Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): bump the actions group across 1 directory with 2 updates #3114

Merged
merged 1 commit into from
Nov 14, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 12, 2024

Bumps the actions group with 2 updates in the / directory: coursier/setup-action and anchore/sbom-action.

Updates coursier/setup-action from 1.3.6 to 1.3.8

Release notes

Sourced from coursier/setup-action's releases.

v1.3.8

What's Changed

Updates / maintenance

Full Changelog: coursier/setup-action@v1...v1.3.8

v1.3.7

What's Changed

Updates / maintenance

Full Changelog: coursier/setup-action@v1...v1.3.7

Commits
  • c741af3 Update dist (#708)
  • 2a75cb1 Run CI on Mac ARM too (#707)
  • 56a39e8 Run CI against JDK 21 rather than 17 (#706)
  • e52a786 Merge pull request #705 from alexarchambault/coursier-2.1.17
  • 1f0cf93 Update default coursier version to 2.1.17
  • fb8e01e Use Mac ARM launchers from main repo for coursier >= 2.1.16
  • f4e9717 build(deps-dev): bump @​typescript-eslint/eslint-plugin
  • 1583ce1 build(deps-dev): bump @​typescript-eslint/parser from 8.12.2 to 8.13.0
  • 3f834ee build(deps-dev): bump @​types/node from 22.8.6 to 22.9.0
  • 97ee911 chore: Update macos since it's no longer supported
  • Additional commits viewable in compare view

Updates anchore/sbom-action from 0.17.5 to 0.17.7

Release notes

Sourced from anchore/sbom-action's releases.

v0.17.7

Changes in v0.17.7

v0.17.6

Changes in v0.17.6

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 12, 2024

The following labels could not be found: github_actions.

Copy link

codecov bot commented Nov 12, 2024

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 63.78%. Comparing base (bd1d76e) to head (989081f).
Report is 3 commits behind head on master.

Additional details and impacted files
@@            Coverage Diff             @@
##           master    #3114      +/-   ##
==========================================
- Coverage   63.79%   63.78%   -0.01%     
==========================================
  Files         549      549              
  Lines       78819    78819              
==========================================
- Hits        50279    50276       -3     
- Misses      25150    25152       +2     
- Partials     3390     3391       +1     
Flag Coverage Δ
contribs/gnodev 61.16% <ø> (ø)
contribs/gnofaucet 14.82% <ø> (ø)
gno.land 73.70% <ø> (ø)
gnovm 67.93% <ø> (ø)
misc/genstd 79.72% <ø> (ø)
tm2 62.42% <ø> (-0.02%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@dependabot dependabot bot force-pushed the dependabot/github_actions/actions-9d03a2db58 branch from 0bd667e to 3e1a84c Compare November 13, 2024 03:04
@jefft0 jefft0 added the review/triage-pending PRs opened by external contributors that are waiting for the 1st review label Nov 13, 2024
Bumps the actions group with 2 updates in the / directory: [coursier/setup-action](https://github.com/coursier/setup-action) and [anchore/sbom-action](https://github.com/anchore/sbom-action).


Updates `coursier/setup-action` from 1.3.6 to 1.3.8
- [Release notes](https://github.com/coursier/setup-action/releases)
- [Commits](coursier/setup-action@v1.3.6...v1.3.8)

Updates `anchore/sbom-action` from 0.17.5 to 0.17.7
- [Release notes](https://github.com/anchore/sbom-action/releases)
- [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md)
- [Commits](anchore/sbom-action@v0.17.5...v0.17.7)

---
updated-dependencies:
- dependency-name: coursier/setup-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
- dependency-name: anchore/sbom-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/github_actions/actions-9d03a2db58 branch from 3e1a84c to 989081f Compare November 14, 2024 02:12
@jefft0 jefft0 self-requested a review November 14, 2024 09:44
Copy link
Contributor

@jefft0 jefft0 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Minor version change. All CI tests pass (except Fossa which we ignore).

@jefft0 jefft0 removed the review/triage-pending PRs opened by external contributors that are waiting for the 1st review label Nov 14, 2024
@jefft0
Copy link
Contributor

jefft0 commented Nov 14, 2024

Removed the review/triage-pending label because review team member jefft0 approved. Ready for core team review.

@thehowl thehowl merged commit 38736e7 into master Nov 14, 2024
135 of 136 checks passed
@thehowl thehowl deleted the dependabot/github_actions/actions-9d03a2db58 branch November 14, 2024 09:47
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
Development

Successfully merging this pull request may close these issues.

2 participants