chore(deps): bump the gh-actions group with 4 updates

[dependabot[bot]]

Bumps the gh-actions group with 4 updates: actions/checkout, actions/setup-java, actions/cache and JetBrains/qodana-action.

Updates actions/checkout from 3.5.0 to 4.1.5

Release notes

Sourced from actions/checkout's releases.

v4.1.5

What's Changed

• Update NPM dependencies by @​cory-miller in actions/checkout#1703
• Bump github/codeql-action from 2 to 3 by @​dependabot in actions/checkout#1694
• Bump actions/setup-node from 1 to 4 by @​dependabot in actions/checkout#1696
• Bump actions/upload-artifact from 2 to 4 by @​dependabot in actions/checkout#1695
• README: Suggest user.email to be 41898282+github-actions[bot]@users.noreply.github.com by @​cory-miller in actions/checkout#1707

Full Changelog: https://github.com/actions/checkout/compare/v4.1.4...v4.1.5

v4.1.4

What's Changed

• Disable extensions.worktreeConfig when disabling sparse-checkout by @​jww3 in actions/checkout#1692
• Add dependabot config by @​cory-miller in actions/checkout#1688
• Bump word-wrap from 1.2.3 to 1.2.5 by @​dependabot in actions/checkout#1643
• Bump the minor-actions-dependencies group with 2 updates by @​dependabot in actions/checkout#1693

Full Changelog: https://github.com/actions/checkout/compare/v4.1.3...v4.1.4

v4.1.3

What's Changed

• Update actions/checkout version in update-main-version.yml by @​jww3 in actions/checkout#1650
• Check git version before attempting to disable sparse-checkout by @​jww3 in actions/checkout#1656
• Add SSH user parameter by @​cory-miller in actions/checkout#1685

Full Changelog: https://github.com/actions/checkout/compare/v4.1.2...v4.1.3

v4.1.2

We are investigating the following issue with this release and have rolled-back the v4 tag to point to v4.1.1

• sparse-checkout is not available on git versions prior to 2.27.0 (see actions/checkout#1651)

What's Changed

• Fix: Disable sparse checkout whenever sparse-checkout option is not present @​dscho in actions/checkout#1598
• Bump tough-cookie from 4.0.0 to 4.1.3 by @​dependabot in actions/checkout#1406
• Bump @​babel/traverse from 7.20.5 to 7.24.0 by @​dependabot in actions/checkout#1642

New Contributors

• @​jww3 made their first contribution in actions/checkout#1616

Full Changelog: https://github.com/actions/checkout/compare/v4.1.1...v4.1.2

v4.1.1

What's Changed

• Update CODEOWNERS to Launch team by @​joshmgross in actions/checkout#1510
• Correct link to GitHub Docs by @​peterbe in actions/checkout#1511
• Link to release page from what's new section by @​cory-miller in actions/checkout#1514

New Contributors

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

Changelog

v4.1.4

• Disable extensions.worktreeConfig when disabling sparse-checkout by @​jww3 in actions/checkout#1692
• Add dependabot config by @​cory-miller in actions/checkout#1688
• Bump the minor-actions-dependencies group with 2 updates by @​dependabot in actions/checkout#1693
• Bump word-wrap from 1.2.3 to 1.2.5 by @​dependabot in actions/checkout#1643

v4.1.3

• Check git version before attempting to disable sparse-checkout by @​jww3 in actions/checkout#1656
• Add SSH user parameter by @​cory-miller in actions/checkout#1685
• Update actions/checkout version in update-main-version.yml by @​jww3 in actions/checkout#1650

v4.1.2

• Fix: Disable sparse checkout whenever sparse-checkout option is not present @​dscho in actions/checkout#1598

v4.1.1

• Correct link to GitHub Docs by @​peterbe in actions/checkout#1511
• Link to release page from what's new section by @​cory-miller in actions/checkout#1514

v4.1.0

• Add support for partial checkout filters

v4.0.0

• Support fetching without the --progress option
• Update to node20

v3.6.0

• Fix: Mark test scripts with Bash'isms to be run via Bash
• Add option to fetch tags even if fetch-depth > 0

v3.5.3

• Fix: Checkout fail in self-hosted runners when faulty submodule are checked-in
• Fix typos found by codespell
• Add support for sparse checkouts

v3.5.2

• Fix api endpoint for GHES

v3.5.1

• Fix slow checkout on Windows

v3.5.0

• Add new public key for known_hosts

v3.4.0

• Upgrade codeql actions to v2
• Upgrade dependencies
• Upgrade @​actions/io

... (truncated)

Commits

• 44c2b7a README: Suggest user.email to be `41898282+github-actions[bot]@​users.norepl...
• 8459bc0 Bump actions/upload-artifact from 2 to 4 (#1695)
• 3f603f6 Bump actions/setup-node from 1 to 4 (#1696)
• fd084cd Bump github/codeql-action from 2 to 3 (#1694)
• 9c1e94e Update NPM dependencies (#1703)
• 0ad4b8f Prep Release v4.1.4 (#1704)
• 43045ae Disable extensions.worktreeConfig when disabling sparse-checkout (#1692)
• 37b0821 Bump the minor-actions-dependencies group with 2 updates (#1693)
• 9839dc1 Add dependabot config (#1688)
• 9b4c13b Bump word-wrap from 1.2.3 to 1.2.5 (#1643)
• Additional commits viewable in compare view

Updates actions/setup-java from 3 to 4

Release notes

Sourced from actions/setup-java's releases.

v4.0.0

What's Changed

In the scope of this release, the version of the Node.js runtime was updated to 20. The majority of dependencies were updated to the latest versions. From now on, the code for the setup-java will run on Node.js 20 instead of Node.js 16.

Breaking changes

• Update Node.js runtime to version 20 by @​aparnajyothi-y in actions/setup-java#558

Non-breaking changes

• Adding support for microsoft openjdk 21.0.0 by @​ralfstuckert in actions/setup-java#546
• Update @​actions/cache dependency and documentation by @​IvanZosimov in actions/setup-java#549
• Implementation of the cache-dependency-path option to control caching dependency by @​itchyny in actions/setup-java#499

New Contributors

• @​ralfstuckert made their first contribution in actions/setup-java#546
• @​itchyny made their first contribution in actions/setup-java#499

Full Changelog: https://github.com/actions/setup-java/compare/v3...v4.0.0

v3.13.0

What's changed

In the scope of this release, support for Dragonwell JDK was added by @​Accelerator1996 in actions/setup-java#532

steps:
 - name: Checkout
   uses: actions/checkout@v3
 - name: Setup-java
   uses: actions/setup-java@v3
   with:
     distribution: 'dragonwell'
     java-version: '17'

Several inaccuracies were also fixed:

• Fix XML namespaces wrongly using https by @​gnodet in actions/setup-java#503
• Fix typo and remove unintentional(?) word by @​CyberFlameGO in actions/setup-java#518
• Fix usage link within the README.md file by @​dassiorleando in actions/setup-java#525

New Contributors

• @​CyberFlameGO made their first contribution in actions/setup-java#518
• @​dassiorleando made their first contribution in actions/setup-java#525
• @​gnodet made their first contribution in actions/setup-java#503
• @​Accelerator1996 made their first contribution in actions/setup-java#532

Full Changelog: https://github.com/actions/setup-java/compare/v3...v3.13.0

v3.12.0

... (truncated)

Commits

• 99b8673 Patch for java version file (#610)
• 5896cec Added .tool-versions file support (#606)
• 80ae3c2 Update httpclient version and other dependencies (#607)
• 9704b39 Added Windows Arm64 Support for Windows Arm64 Runners (#595)
• 7a445ee Fix typo in configuration example (#572)
• 3232623 Oracle JDK 21 support (#538)
• c0660d8 docs: add note about maven-gpg-plugin version (#570)
• 2f7af1b make it clear that Java 21 is supported (#566)
• 16ef37f HTTP errors when the token is undefined (#556)
• a237454 feat: bump actions/checkout and actions/setup-java to v4 (#533)
• Additional commits viewable in compare view

Updates actions/cache from 3 to 4

Release notes

Sourced from actions/cache's releases.

v4.0.0

What's Changed

• Update action to node20 by @​takost in actions/cache#1284
• feat: save-always flag by @​to-s in actions/cache#1242

New Contributors

• @​takost made their first contribution in actions/cache#1284
• @​to-s made their first contribution in actions/cache#1242

Full Changelog: https://github.com/actions/cache/compare/v3...v4.0.0

v3.3.3

What's Changed

• Cache v3.3.3 by @​robherley in actions/cache#1302

New Contributors

• @​robherley made their first contribution in actions/cache#1302

Full Changelog: https://github.com/actions/cache/compare/v3...v3.3.3

v3.3.2

What's Changed

• Fixed readme with new segment timeout values by @​kotewar in actions/cache#1133
• Readme fixes by @​kotewar in actions/cache#1134
• Updated description of the lookup-only input for main action by @​kotewar in actions/cache#1130
• Change two new actions mention as quoted text by @​bishal-pdMSFT in actions/cache#1131
• Update Cross-OS Caching tips by @​pdotl in actions/cache#1122
• Bazel example (Take #2️⃣) by @​vorburger in actions/cache#1132
• Remove actions to add new PRs and issues to a project board by @​jorendorff in actions/cache#1187
• Consume latest toolkit and fix dangling promise bug by @​chkimes in actions/cache#1217
• Bump action version to 3.3.2 by @​bethanyj28 in actions/cache#1236

New Contributors

• @​vorburger made their first contribution in actions/cache#1132
• @​jorendorff made their first contribution in actions/cache#1187
• @​chkimes made their first contribution in actions/cache#1217
• @​bethanyj28 made their first contribution in actions/cache#1236

Full Changelog: https://github.com/actions/cache/compare/v3...v3.3.2

v3.3.1

What's Changed

• Reduced download segment size to 128 MB and timeout to 10 minutes by @​kotewar in actions/cache#1129

Full Changelog: https://github.com/actions/cache/compare/v3...v3.3.1

v3.3.0

What's Changed

• Bug: Permission is missing in cache delete example by @​kotokaze in actions/cache#1123

... (truncated)

Changelog

Sourced from actions/cache's changelog.

Releases

4.0.2

• Fixed restore fail-on-cache-miss not working.

4.0.1

• Updated isGhes check

4.0.0

• Updated minimum runner version support from node 12 -> node 20

3.3.3

• Updates @​actions/cache to v3.2.3 to fix accidental mutated path arguments to getCacheVersion actions/toolkit#1378
• Additional audit fixes of npm package(s)

3.3.2

• Fixes bug with Azure SDK causing blob downloads to get stuck.

3.3.1

• Reduced segment size to 128MB and segment timeout to 10 minutes to fail fast in case the cache download is stuck.

3.3.0

• Added option to lookup cache without downloading it.

3.2.6

• Fix zstd not being used after zstd version upgrade to 1.5.4 on hosted runners.

3.2.5

• Added fix to prevent from setting MYSYS environment variable globally.

3.2.4

• Added option to fail job on cache miss.

3.2.3

• Support cross os caching on Windows as an opt-in feature.
• Fix issue with symlink restoration on Windows for cross-os caches.

3.2.2

... (truncated)

Commits

• 0c45773 Merge pull request #1327 from cdce8p/fix-fail-on-cache-miss
• 8a55f83 Add test case for process exit
• 3884cac Bump version
• e29dad3 Fix fail-on-cache-miss not working
• ab5e6d0 Merge pull request #1341 from bethanyj28/main
• 89c7d86 licensed cache
• d2c84da update @​actions/cache
• 37e7d4e Merge pull request #1340 from actions/bethanyj28/update-publish-flow
• a18323f add release action
• a2ed59d Merge pull request #1305 from actions/yacaovsnc/update_examples
• Additional commits viewable in compare view

Updates JetBrains/qodana-action from 2022.3.4 to 2024.1.4

Release notes

Sourced from JetBrains/qodana-action's releases.

v2024.1.4

Changelog

• ba18ada :bug: Fix invalid branch names
• 132167b :arrow_up: Bump eslint-plugin-jest in the npm-development group
• 03c90b2 :arrow_up: Bump the npm-production group with 2 updates
• 0e6bc1d :arrow_up: Update qodana to v2024.1.4

v2024.1.3

Changelog

• 2249826 :arrow_up: Update qodana to v2024.1.3
• 3346d1b :arrow_up: Bump azure-pipelines-task-lib from 4.11.0 to 4.12.0
• 348e594 :arrow_up: Bump @​octokit/types from 13.4.1 to 13.5.0
• 469f04d :arrow_up: Bump the npm-production group with 2 updates

v2024.1.2

Changelog

• e185f83 :bug: Update artifact upload pattern
• 5faa8fe :bug: Fix dependency summary
• 2dbc410 :arrow_up: Update qodana to v2024.1.2

v2024.1.1

Changelog

• caaec8a :arrow_up: Bump the dependencies group with 7 updates
• 28b4ee5 :bricks: Update release workflows
• bb446e7 :bricks: Update gradle properties
• 92c7009 :arrow_up: Bump the dependencies group with 2 updates
• 3e525c9 :arrow_up: Bump gradle/wrapper-validation-action
• ee19938 :arrow_up: Bump the dependencies group with 10 updates
• d9d3d01 :bricks: Fix CLI updater script
• 5240dc8 :arrow_up: Bump gradle/wrapper-validation-action
• 3925fa7 :lock: Prevent second order command injection prevention (CWE-88, CWE-78)
• 12749d0 :arrow_up: Update qodana to v2024.1.1
• efcec05 :arrow_up: Bump the dependencies group with 7 updates
• 03d9f05 :recycle: Apply Qodana suggestions
• f0a644c :children_crossing: Fix view report message
• ccc2f78 :bricks: Update Qodana configuration
• 38a023c :bug: Support --config in the action
• 23aa837 :bricks: Update Azure configuration
• a4f50a6 :memo: Update Azure icon

v2023.3.2

Changelog

• fc2dc2f :bricks: Use node20 as the action runtime
• 43dddd1 :arrow_up: Bump the dependencies group with 7 updates
• 9a71424 :arrow_up: Bump the dependencies group with 1 update
• 5796958 :arrow_up: Bump the dependencies group with 2 updates
• 8e10b3a :arrow_up: Update qodana to v2023.3.2
• 11d3bf9 :arrow_up: Bump the dependencies group with 16 updates

... (truncated)

Commits

• 0e6bc1d :arrow_up: Update qodana to v2024.1.4
• 03c90b2 :arrow_up: Bump the npm-production group with 2 updates
• 132167b :arrow_up: Bump eslint-plugin-jest in the npm-development group
• ba18ada :bug: Fix invalid branch names
• 469f04d :arrow_up: Bump the npm-production group with 2 updates
• 348e594 :arrow_up: Bump @​octokit/types from 13.4.1 to 13.5.0
• 3346d1b :arrow_up: Bump azure-pipelines-task-lib from 4.11.0 to 4.12.0
• 2249826 :arrow_up: Update qodana to v2024.1.3
• f6f71dd :arrow_up: Bump the npm-development group with 3 updates
• 4b4a649 :bricks: Add new GitHub integration tests
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Superseded by #116.