search

gopasspw / gopass-jsonapi

Gopass Browser Bindings
MIT License
48 stars 17 forks source link

Bump crazy-max/ghaction-import-gpg from 4 to 5 #69

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps crazy-max/ghaction-import-gpg from 4 to 5.

Release notes

Sourced from crazy-max/ghaction-import-gpg's releases.

v5.0.0

  • Node 16 as default runtime (#136)
    • This requires a minimum Actions Runner version of v2.285.0, which is by default available in GHES 3.4 or later.

v4.4.0

  • Use eslint prettier plugin (#132)
  • Bump openpgp from 5.2.0 to 5.2.1 (#131)
  • Bump minimist from 1.2.5 to 1.2.6 (#134)
  • Bump @​actions/exec from 1.1.0 to 1.1.1 (#133)

v4.3.0

  • Update dev dependencies and workflow (#130)
  • Fix error deleting keys with short key id (#129)
  • Bump openpgp from 5.1.0 to 5.2.0 (#128)

v4.2.0

  • Align default ttl with GitHub job run timeout (#126)
  • Delete key using primary key ID not subkey ID (#125)
  • Set passphrase only for the fingerprint being used (#123)
  • Bump openpgp from 5.0.0 to 5.1.0 (#116 #120)
  • Bump actions/github-script from 4 to 6 (#115 #121)

v4.1.0

  • Handle signing-only subkeys (#112)
  • Bump @​actions/core from 1.5.0 to 1.6.0 (#114)
  • Bump actions/github-script from 4 to 5 (#113)
  • Bump ansi-regex from 5.0.0 to 5.0.1 (#111)
  • Bump tmpl from 1.0.4 to 1.0.5 (#110)
Changelog

Sourced from crazy-max/ghaction-import-gpg's changelog.

4.4.0 (2022/04/24)

  • Use eslint prettier plugin (#132)
  • Bump openpgp from 5.2.0 to 5.2.1 (#131)
  • Bump minimist from 1.2.5 to 1.2.6 (#134)
  • Bump @​actions/exec from 1.1.0 to 1.1.1 (#133)

4.3.0 (2022/03/15)

  • Update dev dependencies and workflow (#130)
  • Fix error deleting keys with short key id (#129)
  • Bump openpgp from 5.1.0 to 5.2.0 (#128)

4.2.0 (2022/03/01)

  • Align default ttl with GitHub job run timeout (#126)
  • Delete key using primary key ID not subkey ID (#125)
  • Set passphrase only for the fingerprint being used (#123)
  • Bump openpgp from 5.0.0 to 5.1.0 (#116 #120)
  • Bump actions/github-script from 4 to 6 (#115 #121)

4.1.0 (2021/10/15)

  • Handle signing-only subkeys (#112)
  • Bump @​actions/core from 1.5.0 to 1.6.0 (#114)
  • Bump actions/github-script from 4 to 5 (#113)
  • Bump ansi-regex from 5.0.0 to 5.0.1 (#111)
  • Bump tmpl from 1.0.4 to 1.0.5 (#110)

4.0.0 (2021/09/05)

  • OpenPGP.js v5 (#78)
  • POSIX-compliant inputs names (#109)
    • Rename gpg-private-key input gpg_private_key
    • Rename git-config-global input git_config_global
    • Rename git-user-signingkey input git_user_signingkey
    • Rename git-commit-gpgsign input git_commit_gpgsign
    • Rename git-tag-gpgsign input git_tag_gpgsign
    • Rename git-push-gpgsign input git_push_gpgsign
    • Rename git-committer-name input git_committer_name
    • Rename git-committer-email input git_committer_email
  • Bump @​actions/core from 1.4.0 to 1.5.0 (#106)

3.2.0 (2021/08/10)

  • Add git-config-global input (#103)
  • Use built-in getExecOutput (#102)
  • Handle if-asked for git-push-gpgsign input (#100)
  • Use getBooleanInput (#101)
  • Bump @​actions/core from 1.2.7 to 1.4.0 (#97)

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)