Skip to content

Bump the github-actions group across 1 directory with 6 updates#95

Closed
dependabot[bot] wants to merge 1 commit intotrunkfrom
dependabot/github_actions/github-actions-e305f99466
Closed

Bump the github-actions group across 1 directory with 6 updates#95
dependabot[bot] wants to merge 1 commit intotrunkfrom
dependabot/github_actions/github-actions-e305f99466

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github Dec 18, 2024
edited
Loading

Bumps the github-actions group with 6 updates in the / directory:

Package From To
wow-actions/welcome 1.3.0 1.3.1
actions/setup-node 4.0.3 4.1.0
actions/cache 4.0.2 4.2.0
actions/upload-artifact 4.3.4 4.5.0
slackapi/slack-github-action 1.26.0 2.0.0
codecov/codecov-action 4.5.0 5.1.1

Updates wow-actions/welcome from 1.3.0 to 1.3.1

Release notes

Sourced from wow-actions/welcome's releases.

v1.3.1

1.3.1 (2024-10-18)

This release is also available on:

  • v1.3.1
Changelog

Sourced from wow-actions/welcome's changelog.

1.3.1 (2024-10-18)

1.3.0 (2023-02-13)

Features

  • use workflow GitHub token as default GITHUB_TOKEN (4a90331)

1.2.0 (2023-02-02)

Features

  • check non-stargazer and give a tip message (97dbbac)
Commits

Updates actions/setup-node from 4.0.3 to 4.1.0

Release notes

Sourced from actions/setup-node's releases.

v4.1.0

What's Changed

New Contributors

Full Changelog: actions/setup-node@v4...v4.1.0

v4.0.4

What's Changed

Documentation changes:

New Contributors

Full Changelog: actions/setup-node@v4...v4.0.4

Commits

Updates actions/cache from 4.0.2 to 4.2.0

Release notes

Sourced from actions/cache's releases.

v4.2.0

⚠️ Important Changes

The cache backend service has been rewritten from the ground up for improved performance and reliability. actions/cache now integrates with the new cache service (v2) APIs.

The new service will gradually roll out as of February 1st, 2025. The legacy service will also be sunset on the same date. Changes in these release are fully backward compatible.

We are deprecating some versions of this action. We recommend upgrading to version v4 or v3 as soon as possible before February 1st, 2025. (Upgrade instructions below).

If you are using pinned SHAs, please use the SHAs of versions v4.2.0 or v3.4.0

If you do not upgrade, all workflow runs using any of the deprecated actions/cache will fail.

Upgrading to the recommended versions will not break your workflows.

Read more about the change & access the migration guide: reference to the announcement.

Minor changes

Minor and patch version updates for these dependencies:

  • @​actions/core: 1.11.1
  • @​actions/io: 1.1.3
  • @​vercel/ncc: 0.38.3

Full Changelog: actions/cache@v4...v4.2.0

v4.1.2

What's Changed

New Contributors

Full Changelog: actions/cache@v4...v4.1.2

v4.1.1

What's Changed

... (truncated)

Changelog

Sourced from actions/cache's changelog.

Releases

4.2.0

TLDR; The cache backend service has been rewritten from the ground up for improved performance and reliability. actions/cache now integrates with the new cache service (v2) APIs.

The new service will gradually roll out as of February 1st, 2025. The legacy service will also be sunset on the same date. Changes in these release are fully backward compatible.

We are deprecating some versions of this action. We recommend upgrading to version v4 or v3 as soon as possible before February 1st, 2025. (Upgrade instructions below).

If you are using pinned SHAs, please use the SHAs of versions v4.2.0 or v3.4.0

If you do not upgrade, all workflow runs using any of the deprecated actions/cache will fail.

Upgrading to the recommended versions will not break your workflows.

4.1.2

  • Add GitHub Enterprise Cloud instances hostname filters to inform API endpoint choices - #1474
  • Security fix: Bump braces from 3.0.2 to 3.0.3 - #1475

4.1.1

  • Restore original behavior of cache-hit output - #1467

4.1.0

  • Ensure cache-hit output is set when a cache is missed - #1404
  • Deprecate save-always input - #1452

4.0.2

  • Fixed restore fail-on-cache-miss not working.

4.0.1

  • Updated isGhes check

4.0.0

  • Updated minimum runner version support from node 12 -> node 20

3.4.0

  • Integrated with the new cache service (v2) APIs

3.3.3

  • Updates @​actions/cache to v3.2.3 to fix accidental mutated path arguments to getCacheVersion actions/toolkit#1378
  • Additional audit fixes of npm package(s)

... (truncated)

Commits

Updates actions/upload-artifact from 4.3.4 to 4.5.0

Release notes

Sourced from actions/upload-artifact's releases.

v4.5.0

What's Changed

New Contributors

Full Changelog: actions/upload-artifact@v4.4.3...v4.5.0

v4.4.3

What's Changed

Full Changelog: actions/upload-artifact@v4.4.2...v4.4.3

v4.4.2

What's Changed

Full Changelog: actions/upload-artifact@v4.4.1...v4.4.2

v4.4.1

What's Changed

New Contributors

Full Changelog: actions/upload-artifact@v4.4.0...v4.4.1

v4.4.0

Notice: Breaking Changes ⚠️

We will no longer include hidden files and folders by default in the upload-artifact action of this version. This reduces the risk that credentials are accidentally uploaded into artifacts. Customers who need to continue to upload these files can use a new option, include-hidden-files, to continue to do so.

See "Notice of upcoming deprecations and breaking changes in GitHub Actions runners" changelog and this issue for more details.

What's Changed

Full Changelog: actions/upload-artifact@v4.3.6...v4.4.0

... (truncated)

Commits
  • 6f51ac0 Merge pull request #656 from bdehamer/bdehamer/artifact-digest
  • c40c16d add new artifact-digest output
  • 735efb4 bump @​actions/artifact from 2.1.11 to 2.2.0
  • 184d73b Merge pull request #578 from hamirmahal/fix/deprecated-nodejs-usage-in-action
  • b4a0a98 Merge branch 'main' into fix/deprecated-nodejs-usage-in-action
  • b4b15b8 Merge pull request #632 from actions/joshmgross/undo-dependency-changes
  • 92b01eb Undo indirect dependency updates from #627
  • 8448086 Merge pull request #627 from actions/robherley/v4.4.2
  • b1d4642 add explicit relative and absolute symlinks to workflow
  • d50e660 bump version
  • Additional commits viewable in compare view

Updates slackapi/slack-github-action from 1.26.0 to 2.0.0

Release notes

Sourced from slackapi/slack-github-action's releases.

Slack Send v2.0.0

YAML! And more API methods! With improved erroring! And more!

Sending data to Slack can now be done with the YAML format, and that data can be sent to [a Slack API method][methods] or technique of choice with the provided payload. And additional configurations can improve error handling or customize values between steps.

Breaking changes happen with this update and recommended migration strategies are detailed below. Adding this step to new workflows might prefer to follow the README instead 📚

What's changed

Both inputs of payload variables, techniques for sending the payload, additional configurations, and expected outputs were changed:

... (truncated)

Commits
  • 485a9d4 Release
  • e598089 chore(release): tag version 2.0.0
  • e9b3a6b feat!: wrap payloads to send to a "method" with "token" or "webhook" (#333)
  • 74ae656 chore(release): tag version 1.27.1
  • bd0e281 build(deps): bump codecov/codecov-action from 4.5.0 to 4.6.0 (#355)
  • e127529 build(deps): bump @​actions/core from 1.10.1 to 1.11.1 (#354)
  • 6b51022 build(deps-dev): bump eslint-plugin-jsdoc from 50.3.1 to 50.4.3 (#353)
  • 555e4ad build(deps-dev): bump eslint-plugin-import from 2.30.0 to 2.31.0 (#352)
  • 8d4500e build(deps): bump @​slack/web-api from 7.5.0 to 7.7.0 (#351)
  • d0dece6 build(deps-dev): bump mocha from 10.7.3 to 10.8.2 (#350)
  • Additional commits viewable in compare view

Updates codecov/codecov-action from 4.5.0 to 5.1.1

Release notes

Sourced from codecov/codecov-action's releases.

v5.1.1

What's Changed

Full Changelog: codecov/codecov-action@v5.1.0...v5.1.1

v5.1.0

What's Changed

Full Changelog: codecov/codecov-action@v5.0.7...v5.1.0

v5.0.7

What's Changed

Full Changelog: codecov/codecov-action@v5.0.6...v5.0.7

v5.0.6

What's Changed

Full Changelog: codecov/codecov-action@v5.0.5...v5.0.6

v5.0.5

What's Changed

New Contributors

Full Changelog: codecov/codecov-action@v5.0.4...v5.0.5

v5.0.4

What's Changed

... (truncated)

Changelog

Sourced from codecov/codecov-action's changelog.

v5.1.1

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.1.0..v5.1.1

v5.1.0

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.0.7..v5.1.0

v5.0.7

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.0.6..v5.0.7

v5.0.6

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.0.5..v5.0.6

v5.0.5

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.0.4..v5.0.5

v5.0.4

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.0.3..v5.0.4

v5.0.3

What's Changed

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the github-actions group across 1 directory with 6 updates
17bbba6 
Bumps the github-actions group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [wow-actions/welcome](https://github.com/wow-actions/welcome) | `1.3.0` | `1.3.1` |
| [actions/setup-node](https://github.com/actions/setup-node) | `4.0.3` | `4.1.0` |
| [actions/cache](https://github.com/actions/cache) | `4.0.2` | `4.2.0` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4.3.4` | `4.5.0` |
| [slackapi/slack-github-action](https://github.com/slackapi/slack-github-action) | `1.26.0` | `2.0.0` |
| [codecov/codecov-action](https://github.com/codecov/codecov-action) | `4.5.0` | `5.1.1` |



Updates `wow-actions/welcome` from 1.3.0 to 1.3.1
- [Release notes](https://github.com/wow-actions/welcome/releases)
- [Changelog](https://github.com/wow-actions/welcome/blob/master/CHANGELOG.md)
- [Commits](wow-actions/welcome@72817eb...68019c2)

Updates `actions/setup-node` from 4.0.3 to 4.1.0
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](actions/setup-node@1e60f62...39370e3)

Updates `actions/cache` from 4.0.2 to 4.2.0
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](actions/cache@0c45773...1bd1e32)

Updates `actions/upload-artifact` from 4.3.4 to 4.5.0
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@0b2256b...6f51ac0)

Updates `slackapi/slack-github-action` from 1.26.0 to 2.0.0
- [Release notes](https://github.com/slackapi/slack-github-action/releases)
- [Commits](slackapi/slack-github-action@70cd7be...485a9d4)

Updates `codecov/codecov-action` from 4.5.0 to 5.1.1
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](codecov/codecov-action@e28ff12...7f8b4b4)

---
updated-dependencies:
- dependency-name: wow-actions/welcome
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: slackapi/slack-github-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Dec 18, 2024
@dependabot dependabot Bot mentioned this pull request Dec 18, 2024
Closed
@dependabot @github
Copy link
Copy Markdown
Author

dependabot Bot commented on behalf of github Aug 14, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Aug 14, 2025
@dependabot dependabot Bot deleted the dependabot/github_actions/github-actions-e305f99466 branch August 14, 2025 12:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants