build(deps): bump the github-actions group with 4 updates

[dependabot]

Bumps the github-actions group with 4 updates: docker/login-action, oras-project/setup-oras, marocchino/sticky-pull-request-comment and aws-actions/configure-aws-credentials.

Updates docker/login-action from 4.0.0 to 4.1.0

Release notes

Sourced from docker/login-action's releases.

v4.1.0

• Fix scoped Docker Hub cleanup path when registry is omitted by @​crazy-max in docker/login-action#945
• Bump @​aws-sdk/client-ecr and @​aws-sdk/client-ecr-public to 3.1020.0 in docker/login-action#930
• Bump @​docker/actions-toolkit from 0.77.0 to 0.86.0 in docker/login-action#932 docker/login-action#936
• Bump brace-expansion from 1.1.12 to 1.1.13 in docker/login-action#952
• Bump fast-xml-parser from 5.3.4 to 5.3.6 in docker/login-action#942
• Bump flatted from 3.3.3 to 3.4.2 in docker/login-action#944
• Bump glob from 10.3.12 to 10.5.0 in docker/login-action#940
• Bump handlebars from 4.7.8 to 4.7.9 in docker/login-action#949
• Bump http-proxy-agent and https-proxy-agent to 8.0.0 in docker/login-action#937
• Bump lodash from 4.17.23 to 4.18.1 in docker/login-action#958
• Bump minimatch from 3.1.2 to 3.1.5 in docker/login-action#941
• Bump picomatch from 4.0.3 to 4.0.4 in docker/login-action#948
• Bump undici from 6.23.0 to 6.24.1 in docker/login-action#938

Full Changelog: docker/login-action@v4.0.0...v4.1.0

Commits

• 4907a6d Merge pull request #930 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...
• 1e233e6 chore: update generated content
• 6c24ead build(deps): bump the aws-sdk-dependencies group with 2 updates
• ee034d7 Merge pull request #958 from docker/dependabot/npm_and_yarn/lodash-4.18.1
• 1527209 Merge pull request #937 from docker/dependabot/npm_and_yarn/proxy-agent-depen...
• d39362a build(deps): bump lodash from 4.17.23 to 4.18.1
• a6f092b chore: update generated content
• 60953f0 build(deps): bump the proxy-agent-dependencies group with 2 updates
• 62c6885 Merge pull request #936 from docker/dependabot/npm_and_yarn/docker/actions-to...
• 102c0e6 chore: update generated content
• Additional commits viewable in compare view

Updates oras-project/setup-oras from 1.2.4 to 2.0.0

Release notes

Sourced from oras-project/setup-oras's releases.

v2.0.0

Highlights

• Support ORAS CLI v1.3.1
• Migrate action runtime from node20 to node24 (#153)
• Pin undici to >=6.24.1 to address 5 CVEs: GHSA-f269-vfmq-vjvj, GHSA-2mjp-6q6p-2qxm, GHSA-vrm6-8vpv-qv8q, GHSA-v9p9-hfj2-hcw8, GHSA-4992-7rv2-5pvq
• Bump @actions/core from ^2.x to ^3.0.0 (ESM-only)
• Bump @actions/tool-cache from ^3.x to ^4.0.0 (ESM-only)
• Replace @vercel/ncc with esbuild as the build bundler

What's Changed

• Add version 1.3.1 with checksums (#150)
• feat: migrate action runtime from node20 to node24 (#153)
• fix: pin undici to >=6.24.1 to address CVEs (#157)
• chore(deps): bump @​actions/core to 3.x and @​actions/tool-cache to 4.x (#159)
• chore(deps): Bump @​actions/core from 1.11.1 to 2.0.1 (#130)
• chore(deps): Bump typescript from 5.9.2 to 6.0.2 (#151)
• chore(deps): Bump actions/checkout from 5 to 6 (#128)
• chore(deps): Bump actions/setup-node from 5 to 6 (#123)
• chore(deps): Bump @​types/node from 24.12.0 to 25.5.2 (multiple PRs)

Full Changelog: oras-project/setup-oras@v1.2.4...v2.0.0

Commits

• 38de303 chore: release v2.0.0 (#160)
• bbd8d79 chore(deps): bump @​actions/core to 3.x and @​actions/tool-cache to 4.x (#159)
• 44d83f3 chore(deps): Bump @​types/node from 24.12.0 to 25.5.2 (#158)
• dd86831 fix: pin undici to >=6.24.1 to address CVEs (#157)
• be45691 feat: migrate action runtime from node20 to node24 (#153)
• f0fe559 Add version 1.3.1 with checksums from … (#150)
• 0db6c65 chore(deps): Bump @​types/node from 25.0.3 to 25.5.0 (#149)
• 8a0db1e chore(deps): Bump typescript from 5.9.3 to 6.0.2 (#151)
• bd8ffed chore: add TerryHowe to owners and code owners (#152)
• c33dd38 chore(deps): Bump @​types/node from 25.0.2 to 25.0.3 (#131)
• Additional commits viewable in compare view

Updates marocchino/sticky-pull-request-comment from 3.0.2 to 3.0.3

Release notes

Sourced from marocchino/sticky-pull-request-comment's releases.

v3.0.3

What's Changed

• Move validateExclusiveModes before getBody for fail-fast validation by @​Copilot in marocchino/sticky-pull-request-comment#1663
• Add number_force that overrides pull_request number by @​rossjrw in marocchino/sticky-pull-request-comment#1652
• build(deps-dev): Bump @​biomejs/biome from 2.4.6 to 2.4.7 by @​dependabot[bot] in marocchino/sticky-pull-request-comment#1666
• build(deps): Bump picomatch from 4.0.3 to 4.0.4 by @​dependabot[bot] in marocchino/sticky-pull-request-comment#1673
• build(deps-dev): Bump vitest from 4.1.0 to 4.1.2 by @​dependabot[bot] in marocchino/sticky-pull-request-comment#1674
• build(deps-dev): Bump rollup from 4.59.0 to 4.60.1 by @​dependabot[bot] in marocchino/sticky-pull-request-comment#1676
• build(deps-dev): Bump @​types/node from 25.5.0 to 25.5.2 by @​dependabot[bot] in marocchino/sticky-pull-request-comment#1677
• build(deps-dev): Bump @​biomejs/biome from 2.4.7 to 2.4.10 by @​dependabot[bot] in marocchino/sticky-pull-request-comment#1675
• build(deps): Bump brace-expansion by @​dependabot[bot] in marocchino/sticky-pull-request-comment#1678
• build(deps-dev): Bump typescript from 5.9.3 to 6.0.2 by @​dependabot[bot] in marocchino/sticky-pull-request-comment#1670

New Contributors

• @​rossjrw made their first contribution in marocchino/sticky-pull-request-comment#1652

Full Changelog: marocchino/sticky-pull-request-comment@v3.0.2...v3.0.3

Commits

• d4d6b09 📦️ Build
• 3868baa build(deps-dev): Bump typescript from 5.9.3 to 6.0.2 (#1670)
• 26f73b0 build(deps): Bump brace-expansion (#1678)
• f6e304e build(deps-dev): Bump @​biomejs/biome from 2.4.7 to 2.4.10 (#1675)
• a7709b6 build(deps-dev): Bump @​types/node from 25.5.0 to 25.5.2 (#1677)
• 0746c6f build(deps-dev): Bump rollup from 4.59.0 to 4.60.1 (#1676)
• 2a4b1c3 build(deps-dev): Bump vitest from 4.1.0 to 4.1.2 (#1674)
• 1ab42d2 build(deps): Bump picomatch from 4.0.3 to 4.0.4 (#1673)
• 5a61de7 build(deps-dev): Bump @​biomejs/biome from 2.4.6 to 2.4.7 (#1666)
• 7cb1e16 Add number_force that overrides pull_request number (#1652)
• Additional commits viewable in compare view

Updates aws-actions/configure-aws-credentials from 6.0.0 to 6.1.0

Release notes

Sourced from aws-actions/configure-aws-credentials's releases.

v6.1.0

6.1.0 (2026-04-06)

Features

• add skip cleanup option (#1716) (11b1c58), closes #1545
• Support usage of AWS Profiles (#1696) (a7f0c82)

Changelog

Sourced from aws-actions/configure-aws-credentials's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

6.1.0 (2026-04-06)

Features

• add skip cleanup option (#1716) (11b1c58), closes #1545
• Support usage of AWS Profiles (#1696) (a7f0c82)

6.0.0 (2026-02-04)

⚠ BREAKING CHANGES

• Update action to use node24 (#1632) (a7a2c11)

Features

• add support to define transitive tag keys (#1316) (232435c) (930ebd9)

Bug Fixes

• properly output aws-account-id and authenticated-arn when using role-chaining (#1633) (7ceaf96)

5.1.1 (2025-11-24)

Miscellaneous Chores

• release 5.1.1 (56d6a58)

5.1.0 (2025-10-06)

Features

• Add global timeout support (#1487) (1584b8b)
• add no-proxy support (#1482) (dde9b22)
• Improve debug logging in retry logic (#1485) (97ef425)

Bug Fixes

• properly expose getProxyForUrl (introduced in #1482) (#1486) (cea4298)

5.0.0 (2025-09-03)

... (truncated)

Commits

• ec61189 chore(main): release 6.1.0 (#1717)
• 81676eb chore(deps): bump vite from 7.1.11 to 7.3.2 (#1721)
• dc64d28 chore(deps-dev): bump lodash from 4.17.23 to 4.18.1 (#1720)
• bc0a50a chore: Update dist
• 9ea6412 chore(deps): bump proxy-agent from 6.5.0 to 7.0.0 (#1686)
• 0a87594 chore: Update dist
• a7f0c82 feat: Support usage of AWS Profiles (#1696)
• e6bb6e5 chore: add text to CONTRIBUTING.md (#1719)
• 11b1c58 feat: add skip cleanup option (#1716)
• 51635db chore: Update dist
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[radius-functional-tests]

Radius functional test overview

🔍 Go to test action run

Click here to see the test run details

Name	Value
Repository	radius-project/radius
Commit ref	1391caf
Unique ID	func02a197c612
Image tag	pr-func02a197c612

• gotestsum 1.13.0
• KinD: v0.29.0
• Dapr: 1.14.4
• Azure KeyVault CSI driver: 1.4.2
• Azure Workload identity webhook: 1.3.0
• Bicep recipe location ghcr.io/radius-project/dev/test/testrecipes/test-bicep-recipes/<name>:pr-func02a197c612
• Terraform recipe location http://tf-module-server.radius-test-tf-module-server.svc.cluster.local/<name>.zip (in cluster)
• applications-rp test image location: ghcr.io/radius-project/dev/applications-rp:pr-func02a197c612
• dynamic-rp test image location: ghcr.io/radius-project/dev/dynamic-rp:pr-func02a197c612
• controller test image location: ghcr.io/radius-project/dev/controller:pr-func02a197c612
• ucp test image location: ghcr.io/radius-project/dev/ucpd:pr-func02a197c612
• deployment-engine test image location: ghcr.io/radius-project/deployment-engine:latest

Test Status

⌛ Building Radius and pushing container images for functional tests...
✅ Container images build succeeded
⌛ Publishing Bicep Recipes for functional tests...
✅ Recipe publishing succeeded
⌛ Starting corerp-cloud functional tests...
⌛ Starting ucp-cloud functional tests...
✅ ucp-cloud functional tests succeeded
✅ corerp-cloud functional tests succeeded

[github-actions]

Unit Tests

    2 files  ±0    415 suites  ±0   6m 49s ⏱️ +11s
4 872 tests ±0  4 870 ✅ ±0  2 💤 ±0  0 ❌ ±0 
5 774 runs  ±0  5 772 ✅ ±0  2 💤 ±0  0 ❌ ±0 

Results for commit 1391caf. ± Comparison against base commit 6f3a09b.