mirror of
https://github.com/gradle/actions.git
synced 2026-03-22 20:15:46 +08:00
52fac46c3c94797e841c8d003b4e78a090ca6a4f
658 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Daz DeBoer
|
2cab5e3c71 | Fix path for running full-integ-test | ||
|
Daz DeBoer
|
56227c19fe | Run only one integ-test suite at a time | ||
|
Daz DeBoer
|
b99ed96fc6 | Fix branch name for update PR | ||
|
Daz DeBoer
|
9becd650e8 | Run integ-test-full for gradle-actions-caching updates | ||
|
Daz DeBoer
|
a0ee12f71e |
Extract caching logic into a separate gradle-actions-caching component (#885)
With this change, the caching functionality of `setup-gradle` and `dependency-submission` is now provided by `gradle-actions-caching`, a closed-source library distributed under our [Terms of Use](https://gradle.com/legal/terms-of-use/). The rest of the action implementation remains open source. Using `setup-gradle` or `dependency-submission` with caching enabled involves loading and using the `gradle-actions-caching` component, requiring acceptance of the [Terms of Use](https://gradle.com/legal/terms-of-use/). There are no functional changes to caching provided by these actions: all workflows will continue to function as before. The non-caching aspects of action implementation remain open source. By running these actions with caching disabled they can be used without ever loading `gradle-actions-caching` or accepting the license terms. Supporting the caching infrastructure in this project requires a substantial engineering investment by Gradle Technologies, which we can sustain thanks to Develocity, our commercial offering. Caching technologies are a core part of the Develocity offering, and the caching in `setup-gradle` fits squarely in that space. This licensing change lets us continue to build advanced capabilities that go beyond what we would offer as open source. Proper production-ready Configuration Cache support will be the first capability. Improving build performance for self-hosted runners will follow. We may introduce functionality restrictions in future updates. However, caching functionality will remain free for public repositories. We have a long-standing commitment to open source, as maintainers of Gradle Build Tool, and by [sponsoring the open source community](https://gradle.com/oss-sponsored-by-develocity/) with free Develocity licenses. Public repositories are primarily used by open source projects, and we remain committed to supporting them. - Implementation of caching logic to save and restore Gradle User Home content has been removed, replaced by the `gradle-actions-caching` component. - The `@actions/caching` library is still used to cache Gradle distributions that are downloaded and provisioned by `setup-gradle`. This PR updates to the latest version of `@actions/caching`, and removes the patch that is no longer required. - License notices are now displayed in documentation, logs and the generated Job Summary. |
||
|
Daz DeBoer
|
c999154b1f |
Remove configuration-cache support (#884)
Removes support for configuration-cache extraction and restore from the caching workflow and related source code. Configuration-cache support only worked for a limited set of projects (gradle/actions#21), and we plan to reimplement this properly as part of the `gradle-actions-caching` project. The main impact is simplification of the caching logic, focusing only on common Gradle artifacts. The `ConfigurationCacheEntryExtractor` class and related logic were deleted from `sources/src/caching/gradle-home-extry-extractor.ts`. |
||
dependabot[bot]
|
03ee1e1693 |
Bump the github-actions group across 3 directories with 5 updates (#880)
Bumps the github-actions group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/setup-node](https://github.com/actions/setup-node) | `6.2.0` | `6.3.0` | | [tj-actions/changed-files](https://github.com/tj-actions/changed-files) | `47.0.4` | `47.0.5` | | [github/codeql-action](https://github.com/github/codeql-action) | `4.32.4` | `4.32.6` | | [crazy-max/ghaction-import-gpg](https://github.com/crazy-max/ghaction-import-gpg) | `6.3.0` | `7.0.0` | | [actions/download-artifact](https://github.com/actions/download-artifact) | `8.0.0` | `8.0.1` | Bumps the github-actions group with 1 update in the /.github/actions/build-dist directory: [actions/setup-node](https://github.com/actions/setup-node). Bumps the github-actions group with 1 update in the /.github/actions/init-integ-test directory: [actions/download-artifact](https://github.com/actions/download-artifact). Updates `actions/setup-node` from 6.2.0 to 6.3.0 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits]( |
||
|
Daz DeBoer
|
a3dd0763dc |
Dependency updates (#876)
* Bump Gradle Wrapper from 9.3.1 to 9.4.0. Release notes of Gradle 9.4.0 can be found here: https://docs.gradle.org/9.4.0/release-notes.html Signed-off-by: bot-githubaction <bot-githubaction@gradle.com> * Bump the github-actions group across 3 directories with 3 updates Bumps the github-actions group with 3 updates in the / directory: [gradle/actions](https://github.com/gradle/actions), [actions/upload-artifact](https://github.com/actions/upload-artifact) and [actions/download-artifact](https://github.com/actions/download-artifact). Bumps the github-actions group with 1 update in the /.github/actions/build-dist directory: [actions/upload-artifact](https://github.com/actions/upload-artifact). Bumps the github-actions group with 1 update in the /.github/actions/init-integ-test directory: [actions/download-artifact](https://github.com/actions/download-artifact). Updates `gradle/actions` from 5.0.1 to 5.0.2 - [Release notes](https://github.com/gradle/actions/releases) - [Commits]( |
||
|
dependabot[bot]
|
0723195856 |
Bump github/codeql-action in the github-actions group across 1 directory (#864)
Bumps the github-actions group with 1 update in the / directory: [github/codeql-action](https://github.com/github/codeql-action).
Updates `github/codeql-action` from 4.32.3 to 4.32.4
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](
|
||
|
dependabot[bot]
|
a51c1c2093 |
Bump the github-actions group across 1 directory with 2 updates (#860)
Bumps the github-actions group with 2 updates in the / directory: [tj-actions/changed-files](https://github.com/tj-actions/changed-files) and [github/codeql-action](https://github.com/github/codeql-action). Updates `tj-actions/changed-files` from 47.0.1 to 47.0.4 - [Release notes](https://github.com/tj-actions/changed-files/releases) - [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md) - [Commits]( |
||
|
Daz DeBoer
|
78f7dee633 |
Workflow fixes (#856)
* Fix cache key for cleanup check in workflow * Rename job for custom report submission in workflow |
||
|
Daz DeBoer
|
1f0a4bb10f | Install DV agent for ci-update-dist workflow | ||
|
Daz DeBoer
|
d9d9739be8 | Use recommended DV config for npm | ||
|
dependabot[bot]
|
88d177f2ef |
Bump the github-actions group across 2 directories with 3 updates
Bumps the github-actions group with 2 updates in the / directory: [gradle/actions](https://github.com/gradle/actions) and [github/codeql-action](https://github.com/github/codeql-action). Bumps the github-actions group with 1 update in the /.github/actions/init-integ-test directory: [actions/setup-java](https://github.com/actions/setup-java). Updates `gradle/actions` from 5.0.0 to 5.0.1 - [Release notes](https://github.com/gradle/actions/releases) - [Commits]( |
||
bot-githubaction
|
7d36419f83 |
Bump Gradle Wrapper from 9.3.0 to 9.3.1.
Release notes of Gradle 9.3.1 can be found here: https://docs.gradle.org/9.3.1/release-notes.html Signed-off-by: bot-githubaction <bot-githubaction@gradle.com> |
||
|
bot-githubaction
|
9d5155435d | Bump references to Develocity Gradle plugin from 4.3.1 to 4.3.2 | ||
|
Daz DeBoer
|
f29f5a9d7b | Attempt to fix flaky caching tests (#836) | ||
|
dependabot[bot]
|
00660c8721 |
Bump github/codeql-action from 4.31.10 to 4.32.0 in the github-actions group across 1 directory (#835)
Bumps the github-actions group with 1 update in the / directory: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 4.31.10 to 4.32.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/releases">github/codeql-action's releases</a>.</em></p> <blockquote> <h2>v4.32.0</h2> <ul> <li>Update default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.0">2.24.0</a>. <a href="https://redirect.github.com/github/codeql-action/pull/3425">#3425</a></li> </ul> <h2>v4.31.11</h2> <ul> <li>When running a Default Setup workflow with <a href="https://docs.github.com/en/actions/how-tos/monitor-workflows/enable-debug-logging">Actions debugging enabled</a>, the CodeQL Action will now use more unique names when uploading logs from the Dependabot authentication proxy as workflow artifacts. This ensures that the artifact names do not clash between multiple jobs in a build matrix. <a href="https://redirect.github.com/github/codeql-action/pull/3409">#3409</a></li> <li>Improved error handling throughout the CodeQL Action. <a href="https://redirect.github.com/github/codeql-action/pull/3415">#3415</a></li> <li>Added experimental support for automatically excluding <a href="https://docs.github.com/en/repositories/working-with-files/managing-files/customizing-how-changed-files-appear-on-github">generated files</a> from the analysis. This feature is not currently enabled for any analysis. In the future, it may be enabled by default for some GitHub-managed analyses. <a href="https://redirect.github.com/github/codeql-action/pull/3318">#3318</a></li> <li>The changelog extracts that are included with releases of the CodeQL Action are now shorter to avoid duplicated information from appearing in Dependabot PRs. <a href="https://redirect.github.com/github/codeql-action/pull/3403">#3403</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <h2>[UNRELEASED]</h2> <p>No user facing changes.</p> <h2>4.32.0 - 26 Jan 2026</h2> <ul> <li>Update default CodeQL bundle version to <a href="https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.0">2.24.0</a>. <a href="https://redirect.github.com/github/codeql-action/pull/3425">#3425</a></li> </ul> <h2>4.31.11 - 23 Jan 2026</h2> <ul> <li>When running a Default Setup workflow with <a href="https://docs.github.com/en/actions/how-tos/monitor-workflows/enable-debug-logging">Actions debugging enabled</a>, the CodeQL Action will now use more unique names when uploading logs from the Dependabot authentication proxy as workflow artifacts. This ensures that the artifact names do not clash between multiple jobs in a build matrix. <a href="https://redirect.github.com/github/codeql-action/pull/3409">#3409</a></li> <li>Improved error handling throughout the CodeQL Action. <a href="https://redirect.github.com/github/codeql-action/pull/3415">#3415</a></li> <li>Added experimental support for automatically excluding <a href="https://docs.github.com/en/repositories/working-with-files/managing-files/customizing-how-changed-files-appear-on-github">generated files</a> from the analysis. This feature is not currently enabled for any analysis. In the future, it may be enabled by default for some GitHub-managed analyses. <a href="https://redirect.github.com/github/codeql-action/pull/3318">#3318</a></li> <li>The changelog extracts that are included with releases of the CodeQL Action are now shorter to avoid duplicated information from appearing in Dependabot PRs. <a href="https://redirect.github.com/github/codeql-action/pull/3403">#3403</a></li> </ul> <h2>4.31.10 - 12 Jan 2026</h2> <ul> <li>Update default CodeQL bundle version to 2.23.9. <a href="https://redirect.github.com/github/codeql-action/pull/3393">#3393</a></li> </ul> <h2>4.31.9 - 16 Dec 2025</h2> <p>No user facing changes.</p> <h2>4.31.8 - 11 Dec 2025</h2> <ul> <li>Update default CodeQL bundle version to 2.23.8. <a href="https://redirect.github.com/github/codeql-action/pull/3354">#3354</a></li> </ul> <h2>4.31.7 - 05 Dec 2025</h2> <ul> <li>Update default CodeQL bundle version to 2.23.7. <a href="https://redirect.github.com/github/codeql-action/pull/3343">#3343</a></li> </ul> <h2>4.31.6 - 01 Dec 2025</h2> <p>No user facing changes.</p> <h2>4.31.5 - 24 Nov 2025</h2> <ul> <li>Update default CodeQL bundle version to 2.23.6. <a href="https://redirect.github.com/github/codeql-action/pull/3321">#3321</a></li> </ul> <h2>4.31.4 - 18 Nov 2025</h2> <p>No user facing changes.</p> <h2>4.31.3 - 13 Nov 2025</h2> <ul> <li>CodeQL Action v3 will be deprecated in December 2026. The Action now logs a warning for customers who are running v3 but could be running v4. For more information, see <a href="https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/">Upcoming deprecation of CodeQL Action v3</a>.</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
baabf402fa |
Bump the github-actions group across 2 directories with 5 updates
Bumps the github-actions group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `6.0.1` | `6.0.2` | | [actions/setup-node](https://github.com/actions/setup-node) | `6.1.0` | `6.2.0` | | [github/codeql-action](https://github.com/github/codeql-action) | `4.31.9` | `4.31.10` | | [actions/setup-java](https://github.com/actions/setup-java) | `5.1.0` | `5.2.0` | | [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) | `8.0.0` | `8.1.0` | Bumps the github-actions group with 1 update in the /.github/actions/build-dist directory: [actions/setup-node](https://github.com/actions/setup-node). Updates `actions/checkout` from 6.0.1 to 6.0.2 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits]( |
||
|
bot-githubaction
|
b2bdcb9213 |
Bump Gradle Wrapper from 9.2.1 to 9.3.0.
Release notes of Gradle 9.3.0 can be found here: https://docs.gradle.org/9.3.0/release-notes.html Signed-off-by: bot-githubaction <bot-githubaction@gradle.com> |
||
|
bot-githubaction
|
4211840687 | Bump references to Develocity Gradle plugin from 4.3 to 4.3.1 | ||
|
dependabot[bot]
|
342bf5a6b8 |
Bump stefanzweifel/git-auto-commit-action
Bumps the github-actions group with 1 update in the / directory: [stefanzweifel/git-auto-commit-action](https://github.com/stefanzweifel/git-auto-commit-action).
Updates `stefanzweifel/git-auto-commit-action` from 7.0.0 to 7.1.0
- [Release notes](https://github.com/stefanzweifel/git-auto-commit-action/releases)
- [Changelog](https://github.com/stefanzweifel/git-auto-commit-action/blob/master/CHANGELOG.md)
- [Commits](
|
||
|
dependabot[bot]
|
030fdb2d3d |
Bump the npm-dependencies group in /sources with 3 updates (#804)
Bumps the npm-dependencies group in /sources with 3 updates: [@actions/cache](https://github.com/actions/toolkit/tree/HEAD/packages/cache), [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) and [dedent](https://github.com/dmnd/dedent). Updates `@actions/cache` from 4.0.5 to 4.1.0 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/actions/toolkit/blob/main/packages/cache/RELEASES.md"><code>@actions/cache</code>'s changelog</a>.</em></p> <blockquote> <h3>4.1.0</h3> <ul> <li>Remove client side 10GiB cache size limit check & update twirp client <a href="https://redirect.github.com/actions/toolkit/pull/2118">#2118</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/actions/toolkit/commits/HEAD/packages/cache">compare view</a></li> </ul> </details> <br /> Updates `@types/node` from 25.0.2 to 25.0.3 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node">compare view</a></li> </ul> </details> <br /> Updates `dedent` from 1.7.0 to 1.7.1 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/dmnd/dedent/commits">compare view</a></li> </ul> </details> <br /> <details> <summary>Most Recent Ignore Conditions Applied to This Pull Request</summary> | Dependency Name | Ignore Conditions | | --- | --- | | @types/node | [>= 22.a, < 23] | </details> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jerome Prinet <jprinet@gradle.com> |
||
|
dependabot[bot]
|
077b923404 |
Bump github/codeql-action from 4.31.8 to 4.31.9 in the github-actions group across 1 directory (#805)
Bumps the github-actions group with 1 update in the / directory: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 4.31.8 to 4.31.9 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/releases">github/codeql-action's releases</a>.</em></p> <blockquote> <h2>v4.31.9</h2> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <h2>4.31.9 - 16 Dec 2025</h2> <p>No user facing changes.</p> <p>See the full <a href="https://github.com/github/codeql-action/blob/v4.31.9/CHANGELOG.md">CHANGELOG.md</a> for more information.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <h2>[UNRELEASED]</h2> <p>No user facing changes.</p> <h2>4.31.9 - 16 Dec 2025</h2> <p>No user facing changes.</p> <h2>4.31.8 - 11 Dec 2025</h2> <ul> <li>Update default CodeQL bundle version to 2.23.8. <a href="https://redirect.github.com/github/codeql-action/pull/3354">#3354</a></li> </ul> <h2>4.31.7 - 05 Dec 2025</h2> <ul> <li>Update default CodeQL bundle version to 2.23.7. <a href="https://redirect.github.com/github/codeql-action/pull/3343">#3343</a></li> </ul> <h2>4.31.6 - 01 Dec 2025</h2> <p>No user facing changes.</p> <h2>4.31.5 - 24 Nov 2025</h2> <ul> <li>Update default CodeQL bundle version to 2.23.6. <a href="https://redirect.github.com/github/codeql-action/pull/3321">#3321</a></li> </ul> <h2>4.31.4 - 18 Nov 2025</h2> <p>No user facing changes.</p> <h2>4.31.3 - 13 Nov 2025</h2> <ul> <li>CodeQL Action v3 will be deprecated in December 2026. The Action now logs a warning for customers who are running v3 but could be running v4. For more information, see <a href="https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/">Upcoming deprecation of CodeQL Action v3</a>.</li> <li>Update default CodeQL bundle version to 2.23.5. <a href="https://redirect.github.com/github/codeql-action/pull/3288">#3288</a></li> </ul> <h2>4.31.2 - 30 Oct 2025</h2> <p>No user facing changes.</p> <h2>4.31.1 - 30 Oct 2025</h2> <ul> <li>The <code>add-snippets</code> input has been removed from the <code>analyze</code> action. This input has been deprecated since CodeQL Action 3.26.4 in August 2024 when this removal was announced.</li> </ul> <h2>4.31.0 - 24 Oct 2025</h2> <ul> <li>Bump minimum CodeQL bundle version to 2.17.6. <a href="https://redirect.github.com/github/codeql-action/pull/3223">#3223</a></li> <li>When SARIF files are uploaded by the <code>analyze</code> or <code>upload-sarif</code> actions, the CodeQL Action automatically performs post-processing steps to prepare the data for the upload. Previously, these post-processing steps were only performed before an upload took place. We are now changing this so that the post-processing steps will always be performed, even when the SARIF files are not uploaded. This does not change anything for the <code>upload-sarif</code> action. For <code>analyze</code>, this may affect Advanced Setup for CodeQL users who specify a value other than <code>always</code> for the <code>upload</code> input. <a href="https://redirect.github.com/github/codeql-action/pull/3222">#3222</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
e3f815a7c1 |
Bump the npm-dependencies group across 1 directory with 8 updates (#800)
Bumps the npm-dependencies group with 8 updates in the /sources directory: | Package | From | To | | --- | --- | --- | | [@actions/artifact](https://github.com/actions/toolkit/tree/HEAD/packages/artifact) | `4.0.0` | `5.0.1` | | [@actions/cache](https://github.com/actions/toolkit/tree/HEAD/packages/cache) | `4.0.5` | `5.0.1` | | [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core) | `1.11.1` | `2.0.1` | | [@actions/exec](https://github.com/actions/toolkit/tree/HEAD/packages/exec) | `1.1.1` | `2.0.0` | | @gradle-tech/develocity-agent | `2.0.2` | `3.0.0` | | [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `24.10.1` | `25.0.2` | | [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.48.0` | `8.50.0` | | [prettier](https://github.com/prettier/prettier) | `3.7.3` | `3.7.4` | Updates `@actions/artifact` from 4.0.0 to 5.0.1 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/actions/toolkit/blob/main/packages/artifact/RELEASES.md"><code>@actions/artifact</code>'s changelog</a>.</em></p> <blockquote> <h3>5.0.1</h3> <ul> <li>Fix Node.js 24 punycode deprecation warning by updating <code>@azure/storage-blob</code> from <code>^12.15.0</code> to <code>^12.29.1</code> <a href="https://redirect.github.com/actions/toolkit/pull/2211">#2211</a></li> <li>Removed direct <code>@azure/core-http</code> dependency (now uses <code>@azure/core-rest-pipeline</code> via storage-blob)</li> </ul> <h3>5.0.0</h3> <ul> <li>Dependency updates for Node.js 24 runtime support</li> <li>Update <code>@actions/core</code> to v2</li> <li>Update <code>@actions/http-client</code> to v3</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/actions/toolkit/commits/HEAD/packages/artifact">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by [GitHub Actions](<a href="https://www.npmjs.com/~GitHub">https://www.npmjs.com/~GitHub</a> Actions), a new releaser for <code>@actions/artifact</code> since your current version.</p> </details> <br /> Updates `@actions/cache` from 4.0.5 to 5.0.1 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/actions/toolkit/blob/main/packages/cache/RELEASES.md"><code>@actions/cache</code>'s changelog</a>.</em></p> <blockquote> <h3>5.0.1</h3> <ul> <li>Fix Node.js 24 punycode deprecation warning by updating <code>@azure/storage-blob</code> from <code>^12.13.0</code> to <code>^12.29.1</code> <a href="https://redirect.github.com/actions/toolkit/pull/2213">#2213</a></li> <li>Newer storage-blob uses <code>@azure/core-rest-pipeline</code> instead of deprecated <code>@azure/core-http</code>, which eliminates the transitive dependency on <code>node-fetch@2</code> → <code>whatwg-url@5</code> → <code>tr46@0.0.3</code> that used the deprecated punycode module</li> </ul> <h3>5.0.0</h3> <ul> <li>Remove <code>@azure/ms-rest-js</code> dependency <a href="https://redirect.github.com/actions/toolkit/pull/2197">#2197</a> <ul> <li>The <code>TransferProgressEvent</code> type is now imported from <code>@azure/core-rest-pipeline</code> instead of <code>@azure/ms-rest-js</code></li> </ul> </li> <li>Bump <code>@actions/core</code> from <code>^1.11.1</code> to <code>^2.0.0</code> <a href="https://redirect.github.com/actions/toolkit/pull/2198">#2198</a></li> <li>Bump <code>@actions/exec</code> from <code>^1.0.1</code> to <code>^2.0.0</code> <a href="https://redirect.github.com/actions/toolkit/pull/2198">#2198</a></li> <li>Bump <code>@actions/glob</code> from <code>^0.1.0</code> to <code>^0.5.0</code> <a href="https://redirect.github.com/actions/toolkit/pull/2198">#2198</a></li> <li>Bump <code>@actions/http-client</code> from <code>^2.1.1</code> to <code>^3.0.0</code> <a href="https://redirect.github.com/actions/toolkit/pull/2198">#2198</a></li> <li>Bump <code>@actions/io</code> from <code>^1.0.1</code> to <code>^2.0.0</code> <a href="https://redirect.github.com/actions/toolkit/pull/2198">#2198</a></li> <li>Add support for Node.js 24 <a href="https://redirect.github.com/actions/toolkit/pull/2110">#2110</a></li> <li>Add <code>node-fetch</code> override to resolve audit vulnerabilities <a href="https://redirect.github.com/actions/toolkit/pull/2110">#2110</a></li> </ul> <h3>4.1.0</h3> <ul> <li>Remove client side 10GiB cache size limit check & update twirp client <a href="https://redirect.github.com/actions/toolkit/pull/2118">#2118</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/actions/toolkit/commits/HEAD/packages/cache">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by [GitHub Actions](<a href="https://www.npmjs.com/~GitHub">https://www.npmjs.com/~GitHub</a> Actions), a new releaser for <code>@actions/cache</code> since your current version.</p> </details> <br /> Updates `@actions/core` from 1.11.1 to 2.0.1 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/actions/toolkit/blob/main/packages/core/RELEASES.md"><code>@actions/core</code>'s changelog</a>.</em></p> <blockquote> <h2>2.0.1</h2> <ul> <li>Bump <code>@actions/exec</code> from 1.1.1 to 2.0.0 <a href="https://redirect.github.com/actions/toolkit/pull/2199">#2199</a></li> </ul> <h2>2.0.0</h2> <ul> <li>Add support for Node 24 <a href="https://redirect.github.com/actions/toolkit/pull/2110">#2110</a></li> <li>Bump <code>@actions/http-client</code> from 2.0.1 to 3.0.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/actions/toolkit/commits/@actions/artifact@2.0.1/packages/core">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by [GitHub Actions](<a href="https://www.npmjs.com/~GitHub">https://www.npmjs.com/~GitHub</a> Actions), a new releaser for <code>@actions/core</code> since your current version.</p> </details> <br /> Updates `@actions/exec` from 1.1.1 to 2.0.0 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/actions/toolkit/blob/main/packages/exec/RELEASES.md"><code>@actions/exec</code>'s changelog</a>.</em></p> <blockquote> <h3>2.0.0</h3> <ul> <li>Add support for Node 24 <a href="https://redirect.github.com/actions/toolkit/pull/2110">#2110</a></li> <li>Bump <code>@actions/io</code> dependency from ^1.0.1 to ^2.0.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/actions/toolkit/commits/HEAD/packages/exec">compare view</a></li> </ul> </details> <br /> Updates `@gradle-tech/develocity-agent` from 2.0.2 to 3.0.0 Updates `@types/node` from 24.10.1 to 25.0.2 <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node">compare view</a></li> </ul> </details> <br /> Updates `@typescript-eslint/eslint-plugin` from 8.48.0 to 8.50.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/releases"><code>@typescript-eslint/eslint-plugin</code>'s releases</a>.</em></p> <blockquote> <h2>v8.50.0</h2> <h2>8.50.0 (2025-12-15)</h2> <h3>🚀 Features</h3> <ul> <li><strong>eslint-plugin:</strong> [no-useless-default-assignment] add rule (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11720">#11720</a>)</li> </ul> <h3>❤️ Thank You</h3> <ul> <li>Josh Goldberg ✨</li> <li>Ulrich Stark</li> </ul> <p>You can read about our <a href="https://typescript-eslint.io/users/versioning">versioning strategy</a> and <a href="https://typescript-eslint.io/users/releases">releases</a> on our website.</p> <h2>v8.49.0</h2> <h2>8.49.0 (2025-12-08)</h2> <h3>🚀 Features</h3> <ul> <li><strong>eslint-plugin:</strong> use <code>Intl.Segmenter</code> instead of <code>graphemer</code> (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11804">#11804</a>)</li> </ul> <h3>🩹 Fixes</h3> <ul> <li><strong>deps:</strong> update dependency prettier to v3.7.2 (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11820">#11820</a>)</li> </ul> <h3>❤️ Thank You</h3> <ul> <li>Justin McBride</li> <li>Kirk Waiblinger <a href="https://github.com/kirkwaiblinger"><code>@kirkwaiblinger</code></a></li> </ul> <p>You can read about our <a href="https://typescript-eslint.io/users/versioning">versioning strategy</a> and <a href="https://typescript-eslint.io/users/releases">releases</a> on our website.</p> <h2>v8.48.1</h2> <h2>8.48.1 (2025-12-02)</h2> <h3>⏪ Reverts</h3> <ul> <li><strong>eslint-plugin:</strong> revert "[no-redundant-type-constituents] use assignability checking for redundancy checks (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/10744">#10744</a>)" (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11812">#11812</a>)</li> </ul> <h3>🩹 Fixes</h3> <ul> <li><strong>eslint-plugin:</strong> [consistent-type-exports] check value flag before resolving alias (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11769">#11769</a>)</li> <li><strong>eslint-plugin:</strong> honor ignored base types on generic classes (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11767">#11767</a>)</li> <li><strong>eslint-plugin:</strong> [restrict-template-expressions] check base types in allow list (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11764">#11764</a>, <a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/11759">#11759</a>)</li> </ul> <h3>❤️ Thank You</h3> <ul> <li>Josh Goldberg</li> <li>OleksandraKordonets</li> <li>SangheeSon <a href="https://github.com/Higangssh"><code>@Higangssh</code></a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md"><code>@typescript-eslint/eslint-plugin</code>'s changelog</a>.</em></p> <blockquote> <h2>8.50.0 (2025-12-15)</h2> <h3>🚀 Features</h3> <ul> <li><strong>eslint-plugin:</strong> [no-useless-default-assignment] add rule (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11720">#11720</a>)</li> </ul> <h3>❤️ Thank You</h3> <ul> <li>Josh Goldberg ✨</li> <li>Ulrich Stark</li> </ul> <p>You can read about our <a href="https://typescript-eslint.io/users/versioning">versioning strategy</a> and <a href="https://typescript-eslint.io/users/releases">releases</a> on our website.</p> <h2>8.49.0 (2025-12-08)</h2> <h3>🚀 Features</h3> <ul> <li><strong>eslint-plugin:</strong> use <code>Intl.Segmenter</code> instead of <code>graphemer</code> (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11804">#11804</a>)</li> </ul> <h3>🩹 Fixes</h3> <ul> <li><strong>deps:</strong> update dependency prettier to v3.7.2 (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11820">#11820</a>)</li> </ul> <h3>❤️ Thank You</h3> <ul> <li>Justin McBride</li> <li>Kirk Waiblinger <a href="https://github.com/kirkwaiblinger"><code>@kirkwaiblinger</code></a></li> </ul> <p>You can read about our <a href="https://typescript-eslint.io/users/versioning">versioning strategy</a> and <a href="https://typescript-eslint.io/users/releases">releases</a> on our website.</p> <h2>8.48.1 (2025-12-02)</h2> <h3>🩹 Fixes</h3> <ul> <li><strong>eslint-plugin:</strong> [restrict-template-expressions] check base types in allow list (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11764">#11764</a>, <a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/11759">#11759</a>)</li> <li><strong>eslint-plugin:</strong> honor ignored base types on generic classes (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11767">#11767</a>)</li> <li><strong>eslint-plugin:</strong> [consistent-type-exports] check value flag before resolving alias (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/pull/11769">#11769</a>)</li> </ul> <h3>❤️ Thank You</h3> <ul> <li>Josh Goldberg</li> <li>OleksandraKordonets</li> <li>SangheeSon <a href="https://github.com/Higangssh"><code>@Higangssh</code></a></li> <li>tao</li> </ul> <p>You can read about our <a href="https://typescript-eslint.io/users/versioning">versioning strategy</a> and <a href="https://typescript-eslint.io/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
b6208dca2e |
Bump the github-actions group across 3 directories with 5 updates (#802)
Bumps the github-actions group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [tj-actions/changed-files](https://github.com/tj-actions/changed-files) | `47.0.0` | `47.0.1` | | [github/codeql-action](https://github.com/github/codeql-action) | `4.31.7` | `4.31.8` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `5.0.0` | `6.0.0` | | [actions/download-artifact](https://github.com/actions/download-artifact) | `6.0.0` | `7.0.0` | | [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) | `7.0.11` | `8.0.0` | Bumps the github-actions group with 1 update in the /.github/actions/build-dist directory: [actions/upload-artifact](https://github.com/actions/upload-artifact). Bumps the github-actions group with 1 update in the /.github/actions/init-integ-test directory: [actions/download-artifact](https://github.com/actions/download-artifact). Updates `tj-actions/changed-files` from 47.0.0 to 47.0.1 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/tj-actions/changed-files/releases">tj-actions/changed-files's releases</a>.</em></p> <blockquote> <h2>v47.0.1</h2> <h2>What's Changed</h2> <ul> <li>Upgraded to v47 by <a href="https://github.com/github-actions"><code>@github-actions</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2663">tj-actions/changed-files#2663</a></li> <li>chore(deps-dev): bump <code>@types/node</code> from 24.3.1 to 24.4.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2664">tj-actions/changed-files#2664</a></li> <li>chore(deps-dev): bump ts-jest from 29.4.1 to 29.4.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2671">tj-actions/changed-files#2671</a></li> <li>chore(deps-dev): bump <code>@vercel/ncc</code> from 0.38.3 to 0.38.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2670">tj-actions/changed-files#2670</a></li> <li>chore(deps-dev): bump <code>@types/uuid</code> from 10.0.0 to 11.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2668">tj-actions/changed-files#2668</a></li> <li>chore(deps-dev): bump <code>@types/node</code> from 24.4.0 to 24.5.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2669">tj-actions/changed-files#2669</a></li> <li>chore(deps): bump github/codeql-action from 3.30.3 to 3.30.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2675">tj-actions/changed-files#2675</a></li> <li>chore(deps-dev): bump ts-jest from 29.4.3 to 29.4.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2672">tj-actions/changed-files#2672</a></li> <li>chore(deps): bump github/codeql-action from 3.30.4 to 3.30.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2676">tj-actions/changed-files#2676</a></li> <li>chore(deps-dev): bump jest from 30.1.3 to 30.2.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2677">tj-actions/changed-files#2677</a></li> <li>chore(deps-dev): bump <code>@types/node</code> from 24.5.2 to 24.6.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2679">tj-actions/changed-files#2679</a></li> <li>chore(deps-dev): bump <code>@types/node</code> from 24.6.1 to 24.6.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2681">tj-actions/changed-files#2681</a></li> <li>chore(deps): bump github/codeql-action from 3.30.5 to 3.30.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2680">tj-actions/changed-files#2680</a></li> <li>chore(deps-dev): bump <code>@types/node</code> from 24.6.2 to 24.9.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2695">tj-actions/changed-files#2695</a></li> <li>chore(deps): bump github/codeql-action from 3.30.6 to 4.30.9 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2693">tj-actions/changed-files#2693</a></li> <li>chore(deps): bump actions/setup-node from 5.0.0 to 6.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2690">tj-actions/changed-files#2690</a></li> <li>chore(deps): bump github/codeql-action from 4.30.9 to 4.31.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2702">tj-actions/changed-files#2702</a></li> <li>chore(deps-dev): bump <code>@types/node</code> from 24.9.1 to 24.9.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2700">tj-actions/changed-files#2700</a></li> <li>chore(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2698">tj-actions/changed-files#2698</a></li> <li>chore(deps): bump actions/download-artifact from 5.0.0 to 6.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2697">tj-actions/changed-files#2697</a></li> <li>chore(deps-dev): bump <code>@types/micromatch</code> from 4.0.9 to 4.0.10 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2699">tj-actions/changed-files#2699</a></li> <li>chore(deps-dev): bump ts-jest from 29.4.4 to 29.4.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2688">tj-actions/changed-files#2688</a></li> <li>chore(deps-dev): bump <code>@types/node</code> from 24.9.2 to 24.10.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2707">tj-actions/changed-files#2707</a></li> <li>chore(deps): bump <code>@octokit/rest</code> from 22.0.0 to 22.0.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2705">tj-actions/changed-files#2705</a></li> <li>chore(deps-dev): bump eslint-plugin-jest from 29.0.1 to 29.1.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2710">tj-actions/changed-files#2710</a></li> <li>chore(deps-dev): bump <code>@types/node</code> from 24.10.0 to 24.10.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2711">tj-actions/changed-files#2711</a></li> <li>chore(deps): bump github/codeql-action from 4.31.2 to 4.31.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2715">tj-actions/changed-files#2715</a></li> <li>chore(deps): bump actions/checkout from 5.0.0 to 5.0.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2714">tj-actions/changed-files#2714</a></li> <li>chore(deps): bump nrwl/nx-set-shas from 4.3.3 to 4.4.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2712">tj-actions/changed-files#2712</a></li> <li>chore(deps-dev): bump prettier from 3.6.2 to 3.7.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2722">tj-actions/changed-files#2722</a></li> <li>chore(deps): bump github/codeql-action from 4.31.4 to 4.31.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2720">tj-actions/changed-files#2720</a></li> <li>chore(deps-dev): bump eslint-plugin-jest from 29.1.0 to 29.2.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2719">tj-actions/changed-files#2719</a></li> <li>chore(deps-dev): bump <code>@types/lodash</code> from 4.17.20 to 4.17.21 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2718">tj-actions/changed-files#2718</a></li> <li>chore(deps): bump peter-evans/create-pull-request from 7.0.8 to 7.0.9 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2717">tj-actions/changed-files#2717</a></li> <li>Updated README.md by <a href="https://github.com/github-actions"><code>@github-actions</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2723">tj-actions/changed-files#2723</a></li> <li>chore(deps): bump yaml from 2.8.1 to 2.8.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2724">tj-actions/changed-files#2724</a></li> <li>chore(deps-dev): bump <code>@types/node</code> from 24.10.1 to 25.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2738">tj-actions/changed-files#2738</a></li> <li>chore(deps): bump <code>@actions/exec</code> from 1.1.1 to 2.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2737">tj-actions/changed-files#2737</a></li> <li>chore(deps-dev): bump ts-jest from 29.4.5 to 29.4.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2727">tj-actions/changed-files#2727</a></li> <li>chore(deps): bump peter-evans/create-pull-request from 7.0.9 to 8.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2735">tj-actions/changed-files#2735</a></li> <li>chore(deps): bump github/codeql-action from 4.31.5 to 4.31.7 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2732">tj-actions/changed-files#2732</a></li> <li>chore(deps): bump actions/setup-node from 6.0.0 to 6.1.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2730">tj-actions/changed-files#2730</a></li> <li>chore(deps-dev): bump prettier from 3.7.1 to 3.7.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2731">tj-actions/changed-files#2731</a></li> <li>chore(deps): bump <code>@actions/core</code> from 1.11.1 to 2.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2736">tj-actions/changed-files#2736</a></li> <li>chore(deps): bump actions/checkout from 6.0.0 to 6.0.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2729">tj-actions/changed-files#2729</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/tj-actions/changed-files/compare/v47...v47.0.1">https://github.com/tj-actions/changed-files/compare/v47...v47.0.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
bot-githubaction
|
109851ed81 | Bump references to Develocity Gradle plugin from 4.2.2 to 4.3 | ||
|
dependabot[bot]
|
d131a98eed |
Bump the github-actions group across 3 directories with 5 updates
Bumps the github-actions group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `6.0.0` | `6.0.1` | | [actions/setup-node](https://github.com/actions/setup-node) | `6.0.0` | `6.1.0` | | [github/codeql-action](https://github.com/github/codeql-action) | `4.31.5` | `4.31.7` | | [actions/setup-java](https://github.com/actions/setup-java) | `5.0.0` | `5.1.0` | | [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) | `7.0.9` | `7.0.11` | Bumps the github-actions group with 1 update in the /.github/actions/build-dist directory: [actions/setup-node](https://github.com/actions/setup-node). Bumps the github-actions group with 1 update in the /.github/actions/init-integ-test directory: [actions/setup-java](https://github.com/actions/setup-java). Updates `actions/checkout` from 6.0.0 to 6.0.1 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits]( |
||
Iñaki Villar
|
5b73287820 | Merge branch 'main' into dependabot/github_actions/github-actions-a794191095 | ||
|
Iñaki Villar
|
8c91d0f35e | Merge branch 'main' into wrapperbot/gradle-actions-sample-kotlin-dsl/gradle-wrapper-9.2.1 | ||
|
Iñaki Villar
|
5abcfe87ab | Merge branch 'main' into dependabot/github_actions/github-actions-a794191095 | ||
|
Iñaki Villar
|
19611a428c | Merge branch 'main' into wrapperbot/gradle-actions-sample-gradle-plugin/gradle-wrapper-9.2.1 | ||
|
Iñaki Villar
|
2872096403 | Merge branch 'main' into wrapperbot/gradle-actions-sample-kotlin-dsl/gradle-wrapper-9.2.1 | ||
|
Iñaki Villar
|
7602787d0d | Merge branch 'main' into dependabot/github_actions/github-actions-a794191095 | ||
|
Iñaki Villar
|
8bb2014196 | Merge branch 'main' into wrapperbot/gradle-actions-sample-gradle-plugin/gradle-wrapper-9.2.1 | ||
|
Iñaki Villar
|
e6d222aa7b | Merge branch 'main' into wrapperbot/gradle-actions-sample-groovy-dsl/gradle-wrapper-9.2.1 | ||
|
Iñaki Villar
|
7744428231 | Merge branch 'main' into wrapperbot/gradle-actions-sample-kotlin-dsl/gradle-wrapper-9.2.1 | ||
|
dependabot[bot]
|
d2d4dbc936 |
Bump the github-actions group across 1 directory with 3 updates
Bumps the github-actions group with 3 updates in the / directory: [actions/checkout](https://github.com/actions/checkout), [github/codeql-action](https://github.com/github/codeql-action) and [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request). Updates `actions/checkout` from 5.0.0 to 6.0.0 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits]( |
||
|
bot-githubaction
|
3d4f2501d3 |
Bump Gradle Wrapper from 9.2.0 to 9.2.1.
Release notes of Gradle 9.2.1 can be found here: https://docs.gradle.org/9.2.1/release-notes.html Signed-off-by: bot-githubaction <bot-githubaction@gradle.com> |
||
|
bot-githubaction
|
71c9bfb0a9 |
Bump Gradle Wrapper from 9.2.0 to 9.2.1.
Release notes of Gradle 9.2.1 can be found here: https://docs.gradle.org/9.2.1/release-notes.html Signed-off-by: bot-githubaction <bot-githubaction@gradle.com> |
||
|
bot-githubaction
|
e6364d40b4 |
Bump Gradle Wrapper from 9.2.0 to 9.2.1.
Release notes of Gradle 9.2.1 can be found here: https://docs.gradle.org/9.2.1/release-notes.html Signed-off-by: bot-githubaction <bot-githubaction@gradle.com> |
||
|
bot-githubaction
|
c9944535b9 |
Bump Gradle Wrapper from 9.2.0 to 9.2.1.
Release notes of Gradle 9.2.1 can be found here: https://docs.gradle.org/9.2.1/release-notes.html Signed-off-by: bot-githubaction <bot-githubaction@gradle.com> |
||
|
dependabot[bot]
|
261794afac |
Bump github/codeql-action from 4.31.0 to 4.31.2 in the github-actions group across 1 directory (#777)
Bumps the github-actions group with 1 update in the / directory: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 4.31.0 to 4.31.2 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/releases">github/codeql-action's releases</a>.</em></p> <blockquote> <h2>v4.31.2</h2> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <h2>4.31.2 - 30 Oct 2025</h2> <p>No user facing changes.</p> <p>See the full <a href="https://github.com/github/codeql-action/blob/v4.31.2/CHANGELOG.md">CHANGELOG.md</a> for more information.</p> <h2>v4.31.1</h2> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <h2>4.31.1 - 30 Oct 2025</h2> <ul> <li>The <code>add-snippets</code> input has been removed from the <code>analyze</code> action. This input has been deprecated since CodeQL Action 3.26.4 in August 2024 when this removal was announced.</li> </ul> <p>See the full <a href="https://github.com/github/codeql-action/blob/v4.31.1/CHANGELOG.md">CHANGELOG.md</a> for more information.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <h2>[UNRELEASED]</h2> <p>No user facing changes.</p> <h2>4.31.2 - 30 Oct 2025</h2> <p>No user facing changes.</p> <h2>4.31.1 - 30 Oct 2025</h2> <ul> <li>The <code>add-snippets</code> input has been removed from the <code>analyze</code> action. This input has been deprecated since CodeQL Action 3.26.4 in August 2024 when this removal was announced.</li> </ul> <h2>4.31.0 - 24 Oct 2025</h2> <ul> <li>Bump minimum CodeQL bundle version to 2.17.6. <a href="https://redirect.github.com/github/codeql-action/pull/3223">#3223</a></li> <li>When SARIF files are uploaded by the <code>analyze</code> or <code>upload-sarif</code> actions, the CodeQL Action automatically performs post-processing steps to prepare the data for the upload. Previously, these post-processing steps were only performed before an upload took place. We are now changing this so that the post-processing steps will always be performed, even when the SARIF files are not uploaded. This does not change anything for the <code>upload-sarif</code> action. For <code>analyze</code>, this may affect Advanced Setup for CodeQL users who specify a value other than <code>always</code> for the <code>upload</code> input. <a href="https://redirect.github.com/github/codeql-action/pull/3222">#3222</a></li> </ul> <h2>4.30.9 - 17 Oct 2025</h2> <ul> <li>Update default CodeQL bundle version to 2.23.3. <a href="https://redirect.github.com/github/codeql-action/pull/3205">#3205</a></li> <li>Experimental: A new <code>setup-codeql</code> action has been added which is similar to <code>init</code>, except it only installs the CodeQL CLI and does not initialize a database. Do not use this in production as it is part of an internal experiment and subject to change at any time. <a href="https://redirect.github.com/github/codeql-action/pull/3204">#3204</a></li> </ul> <h2>4.30.8 - 10 Oct 2025</h2> <p>No user facing changes.</p> <h2>4.30.7 - 06 Oct 2025</h2> <ul> <li>[v4+ only] The CodeQL Action now runs on Node.js v24. <a href="https://redirect.github.com/github/codeql-action/pull/3169">#3169</a></li> </ul> <h2>3.30.6 - 02 Oct 2025</h2> <ul> <li>Update default CodeQL bundle version to 2.23.2. <a href="https://redirect.github.com/github/codeql-action/pull/3168">#3168</a></li> </ul> <h2>3.30.5 - 26 Sep 2025</h2> <ul> <li>We fixed a bug that was introduced in <code>3.30.4</code> with <code>upload-sarif</code> which resulted in files without a <code>.sarif</code> extension not getting uploaded. <a href="https://redirect.github.com/github/codeql-action/pull/3160">#3160</a></li> </ul> <h2>3.30.4 - 25 Sep 2025</h2> <ul> <li>We have improved the CodeQL Action's ability to validate that the workflow it is used in does not use different versions of the CodeQL Action for different workflow steps. Mixing different versions of the CodeQL Action in the same workflow is unsupported and can lead to unpredictable results. A warning will now be emitted from the <code>codeql-action/init</code> step if different versions of the CodeQL Action are detected in the workflow file. Additionally, an error will now be thrown by the other CodeQL Action steps if they load a configuration file that was generated by a different version of the <code>codeql-action/init</code> step. <a href="https://redirect.github.com/github/codeql-action/pull/3099">#3099</a> and <a href="https://redirect.github.com/github/codeql-action/pull/3100">#3100</a></li> <li>We added support for reducing the size of dependency caches for Java analyses, which will reduce cache usage and speed up workflows. This will be enabled automatically at a later time. <a href="https://redirect.github.com/github/codeql-action/pull/3107">#3107</a></li> <li>You can now run the latest CodeQL nightly bundle by passing <code>tools: nightly</code> to the <code>init</code> action. In general, the nightly bundle is unstable and we only recommend running it when directed by GitHub staff. <a href="https://redirect.github.com/github/codeql-action/pull/3130">#3130</a></li> <li>Update default CodeQL bundle version to 2.23.1. <a href="https://redirect.github.com/github/codeql-action/pull/3118">#3118</a></li> </ul> <h2>3.30.3 - 10 Sep 2025</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
Clay Johnson
|
5e26c07411 |
Bump Gradle Wrapper from 9.1.0 to 9.2.0 in /.github/workflow-samples/kotlin-dsl (#773)
Bump Gradle Wrapper from 9.1.0 to 9.2.0. Release notes of Gradle 9.2.0 can be found here: https://docs.gradle.org/9.2.0/release-notes.html |
||
|
Clay Johnson
|
1875259ed6 |
Bump Gradle Wrapper from 9.1.0 to 9.2.0 in /.github/workflow-samples/gradle-plugin (#770)
Bump Gradle Wrapper from 9.1.0 to 9.2.0. Release notes of Gradle 9.2.0 can be found here: https://docs.gradle.org/9.2.0/release-notes.html |
||
|
Clay Johnson
|
93ed6917e6 |
Bump Gradle Wrapper from 9.1.0 to 9.2.0 in /.github/workflow-samples/groovy-dsl (#771)
Bump Gradle Wrapper from 9.1.0 to 9.2.0. Release notes of Gradle 9.2.0 can be found here: https://docs.gradle.org/9.2.0/release-notes.html |
||
|
bot-githubaction
|
88dbdec54f |
Bump Gradle Wrapper from 9.1.0 to 9.2.0.
Release notes of Gradle 9.2.0 can be found here: https://docs.gradle.org/9.2.0/release-notes.html Signed-off-by: bot-githubaction <bot-githubaction@gradle.com> |
||
|
bot-githubaction
|
55bebc9dd2 |
Bump Gradle Wrapper from 9.1.0 to 9.2.0.
Release notes of Gradle 9.2.0 can be found here: https://docs.gradle.org/9.2.0/release-notes.html Signed-off-by: bot-githubaction <bot-githubaction@gradle.com> |
||
|
bot-githubaction
|
c46e9f1583 |
Bump Gradle Wrapper from 9.1.0 to 9.2.0.
Release notes of Gradle 9.2.0 can be found here: https://docs.gradle.org/9.2.0/release-notes.html Signed-off-by: bot-githubaction <bot-githubaction@gradle.com> |
||
|
bot-githubaction
|
2897df2489 |
Bump Gradle Wrapper from 9.1.0 to 9.2.0.
Release notes of Gradle 9.2.0 can be found here: https://docs.gradle.org/9.2.0/release-notes.html Signed-off-by: bot-githubaction <bot-githubaction@gradle.com> |