Bump the actions group with 7 updates

[dependabot]

Bumps the actions group with 7 updates:

Package	From	To
mathieudutour/github-tag-action	6.1	6.2
actions/upload-artifact	3	4
actions/configure-pages	3	5
actions/download-artifact	3	4
actions/upload-pages-artifact	2	3
actions/deploy-pages	2	4
hynek/build-and-inspect-python-package	1	2

Updates mathieudutour/github-tag-action from 6.1 to 6.2

Commits

• a22cf08 check in prod dependencies
• f36074f version 6.2
• f40d7ee match latest tag regex (#171)
• 1bf7977 fix: add previous_version to action.yml (#183)
• 5a16d14 Bump tough-cookie from 4.0.0 to 4.1.3 (#184)
• 71c3689 Update README.md (#205)
• a079ba4 Update Node version to 20 (#202)
• 86301c8 Revert "Use ${{github.token}} as default" (#167)
• 5bd9038 Bump minimatch from 3.0.4 to 3.1.2 (#162)
• ac8cb38 getValidTags() should exclude tags that do not match the prefixRegex (#158)
• Additional commits viewable in compare view

Updates actions/upload-artifact from 3 to 4

Release notes

Sourced from actions/upload-artifact's releases.

v4.0.0

What's Changed

The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.

ℹ️ However, this is a major update that includes breaking changes. Artifacts created with versions v3 and below are not compatible with the v4 actions. Uploads and downloads must use the same major actions versions. There are also key differences from previous versions that may require updates to your workflows.

For more information, please see:

1. The changelog post.
2. The README.
3. The migration documentation.
4. As well as the underlying npm package, @​actions/artifact documentation.

New Contributors

• @​vmjoseph made their first contribution in actions/upload-artifact#464

Full Changelog: actions/upload-artifact@v3...v4.0.0

v3.1.3

What's Changed

• chore(github): remove trailing whitespaces by @​ljmf00 in actions/upload-artifact#313
• Bump @​actions/artifact version to v1.1.2 by @​bethanyj28 in actions/upload-artifact#436

Full Changelog: actions/upload-artifact@v3...v3.1.3

v3.1.2

• Update all @actions/* NPM packages to their latest versions- #374
• Update all dev dependencies to their most recent versions - #375

v3.1.1

• Update actions/core package to latest version to remove set-output deprecation warning #351

v3.1.0

What's Changed

• Bump @​actions/artifact to v1.1.0 (actions/upload-artifact#327)
  • Adds checksum headers on artifact upload (actions/toolkit#1095) (actions/toolkit#1063)

Commits

• 6546280 updating package version
• c004fb4 Merge branch 'main' into eggyhead/use-artifact-v2.1.6
• 90aba49 updating toolkit artifact dependency to 2.1.6
• b06cde3 Merge pull request #563 from actions/eggyhead/release-4.3.2
• 1746f4a Revert "updating to release 4.3.2"
• 31685d0 updating to release 4.3.2
• 18bf333 Merge pull request #562 from actions/eggyhead/update-artifact-v215
• dac413b update package lock version
• bb3b4a3 updating package version
• 3e3da83 updating artifact and core dependencies
• Additional commits viewable in compare view

Updates actions/configure-pages from 3 to 5

Release notes

Sourced from actions/configure-pages's releases.

v5.0.0

Breaking Changes

⚠️ This version contains breaking changes! ⚠️

• When using the input param static_site_generator: next:
  • Added support for Next.js >= 13.3.0
  • Consequently, also dropped support for Next.js < 13.3.0

Full Changelog

• Attempt to auto-detect configuration files with varying file extensions @​JamesMGreene (#139)
• Convert errors into Actions-compatible logging with annotations @​JamesMGreene (#138)
• Bump @​actions/github from 5.1.1 to 6.0.0 @​dependabot (#123)
• Bump the non-breaking-changes group with 2 updates @​dependabot (#136)
• Update the Next.js configuration for v14 @​JamesMGreene (#137)
• Bump the non-breaking-changes group with 3 updates @​dependabot (#132)
• Bump release-drafter/release-drafter from 5 to 6 @​dependabot (#133)
• Bump github/codeql-action from 2 to 3 @​dependabot (#127)
• Bump actions/checkout from 3 to 4 @​dependabot (#120)
• Bump actions/setup-node from 3 to 4 @​dependabot (#118)
• Bump the non-breaking-changes group with 1 update @​dependabot (#131)
• Update Dependabot config to group non-breaking changes @​JamesMGreene (#130)

See details of all code changes since previous release.

v4.0.0

Changelog

• Use a centralized .node-version file @​JamesMGreene (#117)
• Update action to node20 @​takost (#108)

See details of all code changes since previous release.

v3.0.7

Changelog

• Update Actions workflows to use Node 20.x @​JamesMGreene (#116)
• Bump eslint-plugin-github from 4.7.0 to 4.10.1 @​dependabot (#114)
• Bump word-wrap from 1.2.3 to 1.2.5 @​dependabot (#113)
• Bump jest from 29.5.0 to 29.7.0 @​dependabot (#112)
• Bump @​babel/traverse from 7.21.3 to 7.23.5 @​dependabot (#110)
• Bump espree from 9.5.2 to 9.6.1 @​dependabot (#111)
• Bump eslint from 8.38.0 to 8.40.0 @​dependabot (#93)

See details of all code changes since previous release.

v3.0.6

Changelog

... (truncated)

Commits

• 983d773 Merge pull request #139 from actions/config-auto-detect
• 9cf6e24 Tweak comment
• f304bd8 Update distributables
• 215cd51 Attempt to detect existing config files matching the expected basename plus o...
• e9382ac Front-load the file extension warning
• 7781abd Merge pull request #138 from actions/error-utils
• fc47e3c Update distributables
• 9c9f8a2 Update tests to use the Octokit RequestError class
• 9a4705d Update distributables
• f6ded38 Fix syntax error and formatting
• Additional commits viewable in compare view

Updates actions/download-artifact from 3 to 4

Release notes

Sourced from actions/download-artifact's releases.

v4.0.0

What's Changed

The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.

ℹ️ However, this is a major update that includes breaking changes. Artifacts created with versions v3 and below are not compatible with the v4 actions. Uploads and downloads must use the same major actions versions. There are also key differences from previous versions that may require updates to your workflows.

For more information, please see:

1. The changelog post.
2. The README.
3. The migration documentation.
4. As well as the underlying npm package, @​actions/artifact documentation.

New Contributors

• @​bflad made their first contribution in actions/download-artifact#194

Full Changelog: actions/download-artifact@v3...v4.0.0

v3.0.2

• Bump @actions/artifact to v1.1.1 - actions/download-artifact#195
• Fixed a bug in Node16 where if an HTTP download finished too quickly (<1ms, e.g. when it's mocked) we attempt to delete a temp file that has not been created yet Migrate dev environment and workflows to node16  actions/toolkit#1278

v3.0.1

• Bump @​actions/core to 1.10.0

Commits

• 65a9edc Merge pull request #325 from bethanyj28/main
• fdd1595 licensed
• c13dba1 update @​actions/artifact dependency
• 0daa75e Merge pull request #324 from actions/eggyhead/use-artifact-v2.1.6
• 9c19ed7 Merge branch 'main' into eggyhead/use-artifact-v2.1.6
• 3d3ea87 updating license
• 89af5db updating artifact package v2.1.6
• b4aefff Merge pull request #323 from actions/eggyhead/update-artifact-v215
• 8caf195 package lock update
• d7a2ec4 updating package version
• Additional commits viewable in compare view

Updates actions/upload-pages-artifact from 2 to 3

Release notes

Sourced from actions/upload-pages-artifact's releases.

v3.0.0

Changelog

• Use v4 upload-artifact tag @​robherley (#80)
• Upload pages artifact with upload-artifact v4-beta @​konradpabjan (#78)

To deploy a GitHub Pages site which has been uploaded with this version of actions/upload-pages-artifact, you must also use actions/deploy-pages@v4 or newer.

⚠️ For use with products other than GitHub.com, such as GitHub Enterprise Server, please be aware that this new Actions artifacts service is not yet supported in the latest GHES release at this time.

See details of all code changes since previous release.

Commits

• 56afc60 Merge pull request #94 from SilverRainZ/main
• d12fdfb Merge branch 'main' into main
• aef5542 Merge pull request #88 from uiolee/patch-1
• 29cedd7 Merge branch 'main' into patch-1
• a69c22e Merge pull request #92 from actions/dependabot/github_actions/non-breaking-ch...
• 794e304 Group tar's output to prevent it from messing up logs
• 14007f6 Bump the non-breaking-changes group with 1 update
• 0191170 Merge pull request #91 from actions/dependabot-grouping
• 0e7832d Update Dependabot config to group non-breaking changes
• 1a6d9fa Update README.md
• Additional commits viewable in compare view

Updates actions/deploy-pages from 2 to 4

Release notes

Sourced from actions/deploy-pages's releases.

v4.0.0

Changelog

• Deploy pages using artifact IDs @​konradpabjan (#251)
• This version requires the permission actions: read in the workflows which use it.

---

ℹ️ This version of actions/deploy-pages is ONLY compatible with artifacts uploaded by either:

• actions/upload-pages-artifact@v3 or newer
• actions/upload-artifact@v4 or newer.

See details of all code changes since previous release.

⚠️ For use with products other than GitHub.com, such as GitHub Enterprise Server, please consult the compatibility table.

v3.0.1

Changelog

• Bump eslint from 8.54.0 to 8.55.0 @​dependabot (#266)
• Bump nock from 13.3.8 to 13.4.0 @​dependabot (#267)
• Bump eslint-config-prettier from 9.0.0 to 9.1.0 @​dependabot (#268)
• Bump @​actions/core from 1.10.0 to 1.10.1 @​dependabot (#269)
• Bump @​actions/github from 5.1.1 to 6.0.0 @​dependabot (#261)
• Update compatibility table for v3 @​JamesMGreene (#270)

🧰 Maintenance

• chore/docs: update version, fix typos @​kbdharun (#272)

---

See details of all code changes since previous release.

⚠️ For use with products other than GitHub.com, such as GitHub Enterprise Server, please consult the compatibility table.

v3.0.0

Changelog

• Update action to node20 @​takost (#256)

---

See details of all code changes since previous release.

⚠️ For use with products other than GitHub.com, such as GitHub Enterprise Server, please consult the compatibility table.

v2.0.5

Changelog

... (truncated)

Commits

• d6db901 Merge pull request #324 from actions/error-message-request-id
• 055f425 compile changes
• 5ab929b Include request id in the error message of an error response
• 3ff795b Merge pull request #318 from actions/dependabot/npm_and_yarn/non-breaking-cha...
• f5a2f0d Update distributables after Dependabot 🤖
• 1364cde Bump the non-breaking-changes group with 2 updates
• 2ed07f7 Merge pull request #316 from actions/dependabot/npm_and_yarn/non-breaking-cha...
• d5a892b Bump the non-breaking-changes group with 1 update
• 05977f5 Merge pull request #314 from actions/dependabot/npm_and_yarn/non-breaking-cha...
• 9414024 Update distributables after Dependabot 🤖
• Additional commits viewable in compare view

Updates hynek/build-and-inspect-python-package from 1 to 2

Release notes

Sourced from hynek/build-and-inspect-python-package's releases.

v2.0.0

This release switches to actions/upload-artifact v4, which is incompatible with older versions of actions/download-artifact (and vice versa).

• If you're using download-artifact@v3, do not upgrade.
• If you want to use download-artifact@v4, you must upgrade.

v1.5.5

This is the 1.5 equivalent of 2.0.2 to make the action keep working for those who are stuck on upload/download@v3.

Changed

• Dependency updates for Metadata-Version 2.3 support (as used, for example, by Hatchling 1.22.1).

v1.5.4

Fixed

• Stop trying to cache. Fixes Error: No file in /home/runner/work/pytest-cpp/pytest-cpp matched to [**/requirements.txt or **/pyproject.toml], make sure you have checked out the target repository #76

v1.5.3

Changed

• Hopefully nothing, but this release comes from the main branch again.

v1.5.2

Fixed

• Turns out it made a huge difference. This release is branched directly from v1.5 and only updates the dependencies.

v1.5.1

Changed

• Updates of the tools we use. Notably this fixes check-wheel-contents on Python 3.12.

• This shouldn't make any difference, but all management and command running is now done by PDM. #57

v1.5.0

Added

• Set SOURCE_DATE_EPOCH based on the timestamp of the last commit for build reproducibility. #30
• The tree output now has ISO timestamps.

Changed

• Use 3.x version specifier in setup-python for the venv used by our tools. As of writing, that's 3.11.

... (truncated)

Changelog

Sourced from hynek/build-and-inspect-python-package's changelog.

Commits

• 4aea7de v2.5.0
• 0f9f778 Attest build provenance of artifacts (#122)
• 36b0128 [pre-commit.ci] pre-commit autoupdate (#121)
• 5841954 Automated dependency upgrades (#120)
• c5aaf62 Update action.yml so what's ehco'ed matches what's done (#119)
• 2a52909 Automated dependency upgrades (#118)
• c63bb68 Start new cycle
• eb6b0c7 v2.4.0
• 33aa9db add cl
• 7128288 Don't crash if user has set UV_SYSTEM_PYTHON to true (#116)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions