From 63401dce49683a6b97fc3bf14ffe96c6125cefd6 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Feb 2025 16:45:03 +0000 Subject: [PATCH 1/4] build(deps): bump crowdin/github-action from 2.6.0 to 2.6.1 (#10675) Bumps [crowdin/github-action](https://github.com/crowdin/github-action) from 2.6.0 to 2.6.1. - [Release notes](https://github.com/crowdin/github-action/releases) - [Commits](https://github.com/crowdin/github-action/compare/a828bb1ae32c23bef9a6d25fd51c7feecf7b5f24...2cc7959c565767d6bc118118d6df3b63bf361370) --- updated-dependencies: - dependency-name: crowdin/github-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/pull-from-crowdin.yml | 2 +- .github/workflows/release.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/pull-from-crowdin.yml b/.github/workflows/pull-from-crowdin.yml index def348fd3d..f3ea8dd107 100644 --- a/.github/workflows/pull-from-crowdin.yml +++ b/.github/workflows/pull-from-crowdin.yml @@ -10,7 +10,7 @@ jobs: - name: Checkout uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Pull translations from Crowdin - uses: crowdin/github-action@a828bb1ae32c23bef9a6d25fd51c7feecf7b5f24 # v2.6.0 + uses: crowdin/github-action@2cc7959c565767d6bc118118d6df3b63bf361370 # v2.6.1 with: upload_sources: false download_translations: true diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index ae350087e7..1f65258614 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -198,7 +198,7 @@ jobs: uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Push Source Files to Crowdin - uses: crowdin/github-action@a828bb1ae32c23bef9a6d25fd51c7feecf7b5f24 # v2.6.0 + uses: crowdin/github-action@2cc7959c565767d6bc118118d6df3b63bf361370 # v2.6.1 with: upload_sources: true upload_sources_args: --delete-obsolete From b17c42d57cea5ef39ff8e7fbdf89e1b9a98caa00 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Feb 2025 16:45:33 +0000 Subject: [PATCH 2/4] build(deps): bump github/codeql-action from 3.28.9 to 3.28.10 (#10677) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.28.9 to 3.28.10. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0...b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/codeql-analysis.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 3a84da38e2..b7509dd015 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -30,7 +30,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3.28.9 + uses: github/codeql-action/init@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10 # Override language selection by uncommenting this and choosing your languages with: languages: javascript @@ -39,7 +39,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3.28.9 + uses: github/codeql-action/autobuild@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10 # ℹī¸ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl @@ -53,4 +53,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3.28.9 + uses: github/codeql-action/analyze@b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d # v3.28.10 From ec70dccc9fa86be4ec7d67ea582e379ea4ef634e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Feb 2025 16:45:53 +0000 Subject: [PATCH 3/4] build(deps): bump Alfresco/alfresco-build-tools from 8.14.0 to 8.14.1 (#10676) Bumps [Alfresco/alfresco-build-tools](https://github.com/alfresco/alfresco-build-tools) from 8.14.0 to 8.14.1. - [Release notes](https://github.com/alfresco/alfresco-build-tools/releases) - [Commits](https://github.com/alfresco/alfresco-build-tools/compare/29e77d9158142e043783ea9eb831535b06474860...695272dc5144fc5484e4ea610ae82715fb6294c8) --- updated-dependencies: - dependency-name: Alfresco/alfresco-build-tools dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/pull-request.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/pull-request.yml b/.github/workflows/pull-request.yml index c459d47dac..1295fe3c1e 100644 --- a/.github/workflows/pull-request.yml +++ b/.github/workflows/pull-request.yml @@ -84,10 +84,10 @@ jobs: fetch-depth: 0 - name: Get branch name - uses: Alfresco/alfresco-build-tools/.github/actions/get-branch-name@29e77d9158142e043783ea9eb831535b06474860 # v8.14.0 + uses: Alfresco/alfresco-build-tools/.github/actions/get-branch-name@695272dc5144fc5484e4ea610ae82715fb6294c8 # v8.14.1 - name: Save commit message - uses: Alfresco/alfresco-build-tools/.github/actions/get-commit-message@29e77d9158142e043783ea9eb831535b06474860 # v8.14.0 + uses: Alfresco/alfresco-build-tools/.github/actions/get-commit-message@695272dc5144fc5484e4ea610ae82715fb6294c8 # v8.14.1 - name: ci:force flag parser shell: bash From ba322b70b266ae991e2903d18c1b387552f32729 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Feb 2025 16:46:53 +0000 Subject: [PATCH 4/4] build(deps): bump actions/cache in /.github/actions/setup (#10674) Bumps [actions/cache](https://github.com/actions/cache) from 4.2.0 to 4.2.1. - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/1bd1e32a3bdc45362d1e726936510720a7c30a57...0c907a75c2c80ebcb7f088228285e798b750cf8f) --- updated-dependencies: - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/actions/setup/action.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/actions/setup/action.yml b/.github/actions/setup/action.yml index fe9a1ae600..ba91941473 100644 --- a/.github/actions/setup/action.yml +++ b/.github/actions/setup/action.yml @@ -31,7 +31,7 @@ runs: - name: Node Modules cache id: node-modules-cache if: ${{ inputs.enable-node-modules-cache == 'true' }} - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 + uses: actions/cache@0c907a75c2c80ebcb7f088228285e798b750cf8f # v4.2.1 env: cache-name: node-modules-cache with: @@ -43,7 +43,7 @@ runs: node_modules-${{ runner.os }}-build- node_modules-${{ runner.os }}- - name: pip cache - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 + uses: actions/cache@0c907a75c2c80ebcb7f088228285e798b750cf8f # v4.2.1 if: ${{ inputs.enable-cache == 'true' }} with: path: ~/.cache/pip