Skip to content

Commit 7f647ef

Browse files
build(deps): bump the actions group across 1 directory with 4 updates (#1430)
Bumps the actions group with 4 updates in the / directory: [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action), [ko-build/setup-ko](https://github.com/ko-build/setup-ko), [docker/login-action](https://github.com/docker/login-action) and [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action). Updates `golangci/golangci-lint-action` from 9.2.1 to 9.3.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/golangci/golangci-lint-action/releases">golangci/golangci-lint-action's releases</a>.</em></p> <blockquote> <h2>v9.3.0</h2> <!-- raw HTML omitted --> <h2>What's Changed</h2> <h3>Changes</h3> <ul> <li>feat: add no-run-logs-group as experimental option by <a href="https://github.com/ldez"><code>@​ldez</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1403">golangci/golangci-lint-action#1403</a></li> </ul> <h3>Dependencies</h3> <ul> <li>build(deps): bump github/codeql-action from 4.35.4 to 4.35.5 in the github-actions group by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1395">golangci/golangci-lint-action#1395</a></li> <li>build(deps): bump tmp from 0.2.5 to 0.2.6 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1397">golangci/golangci-lint-action#1397</a></li> <li>build(deps): bump github/codeql-action from 4.35.5 to 4.36.0 in the github-actions group by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1398">golangci/golangci-lint-action#1398</a></li> <li>build(deps): bump tmp from 0.2.6 to 0.2.7 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1399">golangci/golangci-lint-action#1399</a></li> <li>build(deps-dev): bump js-yaml from 4.1.1 to 4.2.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1400">golangci/golangci-lint-action#1400</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/golangci/golangci-lint-action/compare/v9.2.1...v9.3.0">https://github.com/golangci/golangci-lint-action/compare/v9.2.1...v9.3.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golangci/golangci-lint-action/commit/ba0d7d2ec06a0ea1cb5fa41b2e4a3ab91d21278a"><code>ba0d7d2</code></a> chore: prepare release v9.3.0</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/efd0857dc49487d73b2e08936ea47b04e894a2b1"><code>efd0857</code></a> feat: add no-run-logs-group as experimental option (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/1403">#1403</a>)</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/ed485de1ff3b974c764ba768d82dda2e035d091e"><code>ed485de</code></a> build(deps): bump undici from 6.24.0 to 6.27.0</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/8872e8d04c73fcdce3d942f99fbbe16ea722b6de"><code>8872e8d</code></a> build(deps-dev): bump js-yaml from 4.1.1 to 4.2.0 (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/1400">#1400</a>)</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/b163415b470349e75dbab89538e4165e7402f2b9"><code>b163415</code></a> build(deps): bump tmp from 0.2.6 to 0.2.7 (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/1399">#1399</a>)</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/e52a9f899623adbdb986c05b9a8f7a8cf4138fc3"><code>e52a9f8</code></a> build(deps): bump github/codeql-action from 4.35.5 to 4.36.0 in the github-ac...</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/8182aa34940a5c3d28dbb24ce802921d8aa7b434"><code>8182aa3</code></a> build(deps): bump tmp from 0.2.5 to 0.2.6 (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/1397">#1397</a>)</li> <li><a href="https://github.com/golangci/golangci-lint-action/commit/5403a413dee20909aad15f1ecb21377539fcc4df"><code>5403a41</code></a> build(deps): bump github/codeql-action from 4.35.4 to 4.35.5 in the github-ac...</li> <li>See full diff in <a href="https://github.com/golangci/golangci-lint-action/compare/82606bf257cbaff209d206a39f5134f0cfbfd2ee...ba0d7d2ec06a0ea1cb5fa41b2e4a3ab91d21278a">compare view</a></li> </ul> </details> <br /> Updates `ko-build/setup-ko` from 0.9 to 0.10 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/ko-build/setup-ko/releases">ko-build/setup-ko's releases</a>.</em></p> <blockquote> <h2>v0.10</h2> <h2>What's Changed</h2> <ul> <li>Harden composite action against shell expression and env-file injection by <a href="https://github.com/imjasonh"><code>@​imjasonh</code></a> with <a href="https://github.com/Copilot"><code>@​Copilot</code></a> in <a href="https://redirect.github.com/ko-build/setup-ko/pull/66">ko-build/setup-ko#66</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/imjasonh"><code>@​imjasonh</code></a> with <a href="https://github.com/Copilot"><code>@​Copilot</code></a> made their first contribution in <a href="https://redirect.github.com/ko-build/setup-ko/pull/66">ko-build/setup-ko#66</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/ko-build/setup-ko/compare/v0.9...v0.10">https://github.com/ko-build/setup-ko/compare/v0.9...v0.10</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/ko-build/setup-ko/commit/61b4d1d396f5b2e7d6bb6fefdce3dc38d1a13445"><code>61b4d1d</code></a> Merge pull request <a href="https://redirect.github.com/ko-build/setup-ko/issues/66">#66</a> from ko-build/copilot/address-findings-report</li> <li><a href="https://github.com/ko-build/setup-ko/commit/92951cd43fd70d186ef887c7a48e4f02055c8a61"><code>92951cd</code></a> Harden composite action shell input handling</li> <li><a href="https://github.com/ko-build/setup-ko/commit/369dc1ff729f1ea39b3a696a7bfca4b81cd6fd44"><code>369dc1f</code></a> Merge pull request <a href="https://redirect.github.com/ko-build/setup-ko/issues/64">#64</a> from ko-build/dependabot/github_actions/actions/checko...</li> <li><a href="https://github.com/ko-build/setup-ko/commit/aa4f2f232dd9555a146b824184b38e4a69fa4551"><code>aa4f2f2</code></a> Bump actions/checkout from 6.0.3 to 7.0.0</li> <li><a href="https://github.com/ko-build/setup-ko/commit/2e5f3a96a322346444ce250951204f99c0d844b1"><code>2e5f3a9</code></a> Merge pull request <a href="https://redirect.github.com/ko-build/setup-ko/issues/62">#62</a> from ko-build/dependabot/github_actions/all-22d6a8b472</li> <li><a href="https://github.com/ko-build/setup-ko/commit/fefb89f09ad0660ffa8e701a1bcfbccc7cd597d6"><code>fefb89f</code></a> Update use-action.yaml</li> <li><a href="https://github.com/ko-build/setup-ko/commit/074c42371eceefc34c1e237f3cfc1fe77ca128fe"><code>074c423</code></a> Update Go version from 1.25 to 1.26 in CI workflow</li> <li><a href="https://github.com/ko-build/setup-ko/commit/d43b83971ccf1ba72847c2f5e0c558d61d1d31d5"><code>d43b839</code></a> Bump the all group across 1 directory with 2 updates</li> <li><a href="https://github.com/ko-build/setup-ko/commit/8719e8eccfc6b05925eb065284527adc92b60273"><code>8719e8e</code></a> Merge pull request <a href="https://redirect.github.com/ko-build/setup-ko/issues/60">#60</a> from ko-build/dependabot/github_actions/all-2c6e677ddc</li> <li><a href="https://github.com/ko-build/setup-ko/commit/9beb6ab819aea73c1bcad373563d10db708477b0"><code>9beb6ab</code></a> Bump actions/setup-go from 6.2.0 to 6.3.0 in the all group</li> <li>Additional commits viewable in <a href="https://github.com/ko-build/setup-ko/compare/v0.9...v0.10">compare view</a></li> </ul> </details> <br /> Updates `docker/login-action` from 4.2.0 to 4.4.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/login-action/releases">docker/login-action's releases</a>.</em></p> <blockquote> <h2>v4.4.0</h2> <ul> <li>Skip empty <code>registry-auth</code> secret mask by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/docker/login-action/pull/1035">docker/login-action#1035</a></li> <li>Bump <code>@​aws-sdk/client-ecr</code> and <code>@​aws-sdk/client-ecr-public</code> to 3.1077.0 <a href="https://redirect.github.com/docker/login-action/pull/1034">docker/login-action#1034</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/login-action/compare/v4.3.0...v4.4.0">https://github.com/docker/login-action/compare/v4.3.0...v4.4.0</a></p> <h2>v4.3.0</h2> <ul> <li>Preserve names in esbuild bundle by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a href="https://redirect.github.com/docker/login-action/pull/1022">docker/login-action#1022</a></li> <li>Bump <code>@​aws-sdk/client-ecr</code> and <code>@​aws-sdk/client-ecr-public</code> to 3.1076.0 <a href="https://redirect.github.com/docker/login-action/pull/999">docker/login-action#999</a> <a href="https://redirect.github.com/docker/login-action/pull/1030">docker/login-action#1030</a></li> <li>Bump <code>@​docker/actions-toolkit</code> from 0.90.0 to 0.92.0 in <a href="https://redirect.github.com/docker/login-action/pull/1004">docker/login-action#1004</a> <a href="https://redirect.github.com/docker/login-action/pull/1027">docker/login-action#1027</a></li> <li>Bump <code>@​sigstore/core</code> from 3.1.0 to 3.2.1 in <a href="https://redirect.github.com/docker/login-action/pull/1023">docker/login-action#1023</a></li> <li>Bump <code>@​sigstore/verify</code> from 3.1.0 to 3.1.1 in <a href="https://redirect.github.com/docker/login-action/pull/1029">docker/login-action#1029</a></li> <li>Bump http-proxy-agent and https-proxy-agent to 9.1.0 in <a href="https://redirect.github.com/docker/login-action/pull/1017">docker/login-action#1017</a></li> <li>Bump js-yaml from 4.1.1 to 5.2.0 in <a href="https://redirect.github.com/docker/login-action/pull/1028">docker/login-action#1028</a></li> <li>Bump sigstore from 4.1.0 to 4.1.1 in <a href="https://redirect.github.com/docker/login-action/pull/1031">docker/login-action#1031</a></li> <li>Bump tmp from 0.2.5 to 0.2.7 in <a href="https://redirect.github.com/docker/login-action/pull/1002">docker/login-action#1002</a></li> <li>Bump undici from 6.24.1 to 6.27.0 in <a href="https://redirect.github.com/docker/login-action/pull/1020">docker/login-action#1020</a></li> <li>Bump vite from 7.3.3 to 7.3.6 in <a href="https://redirect.github.com/docker/login-action/pull/1019">docker/login-action#1019</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/login-action/compare/v4.2.0...v4.3.0">https://github.com/docker/login-action/compare/v4.2.0...v4.3.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/docker/login-action/commit/af1e73f918a031802d376d3c8bbc3fe56130a9b0"><code>af1e73f</code></a> Merge pull request <a href="https://redirect.github.com/docker/login-action/issues/1034">#1034</a> from docker/dependabot/npm_and_yarn/aws-sdk-dependen...</li> <li><a href="https://github.com/docker/login-action/commit/da722bde43bacb027adfc67d42dbaa4c0f9e550b"><code>da722bd</code></a> [dependabot skip] chore: update generated content</li> <li><a href="https://github.com/docker/login-action/commit/2916ad60bd5cb72f07aa54c69fdcc61749c09b7a"><code>2916ad6</code></a> build(deps): bump the aws-sdk-dependencies group across 1 directory with 2 up...</li> <li><a href="https://github.com/docker/login-action/commit/ca0a662f786e4cfddce972005bd68f3dafc3a903"><code>ca0a662</code></a> Merge pull request <a href="https://redirect.github.com/docker/login-action/issues/1035">#1035</a> from crazy-max/fix-registry-auth-empty-mask</li> <li><a href="https://github.com/docker/login-action/commit/c455755a579833bf0d2e4e54e3beb413ef10cc80"><code>c455755</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/login-action/commit/48351901f89581a7c12870c787d3f06d1f498438"><code>4835190</code></a> skip empty registry-auth secret mask</li> <li><a href="https://github.com/docker/login-action/commit/992421c6e6806a7f6df609d1bfff374f9eca3004"><code>992421c</code></a> Merge pull request <a href="https://redirect.github.com/docker/login-action/issues/1033">#1033</a> from docker/dependabot/github_actions/docker/bake-ac...</li> <li><a href="https://github.com/docker/login-action/commit/b249b43765525dd7951068267a34cf63f22ab4f0"><code>b249b43</code></a> Merge pull request <a href="https://redirect.github.com/docker/login-action/issues/1032">#1032</a> from docker/dependabot/github_actions/docker/bake-ac...</li> <li><a href="https://github.com/docker/login-action/commit/1b67977736863551a88ff218642a2d7628b10520"><code>1b67977</code></a> build(deps): bump docker/bake-action from 7.2.0 to 7.3.0</li> <li><a href="https://github.com/docker/login-action/commit/9d49d6a3234c78daa10c3c12183ef7b6caa8e69e"><code>9d49d6a</code></a> build(deps): bump docker/bake-action/subaction/matrix</li> <li>Additional commits viewable in <a href="https://github.com/docker/login-action/compare/650006c6eb7dba73a995cc03b0b2d7f5ca915bee...af1e73f918a031802d376d3c8bbc3fe56130a9b0">compare view</a></li> </ul> </details> <br /> Updates `goreleaser/goreleaser-action` from 7.2.2 to 7.2.3 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/goreleaser/goreleaser-action/releases">goreleaser/goreleaser-action's releases</a>.</em></p> <blockquote> <h2>v7.2.3</h2> <h2>What's Changed</h2> <ul> <li>ci(deps): bump the actions group with 3 updates by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/goreleaser/goreleaser-action/pull/563">goreleaser/goreleaser-action#563</a></li> <li>chore(deps): bump undici from 6.24.1 to 6.27.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/goreleaser/goreleaser-action/pull/565">goreleaser/goreleaser-action#565</a></li> <li>build: regenerate dist after undici 6.27.0 bump by <a href="https://github.com/caarlos0"><code>@​caarlos0</code></a> in <a href="https://redirect.github.com/goreleaser/goreleaser-action/pull/567">goreleaser/goreleaser-action#567</a></li> <li>ci: auto-rebuild dist on dependabot PRs by <a href="https://github.com/caarlos0"><code>@​caarlos0</code></a> in <a href="https://redirect.github.com/goreleaser/goreleaser-action/pull/568">goreleaser/goreleaser-action#568</a></li> <li>ci: use a GitHub App token to rebuild dist on dependabot PRs by <a href="https://github.com/caarlos0"><code>@​caarlos0</code></a> in <a href="https://redirect.github.com/goreleaser/goreleaser-action/pull/569">goreleaser/goreleaser-action#569</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/goreleaser/goreleaser-action/compare/v7.2.2...v7.2.3">https://github.com/goreleaser/goreleaser-action/compare/v7.2.2...v7.2.3</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/f06c13b6b1a9625abc9e6e439d9c05a8f2190e94"><code>f06c13b</code></a> chore: update dist</li> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/d3934597cabdbe270e6519994809cd8565affd8b"><code>d393459</code></a> ci: fix job</li> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/ee731b17003202950327bd6320f70ffa1ddfc762"><code>ee731b1</code></a> chore: workflow dispatch</li> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/55de448558b6150b4f0992bf3e50af893c6cdae0"><code>55de448</code></a> chore(deps): bump js-yaml from 4.1.1 to 4.2.0</li> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/a4f614e65e0a697142391c9db49e89ecb675acb6"><code>a4f614e</code></a> ci: use a GitHub App token to rebuild dist on dependabot PRs (<a href="https://redirect.github.com/goreleaser/goreleaser-action/issues/569">#569</a>)</li> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/d2d17a6c5d53a4728825071e3335a7fd4e6e2efd"><code>d2d17a6</code></a> ci: auto-rebuild dist on dependabot PRs (<a href="https://redirect.github.com/goreleaser/goreleaser-action/issues/568">#568</a>)</li> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/d13def3a6e9d83b93e85c1c6cbcd81c90616f68b"><code>d13def3</code></a> build: regenerate dist after undici 6.27.0 bump (<a href="https://redirect.github.com/goreleaser/goreleaser-action/issues/567">#567</a>)</li> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/21549b6bea946f588228bf9508eddb673059ed6a"><code>21549b6</code></a> chore(deps): bump undici from 6.24.1 to 6.27.0 (<a href="https://redirect.github.com/goreleaser/goreleaser-action/issues/565">#565</a>)</li> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/47c416d5e8f73bfd91c48a1a86cf259f81a279f6"><code>47c416d</code></a> ci(deps): bump the actions group with 3 updates (<a href="https://redirect.github.com/goreleaser/goreleaser-action/issues/563">#563</a>)</li> <li>See full diff in <a href="https://github.com/goreleaser/goreleaser-action/compare/5daf1e915a5f0af01ddbcd89a43b8061ff4f1a89...f06c13b6b1a9625abc9e6e439d9c05a8f2190e94">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent 5cc44d0 commit 7f647ef

3 files changed

Lines changed: 7 additions & 7 deletions

File tree

.github/workflows/ci.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -25,7 +25,7 @@ jobs:
2525
cache: true
2626

2727
- name: Run lint
28-
uses: golangci/golangci-lint-action@82606bf257cbaff209d206a39f5134f0cfbfd2ee
28+
uses: golangci/golangci-lint-action@ba0d7d2ec06a0ea1cb5fa41b2e4a3ab91d21278a
2929
with:
3030
version: v2.11.4
3131

@@ -57,7 +57,7 @@ jobs:
5757
cache: true
5858

5959
- name: Set up ko
60-
uses: ko-build/setup-ko@v0.9
60+
uses: ko-build/setup-ko@v0.10
6161

6262
- name: Run all tests
6363
run: make test-all

.github/workflows/deploy-staging.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -31,10 +31,10 @@ jobs:
3131
cache: true
3232

3333
- name: Set up ko
34-
uses: ko-build/setup-ko@v0.9
34+
uses: ko-build/setup-ko@v0.10
3535

3636
- name: Log in to Container Registry
37-
uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee
37+
uses: docker/login-action@af1e73f918a031802d376d3c8bbc3fe56130a9b0
3838
with:
3939
registry: ghcr.io
4040
username: ${{ github.actor }}

.github/workflows/release.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -31,7 +31,7 @@ jobs:
3131
uses: anchore/sbom-action/download-syft@v0.24.0
3232

3333
- name: Run GoReleaser
34-
uses: goreleaser/goreleaser-action@5daf1e915a5f0af01ddbcd89a43b8061ff4f1a89
34+
uses: goreleaser/goreleaser-action@f06c13b6b1a9625abc9e6e439d9c05a8f2190e94
3535
with:
3636
distribution: goreleaser
3737
version: v2.12.0
@@ -54,10 +54,10 @@ jobs:
5454
cache: true
5555

5656
- name: Set up ko
57-
uses: ko-build/setup-ko@v0.9
57+
uses: ko-build/setup-ko@v0.10
5858

5959
- name: Log in to Container Registry
60-
uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee
60+
uses: docker/login-action@af1e73f918a031802d376d3c8bbc3fe56130a9b0
6161
with:
6262
registry: ghcr.io
6363
username: ${{ github.actor }}

0 commit comments

Comments
 (0)