chore(deps): bump actions/github-script from 8.0.0 to 9.0.0#54
Conversation
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
Benchmark ResultsNo benchmarks configured. Add benchmarks to benches/ directory. Full results available in CI artifacts. |
There was a problem hiding this comment.
Pull request overview
This PR updates the pinned actions/github-script GitHub Action used across several workflows from v8.0.0 to v9.0.0, keeping workflow dependencies current while remaining pinned to an exact commit SHA.
Changes:
- Bump
actions/github-scriptfromed59741...(v8.0.0) to3a2844b...(v9.0.0) in multiple workflows. - Keep workflows pinned to a specific commit SHA for supply-chain stability.
- Update most inline version comments to reflect the new
github-scriptversion (with a couple remaining mismatches noted in review comments).
Reviewed changes
Copilot reviewed 7 out of 7 changed files in this pull request and generated 2 comments.
Show a summary per file
| File | Description |
|---|---|
| .github/workflows/mutation-testing.yml | Updates actions/github-script pin to v9.0.0 for PR commenting step. |
| .github/workflows/fuzz-testing.yml | Updates actions/github-script pin to v9.0.0 for crash-issue creation step. |
| .github/workflows/docs-freshness.lock.yml | Updates multiple actions/github-script pins to v9.0.0 throughout the locked workflow. |
| .github/workflows/daily-docs-review.lock.yml | Updates multiple actions/github-script pins to v9.0.0 throughout the locked workflow. |
| .github/workflows/ci-coverage.yml | Updates actions/github-script pin to v9.0.0 for PR coverage comment step (version comment mismatch noted). |
| .github/workflows/benchmark-regression.yml | Updates actions/github-script pin to v9.0.0 for PR results commenting step. |
| .github/workflows/adr-validation.yml | Updates actions/github-script pin to v9.0.0 for PR commenting step (version comment mismatch noted). |
Benchmark ResultsNo benchmarks configured. Add benchmarks to benches/ directory. Full results available in CI artifacts. |
2 similar comments
Benchmark ResultsNo benchmarks configured. Add benchmarks to benches/ directory. Full results available in CI artifacts. |
Benchmark ResultsNo benchmarks configured. Add benchmarks to benches/ directory. Full results available in CI artifacts. |
Bumps [actions/github-script](https://github.com/actions/github-script) from 8.0.0 to 9.0.0. - [Release notes](https://github.com/actions/github-script/releases) - [Commits](actions/github-script@ed59741...3a2844b) --- updated-dependencies: - dependency-name: actions/github-script dependency-version: 9.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>
Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>
zircote
force-pushed
the
dependabot/github_actions/actions/github-script-9.0.0
branch
from
21dfc5d to
afca327
Compare
Benchmark ResultsNo benchmarks configured. Add benchmarks to benches/ directory. Full results available in CI artifacts. |
zircote
deleted the
dependabot/github_actions/actions/github-script-9.0.0
branch
Bumps actions/github-script from 8.0.0 to 9.0.0.
Release notes
Sourced from actions/github-script's releases.
Commits
3a2844bMerge pull request #700 from actions/salmanmkc/expose-getoctokit + prepare re...ca10bbdfix: use@octokit/core/types import for v7 compatibility86e48e2merge: incorporate main branch changesc108472chore: rebuild dist for v9 upgrade and getOctokit factoryafff112Merge pull request #712 from actions/salmanmkc/deployment-false + fix user-ag...ff8117eci: fix user-agent test to handle orchestration ID81c6b78ci: use deployment: false to suppress deployment noise from integration tests3953cafdocs: update README examples from@v8to@v9, add getOctokit docs and v9 brea...c17d55bci: add getOctokit integration test joba047196test: add getOctokit integration tests via callAsyncFunctionDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)