ci: bump the github-actions group across 1 directory with 13 updates #167

dependabot · 2025-02-24T06:37:59Z

Bumps the github-actions group with 13 updates in the / directory:

Package	From	To
step-security/harden-runner	`2.10.4`	`2.11.0`
crate-ci/typos	`1.29.4`	`1.29.9`
azure/setup-helm	`4.2.0`	`4.3.0`
google-github-actions/auth	`2.1.7`	`2.1.8`
google-github-actions/setup-gcloud	`2.1.2`	`2.1.4`
fluxcd/flux2	`2.4.0`	`2.5.0`
google-github-actions/get-gke-credentials	`2.3.0`	`2.3.1`
dependabot/fetch-metadata	`2.2.0`	`2.3.0`
tj-actions/changed-files	`45.0.6`	`45.0.7`
docker/setup-buildx-action	`3.8.0`	`3.9.0`
ossf/scorecard-action	`2.4.0`	`2.4.1`
github/codeql-action	`3.28.1`	`3.28.10`
umbrelladocs/action-linkspector	`1.2.4`	`1.2.5`

Updates step-security/harden-runner from 2.10.4 to 2.11.0

Release notes

Sourced from step-security/harden-runner's releases.

v2.11.0

What's Changed

Release v2.11.0 in #498 Harden-Runner Enterprise tier now supports the use of eBPF for DNS resolution and network call monitoring

Full Changelog: step-security/harden-runner@v2...v2.11.0

Commits

4d991eb Merge pull request #498 from step-security/rc-18
4ea872f Update README.md
65d6f6e Add workflows
1034c9a Update package-lock.json
ab221e2 Update agent
7cb6c2f Update agent
See full diff in compare view

Updates crate-ci/typos from 1.29.4 to 1.29.9

Release notes

Sourced from crate-ci/typos's releases.

v1.29.9

[1.29.9] - 2025-02-20

Fixes

(action) Correctly get binary for some aarch64 systems

v1.29.8

[1.29.8] - 2025-02-19

Features

Attempt to build Linux aarch64 binaries

v1.29.7

[1.29.7] - 2025-02-13

Fixes

Don't correct implementors

v1.29.6

[1.29.6] - 2025-02-13

Features

Updated the dictionary with the January 2025 changes

v1.29.5

[1.29.5] - 2025-01-30

Internal

Update a dependency

Changelog

Sourced from crate-ci/typos's changelog.

Change Log

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog and this project adheres to Semantic Versioning.

[Unreleased] - ReleaseDate

[1.29.9] - 2025-02-20

Fixes

(action) Correctly get binary for some aarch64 systems

[1.29.8] - 2025-02-19

Features

Attempt to build Linux aarch64 binaries

[1.29.7] - 2025-02-13

Fixes

Don't correct implementors

[1.29.6] - 2025-02-13

Features

Updated the dictionary with the January 2025 changes

[1.29.5] - 2025-01-30

Internal

Update a dependency

[1.29.4] - 2025-01-03

[1.29.3] - 2025-01-02

[1.29.2] - 2025-01-02

[1.29.1] - 2025-01-02

Fixes

Don't correct deriver

... (truncated)

Commits

212923e chore: Release
659bf55 docs: Update changelog
092b705 Merge pull request #1239 from codingskynet/fix/support-aarch64
298a143 chore(gh): Fix links
d7059d7 chore(gh): Fix links
636d59b chore(gh): Encourage people to check for dupes
51cd88f chore(gh): Add a data template
c11cf6c chore(gh): Try to clarify template
3bcb919 fix: add aarch64 on arm64 cond
1ea66fd docs(readme): Call out that the readme is not exhaustive
Additional commits viewable in compare view

Updates azure/setup-helm from 4.2.0 to 4.3.0

Release notes

Sourced from azure/setup-helm's releases.

v4.3.0

#152 feat: log when restoring from cache

#157 Dependencies Update

#137 Add dependabot

Changelog

Sourced from azure/setup-helm's changelog.

Change Log

[4.3.0] - 2025-02-15

#152 feat: log when restoring from cache

#157 Dependencies Update

#137 Add dependabot

[4.2.0] - 2024-04-15

#124 Fix OS detection and download OS-native archive extension

[4.1.0] - 2024-03-01

#130 switches to use Helm published file to read latest version instead of using GitHub releases

[4.0.0] - 2024-02-12

#121 update to node20 as node16 is deprecated

Commits

b9e5190 build
0e8654b Release setup-helm version 4.3.0 (#162)
b48e1df feat: log when restoring from cache (#152)
855ae7a Bump the actions group across 1 directory with 3 updates (#159)
124c6d8 Dependencies Update (#157)
048f4e7 Bump the actions group across 1 directory with 2 updates (#151)
8618769 Bump the actions group across 1 directory with 4 updates (#149)
4eb898e Bump the actions group across 1 directory with 2 updates (#145)
7a2001c Bump the actions group across 1 directory with 2 updates (#143)
e90c86c Bump the actions group across 1 directory with 9 updates (#141)
Additional commits viewable in compare view

Updates google-github-actions/auth from 2.1.7 to 2.1.8

Release notes

Sourced from google-github-actions/auth's releases.

v2.1.8

What's Changed

Update TROUBLESHOOTING.md by @sethvargo in google-github-actions/auth#457

fix: add runs-on to README.md example by @lbarthon in google-github-actions/auth#460

security: bump undici from 5.28.4 to 5.28.5 in the npm_and_yarn group by @dependabot in google-github-actions/auth#463

Update deps by @sethvargo in google-github-actions/auth#466

Release: v2.1.8 by @google-github-actions-bot in google-github-actions/auth#467

New Contributors

@lbarthon made their first contribution in google-github-actions/auth#460

Full Changelog: google-github-actions/auth@v2...v2.1.8

Commits

71f9864 Release: v2.1.8 (#467)
0cd8f2e Update deps (#466)
332e0ba security: bump undici from 5.28.4 to 5.28.5 in the npm_and_yarn group (#463)
28d44ba fix: add runs-on to README.md example (#460)
83354ca Update TROUBLESHOOTING.md (#457)
See full diff in compare view

Updates google-github-actions/setup-gcloud from 2.1.2 to 2.1.4

Release notes

Sourced from google-github-actions/setup-gcloud's releases.

v2.1.4

What's Changed

Revert to pinned release workflows by @sethvargo in google-github-actions/setup-gcloud#706

Release: v2.1.4 by @google-github-actions-bot in google-github-actions/setup-gcloud#707

Full Changelog: google-github-actions/setup-gcloud@v2.1.3...v2.1.4

v2.1.3

What's Changed

Allow manually running integration tests with workflow_dispatch by @sethvargo in google-github-actions/setup-gcloud#702

security: bump undici from 5.28.4 to 5.28.5 in the npm_and_yarn group by @dependabot in google-github-actions/setup-gcloud#703

Update deps by @sethvargo in google-github-actions/setup-gcloud#704

Release: v2.1.3 by @google-github-actions-bot in google-github-actions/setup-gcloud#705

Full Changelog: google-github-actions/setup-gcloud@v2...v2.1.3

Commits

77e7a55 Release: v2.1.4 (#707)
334c690 Revert to pinned release workflows (#706)
4111bea Release: v2.1.3 (#705)
0c0751a Update deps (#704)
ae61ebc security: bump undici from 5.28.4 to 5.28.5 in the npm_and_yarn group (#703)
25043b0 Allow manually running integration tests with workflow_dispatch (#702)
See full diff in compare view

Updates fluxcd/flux2 from 2.4.0 to 2.5.0

Release notes

Sourced from fluxcd/flux2's releases.

v2.5.0

Highlights

Flux v2.5.0 is a feature release. Users are encouraged to upgrade for the best experience.

For a compressive overview of new features and API changes included in this release, please refer to the Announcing Flux 2.5 GA blog post.

Overview of the new features:

Support for GitHub App authentication (GitRepository and ImageUpdateAutomation API)

Custom Health Checks using CEL (Kustomization API)

Fine-grained control of garbage collection (Kustomization API)

Enable decryption of secrets generated by Kustomize components (Kustomization API)

Support for custom event metadata from annotations (Alert API)

Git commit status updates for Flux Kustomizations with OCIRepository sources (Alert API)

Resource filtering using CEL for webhook receivers (Receiver API)

Debug commands for Flux Kustomizations and HelmReleases (Flux CLI)

❤️ Big thanks to all the Flux contributors that helped us with this release!

Kubernetes compatibility

This release is compatible with the following Kubernetes versions:

Kubernetes version Minimum required

v1.30 >= 1.30.0

v1.31 >= 1.31.0

v1.32 >= 1.32.0

[!NOTE] Note that the Flux project offers support only for the latest three minor versions of Kubernetes. Backwards compatibility with older versions of Kubernetes and OpenShift is offered by vendors such as ControlPlane that provide enterprise support for Flux.

OpenShift compatibility

Flux can be installed on Red Hat OpenShift cluster directly from OperatorHub using Flux Operator. The operator allows the configuration of Flux multi-tenancy lockdown, network policies, persistent storage, sharding, vertical scaling and the synchronization of the cluster state from Git repositories, OCI artifacts and S3-compatible storage.

Upgrade procedure

Upgrade Flux from v2.4.0 to v2.5.0 by following the upgrade guide.

There are no new API versions in this release, so no changes are required in the YAML manifests containing Flux resources.

... (truncated)

Commits

af67405 Merge pull request #5204 from fluxcd/kubectl-1.32.2
6f65c92 Update kubectl in flux-cli image
c84d312 Merge pull request #5203 from fluxcd/fix-cli-build
d37473f Update flux-cli image
712b037 Merge pull request #5200 from fluxcd/update-k8s-check
14da7d5 Update Kubernetes min supported version to 1.30
45da6a8 Merge pull request #5199 from fluxcd/tests-2.5
3053a0b Update integration tests dependencies for Flux 2.5
96f95b6 Merge pull request #5195 from fluxcd/update-components
cf92e02 Update toolkit components
Additional commits viewable in compare view

Updates google-github-actions/get-gke-credentials from 2.3.0 to 2.3.1

Release notes

Sourced from google-github-actions/get-gke-credentials's releases.

v2.3.1

What's Changed

Centralize request logic, turn on retries, and add debug logging by @sethvargo in google-github-actions/get-gke-credentials#323

security: bump undici from 5.28.4 to 5.28.5 in the npm_and_yarn group by @dependabot in google-github-actions/get-gke-credentials#324

Update deps by @sethvargo in google-github-actions/get-gke-credentials#325

Release: v2.3.1 by @google-github-actions-bot in google-github-actions/get-gke-credentials#326

Full Changelog: google-github-actions/get-gke-credentials@v2...v2.3.1

Commits

7a108e6 Release: v2.3.1 (#326)
c597697 Update deps (#325)
cb57a88 security: bump undici from 5.28.4 to 5.28.5 in the npm_and_yarn group (#324)
b7a282c Centralize request logic, turn on retries, and add debug logging (#323)
See full diff in compare view

Updates dependabot/fetch-metadata from 2.2.0 to 2.3.0

Release notes

Sourced from dependabot/fetch-metadata's releases.

v2.3.0

What's Changed

Bump actions/create-github-app-token from 1.10.2 to 1.10.3 by @dependabot in dependabot/fetch-metadata#537

Update readme to include an if conditional by @Nishnha in dependabot/fetch-metadata#548

Silence audit and funding messages from npm by @jeffwidman in dependabot/fetch-metadata#550

Bump actions/create-github-app-token from 1.10.3 to 1.11.0 by @dependabot in dependabot/fetch-metadata#554

fix readme action example by @CloudNStoyan in dependabot/fetch-metadata#563

Fixed missing outputs in action.yml by @CatChen in dependabot/fetch-metadata#564

Handle branch names containing dependency group by @CloudNStoyan in dependabot/fetch-metadata#565

v2.3.0 by @fetch-metadata-action-automation in dependabot/fetch-metadata#543

New Contributors

@CloudNStoyan made their first contribution in dependabot/fetch-metadata#563

@CatChen made their first contribution in dependabot/fetch-metadata#564

Full Changelog: dependabot/fetch-metadata@v2...v2.3.0

Commits

d7267f6 Merge pull request #543 from dependabot/bump-to-v2.3.0
e3dd295 v2.3.0
3da9521 Merge pull request #565 from CloudNStoyan/main
de52f60 update build
59d2b1f fix incorrect parsing of directory when using dependency-group
0d27069 Merge pull request #564 from CatChen/fixed-missing-outputs-in-action-yml
5a7546a Fixed missing outputs in action.yml
06ea45a Merge pull request #563 from CloudNStoyan/main
bbfca7e fix readme action example
b0d0393 Merge pull request #554 from dependabot/dependabot/github_actions/actions/cre...
Additional commits viewable in compare view

Updates tj-actions/changed-files from 45.0.6 to 45.0.7

Release notes

Sourced from tj-actions/changed-files's releases.

v45.0.7

What's Changed

Upgraded to v45.0.6 by @tj-actions-bot in tj-actions/changed-files#2389

chore(deps): lock file maintenance by @renovate in tj-actions/changed-files#2390

chore(deps): update dependency eslint-plugin-github to v5.1.5 by @renovate in tj-actions/changed-files#2392

chore(deps): update dependency typescript to v5.7.3 by @renovate in tj-actions/changed-files#2393

fix(deps): update dependency @octokit/rest to v21.1.0 by @renovate in tj-actions/changed-files#2394

chore(deps): lock file maintenance by @renovate in tj-actions/changed-files#2395

chore(deps): update dependency eslint-config-prettier to v10 by @renovate in tj-actions/changed-files#2396

chore(deps): update dependency @types/node to v22.10.6 by @renovate in tj-actions/changed-files#2397

chore(deps): update dependency eslint-plugin-prettier to v5.2.2 by @renovate in tj-actions/changed-files#2399

chore(deps): update dependency eslint-plugin-jest to v28.11.0 by @renovate in tj-actions/changed-files#2400

chore(deps): update dependency @types/node to v22.10.7 by @renovate in tj-actions/changed-files#2403

chore(deps): update dependency eslint-plugin-prettier to v5.2.3 by @renovate in tj-actions/changed-files#2405

chore(deps): lock file maintenance by @renovate in tj-actions/changed-files#2406

chore(deps): update dependency @types/node to v22.10.8 by @renovate in tj-actions/changed-files#2407

chore(deps): update dependency @types/node to v22.10.9 by @renovate in tj-actions/changed-files#2408

chore(deps): update dependency @types/node to v22.10.10 by @renovate in tj-actions/changed-files#2409

chore(deps): lock file maintenance by @renovate in tj-actions/changed-files#2410

chore(deps): update actions/setup-node action to v4.2.0 by @renovate in tj-actions/changed-files#2411

chore(deps): update dependency eslint-plugin-github to v5.1.6 by @renovate in tj-actions/changed-files#2413

chore(deps): update dependency @types/node to v22.12.0 by @renovate in tj-actions/changed-files#2414

chore(deps): update dependency @types/lodash to v4.17.15 by @renovate in tj-actions/changed-files#2415

chore(deps): update dependency eslint-plugin-github to v5.1.7 by @renovate in tj-actions/changed-files#2417

chore(deps): update dependency @types/node to v22.13.0 by @renovate in tj-actions/changed-files#2419

chore(deps): lock file maintenance by @renovate in tj-actions/changed-files#2420

chore(deps): update dependency @types/node to v22.13.1 by @renovate in tj-actions/changed-files#2422

chore(deps): update dependency eslint-plugin-github to v5.1.8 by @renovate in tj-actions/changed-files#2424

Full Changelog: tj-actions/changed-files@v45...v45.0.7

Changelog

Sourced from tj-actions/changed-files's changelog.

Changelog

45.0.7 - (2025-02-04)

🐛 Bug Fixes

deps: Update dependency @octokit/rest to v21.1.0 (#2394) (7b72c97) - (renovate[bot])

⚙️ Miscellaneous Tasks

deps: Update dependency eslint-plugin-github to v5.1.8 (#2424) (dcc7a0c) - (renovate[bot])

deps: Update dependency @types/node to v22.13.1 (#2422) (364748a) - (renovate[bot])

deps: Lock file maintenance (#2420) (301bed6) - (renovate[bot])

deps: Update dependency @types/node to v22.13.0 (#2419) (be1c470) - (renovate[bot])

deps: Update dependency eslint-plugin-github to v5.1.7 (#2417) (81785a6) - (renovate[bot])

deps: Update dependency @types/lodash to v4.17.15 (#2415) (065e671) - (renovate[bot])

deps: Update dependency @types/node to v22.12.0 (#2414) (45cd7f3) - (renovate[bot])

deps: Update dependency eslint-plugin-github to v5.1.6 (#2413) (47f21ba) - (renovate[bot])

deps: Update actions/setup-node action to v4.2.0 (#2411) (3b30412) - (renovate[bot])

deps: Lock file maintenance (#2410) (eec6665) - (renovate[bot])

deps: Update dependency @types/node to v22.10.10 (#2409) (cefd9aa) - (renovate[bot])

deps: Update dependency @types/node to v22.10.9 (#2408) (6296564) - (renovate[bot])

deps: Update dependency @types/node to v22.10.8 (#2407) (203f0af) - (renovate[bot])

deps: Lock file maintenance (#2406) (8b82442) - (renovate[bot])

deps: Update dependency eslint-plugin-prettier to v5.2.3 (#2405) (2b7a1ec) - (renovate[bot])

deps: Update dependency @types/node to v22.10.7 (#2403) (a2600ce) - (renovate[bot])

deps: Update dependency eslint-plugin-jest to v28.11.0 (#2400) (5dc51d3) - (renovate[bot])

deps: Update dependency eslint-plugin-prettier to v5.2.2 (#2399) (18de9f3) - (renovate[bot])

deps: Update dependency @types/node to v22.10.6 (#2397) (467e548) - (renovate[bot])

deps: Update dependency eslint-config-prettier to v10 (#2396) (556e62a) - (renovate[bot])

deps: Lock file maintenance (#2395) (4f1e6b0) - (renovate[bot])

deps: Update dependency typescript to v5.7.3 (#2393) (82deec7) - (renovate[bot])

deps: Update dependency eslint-plugin-github to v5.1.5 (#2392) (ef7202d) - (renovate[bot])

deps: Lock file maintenance (#2390) (01c978c) - (renovate[bot])

⬆️ Upgrades

Upgraded to v45.0.6 (#2389)

Co-authored-by: jackton1 17484350+jackton1@users.noreply.github.com (ed8e9f6) - (tj-actions[bot])

45.0.6 - (2025-01-03)

🐛 Bug Fixes

deps: Update dependency yaml to v2.7.0 (#2383) (5f974c2) - (renovate[bot])

⚙️ Miscellaneous Tasks

deps: Update dependency @types/lodash to v4.17.14 (#2388) (d6e91a2) - (renovate[bot])

... (truncated)

Commits

dcc7a0c chore(deps): update dependency eslint-plugin-github to v5.1.8 (#2424)
364748a chore(deps): update dependency @types/node to v22.13.1 (#2422)
301bed6 chore(deps): lock file maintenance (#2420)
be1c470 chore(deps): update dependency @types/node to v22.13.0 (#2419)
81785a6 chore(deps): update dependency eslint-plugin-github to v5.1.7 (#2417)
065e671 chore(deps): update dependency @types/lodash to v4.17.15 (#2415)
45cd7f3 chore(deps): update dependency @types/node to v22.12.0 (#2414)
47f21ba chore(deps): update dependency eslint-plugin-github to v5.1.6 (#2413)
3b30412 chore(deps): update actions/setup-node action to v4.2.0 (#2411)
eec6665 chore(deps): lock file maintenance (#2410)
Additional commits viewable in compare view

Updates docker/setup-buildx-action from 3.8.0 to 3.9.0

Release notes

Sourced from docker/setup-buildx-action's releases.

v3.9.0

Bump @docker/actions-toolkit from 0.48.0 to 0.54.0 in docker/setup-buildx-action#402 docker/setup-buildx-action#404

Full Changelog: docker/setup-buildx-action@v3.8.0...v3.9.0

Commits

f7ce87c Merge pull request #404 from docker/dependabot/npm_and_yarn/docker/actions-to...
aa1e2a0 chore: update generated content
673e008 build(deps): bump @docker/actions-toolkit from 0.53.0 to 0.54.0
ba31df4 Merge pull request #402 from docker/dependabot/npm_and_yarn/docker/actions-to...
5475af1 chore: update generated content
acacad9 build(deps): bump @docker/actions-toolkit from 0.48.0 to 0.53.0
6a25f98 Merge pull request #396 from crazy-max/bake-v6
ca1af17 update bake-action to v6
See full diff in compare view

Updates ossf/scorecard-action from 2.4.0 to 2.4.1

Release notes

Sourced from ossf/scorecard-action's releases.

v2.4.1

What's Changed

This update bumps the Scorecard version to the v5.1.1 release. For a complete list of changes, please refer to the v5.1.0 and v5.1.1 release notes.

Publishing results now uses half the API quota as before. The exact savings depends on the repository in question.

use Scorecard library entrypoint instead of Cobra hooking by @spencerschrock in ossf/scorecard-action#1423

Some errors were made into annotations to make them more visible

Make default branch error more prominent by @jsoref in ossf/scorecard-action#1459

There is now an optional file_mode input which controls how repository files are fetched from GitHub. The default is archive, but git produces the most accurate results for repositories with .gitattributes files at the cost of analysis speed.

add input for specifying --file-mode by @spencerschrock in ossf/scorecard-action#1509

The underlying container for the action is now hosted on GitHub Container Registry. There should be no functional changes.

🌱 publish docker images to GitHub Container Registry by @spencerschrock in ossf/scorecard-action#1453

Docs

Installation docs update by @JeremiahAHoward in ossf/scorecard-action#1416

New Contributors

@JeremiahAHoward made their first contribution in ossf/scorecard-action#1416

@jsoref made their first contribution in ossf/scorecard-action#1459 Full Changelog: ossf/scorecard-action@v2.4.0...v2.4.1

Commits

f49aabe bump docker to ghcr v2.4.1 (#1478)
30a595b 🌱 Bump github.com/sigstore/cosign/v2 from 2.4.2 to 2.4.3 (#1515)
69ae593 omit vcs info from build (#1514)
6a62a1c add input for specifying --file-mode (#1509)
2722664 🌱 Bump the github-actions group with 2 updates (#1510)
ae0ef31 🌱 Bump github.com/spf13/cobra from 1.8.1 to 1.9.1 (#1512)
3676bbc 🌱 Bump golang from 1.23.6 to 1.24.0 in the docker-images group (#1513)
ae7548a Limit codeQL push trigger to main branch (#1507)
9165624 upgrade scorecard to v5.1.0 (#1508)
620fd28 🌱 Bump the github-actions group with 2 updates (#1505)
Additional commits viewable in compare view

Updates github/codeql-action from 3.28.1 to 3.28.10

Release notes

Sourced from github/codeql-action's releases.

v3.28.10

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.10 - 21 Feb 2025

Update default CodeQL bundle version to 2.20.5. #2772

Address an issue where the CodeQL Bundle would occasionally fail to decompress on macOS. #2768

See the full CHANGELOG.md for more information.

v3.28.9

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.9 - 07 Feb 2025

Update default CodeQL bundle version to 2.20.4. #2753

See the full CHANGELOG.md for more information.

v3.28.8

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.8 - 29 Jan 2025

Enable support for Kotlin 2.1.10 when running with CodeQL CLI v2.20.3. #2744

See the full CHANGELOG.md for more information.

v3.28.7

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.7 - 29 Jan 2025

No user facing changes.

See the full CHANGELOG.md for more information.

v3.28.6

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

... (truncated)

Changelog

Sourced from github/codeql-action's changelog.

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

[UNRELEASED]

No user facing changes.

3.28.10 - 21 Feb 2025

Update default CodeQL bundle version to 2.20.5. #2772

Address an issue where the CodeQL Bundle would occasionally fail to decompress on macOS. #2768

3.28.9 - 07 Feb 2025

Up...
Description has been truncated

Bumps the github-actions group with 13 updates in the / directory: | Package | From | To | | --- | --- | --- | | [step-security/harden-runner](https://github.com/step-security/harden-runner) | `2.10.4` | `2.11.0` | | [crate-ci/typos](https://github.com/crate-ci/typos) | `1.29.4` | `1.29.9` | | [azure/setup-helm](https://github.com/azure/setup-helm) | `4.2.0` | `4.3.0` | | [google-github-actions/auth](https://github.com/google-github-actions/auth) | `2.1.7` | `2.1.8` | | [google-github-actions/setup-gcloud](https://github.com/google-github-actions/setup-gcloud) | `2.1.2` | `2.1.4` | | [fluxcd/flux2](https://github.com/fluxcd/flux2) | `2.4.0` | `2.5.0` | | [google-github-actions/get-gke-credentials](https://github.com/google-github-actions/get-gke-credentials) | `2.3.0` | `2.3.1` | | [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) | `2.2.0` | `2.3.0` | | [tj-actions/changed-files](https://github.com/tj-actions/changed-files) | `45.0.6` | `45.0.7` | | [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `3.8.0` | `3.9.0` | | [ossf/scorecard-action](https://github.com/ossf/scorecard-action) | `2.4.0` | `2.4.1` | | [github/codeql-action](https://github.com/github/codeql-action) | `3.28.1` | `3.28.10` | | [umbrelladocs/action-linkspector](https://github.com/umbrelladocs/action-linkspector) | `1.2.4` | `1.2.5` | Updates `step-security/harden-runner` from 2.10.4 to 2.11.0 - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](step-security/harden-runner@cb605e5...4d991eb) Updates `crate-ci/typos` from 1.29.4 to 1.29.9 - [Release notes](https://github.com/crate-ci/typos/releases) - [Changelog](https://github.com/crate-ci/typos/blob/master/CHANGELOG.md) - [Commits](crate-ci/typos@685eb3d...212923e) Updates `azure/setup-helm` from 4.2.0 to 4.3.0 - [Release notes](https://github.com/azure/setup-helm/releases) - [Changelog](https://github.com/Azure/setup-helm/blob/main/CHANGELOG.md) - [Commits](Azure/setup-helm@fe7b79c...b9e5190) Updates `google-github-actions/auth` from 2.1.7 to 2.1.8 - [Release notes](https://github.com/google-github-actions/auth/releases) - [Changelog](https://github.com/google-github-actions/auth/blob/main/CHANGELOG.md) - [Commits](google-github-actions/auth@6fc4af4...71f9864) Updates `google-github-actions/setup-gcloud` from 2.1.2 to 2.1.4 - [Release notes](https://github.com/google-github-actions/setup-gcloud/releases) - [Changelog](https://github.com/google-github-actions/setup-gcloud/blob/main/CHANGELOG.md) - [Commits](google-github-actions/setup-gcloud@6189d56...77e7a55) Updates `fluxcd/flux2` from 2.4.0 to 2.5.0 - [Release notes](https://github.com/fluxcd/flux2/releases) - [Changelog](https://github.com/fluxcd/flux2/blob/main/.goreleaser.yml) - [Commits](fluxcd/flux2@5350425...af67405) Updates `google-github-actions/get-gke-credentials` from 2.3.0 to 2.3.1 - [Release notes](https://github.com/google-github-actions/get-gke-credentials/releases) - [Changelog](https://github.com/google-github-actions/get-gke-credentials/blob/main/CHANGELOG.md) - [Commits](google-github-actions/get-gke-credentials@9025e8f...7a108e6) Updates `dependabot/fetch-metadata` from 2.2.0 to 2.3.0 - [Release notes](https://github.com/dependabot/fetch-metadata/releases) - [Commits](dependabot/fetch-metadata@dbb049a...d7267f6) Updates `tj-actions/changed-files` from 45.0.6 to 45.0.7 - [Release notes](https://github.com/tj-actions/changed-files/releases) - [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md) - [Commits](tj-actions/changed-files@d6e91a2...dcc7a0c) Updates `docker/setup-buildx-action` from 3.8.0 to 3.9.0 - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](docker/setup-buildx-action@6524bf6...f7ce87c) Updates `ossf/scorecard-action` from 2.4.0 to 2.4.1 - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](ossf/scorecard-action@62b2cac...f49aabe) Updates `github/codeql-action` from 3.28.1 to 3.28.10 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@b6a472f...b56ba49) Updates `umbrelladocs/action-linkspector` from 1.2.4 to 1.2.5 - [Release notes](https://github.com/umbrelladocs/action-linkspector/releases) - [Commits](UmbrellaDocs/action-linkspector@fc382e1...de84085) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: crate-ci/typos dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: azure/setup-helm dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: google-github-actions/auth dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: google-github-actions/setup-gcloud dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: fluxcd/flux2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: google-github-actions/get-gke-credentials dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: dependabot/fetch-metadata dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: tj-actions/changed-files dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: umbrelladocs/action-linkspector dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2025-03-03T06:30:46Z

Superseded by #180.

dependabot bot closed this Mar 3, 2025

dependabot bot deleted the dependabot/github_actions/github-actions-86e0c132cb branch March 3, 2025 06:30

github-actions bot locked and limited conversation to collaborators Mar 3, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

ci: bump the github-actions group across 1 directory with 13 updates #167

ci: bump the github-actions group across 1 directory with 13 updates #167

Uh oh!

dependabot bot commented on behalf of github Feb 24, 2025 •

edited

Loading

Uh oh!

dependabot bot commented on behalf of github Mar 3, 2025

Uh oh!

Uh oh!

ci: bump the github-actions group across 1 directory with 13 updates #167

ci: bump the github-actions group across 1 directory with 13 updates #167

Uh oh!

Conversation

dependabot bot commented on behalf of github Feb 24, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v2.11.0

What's Changed

v1.29.9

[1.29.9] - 2025-02-20

Fixes

v1.29.8

[1.29.8] - 2025-02-19

Features

v1.29.7

[1.29.7] - 2025-02-13

Fixes

v1.29.6

[1.29.6] - 2025-02-13

Features

v1.29.5

[1.29.5] - 2025-01-30

Internal

Change Log

[Unreleased] - ReleaseDate

[1.29.9] - 2025-02-20

Fixes

[1.29.8] - 2025-02-19

Features

[1.29.7] - 2025-02-13

Fixes

[1.29.6] - 2025-02-13

Features

[1.29.5] - 2025-01-30

Internal

[1.29.4] - 2025-01-03

[1.29.3] - 2025-01-02

[1.29.2] - 2025-01-02

[1.29.1] - 2025-01-02

Fixes

v4.3.0

Change Log

[4.3.0] - 2025-02-15

[4.2.0] - 2024-04-15

[4.1.0] - 2024-03-01

[4.0.0] - 2024-02-12

v2.1.8

What's Changed

New Contributors

v2.1.4

What's Changed

v2.1.3

What's Changed

v2.5.0

Highlights

Kubernetes compatibility

OpenShift compatibility

Upgrade procedure

v2.3.1

What's Changed

v2.3.0

What's Changed

New Contributors

v45.0.7

What's Changed

Changelog

45.0.7 - (2025-02-04)

🐛 Bug Fixes

⚙️ Miscellaneous Tasks

⬆️ Upgrades

45.0.6 - (2025-01-03)

🐛 Bug Fixes

⚙️ Miscellaneous Tasks

v3.9.0

v2.4.1

What's Changed

Docs

New Contributors

v3.28.10

CodeQL Action Changelog

dependabot bot commented on behalf of github Feb 24, 2025 •

edited

Loading