In scope of this release, the filter was removed within the cache-save step by @dmitry-shibanov in actions/setup-node#831. It is filtered and checked in the toolkit/cache library.
Resolved an issue where workflows were suddenly failing due to a worktree in use error. The action will now attempt to create a temp branch name if the existing branch name is already checked out by a prior to step to ensure it can occur. This issue was only occurring in a handful of workflows, and likely stemmed from a git version change on the official GitHub runners. The actual root cause is still somewhat unknown.
In scope of this release, we update node version runtime from node16 to node20 (actions/setup-python#772). Besides, we update dependencies to the latest versions.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the github-actions group with 5 updates in the / directory:
2
3
3
4
4.4.3
4.6.1
4
5
3
4
Updates
github/codeql-action
from 2 to 3Release notes
Sourced from github/codeql-action's releases.
... (truncated)
Changelog
Sourced from github/codeql-action's changelog.
Commits
65c9ae9
Update checked-in dependenciesb1c3187
Add more invalid SARIF processing errorsa21528b
Update changelog and version after v3.25.4ccf74c9
Merge pull request #2275 from github/update-v3.25.4-4b812a5df45fb58a
Add user error for gracefully running out of memoryec11790
Add user error for "Pack cannot be found"4fdf4ac
Update changelog for v3.25.4Updates
actions/setup-node
from 3 to 4Release notes
Sourced from actions/setup-node's releases.
... (truncated)
Commits
60edb5d
Add support for arm64 Windows (#927)d86ebcd
Add support forvolta.extends
(#921)b39b52d
Fix node-version-file interprets entire package.json as a version (#865)7247617
Addpackage.json
tonode-version-file
list of examples. (#879)f3ec4ca
Fix README.md (#898)ec97f37
Add fix for cache (#917)5ef044f
Update reusable workflows to use Node.js v20 (#889)c45882a
update to setup-node@v4 in docs (#884)ee36e8b
Ignore engines check in Yarn 1 e2e-cache tests (#882)8f152de
Update actions/checkout for documentation and yaml (#876)Updates
JamesIves/github-pages-deploy-action
from 4.4.3 to 4.6.1Release notes
Sourced from JamesIves/github-pages-deploy-action's releases.
... (truncated)
Commits
5c6e9e9
Deploy Production Code for Commit e9abb9ce6e35175032a1e82dd997ac600ad10c9b 🚀e9abb9c
Merge branch 'dev' into releases/v4079c29c
build(deps-dev): bump the misc group with 2 updates (#1593)e0e9b96
build(deps): bump the eslint group with 3 updates (#1592)dfda814
Merge branch 'dev' of https://github.com/JamesIves/github-pages-deploy-action...c282185
chore: update dependabot groups91fd6ee
fix: :bug: Use commish to make branch unique (#1591)5bb052c
build(deps): bump typescript-eslint from 7.8.0 to 7.9.0 (#1586)ef33bcd
build(deps): bump codecov/codecov-action from 4.3.0 to 4.4.0 (#1588)1a64cb8
build(deps-dev): bump rimraf from 5.0.5 to 5.0.7 (#1583)Updates
actions/setup-python
from 4 to 5Release notes
Sourced from actions/setup-python's releases.
... (truncated)
Commits
82c7e63
Documentation changes for avoiding rate limit issues on GHES (#835)10aa35a
feat: fallback to raw endpoint for manifest when rate limit is reached (#766)9a7ac94
Bump undici from 5.27.2 to 5.28.3 (#817)871daa9
Fix the "Specifying multiple Python/PyPy versions" link (#782)2f07895
Fix broken README.md link (#793)e9d6f99
Replace setup-python@v4 by setup-python@v5 in README (#776)0a5c615
Update action to node20 (#772)0ae5836
Add example of GraalPy to docs (#773)b64ffca
update actions/checkout to v4 (#761)8d28961
Examples now use checkout@v4 (#738)Updates
zgosalvez/github-actions-report-lcov
from 3 to 4Release notes
Sourced from zgosalvez/github-actions-report-lcov's releases.
... (truncated)
Commits
bdc6890
Bump npm from 10.7.0 to 10.8.0 (#211)a4b59f0
Bump eslint from 9.2.0 to 9.3.0 (#210)83ba5f8
Bump@actions/artifact
from 2.1.5 to 2.1.7 (#203)1f69a39
Bump stefanzweifel/git-auto-commit-action from 5.0.0 to 5.0.1 (#206)90f37fc
Bump actions/checkout from 4.1.2 to 4.1.4 (#207)5ab3573
Bump npm from 10.5.2 to 10.7.0 (#208)7c58ee9
Bump eslint from 9.1.0 to 9.2.0 (#209)17c01d4
Bump@actions/artifact
from 2.1.4 to 2.1.5 (#202)8eaaddd
Bump eslint from 9.0.0 to 9.1.0 (#201)6506e48
Bump npm from 10.5.1 to 10.5.2 (#199)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show