Skip to content

build(deps): bump the github-actions-dependencies group with 6 updates#1661

Merged
neilime merged 1 commit into
mainfrom
dependabot/github_actions/github-actions-dependencies-a32b55a555
Nov 15, 2025
Merged

build(deps): bump the github-actions-dependencies group with 6 updates#1661
neilime merged 1 commit into
mainfrom
dependabot/github_actions/github-actions-dependencies-a32b55a555

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Nov 14, 2025

Copy link
Copy Markdown
Contributor

Bumps the github-actions-dependencies group with 6 updates:

Package From To
hoverkraft-tech/ci-github-nodejs/.github/workflows/continuous-integration.yml 0.17.0 0.18.0
hoverkraft-tech/ci-github-common/.github/workflows/greetings.yml 0.28.0 0.28.1
hoverkraft-tech/ci-github-common/.github/workflows/need-fix-to-issue.yml 0.28.0 0.28.1
hoverkraft-tech/ci-github-nodejs 0.17.0 0.18.0
hoverkraft-tech/ci-github-common/.github/workflows/semantic-pull-request.yml 0.28.0 0.28.1
hoverkraft-tech/ci-github-common/.github/workflows/stale.yml 0.28.0 0.28.1

Updates hoverkraft-tech/ci-github-nodejs/.github/workflows/continuous-integration.yml from 0.17.0 to 0.18.0

Release notes

Sourced from hoverkraft-tech/ci-github-nodejs/.github/workflows/continuous-integration.yml's releases.

0.18.0

Release Summary

In continuous-integration, artifacts are now addressed by id instead of name and reporting for lint and tests has been upgraded with PR annotations, coverage summaries and streamlined composite actions. Internal changes: documentation for actions/workflows was updated and dependency groups for GitHub Actions and npm were bumped across multiple directories.

Breaking change(s)

Artifact selection now requires an id rather than a name in build steps; update workflows accordingly. In "continuous-integration" workflow, Lint/test were refactored into composite actions with new defaults (e.g., OIDC for Codecov, auto-detected report formats) and some inputs removed; verify your workflow inputs and coverage settings.

What's Changed

Full Changelog: hoverkraft-tech/ci-github-nodejs@0.17.1...0.18.0

0.17.1

Release Summary

Fix (get-package-manager): cache path is now absolute when pointing to a parent folder, improving cache resolution stability. 

Internal: documentation for actions and workflows was refreshed. Internal: dependency updates were applied to GitHub Actions and npm packages. 

Breaking change(s)

No breaking changes.

What's Changed

Full Changelog: hoverkraft-tech/ci-github-nodejs@0.17.0...0.17.1

Commits
  • 32a69b7 chore(deps): bump the github-actions-dependencies group across 4 directories ...
  • f2aaf6d feat(continuous-integration)!: add better reporting for lint and tests
  • 7c60326 chore: add devcontainer
  • 8a9eb1b chore(deps): bump the npm-dependencies group across 4 directories with 2 updates
  • 32ee76c chore(deps): bump the github-actions-dependencies group across 1 directory wi...
  • 60a5796 chore: add devcontainer
  • 3b21da7 feat(continuous-integration)!: manage build artifact by id and not name anymore
  • 20aa960 ci: add workflow to check semantic pull requests
  • a1e9d7f docs: update actions and workflows documentation
  • 23af54b chore(deps): bump the npm-dependencies group across 4 directories with 1 update
  • Additional commits viewable in compare view

Updates hoverkraft-tech/ci-github-common/.github/workflows/greetings.yml from 0.28.0 to 0.28.1

Release notes

Sourced from hoverkraft-tech/ci-github-common/.github/workflows/greetings.yml's releases.

0.28.1

Release Summary

Public: documentation for actions and workflows has been refreshed and clarified.

Internal: CI checks were re-enabled and permissions tightened, GitHub Actions dependencies were updated.

Breaking change(s)

There is no breaking change.

What's Changed

Full Changelog: hoverkraft-tech/ci-github-common@0.28.0...0.28.1

Commits
  • 7532883 chore(deps): bump the github-actions-dependencies group across 1 directory wi...
  • 0af942d chore(deps): bump the github-actions-dependencies group across 1 directory wi...
  • dc211a8 docs: update actions and workflows documentation
  • 4789b3a ci: improve workflow permissions
  • 9dabe6e ci: re-enable CI checks
  • 5e0aeaa chore: delete SYNC_DOCS_IMPROVEMENTS.md
  • b64d0f8 docs: update actions and workflows documentation
  • See full diff in compare view

Updates hoverkraft-tech/ci-github-common/.github/workflows/need-fix-to-issue.yml from 0.28.0 to 0.28.1

Release notes

Sourced from hoverkraft-tech/ci-github-common/.github/workflows/need-fix-to-issue.yml's releases.

0.28.1

Release Summary

Public: documentation for actions and workflows has been refreshed and clarified.

Internal: CI checks were re-enabled and permissions tightened, GitHub Actions dependencies were updated.

Breaking change(s)

There is no breaking change.

What's Changed

Full Changelog: hoverkraft-tech/ci-github-common@0.28.0...0.28.1

Commits
  • 7532883 chore(deps): bump the github-actions-dependencies group across 1 directory wi...
  • 0af942d chore(deps): bump the github-actions-dependencies group across 1 directory wi...
  • dc211a8 docs: update actions and workflows documentation
  • 4789b3a ci: improve workflow permissions
  • 9dabe6e ci: re-enable CI checks
  • 5e0aeaa chore: delete SYNC_DOCS_IMPROVEMENTS.md
  • b64d0f8 docs: update actions and workflows documentation
  • See full diff in compare view

Updates hoverkraft-tech/ci-github-nodejs from 0.17.0 to 0.18.0

Release notes

Sourced from hoverkraft-tech/ci-github-nodejs's releases.

0.18.0

Release Summary

In continuous-integration, artifacts are now addressed by id instead of name and reporting for lint and tests has been upgraded with PR annotations, coverage summaries and streamlined composite actions. Internal changes: documentation for actions/workflows was updated and dependency groups for GitHub Actions and npm were bumped across multiple directories.

Breaking change(s)

Artifact selection now requires an id rather than a name in build steps; update workflows accordingly. In "continuous-integration" workflow, Lint/test were refactored into composite actions with new defaults (e.g., OIDC for Codecov, auto-detected report formats) and some inputs removed; verify your workflow inputs and coverage settings.

What's Changed

Full Changelog: hoverkraft-tech/ci-github-nodejs@0.17.1...0.18.0

0.17.1

Release Summary

Fix (get-package-manager): cache path is now absolute when pointing to a parent folder, improving cache resolution stability. 

Internal: documentation for actions and workflows was refreshed. Internal: dependency updates were applied to GitHub Actions and npm packages. 

Breaking change(s)

No breaking changes.

What's Changed

Full Changelog: hoverkraft-tech/ci-github-nodejs@0.17.0...0.17.1

Commits
  • 32a69b7 chore(deps): bump the github-actions-dependencies group across 4 directories ...
  • f2aaf6d feat(continuous-integration)!: add better reporting for lint and tests
  • 7c60326 chore: add devcontainer
  • 8a9eb1b chore(deps): bump the npm-dependencies group across 4 directories with 2 updates
  • 32ee76c chore(deps): bump the github-actions-dependencies group across 1 directory wi...
  • 60a5796 chore: add devcontainer
  • 3b21da7 feat(continuous-integration)!: manage build artifact by id and not name anymore
  • 20aa960 ci: add workflow to check semantic pull requests
  • a1e9d7f docs: update actions and workflows documentation
  • 23af54b chore(deps): bump the npm-dependencies group across 4 directories with 1 update
  • Additional commits viewable in compare view

Updates hoverkraft-tech/ci-github-common/.github/workflows/semantic-pull-request.yml from 0.28.0 to 0.28.1

Release notes

Sourced from hoverkraft-tech/ci-github-common/.github/workflows/semantic-pull-request.yml's releases.

0.28.1

Release Summary

Public: documentation for actions and workflows has been refreshed and clarified.

Internal: CI checks were re-enabled and permissions tightened, GitHub Actions dependencies were updated.

Breaking change(s)

There is no breaking change.

What's Changed

Full Changelog: hoverkraft-tech/ci-github-common@0.28.0...0.28.1

Commits
  • 7532883 chore(deps): bump the github-actions-dependencies group across 1 directory wi...
  • 0af942d chore(deps): bump the github-actions-dependencies group across 1 directory wi...
  • dc211a8 docs: update actions and workflows documentation
  • 4789b3a ci: improve workflow permissions
  • 9dabe6e ci: re-enable CI checks
  • 5e0aeaa chore: delete SYNC_DOCS_IMPROVEMENTS.md
  • b64d0f8 docs: update actions and workflows documentation
  • See full diff in compare view

Updates hoverkraft-tech/ci-github-common/.github/workflows/stale.yml from 0.28.0 to 0.28.1

Release notes

Sourced from hoverkraft-tech/ci-github-common/.github/workflows/stale.yml's releases.

0.28.1

Release Summary

Public: documentation for actions and workflows has been refreshed and clarified.

Internal: CI checks were re-enabled and permissions tightened, GitHub Actions dependencies were updated.

Breaking change(s)

There is no breaking change.

What's Changed

Full Changelog: hoverkraft-tech/ci-github-common@0.28.0...0.28.1

Commits
  • 7532883 chore(deps): bump the github-actions-dependencies group across 1 directory wi...
  • 0af942d chore(deps): bump the github-actions-dependencies group across 1 directory wi...
  • dc211a8 docs: update actions and workflows documentation
  • 4789b3a ci: improve workflow permissions
  • 9dabe6e ci: re-enable CI checks
  • 5e0aeaa chore: delete SYNC_DOCS_IMPROVEMENTS.md
  • b64d0f8 docs: update actions and workflows documentation
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code labels Nov 14, 2025
@github-actions

Copy link
Copy Markdown

Hi, thank you for creating your PR, we will check it out very soon

@neilime
neilime force-pushed the dependabot/github_actions/github-actions-dependencies-a32b55a555 branch from 6eb4fc6 to cd9ee79 Compare November 15, 2025 06:00
Bumps the github-actions-dependencies group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [hoverkraft-tech/ci-github-nodejs/.github/workflows/continuous-integration.yml](https://github.com/hoverkraft-tech/ci-github-nodejs) | `0.17.0` | `0.18.0` |
| [hoverkraft-tech/ci-github-common/.github/workflows/greetings.yml](https://github.com/hoverkraft-tech/ci-github-common) | `0.28.0` | `0.28.1` |
| [hoverkraft-tech/ci-github-common/.github/workflows/need-fix-to-issue.yml](https://github.com/hoverkraft-tech/ci-github-common) | `0.28.0` | `0.28.1` |
| [hoverkraft-tech/ci-github-nodejs](https://github.com/hoverkraft-tech/ci-github-nodejs) | `0.17.0` | `0.18.0` |
| [hoverkraft-tech/ci-github-common/.github/workflows/semantic-pull-request.yml](https://github.com/hoverkraft-tech/ci-github-common) | `0.28.0` | `0.28.1` |
| [hoverkraft-tech/ci-github-common/.github/workflows/stale.yml](https://github.com/hoverkraft-tech/ci-github-common) | `0.28.0` | `0.28.1` |

Updates `hoverkraft-tech/ci-github-nodejs/.github/workflows/continuous-integration.yml` from 0.17.0 to 0.18.0
- [Release notes](https://github.com/hoverkraft-tech/ci-github-nodejs/releases)
- [Commits](hoverkraft-tech/ci-github-nodejs@0264395...32a69b7)

Updates `hoverkraft-tech/ci-github-common/.github/workflows/greetings.yml` from 0.28.0 to 0.28.1
- [Release notes](https://github.com/hoverkraft-tech/ci-github-common/releases)
- [Commits](hoverkraft-tech/ci-github-common@5f11437...7532883)

Updates `hoverkraft-tech/ci-github-common/.github/workflows/need-fix-to-issue.yml` from 0.28.0 to 0.28.1
- [Release notes](https://github.com/hoverkraft-tech/ci-github-common/releases)
- [Commits](hoverkraft-tech/ci-github-common@5f11437...7532883)

Updates `hoverkraft-tech/ci-github-nodejs` from 0.17.0 to 0.18.0
- [Release notes](https://github.com/hoverkraft-tech/ci-github-nodejs/releases)
- [Commits](hoverkraft-tech/ci-github-nodejs@0264395...32a69b7)

Updates `hoverkraft-tech/ci-github-common/.github/workflows/semantic-pull-request.yml` from 0.28.0 to 0.28.1
- [Release notes](https://github.com/hoverkraft-tech/ci-github-common/releases)
- [Commits](hoverkraft-tech/ci-github-common@5f11437...7532883)

Updates `hoverkraft-tech/ci-github-common/.github/workflows/stale.yml` from 0.28.0 to 0.28.1
- [Release notes](https://github.com/hoverkraft-tech/ci-github-common/releases)
- [Commits](hoverkraft-tech/ci-github-common@5f11437...7532883)

---
updated-dependencies:
- dependency-name: hoverkraft-tech/ci-github-nodejs/.github/workflows/continuous-integration.yml
  dependency-version: 0.18.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-dependencies
- dependency-name: hoverkraft-tech/ci-github-common/.github/workflows/greetings.yml
  dependency-version: 0.28.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions-dependencies
- dependency-name: hoverkraft-tech/ci-github-common/.github/workflows/need-fix-to-issue.yml
  dependency-version: 0.28.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions-dependencies
- dependency-name: hoverkraft-tech/ci-github-nodejs
  dependency-version: 0.18.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-dependencies
- dependency-name: hoverkraft-tech/ci-github-common/.github/workflows/semantic-pull-request.yml
  dependency-version: 0.28.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions-dependencies
- dependency-name: hoverkraft-tech/ci-github-common/.github/workflows/stale.yml
  dependency-version: 0.28.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Emilien Escalle <emilien.escalle@escemi.com>
@neilime
neilime force-pushed the dependabot/github_actions/github-actions-dependencies-a32b55a555 branch from cd9ee79 to 03c0c53 Compare November 15, 2025 06:01
@codecov

codecov Bot commented Nov 15, 2025

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 89.03%. Comparing base (e2430d0) to head (03c0c53).
⚠️ Report is 4 commits behind head on main.

Additional details and impacted files
@@           Coverage Diff           @@
##             main    #1661   +/-   ##
=======================================
  Coverage   89.03%   89.03%           
=======================================
  Files          31       31           
  Lines         757      757           
  Branches      136      136           
=======================================
  Hits          674      674           
  Misses         83       83           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@neilime
neilime merged commit 76dacaf into main Nov 15, 2025
12 checks passed
@neilime
neilime deleted the dependabot/github_actions/github-actions-dependencies-a32b55a555 branch November 15, 2025 06:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant