Skip to content

chore(deps): bump the github-actions group across 1 directory with 5 updates#791

Merged
matifali merged 1 commit intomainfrom
dependabot/github_actions/github-actions-a605b89d11
Mar 9, 2026
Merged

chore(deps): bump the github-actions group across 1 directory with 5 updates#791
matifali merged 1 commit intomainfrom
dependabot/github_actions/github-actions-a605b89d11

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Mar 9, 2026

Bumps the github-actions group with 5 updates in the / directory:

Package From To
coder/coder 2.29.2 2.31.3
oven-sh/setup-bun 2.1.2 2.1.3
crate-ci/typos 1.42.1 1.44.0
actions/setup-go 6.2.0 6.3.0
zizmorcore/zizmor-action 0.4.1 0.5.2

Updates coder/coder from 2.29.2 to 2.31.3

Release notes

Sourced from coder/coder's releases.

v2.31.3

Changelog

[!NOTE] This is a mainline Coder release. We advise enterprise customers without a staging environment to install our latest stable release while we refine this version. Learn more about our Release Schedule.

Chores

Bug Fixes

  • fix: early oidc refresh with fake idp tests (cherry 2.31) (#22716, deaacff84) (@​Emyrk)

Compare: v2.31.2...v2.31.3

Container image

  • docker pull ghcr.io/coder/coder:v2.31.2

Install/upgrade

Refer to our docs to install or upgrade Coder, or use a release asset below.

v2.31.2

Changelog

[!NOTE] This is a mainline Coder release. We advise enterprise customers without a staging environment to install our latest stable release while we refine this version. Learn more about our Release Schedule.

Chores

  • Prematurely refresh oidc token near expiry during workspace (cherry 2.31) (#22606, 2828d28e0) (@​Emyrk)

Compare: v2.31.1...v2.31.2

Container image

  • docker pull ghcr.io/coder/coder:v2.31.2

Install/upgrade

Refer to our docs to install or upgrade Coder, or use a release asset below.

v2.31.1

Changelog

[!NOTE] This is a mainline Coder release. We advise enterprise customers without a staging environment to install our latest stable release while we refine this version. Learn more about our Release Schedule.

Normally, our monthly releases are 2.X.0. This mainline release is 2.X.1 due to an issue in the release process, but it should be considered a standard mainline release for customers.

... (truncated)

Commits
  • deaacff fix: early oidc refresh with fake idp tests (#22712) (cherry 2.31) (#22716)
  • 2828d28 chore: prematurely refresh oidc token near expiry during workspace (cherry 2....
  • 4b95b8b fix(coderd): add organization_name label to insights Prometheus metrics (cher...
  • 3a061cc refactor(site): use dedicated task pause/resume API endpoints (#22303) (cherr...
  • 22c2da5 fix: register task pause/resume routes under /api/v2 (#22544) (#22550)
  • ccb529e fix: disable sharing ui when sharing is unavailable (#22390) (#22561)
  • 107fd97 fix: avoid derp-related panic during wsproxy registration (backport release/2...
  • 955637a fix(codersdk): use header auth for non-browser websocket dials (#22461) (cher...
  • 85f1d70 ci: add temporary deploy override (#22378) (#22475)
  • e9e438b fix(stringutil): operate on runes instead of bytes in Truncate (#22388) (#22469)
  • Additional commits viewable in compare view

Updates oven-sh/setup-bun from 2.1.2 to 2.1.3

Release notes

Sourced from oven-sh/setup-bun's releases.

v2.1.3

oven-sh/setup-bun is the github action for setting up Bun.

What's Changed

New Contributors

Full Changelog: oven-sh/setup-bun@v2...v2.1.3

Commits

Updates crate-ci/typos from 1.42.1 to 1.44.0

Release notes

Sourced from crate-ci/typos's releases.

v1.44.0

[1.44.0] - 2026-02-27

Features

v1.43.5

[1.43.5] - 2026-02-16

Fixes

  • (pypi) Hopefully fix the sdist build

v1.43.4

[1.43.4] - 2026-02-09

Fixes

  • Don't correct pincher

v1.43.3

[1.43.3] - 2026-02-06

Fixes

  • (action) Adjust how typos are reported to github

v1.43.2

[1.43.2] - 2026-02-05

Fixes

  • Don't correct certifi in Python

v1.43.1

[1.43.1] - 2026-02-03

Fixes

  • Don't correct consts

v1.43.0

[1.43.0] - 2026-02-02

Features

v1.42.3

... (truncated)

Changelog

Sourced from crate-ci/typos's changelog.

Change Log

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog and this project adheres to Semantic Versioning.

[Unreleased] - ReleaseDate

[1.44.0] - 2026-02-27

Features

[1.43.5] - 2026-02-16

Fixes

  • (pypi) Hopefully fix the sdist build

[1.43.4] - 2026-02-09

Fixes

  • Don't correct pincher

[1.43.3] - 2026-02-06

Fixes

  • (action) Adjust how typos are reported to github

[1.43.2] - 2026-02-05

Fixes

  • Don't correct certifi in Python

[1.43.1] - 2026-02-03

Fixes

  • Don't correct consts

[1.43.0] - 2026-02-02

Compatibility

  • Bumped MSRV to 1.91

... (truncated)

Commits

Updates actions/setup-go from 6.2.0 to 6.3.0

Release notes

Sourced from actions/setup-go's releases.

v6.3.0

What's Changed

Full Changelog: actions/setup-go@v6...v6.3.0

Commits

Updates zizmorcore/zizmor-action from 0.4.1 to 0.5.2

Release notes

Sourced from zizmorcore/zizmor-action's releases.

v0.5.2

What's Changed

  • zizmor 1.23.1 is now the default used by this action.

Full Changelog: zizmorcore/zizmor-action@v0.5.1...v0.5.2

v0.5.1

What's Changed

  • zizmor 1.23.0 is now the default used by this action.

Full Changelog: zizmorcore/zizmor-action@v0.5.0...v0.5.1

v0.5.0

What's Changed

New Contributors

Full Changelog: zizmorcore/zizmor-action@v0.4.1...v0.5.0

Commits
  • 71321a2 Sync zizmor versions (#96)
  • 5ed31db Bump pins (#95)
  • 195d10a Sync zizmor versions (#94)
  • c65bc88 chore(deps): bump github/codeql-action in the github-actions group (#93)
  • c2c887f chore(deps): bump zizmorcore/zizmor-action in the github-actions group (#91)
  • 5507ab0 Bump pins in README (#90)
  • 0dce257 chore(deps): bump peter-evans/create-pull-request (#88)
  • fb94974 Expose output-file as an output when advanced-security: true (#87)
  • 867562a chore(deps): bump the github-actions group with 2 updates (#85)
  • 7462f07 Bump pins in README (#84)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the github-actions group across 1 directory with 5 …
0500567 
…updates

Bumps the github-actions group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [coder/coder](https://github.com/coder/coder) | `2.29.2` | `2.31.3` |
| [oven-sh/setup-bun](https://github.com/oven-sh/setup-bun) | `2.1.2` | `2.1.3` |
| [crate-ci/typos](https://github.com/crate-ci/typos) | `1.42.1` | `1.44.0` |
| [actions/setup-go](https://github.com/actions/setup-go) | `6.2.0` | `6.3.0` |
| [zizmorcore/zizmor-action](https://github.com/zizmorcore/zizmor-action) | `0.4.1` | `0.5.2` |



Updates `coder/coder` from 2.29.2 to 2.31.3
- [Release notes](https://github.com/coder/coder/releases)
- [Changelog](https://github.com/coder/coder/blob/main/release.key)
- [Commits](coder/coder@b5360a9...deaacff)

Updates `oven-sh/setup-bun` from 2.1.2 to 2.1.3
- [Release notes](https://github.com/oven-sh/setup-bun/releases)
- [Commits](oven-sh/setup-bun@3d26778...ecf28dd)

Updates `crate-ci/typos` from 1.42.1 to 1.44.0
- [Release notes](https://github.com/crate-ci/typos/releases)
- [Changelog](https://github.com/crate-ci/typos/blob/master/CHANGELOG.md)
- [Commits](crate-ci/typos@6512063...631208b)

Updates `actions/setup-go` from 6.2.0 to 6.3.0
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](actions/setup-go@7a3fe6c...4b73464)

Updates `zizmorcore/zizmor-action` from 0.4.1 to 0.5.2
- [Release notes](https://github.com/zizmorcore/zizmor-action/releases)
- [Commits](zizmorcore/zizmor-action@1356984...71321a2)

---
updated-dependencies:
- dependency-name: coder/coder
  dependency-version: 2.31.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: oven-sh/setup-bun
  dependency-version: 2.1.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: crate-ci/typos
  dependency-version: 1.44.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: actions/setup-go
  dependency-version: 6.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: zizmorcore/zizmor-action
  dependency-version: 0.5.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Mar 9, 2026
@dependabot dependabot Bot requested a review from jdomeracki-coder as a code owner March 9, 2026 07:21
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Mar 9, 2026
@matifali matifali merged commit d7566cc into main Mar 9, 2026
6 checks passed
@matifali matifali deleted the dependabot/github_actions/github-actions-a605b89d11 branch March 9, 2026 11:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@matifali matifali matifali approved these changes

@jdomeracki-coder jdomeracki-coder Awaiting requested review from jdomeracki-coder jdomeracki-coder is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@matifali