Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the github-actions group across 1 directory with 6 updates #101

Open
wants to merge 1 commit into
base: devel
Choose a base branch
from
Open

chore(deps): bump the github-actions group across 1 directory with 6 updates #101

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Feb 1, 2025
edited by sourcery-ai bot
Loading

Bumps the github-actions group with 6 updates in the / directory:

Package From To
aquaproj/aqua-installer 3.0.1 3.1.1
actions/cache 4.0.2 4.2.0
helm/chart-testing-action 2.6.1 2.7.0
helm/kind-action 1.10.0 1.12.0
sigstore/cosign-installer 3.5.0 3.7.0
golangci/golangci-lint-action 6.0.1 6.2.0

Updates aquaproj/aqua-installer from 3.0.1 to 3.1.1

Release notes

Sourced from aquaproj/aqua-installer's releases.

v3.1.1

aquaproj/aqua-installer@v3.1.0...v3.1.1

SHA256 Checksum

e9d4c99577c6b2ce0b62edf61f089e9b9891af1708e88c6592907d2de66e3714  aqua-installer

🐛 Bug Fixes

#750 Fix a bug that aqua-installer doesn't work using Darwin's built-in sha256sum @​Takashi-kun

aqua-installer worked well using GNU sha256sum, but it didn't work using Darwin's built-in sha256sum.

$ ./aqua-installer
[INFO] Installing aqua v2.37.2 for bootstrapping...
[INFO] Downloading https://github.com/aquaproj/aqua/releases/download/v2.37.2/aqua_darwin_arm64.tar.gz ...
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0
100 6716k  100 6716k    0     0  1227k      0  0:00:05  0:00:05 --:--:-- 1706k
[INFO] Verifying checksum of aqua v2.37.2 ...
usage: sha256sum [-bctwz] [files ...]
$ echo $?
1

v3.1.0

aquaproj/aqua-installer@v3.0.2...v3.1.0

SHA256 checksum

62fecc49c98bdec0bba1ff1e5c2719f116e235769e0998090a7397473ef631e9  aqua-installer

Features

#709 action: Add an input skip_install_aqua

If this true and aqua is already installed, installing aqua is skipped. This input is useful when you want to ensure aqua is installed.

Fixes

#708 action: stop adding bat to $PATH on Windows

v3.0.2

... (truncated)

Commits
  • e2d0136 take inputs from stdin (#750)
  • 8d64930 chore(deps): update dependency rhysd/actionlint to v1.7.7 (#749)
  • a20c731 chore(deps): update golang docker tag to v1.23.5 (#748)
  • 27bffbe chore(deps): update dependency aquaproj/aqua to v2.42.2 (#747)
  • dd9b40d chore(deps): update dependency aquaproj/aqua to v2.42.1 (#746)
  • beb1651 chore(deps): update dependency aquaproj/aqua to v2.42.0 (#745)
  • 378dd16 chore(deps): update dependency rhysd/actionlint to v1.7.6 (#744)
  • 4e64cea chore(deps): update dependency golangci/golangci-lint to v1.63.4 (#743)
  • 679acdf chore(deps): update dependency golangci/golangci-lint to v1.63.3 (#742)
  • 39d6adc chore(deps): update dependency golangci/golangci-lint to v1.63.2 (#741)
  • Additional commits viewable in compare view

Updates actions/cache from 4.0.2 to 4.2.0

Release notes

Sourced from actions/cache's releases.

v4.2.0

⚠️ Important Changes

The cache backend service has been rewritten from the ground up for improved performance and reliability. actions/cache now integrates with the new cache service (v2) APIs.

The new service will gradually roll out as of February 1st, 2025. The legacy service will also be sunset on the same date. Changes in these release are fully backward compatible.

We are deprecating some versions of this action. We recommend upgrading to version v4 or v3 as soon as possible before February 1st, 2025. (Upgrade instructions below).

If you are using pinned SHAs, please use the SHAs of versions v4.2.0 or v3.4.0

If you do not upgrade, all workflow runs using any of the deprecated actions/cache will fail.

Upgrading to the recommended versions will not break your workflows.

Read more about the change & access the migration guide: reference to the announcement.

Minor changes

Minor and patch version updates for these dependencies:

  • @​actions/core: 1.11.1
  • @​actions/io: 1.1.3
  • @​vercel/ncc: 0.38.3

Full Changelog: actions/cache@v4...v4.2.0

v4.1.2

What's Changed

New Contributors

Full Changelog: actions/cache@v4...v4.1.2

v4.1.1

What's Changed

... (truncated)

Changelog

Sourced from actions/cache's changelog.

4.2.0

TLDR; The cache backend service has been rewritten from the ground up for improved performance and reliability. actions/cache now integrates with the new cache service (v2) APIs.

The new service will gradually roll out as of February 1st, 2025. The legacy service will also be sunset on the same date. Changes in these release are fully backward compatible.

We are deprecating some versions of this action. We recommend upgrading to version v4 or v3 as soon as possible before February 1st, 2025. (Upgrade instructions below).

If you are using pinned SHAs, please use the SHAs of versions v4.2.0 or v3.4.0

If you do not upgrade, all workflow runs using any of the deprecated actions/cache will fail.

Upgrading to the recommended versions will not break your workflows.

4.1.2

  • Add GitHub Enterprise Cloud instances hostname filters to inform API endpoint choices - #1474
  • Security fix: Bump braces from 3.0.2 to 3.0.3 - #1475

4.1.1

  • Restore original behavior of cache-hit output - #1467

4.1.0

  • Ensure cache-hit output is set when a cache is missed - #1404
  • Deprecate save-always input - #1452
Commits

Updates helm/chart-testing-action from 2.6.1 to 2.7.0

Release notes

Sourced from helm/chart-testing-action's releases.

v2.7.0

For ct change see https://github.com/helm/chart-testing/releases/tag/v3.12.0

What's Changed

New Contributors

Full Changelog: helm/chart-testing-action@v2.6.1...v2.7.0

Commits
  • 0d28d31 clean up and fix cr action next release (#166)
  • ef3072d use ct 3.12.0 as default (#165)
  • 66b7521 Bump the actions group across 1 directory with 3 updates (#164)
  • 5aa1c68 Bump actions/setup-python from 5.1.0 to 5.1.1 in the actions group (#154)
  • 9c98eaa Bump actions/checkout in the actions group across 1 directory (#152)
  • 4f62db1 Bump actions/checkout from 4.1.4 to 4.1.5 in the actions group (#147)
  • 16c6be3 update ct to v3.11.0 / yamlint to 1.33.0 / yamale to 4.0.4 / add e2e test (#144)
  • af96d80 docs: update all version references to latest versions (#141)
  • dbd7bf1 Bump sigstore/cosign-installer from 3.3.0 to 3.5.0 in the actions group (#143)
  • df9dfa7 Bump the actions group with 1 update (#138)
  • Additional commits viewable in compare view

Updates helm/kind-action from 1.10.0 to 1.12.0

Release notes

Sourced from helm/kind-action's releases.

v1.12.0

What's Changed

New Contributors

Full Changelog: helm/kind-action@v1.11.0...v1.12.0

v1.11.0

What's Changed

New Contributors

Full Changelog: helm/kind-action@v1.10.0...v1.11.0

Commits
  • a1b0e39 Bump actions/checkout from 4.1.4 to 4.2.2 in the actions group (#130)
  • 9315f6b feat: options to configure local registry (#113)
  • aed9fb9 update kind to use release v0.26.0 (#129)
  • ae94020 update kind to default to release v0.24.0 (#122)
  • 9fdad06 fix: Use new mirror for downloading kubectl (#127)
  • c93960c Bump actions/checkout from 4.2.1 to 4.2.2 in the actions group (#125)
  • fce224d Bump actions/checkout from 4.2.0 to 4.2.1 in the actions group (#123)
  • 0958ddc Bump actions/checkout from 4.1.7 to 4.2.0 in the actions group (#121)
  • 5d66646 feat: add custom kubeconfig option as action input (#119)
  • 6f17223 Bump actions/checkout from 4.1.7 to 4.2.0 in the actions group (#120)
  • Additional commits viewable in compare view

Updates sigstore/cosign-installer from 3.5.0 to 3.7.0

Release notes

Sourced from sigstore/cosign-installer's releases.

v3.7.0

What's Changed

Full Changelog: sigstore/cosign-installer@v3.6.0...v3.7.0

v3.6.0

What's Changed

Full Changelog: sigstore/cosign-installer@v3...v3.6.0

Commits

Updates golangci/golangci-lint-action from 6.0.1 to 6.2.0

Release notes

Sourced from golangci/golangci-lint-action's releases.

v6.2.0

What's Changed

Changes

Documentation

Dependencies

New Contributors

Full Changelog: golangci/golangci-lint-action@v6.1.1...v6.2.0

v6.1.1

What's Changed

Changes

Documentation

... (truncated)

Commits
  • ec5d184 feat: support linux arm64 public preview (#1144)
  • a0297a1 build(deps-dev): bump the dev-dependencies group with 3 updates (#1143)
  • 58eda26 build(deps): bump @​types/node from 22.10.2 to 22.10.5 in the dependencies gro...
  • 44c2434 build(deps-dev): bump the dev-dependencies group with 2 updates (#1141)
  • 2f13b80 build(deps-dev): bump the dev-dependencies group with 2 updates (#1139)
  • 1ac3686 build(deps-dev): bump the dev-dependencies group with 2 updates (#1138)
  • 9937fdf build(deps): bump @​types/node from 22.10.1 to 22.10.2 in the dependencies gro...
  • cb60b26 build(deps-dev): bump the dev-dependencies group with 2 updates (#1136)
  • 774c35b build(deps): bump @​actions/cache from 3.3.0 to 4.0.0 in the dependencies grou...
  • 7ce5487 build(deps-dev): bump the dev-dependencies group with 3 updates (#1134)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Summary by Sourcery

Update several GitHub Actions to their latest versions.

Build:

  • Update aquaproj/aqua-installer to v3.1.1.
  • Update actions/cache to v4.2.0.
  • Update helm/chart-testing-action to v2.7.0.
  • Update helm/kind-action to v1.12.0.
  • Update sigstore/cosign-installer to v3.7.0.
  • Update golangci/golangci-lint-action to v6.2.0.

@dependabot
chore(deps): bump the github-actions group across 1 directory with 6 …
bccd85a 
…updates

Bumps the github-actions group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [aquaproj/aqua-installer](https://github.com/aquaproj/aqua-installer) | `3.0.1` | `3.1.1` |
| [actions/cache](https://github.com/actions/cache) | `4.0.2` | `4.2.0` |
| [helm/chart-testing-action](https://github.com/helm/chart-testing-action) | `2.6.1` | `2.7.0` |
| [helm/kind-action](https://github.com/helm/kind-action) | `1.10.0` | `1.12.0` |
| [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) | `3.5.0` | `3.7.0` |
| [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) | `6.0.1` | `6.2.0` |



Updates `aquaproj/aqua-installer` from 3.0.1 to 3.1.1
- [Release notes](https://github.com/aquaproj/aqua-installer/releases)
- [Commits](aquaproj/aqua-installer@v3.0.1...v3.1.1)

Updates `actions/cache` from 4.0.2 to 4.2.0
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](actions/cache@v4.0.2...v4.2.0)

Updates `helm/chart-testing-action` from 2.6.1 to 2.7.0
- [Release notes](https://github.com/helm/chart-testing-action/releases)
- [Commits](helm/chart-testing-action@e6669bc...0d28d31)

Updates `helm/kind-action` from 1.10.0 to 1.12.0
- [Release notes](https://github.com/helm/kind-action/releases)
- [Commits](helm/kind-action@0025e74...a1b0e39)

Updates `sigstore/cosign-installer` from 3.5.0 to 3.7.0
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](sigstore/cosign-installer@59acb62...dc72c7d)

Updates `golangci/golangci-lint-action` from 6.0.1 to 6.2.0
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](golangci/golangci-lint-action@v6.0.1...v6.2.0)

---
updated-dependencies:
- dependency-name: aquaproj/aqua-installer
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: helm/chart-testing-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: helm/kind-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Feb 1, 2025
@codesandbox CodeSandbox
Copy link

codesandbox bot commented Feb 1, 2025

Review or Edit in CodeSandbox

Open the branch in Web EditorVS CodeInsiders

Open Preview

@sourcery-ai Sourcery AI
Copy link

sourcery-ai bot commented Feb 1, 2025
edited
Loading

Reviewer's Guide by Sourcery

This pull request updates multiple GitHub Actions dependencies in the project's workflow files. It upgrades actions related to linting, aqua installation, chart testing, kind cluster setup, cosign installation, and caching.

No diagrams generated as the changes look simple and do not need a visual representation.

File-Level Changes

Change Details Files
Updated the golangci-lint-action to v6.2.0.
  • The action version was updated from v6.0.1 to v6.2.0.
 .github/workflows/test.yaml
Updated the aqua-installer action to v3.1.1.
  • The action version was updated from v3.0.1 to v3.1.1.
 .github/workflows/test.yaml
.github/workflows/auto-update-labels.yaml
Updated the chart-testing-action to v2.7.0.
  • The action version was updated from v2.6.1 to v2.7.0.
 .github/workflows/publish-chart.yaml
Updated the kind-action to v1.12.0.
  • The action version was updated from v1.10.0 to v1.12.0.
 .github/workflows/publish-chart.yaml
Updated the cosign-installer action to v3.7.0.
  • The action version was updated from v3.5.0 to v3.7.0.
 .github/workflows/reusable-release.yaml
Updated the actions/cache action to v4.2.0.
  • The action version was updated from v4.0.2 to v4.2.0.
 .github/workflows/reusable-release.yaml
.github/workflows/canary.yaml
.github/workflows/release.yaml
Tips and commands

Interacting with Sourcery

  • Trigger a new review: Comment @sourcery-ai review on the pull request.
  • Continue discussions: Reply directly to Sourcery's review comments.
  • Generate a GitHub issue from a review comment: Ask Sourcery to create an
    issue from a review comment by replying to it. You can also reply to a
    review comment with @sourcery-ai issue to create an issue from it.
  • Generate a pull request title: Write @sourcery-ai anywhere in the pull
    request title to generate a title at any time. You can also comment
    @sourcery-ai title on the pull request to (re-)generate the title at any time.
  • Generate a pull request summary: Write @sourcery-ai summary anywhere in
    the pull request body to generate a PR summary at any time exactly where you
    want it. You can also comment @sourcery-ai summary on the pull request to
    (re-)generate the summary at any time.
  • Generate reviewer's guide: Comment @sourcery-ai guide on the pull
    request to (re-)generate the reviewer's guide at any time.
  • Resolve all Sourcery comments: Comment @sourcery-ai resolve on the
    pull request to resolve all Sourcery comments. Useful if you've already
    addressed all the comments and don't want to see them anymore.
  • Dismiss all Sourcery reviews: Comment @sourcery-ai dismiss on the pull
    request to dismiss all existing Sourcery reviews. Especially useful if you
    want to start fresh with a new review - don't forget to comment
    @sourcery-ai review to trigger a new review!
  • Generate a plan of action for an issue: Comment @sourcery-ai plan on
    an issue to generate a plan of action for it.

Customizing Your Experience

Access your dashboard to:

  • Enable or disable review features such as the Sourcery-generated pull request
    summary, the reviewer's guide, and others.
  • Change the review language.
  • Add, remove or edit custom review instructions.
  • Adjust other review settings.

Getting Help

sourcery-ai[bot]
sourcery-ai bot reviewed Feb 1, 2025
View reviewed changes
Copy link

@sourcery-ai sourcery-ai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We have skipped reviewing this pull request. It seems to have been created by a bot (hey, dependabot[bot]!). We assume it knows what it's doing!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sourcery-ai sourcery-ai[bot] sourcery-ai[bot] left review comments

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants