Updated markdown displayed in the job summary by the Harden-Runner Action.
Fixed a bug affecting Enterprise Tier customers where the agent attempted to upload telemetry for jobs with disable-telemetry set to true. No telemetry was uploaded as the endpoint was not in the allowed list.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the github-actions group with 2 updates: actions/setup-java and step-security/harden-runner.
Updates
actions/setup-javafrom 4.2.1 to 4.2.2Release notes
Sourced from actions/setup-java's releases.
Commits
6a0805fFix the bug about parsing dragonwell version (#642) (#643)fd08b9cBump undici from 5.28.3 to 5.28.4 (#616)2e74cbcFix versions check failures (#634)a1c6c9cUpdated advanced-usage.md (#622)Updates
step-security/harden-runnerfrom 2.9.0 to 2.9.1Release notes
Sourced from step-security/harden-runner's releases.
Commits
5c7944eMerge pull request #440 from step-security/rc-11c79be45Merge branch 'main' into rc-11deb3383Merge pull request #446 from h0x0er/log-step23c8215update dist727d06alogging stepf0db2aaMerge pull request #441 from step-security/dependabot/github_actions/github/c...1938ffcMerge branch 'main' into dependabot/github_actions/github/codeql-action-3.25.138e7dd2cMerge pull request #442 from step-security/dependabot/github_actions/step-sec...f2823eeBump step-security/publish-unit-test-result-action from 1 to 25f95e05Bump github/codeql-action from 2.13.4 to 3.25.13Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show