Release v4.1.0 · cloudposse/github-action-pre-commit

Add canonical README.yaml for CI-generated README.md @[copilot-swe-agent[bot]](https://github.com/apps/copilot-swe-agent) (#34)

This PR introduces a canonical `README.yaml` so `README.md` can be generated in CI using the repository-standard Cloud Posse docs workflow. The content mirrors the current action behavior and usage while aligning format with sibling Cloud Posse action repos.

Canonical README source
- Adds README.yaml at repo root as the single source of truth for generated documentation.
- Defines standard metadata fields (name, tags, license, github_repo, badges, related, include, contributors).
Action-focused documentation content
- Captures concise project description and introduction for github-action-pre-commit.
- Adds usage examples for:
  - default action invocation
  - custom extra_args
  - private-repo push-back configuration (token, git author, commit message).
Cloud Posse README.yaml convention alignment
- Uses the same structure and section model as referenced Cloud Posse action repositories.
- Includes reusable workflow reference links and badge format consistent with the org pattern.

# README.yaml (excerpt)
name: github-action-pre-commit
github_repo: cloudposse/github-action-pre-commit

usage: |-
  ```yaml
  - uses: cloudposse/github-action-pre-commit@v4.0.0
    with:
      token: ${{ secrets.GITHUB_TOKEN }}
      git_user_name: pre-commit
      git_user_email: pre-commit@users.noreply.github.com
      git_commit_message: pre-commit fixes

</details>

<details>
  <summary>Bump the npm_and_yarn group across 1 directory with 4 updates @[dependabot[bot]](https://github.com/apps/dependabot) (#31)</summary>
Bumps the npm_and_yarn group with 3 updates in the / directory: [webpack](https://github.com/webpack/webpack), [@octokit/plugin-paginate-rest](https://github.com/octokit/plugin-paginate-rest.js) and [@octokit/request](https://github.com/octokit/request.js).

Updates `webpack` from 5.94.0 to 5.105.4
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/webpack/webpack/releases">webpack's releases</a>.</em></p>
<blockquote>
<h2>v5.105.4</h2>
<h3>Patch Changes</h3>
<ul>
<li>
<p>Add <code>Module.getSourceBasicTypes</code> to distinguish basic source types and clarify how modules with non-basic source types like <code>remote</code> still produce JavaScript output. (by <a href="https://github.com/xiaoxiaojx"><code>@xiaoxiaojx</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20546">#20546</a>)</p>
</li>
<li>
<p>Handle <code>createRequire</code> in expressions. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20549">#20549</a>)</p>
</li>
<li>
<p>Fixed types for multi stats. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20556">#20556</a>)</p>
</li>
<li>
<p>Remove empty needless js output for normal css module. (by <a href="https://github.com/JSerFeng"><code>@JSerFeng</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20162">#20162</a>)</p>
</li>
<li>
<p>Update <code>enhanced-resolve</code> to support new features for <code>tsconfig.json</code>. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20555">#20555</a>)</p>
</li>
<li>
<p>Narrows export presence guard detection to explicit existence checks on namespace imports only, i.e. patterns like &quot;x&quot; in ns. (by <a href="https://github.com/hai-x"><code>@hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20561">#20561</a>)</p>
</li>
</ul>
<h2>v5.105.3</h2>
<h3>Patch Changes</h3>
<ul>
<li>
<p>Context modules now handle rejections correctly. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20455">#20455</a>)</p>
</li>
<li>
<p>Only mark asset modules as side-effect-free when <code>experimental.futureDefaults</code> is set to true, so asset-copying use cases (e.g. <code>import &quot;./x.png&quot;</code>) won’t break unless the option is enabled. (by <a href="https://github.com/hai-x"><code>@hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20535">#20535</a>)</p>
</li>
<li>
<p>Add the missing <strong>webpack_exports</strong> declaration in certain cases when bundling a JS entry together with non-JS entries (e.g., CSS entry or asset module entry). (by <a href="https://github.com/hai-x"><code>@hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20463">#20463</a>)</p>
</li>
<li>
<p>Fixed HMR failure for CSS modules with <a href="https://github.com/import"><code>@import</code></a> when exportType !== &quot;link&quot;. When exportType is not &quot;link&quot;, CSS modules now behave like JavaScript modules and don't require special HMR handling, allowing <a href="https://github.com/import"><code>@import</code></a> CSS to work correctly during hot module replacement. (by <a href="https://github.com/xiaoxiaojx"><code>@xiaoxiaojx</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20514">#20514</a>)</p>
</li>
<li>
<p>Fixed an issue where empty JavaScript files were generated for CSS-only entry points. The code now correctly checks if entry modules have JavaScript source types before determining whether to generate a JS file. (by <a href="https://github.com/xiaoxiaojx"><code>@xiaoxiaojx</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20454">#20454</a>)</p>
</li>
<li>
<p>Do not crash when a referenced chunk is not a runtime chunk. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20461">#20461</a>)</p>
</li>
<li>
<p>Fix some types. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20412">#20412</a>)</p>
</li>
<li>
<p>Ensure that missing module error are thrown after the interception handler (if present), allowing module interception to customize the module factory. (by <a href="https://github.com/hai-x"><code>@hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20510">#20510</a>)</p>
</li>
<li>
<p>Added <code>createRequire</code> support for ECMA modules. (by <a href="https://github.com/stefanbinoj"><code>@stefanbinoj</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20497">#20497</a>)</p>
</li>
<li>
<p>Added category for CJS reexport dependency to fix issues with ECMA modules. (by <a href="https://github.com/hai-x"><code>@hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20444">#20444</a>)</p>
</li>
<li>
<p>Implement immutable bytes for <code>bytes</code> import attribute to match tc39 spec. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20481">#20481</a>)</p>
</li>
<li>
<p>Fixed deterministic search for graph roots regardless of edge order. (by <a href="https://github.com/veeceey"><code>@veeceey</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20452">#20452</a>)</p>
</li>
</ul>
<h2>v5.105.2</h2>
<h3>Patch Changes</h3>
<ul>
<li>Fixed <code>WebpackPluginInstance</code> type regression. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20440">#20440</a>)</li>
</ul>
<h2>v5.105.1</h2>
<h3>Patch Changes</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/webpack/webpack/blob/main/CHANGELOG.md">webpack's changelog</a>.</em></p>
<blockquote>
<h2>5.105.4</h2>
<h3>Patch Changes</h3>
<ul>
<li>
<p>Add <code>Module.getSourceBasicTypes</code> to distinguish basic source types and clarify how modules with non-basic source types like <code>remote</code> still produce JavaScript output. (by <a href="https://github.com/xiaoxiaojx"><code>@xiaoxiaojx</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20546">#20546</a>)</p>
</li>
<li>
<p>Handle <code>createRequire</code> in expressions. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20549">#20549</a>)</p>
</li>
<li>
<p>Fixed types for multi stats. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20556">#20556</a>)</p>
</li>
<li>
<p>Remove empty needless js output for normal css module. (by <a href="https://github.com/JSerFeng"><code>@JSerFeng</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20162">#20162</a>)</p>
</li>
<li>
<p>Update <code>enhanced-resolve</code> to support new features for <code>tsconfig.json</code>. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20555">#20555</a>)</p>
</li>
<li>
<p>Narrows export presence guard detection to explicit existence checks on namespace imports only, i.e. patterns like &quot;x&quot; in ns. (by <a href="https://github.com/hai-x"><code>@hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20561">#20561</a>)</p>
</li>
</ul>
<h2>5.105.3</h2>
<h3>Patch Changes</h3>
<ul>
<li>
<p>Context modules now handle rejections correctly. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20455">#20455</a>)</p>
</li>
<li>
<p>Only mark asset modules as side-effect-free when <code>experimental.futureDefaults</code> is set to true, so asset-copying use cases (e.g. <code>import &quot;./x.png&quot;</code>) won’t break unless the option is enabled. (by <a href="https://github.com/hai-x"><code>@hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20535">#20535</a>)</p>
</li>
<li>
<p>Add the missing <strong>webpack_exports</strong> declaration in certain cases when bundling a JS entry together with non-JS entries (e.g., CSS entry or asset module entry). (by <a href="https://github.com/hai-x"><code>@hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20463">#20463</a>)</p>
</li>
<li>
<p>Fixed HMR failure for CSS modules with <a href="https://github.com/import"><code>@import</code></a> when exportType !== &quot;link&quot;. When exportType is not &quot;link&quot;, CSS modules now behave like JavaScript modules and don't require special HMR handling, allowing <a href="https://github.com/import"><code>@import</code></a> CSS to work correctly during hot module replacement. (by <a href="https://github.com/xiaoxiaojx"><code>@xiaoxiaojx</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20514">#20514</a>)</p>
</li>
<li>
<p>Fixed an issue where empty JavaScript files were generated for CSS-only entry points. The code now correctly checks if entry modules have JavaScript source types before determining whether to generate a JS file. (by <a href="https://github.com/xiaoxiaojx"><code>@xiaoxiaojx</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20454">#20454</a>)</p>
</li>
<li>
<p>Do not crash when a referenced chunk is not a runtime chunk. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20461">#20461</a>)</p>
</li>
<li>
<p>Fix some types. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20412">#20412</a>)</p>
</li>
<li>
<p>Ensure that missing module error are thrown after the interception handler (if present), allowing module interception to customize the module factory. (by <a href="https://github.com/hai-x"><code>@hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20510">#20510</a>)</p>
</li>
<li>
<p>Added <code>createRequire</code> support for ECMA modules. (by <a href="https://github.com/stefanbinoj"><code>@stefanbinoj</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20497">#20497</a>)</p>
</li>
<li>
<p>Added category for CJS reexport dependency to fix issues with ECMA modules. (by <a href="https://github.com/hai-x"><code>@hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20444">#20444</a>)</p>
</li>
<li>
<p>Implement immutable bytes for <code>bytes</code> import attribute to match tc39 spec. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20481">#20481</a>)</p>
</li>
<li>
<p>Fixed deterministic search for graph roots regardless of edge order. (by <a href="https://github.com/veeceey"><code>@veeceey</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20452">#20452</a>)</p>
</li>
</ul>
<h2>5.105.2</h2>
<h3>Patch Changes</h3>
<ul>
<li>Fixed <code>WebpackPluginInstance</code> type regression. (by <a href="https://github.com/alexander-akait"><code>@alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20440">#20440</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/webpack/webpack/commit/27c13b44c861908793f160f9f7413b32543c0522"><code>27c13b4</code></a> chore(release): new release (<a href="https://redirect.github.com/webpack/webpack/issues/20550">#20550</a>)</li>
<li><a href="https://github.com/webpack/webpack/commit/9b2f41ee98e01a9265c430d2c52fa6a9db0e177a"><code>9b2f41e</code></a> chore: bump terser plugin (<a href="https://redirect.github.com/webpack/webpack/issues/20569">#20569</a>)</li>
<li><a href="https://github.com/webpack/webpack/commit/eafe0605b018dd4e19a46d45fb5d72442772aff1"><code>eafe060</code></a> fix: narrow the export presence guard detection (<a href="https://redirect.github.com/webpack/webpack/issues/20561">#20561</a>)</li>
<li><a href="https://github.com/webpack/webpack/commit/75d605cb57b23257ee88f99ada7938273ea3a1ff"><code>75d605c</code></a> refactor: add AppendOnlyStackedSet iteration support and tests (<a href="https://redirect.github.com/webpack/webpack/issues/20560">#20560</a>)</li>
<li><a href="https://github.com/webpack/webpack/commit/afa607d0967f6b0259bfe9f62d99ef97db64bdac"><code>afa607d</code></a> refactor: remove unused code (<a href="https://redirect.github.com/webpack/webpack/issues/20562">#20562</a>)</li>
<li><a href="https://github.com/webpack/webpack/commit/40989026fa542ceffa2821e5d25ae0d87c0bd09b"><code>4098902</code></a> test: add source files for web-webworker and web-webworker-auto-public-path (...</li>
<li><a href="https://github.com/webpack/webpack/commit/f97be67fdd3c59acff2c0da7dd9f04835b037e4c"><code>f97be67</code></a> refactor: fix duplicated word in Compilation JSDoc (<a href="https://redirect.github.com/webpack/webpack/issues/20547">#20547</a>)</li>
<li><a href="https://github.com/webpack/webpack/commit/9d76fff9f645d194c293f12dadf029173e9ed1d1"><code>9d76fff</code></a> refactor: add Module.getSourceBasicTypes for basic JS type detection (<a href="https://redirect.github.com/webpack/webpack/issues/20546">#20546</a>)</li>
<li><a href="https://github.com/webpack/webpack/commit/a3d7839376784b2e44987b77f7d6bcc2ed3a0bdc"><code>a3d7839</code></a> fix: types for multi stats (<a href="https://redirect.github.com/webpack/webpack/issues/20556">#20556</a>)</li>
<li><a href="https://github.com/webpack/webpack/commit/b8e9b057bebccf6268d9b348bc23b056c66a067b"><code>b8e9b05</code></a> fix: update <code>enhanced-resolve</code> to support new features for <code>tsconfig.json</code> (#...</li>
<li>Additional commits viewable in <a href="https://github.com/webpack/webpack/compare/v5.94.0...v5.105.4">compare view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by [GitHub Actions](<a href="https://www.npmjs.com/~GitHub">https://www.npmjs.com/~GitHub</a> Actions), a new releaser for webpack since your current version.</p>
</details>
<br />

Updates `@octokit/plugin-paginate-rest` from 9.1.5 to 9.2.2
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/octokit/plugin-paginate-rest.js/releases"><code>@octokit/plugin-paginate-rest</code>'s releases</a>.</em></p>
<blockquote>
<h2>v9.2.2</h2>
<h2><a href="https://github.com/octokit/plugin-paginate-rest.js/compare/v9.2.1...v9.2.2">9.2.2</a> (2025-02-15)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>ReDos regex vulnerability, reported by <a href="https://github.com/DayShift"><code>@DayShift</code></a> (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/issues/660">#660</a>) (<a href="https://github.com/octokit/plugin-paginate-rest.js/commit/e1e44898cf1870f1496ae7f5b2a4476c71044e6b">e1e4489</a>)</li>
</ul>
<h2>v9.2.1</h2>
<h2><a href="https://github.com/octokit/plugin-paginate-rest.js/compare/v9.2.0...v9.2.1">9.2.1</a> (2024-03-01)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>pkg:</strong> pin <code>@octokit/core</code> peerDependency to v5 (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/issues/599">#599</a>) (<a href="https://github.com/octokit/plugin-paginate-rest.js/commit/5b84386830ebfe873f4ab7e106cc33eec6a2ace7">5b84386</a>)</li>
</ul>
<h2>v9.2.0</h2>
<h1><a href="https://github.com/octokit/plugin-paginate-rest.js/compare/v9.1.5...v9.2.0">9.2.0</a> (2024-02-22)</h1>
<h3>Features</h3>
<ul>
<li>new <code>/orgs/{org}/organization-roles/{role_id}/teams</code> and <code>/orgs/{org}/organization-roles/{role_id}/users</code> endpoints (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/issues/594">#594</a>) (<a href="https://github.com/octokit/plugin-paginate-rest.js/commit/75aeaafae8b52afe744958075d95111f37343093">75aeaaf</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/octokit/plugin-paginate-rest.js/commit/e1e44898cf1870f1496ae7f5b2a4476c71044e6b"><code>e1e4489</code></a> fix: ReDos regex vulnerability, reported by <a href="https://github.com/DayShift"><code>@DayShift</code></a> (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/issues/660">#660</a>)</li>
<li><a href="https://github.com/octokit/plugin-paginate-rest.js/commit/5b84386830ebfe873f4ab7e106cc33eec6a2ace7"><code>5b84386</code></a> fix(pkg): pin <code>@octokit/core</code> peerDependency to v5 (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/issues/599">#599</a>)</li>
<li><a href="https://github.com/octokit/plugin-paginate-rest.js/commit/fa01f94c624b3b67f6ef687c80865773a1c99676"><code>fa01f94</code></a> ci(action): update actions/add-to-project action to v0.6.0 (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/issues/598">#598</a>)</li>
<li><a href="https://github.com/octokit/plugin-paginate-rest.js/commit/75aeaafae8b52afe744958075d95111f37343093"><code>75aeaaf</code></a> feat: new <code>/orgs/{org}/organization-roles/{role_id}/teams</code> and `/orgs/{org}/o...</li>
<li><a href="https://github.com/octokit/plugin-paginate-rest.js/commit/54d6bcfef756e5b329d817ce5ad3f92885a00a7d"><code>54d6bcf</code></a> chore(deps): update dependency prettier to v3.2.5</li>
<li><a href="https://github.com/octokit/plugin-paginate-rest.js/commit/1bfa2f8d338158db33af812168bbfad9d8af4f00"><code>1bfa2f8</code></a> chore(deps): update dependency npm-run-all2 to v6</li>
<li><a href="https://github.com/octokit/plugin-paginate-rest.js/commit/eb4a8fe643a368ef3d68f8901d551638230581e1"><code>eb4a8fe</code></a> chore(deps): replace dependency npm-run-all with npm-run-all2 ^5.0.0</li>
<li><a href="https://github.com/octokit/plugin-paginate-rest.js/commit/11ef7798c8519e8446a92605d4e4bd2008a42c07"><code>11ef779</code></a> chore(deps): update dependency esbuild to ^0.20.0</li>
<li><a href="https://github.com/octokit/plugin-paginate-rest.js/commit/2b6cc98c51e0816a2873ea5d6e6b4edb01d2e9b9"><code>2b6cc98</code></a> ci(action): update peter-evans/create-or-update-comment action to v4</li>
<li><a href="https://github.com/octokit/plugin-paginate-rest.js/commit/d7c9de5bb0366b61666c1270138ce93059c3402a"><code>d7c9de5</code></a> chore(deps): update dependency prettier to v3.2.4 (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/issues/588">#588</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/octokit/plugin-paginate-rest.js/compare/v9.1.5...v9.2.2">compare view</a></li>
</ul>
</details>
<br />

Updates `@octokit/request` from 8.1.6 to 8.4.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/octokit/request.js/releases"><code>@octokit/request</code>'s releases</a>.</em></p>
<blockquote>
<h2>v8.4.1</h2>
<h2><a href="https://github.com/octokit/request.js/compare/v8.4.0...v8.4.1">8.4.1</a> (2025-02-15)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>ReDos regex vulnerability, reported by <a href="https://github.com/DayShift"><code>@DayShift</code></a> (<a href="https://redirect.github.com/octokit/request.js/issues/741">#741</a>) (<a href="https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2">356411e</a>)</li>
</ul>
<h2>v8.4.0</h2>
<h1><a href="https://github.com/octokit/request.js/compare/v8.3.1...v8.4.0">8.4.0</a> (2024-04-09)</h1>
<h3>Features</h3>
<ul>
<li>re-add <code>redirect</code> request option (<a href="https://redirect.github.com/octokit/request.js/issues/636">#636</a>) (<a href="https://github.com/octokit/request.js/commit/abc4955217d7626200844b75321be3ac73ef95f6">abc4955</a>), closes <a href="https://redirect.github.com/octokit/request.js/issues/599">#599</a></li>
</ul>
<h2>v8.3.1</h2>
<h2><a href="https://github.com/octokit/request.js/compare/v8.3.0...v8.3.1">8.3.1</a> (2024-04-05)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>upgrade <code>@octokit/endpoint</code> (<a href="https://github.com/octokit/request.js/commit/4e7127cff05fbd091306168af341a9bb7d443045">4e7127c</a>)</li>
</ul>
<h2>v8.3.0</h2>
<h1><a href="https://github.com/octokit/request.js/compare/v8.2.0...v8.3.0">8.3.0</a> (2024-04-05)</h1>
<h3>Bug Fixes</h3>
<ul>
<li>upgrade <code>@octokit/types</code> (<a href="https://github.com/octokit/request.js/commit/6822e8bbaa74bc177e14fabfa54e94e7f13edc68">6822e8b</a>)</li>
</ul>
<h3>Features</h3>
<ul>
<li><strong>security:</strong> Add provenance (<a href="https://redirect.github.com/octokit/request.js/issues/685">#685</a>) (<a href="https://github.com/octokit/request.js/commit/2e6792585f64da58d735c0dda2811bf9cff0ac0e">2e67925</a>)</li>
</ul>
<h2>v8.2.0</h2>
<h1><a href="https://github.com/octokit/request.js/compare/v8.1.6...v8.2.0">8.2.0</a> (2024-02-09)</h1>
<h3>Features</h3>
<ul>
<li>add documentation link in error message (<a href="https://redirect.github.com/octokit/request.js/issues/667">#667</a>) (<a href="https://github.com/octokit/request.js/commit/dbfeab2ff9d4e7b5eaf7d155b1c4cdd630928753">dbfeab2</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2"><code>356411e</code></a> fix: ReDos regex vulnerability, reported by <a href="https://github.com/DayShift"><code>@DayShift</code></a> (<a href="https://redirect.github.com/octokit/request.js/issues/741">#741</a>)</li>
<li><a href="https://github.com/octokit/request.js/commit/abc4955217d7626200844b75321be3ac73ef95f6"><code>abc4955</code></a> feat: re-add <code>redirect</code> request option (<a href="https://redirect.github.com/octokit/request.js/issues/636">#636</a>)</li>
<li><a href="https://github.com/octokit/request.js/commit/4e7127cff05fbd091306168af341a9bb7d443045"><code>4e7127c</code></a> fix: upgrade <code>@octokit/endpoint</code></li>
<li><a href="https://github.com/octokit/request.js/commit/2e6792585f64da58d735c0dda2811bf9cff0ac0e"><code>2e67925</code></a> feat(security): Add provenance (<a href="https://redirect.github.com/octokit/request.js/issues/685">#685</a>)</li>
<li><a href="https://github.com/octokit/request.js/commit/6822e8bbaa74bc177e14fabfa54e94e7f13edc68"><code>6822e8b</code></a> fix: upgrade <code>@octokit/types</code></li>
<li><a href="https://github.com/octokit/request.js/commit/dbfeab2ff9d4e7b5eaf7d155b1c4cdd630928753"><code>dbfeab2</code></a> feat: add documentation link in error message (<a href="https://redirect.github.com/octokit/request.js/issues/667">#667</a>)</li>
<li><a href="https://github.com/octokit/request.js/commit/c013de4e24a01e0776661e46ba60fcf0d4670389"><code>c013de4</code></a> docs: fix spelling errors (<a href="https://redirect.github.com/octokit/request.js/issues/671">#671</a>)</li>
<li><a href="https://github.com/octokit/request.js/commit/3d22c38bc0ed14fa5ff4a732bb62bee9b62fb5e6"><code>3d22c38</code></a> chore(deps): update dependency prettier to v3.2.5</li>
<li><a href="https://github.com/octokit/request.js/commit/984ec173e6dda48c4c1cd39666b8e6e2e3abfa7e"><code>984ec17</code></a> chore(deps): update dependency esbuild to ^0.20.0</li>
<li><a href="https://github.com/octokit/request.js/commit/2a9cf786e8f3b2f900fbb06a4545d959b9fff318"><code>2a9cf78</code></a> ci(action): update peter-evans/create-or-update-comment action to v4</li>
<li>Additional commits viewable in <a href="https://github.com/octokit/request.js/compare/v8.1.6...v8.4.1">compare view</a></li>
</ul>
</details>
<br />

Updates `@octokit/request-error` from 5.0.1 to 5.1.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/octokit/request-error.js/releases"><code>@octokit/request-error</code>'s releases</a>.</em></p>
<blockquote>
<h2>v5.1.1</h2>
<h2><a href="https://github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1">5.1.1</a> (2025-02-14)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>ReDos regex vulnerability, reported by <a href="https://github.com/dayshift"><code>@dayshift</code></a> (<a href="https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de">12a14f0</a>)</li>
</ul>
<h2>v5.1.0</h2>
<h1><a href="https://github.com/octokit/request-error.js/compare/v5.0.1...v5.1.0">5.1.0</a> (2024-04-05)</h1>
<h3>Bug Fixes</h3>
<ul>
<li>upgrade <code>@octokit/types</code> to v13 (<a href="https://github.com/octokit/request-error.js/commit/3af20bd58fea6cc349bc191c725e78e9cc021da6">3af20bd</a>)</li>
</ul>
<h3>Features</h3>
<ul>
<li><strong>security:</strong> Add provenance (<a href="https://redirect.github.com/octokit/request-error.js/issues/416">#416</a>) (<a href="https://github.com/octokit/request-error.js/commit/94147e8843898e0edd2664d0c46a4f42eb4adaa4">94147e8</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53"><code>b51ed27</code></a> test: ReDos regex vulnerability, reported by <a href="https://github.com/dayshift"><code>@dayshift</code></a></li>
<li><a href="https://github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de"><code>12a14f0</code></a> fix: ReDos regex vulnerability, reported by <a href="https://github.com/dayshift"><code>@dayshift</code></a></li>
<li><a href="https://github.com/octokit/request-error.js/commit/3af20bd58fea6cc349bc191c725e78e9cc021da6"><code>3af20bd</code></a> fix: upgrade <code>@octokit/types</code> to v13</li>
<li><a href="https://github.com/octokit/request-error.js/commit/94147e8843898e0edd2664d0c46a4f42eb4adaa4"><code>94147e8</code></a> feat(security): Add provenance (<a href="https://redirect.github.com/octokit/request-error.js/issues/416">#416</a>)</li>
<li>See full diff in <a href="https://github.com/octokit/request-error.js/compare/v5.0.1...v5.1.1">compare view</a></li>
</ul>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/cloudposse/github-action-pre-commit/network/alerts).

</details>
</details>

<details>
  <summary>feat: upgrade node runtime to node24 and automate future upgrades via Renovate @[copilot-swe-agent[bot]](https://github.com/apps/copilot-swe-agent) (#32)</summary>
Node 20 is approaching EOL; GitHub Actions supports `node24` as the latest runtime. This upgrades the action and adds Renovate automation to catch future major version bumps.

## Changes

- **`action.yml`**: `using: 'node20'` → `using: 'node24'`
- **`.github/renovate.json`**: adds a custom regex manager targeting `action.yml` to track the `using: 'nodeXX'` field against the `node-version` datasource — Renovate will open PRs automatically when a new Node major becomes available

```json
{
  "customManagers": [
    {
      "customType": "regex",
      "fileMatch": ["^action\\.yml$"],
      "matchStrings": ["using: 'node(?<currentValue>\\d+)'"],
      "depNameTemplate": "node",
      "datasourceTemplate": "node-version",
      "versioningTemplate": "node"
    }
  ]
}

Original prompt

This section details on the original issue you should resolve

<issue_title>Upgrade node20 to latest node and expose input</issue_title>
<issue_description>Found a bug? Maybe our Slack Community can help.

Describe the Bug

Node 20 is going to be deprecated

Let's use a non deprecated version and find a way to keep this up to date</issue_description>

<agent_instructions>Resolve the issue. Use renovate to find a way to keep this version up to date. Use semantic commits. Use semantic PR title. Use PR template. Think deeply. Be surgical.</agent_instructions>

Comments on the Issue (you are @copilot in this section)

Fixes #30

💡 You can make Copilot smarter by setting up custom instructions, customizing its development environment and configuring Model Context Protocol (MCP) servers. Learn more Copilot coding agent tips in the docs.

Bump the npm_and_yarn group with 2 updates @[dependabot[bot]](https://github.com/apps/dependabot) (#26)

Bumps the npm_and_yarn group with 2 updates: [webpack](https://github.com/webpack/webpack) and [undici](https://github.com/nodejs/undici).

Updates webpack from 5.90.1 to 5.94.0

Release notes

Sourced from webpack's releases.

v5.94.0

Bug Fixes

Added runtime condition for harmony reexport checked

Handle properly data/http/https protocols in source maps

Make bigint optimistic when browserslist not found

Move @types/eslint-scope to dev deps

Related in asset stats is now always an array when no related found

Handle ASI for export declarations

Mangle destruction incorrect with export named default properly

Fixed unexpected asi generation with sequence expression

Fixed a lot of types

New Features

Added new external type "module-import"

Support webpackIgnore for new URL() construction

[CSS] @import pathinfo support

Security

Fixed DOM clobbering in auto public path

v5.93.0

Bug Fixes

Generate correct relative path to runtime chunks

Makes DefinePlugin quieter under default log level

Fixed mangle destructuring default in namespace import

Fixed consumption of eager shared modules for module federation

Strip slash for pretty regexp

Calculate correct contenthash for CSS generator options

New Features

Added the binary generator option for asset modules to explicitly keep source maps produced by loaders

Added the modern-module library value for tree shakable output

Added the overrideStrict option to override strict or non-strict mode for javascript modules

v5.92.1

Bug Fixes

Doesn't crash with an error when the css experiment is enabled and contenthash is used

v5.92.0

Bug Fixes

Correct tidle range's comutation for module federation

Consider runtime for pure expression dependency update hash

Return value in the subtractRuntime function for runtime logic

... (truncated)

Commits

eabf85d chore(release): 5.94.0
955e057 security: fix DOM clobbering in auto public path
9822387 test: fix
cbb86ed test: fix
5ac3d7f fix: unexpected asi generation with sequence expression
2411661 security: fix DOM clobbering in auto public path
b8c03d4 fix: unexpected asi generation with sequence expression
f46a03c revert: do not use heuristic fallback for "module-import"
60f1898 fix: do not use heuristic fallback for "module-import"
66306aa Revert "fix: module-import get fallback from externalsPresets"
Additional commits viewable in compare view

Updates undici from 5.28.3 to 5.28.4

Release notes

Sourced from undici's releases.

v5.28.4

⚠️ Security Release ⚠️

Fixes GHSA-m4v8-wqvr-p9f7 CVE-2024-30260

Fixes GHSA-9qxr-qj54-h672 CVE-2024-30261

Full Changelog: nodejs/undici@v5.28.3...v5.28.4

Commits

fb98306 Bumped v5.28.4
2b39440 Merge pull request from GHSA-9qxr-qj54-h672
64e3402 Merge pull request from GHSA-m4v8-wqvr-p9f7
723c4e7 Revert "build(deps-dev): bump formdata-node from 4.4.1 to 6.0.3 (#2389)"
0e9d54b skip failing test due to Node.js changes
See full diff in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

Use current versions in README Nelson Wolf (@npwolf) (#21)

Upgrading to latest released versions of actions in README

what

Upgrade github action examples with latest versions

why

Keep up to date

references

🤖 Automatic Updates

Replace Makefile with atmos.yaml Erik Osterman (Cloud Posse) (@osterman) (#29)

## what - Remove `Makefile` - Add `atmos.yaml`

why

Replace build-harness with atmos for readme genration

References

DEV-3229 Migrate from build-harness to atmos

Update .github/settings.yml Erik Osterman (Cloud Posse) (@osterman) (#27)

## what - Update `.github/settings.yml` - Drop `.github/auto-release.yml` files

why

Re-apply .github/settings.yml from org level
Use organization level auto-release settings

references

DEV-1242 Add protected tags with Repository Rulesets on GitHub

Update release workflow Erik Osterman (Cloud Posse) (@osterman) (#25)

## what - Update workflow (`.github/workflows/release.yaml`) to have permissions commenting PR

why

Add comments to PRs when it's changes are released

Use GitHub Action Workflows from `cloudposse/.github` Repo Erik Osterman (Cloud Posse) (@osterman) (#24)

## what - Update workflows (`.github/workflows/settings.yaml`) to use shared workflows from `.github` repo

why

Reduce nested levels of reusable workflows

Use GitHub Action Workflows from `cloudposse/.github` Repo Erik Osterman (Cloud Posse) (@osterman) (#23)

## what - Update workflows (`.github/workflows/settings.yaml`)

why

Support new readme generation workflow.
Generate banners

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

v4.1.0

Choose a tag to compare

Sorry, something went wrong.

Sorry, something went wrong.

Uh oh!

No results found

Describe the Bug

Comments on the Issue (you are @copilot in this section)

v5.94.0

Bug Fixes

New Features

Security

v5.93.0

Bug Fixes

New Features

v5.92.1

Bug Fixes

v5.92.0

Bug Fixes

v5.28.4

⚠️ Security Release ⚠️

what

why

references

🤖 Automatic Updates

why

References

why

references

why

why

why

Contributors

Uh oh!