-
Notifications
You must be signed in to change notification settings - Fork 1
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
chore(deps): Bump the github-actions-dependencies group with 3 updates #146
chore(deps): Bump the github-actions-dependencies group with 3 updates #146
Conversation
Bumps the github-actions-dependencies group with 3 updates: [github/codeql-action](https://github.com/github/codeql-action), [python-semantic-release/python-semantic-release](https://github.com/python-semantic-release/python-semantic-release) and [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish). Updates `github/codeql-action` from 3.27.0 to 3.27.1 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@6624720...4f3212b) Updates `python-semantic-release/python-semantic-release` from 9.12.0 to 9.14.0 - [Release notes](https://github.com/python-semantic-release/python-semantic-release/releases) - [Changelog](https://github.com/python-semantic-release/python-semantic-release/blob/master/CHANGELOG.md) - [Commits](python-semantic-release/python-semantic-release@c1bcfdb...825655a) Updates `pypa/gh-action-pypi-publish` from 1.11.0 to 1.12.2 - [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases) - [Commits](pypa/gh-action-pypi-publish@fb13cb3...15c56db) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions-dependencies - dependency-name: python-semantic-release/python-semantic-release dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions-dependencies - dependency-name: pypa/gh-action-pypi-publish dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>
Reviewer's Guide by SourceryThis PR updates three GitHub Actions dependencies to their latest versions. The changes are focused on version bumps in workflow files, with no functional changes to the codebase itself. No diagrams generated as the changes look simple and do not need a visual representation. File-Level Changes
Tips and commandsInteracting with Sourcery
Customizing Your ExperienceAccess your dashboard to:
Getting Help
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We have skipped reviewing this pull request. It seems to have been created by a bot (hey, dependabot[bot]!). We assume it knows what it's doing!
Bumps the github-actions-dependencies group with 3 updates: github/codeql-action, python-semantic-release/python-semantic-release and pypa/gh-action-pypi-publish.
Updates
github/codeql-action
from 3.27.0 to 3.27.1Release notes
Sourced from github/codeql-action's releases.
Changelog
Sourced from github/codeql-action's changelog.
... (truncated)
Commits
4f3212b
Merge pull request #2585 from github/update-v3.27.1-3ef4c084563b548d
Update changelog for v3.27.13ef4c08
Merge pull request #2576 from github/update-bundle/codeql-bundle-v2.19.34e033f0
Merge branch 'main' into update-bundle/codeql-bundle-v2.19.35ac2ddd
Merge pull request #2580 from jsoref/minor-cleanup3b7b85f
Conditionally clear runner cache688ea53
Fix publish-immutable-action version1e6d67b
Give expected-queries-runs permissionsd5e7384
Strip trailing whitespace generated by ruamel-yaml756aa64
spelling: macosUpdates
python-semantic-release/python-semantic-release
from 9.12.0 to 9.14.0Release notes
Sourced from python-semantic-release/python-semantic-release's releases.
... (truncated)
Changelog
Sourced from python-semantic-release/python-semantic-release's changelog.
... (truncated)
Commits
825655a
9.14.03fae260
refactor(changelog-rst): simplify & add user configuration toggle of initial_...4597482
refactor(changelog-md): simplify & add user configuration toggle of initial_r...1e57ae4
test(changelog): add test cases to exercise newmask_initial_release
featuref294957
docs(changelog-templates): document newmask_initial_release
changelog cont...6f2ee39
feat(context): addmask_initial_release
setting to changelog context3cabcdc
docs(configuration): document newmask_initial_release
option usage & effect595a70b
feat(configuration): addchangelog.default_templates.mask_initial_release
o...11d6310
test(fixtures): add toggle value to switch changelog mask initial release in ...92f4785
test(fixtures): adjust changelog generator to write an initial release segmentUpdates
pypa/gh-action-pypi-publish
from 1.11.0 to 1.12.2Release notes
Sourced from pypa/gh-action-pypi-publish's releases.
Commits
15c56db
Merge pull request #297 from trail-of-forks/ww/bump-pypi-attestationsfe8d148
requirements: bump pypi-attestations to 0.0.151f5d4ec
Merge pull request #295 from trail-of-forks/ww/fix-sdist-collectionfec2f0c
attestations: collect *.zip sdists as wella8b73a6
Merge pull request #294 from webknjaz/bugfixes/optional-python9b4dfb0
✨ Pre-install Python if there's none0a87186
Merge pull request #293 from webknjaz/bugfixes/uncheckout-intermediate-actiondfcfeca
🧪 Use prefetched action to make trampoline0d02f37
📝💅 Update the CI/CD badge in README61da13d
Merge pull request #230 from br3ndonland/ghcrDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditionsSummary by Sourcery
CI:
github/codeql-action
to v3.27.1,python-semantic-release
to v9.14.0, andpypa/gh-action-pypi-publish
to v1.12.2.