Sourced from actions/checkout's\r\nreleases.
\r\n\r\n\r\nv4.1.7
\r\nWhat's Changed
\r\n\r\n
\r\n- Bump the minor-npm-dependencies group across 1 directory with 4\r\nupdates by
\r\n@dependabot
in actions/checkout#1739- Bump actions/checkout from 3 to 4 by
\r\n@dependabot
in actions/checkout#1697- Check out other refs/* by commit by
\r\n@orhantoy
in actions/checkout#1774- Pin actions/checkout's own workflows to a known, good, stable\r\nversion. by
\r\n@jww3
in\r\nactions/checkout#1776New Contributors
\r\n\r\n
\r\n- \r\n
@orhantoy
\r\nmade their first contribution in actions/checkout#1774Full Changelog: https://github.com/actions/checkout/compare/v4.1.6...v4.1.7
\r\n
Sourced from actions/checkout's\r\nchangelog.
\r\n\r\n\r\nChangelog
\r\nv4.1.7
\r\n\r\n
\r\n- Bump the minor-npm-dependencies group across 1 directory with 4\r\nupdates by
\r\n@dependabot
in actions/checkout#1739- Bump actions/checkout from 3 to 4 by
\r\n@dependabot
in actions/checkout#1697- Check out other refs/* by commit by
\r\n@orhantoy
in actions/checkout#1774- Pin actions/checkout's own workflows to a known, good, stable\r\nversion. by
\r\n@jww3
in\r\nactions/checkout#1776v4.1.6
\r\n\r\n
\r\n- Check platform to set archive extension appropriately by
\r\n@cory-miller
in\r\nactions/checkout#1732v4.1.5
\r\n\r\n
\r\n- Update NPM dependencies by
\r\n@cory-miller
in\r\nactions/checkout#1703- Bump github/codeql-action from 2 to 3 by
\r\n@dependabot
in actions/checkout#1694- Bump actions/setup-node from 1 to 4 by
\r\n@dependabot
in actions/checkout#1696- Bump actions/upload-artifact from 2 to 4 by
\r\n@dependabot
in actions/checkout#1695- README: Suggest
\r\nuser.email
to be\r\n41898282+github-actions[bot]@users.noreply.github.com
by@cory-miller
in\r\nactions/checkout#1707v4.1.4
\r\n\r\n
\r\n- Disable
\r\nextensions.worktreeConfig
when disabling\r\nsparse-checkout
by@jww3
in actions/checkout#1692- Add dependabot config by
\r\n@cory-miller
in\r\nactions/checkout#1688- Bump the minor-actions-dependencies group with 2 updates by
\r\n@dependabot
in actions/checkout#1693- Bump word-wrap from 1.2.3 to 1.2.5 by
\r\n@dependabot
in actions/checkout#1643v4.1.3
\r\n\r\n
\r\n- Check git version before attempting to disable\r\n
\r\nsparse-checkout
by@jww3
in actions/checkout#1656- Add SSH user parameter by
\r\n@cory-miller
in\r\nactions/checkout#1685- Update
\r\nactions/checkout
version in\r\nupdate-main-version.yml
by@jww3
in actions/checkout#1650v4.1.2
\r\n\r\n
\r\n- Fix: Disable sparse checkout whenever
\r\nsparse-checkout
\r\noption is not present@dscho
in actions/checkout#1598v4.1.1
\r\n\r\n
\r\n- Correct link to GitHub Docs by
\r\n@peterbe
in actions/checkout#1511- Link to release page from what's new section by
\r\n@cory-miller
in\r\nactions/checkout#1514v4.1.0
\r\n\r\nv4.0.0
\r\n\r\nv3.6.0
\r\n\r\n
\r\n- Fix: Mark\r\ntest scripts with Bash'isms to be run via Bash
\r\n- Add\r\noption to fetch tags even if fetch-depth > 0
\r\nv3.5.3
\r\n\r\n\r\n
... (truncated)
\r\n692973e
\r\nPrepare 4.1.7 release (#1775)6ccd57f
\r\nPin actions/checkout's own workflows to a known, good, stable version.\r\n(#1776)b17fe1e
\r\nHandle hidden refs (#1774)b80ff79
\r\nBump actions/checkout from 3 to 4 (#1697)b1ec302
\r\nBump the minor-npm-dependencies group across 1 directory with 4 updates\r\n(#1739)Sourced from gradle/actions's\r\nreleases.
\r\n\r\n\r\nv3.4.1
\r\nThis patch release fixes a bug introduced in v3.4.0, that prevents\r\nbuild scan publication to Develocity.\r\nThe bug results in the removal of the
\r\nDEVELOCITY_ACCESS_KEY
\r\nvariable being removed, so that Gradle cannot authenticate with the\r\nDevelocity server.What's Changed
\r\n\r\n
\r\n- Don't clear access key when access token cannot be obtained by
\r\n@cdsap
in gradle/actions#258- Simplify requesting short-lived Develocity access tokens by
\r\n@bigdaz
in gradle/actions#259Full Changelog: https://github.com/gradle/actions/compare/v3.4.0...v3.4.1
\r\nv3.4.0
\r\nThis release improves the integration with Gradle Develocity®, as\r\nwell as updating a number of key dependencies.
\r\n\r\n
\r\n- The new
\r\ndevelocity-access-key
input parameter allows\r\nthe action to generate a short-lived access token for subsequent\r\ncommunication with Develocity. This reduces the risk of the full\r\n(long-lived) access key being compromised,\r\neither accidentally or by a malicious action.- New input parameters are available to configure Develocity\r\ninjection. Previously Develocity injection could only be\r\nenabled by setting environment variables.
\r\n- Checksums for Gradle 8.8 are now included, so that no network\r\nrequest is required for
\r\nwrapper-validation
with Gradle 8.8\r\nwrappers.What's Changed
\r\n\r\n
\r\n- Add support for short-lived tokens by
\r\n@alextu
in gradle/actions#224- Update known wrapper checksums by
\r\n@github-actions
\r\nin gradle/actions#240- Update to Gradle 8.8 by
\r\n@bigdaz
in gradle/actions#251- Adding Develocity input actions by
\r\n@cdsap
in gradle/actions#244- Fail on invalid boolean for Develocity inputs by
\r\n@bigdaz
in gradle/actions#252New Contributors
\r\n\r\n
\r\n- \r\n
@serieznyi
\r\nmade their first contribution in gradle/actions#216- \r\n
@lokalpage-safe
\r\nmade their first contribution in gradle/actions#205- \r\n
@alextu
made\r\ntheir first contribution in gradle/actions#224- \r\n
@bot-githubaction
\r\nmade their first contribution in gradle/actions#227- \r\n
@antonmos
\r\nmade their first contribution in gradle/actions#234- \r\n
@cdsap
made\r\ntheir first contribution in gradle/actions#244Full Changelog: https://github.com/gradle/actions/compare/v3.3.2...v3.4.0
\r\n
31ae356
\r\n[bot] Update dist directory719985d
\r\nSimplify requesting short-lived Develocity access tokens (#259)b532389
\r\n[bot] Update dist directory5f1c582
\r\nhandle missing access tokend9336da
\r\n[bot] Update dist directory8dbe9a3
\r\nUpdate DV access key regex to be more selective9c34307
\r\n[bot] Update dist directory30c82f0
\r\nFail on invalid boolean for Develocity inputse3bc05f
\r\nRun CodeQL on PRs485ea10
\r\nRun CodeQL on dev/* branchesSourced from step-security/harden-runner's\r\nreleases.
\r\n\r\n\r\nv2.8.1
\r\nWhat's Changed
\r\n\r\n
\r\n- Bug fix: Update isGitHubHosted implementation by
\r\n@varunsh-coder
\r\nin step-security/harden-runner#425\r\nThe previous implementation incorrectly identified large GitHub-hosted\r\nrunners as self-hosted runners. As a result, harden-runner was not\r\nexecuting on these large GitHub-hosted runners.Full Changelog: https://github.com/step-security/harden-runner/compare/v2...v2.8.1
\r\n
17d0e2b
\r\nMerge pull request #425\r\nfrom step-security/rc-9bb112d0
\r\nUpdate isGitHubHosted implementationf4f3f44
\r\nMerge pull request #407\r\nfrom step-security/dependabot/github_actions/actions/...7a946b5
\r\nBump actions/dependency-review-action from 3.1.3 to 4.3.275a01c2
\r\nMerge pull request #417\r\nfrom step-security/dependabot/github_actions/step-sec...53413f1
\r\nBump step-security/harden-runner from 2.7.1 to 2.8.0Sourced from mikepenz/action-junit-report's\r\nreleases.
\r\n\r\n\r\nv4.2.2
\r\n🚀 Features
\r\n\r\n
\r\n- Add classname to check_title_template\r\n
\r\n\r\n
\r\n- PR: #1095
\r\n- Thanks
\r\n@valentin-demange
📦 Dependencies
\r\n\r\n
\r\n- Dependency upgrades\r\n
\r\n\r\n
\r\n- PR: #1101
\r\n
ac30be7
\r\nMerge pull request #1101\r\nfrom mikepenz/feature/dependency_updates_20240530fdfd21a
\r\n- add eslint import15fd1d8
\r\n```0405bc6
\r\nMerge branch 'feature/add-classname-to-check-title-template'a40320b
\r\n- slightly additional handling for class name8c4af8b
\r\nFix main092d949
\r\nFix readmec55f2d4
\r\nAdd classname to check_title_templateSourced from step-security/harden-runner's\r\nreleases.
\r\n\r\n\r\nv2.8.0
\r\nWhat's Changed
\r\nRelease v2.8.0 by
\r\n@h0x0er
and@varunsh-coder
\r\nin step-security/harden-runner#416\r\nThis release includes:\r\n
\r\n- File Monitoring Enhancements: Adds the capability to view the name\r\nand path of every file written during the build process.
\r\n- Process Tracking Enhancements: Adds the capability to view process\r\nnames and arguments of processes run during the build process.
\r\nThese enhancements are based on insights from the XZ Utils incident,\r\naimed at improving observability and detections during the build\r\nprocess.
\r\nFull Changelog: https://github.com/step-security/harden-runner/compare/v2...v2.8.0
\r\n
f086349
\r\nMerge pull request #416\r\nfrom step-security/rc-8b9c325d
\r\nUpdate image808a771
\r\nAdd info about file and process events7171429
\r\nUpdate agent9ff9d14
\r\nMerge pull request #406\r\nfrom step-security/dependabot/github_actions/step-sec...ac5fa01
\r\nBump step-security/harden-runner from 2.7.0 to 2.7.1Sourced from org.seleniumhq.selenium:selenium-java's\r\nreleases.
\r\n\r\n\r\nSelenium 4.21.0
\r\nChangelog
\r\nFor each component's detailed changelog, please check:
\r\n\r\n
\r\n- Ruby
\r\n- Python
\r\n- JavaScript
\r\n- Java
\r\n- DotNet
\r\n- IEDriverServer
\r\nCommits in this release
\r\n\r\n\r\n
\r\n\r\n- \r\n
f034dc5d32
\r\n- [rb] Setting nightly version :: Diego Molina- \r\n
480ce7060f
\r\n- [dotnet] Setting nightly version :: Diego Molina- \r\n
d9c33f4478
\r\n- [js] Setting nightly version :: Diego Molina- \r\n
be5d67c97b
\r\n- [py] Setting nightly version :: Diego Molina- \r\n
0d620d2be4
\r\n- [java] Setting snapshot version :: Diego Molina- \r\n
057323db14
\r\n- [nightly] Fixing typo :: Diego Molina- \r\n
3e3cf89fb6
\r\n- Update mirror info (Thu Apr 25 00:16:21 UTC 2024) :: Selenium CI\r\nBot- \r\n
6ded247bd3
\r\n- [js] Fixing wrongly updated package-lock.json :: Diego Molina- \r\n
8723d04809
\r\n- [dotnet][rb][java][js][py] Automated Browser Version Update (#13841)\r\n:: Selenium CI Bot- \r\n
dbd9ff3eed
\r\n- Update mirror info (Fri Apr 26 00:15:49 UTC 2024) :: Selenium CI\r\nBot- \r\n
cf5393b050
\r\n- [rb] Return and deprecate DriverFinder.path :: Alex Rodionov- \r\n
7ca4f5e4d8
\r\n- [ci] Don't run on macOS ARM :: Alex Rodionov- \r\n
3296fdf449
\r\n- [rb] Release 4.20.1 :: Alex Rodionov- \r\n
f2b68137f6
\r\n- [rb] Update version for nightly :: Alex Rodionov- \r\n
6ece8d7aee
\r\n- Ensure rules_proto comes from the module file (#13879)\r\n:: Simon Stewart- \r\n
7f25fd1e61
\r\n- [dotnet][rb][java][js][py] Automated Browser Version Update (#13878)\r\n:: Selenium CI Bot- \r\n
ffb03bde4d
\r\n- [bidi][java] Add methods to allow all parameters for script\r\ncallFunction and evaluate method (#13873)\r\n:: Puja Jagani- \r\n
9c8133a8bf
\r\n- [dotnet][rb][java][js][py] Automated Browser Version Update (#13886)\r\n:: Selenium CI Bot- \r\n
2f7ac69252
\r\n- [java] Setting a connection timeout for the WS connection :: Diego\r\nMolina- \r\n
9de36e29dd
\r\n- Bumprules_jvm_external
to 6.1 (#13890)\r\n:: Simon Stewart- \r\n
d5ff4315f5
\r\n- Bump to Bazel 7.1.1 (#13891)\r\n:: Simon Stewart- \r\n
ac93fab589
\r\n- Add MODULE.bazel.lock to the gitignore file until it is stable between\r\nplatforms :: Simon Stewart- \r\n
1bcc79f8a8
\r\n- [bazel + js] Allowbazel build //javascript/...
to work\r\n(#13893)\r\n:: Simon Stewart- \r\n
ef96a7b184
\r\n- [bazel] Update rules_jvm_external to 6.1 :: Alex Rodionov- \r\n
8688ad2d0d
\r\n- [rb] Fix Chromium tests on Windows :: Alex Rodionov- \r\n
b456e6089d
\r\n- [rb] Use Bazel JDK in remote tests :: Alex Rodionov- \r\n
020521aa5c
\r\n- [rb] Safari window minimize tests are passing :: Alex Rodionov- \r\n
7fc9a12d28
\r\n- [rb] Allow focusing tests w/o extra args :: Alex Rodionov- \r\n
f54ba8ba00
\r\n- [rb] Fix syntax error in BUILD file :: Alex Rodionov- \r\n
8d94b342a3
\r\n- [rb] Use no-sandbox on non-Windows :: Alex Rodionov- \r\n
1e0cde199c
\r\n- [dotnet][rb][java][js][py] Automated Browser Version Update (#13895)\r\n:: Selenium CI Bot- \r\n
5d4cfc1e1e
\r\n- [java] Improving error message for BiDi connection :: Diego\r\nMolina- \r\n
86fd063330
\r\n- [py] removed unused logger object from\r\nfirefox/webdriver.py
(#13892)\r\n:: Sandeep Suryaprasad- \r\n
a0a3914845
\r\n- [java] Improving logging to understand why "Value must be\r\nset" is raised. :: Diego Molina- \r\n
c114dbd530
\r\n- [js] Ensure 'selectVisibleByText' method is same as other languages\r\n(#13899)\r\n:: Puja Jagani
... (truncated)
\r\n79ed462
\r\nRelease 4.21.0 (#13948)518496c
\r\n[rb] Support using custom element classes02381bf
\r\n[rb] Support registering custom finders for SearchContext991a653
\r\n[rb] Support overriding default locator conversion4cf9aeb
\r\n[rb] Support registering extra bridge commands3ec3cef
\r\n[rb] Support overriding User-Agent in HTTP client4f72e3f
\r\n[rb] Support registering extra headers in HTTP client6978ea8
\r\n[dotnet] Allow to run tests w/o pinned browsers03f626f
\r\n[js] Expose individual test targets to Bazelfd56c3a
\r\nUsing macos-13 for now until we adapt to macos-latestSourced from actions/checkout's\r\nreleases.
\r\n\r\n\r\nv4.1.6
\r\nWhat's Changed
\r\n\r\n
\r\n- Check platform to set archive extension appropriately by
\r\n@cory-miller
in\r\nactions/checkout#1732- Update for 4.1.6 release by
\r\n@cory-miller
in\r\nactions/checkout#1733Full Changelog: https://github.com/actions/checkout/compare/v4.1.5...v4.1.6
\r\n
Sourced from actions/checkout's\r\nchangelog.
\r\n\r\n\r\nChangelog
\r\nv4.1.6
\r\n\r\n
\r\n- Check platform to set archive extension appropriately by
\r\n@cory-miller
in\r\nactions/checkout#1732v4.1.5
\r\n\r\n
\r\n- Update NPM dependencies by
\r\n@cory-miller
in\r\nactions/checkout#1703- Bump github/codeql-action from 2 to 3 by
\r\n@dependabot
in actions/checkout#1694- Bump actions/setup-node from 1 to 4 by
\r\n@dependabot
in actions/checkout#1696- Bump actions/upload-artifact from 2 to 4 by
\r\n@dependabot
in actions/checkout#1695- README: Suggest
\r\nuser.email
to be\r\n41898282+github-actions[bot]@users.noreply.github.com
by@cory-miller
in\r\nactions/checkout#1707v4.1.4
\r\n\r\n
\r\n- Disable
\r\nextensions.worktreeConfig
when disabling\r\nsparse-checkout
by@jww3
in actions/checkout#1692- Add dependabot config by
\r\n@cory-miller
in\r\nactions/checkout#1688- Bump the minor-actions-dependencies group with 2 updates by
\r\n@dependabot
in actions/checkout#1693- Bump word-wrap from 1.2.3 to 1.2.5 by
\r\n@dependabot
in actions/checkout#1643v4.1.3
\r\n\r\n
\r\n- Check git version before attempting to disable\r\n
\r\nsparse-checkout
by@jww3
in actions/checkout#1656- Add SSH user parameter by
\r\n@cory-miller
in\r\nactions/checkout#1685- Update
\r\nactions/checkout
version in\r\nupdate-main-version.yml
by@jww3
in actions/checkout#1650v4.1.2
\r\n\r\n
\r\n- Fix: Disable sparse checkout whenever
\r\nsparse-checkout
\r\noption is not present@dscho
in actions/checkout#1598v4.1.1
\r\n\r\n
\r\n- Correct link to GitHub Docs by
\r\n@peterbe
in actions/checkout#1511- Link to release page from what's new section by
\r\n@cory-miller
in\r\nactions/checkout#1514v4.1.0
\r\n\r\nv4.0.0
\r\n\r\nv3.6.0
\r\n\r\n
\r\n- Fix: Mark\r\ntest scripts with Bash'isms to be run via Bash
\r\n- Add\r\noption to fetch tags even if fetch-depth > 0
\r\nv3.5.3
\r\n\r\n
\r\n- Fix:\r\nCheckout fail in self-hosted runners when faulty submodule are\r\nchecked-in
\r\n- Fix\r\ntypos found by codespell
\r\n- Add\r\nsupport for sparse checkouts
\r\nv3.5.2
\r\n\r\n
\r\n- Fix\r\napi endpoint for GHES
\r\nv3.5.1
\r\n\r\n
... (truncated)
\r\na5ac7e5
\r\nUpdate for 4.1.6 release (#1733)24ed1a3
\r\nCheck platform for extension (#1732)Sourced from actions/checkout's\r\nreleases.
\r\n\r\n\r\nv4.1.5
\r\nWhat's Changed
\r\n\r\n
\r\n- Update NPM dependencies by
\r\n@cory-miller
in\r\nactions/checkout#1703- Bump github/codeql-action from 2 to 3 by
\r\n@dependabot
in actions/checkout#1694- Bump actions/setup-node from 1 to 4 by
\r\n@dependabot
in actions/checkout#1696- Bump actions/upload-artifact from 2 to 4 by
\r\n@dependabot
in actions/checkout#1695- README: Suggest
\r\nuser.email
to be\r\n41898282+github-actions[bot]@users.noreply.github.com
by@cory-miller
in\r\nactions/checkout#1707Full Changelog: https://github.com/actions/checkout/compare/v4.1.4...v4.1.5
\r\n
44c2b7a
\r\nREADME: Suggest user.email
to be\r\n`41898282+github-actions[bot]@users
.norepl...8459bc0
\r\nBump actions/upload-artifact from 2 to 4 (#1695)3f603f6
\r\nBump actions/setup-node from 1 to 4 (#1696)fd084cd
\r\nBump github/codeql-action from 2 to 3 (#1694)9c1e94e
\r\nUpdate NPM dependencies (#1703)Sourced from step-security/harden-runner's\r\nreleases.
\r\n\r\n\r\nv2.7.1
\r\nWhat's Changed
\r\nRelease v2.7.1 by
\r\n@varunsh-coder
,\r\n@h0x0er
,@ashishkurmi
in\r\nstep-security/harden-runner#397\r\nThis release:\r\n
\r\n- Improves the capability to inspect\r\noutbound HTTPS traffic on GitHub-hosted and self-hosted VM\r\nrunners
\r\n- Updates README to add link to case study video\r\non how Harden-Runner detected a supply chain attack on a Google\r\nopen-source project
\r\n- Addresses minor bugs
\r\nFull Changelog: https://github.com/step-security/harden-runner/compare/v2.7.0...v2.7.1
\r\n
a4aa98b
\r\nRelease v2.7.1 (#397)6c3b1c9
\r\nMerge pull request #379\r\nfrom step-security/dependabot/github_actions/step-sec...3498091
\r\nBump step-security/harden-runner from 2.6.1 to 2.7.063a88e2
\r\nMerge pull request #378\r\nfrom step-security/update-readme307e5965
\r\nUpdate READMESourced from browser-actions/setup-firefox's\r\nreleases.
\r\n\r\n\r\nsetup-firefox: v1.5.1
\r\n1.5.1\r\n(2024-05-04)
\r\nBug Fixes
\r\n\r\nv1.5.1
\r\n1.5.1\r\n(2024-05-04)
\r\nBug Fixes
\r\n\r\nFull Changelog: https://github.com/browser-actions/setup-firefox/compare/setup-firefox-v1.5.0...setup-firefox-v1.5.1
\r\n
Sourced from browser-actions/setup-firefox's\r\nchangelog.
\r\n\r\n\r\nChangelog
\r\n1.5.1\r\n(2024-05-04)
\r\nBug Fixes
\r\n\r\n1.5.0\r\n(2024-02-29)
\r\nFeatures
\r\n\r\n1.4.1\r\n(2024-02-17)
\r\nBug Fixes
\r\n\r\n1.4.0\r\n(2023-11-11)
\r\nFeatures
\r\n\r\n1.3.0\r\n(2023-09-18)
\r\nFeatures
\r\n\r\n1.2.0\r\n(2023-09-17)
\r\nFeatures
\r\n\r\nBug Fixes
\r\n\r\n1.1.1\r\n(2023-03-16)
\r\n\r\n
... (truncated)
\r\n7eb6921
\r\nRelease v1.5.1 at 35c5cfe15e6f7a8cb69ea775ff7f7160b1dc5bd5