Bump dependabot/fetch-metadata from 1.4.0 to 1.5.0

[dependabot]

Bumps dependabot/fetch-metadata from 1.4.0 to 1.5.0.

Release notes

Sourced from dependabot/fetch-metadata's releases.

v1.5.0

What's Changed

New Features:

• Added flag if "Maintainer changes" appears in the PR body by @​mwaddell in dependabot/fetch-metadata#174

Bumped Deps:

• Bump @​types/node from 18.15.11 to 20.2.1 by @​dependabot in dependabot/fetch-metadata#364
• Bump nock from 13.3.0 to 13.3.1 by @​dependabot in dependabot/fetch-metadata#366

Docs:

• Add minimum permissions to usage example by @​jablko in dependabot/fetch-metadata#343
• Document verification overrides in readme by @​jeffwidman in dependabot/fetch-metadata#345

Code cleanup:

• Simplify the release process by linking to release notes instead of copy/pasting them by @​jeffwidman in dependabot/fetch-metadata#347
• Use the full email for the GitHub Actions bot by @​jeffwidman in dependabot/fetch-metadata#354
• Inline the PR URL by @​jeffwidman in dependabot/fetch-metadata#359
• No need to request escalated permissions for GITHUB_TOKEN by @​jeffwidman in dependabot/fetch-metadata#357
• Remove unused step by @​jeffwidman in dependabot/fetch-metadata#358
• Simplify bin/bump-version by @​jeffwidman in dependabot/fetch-metadata#368
• Add a deeplink for tagging releases to the Readme by @​jeffwidman in dependabot/fetch-metadata#369
• Stop using deprecated set-output by @​jeffwidman in dependabot/fetch-metadata#370
• Add workflow for creating release PR's by @​jeffwidman in dependabot/fetch-metadata#360
• Add workflow for floating the v1 tag to the latest release by @​jeffwidman in dependabot/fetch-metadata#361

Full Changelog: dependabot/fetch-metadata@v1...v1.5.0

Commits

• 28a846a v1.5.0 (#372)
• a2a3a43 Add workflow for floating the v1 tag to the latest release (#361)
• 6c5b8c2 Add workflow for creating release PR's (#360)
• c40140b Stop using deprecated set-output (#370)
• 042f8db Add a deeplink for tagging releases to the Readme (#369)
• fd7c300 Simplify bin/bump-version (#368)
• 9cc71e7 Merge pull request #366 from dependabot/dependabot/npm_and_yarn/nock-13.3.1
• f29558c Bump nock from 13.3.0 to 13.3.1
• ec762dd Merge pull request #364 from dependabot/dependabot/npm_and_yarn/types/node-20...
• e79c5ea Bump @​types/node from 18.15.11 to 20.2.1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
No Duplication information