Skip to content

build(deps): Bump the github-actions group across 1 directory with 4 updates#3

Open
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot/github_actions/github-actions-00ba67de11
Open

build(deps): Bump the github-actions group across 1 directory with 4 updates#3
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot/github_actions/github-actions-00ba67de11

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github May 4, 2026

Bumps the github-actions group with 4 updates in the / directory: actions/checkout, jdx/mise-action, denoland/setup-deno and softprops/action-gh-release.

Updates actions/checkout from 4 to 6

Release notes

Sourced from actions/checkout's releases.

v6.0.0

What's Changed

Full Changelog: actions/checkout@v5.0.0...v6.0.0

v6-beta

What's Changed

Updated persist-credentials to store the credentials under $RUNNER_TEMP instead of directly in the local git config.

This requires a minimum Actions Runner version of v2.329.0 to access the persisted credentials for Docker container action scenarios.

v5.0.1

What's Changed

Full Changelog: actions/checkout@v5...v5.0.1

v5.0.0

What's Changed

⚠️ Minimum Compatible Runner Version

v2.327.1
Release Notes

Make sure your runner is updated to this version or newer to use this release.

Full Changelog: actions/checkout@v4...v5.0.0

v4.3.1

What's Changed

Full Changelog: actions/checkout@v4...v4.3.1

v4.3.0

What's Changed

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

Changelog

v6.0.2

v6.0.1

v6.0.0

v5.0.1

v5.0.0

v4.3.1

v4.3.0

v4.2.2

v4.2.1

v4.2.0

v4.1.7

v4.1.6

... (truncated)

Commits

Updates jdx/mise-action from 2 to 4

Release notes

Sourced from jdx/mise-action's releases.

v4.0.0: Node.js 24 Runtime

A major version bump that updates the action's runtime from Node.js 20 to Node.js 24. GitHub has deprecated Node.js 20 for Actions and will force Node.js 24 as the default starting June 2, 2026. This release proactively adopts the new runtime to eliminate deprecation warnings and ensure continued compatibility.

Breaking Changes

  • The action now runs on the Node.js 24 runtime instead of Node.js 20. If your workflow pins jdx/mise-action@v3, you will continue to see deprecation warnings. Update to jdx/mise-action@v4 to resolve them:

    - uses: jdx/mise-action@v4

    This should be a seamless upgrade for the vast majority of users — no configuration changes are needed beyond updating the version reference.

Changed

New Contributors

Full Changelog: jdx/mise-action@v3...v4.0.0

v3.6.3

What's Changed

New Contributors

Full Changelog: jdx/mise-action@v3.6.2...v3.6.3

v3.6.2

What's Changed

New Contributors

... (truncated)

Changelog

Sourced from jdx/mise-action's changelog.

3.5.1 - 2025-11-24

🔍 Other Changes

  • Revert "feat(action): moved save cache to post step" (#329) by @​jdx in #329

3.5.0 - 2025-11-21

🚀 Features

New Contributors

3.4.1 - 2025-11-13

🐛 Bug Fixes

New Contributors

3.4.0 - 2025-10-31

🚀 Features

🐛 Bug Fixes

📚 Documentation

⚙️ Miscellaneous Tasks

... (truncated)

Commits
  • 1648a78 chore: release v4.0.1 (#406)
  • e2d499c ci: add workflow to auto-close stale PRs (#409)
  • 0cc0f19 fix: run npm install in pre-commit hook before build (#410)
  • 89c67a3 docs: bump more versions listed in README.md (#408)
  • 0409dde docs: bump versions listed im README.md (#407)
  • abadabd refactor: extract getCwd() helper to deduplicate working directory resolution...
  • c5b2043 chore(deps): update github/codeql-action digest to 603b797 (#404)
  • 71c0f0a chore(deps): lock file maintenance (#400)
  • c1ecc8f chore: release v4.0.0 (#398)
  • 1cbe8c5 chore(deps): update github/codeql-action digest to 820e316 (#397)
  • Additional commits viewable in compare view

Updates denoland/setup-deno from 1 to 2

Release notes

Sourced from denoland/setup-deno's releases.

v2.0.0

What's Changed

Full Changelog: denoland/setup-deno@v1.5.1...v2.0.0

v1.5.2

What's Changed

Full Changelog: denoland/setup-deno@v1.5.1...v1.5.2

v1.5.1

What's Changed

Full Changelog: denoland/setup-deno@v1.5.0...v1.5.1

v1.5.0

What's Changed

Full Changelog: denoland/setup-deno@v1.4.1...v1.5.0

1.4.1

What's Changed

  • docs: update readme

Full Changelog: denoland/setup-deno@1.4.0...v1.4.1

1.4.0

What's Changed

Full Changelog: denoland/setup-deno@v1.3.0...1.4.0

v1.3.0

What's Changed

Full Changelog: denoland/setup-deno@v1.2.0...v1.3.0

... (truncated)

Commits
  • 667a34c 2.0.3
  • 3f17b4e feat: upgrade Node.js runtime from node20 to node24 (#123)
  • 06fd750 docs: fix identifier for latest stable release (#115)
  • 587bed9 docs: condense Deno version information in one section (#100)
  • 2af9d57 docs: add lts as possible release-channel output (#99)
  • 0c3e771 Update actions/checkout (#106)
  • e95548e 2.0.3 (#102)
  • 8273ddd fix: switch back to package.json as it's necessary for GH actions (#101)
  • 609c005 feat: include a hash of deno.lock files in the cache key automatically (#98)
  • aa0fea1 feat: add built-in caching via inputs (#89)
  • Additional commits viewable in compare view

Updates softprops/action-gh-release from 2 to 3

Release notes

Sourced from softprops/action-gh-release's releases.

v3.0.0

3.0.0 is a major release that moves the action runtime from Node 20 to Node 24. Use v3 on GitHub-hosted runners and self-hosted fleets that already support the Node 24 Actions runtime. If you still need the last Node 20-compatible line, stay on v2.6.2.

What's Changed

Other Changes 🔄

  • Move the action runtime and bundle target to Node 24
  • Update @types/node to the Node 24 line and allow future Dependabot updates
  • Keep the floating major tag on v3; v2 remains pinned to the latest 2.x release

v2.6.2

What's Changed

Other Changes 🔄

Full Changelog: softprops/action-gh-release@v2...v2.6.2

v2.6.1

2.6.1 is a patch release focused on restoring linked discussion thread creation when discussion_category_name is set. It fixes [#764](https://github.com/softprops/action-gh-release/issues/764), where the draft-first publish flow stopped carrying the discussion category through the final publish step.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

Bug fixes 🐛

v2.6.0

2.6.0 is a minor release centered on previous_tag support for generate_release_notes, which lets workflows pin GitHub's comparison base explicitly instead of relying on the default range. It also includes the recent concurrent asset upload recovery fix, a working_directory docs sync, a checked-bundle freshness guard for maintainers, and clearer immutable-prerelease guidance where GitHub platform behavior imposes constraints on how prerelease asset uploads can be published.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

... (truncated)

Changelog

Sourced from softprops/action-gh-release's changelog.

0.1.13

  • fix issue with multiple runs concatenating release bodies #145

0.1.12

  • fix bug leading to empty strings substituted for inputs users don't provide breaking api calls #144

0.1.11

  • better error message on release create failed #143

0.1.10

  • fixed error message formatting for file uploads

0.1.9

  • add support for linking release to GitHub discussion #136

0.1.8

  • address recent warnings in assert upload api as well as introduce asset upload overrides, allowing for multiple runs for the same release with the same named asserts #134
  • fix backwards compatibility with GITHUB_TOKEN resolution. GITHUB_TOKEN is now resolved first from an env variable and then from an input #133
  • trim white space in provided tag_name #130

0.1.7

  • allow creating draft releases without a tag #95
  • Set default token for simpler setup #83
  • fix regression with action yml #126

0.1.6

This is a release catch up have a hiatus. Future releases will happen more frequently

  • Add 'fail_on_unmatched_files' input, useful for catching cases where your files input does not actually match what you expect #55
  • Add repository input, useful for creating a release in an external repository #61
  • Add release id to outputs, useful for referring to release in workflow steps following the step that uses this action #60
  • Add upload_url as action output, useful for managing uploads separately #75
  • Support custom target_commitish value, useful to customize the default #76
  • fix body_path input first then fall back on body input. This was the originally documented precedence but was implemented in the opposite order! #85
  • Retain original release info if the keys are not set, useful for filling in blanks for a release you've already started separately #109
  • Limit number of times github api request to create a release is retried, useful for avoiding eating up your rate limit and action minutes due to either an invalid token or other circumstance causing the api call to fail #111

0.1.5

  • Added support for specifying tag name #39

0.1.4

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): Bump the github-actions group across 1 directory with 4 …
317e19d 
…updates

Bumps the github-actions group with 4 updates in the / directory: [actions/checkout](https://github.com/actions/checkout), [jdx/mise-action](https://github.com/jdx/mise-action), [denoland/setup-deno](https://github.com/denoland/setup-deno) and [softprops/action-gh-release](https://github.com/softprops/action-gh-release).


Updates `actions/checkout` from 4 to 6
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@v4...v6)

Updates `jdx/mise-action` from 2 to 4
- [Release notes](https://github.com/jdx/mise-action/releases)
- [Changelog](https://github.com/jdx/mise-action/blob/main/CHANGELOG.md)
- [Commits](jdx/mise-action@v2...v4)

Updates `denoland/setup-deno` from 1 to 2
- [Release notes](https://github.com/denoland/setup-deno/releases)
- [Commits](denoland/setup-deno@v1.0.0...v2)

Updates `softprops/action-gh-release` from 2 to 3
- [Release notes](https://github.com/softprops/action-gh-release/releases)
- [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md)
- [Commits](softprops/action-gh-release@v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: jdx/mise-action
  dependency-version: '4'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: denoland/setup-deno
  dependency-version: '2'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: softprops/action-gh-release
  dependency-version: '3'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Copy Markdown
Author

dependabot Bot commented on behalf of github May 4, 2026

Labels

The following labels could not be found: dependencies, github-actions. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot Bot requested a review from lotsofthoughts as a code owner May 4, 2026 06:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lotsofthoughts lotsofthoughts Awaiting requested review from lotsofthoughts lotsofthoughts is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants