Bump hashicorp/vault-action from 2.4.0 to 2.7.1

[dependabot[bot]]

Bumps hashicorp/vault-action from 2.4.0 to 2.7.1.

Release notes

Sourced from hashicorp/vault-action's releases.

v2.7.1

2.7.1 (July 3, 2023)

Bugs:

• Revert GH-466 which caused a regression in secrets stored as JSON strings GH-471

v2.7.0

Bugs:

• Fix a regression that broke support for secrets in JSON format GH-466

Improvements:

• Fix a warning about outputToken being an unexpected input GH-461

v2.6.0

2.6.0 (June 7, 2023)

Features:

• Add ability to set the vault_token output to contain the Vault token after authentication GH-441
• Add support for userpass and ldap authentication methods GH-440
• Define an output, errorMessage, for vault-action's error messages so subsequent steps can read the errors GH-446

Bugs:

• Handle undefined response in getSecrets error handler GH-431

v2.5.0

Features:

• Adds ability to automatically decode secrets from base64, hex, and utf8 encodings. GH-408

Improvements:

• Improves error messages for Vault authentication failures GH-409
• bump jest from 28.1.1 to 29.3.1 GH-397
• bump @​types/jest from 28.1.3 to 29.2.6 GH-397, GH-413
• bump jsrsasign from 10.5.27 to 10.6.1 GH-401
• bump json5 from 2.2.1 to 2.2.3 GH-404
• bump minimatch from 3.0.4 to 3.1.2 GH-410

v2.4.3

Improvements

• bump jest-when from 3.5.1 to 3.5.2 GH-388
• bump semantic-release from 19.0.3 to 19.0.5 GH-360
• bump jsrsasign from 10.5.25 to 10.5.27 GH-358
• bump @​actions/core from 1.9.0 to 1.10.0 GH-371

... (truncated)

Changelog

Sourced from hashicorp/vault-action's changelog.

2.7.1 (July 3, 2023)

Bugs:

• Revert GH-466 which caused a regression in secrets stored as JSON strings GH-471

2.7.0 (June 21, 2023)

Bugs:

• Fix a regression that broke support for secrets in JSON format GH-466

Improvements:

• Fix a warning about outputToken being an unexpected input GH-461

2.6.0 (June 7, 2023)

Features:

• Add ability to set the vault_token output to contain the Vault token after authentication GH-441
• Add support for userpass and ldap authentication methods GH-440
• Define an output, errorMessage, for vault-action's error messages so subsequent steps can read the errors GH-446

Bugs:

• Handle undefined response in getSecrets error handler GH-431

2.5.0 (Jan 26th, 2023)

Features:

• Adds ability to automatically decode secrets from base64, hex, and utf8 encodings. GH-408

Improvements:

• Improves error messages for Vault authentication failures GH-409
• bump jest from 28.1.1 to 29.3.1 GH-397
• bump @​types/jest from 28.1.3 to 29.2.6 GH-397, GH-413
• bump jsrsasign from 10.5.27 to 10.6.1 GH-401
• bump json5 from 2.2.1 to 2.2.3 GH-404
• bump minimatch from 3.0.4 to 3.1.2 GH-410

2.4.3 (Nov 8th, 2022)

Improvements:

• bump jest-when from 3.5.1 to 3.5.2 GH-388
• bump semantic-release from 19.0.3 to 19.0.5 GH-360
• bump jsrsasign from 10.5.25 to 10.5.27 GH-358

... (truncated)

Commits

• e926631 Update to v2.7.1 (#472)
• 5213b69 Revert "fix secrets stored in json format (#466)" (#471)
• 357cb9c Update to v2.7.0 (#468)
• b9f4d16 fix secrets stored in json format (#466)
• 62aa8bb Fix e2e CI failure from "Test that overwrite env var works in nested action (...
• ec2980c chore: update jira teams and add actionlint (#465)
• 166100b fix warning about outputToken being an unexpected input (#461)
• dc4f72d Revert "Test that overwrite env var works in nested action (#453)" (#464)
• a87a71c ensure we run the build for all branches (#463)
• bb61006 Update to v2.6.0 (#458)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)