Bump octokit/request-action from 2.4.0 to 3.0.0

[dependabot]

Bumps octokit/request-action from 2.4.0 to 3.0.0.

Release notes

Sourced from octokit/request-action's releases.

v3.0.0

3.0.0 (2026-03-20)

Bug Fixes

• deps: update dependency @​octokit/action to v8, update runner to v24, switch build from NCC to ESBuild (#324) (b91aaba)

BREAKING CHANGES

• deps: Update runner to Node 24

Co-authored-by: uzlopak aras.abbasi@googlemail.com Co-authored-by: wolfy1339 webmaster@wolfy1339.com Co-authored-by: wolfy1339 4595477+wolfy1339@users.noreply.github.com Co-authored-by: Audrey Romanet 7204715+aromanet42@users.noreply.github.com Co-authored-by: renovate[bot] <29139614+renovate[bot]@​users.noreply.github.com>

Commits

• b91aaba fix(deps): update dependency @​octokit/action to v8, update runner to v24, swi...
• 02f5e7c ci(action): update peter-evans/create-or-update-comment action to v5 (#331)
• f103041 ci(action): update github/codeql-action action to v4 (#332)
• 937f551 ci(action): update actions/checkout action to v6 (#340)
• c861151 ci(action): update actions/setup-node action to v6 (#333)
• 05a2312 build(deps): bump @​octokit/request from 9.1.1 to 9.2.2 (#322)
• 22cf731 build(deps): bump @​octokit/plugin-paginate-rest from 11.3.0 to 11.4.2 (#319)
• 786351d ci(action): update actions/publish-immutable-action action to v0.0.4 (#314)
• See full diff in compare view

Summary by CodeRabbit

• Chores
  • Updated workflow automation infrastructure for internal testing processes.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Repository YAML (base), Organization UI (inherited)

Review profile: CHILL

Plan: Pro

Run ID: 2bee01dd-9de5-48f6-8c9f-19a375ca5a23

📥 Commits

Reviewing files that changed from the base of the PR and between d9a3ddb and 46e3034.

📒 Files selected for processing (1)

• .github/workflows/publish-components-for-e2e-tests.yml

✅ Files skipped from review due to trivial changes (1)

• .github/workflows/publish-components-for-e2e-tests.yml

---

Walkthrough

Bumps the octokit/request-action GitHub Actions step from v2.4.0 to v3.0.0 in .github/workflows/publish-components-for-e2e-tests.yml. No other workflow logic, conditions, or downstream step references were modified.

Changes

Cohort / File(s)	Summary
GitHub Actions Workflow .github/workflows/publish-components-for-e2e-tests.yml	Updated Send Github API Request to get PR data step to use octokit/request-action@v3.0.0 (was @v2.4.0). No other workflow logic changed.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title clearly and accurately describes the main change: a version bump of the octokit/request-action dependency from 2.4.0 to 3.0.0, which is the sole focus of the pull request.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch dependabot/github_actions/octokit/request-action-3.0.0

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.github/workflows/publish-components-for-e2e-tests.yml:
- Line 38: Add the environment variable forcing Node 24 for JavaScript actions
so the octokit/request-action@v3.0.0 step runs correctly: update the GitHub
Actions job or the specific step that uses octokit/request-action@v3.0.0 to
include env: FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true; target the step
referencing octokit/request-action@v3.0.0 (or the surrounding job) and add that
env key so the action runs under Node 24 instead of the runner's default Node
20.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 0cf91770-8ff4-415d-aca2-b52aa6fb4b43

📥 Commits

Reviewing files that changed from the base of the PR and between 629dc7b and d9a3ddb.

📒 Files selected for processing (1)

• .github/workflows/publish-components-for-e2e-tests.yml

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

🧩 Analysis chain

🌐 Web query:

Does GitHub Actions ubuntu-24.04 runner support Node 24?

💡 Result:

Yes—with two important distinctions:

• Running your workflow code on Node.js 24: Use actions/setup-node and set node-version: 24 (supported). [1]
• JavaScript-based GitHub Actions runtime (the Node version used to run actions like actions/checkout): The GitHub Actions runner supports Node24 (runner v2.328.0+). You can opt in today via FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true, and GitHub plans to make Node24 the default starting June 2, 2026. [2]
• What’s preinstalled on ubuntu-24.04: The image currently lists Node.js 20.20.1 as the installed system Node. [3]

Sources: [1] [2] [3]

---

🏁 Script executed:

cat .github/workflows/publish-components-for-e2e-tests.yml

Repository: codeready-toolchain/toolchain-e2e

Length of output: 3764

---

Set FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable.

The octokit/request-action@v3.0.0 requires Node 24, but ubuntu-24.04 has Node 20 preinstalled. GitHub Actions will make Node 24 the default for JavaScript actions on June 2, 2026, but until then you must explicitly opt in by adding the environment variable to the job or step. Add:

env:
  FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true

Otherwise the action will fail when triggered via issue comment event.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In @.github/workflows/publish-components-for-e2e-tests.yml at line 38, Add the
environment variable forcing Node 24 for JavaScript actions so the
octokit/request-action@v3.0.0 step runs correctly: update the GitHub Actions job
or the specific step that uses octokit/request-action@v3.0.0 to include env:
FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true; target the step referencing
octokit/request-action@v3.0.0 (or the surrounding job) and add that env key so
the action runs under Node 24 instead of the runner's default Node 20.

[MatousJobanek]

/lgtm

[openshift-ci]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: alexeykazakov, dependabot[bot], MatousJobanek

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [MatousJobanek,alexeykazakov]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[alexeykazakov]

/retest

[openshift-ci]

New changes are detected. LGTM label has been removed.

[rsoaresd]

@dependabot rebase

hitting rebase because some checks did not trigger

[dependabot]

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

[rsoaresd]

@dependabot recreate

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud