Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump actions/download-artifact from 3.0.1 to 4.1.7 in /.github/workflows in the github_actions group across 1 directory #3217

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 3, 2024

Bumps the github_actions group with 1 update in the /.github/workflows directory: actions/download-artifact.

Updates actions/download-artifact from 3.0.1 to 4.1.7

Release notes

Sourced from actions/download-artifact's releases.

v4.1.7

What's Changed

Full Changelog: actions/download-artifact@v4.1.6...v4.1.7

v4.1.6

What's Changed

Full Changelog: actions/download-artifact@v4.1.5...v4.1.6

v4.1.5

What's Changed

Full Changelog: actions/download-artifact@v4.1.4...v4.1.5

v4.1.4

What's Changed

Full Changelog: actions/download-artifact@v4...v4.1.4

v4.1.3

What's Changed

New Contributors

Full Changelog: actions/download-artifact@v4...v4.1.3

v4.1.2

v4.1.1

v4.1.0

What's Changed

... (truncated)

Commits
  • 65a9edc Merge pull request #325 from bethanyj28/main
  • fdd1595 licensed
  • c13dba1 update @​actions/artifact dependency
  • 0daa75e Merge pull request #324 from actions/eggyhead/use-artifact-v2.1.6
  • 9c19ed7 Merge branch 'main' into eggyhead/use-artifact-v2.1.6
  • 3d3ea87 updating license
  • 89af5db updating artifact package v2.1.6
  • b4aefff Merge pull request #323 from actions/eggyhead/update-artifact-v215
  • 8caf195 package lock update
  • d7a2ec4 updating package version
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps the github_actions group with 1 update in the /.github/workflows directory: [actions/download-artifact](https://github.com/actions/download-artifact).


Updates `actions/download-artifact` from 3.0.1 to 4.1.7
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](actions/download-artifact@v3.0.1...v4.1.7)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  dependency-group: github_actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added github_actions Pull requests that update GitHub Actions code pep003-advanced-dependencies Implementation of the Advanced Dependencies proposal labels Sep 3, 2024
@kichristensen kichristensen removed the pep003-advanced-dependencies Implementation of the Advanced Dependencies proposal label Sep 13, 2024
@kichristensen kichristensen merged commit e38839b into main Sep 13, 2024
37 of 40 checks passed
@kichristensen kichristensen deleted the dependabot/github_actions/dot-github/workflows/github_actions-14598a9f5f branch September 13, 2024 18:53
jmcudd pushed a commit to jmcudd/porter that referenced this pull request Sep 21, 2024
…ows in the github_actions group across 1 directory (getporter#3217)

Bump actions/download-artifact

Bumps the github_actions group with 1 update in the /.github/workflows directory: [actions/download-artifact](https://github.com/actions/download-artifact).

Updates `actions/download-artifact` from 3.0.1 to 4.1.7
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](actions/download-artifact@v3.0.1...v4.1.7)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  dependency-group: github_actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: John Cudd <jmcudd@gmail.com>
kichristensen added a commit that referenced this pull request Sep 24, 2024
* Simplified the bundle script

Signed-off-by: John Cudd <jmcudd@gmail.com>

* Added contributor

Signed-off-by: John Cudd <jmcudd@gmail.com>

* Updated docs

Signed-off-by: John Cudd <jmcudd@gmail.com>

* Removed trailing space

Signed-off-by: John Cudd <jmcudd@gmail.com>

* Added a note about mixins not being included

Signed-off-by: John Cudd <jmcudd@gmail.com>

* Tweaked the docs a bit

Signed-off-by: John Cudd <jmcudd@gmail.com>

* Added link at top

Signed-off-by: John Cudd <jmcudd@gmail.com>

* Add bundle script to release and netify redirects

Signed-off-by: John Cudd <jmcudd@gmail.com>

* Call host secrets plugin directly when resolving secrets (#3155)

We should not require all secret plugins to call the host secrets plugin
for non secret values. Instead we should call the host secrets plugin
directly.

Signed-off-by: Kim Christensen <kimworking@gmail.com>
Co-authored-by: schristoff <28318173+schristoff@users.noreply.github.com>
Signed-off-by: John Cudd <jmcudd@gmail.com>

* Add doc for AKS integration (#3206)

* add doc for AKS integration

Signed-off-by: dejanualex <dejanualexandru@gmail.com>

* remove merge action and outputs

Signed-off-by: dejanualex <dejanualexandru@gmail.com>

---------

Signed-off-by: dejanualex <dejanualexandru@gmail.com>
Co-authored-by: Kim Christensen <2461567+kichristensen@users.noreply.github.com>
Signed-off-by: John Cudd <jmcudd@gmail.com>

* Do not reference CNAB invocation images in documentation (#3200)

* Do not reference CNAB invocation images

As CNAB is an implementation detail as this point, we no longer want
to use the term 'invocation image'. Instead we should use the term
'bundle image'.
This PR ensures that the current references to 'invocation image' is
changed to 'bundle image'.

Signed-off-by: Kim Christensen <kimworking@gmail.com>

---------

Signed-off-by: Kim Christensen <kimworking@gmail.com>
Co-authored-by: schristoff <28318173+schristoff@users.noreply.github.com>
Signed-off-by: John Cudd <jmcudd@gmail.com>

* Bump actions/download-artifact from 3.0.1 to 4.1.7 in /.github/workflows in the github_actions group across 1 directory (#3217)

Bump actions/download-artifact

Bumps the github_actions group with 1 update in the /.github/workflows directory: [actions/download-artifact](https://github.com/actions/download-artifact).

Updates `actions/download-artifact` from 3.0.1 to 4.1.7
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](actions/download-artifact@v3.0.1...v4.1.7)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  dependency-group: github_actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: John Cudd <jmcudd@gmail.com>

* fix: Update version of upload-artifact (#3219)

fix: Update upload-artifact action version

Signed-off-by: Kim Christensen <kimworking@gmail.com>
Signed-off-by: John Cudd <jmcudd@gmail.com>

* Correct the Cosign links that have stopped working (#3220)

fix: Correct the Cosign links that have stopped working

Signed-off-by: Kim Christensen <kimworking@gmail.com>
Co-authored-by: schristoff <28318173+schristoff@users.noreply.github.com>
Signed-off-by: John Cudd <jmcudd@gmail.com>

* Upgrade should not be allowed if installation is not installed (#3213)

fix: Upgrade should not be allowed if installation is not installed

Signed-off-by: Kim Christensen <kimworking@gmail.com>
Signed-off-by: John Cudd <jmcudd@gmail.com>

* Updated documentation to explain mongo

Also removed echo from the extraction instructions.

Signed-off-by: John Cudd <jmcudd@gmail.com>

---------

Signed-off-by: John Cudd <jmcudd@gmail.com>
Signed-off-by: Kim Christensen <kimworking@gmail.com>
Signed-off-by: dejanualex <dejanualexandru@gmail.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Kim Christensen <2461567+kichristensen@users.noreply.github.com>
Co-authored-by: schristoff <28318173+schristoff@users.noreply.github.com>
Co-authored-by: dejanualex <dejanualexandru@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
github_actions Pull requests that update GitHub Actions code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant