Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump the actions-deps group across 1 directory with 5 updates #14896

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

build(deps): bump the actions-deps group across 1 directory with 5 updates #14896

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 6, 2025

Bumps the actions-deps group with 5 updates in the / directory:

Package From To
actions/checkout 3 4
actions/labeler 4 5
actions/setup-go 3 5
tj-actions/changed-files 41.0.0 45.0.6
codecov/codecov-action 4 5

Updates actions/checkout from 3 to 4

Release notes

Sourced from actions/checkout's releases.

v4.0.0

What's Changed

New Contributors

Full Changelog: actions/checkout@v3...v4.0.0

v3.6.0

What's Changed

New Contributors

Full Changelog: actions/checkout@v3.5.3...v3.6.0

v3.5.3

What's Changed

New Contributors

Full Changelog: actions/checkout@v3...v3.5.3

v3.5.2

What's Changed

Full Changelog: actions/checkout@v3.5.1...v3.5.2

v3.5.1

What's Changed

New Contributors

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

Changelog

v4.2.2

v4.2.1

v4.2.0

v4.1.7

v4.1.6

v4.1.5

v4.1.4

v4.1.3

v4.1.2

v4.1.1

v4.1.0

... (truncated)

Commits

Updates actions/labeler from 4 to 5

Release notes

Sourced from actions/labeler's releases.

v5.0.0

What's Changed

This release contains the following breaking changes:

  1. The ability to apply labels based on the names of base and/or head branches was added (#186 and #54). The match object for changed files was expanded with new combinations in order to make it more intuitive and flexible (#423 and #101). As a result, the configuration file structure was significantly redesigned and is not compatible with the structure of the previous version. Please read the action documentation to find out how to adapt your configuration files for use with the new action version.

  2. The bug related to the sync-labels input was fixed (#112). Now the input value is read correctly.

  3. By default, dot input is set to true. Now, paths starting with a dot (e.g. .github) are matched by default.

  4. Version 5 of this action updated the runtime to Node.js 20. All scripts are now run with Node.js 20 instead of Node.js 16 and are affected by any breaking changes between Node.js 16 and 20.

For more information, please read the action documentation.

New Contributors

Full Changelog: actions/labeler@v4...v5.0.0

v5.0.0-beta.1

What's Changed

In scope of this beta release, the structure of the configuration file (.github/labeler.yml) was changed from

LabelName:
- any:
  - changed-files: ['list', 'of', 'globs']
  - base-branch: ['list', 'of', 'regexps']
  - head-branch: ['list', 'of', 'regexps']
- all:
  - changed-files: ['list', 'of', 'globs']
  - base-branch: ['list', 'of', 'regexps']
  - head-branch: ['list', 'of', 'regexps']

to

LabelName:
- any:
  - changed-files: 
    - AnyGlobToAnyFile: ['list', 'of', 'globs']
    - AnyGlobToAllFiles: ['list', 'of', 'globs']
    - AllGlobsToAnyFile: ['list', 'of', 'globs']
    - AllGlobsToAllFiles: ['list', 'of', 'globs']
  - base-branch: ['list', 'of', 'regexps']
  - head-branch: ['list', 'of', 'regexps']
- all:
  - changed-files:
    - AnyGlobToAnyFile: ['list', 'of', 'globs']
    - AnyGlobToAllFiles: ['list', 'of', 'globs']
    - AllGlobsToAnyFile: ['list', 'of', 'globs']
</tr></table>

... (truncated)

Commits
  • 8558fd7 Merge pull request #709 from actions/v5.0.0-beta
  • 000ca75 Merge pull request #700 from MaksimZhukov/apply-suggestions-and-update-docume...
  • cb66c2f Update dist
  • 9181355 Apply suggestions for the beta vesrion and update the documentation
  • efe4c1c Merge pull request #699 from MaksimZhukov/update-node-runtime-and-dependencies
  • c0957ad Run Prettier
  • 8dc8d18 Update Node.js version in reusable workflows
  • d0d0bbe Update documentation
  • 1375c42 5.0.0
  • ab7411e Change version of Node.js runtime to node20
  • Additional commits viewable in compare view

Updates actions/setup-go from 3 to 5

Release notes

Sourced from actions/setup-go's releases.

v5.0.0

What's Changed

In scope of this release, we change Nodejs runtime from node16 to node20 (actions/setup-go#421). Moreover, we update some dependencies to the latest versions (actions/setup-go#445).

Besides, this release contains such changes as:

New Contributors

Full Changelog: actions/setup-go@v4...v5.0.0

v4.1.0

What's Changed

In scope of this release, slow installation on Windows was fixed by @​dsame in actions/setup-go#393 and OS version was added to primaryKey for Ubuntu runners to avoid conflicts (actions/setup-go#383)

This release also includes the following changes:

New Contributors

Full Changelog: actions/setup-go@v4...v4.1.0

v4.0.1

What's Changed

New Contributors

Full Changelog: actions/setup-go@v4...v4.0.1

v4.0.0

In scope of release we enable cache by default. The action won’t throw an error if the cache can’t be restored or saved. The action will throw a warning message but it won’t stop a build process. The cache can be disabled by specifying cache: false.

</tr></table>

... (truncated)

Commits
  • 3041bf5 feat: fallback to "raw" endpoint for manifest when rate limit is reached (#496)
  • 41dfa10 Enhance workflows and Upgrade micromatch Dependency (#510)
  • 9419772 Revise isGhes logic (#511)
  • d60b41a Merge pull request #502 from actions/Jcambass-patch-1
  • e09f57f Upgrade IA Publish
  • df1a117 Merge pull request #500 from actions/Jcambass-patch-1
  • 49582f6 Add workflow file for publishing releases to immutable action package
  • b26d402 fix: add arch to cache key (#493)
  • 0a12ed9 Bump braces from 3.0.2 to 3.0.3 (#487)
  • 4ab57d7 Fix versions check failure (#479)
  • Additional commits viewable in compare view

Updates tj-actions/changed-files from 41.0.0 to 45.0.6

Release notes

Sourced from tj-actions/changed-files's releases.

v45.0.6

What's Changed

Full Changelog: tj-actions/changed-files@v45...v45.0.6

v45.0.5

What's Changed

Full Changelog: tj-actions/changed-files@v45...v45.0.5

v45.0.4

What's Changed

... (truncated)

Changelog

Sourced from tj-actions/changed-files's changelog.

45.0.6 - (2025-01-03)

🐛 Bug Fixes

  • deps: Update dependency yaml to v2.7.0 (#2383) (5f974c2) - (renovate[bot])

⚙️ Miscellaneous Tasks

  • deps: Update dependency @​types/lodash to v4.17.14 (#2388) (d6e91a2) - (renovate[bot])
  • deps: Update dependency @​types/node to v22.10.5 (#2387) (73401cd) - (renovate[bot])
  • deps: Update dependency @​types/node to v22.10.4 (#2386) (7f28b2b) - (renovate[bot])
  • deps: Update dependency @​types/node to v22.10.3 (#2385) (c1f82ce) - (renovate[bot])
  • deps: Lock file maintenance (#2382) (bb364ec) - (renovate[bot])
  • deps: Update peter-evans/create-pull-request action to v7.0.6 (#2380) (7ac5902) - (renovate[bot])
  • deps: Lock file maintenance (#2379) (7c5097f) - (renovate[bot])
  • deps: Update dependency eslint-plugin-jest to v28.10.0 (#2378) (37dc9a5) - (renovate[bot])
  • deps: Lock file maintenance (#2377) (515a6b3) - (renovate[bot])
  • deps: Update dependency @​types/node to v22.10.2 (#2376) (ac47125) - (renovate[bot])
  • deps: Lock file maintenance (#2375) (ef3b6f1) - (renovate[bot])

⬆️ Upgrades

  • Upgraded to v45.0.5 (#2374)

Co-authored-by: jackton1 [email protected] (8082fbc) - (tj-actions[bot])

45.0.5 - (2024-12-05)

⚙️ Miscellaneous Tasks

  • deps: Update dependency eslint-plugin-github to v5.1.4 (#2372) (bab30c2) - (renovate[bot])
  • deps: Update dependency prettier to v3.4.2 (#2370) (657a3f9) - (renovate[bot])
  • deps: Lock file maintenance (#2369) (05f0aba) - (renovate[bot])
  • deps: Update dependency @​types/node to v22.10.1 (#2368) (4623961) - (renovate[bot])
  • deps: Update dependency eslint-plugin-github to v5.1.3 (#2367) (c19a7eb) - (renovate[bot])
  • deps: Update dependency prettier to v3.4.1 (#2366) (c288441) - (renovate[bot])
  • deps: Update dependency prettier to v3.4.0 (#2365) (1d6ea46) - (renovate[bot])
  • deps: Update dependency @​types/node to v22.10.0 (#2364) (02b41f5) - (renovate[bot])
  • deps: Update dependency @​types/node to v22.9.4 (#2361) (b4a4dca) - (renovate[bot])
  • deps: Lock file maintenance (#2360) (602aacf) - (renovate[bot])
  • deps: Update dependency @​types/node to v22.9.3 (#2359) (51290e0) - (renovate[bot])
  • deps: Update dependency @​types/node to v22.9.2 (#2358) (b4badd8) - (renovate[bot])
  • deps: Update dependency typescript to v5.7.2 (#2357) (652b4c0) - (renovate[bot])
  • deps-dev: Bump eslint-plugin-github from 5.0.2 to 5.1.1 (#2356) (0b7a421) - (dependabot[bot])
  • deps: Bump yaml from 2.6.0 to 2.6.1 (#2353) (b26581a) - (dependabot[bot])
  • deps: Update dependency @​types/node to v22.9.1 (#2352) (43e6b45) - (renovate[bot])
  • deps: Lock file maintenance (#2349) (fe1bc0e) - (renovate[bot])
  • deps: Update dependency @​vercel/ncc to v0.38.3 (#2348) (d7917c6) - (renovate[bot])
  • deps: Lock file maintenance (#2345) (3f646a3) - (renovate[bot])

... (truncated)

Commits
  • d6e91a2 chore(deps): update dependency @​types/lodash to v4.17.14 (#2388)
  • 73401cd chore(deps): update dependency @​types/node to v22.10.5 (#2387)
  • 7f28b2b chore(deps): update dependency @​types/node to v22.10.4 (#2386)
  • c1f82ce chore(deps): update dependency @​types/node to v22.10.3 (#2385)
  • 5f974c2 fix(deps): update dependency yaml to v2.7.0 (#2383)
  • bb364ec chore(deps): lock file maintenance (#2382)
  • 7ac5902 chore(deps): update peter-evans/create-pull-request action to v7.0.6 (#2380)
  • 7c5097f chore(deps): lock file maintenance (#2379)
  • 37dc9a5 chore(deps): update dependency eslint-plugin-jest to v28.10.0 (#2378)
  • 515a6b3 chore(deps): lock file maintenance (#2377)
  • Additional commits viewable in compare view

Updates codecov/codecov-action from 4 to 5

Release notes

Sourced from codecov/codecov-action's releases.

v5.0.0

v5 Release

v5 of the Codecov GitHub Action will use the Codecov Wrapper to encapsulate the CLI. This will help ensure that the Action gets updates quicker.

Migration Guide

The v5 release also coincides with the opt-out feature for tokens for public repositories. In the Global Upload Token section of the settings page of an organization in codecov.io, you can set the ability for Codecov to receive a coverage reports from any source. This will allow contributors or other members of a repository to upload without needing access to the Codecov token. For more details see how to upload without a token.

[!WARNING]
The following arguments have been changed

  • file (this has been deprecated in favor of files)
  • plugin (this has been deprecated in favor of plugins)

The following arguments have been added:

  • binary
  • gcov_args
  • gcov_executable
  • gcov_ignore
  • gcov_include
  • report_type
  • skip_validation
  • swift_project

You can see their usage in the action.yml file.

What's Changed

... (truncated)

Changelog

Sourced from codecov/codecov-action's changelog.

v5 Release

v5 of the Codecov GitHub Action will use the Codecov Wrapper to encapsulate the CLI. This will help ensure that the Action gets updates quicker.

Migration Guide

The v5 release also coincides with the opt-out feature for tokens for public repositories. In the Global Upload Token section of the settings page of an organization in codecov.io, you can set the ability for Codecov to receive a coverage reports from any source. This will allow contributors or other members of a repository to upload without needing access to the Codecov token. For more details see how to upload without a token.

[!WARNING] The following arguments have been changed

  • file (this has been deprecated in favor of files)
  • plugin (this has been deprecated in favor of plugins)

The following arguments have been added:

  • binary
  • gcov_args
  • gcov_executable
  • gcov_ignore
  • gcov_include
  • report_type
  • skip_validation
  • swift_project

You can see their usage in the action.yml file.

What's Changed

@dependabot
build(deps): bump the actions-deps group across 1 directory with 5 up…
ab88a2c 
…dates

Bumps the actions-deps group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout) | `3` | `4` |
| [actions/labeler](https://github.com/actions/labeler) | `4` | `5` |
| [actions/setup-go](https://github.com/actions/setup-go) | `3` | `5` |
| [tj-actions/changed-files](https://github.com/tj-actions/changed-files) | `41.0.0` | `45.0.6` |
| [codecov/codecov-action](https://github.com/codecov/codecov-action) | `4` | `5` |



Updates `actions/checkout` from 3 to 4
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@v3...v4)

Updates `actions/labeler` from 4 to 5
- [Release notes](https://github.com/actions/labeler/releases)
- [Commits](actions/labeler@v4...v5)

Updates `actions/setup-go` from 3 to 5
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](actions/setup-go@v3...v5)

Updates `tj-actions/changed-files` from 41.0.0 to 45.0.6
- [Release notes](https://github.com/tj-actions/changed-files/releases)
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md)
- [Commits](tj-actions/changed-files@v41.0.0...v45.0.6)

Updates `codecov/codecov-action` from 4 to 5
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](codecov/codecov-action@v4...v5)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions-deps
- dependency-name: actions/labeler
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions-deps
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions-deps
- dependency-name: tj-actions/changed-files
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions-deps
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions-deps
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jan 6, 2025
@dependabot dependabot bot mentioned this pull request Jan 6, 2025
Closed
@maykathm
Copy link
Contributor

maykathm commented Jan 7, 2025

As referenced in the closed request, we either need to add a token or enable tokenless upload for code coverage. Thoughts @ernestl or @sergiocazzolato?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@maykathm maykathm Awaiting requested review from maykathm

@sergiocazzolato sergiocazzolato Awaiting requested review from sergiocazzolato

At least 2 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@maykathm