Skip to content

Commit 3e57bb9

Browse files
IlyasShabixophamclaudedependabot[bot]szegedi
authored
V5.14.4 proposal (#337)
* Fix release tag push and pin actions by SHA (#335) The release workflow's tag push was rejected by the tag ruleset because actions/checkout persisted GITHUB_TOKEN credentials, which took precedence over the dd-octo-sts token in the explicit push URL. Drop the persisted credentials and downgrade contents permission to read. Also pin actions/download-artifact and actions/setup-node by commit SHA. Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com> * Specify node-gyp-build to major v4 (#336) * build(deps-dev): bump @types/node from 25.7.0 to 25.9.1 (#333) Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 25.7.0 to 25.9.1. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node) --- updated-dependencies: - dependency-name: "@types/node" dependency-version: 25.9.1 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Attila Szegedi <szegedi@users.noreply.github.com> * v5.14.4 --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: Christoph Hamsen <37963496+xopham@users.noreply.github.com> Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Attila Szegedi <szegedi@users.noreply.github.com>
1 parent 4225b24 commit 3e57bb9

3 files changed

Lines changed: 21 additions & 19 deletions

File tree

.github/workflows/release.yml

Lines changed: 7 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -25,16 +25,18 @@ jobs:
2525
environment: npm
2626
permissions:
2727
id-token: write # Required for OIDC
28-
contents: write
28+
contents: read
2929
steps:
3030
- uses: DataDog/dd-octo-sts-action@acaa02eee7e3bb0839e4272dacb37b8f3b58ba80 # v1.0.3
3131
id: octo-sts
3232
with:
3333
scope: DataDog/pprof-nodejs
3434
policy: self.github.release.push-tags
3535
- uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1
36-
- uses: actions/download-artifact@v4
37-
- uses: actions/setup-node@v3
36+
with:
37+
persist-credentials: false # drop GITHUB_TOKEN so the dd-octo-sts token is used for the tag push
38+
- uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0
39+
- uses: actions/setup-node@3235b876344d2a9aa001b8d1453c930bba69e610 # v3.9.1
3840
with:
3941
node-version: '24'
4042
registry-url: 'https://registry.npmjs.org'
@@ -58,8 +60,8 @@ jobs:
5860
contents: read
5961
steps:
6062
- uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1
61-
- uses: actions/download-artifact@v4
62-
- uses: actions/setup-node@v3
63+
- uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0
64+
- uses: actions/setup-node@3235b876344d2a9aa001b8d1453c930bba69e610 # v3.9.1
6365
with:
6466
node-version: '24'
6567
registry-url: 'https://registry.npmjs.org'

package-lock.json

Lines changed: 11 additions & 11 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

package.json

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
{
22
"name": "@datadog/pprof",
3-
"version": "5.14.3",
3+
"version": "5.14.4",
44
"description": "pprof support for Node.js",
55
"repository": {
66
"type": "git",
@@ -36,13 +36,13 @@
3636
},
3737
"license": "Apache-2.0",
3838
"dependencies": {
39-
"node-gyp-build": "<5.0",
39+
"node-gyp-build": "^4.8.4",
4040
"pprof-format": "^2.2.1",
4141
"source-map": "^0.7.4"
4242
},
4343
"devDependencies": {
4444
"@types/mocha": "^10.0.1",
45-
"@types/node": "25.7.0",
45+
"@types/node": "25.9.1",
4646
"@types/semver": "^7.5.8",
4747
"@types/sinon": "^21.0.1",
4848
"@types/tmp": "^0.2.3",

0 commit comments

Comments
 (0)