Skip to content

Commit

Permalink
[Dependencies]: Bump actions/dependency-review-action from 3.1.0 to 3…
Browse files Browse the repository at this point in the history 
….1.1 (#373)

Bumps
[actions/dependency-review-action](https://github.com/actions/dependency-review-action)
from 3.1.0 to 3.1.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/dependency-review-action/releases">actions/dependency-review-action's
releases</a>.</em></p>
<blockquote>
<h2>3.1.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Update a bunch of dependencies, including major version upgrades for
<code>octokit</code>, <code>@actions/github</code> and
<code>typescript</code>.</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/dependency-review-action/compare/v3.1.0...v3.1.1">https://github.com/actions/dependency-review-action/compare/v3.1.0...v3.1.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/actions/dependency-review-action/commit/9f45b2463b475767b61721ccfef113fef513e6aa"><code>9f45b24</code></a>
bumping to 3.1.1</li>
<li><a
href="https://github.com/actions/dependency-review-action/commit/559513a56ccac0ff42260c394c5cd0c21c9fc2ba"><code>559513a</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/dependency-review-action/issues/606">#606</a>
from actions/dependabot/npm_and_yarn/actions/github-6...</li>
<li><a
href="https://github.com/actions/dependency-review-action/commit/8edc431d7d89ad7f57433c25ab822f29e28c23dd"><code>8edc431</code></a>
Merge branch 'main' into
dependabot/npm_and_yarn/actions/github-6.0.0</li>
<li><a
href="https://github.com/actions/dependency-review-action/commit/3e8322e4bbb2fba995d6fbe261cc336d7da06b28"><code>3e8322e</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/dependency-review-action/issues/605">#605</a>
from actions/dependabot/npm_and_yarn/yaml-2.3.4</li>
<li><a
href="https://github.com/actions/dependency-review-action/commit/5a55885447f6e7fb4d60c759d550e285045e6320"><code>5a55885</code></a>
adding dist</li>
<li><a
href="https://github.com/actions/dependency-review-action/commit/f952b5a2c5e9330c0fe4c40ad32fac1d13c28d11"><code>f952b5a</code></a>
Merge branch 'main' into dependabot/npm_and_yarn/yaml-2.3.4</li>
<li><a
href="https://github.com/actions/dependency-review-action/commit/8678cfac42085b02398c878fbe5c21b3dde4d308"><code>8678cfa</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/dependency-review-action/issues/607">#607</a>
from actions/dependabot/npm_and_yarn/typescript-eslin...</li>
<li><a
href="https://github.com/actions/dependency-review-action/commit/aa8e70d588f57aeffec0c9f52949222debdbc9d5"><code>aa8e70d</code></a>
adding dist</li>
<li><a
href="https://github.com/actions/dependency-review-action/commit/3331d25f9d30e63d73abe5aae0dfd366cc1de9b7"><code>3331d25</code></a>
adding dist</li>
<li><a
href="https://github.com/actions/dependency-review-action/commit/2af83f55fa882545fed4132cb6343d61f8808c4a"><code>2af83f5</code></a>
Bump <code>@​actions/github</code> from 5.1.1 to 6.0.0</li>
<li>Additional commits viewable in <a
href="https://github.com/actions/dependency-review-action/compare/v3.1.0...v3.1.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/dependency-review-action&package-manager=github_actions&previous-version=3.1.0&new-version=3.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>
  • Loading branch information
@credfeto
credfeto authored Nov 7, 2023
2 parents 2378408 + 3bc7389 commit b5f1bf4
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion .github/workflows/pr-lint.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -233,7 +233,7 @@ jobs:
fetch-depth: 0
- name: 'Dependency Review'
if: steps.visibility.outputs.is_public == 'true'
uses: actions/[email protected].0
uses: actions/[email protected].1

no-merge-commits:
# Check that there are no merge commits in the PR
Expand Down

0 comments on commit b5f1bf4

Please sign in to comment.