build(deps): Bump the dependencies group with 5 updates

[dependabot]

Bumps the dependencies group with 5 updates:

Package	From	To
actions/checkout	2	4
actions/setup-go	2	5
docker/login-action	1	3
softprops/action-gh-release	1	2
actions/stale	3	9

Updates actions/checkout from 2 to 4

Release notes

Sourced from actions/checkout's releases.

v4.0.0

What's Changed

• Update default runtime to node20 by @​takost in actions/checkout#1436
• Support fetching without the --progress option by @​simonbaird in actions/checkout#1067
• Release 4.0.0 by @​takost in actions/checkout#1447

New Contributors

• @​takost made their first contribution in actions/checkout#1436
• @​simonbaird made their first contribution in actions/checkout#1067

Full Changelog: actions/checkout@v3...v4.0.0

v3.6.0

What's Changed

• Mark test scripts with Bash'isms to be run via Bash by @​dscho in actions/checkout#1377
• Add option to fetch tags even if fetch-depth > 0 by @​RobertWieczoreck in actions/checkout#579
• Release 3.6.0 by @​luketomlinson in actions/checkout#1437

New Contributors

• @​RobertWieczoreck made their first contribution in actions/checkout#579
• @​luketomlinson made their first contribution in actions/checkout#1437

Full Changelog: actions/checkout@v3.5.3...v3.6.0

v3.5.3

What's Changed

• Fix: Checkout Issue in self hosted runner due to faulty submodule check-ins by @​megamanics in actions/checkout#1196
• Fix typos found by codespell by @​DimitriPapadopoulos in actions/checkout#1287
• Add support for sparse checkouts by @​dscho and @​dfdez in actions/checkout#1369
• Release v3.5.3 by @​TingluoHuang in actions/checkout#1376

New Contributors

• @​megamanics made their first contribution in actions/checkout#1196
• @​DimitriPapadopoulos made their first contribution in actions/checkout#1287
• @​dfdez made their first contribution in actions/checkout#1369

Full Changelog: actions/checkout@v3...v3.5.3

v3.5.2

What's Changed

• Fix: Use correct API url / endpoint in GHES by @​fhammerl in actions/checkout#1289 based on #1286 by @​1newsr

Full Changelog: actions/checkout@v3.5.1...v3.5.2

v3.5.1

What's Changed

• Improve checkout performance on Windows runners by upgrading @​actions/github dependency by @​BrettDong in actions/checkout#1246

New Contributors

• @​BrettDong made their first contribution in actions/checkout#1246

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

Changelog

v4.2.2

• url-helper.ts now leverages well-known environment variables by @​jww3 in actions/checkout#1941
• Expand unit test coverage for isGhes by @​jww3 in actions/checkout#1946

v4.2.1

• Check out other refs/* by commit if provided, fall back to ref by @​orhantoy in actions/checkout#1924

v4.2.0

• Add Ref and Commit outputs by @​lucacome in actions/checkout#1180
• Dependency updates by @​dependabot- actions/checkout#1777, actions/checkout#1872

v4.1.7

• Bump the minor-npm-dependencies group across 1 directory with 4 updates by @​dependabot in actions/checkout#1739
• Bump actions/checkout from 3 to 4 by @​dependabot in actions/checkout#1697
• Check out other refs/* by commit by @​orhantoy in actions/checkout#1774
• Pin actions/checkout's own workflows to a known, good, stable version. by @​jww3 in actions/checkout#1776

v4.1.6

• Check platform to set archive extension appropriately by @​cory-miller in actions/checkout#1732

v4.1.5

• Update NPM dependencies by @​cory-miller in actions/checkout#1703
• Bump github/codeql-action from 2 to 3 by @​dependabot in actions/checkout#1694
• Bump actions/setup-node from 1 to 4 by @​dependabot in actions/checkout#1696
• Bump actions/upload-artifact from 2 to 4 by @​dependabot in actions/checkout#1695
• README: Suggest user.email to be 41898282+github-actions[bot]@users.noreply.github.com by @​cory-miller in actions/checkout#1707

v4.1.4

• Disable extensions.worktreeConfig when disabling sparse-checkout by @​jww3 in actions/checkout#1692
• Add dependabot config by @​cory-miller in actions/checkout#1688
• Bump the minor-actions-dependencies group with 2 updates by @​dependabot in actions/checkout#1693
• Bump word-wrap from 1.2.3 to 1.2.5 by @​dependabot in actions/checkout#1643

v4.1.3

• Check git version before attempting to disable sparse-checkout by @​jww3 in actions/checkout#1656
• Add SSH user parameter by @​cory-miller in actions/checkout#1685
• Update actions/checkout version in update-main-version.yml by @​jww3 in actions/checkout#1650

v4.1.2

• Fix: Disable sparse checkout whenever sparse-checkout option is not present @​dscho in actions/checkout#1598

v4.1.1

• Correct link to GitHub Docs by @​peterbe in actions/checkout#1511
• Link to release page from what's new section by @​cory-miller in actions/checkout#1514

v4.1.0

• Add support for partial checkout filters

... (truncated)

Commits

• 11bd719 Prepare 4.2.2 Release (#1953)
• e3d2460 Expand unit test coverage (#1946)
• 163217d url-helper.ts now leverages well-known environment variables. (#1941)
• eef6144 Prepare 4.2.1 release (#1925)
• 6b42224 Add workflow file for publishing releases to immutable action package (#1919)
• de5a000 Check out other refs/* by commit if provided, fall back to ref (#1924)
• d632683 Prepare 4.2.0 release (#1878)
• 6d193bf Bump braces from 3.0.2 to 3.0.3 (#1777)
• db0cee9 Bump the minor-npm-dependencies group across 1 directory with 4 updates (#1872)
• b684943 Add Ref and Commit outputs (#1180)
• Additional commits viewable in compare view

Updates actions/setup-go from 2 to 5

Release notes

Sourced from actions/setup-go's releases.

v5.0.0

What's Changed

In scope of this release, we change Nodejs runtime from node16 to node20 (actions/setup-go#421). Moreover, we update some dependencies to the latest versions (actions/setup-go#445).

Besides, this release contains such changes as:

• Fix hosted tool cache usage on windows by @​galargh in actions/setup-go#411
• Improve documentation regarding dependencies caching by @​artemgavrilov in actions/setup-go#417

New Contributors

• @​galargh made their first contribution in actions/setup-go#411
• @​artemgavrilov made their first contribution in actions/setup-go#417
• @​chenrui333 made their first contribution in actions/setup-go#421

Full Changelog: actions/setup-go@v4...v5.0.0

v4.1.0

What's Changed

In scope of this release, slow installation on Windows was fixed by @​dsame in actions/setup-go#393 and OS version was added to primaryKey for Ubuntu runners to avoid conflicts (actions/setup-go#383)

This release also includes the following changes:

• Remove implicit dependencies by @​nikolai-laevskii in actions/setup-go#378
• Update action.yml by @​mkelly in actions/setup-go#379
• Added a description that go-version should be specified as a string type by @​n3xem in actions/setup-go#367
• Add note about YAML parsing versions by @​dmitry-shibanov in actions/setup-go#382
• Automatic update of configuration files from 05/23/2023 by @​github-actions in actions/setup-go#377
• Bump tough-cookie and @​azure/ms-rest-js by @​dependabot in actions/setup-go#392
• Bump word-wrap from 1.2.3 to 1.2.4 by @​dependabot in actions/setup-go#397
• Bump semver from 6.3.0 to 6.3.1 by @​dependabot in actions/setup-go#396

New Contributors

• @​mkelly made their first contribution in actions/setup-go#379
• @​n3xem made their first contribution in actions/setup-go#367

Full Changelog: actions/setup-go@v4...v4.1.0

v4.0.1

What's Changed

• Update documentation for v4 by @​dsame in actions/setup-go#354
• Fix glob bug in the package.json scripts section by @​IvanZosimov in actions/setup-go#359
• Bump xml2js dependency by @​dmitry-shibanov in actions/setup-go#370
• Bump @actions/cache dependency to v3.2.1 by @​nikolai-laevskii in actions/setup-go#374

New Contributors

• @​nikolai-laevskii made their first contribution in actions/setup-go#374

Full Changelog: actions/setup-go@v4...v4.0.1

v4.0.0

In scope of release we enable cache by default. The action won’t throw an error if the cache can’t be restored or saved. The action will throw a warning message but it won’t stop a build process. The cache can be disabled by specifying cache: false.

</tr></table> 

... (truncated)

Commits

• f111f33 Bump actions/publish-immutable-action from 0.0.3 to 0.0.4 (#534)
• 3d10edb Add new permission section (#533)
• 43e1389 Configure Dependabot settings (#530)
• f81f022 Use the new cache service: upgrade @actions/cache to ^4.0.0 (#531)
• 3041bf5 feat: fallback to "raw" endpoint for manifest when rate limit is reached (#496)
• 41dfa10 Enhance workflows and Upgrade micromatch Dependency (#510)
• 9419772 Revise isGhes logic (#511)
• d60b41a Merge pull request #502 from actions/Jcambass-patch-1
• e09f57f Upgrade IA Publish
• df1a117 Merge pull request #500 from actions/Jcambass-patch-1
• Additional commits viewable in compare view

Updates docker/login-action from 1 to 3

Release notes

Sourced from docker/login-action's releases.

v3.0.0

• Node 20 as default runtime (requires Actions Runner v2.308.0 or later) by @​crazy-max in docker/login-action#593
• Bump @​actions/core from 1.10.0 to 1.10.1 in docker/login-action#598
• Bump @​aws-sdk/client-ecr and @​aws-sdk/client-ecr-public to 3.410.0 in docker/login-action#555 docker/login-action#560 docker/login-action#582 docker/login-action#599
• Bump semver from 6.3.0 to 6.3.1 in docker/login-action#556
• Bump https-proxy-agent to 7.0.2 docker/login-action#561 docker/login-action#588

Full Changelog: docker/login-action@v2.2.0...v3.0.0

v2.2.0

• Switch to actions-toolkit implementation by @​crazy-max in docker/login-action#409 docker/login-action#470 docker/login-action#476
• Bump @​aws-sdk/client-ecr and @​aws-sdk/client-ecr-public to 3.347.1 in docker/login-action#524 docker/login-action#364 docker/login-action#363
• Bump minimatch from 3.0.4 to 3.1.2 in docker/login-action#354
• Bump json5 from 2.2.0 to 2.2.3 in docker/login-action#378
• Bump http-proxy-agent from 5.0.0 to 7.0.0 in docker/login-action#509
• Bump https-proxy-agent from 5.0.1 to 7.0.0 in docker/login-action#508

Full Changelog: docker/login-action@v2.1.0...v2.2.0

v2.1.0

• Ensure AWS temp credentials are redacted in workflow logs by @​crazy-max (#275)
• Bump @​actions/core from 1.6.0 to 1.10.0 (#252 #292)
• Bump @​aws-sdk/client-ecr from 3.53.0 to 3.186.0 (#298)
• Bump @​aws-sdk/client-ecr-public from 3.53.0 to 3.186.0 (#299)

Full Changelog: docker/login-action@v2.0.0...v2.1.0

v2.0.0

• Node 16 as default runtime by @​crazy-max (#161)
  • This requires a minimum Actions Runner version of v2.285.0, which is by default available in GHES 3.4 or later.
• chore: update dev dependencies and workflow by @​crazy-max (#170)
• Bump @​actions/exec from 1.1.0 to 1.1.1 (#167)
• Bump @​actions/io from 1.1.1 to 1.1.2 (#168)
• Bump minimist from 1.2.5 to 1.2.6 (#176)
• Bump https-proxy-agent from 5.0.0 to 5.0.1 (#182)

Full Changelog: docker/login-action@v1.14.1...v2.0.0

v1.14.1

• Revert to Node 12 as default runtime to fix issue for GHE users (#160)

v1.14.0

• Update to node 16 (#158)
• Bump @​aws-sdk/client-ecr from 3.45.0 to 3.53.0 (#157)
• Bump @​aws-sdk/client-ecr-public from 3.45.0 to 3.53.0 (#156)

v1.13.0

• Handle proxy settings for aws-sdk (#152)
• Workload identity based authentication docs for GCR and GAR (#112)
• Test login against ACR (#49)

... (truncated)

Commits

• 74a5d14 Merge pull request #856 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...
• 2f4f00e chore: update generated content
• 67c1845 build(deps): bump the aws-sdk-dependencies group across 1 directory with 2 up...
• 3d4cc89 Merge pull request #844 from graysonpike/master
• 6cc823a Merge pull request #823 from docker/dependabot/npm_and_yarn/proxy-agent-depen...
• d94e792 chore: update generated content
• 033db0d Merge pull request #812 from docker/dependabot/github_actions/codecov/codecov...
• 09c2ae9 build(deps): bump https-proxy-agent
• ba56f00 ci: update deprecated input for codecov-action
• 75bf9a7 Merge pull request #858 from docker/dependabot/npm_and_yarn/docker/actions-to...
• Additional commits viewable in compare view

Updates softprops/action-gh-release from 1 to 2

Release notes

Sourced from softprops/action-gh-release's releases.

v2.0.0

• update actions.yml declaration to node20 to address warnings

Changelog

Sourced from softprops/action-gh-release's changelog.

0.1.12

• fix bug leading to empty strings subsituted for inputs users don't provide breaking api calls #144

Commits

• c95fe14 release 2.2.1
• deddb09 fix: big file uploads (#562)
• 33fcd69 chore: update error and warning messages for not matching files in files fiel...
• 01050bd chore(deps): bump @​types/node from 22.10.2 to 22.10.5 (#569)
• 92dffe6 chore(deps): bump @​types/node from 22.10.1 to 22.10.2 (#559)
• 7b4da11 release 2.2.0
• 64f1fa1 feat: read the release assets asynchronously (#552)
• 9e35a64 chore(deps): bump prettier from 3.4.1 to 3.4.2 (#554)
• 92bc83c chore(deps): bump @​types/node from 22.9.4 to 22.10.1 (#551)
• 09f0e37 chore(deps): bump prettier from 3.3.3 to 3.4.1 (#550)
• Additional commits viewable in compare view

Updates actions/stale from 3 to 9

Release notes

Sourced from actions/stale's releases.

v9.0.0

Breaking Changes

1. Action is now stateful: If the action ends because of operations-per-run then the next run will start from the first unprocessed issue skipping the issues processed during the previous run(s). The state is reset when all the issues are processed. This should be considered for scheduling workflow runs.
2. Version 9 of this action updated the runtime to Node.js 20. All scripts are now run with Node.js 20 instead of Node.js 16 and are affected by any breaking changes between Node.js 16 and 20.

What Else Changed

1. Performance optimization that removes unnecessary API calls by @​dsame #1033 fixes #792
2. Logs displaying current github API rate limit by @​dsame #1032 addresses #1029

For more information, please read the action documentation and its section about statefulness

New Contributors

• @​jmeridth made their first contribution in actions/stale#984
• @​nikolai-laevskii made their first contribution in actions/stale#1020
• @​dusan-trickovic made their first contribution in actions/stale#1056
• @​aparnajyothi-y made their first contribution in actions/stale#1110

Full Changelog: actions/stale@v8...v9.0.0

v8.0.0

⚠️ This version contains breaking changes ⚠️

What's Changed

• New option labels-to-remove-when-stale enables users to specify list of comma delimited labels that will be removed when the issue or PR becomes stale by @​panticmilos actions/stale#770
• Skip deleting the branch in the upstream of a forked repo by @​dsame actions/stale#913
• abort the build on the error by @​dsame in actions/stale#935

Breaking Changes

• In this release we prevent scenarios when the build is not interrupted on some exceptions, which led to successful builds when they are supposed to fail

Example

name: 'Remove labels when the issue or PR becomes stale'
on:
  schedule:
    - cron: '30 1 * * *'
permissions:
pull-requests: write
jobs:
stale:
runs-on: ubuntu-latest
steps:
- uses: actions/stale@v8
with:
labels-to-remove-when-stale: 'label1,label2'

v7.0.0

... (truncated)

Changelog

Sourced from actions/stale's changelog.

Changelog

[7.0.0]

⚠️ Breaking change ⚠️

• Allow daysBeforeStale options to be float by @​irega in actions/stale#841
• Use cache in check-dist.yml by @​jongwooo in actions/stale#876
• fix print outputs step in existing workflows by @​irega in actions/stale#859
• Update issue and PR templates, add/delete workflow files by @​IvanZosimov in actions/stale#880
• Update how stale handles exempt items by @​johnsudol in actions/stale#874

[6.0.1]

Update @​actions/core to v1.10.0 (#839)

[6.0.0]

⚠️ Breaking change ⚠️

Issues/PRs default close-issue-reason is now not_planned(#789)

[5.1.0]

Don't process stale issues right after they're marked stale [Add close-issue-reason option]#764#772 Various dependabot/dependency updates

4.1.0 (2021-07-14)

Features

• Ability to exempt draft PRs

4.0.0 (2021-07-14)

Features

• options: simplify config by removing skip stale message options (#457) (6ec637d), closes #405 #455
• output: print output parameters (#458) (3e6d35b)

Bug Fixes

• dry-run: forbid mutations in dry-run (#500) (f1017f3), closes #499
• logs: coloured logs (#465) (5fbbfba)
• operations: fail fast the current batch to respect the operations limit (#474) (5f6f311), closes #466
• label comparison: make label comparison case insensitive #517, closes #516
• filtering comments by actor could have strange behavior: "stale" comments are now detected based on if the message is the stale message not who made the comment(#519), fixes #441, #509, #518

Breaking Changes

... (truncated)

Commits

• 5bef64f build(deps): bump @​actions/cache from 3.2.2 to 4.0.0 (#1194)
• fa77dfd build(deps-dev): bump @​types/jest from 29.5.11 to 29.5.14 (#1193)
• f04443d build(deps): bump @​actions/core from 1.10.1 to 1.11.1 (#1191)
• 5c715b0 build(deps-dev): bump ts-jest from 29.1.1 to 29.2.5 (#1175)
• f691222 build(deps): bump actions/publish-action from 0.2.2 to 0.3.0 (#1147)
• df990c2 build(deps): bump actions/checkout from 3 to 4 (#1091)
• 6e472ce Merge pull request #1179 from actions/Jcambass-patch-1
• d10ba64 Merge pull request #1150 from actions/dependabot/npm_and_yarn/undici-5.28.4
• bbf3da5 resolve check failures
• 6a2e61d Add workflow file for publishing releases to immutable action package
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions