Bump peter-evans/create-pull-request from 8.1.0 to 8.1.1 in the minor-and-patch group across 1 directory#1561
Conversation
Bumps the minor-and-patch group with 1 update in the / directory: [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request). Updates `peter-evans/create-pull-request` from 8.1.0 to 8.1.1 - [Release notes](https://github.com/peter-evans/create-pull-request/releases) - [Commits](peter-evans/create-pull-request@c0f553f...5f6978f) --- updated-dependencies: - dependency-name: peter-evans/create-pull-request dependency-version: 8.1.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch ... Signed-off-by: dependabot[bot] <support@github.com>
dbddac9 to
ccf1552
Compare
dj4oC
left a comment
There was a problem hiding this comment.
Dependabot patch bump: peter-evans/create-pull-request 8.1.0 → 8.1.1 (GitHub Actions ecosystem, covered by .github/dependabot.yml).
Findings
- Security: no findings — no CVE in this release, changelog is dependency-maintenance + a retry-on-422 bug fix.
- Stability: no findings — patch-level, no breaking changes noted in release notes.
- Performance: no findings.
- Coverage: N/A — CI-only dependency bump, no Swift/UIKit code touched.
Note
Build verification skipped (Xcode not available in cloud review environment). Code analysis only.
Verdict
Approved — qualifies for Dependabot fast-lane (CI green, no open unresolved question, no known CVE). Auto-merging per fast-lane authorization.
🤖 Automated review by Claude Code (security · stability · performance · coverage)
Generated by Claude Code
Approved for Dependabot fast-lane auto-merge (patch bump, no CVE, no open questions). Auto-merge could not be completed: both direct merge and 🤖 Automated review by Claude Code (security · stability · performance · coverage) Generated by Claude Code |
dj4oC
left a comment
There was a problem hiding this comment.
- Fast-lane re-check: still CI green, no unresolved question, no CVE — merge criteria still met.
- Auto-merge attempt failed:
403 Resource not accessible by integration— this bot's GitHub token doesn't have merge permission on this repo. A maintainer needs to merge manually (or grant the automation's App thepull_requests: write/merge scope for auto-merge to work going forward).
🤖 Automated review by Claude Code (security · stability · performance · coverage)
Generated by Claude Code
Bumps the minor-and-patch group with 1 update in the / directory: peter-evans/create-pull-request.
Updates
peter-evans/create-pull-requestfrom 8.1.0 to 8.1.1Release notes
Sourced from peter-evans/create-pull-request's releases.
Commits
5f6978ffix: retry post-creation API calls on 422 eventual consistency errors (#4356)d32e88dbuild(deps-dev): bump the npm group with 3 updates (#4349)8170bccbuild(deps-dev): bump handlebars from 4.7.8 to 4.7.9 (#4344)0041819build(deps): bump picomatch (#4339)b993918build(deps-dev): bump flatted from 3.3.1 to 3.4.2 (#4334)36d7c84build(deps-dev): bump undici from 6.23.0 to 6.24.0 (#4328)a45d1fbbuild(deps): bump@tootallnate/onceand jest-environment-jsdom (#4323)3499eb6build(deps): bump the github-actions group with 2 updates (#4316)3f3b473build(deps): bump minimatch (#4311)6699836build(deps-dev): bump the npm group with 2 updates (#4305)