Skip to content

chore(deps): update github-actions deps #1133

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Sep 17, 2025
Merged

chore(deps): update github-actions deps #1133

merged 3 commits into from
Sep 17, 2025

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Aug 19, 2025
edited
Loading

Coming soon: The Renovate bot (GitHub App) will be renamed to Mend. PRs from Renovate will soon appear from 'Mend'. Learn more here.

This PR contains the following updates:

Package Type Update Change
actions/create-github-app-token action patch v2.1.1 -> v2.1.4
anchore/sbom-action action patch v0.20.4 -> v0.20.6
github/codeql-action action minor v3.29.9 -> v3.30.3
go uses-with minor ~1.24 -> ~1.25.0
lycheeverse/lychee-action action minor v2.5.0 -> v2.6.1
sigstore/cosign-installer action minor v3.9.2 -> v3.10.0

Release Notes

actions/create-github-app-token (actions/create-github-app-token)

v2.1.4

Compare Source

Bug Fixes

v2.1.3

Compare Source

Bug Fixes
  • deps: bump undici from 7.8.0 to 7.10.0 in the production-dependencies group (#​254) (f3d5ec2)

v2.1.2

Compare Source

Bug Fixes
anchore/sbom-action (anchore/sbom-action)

v0.20.6

Compare Source

Changes in v0.20.6

v0.20.5

Compare Source

Changes in v0.20.5
github/codeql-action (github/codeql-action)

v3.30.3

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.30.3 - 10 Sep 2025

No user facing changes.

See the full CHANGELOG.md for more information.

v3.30.2

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.30.2 - 09 Sep 2025

  • Fixed a bug which could cause language autodetection to fail. #​3084
  • Experimental: The quality-queries input that was added in 3.29.2 as part of an internal experiment is now deprecated and will be removed in an upcoming version of the CodeQL Action. It has been superseded by a new analysis-kinds input, which is part of the same internal experiment. Do not use this in production as it is subject to change at any time. #​3064

See the full CHANGELOG.md for more information.

v3.30.1

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.30.1 - 05 Sep 2025
  • Update default CodeQL bundle version to 2.23.0. #​3077

See the full CHANGELOG.md for more information.

v3.30.0

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.30.0 - 01 Sep 2025
  • Reduce the size of the CodeQL Action, speeding up workflows by approximately 4 seconds. #​3054

See the full CHANGELOG.md for more information.

v3.29.11

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.29.11 - 21 Aug 2025
  • Update default CodeQL bundle version to 2.22.4. #​3044

See the full CHANGELOG.md for more information.

v3.29.10

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.29.10 - 18 Aug 2025

No user facing changes.

See the full CHANGELOG.md for more information.

actions/go-versions (go)

v1.25.1: 1.25.1

Compare Source

Go 1.25.1

v1.25.0: 1.25.0

Compare Source

Go 1.25.0

lycheeverse/lychee-action (lycheeverse/lychee-action)

v2.6.1: Version 2.6.1

Compare Source

What's Changed

Full Changelog: lycheeverse/lychee-action@v2...v2.6.1

v2.6.0: Version 2.6.0

Compare Source

What's Changed

Full Changelog: lycheeverse/lychee-action@v2...v2.6.0

sigstore/cosign-installer (sigstore/cosign-installer)

v3.10.0

Compare Source

What's Changed

  • Bump default Cosign to v2.6.0 in #​200

Full Changelog: sigstore/cosign-installer@v3.9.2...v3.10.0

Configuration

📅 Schedule: Branch creation - "on tuesday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added dependencies Pull requests that update a dependency file renovatebot labels Aug 19, 2025
@renovate renovate bot requested a review from a team as a code owner August 19, 2025 02:10
@renovate renovate bot added the dependencies Pull requests that update a dependency file label Aug 19, 2025
@renovate renovate bot requested a review from atoulme August 19, 2025 02:10
@renovate renovate bot added the renovatebot label Aug 19, 2025
@renovate renovate bot force-pushed the renovate/github-actions-deps branch 19 times, most recently from fb37233 to c6a4700 Compare August 26, 2025 06:26
@renovate renovate bot force-pushed the renovate/github-actions-deps branch 4 times, most recently from 3981081 to 336c68d Compare August 31, 2025 00:33
@renovate renovate bot force-pushed the renovate/github-actions-deps branch from 336c68d to e3b8563 Compare September 2, 2025 19:09
@renovate renovate bot force-pushed the renovate/github-actions-deps branch 6 times, most recently from edc4d95 to 02d8483 Compare September 9, 2025 17:14
@renovate renovate bot force-pushed the renovate/github-actions-deps branch 7 times, most recently from 717d38f to a041b96 Compare September 16, 2025 12:43
@renovate renovate bot force-pushed the renovate/github-actions-deps branch from a041b96 to 6a3a5b9 Compare September 16, 2025 19:22
mowies
mowies reviewed Sep 17, 2025
View reviewed changes
mowies
mowies reviewed Sep 17, 2025
View reviewed changes
@mowies mowies enabled auto-merge September 17, 2025 06:16
@mowies mowies added this pull request to the merge queue Sep 17, 2025
Merged via the queue into main with commit b6475c0 Sep 17, 2025
87 checks passed
@mowies mowies deleted the renovate/github-actions-deps branch September 17, 2025 06:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mowies mowies mowies approved these changes

@atoulme atoulme Awaiting requested review from atoulme atoulme is a code owner automatically assigned from open-telemetry/collector-releases-approvers

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file renovatebot

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mowies