Releases: github/dependabot-action
Releases · github/dependabot-action
v2.11.0
What's Changed
- Bump the dev-dependencies group with 12 updates by @dependabot in #1086
- Add prod dependency group for npm by @mctofu in #1088
- Bump the prod-dependencies group with 3 updates by @dependabot in #1092
- Bump @babel/traverse from 7.14.2 to 7.23.2 by @dependabot in #1082
- Bump lint-staged from 14.0.1 to 15.0.2 by @dependabot in #1085
- Bump dockerode from 3.3.5 to 4.0.0 by @dependabot in #1078
- Bump @types/tar-stream from 2.2.2 to 3.1.2 by @dependabot in #1084
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from 2.0.20231006011356 to v2.0.20231027174814 in /docker by @dependabot in #1090
- Bump actions/setup-node from 3 to 4 by @dependabot in #1089
- Added more logs to troubleshoot issues faster by @honeyankit in #1063
- Replace axios with @actions/http-client by @mctofu in #1097
Full Changelog: v2...v2.11.0
Contributors
mctofu, honeyankit, and dependabot
Assets 2
v2.10.0
What's Changed
- Update
(write access required)message by @Pantelis-Santorinios in #1062 - Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20230921204854 to v2.0.20231006011356 in /docker by @dependabot in #1067
- Bump the dependabot-core-images group in /docker with 16 updates by @dependabot in #1068
- v2.10.0 by @honeyankit in #1069
New Contributors
- @Pantelis-Santorinios made their first contribution in #1062
Full Changelog: v2...v2.10.0
Contributors
honeyankit, dependabot, and Pantelis-Santorinios
Assets 2
v2.9.0
What's Changed
- Bump the dev-dependencies group with 7 updates by @dependabot in #980
- Bump commander from 10.0.1 to 11.0.0 by @dependabot in #981
- Bump @octokit/webhooks-types from 7.0.3 to 7.1.0 by @dependabot in #982
- Bump axios-retry from 3.5.0 to 3.5.1 by @dependabot in #983
- Bump dependabot/fetch-metadata from 1.5.1 to 1.6.0 by @dependabot in #986
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20230608000452 to v2.0.20230629024521 in /docker by @dependabot in #988
- Bump tar-stream from 3.0.0 to 3.1.6 by @dependabot in #989
- Bump npm from 9.7.1 to 9.8.0 by @dependabot in #990
- Bump the dependabot-core-images group in /docker with 16 updates by @dependabot in #991
- Update dependabot.yml by @bdragon in #992
- Shift dependabot version updates to Sunday by @mctofu in #996
- Bump the dev-dependencies group with 9 updates by @dependabot in #993
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20230629024521 to v2.0.20230719163840 in /docker by @dependabot in #998
- Bump npm from 9.8.0 to 9.8.1 by @dependabot in #1002
- Bump the dependabot-core-images group in /docker with 16 updates by @dependabot in #1004
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20230719163840 to v2.0.20230727200608 in /docker by @dependabot in #1008
- Bump the dependabot-core-images group in /docker with 16 updates by @dependabot in #1009
- Fix re-run detection and improve messaging by @mctofu in #1010
- Only group patch and minor dev-dependencies by @jurre in #1016
- Bump the dev-dependencies group with 6 updates by @dependabot in #1022
- Bump ci from 2.2.0 to 2.3.0 by @dependabot in #1019
- Bump axios-retry from 3.5.1 to 3.6.0 by @dependabot in #1005
- remove unused dependency (ci) by @jakecoffman in #1024
- remove unused dependency (npm) by @jakecoffman in #1025
- Bump @octokit/webhooks-types from 7.1.0 to 7.2.0 by @dependabot in #1018
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20230727200608 to v2.0.20230809182251 in /docker by @dependabot in #1017
- remove unused dependency (js-yaml) by @jakecoffman in #1026
- Bump lint-staged from 13.2.3 to 14.0.0 by @dependabot in #1030
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20230809182251 to v2.0.20230825174152 in /docker by @dependabot in #1034
- Bump eslint-config-prettier from 8.8.0 to 9.0.0 by @dependabot in #1029
- Bump the dependabot-core-images group in /docker with 16 updates by @dependabot in #1040
- Bump the dev-dependencies group with 8 updates by @dependabot in #1042
- Bump axios-retry from 3.6.0 to 3.7.0 by @dependabot in #1041
- Bump axios from 1.4.0 to 1.5.0 by @dependabot in #1038
- Bump actions/checkout from 3 to 4 by @dependabot in #1045
- Bump @actions/core from 1.10.0 to 1.10.1 by @dependabot in #1047
- Bump @octokit/webhooks-types from 7.2.0 to 7.3.1 by @dependabot in #1046
- Bump the dependabot-core-images group in /docker with 16 updates by @dependabot in #1052
- Upgrade from node16 to node20 by @Nishnha in #1050
- Revert "Upgrade from node16 to node20" by @Nishnha in #1053
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20230825174152 to v2.0.20230921204854 in /docker by @dependabot in #1058
- v2.9.0 by @honeyankit in #1060
- Bump the dependabot-core-images group in /docker with 16 updates by @dependabot in #1059
New Contributors
- @bdragon made their first contribution in #992
- @honeyankit made their first contribution in #1060
Full Changelog: v2...v2.9.0
Contributors
bdragon, jurre, and 5 other contributors
Assets 2
v2.8.0
What's Changed
- Bump typescript from 4.9.5 to 5.0.3 by @dependabot in #821
- Bump prettier from 2.8.4 to 2.8.7 by @dependabot in #827
- Bump @typescript-eslint/parser from 5.55.0 to 5.59.0 by @dependabot in #847
- Bump eslint-import-resolver-typescript from 3.5.3 to 3.5.5 by @dependabot in #846
- Bump @octokit/webhooks-types from 6.10.0 to 6.11.0 by @dependabot in #866
- Bump dependabot/fetch-metadata from 1.3.6 to 1.4.0 by @dependabot in #851
- Bump yaml from 2.2.1 to 2.2.2 by @dependabot in #849
- Add test for CredentialFetchingError by @mctofu in #899
- Improve handling of api errors when fetching job details by @mctofu in #898
- Configure retries for 5xx API responses and network errors by @mctofu in #900
- Adopt experimental group updates for docker images by @brrygrdn in #920
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20230317114832 to v2.0.20230504224008 in /docker by @dependabot in #911
- Add Fanout label to Dependabot PRs by @mctofu in #941
- Use the full email for the GitHub Actions bot by @jeffwidman in #947
- Pin
fetch-metadataby SHA by @jeffwidman in #946 - Group
PR's for eslint-related deps by @jeffwidman in #954 - Bump dependabot/fetch-metadata from 1.4.0 to 1.5.1 by @dependabot in #955
- Bump the eslint-dependencies group with 4 updates by @dependabot in #956
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20230504224008 to v2.0.20230602210519 in /docker by @dependabot in #968
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20230602210519 to v2.0.20230608000452 in /docker by @dependabot in #969
- Bump axios from 1.3.4 to 1.4.0 by @dependabot in #854
- Bump axios-retry from 3.4.0 to 3.5.0 by @dependabot in #959
- Bump commander from 10.0.0 to 10.0.1 by @dependabot in #855
- Bump @octokit/webhooks-types from 6.11.0 to 7.0.3 by @dependabot in #971
- Bump npm from 9.6.1 to 9.7.1 by @dependabot in #974
- Add a group for all dev dependencies by @mctofu in #975
- Bump the dev-dependencies group with 12 updates by @dependabot in #977
- Bump the dependabot-core-images group in /docker with 16 updates by @dependabot in #976
- Bump the dependabot-core-images group in /docker with 16 updates by @dependabot in #978
- v2.8.0 by @mctofu in #979
New Contributors
- @jeffwidman made their first contribution in #947
Full Changelog: v2...v2.8.0
Contributors
jeffwidman, mctofu, and 2 other contributors
Assets 2
v2.7.0
What's Changed
- Allow env setting to skip cleanup tasks by @mctofu in #438
- Allow env setting to control connectivity check by @mctofu in #439
- pin ecosystem versions by @jakecoffman in #447
- Bump jest and @types/jest by @dependabot in #454
- Bump eslint from 8.32.0 to 8.33.0 by @dependabot in #451
- Bump @typescript-eslint/parser from 5.48.2 to 5.50.0 by @dependabot in #452
- Bump @vercel/ncc from 0.36.0 to 0.36.1 by @dependabot in #450
- Bump typescript from 4.9.3 to 4.9.5 by @dependabot in #448
- Bump @octokit/webhooks-types from 6.3.6 to 6.10.0 by @dependabot in #435
- Bump commander from 9.4.1 to 10.0.0 by @dependabot in #417
- Bump axios from 1.1.3 to 1.3.0 by @dependabot in #449
- Bump tar-stream from 2.2.0 to 3.0.0 by @dependabot in #390
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20221206155623 to v2.0.20230130034108 in /docker by @dependabot in #446
- Bump node.js from 16.10.0 to 16.19.0 by @mctofu in #471
- Bump npm from 8.19.2 to 9.4.0 by @dependabot in #445
- Bump dockerode and @types/dockerode by @dependabot in #296
- Bump dependabot/dependabot-updater-github-actions from v2.0.20230130173627 to v2.0.20230201230055 in /docker by @dependabot in #474
- Bump dependabot/dependabot-updater-gradle from v2.0.20230130173627 to v2.0.20230201230055 in /docker by @dependabot in #475
- Bump dependabot/dependabot-updater-terraform from v2.0.20230130173627 to v2.0.20230201230055 in /docker by @dependabot in #472
- Bump dependabot/dependabot-updater-bundler from v2.0.20230130173627 to v2.0.20230201230055 in /docker by @dependabot in #476
- Bump dependabot/dependabot-updater-npm from v2.0.20230130173627 to v2.0.20230201230055 in /docker by @dependabot in #473
- increase limit to accommodate 16 ecosystem images by @jakecoffman in #477
- Bump axios from 1.3.0 to 1.3.1 by @dependabot in #490
- Bump npm from 9.4.0 to 9.4.1 by @dependabot in #482
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20230130034108 to v2.0.20230206213225 in /docker by @dependabot in #552
- Change docker updates to monthly schedule by @mctofu in #589
- Bump jest from 29.4.1 to 29.4.2 by @dependabot in #593
- Bump lint-staged from 13.1.0 to 13.1.1 by @dependabot in #591
- Bump prettier from 2.8.3 to 2.8.4 by @dependabot in #590
- Bump @typescript-eslint/parser from 5.50.0 to 5.51.0 by @dependabot in #595
- Bump @types/node from 18.11.18 to 18.13.0 by @dependabot in #592
- Bump npm from 9.4.1 to 9.4.2 by @dependabot in #597
- Bump axios from 1.3.1 to 1.3.2 by @dependabot in #594
- Bump eslint from 8.33.0 to 8.34.0 by @dependabot in #598
- Bump dependabot/dependabot-updater-terraform from v2.0.20230201230055 to v2.0.20230210184231 in /docker by @dependabot in #588
- Bump dependabot/dependabot-updater-pub from v2.0.20230130173627 to v2.0.20230210184231 in /docker by @dependabot in #577
- Bump dependabot/dependabot-updater-npm from v2.0.20230201230055 to v2.0.20230210184231 in /docker by @dependabot in #583
- Bump dependabot/dependabot-updater-github-actions from v2.0.20230201230055 to v2.0.20230210184231 in /docker by @dependabot in #582
- Bump dependabot/dependabot-updater-gitsubmodule from v2.0.20230130173627 to v2.0.20230210184231 in /docker by @dependabot in #581
- Bump dependabot/dependabot-updater-docker from v2.0.20230130173627 to v2.0.20230210184231 in /docker by @dependabot in #586
- Bump dependabot/dependabot-updater-cargo from v2.0.20230130173627 to v2.0.20230210184231 in /docker by @dependabot in #579
- Bump dependabot/dependabot-updater-maven from v2.0.20230130173627 to v2.0.20230210184231 in /docker by @dependabot in #573
- Bump dependabot/dependabot-updater-gomod from v2.0.20230130173627 to v2.0.20230210184231 in /docker by @dependabot in #580
- Bump dependabot/dependabot-updater-elm from v2.0.20230130173627 to v2.0.20230210184231 in /docker by @dependabot in #574
- Bump dependabot/dependabot-updater-composer from v2.0.20230130173627 to v2.0.20230210184231 in /docker by @dependabot in #587
- Bump dependabot/dependabot-updater-gradle from v2.0.20230201230055 to v2.0.20230210184231 in /docker by @dependabot in #578
- Bump dependabot/dependabot-updater-pip from v2.0.20230130173627 to v2.0.20230210184231 in /docker by @dependabot in #585
- Bump eslint-plugin-github from 4.6.0 to 4.6.1 by @dependabot in #642
- Bump jest-circus from 29.4.2 to 29.5.0 by @dependabot in #659
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20230206213225 to v2.0.20230310184612 in /docker by @dependabot in #657
- Bump jest from 29.4.2 to 29.5.0 by @dependabot in #663
- Bump axios from 1.3.2 to 1.3.4 by @dependabot in #631
- Bump eslint from 8.34.0 to 8.35.0 by @dependabot in #621
- Bump json-server from 0.17.1 to 0.17.2 by @dependabot in #640
- Bump @typescript-eslint/parser from 5.51.0 to 5.54.1 by @dependabot in #661
- Bump lint-staged from 13.1.1 to 13.2.0 by @dependabot in #662
- Bump @types/node from 18.13.0 to 18.15.0 by @dependabot in #664
- Bump npm from 9.4.2 to 9.6.1 by @dependabot in #665
- Bump eslint from 8.35.0 to 8.36.0 by @dependabot in #687
- Bump dockerode and @types/dockerode by @dependabot in #686
- Bump @types/node from 18.15.0 to 18.15.3 by @dependabot in #685
- Bump @typescript-eslint/parser from 5.54.1 to 5.55.0 by @dependabot in #684
- Bump eslint-config-prettier from 8.6.0 to 8.7.0 by @dependabot in #683
- Bump dependabot/dependabot-updater-gomod from v2.0.20230210184231 to v2.0.20230314124736 in /docker by @dependabot in #682
- Bump dependabot/dependabot-updater-gradle from v2.0.20230210184231 to v2.0.20230314124736 in /docker by @dependabot in #681
- Bump dependabot/dependabot-updater-terraform from v2.0.20230210184231 to v2.0.20230314124736 in /docker by @dependabot in #680
- Bump dependabot/dependabot-updater-composer from v2.0.20230210184231 to v2.0.20230314124736 in /docker by @dependabot in #679
- Bump dependabot/dependabot-updater-docker from v2.0.20230210184231 to v2.0.20230314124736 in /docker by @dependabot in #678
- Bump dependabot/dependabot-updater-github-actions from v2.0.20230210184231 to v2.0.20230314124736 in /docker by @dependabot in #677
- Bump dependabot/dependabot-updater-pub from v2.0.20230210184231 to v2.0.20230314124736 in /docker by @dependabot in #676
- Bump @types/jest from 29.4.0 to 29.4.1 by @dependabot in #688
- Bump dependabot/dependabot-updater-pip from v2.0.20230210184231 to v2.0.20230314223122 in /docker by @dependabot in #694
- B...
Contributors
mctofu, jakecoffman, and dependabot
Assets 2
v2.6.1
v2.6.0
What's Changed
- Bump eslint from 8.27.0 to 8.31.0 by @dependabot in #394
- Bump lint-staged from 13.0.3 to 13.1.0 by @dependabot in #365
- Bump eslint-plugin-jest from 27.1.5 to 27.2.0 by @dependabot in #385
- Bump eslint-plugin-github from 4.4.1 to 4.6.0 by @dependabot in #389
- Bump @typescript-eslint/parser from 5.43.0 to 5.48.0 by @dependabot in #397
- Bump prettier from 2.7.1 to 2.8.1 by @dependabot in #380
- Bump @types/jest from 29.2.3 to 29.2.5 by @dependabot in #386
- Bump json-server from 0.17.0 to 0.17.1 by @dependabot in #346
- Bump @types/node-forge from 1.3.0 to 1.3.1 by @dependabot in #353
- Bump @types/node from 18.8.2 to 18.11.18 by @dependabot in #391
- Bump wait-port from 1.0.1 to 1.0.4 by @dependabot in #326
- Bump @vercel/ncc from 0.34.0 to 0.36.0 by @dependabot in #392
- use updater image passed in to the action by @jakecoffman in #401
- Bump husky from 8.0.2 to 8.0.3 by @dependabot in #411
- Bump eslint-plugin-jest from 27.2.0 to 27.2.1 by @dependabot in #418
- Bump @typescript-eslint/parser from 5.48.0 to 5.48.2 by @dependabot in #412
- Bump prettier from 2.8.1 to 2.8.3 by @dependabot in #420
- Bump eslint-config-prettier from 8.5.0 to 8.6.0 by @dependabot in #413
- Bump ts-jest from 29.0.3 to 29.0.5 by @dependabot in #419
- Bump eslint-import-resolver-typescript from 3.5.2 to 3.5.3 by @dependabot in #415
- Bump eslint from 8.31.0 to 8.32.0 by @dependabot in #414
- Bump dependabot/dependabot-updater from v2.0.20230104060258 to v2.0.20230125174240 in /docker by @dependabot in #431
- Bump dependabot/fetch-metadata from 1.3.5 to 1.3.6 by @dependabot in #428
- v2.5.1 by @pavera in #434
- Revert "v2.5.1" by @pavera in #436
Full Changelog: v2.5.0...v2.6.0
Contributors
pavera, jakecoffman, and dependabot
Assets 2
v2.5.0
What's Changed
- run an non-root user by @jakecoffman in #379
- Pin docker images by tag in addition to sha by @deivid-rodriguez in #375
- Bump qs, body-parser and express by @dependabot in #374
- Bump json5 from 1.0.1 to 1.0.2 by @dependabot in #398
- Bump dependabot/dependabot-updater from v2.0.20221213201537 to v2.0.20230104060258 in /docker by @dependabot in #399
- v2.5.0 by @mctofu in #400
New Contributors
- @deivid-rodriguez made their first contribution in #375
Full Changelog: v2...v2.5.0
Contributors
mctofu, jakecoffman, and 2 other contributors
Assets 2
v2.4.1
What's Changed
- Bump updater to v2.0.20221206153122 by @pavera in #370
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20221204234507 to v2.0.20221206155623 in /docker by @dependabot in #369
- v2.4.1 by @pavera in #372
New Contributors
Full Changelog: v2...v2.4.1
Contributors
pavera and dependabot
Assets 2
v2.4.0
What's Changed
- Bump jest and @types/jest by @dependabot in #328
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20221026141707 to v2.0.20221108215038 in /docker by @dependabot in #334
- Bump dependabot/fetch-metadata from 1.3.4 to 1.3.5 by @dependabot in #343
- Bump jest and @types/jest by @dependabot in #345
- Grouped Dependabot updates for ESLint dependencies by @mattt in #342
- Bump typescript from 4.8.4 to 4.9.3 by @dependabot in #348
- Bump husky from 8.0.1 to 8.0.2 by @dependabot in #347
- Bump axios from 1.1.2 to 1.1.3 by @dependabot in #331
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20221108215038 to v2.0.20221117182625 in /docker by @dependabot in #344
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20221117182625 to v2.0.20221121191127 in /docker by @dependabot in #350
- Node 12 actions are deprecated, bump to 16 by @jakecoffman in #361
- Bump github/dependabot-update-job-proxy/dependabot-update-job-proxy from v2.0.20221121191127 to v2.0.20221204234507 in /docker by @dependabot in #362
- Bump updater to v2.0.20221205081158 by @mctofu in #366
Full Changelog: v2...v2.4.0
Contributors
mattt, mctofu, and 2 other contributors