We've made a significant update to how pull requests (PRs) from forked repositories are processed. This improvement not only streamlines the handling of such PRs but also fixes a previously identified issue.
Before the Change
Previously, when you created a pull request from a forked repository, any files changed in the target branch after the PR creation would erroneously appear as part of the PR's changed files. This made it difficult to distinguish between the actual changes introduced by the PR and subsequent changes made directly to the target branch.
What Has Changed
With this update, a pull request from a fork will now only include the files that were explicitly changed in the fork. This ensures that the list of changed files in a PR accurately reflects the contributions from the fork, without being muddled by unrelated changes to the target branch.
We've made a significant update to how pull requests (PRs) from forked repositories are processed. This improvement not only streamlines the handling of such PRs but also fixes a previously identified issue.
Before the Change
Previously, when you created a pull request from a forked repository, any files changed in the target branch after the PR creation would erroneously appear as part of the PR's changed files. This made it difficult to distinguish between the actual changes introduced by the PR and subsequent changes made directly to the target branch.
What Has Changed
With this update, a pull request from a fork will now only include the files that were explicitly changed in the fork. This ensures that the list of changed files in a PR accurately reflects the contributions from the fork, without being muddled by unrelated changes to the target branch.
The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.
ℹ️ However, this is a major update that includes breaking changes. Artifacts created with versions v3 and below are not compatible with the v4 actions. Uploads and downloads must use the same major actions versions. There are also key differences from previous versions that may require updates to your workflows.
Fixed a bug in Node16 where if an HTTP download finished too quickly (<1ms, e.g. when it's mocked) we attempt to delete a temp file that has not been created yet actions/toolkit#1278
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific depend...
_Description has been truncated_
Bumps the github_actions group with 7 updates:
3
4
41
44
2
3
4
5
2
3
2
3
3
4
Updates
actions/checkout
from 3 to 4Release notes
Sourced from actions/checkout's releases.
... (truncated)
Changelog
Sourced from actions/checkout's changelog.
... (truncated)
Commits
b4ffde6
Link to release page from what's new section (#1514)8530928
Correct link to GitHub Docs (#1511)7cdaf2f
Update CODEOWNERS to Launch team (#1510)8ade135
Prepare 4.1.0 release (#1496)c533a0a
Add support for partial checkout filters (#1396)72f2cec
Update README.md for V4 (#1452)3df4ab1
Release 4.0.0 (#1447)8b5e8b7
Support fetching without the --progress option (#1067)97a652b
Update default runtime to node20 (#1436)Updates
tj-actions/changed-files
from 41 to 44Release notes
Sourced from tj-actions/changed-files's releases.
... (truncated)
Changelog
Sourced from tj-actions/changed-files's changelog.
... (truncated)
Commits
2d756ea
Updated README.md (#2016)ce497c3
chore: update description of outputs removing asterisks (#2015)2d21bbb
Update README.md90941b3
remove: unused code (#2014)2ca8dc4
Updated README.md (#2013)ee096d6
chore: update description of other_deleted_files output (#2008)4621617
Update README.md4bbd49b
fix: ensure the fork remote doesn't exists before creating it (#2012)c6557ed
Update README.mdf0e7702
fix: update previos sha for forks (#2011)Updates
docker/setup-buildx-action
from 2 to 3Release notes
Sourced from docker/setup-buildx-action's releases.
... (truncated)
Commits
2b51285
Merge pull request #306 from docker/dependabot/npm_and_yarn/docker/actions-to...0f00370
chore: update generated content11c9683
build(deps): bump@docker/actions-toolkit
from 0.18.0 to 0.19.056a16b8
Merge pull request #303 from crazy-max/fix-inputsc23f46e
chore: update generated contentf876da6
rename and align config inputsb7cf918
Merge pull request #304 from crazy-max/rm-docs-dir0150f0e
chore: remove docs dird89f1f9
Merge pull request #302 from docker/dependabot/npm_and_yarn/docker/actions-to...12d65f6
chore: update generated contentUpdates
docker/metadata-action
from 4 to 5Release notes
Sourced from docker/metadata-action's releases.
... (truncated)
Upgrade guide
Sourced from docker/metadata-action's upgrade guide.
... (truncated)
Commits
8e5442c
Merge pull request #382 from crazy-max/dont-set-cwd-prefixeda41b7
chore: update generated content388c08f
don't set cwd:// prefix for local bake filesdbef880
Merge pull request #374 from docker/dependabot/npm_and_yarn/moment-timezone-0...b73e7a7
chore: update generated contentb9fba69
chore(deps): Bump moment-timezone from 0.5.43 to 0.5.44ac82374
Merge pull request #373 from docker/dependabot/npm_and_yarn/moment-2.30.1c92519a
chore: update generated content3b4179d
chore(deps): Bump moment from 2.29.4 to 2.30.10784993
Merge pull request #371 from docker/dependabot/npm_and_yarn/docker/actions-to...Updates
docker/login-action
from 2 to 3Release notes
Sourced from docker/login-action's releases.
Commits
e92390c
Merge pull request #685 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...1e752e2
chore: update generated content51c6097
build(deps): bump the aws-sdk-dependencies group with 2 updates8f079fb
Merge pull request #676 from docker/dependabot/npm_and_yarn/proxy-agent-depen...16fa768
chore: update generated content46d1619
build(deps): bump the proxy-agent-dependencies group with 2 updates8c291c5
Merge pull request #682 from docker/dependabot/npm_and_yarn/docker/actions-to...ec726f4
build(deps): bump@docker/actions-toolkit
from 0.14.0 to 0.18.05139682
Merge pull request #677 from docker/dependabot/npm_and_yarn/undici-5.28.36d4e2ba
chore: update generated contentUpdates
docker/setup-qemu-action
from 2 to 3Release notes
Sourced from docker/setup-qemu-action's releases.
Commits
6882732
Merge pull request #103 from docker/dependabot/npm_and_yarn/actions/core-1.10.1183f4af
chore: update generated contentf174935
build(deps): bump@actions/core
from 1.10.0 to 1.10.12e423eb
Merge pull request #89 from docker/dependabot/npm_and_yarn/semver-6.3.1ecc406a
Bump semver from 6.3.0 to 6.3.112dec5e
Merge pull request #102 from crazy-max/update-node20c29b312
chore: node 20 as default runtime34ae628
chore: update generated content1f3d2e1
chore: fix author in package.json277dbe8
vendor: bump@docker/actions-toolkit
from 0.3.0 to 0.12.0Updates
actions/download-artifact
from 3 to 4Release notes
Sourced from actions/download-artifact's releases.
Commits
c850b93
Merge pull request #307 from bethanyj28/main6fd111f
update@actions/artifact
87c5514
Merge pull request #303 from bethanyj28/main47f9ce6
update@actions/artifact
127824d
Merge pull request #299 from bethanyj28/main6dd49bf
licensed only artifactf71c0e3
Revert "licensed"7c63dfd
licensed67d37cd
Update toolkit3487549
Update release-new-action-version.yml (#292)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show