[cherry-pick] chore(deps): bump the actions group across 1 directory with 4 updates #7598

nginx-bot · 2025-04-02T10:41:35Z

Bumps the actions group with 4 updates in the / directory: goreleaser/goreleaser-action, actions/dependency-review-action, peter-evans/dockerhub-description and 8398a7/action-slack.

Updates goreleaser/goreleaser-action from 6.2.1 to 6.3.0

Release notes

Sourced from goreleaser/goreleaser-action's releases.

v6.3.0

Bump undici from 5.28.3 to 5.28.5 in goreleaser/goreleaser-action#488

Full Changelog: goreleaser/goreleaser-action@v6.2.1...v6.3.0

Commits

9c156ee ci: update bake-action to v6 (#493)
73c477b chore(deps): bump undici from 5.28.3 to 5.28.5 (#488)
19c00a9 chore(deps): bump codecov/codecov-action from 4 to 5 (#481)
See full diff in compare view

Updates actions/dependency-review-action from 4.5.0 to 4.6.0

Release notes

Sourced from actions/dependency-review-action's releases.

v4.6.0

What's Changed

Updating multiple dependency versions by @Ahmed3lmallah in actions/dependency-review-action#870

Grouping minor and patch dependabot updates to lessen the number of PRs by @Ahmed3lmallah in actions/dependency-review-action#876

Bump actions/stale from 9.0.0 to 9.1.0 by @dependabot in actions/dependency-review-action#878

Bump undici from 5.28.4 to 5.28.5 by @dependabot in actions/dependency-review-action#877

DR Action should link to the proxima stamp when appropriate in error messages by @AshelyTC in actions/dependency-review-action#891

Allow deny package removal by @ellenfieldn in actions/dependency-review-action#888

Fix typos by @omahs in actions/dependency-review-action#893

Bump esbuild from 0.19.5 to 0.25.0 by @dependabot in actions/dependency-review-action#900

Bump octokit and related dependencies by @RomanIakovlev in actions/dependency-review-action#904

Bump @babel/helpers from 7.23.2 to 7.26.10 by @dependabot in actions/dependency-review-action#905

Bump @octokit/plugin-paginate-rest from 9.1.5 to 9.2.2 by @dependabot in actions/dependency-review-action#899

Update transitive dependency spdx-license-ids by @ailox in actions/dependency-review-action#855

To not print OpenSSF Scorecard section if no dependencies scanned by @fabasoad in actions/dependency-review-action#884

Improve usage of this action in dependency-review.yml by @fabasoad in actions/dependency-review-action#883

Clarify comment-summary-in-pr behaviour by @Pantelis-Santorinios in actions/dependency-review-action#902

Prepare 4.6.0 Release candidate by @brrygrdn in actions/dependency-review-action#910

New Contributors

@AshelyTC made their first contribution in actions/dependency-review-action#891

@ellenfieldn made their first contribution in actions/dependency-review-action#888

@omahs made their first contribution in actions/dependency-review-action#893

@RomanIakovlev made their first contribution in actions/dependency-review-action#904

@ailox made their first contribution in actions/dependency-review-action#855

@fabasoad made their first contribution in actions/dependency-review-action#884

@Pantelis-Santorinios made their first contribution in actions/dependency-review-action#902

@brrygrdn made their first contribution in actions/dependency-review-action#910

Full Changelog: actions/dependency-review-action@v4.5.0...v4.6.0

Commits

ce3cf95 Merge pull request #910 from actions/brrygrdn/4.6.0-release-candidate
479b697 Prepare 4.6.0
aee9590 Merge pull request #902 from Pantelis-Santorinios/patch-1
080ada6 Merge pull request #883 from fabasoad/fix/ci
430e5f0 Merge pull request #884 from fabasoad/fix/863
51699b6 Merge pull request #855 from ailox/ailox/fix/invalid-new-licenses
ac9b193 Merge pull request #899 from actions/dependabot/npm_and_yarn/octokit/plugin-p...
d630451 Pin @octokit/types version for compatibility
c8dafca Add dist for @octokit/plugin-paginate-rest version bump
bc858b5 Bump @octokit/plugin-paginate-rest from 9.1.5 to 9.2.2
Additional commits viewable in compare view

Updates peter-evans/dockerhub-description from 4.0.0 to 4.0.1

Release notes

Sourced from peter-evans/dockerhub-description's releases.

Docker Hub Description v4.0.1

What's Changed

build(deps-dev): bump @types/node from 16.18.73 to 16.18.76 by @dependabot in peter-evans/dockerhub-description#247

build(deps): bump peter-evans/create-pull-request from 5 to 6 by @dependabot in peter-evans/dockerhub-description#249

build(deps-dev): bump prettier from 3.2.4 to 3.2.5 by @dependabot in peter-evans/dockerhub-description#250

build(deps-dev): bump @types/node from 16.18.76 to 16.18.79 by @dependabot in peter-evans/dockerhub-description#251

build(deps-dev): bump @types/node from 16.18.79 to 16.18.80 by @dependabot in peter-evans/dockerhub-description#252

build(deps-dev): bump @types/node from 16.18.80 to 16.18.82 by @dependabot in peter-evans/dockerhub-description#253

build(deps-dev): bump eslint from 8.56.0 to 8.57.0 by @dependabot in peter-evans/dockerhub-description#254

build(deps-dev): bump @types/node from 16.18.82 to 16.18.83 by @dependabot in peter-evans/dockerhub-description#255

build(deps-dev): bump @types/node from 16.18.83 to 16.18.86 by @dependabot in peter-evans/dockerhub-description#256

build(deps-dev): bump eslint-plugin-github from 4.10.1 to 4.10.2 by @dependabot in peter-evans/dockerhub-description#257

build(deps-dev): bump @types/node from 16.18.86 to 16.18.87 by @dependabot in peter-evans/dockerhub-description#258

build(deps-dev): bump @types/node from 16.18.87 to 16.18.89 by @dependabot in peter-evans/dockerhub-description#259

build(deps-dev): bump @types/node from 16.18.89 to 16.18.91 by @dependabot in peter-evans/dockerhub-description#260

build(deps-dev): bump @types/node from 16.18.91 to 16.18.93 by @dependabot in peter-evans/dockerhub-description#261

build(deps-dev): bump @types/node from 16.18.93 to 16.18.95 by @dependabot in peter-evans/dockerhub-description#262

build(deps-dev): bump @types/node from 16.18.95 to 16.18.96 by @dependabot in peter-evans/dockerhub-description#263

build(deps-dev): bump @types/node from 16.18.96 to 16.18.97 by @dependabot in peter-evans/dockerhub-description#264

build(deps-dev): bump prettier from 3.2.5 to 3.3.0 by @dependabot in peter-evans/dockerhub-description#265

build(deps-dev): bump prettier from 3.3.0 to 3.3.1 by @dependabot in peter-evans/dockerhub-description#266

build(deps-dev): bump @types/node from 16.18.97 to 16.18.98 by @dependabot in peter-evans/dockerhub-description#267

build(deps-dev): bump braces from 3.0.2 to 3.0.3 by @dependabot in peter-evans/dockerhub-description#268

build(deps-dev): bump prettier from 3.3.1 to 3.3.2 by @dependabot in peter-evans/dockerhub-description#269

build(deps-dev): bump ws from 7.5.9 to 7.5.10 by @dependabot in peter-evans/dockerhub-description#270

build(deps-dev): bump @types/node from 16.18.98 to 16.18.101 by @dependabot in peter-evans/dockerhub-description#271

build(deps-dev): bump prettier from 3.3.2 to 3.3.3 by @dependabot in peter-evans/dockerhub-description#272

build(deps-dev): bump @types/node from 16.18.101 to 16.18.103 by @dependabot in peter-evans/dockerhub-description#273

build(deps-dev): bump eslint-plugin-prettier from 5.1.3 to 5.2.1 by @dependabot in peter-evans/dockerhub-description#274

build(deps-dev): bump @types/node from 16.18.103 to 16.18.104 by @dependabot in peter-evans/dockerhub-description#275

build(deps-dev): bump @types/node from 16.18.104 to 16.18.105 by @dependabot in peter-evans/dockerhub-description#276

build(deps-dev): bump @types/node from 16.18.105 to 16.18.106 by @dependabot in peter-evans/dockerhub-description#277

build(deps): bump peter-evans/create-pull-request from 6 to 7 by @dependabot in peter-evans/dockerhub-description#278

build(deps-dev): bump @types/node from 16.18.106 to 16.18.108 by @dependabot in peter-evans/dockerhub-description#279

build(deps-dev): bump eslint from 8.57.0 to 8.57.1 by @dependabot in peter-evans/dockerhub-description#280

build(deps-dev): bump @vercel/ncc from 0.38.1 to 0.38.2 by @dependabot in peter-evans/dockerhub-description#281

build(deps-dev): bump @types/node from 16.18.108 to 16.18.112 by @dependabot in peter-evans/dockerhub-description#282

Update distribution by @actions-bot in peter-evans/dockerhub-description#283

build(deps): bump @actions/core from 1.10.1 to 1.11.1 by @dependabot in peter-evans/dockerhub-description#284

Update distribution by @actions-bot in peter-evans/dockerhub-description#285

build(deps-dev): bump @types/node from 16.18.112 to 16.18.113 by @dependabot in peter-evans/dockerhub-description#286

build(deps-dev): bump @types/node from 16.18.113 to 16.18.114 by @dependabot in peter-evans/dockerhub-description#287

build(deps-dev): bump @types/node from 16.18.114 to 16.18.115 by @dependabot in peter-evans/dockerhub-description#288

build(deps-dev): bump @types/node from 16.18.115 to 16.18.119 by @dependabot in peter-evans/dockerhub-description#290

build(deps-dev): bump @vercel/ncc from 0.38.2 to 0.38.3 by @dependabot in peter-evans/dockerhub-description#291

build(deps-dev): bump @types/node from 16.18.119 to 16.18.121 by @dependabot in peter-evans/dockerhub-description#293

build(deps-dev): bump prettier from 3.3.3 to 3.4.1 by @dependabot in peter-evans/dockerhub-description#292

build(deps-dev): bump prettier from 3.4.1 to 3.4.2 by @dependabot in peter-evans/dockerhub-description#295

build(deps-dev): bump @types/node from 16.18.121 to 16.18.122 by @dependabot in peter-evans/dockerhub-description#296

build(deps-dev): bump @types/node from 16.18.122 to 16.18.123 by @dependabot in peter-evans/dockerhub-description#297

... (truncated)

Commits

0505d8b fix: enable-url-completion input treating the string "false" as true (#307)
d40710d build(deps-dev): bump eslint-plugin-prettier from 5.2.3 to 5.2.5 (#308)
e12dc49 build(deps-dev): bump prettier from 3.5.2 to 3.5.3 (#306)
83ee4db build(deps-dev): bump prettier from 3.5.1 to 3.5.2 (#305)
1f8ca78 build(deps-dev): bump prettier from 3.5.0 to 3.5.1 (#304)
c2fad95 build(deps-dev): bump prettier from 3.4.2 to 3.5.0 (#302)
e4f4207 build(deps-dev): bump @types/node from 16.18.125 to 16.18.126 (#303)
2a4d0d8 build(deps-dev): bump @types/node from 16.18.124 to 16.18.125 (#301)
8c1566c build(deps-dev): bump @types/node from 16.18.123 to 16.18.124 (#299)
7865ba6 build(deps-dev): bump eslint-plugin-prettier from 5.2.1 to 5.2.3 (#300)
Additional commits viewable in compare view

Updates 8398a7/action-slack from 3.16.2 to 3.18.0

Release notes

Sourced from 8398a7/action-slack's releases.

Release v3.18.0

Fix

Add missing space to AS_AUTHOR between name and email #257

Release v3.17.0

Feature

Improve workflowRun Slack notification title for clarity #255

Commits

1750b50 [command] npm run release
293357a Merge remote-tracking branch 'origin/master' into v3
8d62244 bump 3.18.0
87071b5 Add missing space to AS_AUTHOR between name and email (#257)
08ee8e5 Merge pull request #260 from 8398a7/dependabot/npm_and_yarn/braces-3.0.3
fe1403f Merge pull request #262 from 8398a7/dependabot/npm_and_yarn/axios-1.8.4
defc443 Bump axios from 1.6.7 to 1.8.4
ede6ac0 Bump braces from 3.0.2 to 3.0.3
ce4716a Merge pull request #254 from 8398a7/dependabot/npm_and_yarn/follow-redirects-...
2504caf Bump follow-redirects from 1.15.5 to 1.15.6
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…#7595) Bumps the actions group with 4 updates in the / directory: [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action), [actions/dependency-review-action](https://github.com/actions/dependency-review-action), [peter-evans/dockerhub-description](https://github.com/peter-evans/dockerhub-description) and [8398a7/action-slack](https://github.com/8398a7/action-slack). Updates `goreleaser/goreleaser-action` from 6.2.1 to 6.3.0 - [Release notes](https://github.com/goreleaser/goreleaser-action/releases) - [Commits](goreleaser/goreleaser-action@90a3faa...9c156ee) Updates `actions/dependency-review-action` from 4.5.0 to 4.6.0 - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](actions/dependency-review-action@3b139cf...ce3cf95) Updates `peter-evans/dockerhub-description` from 4.0.0 to 4.0.1 - [Release notes](https://github.com/peter-evans/dockerhub-description/releases) - [Commits](peter-evans/dockerhub-description@e98e4d1...0505d8b) Updates `8398a7/action-slack` from 3.16.2 to 3.18.0 - [Release notes](https://github.com/8398a7/action-slack/releases) - [Commits](8398a7/action-slack@28ba43a...1750b50) --- updated-dependencies: - dependency-name: goreleaser/goreleaser-action dependency-version: 6.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: actions/dependency-review-action dependency-version: 4.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: peter-evans/dockerhub-description dependency-version: 4.0.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: 8398a7/action-slack dependency-version: 3.18.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

codecov · 2025-04-02T10:46:27Z

Codecov Report

All modified and coverable lines are covered by tests ✅

Please upload report for BASE (release-4.0@eef9326). Learn more about missing BASE report.

Additional details and impacted files

@@              Coverage Diff               @@
##             release-4.0    #7598   +/-   ##
==============================================
  Coverage               ?   51.69%           
==============================================
  Files                  ?       89           
  Lines                  ?    20836           
  Branches               ?        0           
==============================================
  Hits                   ?    10771           
  Misses                 ?     9634           
  Partials               ?      431

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

…4cffc108656c1441eb6751a8358

nginx-bot requested a review from a team as a code owner April 2, 2025 10:41

nginx-bot added chore Pull requests for routine tasks dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code labels Apr 2, 2025

github-actions bot removed the dependencies Pull requests that update a dependency file label Apr 2, 2025

pdabelf5 approved these changes Apr 2, 2025

View reviewed changes

AlexFenlon approved these changes Apr 2, 2025

View reviewed changes

pdabelf5 enabled auto-merge (squash) April 2, 2025 13:22

Merge branch 'release-4.0' into cherry-pick-release-4.0-059789b517c3c…

409ba47

…4cffc108656c1441eb6751a8358

pdabelf5 merged commit 823937c into release-4.0 Apr 2, 2025
70 checks passed

pdabelf5 deleted the cherry-pick-release-4.0-059789b517c3c4cffc108656c1441eb6751a8358 branch April 2, 2025 13:47

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[cherry-pick] chore(deps): bump the actions group across 1 directory with 4 updates #7598

[cherry-pick] chore(deps): bump the actions group across 1 directory with 4 updates #7598

Uh oh!

nginx-bot commented Apr 2, 2025

Uh oh!

codecov bot commented Apr 2, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

[cherry-pick] chore(deps): bump the actions group across 1 directory with 4 updates #7598

[cherry-pick] chore(deps): bump the actions group across 1 directory with 4 updates #7598

Uh oh!

Conversation

nginx-bot commented Apr 2, 2025

v6.3.0

v4.6.0

What's Changed

New Contributors

Docker Hub Description v4.0.1

What's Changed

Release v3.18.0

Fix

Release v3.17.0

Feature

Uh oh!

codecov bot commented Apr 2, 2025

Codecov Report

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants