Skip to content

ci(deps): bump the github-actions-minor-patch group across 1 directory with 11 updates#50

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/github-actions-minor-patch-5e8c942558
Open

ci(deps): bump the github-actions-minor-patch group across 1 directory with 11 updates#50
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/github-actions-minor-patch-5e8c942558

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 7, 2026

Copy link
Copy Markdown
Contributor

Bumps the github-actions-minor-patch group with 11 updates in the / directory:

Package From To
actions/setup-go 6.4.0 6.5.0
github/codeql-action/init 3.36.0 3.36.2
github/codeql-action/autobuild 3.36.0 3.36.2
github/codeql-action/analyze 3.36.0 3.36.2
actions/setup-python 6.2.0 6.3.0
golangci/golangci-lint-action 9.2.1 9.3.0
relizaio/rearm-actions/setup-cli 1.5.0 1.7.0
relizaio/rearm-actions/initialize 1.5.0 1.7.0
relizaio/rearm-actions/sbom-sign-scan 1.5.0 1.7.0
relizaio/rearm-actions/finalize 1.5.0 1.7.0
goreleaser/goreleaser-action 7.2.2 7.2.3

Updates actions/setup-go from 6.4.0 to 6.5.0

Release notes

Sourced from actions/setup-go's releases.

v6.5.0

What's Changed

Dependency update

New Contributors

Full Changelog: actions/setup-go@v6...v6.5.0

Commits

Updates github/codeql-action/init from 3.36.0 to 3.36.2

Release notes

Sourced from github/codeql-action/init's releases.

v3.36.2

  • Cache CodeQL CLI version information across Actions steps. #3943
  • Reduce requests while waiting for analysis processing by using exponential backoff when polling SARIF processing status. #3937
  • Update default CodeQL bundle version to 2.25.6. #3948

v3.36.1

No user facing changes.

Commits
  • dd903d2 Merge pull request #3952 from github/backport-v3.36.2-8aad20d15
  • 0d313a3 Rebuild
  • ee98575 Update version and changelog for v3.36.2
  • 7d9a983 Merge remote-tracking branch 'origin/releases/v4' into backport-v3.36.2-8aad2...
  • 6016976 Revert "Rebuild"
  • 72c906d Revert "Update version and changelog for v3.36.1"
  • 8aad20d Merge pull request #3949 from github/update-v4.36.2-dcb947ce1
  • f521b08 Add additional changelog notes
  • 8aeff0f Update changelog for v4.36.2
  • dcb947c Merge pull request #3948 from github/update-bundle/codeql-bundle-v2.25.6
  • Additional commits viewable in compare view

Updates github/codeql-action/autobuild from 3.36.0 to 3.36.2

Release notes

Sourced from github/codeql-action/autobuild's releases.

v3.36.2

  • Cache CodeQL CLI version information across Actions steps. #3943
  • Reduce requests while waiting for analysis processing by using exponential backoff when polling SARIF processing status. #3937
  • Update default CodeQL bundle version to 2.25.6. #3948

v3.36.1

No user facing changes.

Commits
  • dd903d2 Merge pull request #3952 from github/backport-v3.36.2-8aad20d15
  • 0d313a3 Rebuild
  • ee98575 Update version and changelog for v3.36.2
  • 7d9a983 Merge remote-tracking branch 'origin/releases/v4' into backport-v3.36.2-8aad2...
  • 6016976 Revert "Rebuild"
  • 72c906d Revert "Update version and changelog for v3.36.1"
  • 8aad20d Merge pull request #3949 from github/update-v4.36.2-dcb947ce1
  • f521b08 Add additional changelog notes
  • 8aeff0f Update changelog for v4.36.2
  • dcb947c Merge pull request #3948 from github/update-bundle/codeql-bundle-v2.25.6
  • Additional commits viewable in compare view

Updates github/codeql-action/analyze from 3.36.0 to 3.36.2

Release notes

Sourced from github/codeql-action/analyze's releases.

v3.36.2

  • Cache CodeQL CLI version information across Actions steps. #3943
  • Reduce requests while waiting for analysis processing by using exponential backoff when polling SARIF processing status. #3937
  • Update default CodeQL bundle version to 2.25.6. #3948

v3.36.1

No user facing changes.

Commits
  • dd903d2 Merge pull request #3952 from github/backport-v3.36.2-8aad20d15
  • 0d313a3 Rebuild
  • ee98575 Update version and changelog for v3.36.2
  • 7d9a983 Merge remote-tracking branch 'origin/releases/v4' into backport-v3.36.2-8aad2...
  • 6016976 Revert "Rebuild"
  • 72c906d Revert "Update version and changelog for v3.36.1"
  • 8aad20d Merge pull request #3949 from github/update-v4.36.2-dcb947ce1
  • f521b08 Add additional changelog notes
  • 8aeff0f Update changelog for v4.36.2
  • dcb947c Merge pull request #3948 from github/update-bundle/codeql-bundle-v2.25.6
  • Additional commits viewable in compare view

Updates actions/setup-python from 6.2.0 to 6.3.0

Release notes

Sourced from actions/setup-python's releases.

v6.3.0

What's Changed

Enhancement

Dependency update

Documentation

New Contributors

Full Changelog: actions/setup-python@v6...v6.3.0

Commits

Updates golangci/golangci-lint-action from 9.2.1 to 9.3.0

Release notes

Sourced from golangci/golangci-lint-action's releases.

v9.3.0

What's Changed

Changes

Dependencies

Full Changelog: golangci/golangci-lint-action@v9.2.1...v9.3.0

Commits
  • ba0d7d2 chore: prepare release v9.3.0
  • efd0857 feat: add no-run-logs-group as experimental option (#1403)
  • ed485de build(deps): bump undici from 6.24.0 to 6.27.0
  • 8872e8d build(deps-dev): bump js-yaml from 4.1.1 to 4.2.0 (#1400)
  • b163415 build(deps): bump tmp from 0.2.6 to 0.2.7 (#1399)
  • e52a9f8 build(deps): bump github/codeql-action from 4.35.5 to 4.36.0 in the github-ac...
  • 8182aa3 build(deps): bump tmp from 0.2.5 to 0.2.6 (#1397)
  • 5403a41 build(deps): bump github/codeql-action from 4.35.4 to 4.35.5 in the github-ac...
  • See full diff in compare view

Updates relizaio/rearm-actions/setup-cli from 1.5.0 to 1.7.0

Release notes

Sourced from relizaio/rearm-actions/setup-cli's releases.

1.7.0

Breaking Changes:

Input Value Requirements

Since v1.7.0, every action consumes its inputs through step-level env: indirection — a hardening against template injection (each ${{ inputs.* }} is bound to an environment variable instead of being interpolated directly into the run script). As a result, every input value must be an already-resolved string: a literal, a step output, or an env context expression such as ${{ steps.build.outputs.IMAGE_DIGEST }} or ${{ env.DOCKER_SHA_256 }}.

Do not pass a bare shell-variable reference. A value like image_digest: $DOCKER_SHA_256 is forwarded verbatim and is not expanded by the action's shell (it was under the pre-v1.7.0 inline form, but no longer), producing errors such as invalid reference format: repository name (...@$DOCKER_SHA_256) must be lowercase. If you computed a value into a shell variable, surface it via $GITHUB_OUTPUT or $GITHUB_ENV first and reference it with ${{ steps.<id>.outputs.<name> }} or ${{ env.<NAME> }}.

# ✅ resolved from a step output
image_digest: ${{ steps.build.outputs.IMAGE_DIGEST }}
# ✅ resolved from an env var exported earlier via $GITHUB_ENV
image_digest: ${{ env.DOCKER_SHA_256 }}
# ❌ bare shell reference — forwarded literally, never expanded by the action
image_digest: $DOCKER_SHA_256

Fixes:

  • This release addresses zizmor findings around possible unsafe inputs.

1.6.1

Chores

  • Switch cdxgen to 12.3.3

1.6.0

Breaking Changes

  • Finalize action no longer submits finalizer call to ReARM after the release is pushed (that is now handled by ReARM Backend automatically).

Features

  • Add add-multi-release action (allows to submit multiple component releases at a time which would fire auto-integrate once per matching feature set within the submission)

Chores

  • Bump ReARM CLI to 26.05.20
  • Bump cdxgen to 12.5.0
Commits
  • dac3e77 fix: proper variable expanding following hardening
  • 7768d9b docs: describe possible breaking changes on input
  • 9dceef7 feat: handle possible unsafe inputs
  • ea942d9 docs: correct type on add multi-release
  • 411386f chore: downgrade cdxgen to 12.3.3
  • 710b7c0 chore: bump cdxgen to 12.5.0
  • 121c78a chore: add add-multi-release action
  • f48839b chore(setup-cli): bump ReARM CLI to 26.05.20
  • 7c60f73 feat(finalize)!: remove ReARM finalize call since backend now handles it auto...
  • See full diff in compare view

Updates relizaio/rearm-actions/initialize from 1.5.0 to 1.7.0

Release notes

Sourced from relizaio/rearm-actions/initialize's releases.

1.7.0

Breaking Changes:

Input Value Requirements

Since v1.7.0, every action consumes its inputs through step-level env: indirection — a hardening against template injection (each ${{ inputs.* }} is bound to an environment variable instead of being interpolated directly into the run script). As a result, every input value must be an already-resolved string: a literal, a step output, or an env context expression such as ${{ steps.build.outputs.IMAGE_DIGEST }} or ${{ env.DOCKER_SHA_256 }}.

Do not pass a bare shell-variable reference. A value like image_digest: $DOCKER_SHA_256 is forwarded verbatim and is not expanded by the action's shell (it was under the pre-v1.7.0 inline form, but no longer), producing errors such as invalid reference format: repository name (...@$DOCKER_SHA_256) must be lowercase. If you computed a value into a shell variable, surface it via $GITHUB_OUTPUT or $GITHUB_ENV first and reference it with ${{ steps.<id>.outputs.<name> }} or ${{ env.<NAME> }}.

# ✅ resolved from a step output
image_digest: ${{ steps.build.outputs.IMAGE_DIGEST }}
# ✅ resolved from an env var exported earlier via $GITHUB_ENV
image_digest: ${{ env.DOCKER_SHA_256 }}
# ❌ bare shell reference — forwarded literally, never expanded by the action
image_digest: $DOCKER_SHA_256

Fixes:

  • This release addresses zizmor findings around possible unsafe inputs.

1.6.1

Chores

  • Switch cdxgen to 12.3.3

1.6.0

Breaking Changes

  • Finalize action no longer submits finalizer call to ReARM after the release is pushed (that is now handled by ReARM Backend automatically).

Features

  • Add add-multi-release action (allows to submit multiple component releases at a time which would fire auto-integrate once per matching feature set within the submission)

Chores

  • Bump ReARM CLI to 26.05.20
  • Bump cdxgen to 12.5.0
Commits
  • dac3e77 fix: proper variable expanding following hardening
  • 7768d9b docs: describe possible breaking changes on input
  • 9dceef7 feat: handle possible unsafe inputs
  • ea942d9 docs: correct type on add multi-release
  • 411386f chore: downgrade cdxgen to 12.3.3
  • 710b7c0 chore: bump cdxgen to 12.5.0
  • 121c78a chore: add add-multi-release action
  • f48839b chore(setup-cli): bump ReARM CLI to 26.05.20
  • 7c60f73 feat(finalize)!: remove ReARM finalize call since backend now handles it auto...
  • See full diff in compare view

Updates relizaio/rearm-actions/sbom-sign-scan from 1.5.0 to 1.7.0

Release notes

Sourced from relizaio/rearm-actions/sbom-sign-scan's releases.

1.7.0

Breaking Changes:

Input Value Requirements

Since v1.7.0, every action consumes its inputs through step-level env: indirection — a hardening against template injection (each ${{ inputs.* }} is bound to an environment variable instead of being interpolated directly into the run script). As a result, every input value must be an already-resolved string: a literal, a step output, or an env context expression such as ${{ steps.build.outputs.IMAGE_DIGEST }} or ${{ env.DOCKER_SHA_256 }}.

Do not pass a bare shell-variable reference. A value like image_digest: $DOCKER_SHA_256 is forwarded verbatim and is not expanded by the action's shell (it was under the pre-v1.7.0 inline form, but no longer), producing errors such as invalid reference format: repository name (...@$DOCKER_SHA_256) must be lowercase. If you computed a value into a shell variable, surface it via $GITHUB_OUTPUT or $GITHUB_ENV first and reference it with ${{ steps.<id>.outputs.<name> }} or ${{ env.<NAME> }}.

# ✅ resolved from a step output
image_digest: ${{ steps.build.outputs.IMAGE_DIGEST }}
# ✅ resolved from an env var exported earlier via $GITHUB_ENV
image_digest: ${{ env.DOCKER_SHA_256 }}
# ❌ bare shell reference — forwarded literally, never expanded by the action
image_digest: $DOCKER_SHA_256

Fixes:

  • This release addresses zizmor findings around possible unsafe inputs.

1.6.1

Chores

  • Switch cdxgen to 12.3.3

1.6.0

Breaking Changes

  • Finalize action no longer submits finalizer call to ReARM after the release is pushed (that is now handled by ReARM Backend automatically).

Features

  • Add add-multi-release action (allows to submit multiple component releases at a time which would fire auto-integrate once per matching feature set within the submission)

Chores

  • Bump ReARM CLI to 26.05.20
  • Bump cdxgen to 12.5.0
Commits
  • dac3e77 fix: proper variable expanding following hardening
  • 7768d9b docs: describe possible breaking changes on input
  • 9dceef7 feat: handle possible unsafe inputs
  • ea942d9 docs: correct type on add multi-release
  • 411386f chore: downgrade cdxgen to 12.3.3
  • 710b7c0 chore: bump cdxgen to 12.5.0
  • 121c78a chore: add add-multi-release action
  • f48839b chore(setup-cli): bump ReARM CLI to 26.05.20
  • 7c60f73 feat(finalize)!: remove ReARM finalize call since backend now handles it auto...
  • See full diff in compare view

Updates relizaio/rearm-actions/finalize from 1.5.0 to 1.7.0

Release notes

Sourced from relizaio/rearm-actions/finalize's releases.

1.7.0

Breaking Changes:

Input Value Requirements

Since v1.7.0, every action consumes its inputs through step-level env: indirection — a hardening against template injection (each ${{ inputs.* }} is bound to an environment variable instead of being interpolated directly into the run script). As a result, every input value must be an already-resolved string: a literal, a step output, or an env context expression such as ${{ steps.build.outputs.IMAGE_DIGEST }} or ${{ env.DOCKER_SHA_256 }}.

Do not pass a bare shell-variable reference. A value like image_digest: $DOCKER_SHA_256 is forwarded verbatim and is not expanded by the action's shell (it was under the pre-v1.7.0 inline form, but no longer), producing errors such as invalid reference format: repository name (...@$DOCKER_SHA_256) must be lowercase. If you computed a value into a shell variable, surface it via $GITHUB_OUTPUT or $GITHUB_ENV first and reference it with ${{ steps.<id>.outputs.<name> }} or ${{ env.<NAME> }}.

# ✅ resolved from a step output
image_digest: ${{ steps.build.outputs.IMAGE_DIGEST }}
# ✅ resolved from an env var exported earlier via $GITHUB_ENV
image_digest: ${{ env.DOCKER_SHA_256 }}
# ❌ bare shell reference — forwarded literally, never expanded by the action
image_digest: $DOCKER_SHA_256

Fixes:

  • This release addresses zizmor findings around possible unsafe inputs.

1.6.1

Chores

  • Switch cdxgen to 12.3.3

1.6.0

Breaking Changes

  • Finalize action no longer submits finalizer call to ReARM after the release is pushed (that is now handled by ReARM Backend automatically).

Features

  • Add add-multi-release action (allows to submit multiple component releases at a time which would fire auto-integrate once per matching feature set within the submission)

Chores

  • Bump ReARM CLI to 26.05.20
  • Bump cdxgen to 12.5.0
Commits
  • dac3e77 fix: proper variable expanding following hardening
  • 7768d9b docs: describe possible breaking changes on input
  • 9dceef7 feat: handle possible unsafe inputs
  • ea942d9 docs: correct type on add multi-release
  • 411386f chore: downgrade cdxgen to 12.3.3
  • 710b7c0 chore: bump cdxgen to 12.5.0
  • 121c78a chore: add add-multi-release action
  • f48839b chore(setup-cli): bump ReARM CLI to 26.05.20
  • 7c60f73 feat(finalize)!: remove ReARM finalize call since backend now handles it auto...
  • See full diff in compare view

Updates goreleaser/goreleaser-action from 7.2.2 to 7.2.3

Release notes

Sourced from goreleaser/goreleaser-action's releases.

v7.2.3

What's Changed

Full Changelog: goreleaser/goreleaser-action@v7.2.2...v7.2.3

Commits
  • f06c13b chore: update dist
  • d393459 ci: fix job
  • ee731b1 chore: workflow dispatch
  • 55de448 chore(deps): bump js-yaml from 4.1.1 to 4.2.0
  • a4f614e ci: use a GitHub App token to rebuild dist on dependabot PRs (#569)
  • d2d17a6 ci: auto-rebuild dist on dependabot PRs (#568)
  • d13def3 build: regenerate dist after undici 6.27.0 bump (#567)
  • 21549b6 chore(deps): bump undici from 6.24.1 to 6.27.0 (#565)
  • 47c416d ci(deps): bump the actions group with 3 updates (#563)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…y with 11 updates

Bumps the github-actions-minor-patch group with 11 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions/setup-go](https://github.com/actions/setup-go) | `6.4.0` | `6.5.0` |
| [github/codeql-action/init](https://github.com/github/codeql-action) | `3.36.0` | `3.36.2` |
| [github/codeql-action/autobuild](https://github.com/github/codeql-action) | `3.36.0` | `3.36.2` |
| [github/codeql-action/analyze](https://github.com/github/codeql-action) | `3.36.0` | `3.36.2` |
| [actions/setup-python](https://github.com/actions/setup-python) | `6.2.0` | `6.3.0` |
| [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) | `9.2.1` | `9.3.0` |
| [relizaio/rearm-actions/setup-cli](https://github.com/relizaio/rearm-actions) | `1.5.0` | `1.7.0` |
| [relizaio/rearm-actions/initialize](https://github.com/relizaio/rearm-actions) | `1.5.0` | `1.7.0` |
| [relizaio/rearm-actions/sbom-sign-scan](https://github.com/relizaio/rearm-actions) | `1.5.0` | `1.7.0` |
| [relizaio/rearm-actions/finalize](https://github.com/relizaio/rearm-actions) | `1.5.0` | `1.7.0` |
| [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) | `7.2.2` | `7.2.3` |



Updates `actions/setup-go` from 6.4.0 to 6.5.0
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](actions/setup-go@4a36011...924ae3a)

Updates `github/codeql-action/init` from 3.36.0 to 3.36.2
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@03e4368...dd903d2)

Updates `github/codeql-action/autobuild` from 3.36.0 to 3.36.2
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@03e4368...dd903d2)

Updates `github/codeql-action/analyze` from 3.36.0 to 3.36.2
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@03e4368...dd903d2)

Updates `actions/setup-python` from 6.2.0 to 6.3.0
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](actions/setup-python@a309ff8...ece7cb0)

Updates `golangci/golangci-lint-action` from 9.2.1 to 9.3.0
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](golangci/golangci-lint-action@82606bf...ba0d7d2)

Updates `relizaio/rearm-actions/setup-cli` from 1.5.0 to 1.7.0
- [Release notes](https://github.com/relizaio/rearm-actions/releases)
- [Commits](relizaio/rearm-actions@40bd23d...dac3e77)

Updates `relizaio/rearm-actions/initialize` from 1.5.0 to 1.7.0
- [Release notes](https://github.com/relizaio/rearm-actions/releases)
- [Commits](relizaio/rearm-actions@40bd23d...dac3e77)

Updates `relizaio/rearm-actions/sbom-sign-scan` from 1.5.0 to 1.7.0
- [Release notes](https://github.com/relizaio/rearm-actions/releases)
- [Commits](relizaio/rearm-actions@40bd23d...dac3e77)

Updates `relizaio/rearm-actions/finalize` from 1.5.0 to 1.7.0
- [Release notes](https://github.com/relizaio/rearm-actions/releases)
- [Commits](relizaio/rearm-actions@40bd23d...dac3e77)

Updates `goreleaser/goreleaser-action` from 7.2.2 to 7.2.3
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](goreleaser/goreleaser-action@5daf1e9...f06c13b)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-version: 6.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-minor-patch
- dependency-name: github/codeql-action/init
  dependency-version: 3.36.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions-minor-patch
- dependency-name: github/codeql-action/autobuild
  dependency-version: 3.36.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions-minor-patch
- dependency-name: github/codeql-action/analyze
  dependency-version: 3.36.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions-minor-patch
- dependency-name: actions/setup-python
  dependency-version: 6.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-minor-patch
- dependency-name: golangci/golangci-lint-action
  dependency-version: 9.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-minor-patch
- dependency-name: relizaio/rearm-actions/setup-cli
  dependency-version: 1.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-minor-patch
- dependency-name: relizaio/rearm-actions/initialize
  dependency-version: 1.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-minor-patch
- dependency-name: relizaio/rearm-actions/sbom-sign-scan
  dependency-version: 1.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-minor-patch
- dependency-name: relizaio/rearm-actions/finalize
  dependency-version: 1.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-minor-patch
- dependency-name: goreleaser/goreleaser-action
  dependency-version: 7.2.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github

dependabot Bot commented on behalf of github Jul 7, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: dependencies, github-actions. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants