Skip to content

Bump senzing-factory/github-action-install-senzing-sdk from 3 to 4 in the senzing-factory group#347

Merged
kernelsam merged 2 commits into
mainfrom
dependabot/github_actions/senzing-factory-eeb70d1de3
Mar 13, 2026
Merged

Bump senzing-factory/github-action-install-senzing-sdk from 3 to 4 in the senzing-factory group#347
kernelsam merged 2 commits into
mainfrom
dependabot/github_actions/senzing-factory-eeb70d1de3

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Mar 12, 2026
edited by github-actions Bot
Loading

Bumps the senzing-factory group with 1 update: senzing-factory/github-action-install-senzing-sdk.

Updates senzing-factory/github-action-install-senzing-sdk from 3 to 4

Release notes

Sourced from senzing-factory/github-action-install-senzing-sdk's releases.

4.0.0

What's Changed

Full Changelog: senzing-factory/github-action-install-senzing-sdk@v3...4.0.0

3.0.6

What's Changed

Full Changelog: senzing-factory/github-action-install-senzing-sdk@v3...3.0.6

3.0.5

What's Changed

Full Changelog: senzing-factory/github-action-install-senzing-sdk@v3...3.0.5

3.0.4

What's Changed

Full Changelog: senzing-factory/github-action-install-senzing-sdk@v3...3.0.4

3.0.3

What's Changed

Full Changelog: senzing-factory/github-action-install-senzing-sdk@v3...3.0.3

3.0.2

... (truncated)

Changelog

Sourced from senzing-factory/github-action-install-senzing-sdk's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, markdownlint, and this project adheres to Semantic Versioning.

[Unreleased]

[4.0.0] - 2026-03-12

Changed in 4.0.0

  • senzingsdk-version is now a required input
  • senzingsdk-repository-path now requires senzingsdk-version to be set (previously defaulted to major version 4)
  • Refactored install scripts to separate repository selection, version extraction, and artifact resolution into distinct phases

Added in 4.0.0

  • Semantic version support (X.Y.Z) for macOS and Windows — resolves the latest build for the given version from the S3 bucket
  • Error handling when no matching artifact is found in the S3 bucket

[1.0.0] - 2024-11-12

Added to 1.0.0

  • Install Senzing SDK on Linux, macOS, and Windows
Commits
  • 61156ab wondows requires inconsistencies (#41)
  • 24a0d08 treat the interpolated path as a literal string rather than trying to interpr...
  • ba6ca9b Add semver support for macOS/Windows and refactor install scripts (#39)
  • cba2972 fix dependabot config (#37)
  • 966e52f Update workflows for build-resources v4 (#36)
  • f6aa533 Bump senzing-factory/build-resources/.github/workflows/add-to-project.yaml (#35)
  • 2763f95 Bump senzing-factory/build-resources/.github/workflows/move-pr-to-done-depend...
  • 751e079 Bump senzing-factory/build-resources/.github/workflows/link-issues-to-pull-re...
  • 27d4f0b Bump senzing-factory/build-resources/.github/workflows/dependabot-approve-and...
  • b0d6f08 Bump senzing-factory/build-resources/.github/workflows/add-to-project-dependa...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Resolves #38
Resolves #18
Resolves #10
Resolves #41
Resolves #39
Resolves #37
Resolves #36
Resolves #35
Resolves senzing-factory/github-action-install-senzing-sdk#30
Resolves senzing-factory/github-action-install-senzing-sdk#29
Resolves senzing-factory/github-action-install-senzing-sdk#27
Resolves senzing-factory/github-action-install-senzing-sdk#26
Resolves senzing-factory/github-action-install-senzing-sdk#28
Resolves senzing-factory/github-action-install-senzing-sdk#31
Resolves senzing-factory/github-action-install-senzing-sdk#33
Resolves senzing-factory/github-action-install-senzing-sdk#35
Resolves senzing-factory/github-action-install-senzing-sdk#36
Resolves senzing-factory/github-action-install-senzing-sdk#37
Resolves senzing-factory/github-action-install-senzing-sdk#39
Resolves senzing-factory/github-action-install-senzing-sdk#25
Resolves senzing-factory/github-action-install-senzing-sdk#20
Resolves senzing-factory/github-action-install-senzing-sdk#22
Resolves senzing-factory/github-action-install-senzing-sdk#23
Resolves senzing-factory/github-action-install-senzing-sdk#24
Resolves senzing-factory/github-action-install-senzing-sdk#19
Resolves senzing-factory/github-action-install-senzing-sdk#16
Resolves senzing-factory/github-action-install-senzing-sdk#17

@dependabot
Bump senzing-factory/github-action-install-senzing-sdk
6d096a2 
Bumps the senzing-factory group with 1 update: [senzing-factory/github-action-install-senzing-sdk](https://github.com/senzing-factory/github-action-install-senzing-sdk).


Updates `senzing-factory/github-action-install-senzing-sdk` from 3 to 4
- [Release notes](https://github.com/senzing-factory/github-action-install-senzing-sdk/releases)
- [Changelog](https://github.com/senzing-factory/github-action-install-senzing-sdk/blob/main/CHANGELOG.md)
- [Commits](senzing-factory/github-action-install-senzing-sdk@v3...v4)

---
updated-dependencies:
- dependency-name: senzing-factory/github-action-install-senzing-sdk
  dependency-version: '4'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: senzing-factory
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Mar 12, 2026
@dependabot dependabot Bot requested a review from a team as a code owner March 12, 2026 22:54
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Mar 12, 2026
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Mar 12, 2026

🤖 Claude Code Review

PR Code Review

This is a simple, focused change updating the senzing-factory/github-action-install-senzing-sdk action from v3 to v4 across three CI workflow files.

Code Quality

  • Style guide: No application code changes; workflow YAML follows existing conventions.
  • No commented-out code: Clean diff.
  • Meaningful variable names: N/A for this change.
  • DRY principle: The same version bump is applied consistently across all three platform workflows (pytest-darwin.yaml, pytest-linux.yaml, pytest-windows.yaml).
  • Defects: No logic errors or bugs introduced. The change is a straightforward action version bump. No race conditions or security concerns.
  • CLAUDE.md: No issues with the project configuration file.

Testing

  • Unit/integration tests: No source code changes; no new tests required.
  • Test coverage: Unaffected by this change.

Documentation

  • README: No user-facing changes; no update needed.
  • API docs: N/A.
  • Inline comments: N/A.
  • CHANGELOG.md: A dependency/CI tooling bump like this is often omitted from changelogs, but if the project tracks all CI changes, it may warrant a note. Low priority.
  • Markdown formatting: No markdown files modified.

Security

  • No hardcoded credentials: None present.
  • Input validation: N/A.
  • Error handling: N/A.
  • No sensitive data in logs: N/A.
  • No license files (.lic): None present.

Summary

Approved. This is a clean, minimal CI maintenance change. The version bump from v3 to v4 of senzing-factory/github-action-install-senzing-sdk is applied uniformly across all three platform CI workflows. No concerns.

Automated code review analyzing defects and coding standards

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Mar 12, 2026

Super-linter summary

Language Validation result
CHECKOV Pass ✅
GITHUB_ACTIONS Pass ✅
GITHUB_ACTIONS_ZIZMOR Pass ✅
GITLEAKS Pass ✅
GIT_MERGE_CONFLICT_MARKERS Pass ✅
JSCPD Pass ✅
PRE_COMMIT Pass ✅
SPELL_CODESPELL Pass ✅
TRIVY Pass ✅
YAML Pass ✅
YAML_PRETTIER Pass ✅

All files and directories linted successfully

For more information, see the GitHub Actions workflow run

Powered by Super-linter

@kernelsam kernelsam enabled auto-merge (squash) March 13, 2026 14:54
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Mar 13, 2026

🤖 Claude Code Review

PR Code Review

This is a minimal diff that updates the senzing-factory/github-action-install-senzing-sdk GitHub Action from v3 to v4 across three CI workflow files.

Code Quality

  • Style guide: No source code changes; workflow files follow existing conventions.
  • No commented-out code: None present.
  • Meaningful variable names: N/A.
  • DRY principle: The same version bump is consistently applied across all three platform workflow files (darwin, linux, windows).
  • Defects/Logic errors: No bugs introduced. The change is a straightforward action version pin update. The senzingsdk-version matrix parameter is still passed correctly in all three files.
  • CLAUDE.md: No changes to project configuration.

Testing

  • Unit/Integration tests: No code changes require new tests.
  • Coverage: N/A for this change.

Documentation

  • README: No changes needed for a CI action version bump.
  • CHANGELOG.md: Not updated — acceptable for a dependency/tooling bump in CI workflows, though updating it would be good practice.
  • Markdown formatting: No markdown files were modified.

Security

  • No hardcoded credentials: None present.
  • No license files: No .lic files or AQAAAD-prefixed strings detected.
  • ⚠️ Action version pinning: The action is pinned to @v4 (a mutable tag) rather than a specific commit SHA. For supply chain security best practices, pinning to a full commit SHA (e.g., senzing-factory/github-action-install-senzing-sdk@<sha>) is recommended. This is a minor concern, consistent with the existing pattern in the repo.

Summary

This is a clean, low-risk change. The v3v4 version bump of github-action-install-senzing-sdk is applied consistently across all three platform CI workflows. No issues blocking merge.

Minor note: Consider updating CHANGELOG.md to document the action version bump, and consider pinning GitHub Actions to full commit SHAs for improved supply chain security.

Automated code review analyzing defects and coding standards

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Mar 13, 2026

Super-linter summary

Language Validation result
CHECKOV Pass ✅
GITHUB_ACTIONS Pass ✅
GITHUB_ACTIONS_ZIZMOR Pass ✅
GITLEAKS Pass ✅
GIT_MERGE_CONFLICT_MARKERS Pass ✅
JSCPD Pass ✅
PRE_COMMIT Pass ✅
SPELL_CODESPELL Pass ✅
TRIVY Pass ✅
YAML Pass ✅
YAML_PRETTIER Pass ✅

All files and directories linted successfully

For more information, see the GitHub Actions workflow run

Powered by Super-linter

@kernelsam kernelsam merged commit 59929fa into main Mar 13, 2026
72 checks passed
@kernelsam kernelsam deleted the dependabot/github_actions/senzing-factory-eeb70d1de3 branch March 13, 2026 14:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kernelsam kernelsam kernelsam approved these changes

Assignees

@kernelsam kernelsam

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Consolidate repeating code in Python tools to single helper module Migrate G2Export.py to V4 SDK

2 participants

@kernelsam @senzingdevops