749

Bump tar from 7.5.1 to 7.5.2 by @dependabot[bot] in actions/attest-build-provenance#753

Bump glob from 10.4.5 to 10.5.0 by @dependabot[bot] in actions/attest-build-provenance#754

Bump @types/node from 24.10.1 to 25.0.2 by @dependabot[bot] in actions/attest-build-provenance#774

Bump @actions/attest from 1.6.0 to 2.0.0 by @dependabot[bot] in actions/attest-build-provenance#736

Bump @actions/attest from 2.0.0 to 2.1.0 by @dependabot[bot] in actions/attest-build-provenance#775

Add support for creating artifact metadata storage records by @malancas in actions/attest-build-provenance#779

New Contributors

@malancas made their first contribution in actions/attest-build-provenance#779

Full Changelog: actions/attest-build-provenance@v3...v3.1.0

v3.0.0

What's Changed

Adjust node max-http-header-size setting by @bdehamer in actions/attest-build-provenance#687

Bump actions/attest from v2.4.0 to v3.0.0 by @bdehamer in actions/attest-build-provenance#691

Bump to node24 runtime

Improved checksum parsing

Bump attest-build-provenance/predicate to v2.0.0 by @bdehamer in actions/attest-build-provenance#693

Bump to node24 runtime by @bdehamer in actions/attest-build-provenance#692

⚠️ Minimum Compatible Runner Version

v2.327.1 Release Notes

Make sure your runner is updated to this version or newer to use this release.

... (truncated)

Commits

a2bbfa2 bump actions/attest from 4.0.0 to 4.1.0 (#838)
0856891 update RELEASE.md docs (#836)
e4d4f7c prepare v4 release (#835)
02a49bd Bump github/codeql-action in the actions-minor group (#824)
7c757df Bump the npm-development group with 2 updates (#825)
c44148e Bump github/codeql-action in the actions-minor group (#818)
3234352 Bump @types/node from 25.0.10 to 25.2.0 in the npm-development group (#819)
18db129 Bump tar from 7.5.6 to 7.5.7 (#816)
90fadfa Bump @actions/core from 2.0.1 to 2.0.2 in the npm-production group (#799)
57db8ba Bump the npm-development group across 1 directory with 3 updates (#808)
Additional commits viewable in compare view

Updates actions/upload-pages-artifact from 3 to 4

Release notes

Sourced from actions/upload-pages-artifact's releases.

v4.0.0

What's Changed

Potentially breaking change: hidden files (specifically dotfiles) will not be included in the artifact by @tsusdere in actions/upload-pages-artifact#102 If you need to include dotfiles in your artifact: instead of using this action, create your own artifact according to these requirements https://github.com/actions/upload-pages-artifact?tab=readme-ov-file#artifact-validation

Pin actions/upload-artifact to SHA by @heavymachinery in actions/upload-pages-artifact#127

Full Changelog: actions/upload-pages-artifact@v3.0.1...v4.0.0

v3.0.1

Changelog

Group tar's output to prevent it from messing up action logs @SilverRainZ (#94)

Update README.md @uiolee (#88)

Bump the non-breaking-changes group with 1 update @dependabot (#92)

Update Dependabot config to group non-breaking changes @JamesMGreene (#91)

Bump actions/checkout from 3 to 4 @dependabot (#76)

See details of all code changes since previous release.

Commits

7b1f4a7 Merge pull request #127 from heavymachinery/pin-sha
4cc19c7 Pin actions/upload-artifact to SHA
2d163be Merge pull request #107 from KittyChiu/main
c704843 fix: linted README
9605915 Merge pull request #106 from KittyChiu/kittychiu/update-readme-1
e59cdfe Update README.md
a2d6704 doc: updated usage section in readme
984864e Merge pull request #105 from actions/Jcambass-patch-1
45dc788 Add workflow file for publishing releases to immutable action package
efaad07 Merge pull request #102 from actions/hidden-files
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the github-actions group with 3 updates: [dorny/test-reporter](https://github.com/dorny/test-reporter), [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance) and [actions/upload-pages-artifact](https://github.com/actions/upload-pages-artifact). Updates `dorny/test-reporter` from 1 to 2 - [Release notes](https://github.com/dorny/test-reporter/releases) - [Changelog](https://github.com/dorny/test-reporter/blob/main/CHANGELOG.md) - [Commits](dorny/test-reporter@v1...v2) Updates `actions/attest-build-provenance` from 2 to 4 - [Release notes](https://github.com/actions/attest-build-provenance/releases) - [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md) - [Commits](actions/attest-build-provenance@v2...v4) Updates `actions/upload-pages-artifact` from 3 to 4 - [Release notes](https://github.com/actions/upload-pages-artifact/releases) - [Commits](actions/upload-pages-artifact@v3...v4) --- updated-dependencies: - dependency-name: dorny/test-reporter dependency-version: '2' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/attest-build-provenance dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: actions/upload-pages-artifact dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2026-03-14T04:50:53Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Mar 14, 2026

dependabot Bot closed this Mar 14, 2026

dependabot Bot deleted the dependabot/github_actions/github-actions-6d02cb8164 branch March 14, 2026 04:50

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the github-actions group with 3 updates#10

Bump the github-actions group with 3 updates#10
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/github-actions-6d02cb8164

dependabot Bot commented on behalf of github Mar 14, 2026 •

edited

Loading

Uh oh!

dependabot Bot commented on behalf of github Mar 14, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Mar 14, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v2.0.0

What's Changed

New Contributors

v1.9.1

What's Changed

New Contributors

Changelog

2.6.0

2.5.0

2.4.0

2.3.0

2.2.0

2.1.1

2.1.0

2.0.0

v4.0.0

What's Changed

v3.2.0

What's Changed

v3.1.0

What's Changed

New Contributors

v3.0.0

What's Changed

⚠️ Minimum Compatible Runner Version

v4.0.0

What's Changed

v3.0.1

Changelog

Uh oh!

dependabot Bot commented on behalf of github Mar 14, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot Bot commented on behalf of github Mar 14, 2026 •

edited

Loading