chore(deps): bump the dependencies group with 2 updates

[dependabot]

Bumps the dependencies group with 2 updates: shogo82148/actions-go-fuzz and Songmu/tagpr.

Updates shogo82148/actions-go-fuzz from 1.1.8 to 1.2.0

Release notes

Sourced from shogo82148/actions-go-fuzz's releases.

v1.2.0

What's Changed

• Bump typescript from 5.7.3 to 5.8.2 by @​dependabot[bot] in shogo82148/actions-go-fuzz#693
• Bump eslint from 9.21.0 to 9.22.0 by @​dependabot[bot] in shogo82148/actions-go-fuzz#692
• Bump typescript-eslint from 8.26.1 to 8.27.0 by @​dependabot[bot] in shogo82148/actions-go-fuzz#701
• Bump ts-jest from 29.2.6 to 29.3.0 by @​dependabot[bot] in shogo82148/actions-go-fuzz#704
• Bump eslint from 9.22.0 to 9.23.0 by @​dependabot[bot] in shogo82148/actions-go-fuzz#708
• Bump typescript-eslint from 8.27.0 to 8.28.0 by @​dependabot[bot] in shogo82148/actions-go-fuzz#706
• Bump ts-jest from 29.3.0 to 29.3.1 by @​dependabot[bot] in shogo82148/actions-go-fuzz#717
• Bump typescript-eslint from 8.28.0 to 8.29.0 by @​dependabot[bot] in shogo82148/actions-go-fuzz#718
• Bump eslint from 9.23.0 to 9.24.0 by @​dependabot[bot] in shogo82148/actions-go-fuzz#725
• Bump @​eslint/js from 9.24.0 to 9.25.0 by @​dependabot[bot] in shogo82148/actions-go-fuzz#739
• Bump typescript from 5.8.2 to 5.8.3 by @​dependabot[bot] in shogo82148/actions-go-fuzz#729
• Bump @​eslint/js from 9.25.0 to 9.27.0 by @​dependabot[bot] in shogo82148/actions-go-fuzz#770
• Bump eslint from 9.24.0 to 9.27.0 by @​dependabot[bot] in shogo82148/actions-go-fuzz#769
• Bump actions/checkout from 4 to 5 by @​dependabot[bot] in shogo82148/actions-go-fuzz#829
• Bump typescript-eslint from 8.29.0 to 8.39.1 by @​dependabot[bot] in shogo82148/actions-go-fuzz#827
• Bump ts-jest from 29.3.1 to 29.4.1 by @​dependabot[bot] in shogo82148/actions-go-fuzz#821
• Bump eslint from 9.27.0 to 9.33.0 by @​dependabot[bot] in shogo82148/actions-go-fuzz#825
• Bump prettier from 3.5.3 to 3.6.2 by @​dependabot[bot] in shogo82148/actions-go-fuzz#839
• Bump undici from 5.28.5 to 5.29.0 by @​dependabot[bot] in shogo82148/actions-go-fuzz#766
• Bump typescript-eslint from 8.39.1 to 8.40.0 by @​dependabot[bot] in shogo82148/actions-go-fuzz#850
• Bump actions/setup-node from 4 to 5 by @​dependabot[bot] in shogo82148/actions-go-fuzz#861
• Bump github/codeql-action from 3 to 4 by @​dependabot[bot] in shogo82148/actions-go-fuzz#871
• Bump actions/setup-go from 5 to 6 by @​dependabot[bot] in shogo82148/actions-go-fuzz#862
• Bump actions/setup-node from 5 to 6 by @​dependabot[bot] in shogo82148/actions-go-fuzz#879
• Bump brace-expansion from 1.1.11 to 1.1.12 by @​dependabot[bot] in shogo82148/actions-go-fuzz#831
• Bump actions/upload-artifact from 4 to 5 by @​dependabot[bot] in shogo82148/actions-go-fuzz#883
• pin GitHub Actions by @​shogo82148 in shogo82148/actions-go-fuzz#891
• migrate to ESM by @​shogo82148 in shogo82148/actions-go-fuzz#895
• pin Node.js version by @​shogo82148 in shogo82148/actions-go-fuzz#899
• Bump js-yaml from 4.1.0 to 4.1.1 by @​dependabot[bot] in shogo82148/actions-go-fuzz#887
• Bump picomatch from 2.3.1 to 2.3.2 by @​dependabot[bot] in shogo82148/actions-go-fuzz#903
• Bump flatted from 3.3.1 to 3.4.2 by @​dependabot[bot] in shogo82148/actions-go-fuzz#904
• Bump handlebars from 4.7.8 to 4.7.9 by @​dependabot[bot] in shogo82148/actions-go-fuzz#906
• bump Node.js v24 by @​shogo82148 in shogo82148/actions-go-fuzz#911
• Bump minimatch by @​dependabot[bot] in shogo82148/actions-go-fuzz#915
• bump @​eslint/js v10.0.1, eslint v10.2.0 and typescript-eslint v8.58.1 by @​shogo82148 in shogo82148/actions-go-fuzz#927
• bump @​types/node v24.12.2 by @​shogo82148 in shogo82148/actions-go-fuzz#930
• Bump jest from 29.7.0 to 30.3.0 by @​dependabot[bot] in shogo82148/actions-go-fuzz#898
• Bump brace-expansion from 1.1.12 to 1.1.14 by @​dependabot[bot] in shogo82148/actions-go-fuzz#925
• Bump prettier from 3.6.2 to 3.8.2 by @​dependabot[bot] in shogo82148/actions-go-fuzz#941
• Bump ts-jest from 29.4.1 to 29.4.9 by @​dependabot[bot] in shogo82148/actions-go-fuzz#942

Full Changelog: shogo82148/actions-go-fuzz@v1.1.8...v1.2.0

Commits

• 1c54c66 Merge pull request #942 from shogo82148/dependabot/npm_and_yarn/ts-jest-29.4.9
• 9f3ebb3 Merge pull request #941 from shogo82148/dependabot/npm_and_yarn/prettier-3.8.2
• 373bcd5 Bump ts-jest from 29.4.1 to 29.4.9
• 2b87733 Bump prettier from 3.6.2 to 3.8.2
• c4e1b54 Merge pull request #925 from shogo82148/dependabot/npm_and_yarn/brace-expansi...
• 055ba78 npm run bundle
• 579dee8 Bump brace-expansion from 1.1.12 to 1.1.14
• ee1820f Merge pull request #898 from shogo82148/dependabot/npm_and_yarn/jest-30.3.0
• 55ae1df refactor: update error expectation in branch creation test
• 3b2e677 Bump jest from 29.7.0 to 30.3.0
• Additional commits viewable in compare view

Updates Songmu/tagpr from 1.18.1 to 1.18.2

Release notes

Sourced from Songmu/tagpr's releases.

v1.18.2

What's Changed

• fix: respect version labels in monorepo using --first-parent by @​Ito-Ryu in Songmu/tagpr#340

New Contributors

• @​Ito-Ryu made their first contribution in Songmu/tagpr#340

Full Changelog: Songmu/tagpr@v1.18.1...v1.18.2

Changelog

Sourced from Songmu/tagpr's changelog.

Changelog

v1.18.2 - 2026-04-12

• fix: respect version labels in monorepo using --first-parent by @​Ito-Ryu in Songmu/tagpr#340

v1.18.1 - 2026-04-05

• Clear PR Base before Edit to avoid duplicate synchronize webhooks by @​178inaba in Songmu/tagpr#336

v1.18.0 - 2026-04-05

• build(deps): bump actions/setup-go from 6.2.0 to 6.3.0 by @​dependabot[bot] in Songmu/tagpr#322
• build(deps): bump Songmu/tagpr from 1.17.0 to 1.17.1 by @​dependabot[bot] in Songmu/tagpr#323
• build(deps): bump golang.org/x/oauth2 from 0.35.0 to 0.36.0 by @​dependabot[bot] in Songmu/tagpr#325
• build(deps): bump actions/create-github-app-token from 2.2.1 to 3.0.0 by @​dependabot[bot] in Songmu/tagpr#327
• Add retry to latestPullRequest for commit-to-PR index race condition by @​babarot in Songmu/tagpr#333
• fix: CalVer not working correctly with zero-padded formats (fixes #320) by @​oharo3109 in Songmu/tagpr#321
• Ignore labels from Dependabot PRs in version determination by @​Songmu in Songmu/tagpr#334
• build(deps): bump actions/setup-go from 6.3.0 to 6.4.0 by @​dependabot[bot] in Songmu/tagpr#331
• build(deps): bump codecov/codecov-action from 5.5.2 to 6.0.0 by @​dependabot[bot] in Songmu/tagpr#332

v1.17.1 - 2026-02-25

• add gh2changelog/LICENSE by @​Songmu in Songmu/tagpr#313
• Fix PR description including already shipped PRs when using fixedMajorVersion by @​Konboi in Songmu/tagpr#317
• build(deps): bump Songmu/tagpr from 1.15.0 to 1.17.0 by @​dependabot[bot] in Songmu/tagpr#316
• update google/go-github from v82 to v83 by @​Songmu in Songmu/tagpr#319

v1.17.0 - 2026-02-14

• Add fixedMajorVersion option for multiple major version support by @​Konboi in Songmu/tagpr#296

v1.16.0 - 2026-02-14

• docs: improve README for labels and env vars by @​tokuhirom in Songmu/tagpr#300
• Use scoped release yaml path in github releases by @​wreulicke in Songmu/tagpr#304
• fix: latestSemverTag returns empty for zero-padded calver tags by @​k1LoW in Songmu/tagpr#303
• build(deps): bump golang.org/x/oauth2 from 0.34.0 to 0.35.0 by @​dependabot[bot] in Songmu/tagpr#305
• build(deps): bump github.com/Songmu/gitconfig from 0.2.1 to 0.2.2 by @​dependabot[bot] in Songmu/tagpr#299
• Migrate gh2changelog to monorepo as local submodule by @​Copilot in Songmu/tagpr#307
• Fix: validate tagPrefix in isTagPR for monorepo isolation by @​Copilot in Songmu/tagpr#311

v1.15.0 - 2026-02-01

• feat: allow tagpr.calendarVersioning to accept format string directly by @​k1LoW in Songmu/tagpr#295

v1.14.0 - 2026-01-29

• feat: scoped release configuration by @​wreulicke in Songmu/tagpr#291
• [fix] care nil ReleaseYAML by @​Songmu in Songmu/tagpr#293

v1.13.0 - 2026-01-29

• Add Calendar Versioning (CalVer) support by @​fujiwara in Songmu/tagpr#288
• build(deps): bump actions/checkout from 6.0.1 to 6.0.2 by @​dependabot[bot] in Songmu/tagpr#289

v1.12.1 - 2026-01-21

• fix: pass changelog file path to gh2changelog by @​wreulicke in Songmu/tagpr#286

... (truncated)

Commits

• 84850af Merge pull request #341 from Songmu/tagpr-from-v1.18.1
• b976552 [tagpr] update CHANGELOG.md
• c8c874c [tagpr] prepare for the next release
• 65a7007 Merge pull request #340 from Ito-Ryu/fix/tagpr-monorepo
• efef9f5 Fix version labeling in monorepos by adding --first-parent to git log
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Code Metrics Report

	main (f37f383)	#512 (853251f)	+/-
Coverage	33.7%	33.7%	0.0%
Code to Test Ratio	1:0.9	1:0.9	0.0
Test Execution Time	12s	6s	-6s

Details

  |                     | main (f37f383) | #512 (853251f) | +/-  |
  |---------------------|----------------|----------------|------|
  | Coverage            |          33.7% |          33.7% | 0.0% |
  |   Files             |             31 |             31 |    0 |
  |   Lines             |           3407 |           3407 |    0 |
  |   Covered           |           1151 |           1151 |    0 |
  | Code to Test Ratio  |          1:0.9 |          1:0.9 |  0.0 |
  |   Code              |           7022 |           7022 |    0 |
  |   Test              |           6578 |           6578 |    0 |
+ | Test Execution Time |            12s |             6s |  -6s |

---

Reported by octocov