Bump the actions group across 1 directory with 4 updates

[dependabot[bot]]

Bumps the actions group with 4 updates in the / directory: azure/setup-helm, dependabot/fetch-metadata, golangci/golangci-lint-action and docker/build-push-action.

Updates azure/setup-helm from 3 to 4

Release notes

Sourced from azure/setup-helm's releases.

v4.0.0

• #121 update to node20 as node16 is deprecated

v3.5 release

Bump @​actions/core version to remove output warning.

v3.4 release

Improves the querying method to find the latest Helm release. Takes advantage of new GitHub api changes.

v3.3 release

Add token input. Needed for fetching latest

v3.1 release

Swap to GraphQL GitHub API

Changelog

Sourced from azure/setup-helm's changelog.

Change Log

[4.2.0] - 2024-04-15

• #124 Fix OS detection and download OS-native archive extension

[4.1.0] - 2024-03-01

• #130 switches to use Helm published file to read latest version instead of using GitHub releases

[4.0.0] - 2024-02-12

• #121 update to node20 as node16 is deprecated

Commits

• fe7b79c build
• df50d87 Release v4.2.0 (#134)
• 08d7123 Bump undici from 5.28.2 to 5.28.4 (#133)
• 0a0c55a Fix os detection and archive extension (#124)
• d00ce1c update to release workflow major version tag (#132)
• 4c255dd publish version 4.1.0 (#131)
• ec8dd7c switching to fetching latest version from the dedicated file (#130)
• efbd96d Fix action version in README.md (#129)
• 859dc38 v4 readme update (#127)
• 0788eb3 v4 release and required workflow updates (#125)
• Additional commits viewable in compare view

Updates dependabot/fetch-metadata from 1.6.0 to 2.1.0

Release notes

Sourced from dependabot/fetch-metadata's releases.

v2.1.0

What's Changed

• Relax engine-strict=true by @​jeffwidman in dependabot/fetch-metadata#510
• Handle branch names containing hyphen separators by @​tspencer244 in dependabot/fetch-metadata#450
• Switch to monthly release cadence by @​jeffwidman in dependabot/fetch-metadata#509
• v2.1.0 by @​fetch-metadata-action-automation in dependabot/fetch-metadata#518

New Contributors

• @​tspencer244 made their first contribution in dependabot/fetch-metadata#450

Full Changelog: https://github.com/dependabot/fetch-metadata/compare/v2.0.0...v2.1.0

v2.0.0 - Switch to node20

What's Changed

• Upgrade from node16 to node20 by @​Nishnha in dependabot/fetch-metadata#443 👈 this is a potentially breaking change for some workflows
• v2 is the new tracking tag by @​jeffwidman in dependabot/fetch-metadata#506
• v2.0.0 by @​fetch-metadata-action-automation in dependabot/fetch-metadata#508

Full Changelog: https://github.com/dependabot/fetch-metadata/compare/v1.7.0...v2.0.0

v1.7.0

What's Changed

• Bump dotenv from 16.0.3 to 16.3.1 by @​dependabot in dependabot/fetch-metadata#404
• Bump @​types/node from 20.2.3 to 20.3.3 by @​dependabot in dependabot/fetch-metadata#407
• Bump the eslint-dependencies group with 4 updates by @​dependabot in dependabot/fetch-metadata#409
• Update dependabot.yml by @​bdragon in dependabot/fetch-metadata#410
• Bump @​types/node from 20.3.3 to 20.4.0 by @​dependabot in dependabot/fetch-metadata#411
• Bump yaml from 2.2.1 to 2.3.1 by @​dependabot in dependabot/fetch-metadata#390
• Bump tough-cookie from 4.0.0 to 4.1.3 by @​dependabot in dependabot/fetch-metadata#412
• Bump @​types/node from 20.4.0 to 20.4.1 by @​dependabot in dependabot/fetch-metadata#413
• Generate Dependabot PRs on Sundays weekly by @​abdulapopoola in dependabot/fetch-metadata#417
• Aggressively group prod and dev dependencies for NPM by @​abdulapopoola in dependabot/fetch-metadata#420
• Update .nvmrc to latest node 16 LTS version by @​abdulapopoola in dependabot/fetch-metadata#422
• Bump the dev-dependencies group with 9 updates by @​dependabot in dependabot/fetch-metadata#421
• Bump the dev-dependencies group with 1 update by @​dependabot in dependabot/fetch-metadata#423
• Check for uncommitted files beyond the diff directory by @​jeffwidman in dependabot/fetch-metadata#278
• Bump the dev-dependencies group with 6 updates by @​dependabot in dependabot/fetch-metadata#424
• Bump the dev-dependencies group with 3 updates by @​dependabot in dependabot/fetch-metadata#425
• Bump the dev-dependencies group with 6 updates by @​dependabot in dependabot/fetch-metadata#428
• Bump the dev-dependencies group with 7 updates by @​dependabot in dependabot/fetch-metadata#429
• Bump tibdex/github-app-token from 1.8.0 to 1.8.2 by @​dependabot in dependabot/fetch-metadata#430
• Bump the dev-dependencies group with 4 updates by @​dependabot in dependabot/fetch-metadata#432
• Bump actions/checkout from 3 to 4 by @​dependabot in dependabot/fetch-metadata#436
• Bump the dev-dependencies group with 6 updates by @​dependabot in dependabot/fetch-metadata#440
• Change actions/checkout@v3 to v4 in readme by @​Nishnha in dependabot/fetch-metadata#444
• Bump the dev-dependencies group with 4 updates by @​dependabot in dependabot/fetch-metadata#445
• Bump @​vercel/ncc from 0.36.1 to 0.38.0 by @​dependabot in dependabot/fetch-metadata#435
• Bump the dev-dependencies group with 4 updates by @​dependabot in dependabot/fetch-metadata#447
• Bump the dev-dependencies group with 3 updates by @​dependabot in dependabot/fetch-metadata#448

... (truncated)

Commits

• 5e5f996 Merge pull request #518 from dependabot/bump-to-v2.1.0
• 63415e5 v2.1.0
• 76b7fe9 Merge pull request #509 from dependabot/switch-to-monthly-release-cadence
• 7c323d5 Switch to monthly release cadence
• 5c7b450 Merge pull request #450 from HealthengineAU/handle-branches-with-hyphens
• a44a9df Handle branch names containing hyphen separators
• 518993c Relax engine-strict=true (#510)
• 0fb2170 v2.0.0 (#508)
• dc2c459 v2 is the new tracking tag (#506)
• f2f0ad1 Upgrade from node16 to node20 (#443)
• Additional commits viewable in compare view

Updates golangci/golangci-lint-action from 4 to 6

Release notes

Sourced from golangci/golangci-lint-action's releases.

v6.0.0

What's Changed

This version removes annotations option (because it was useless), and removes the default output format (github-actions). The annotations are still produced but with another approach.

Changes

• feat: rewrite format handling by @​ldez in golangci/golangci-lint-action#1038

Dependencies

• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.7.1 to 7.8.0 by @​dependabot in golangci/golangci-lint-action#1034
• build(deps): bump @​types/node from 20.12.7 to 20.12.8 by @​dependabot in golangci/golangci-lint-action#1036
• build(deps-dev): bump @​typescript-eslint/parser from 7.7.1 to 7.8.0 by @​dependabot in golangci/golangci-lint-action#1035

Full Changelog: https://github.com/golangci/golangci-lint-action/compare/v5.3.0...v6.0.0

v5.3.0

What's Changed

Changes

• feat: uses 2 dots compare syntax for push diff by @​ldez in golangci/golangci-lint-action#1030
• feat: add option to control cache invalidation interval by @​ldez in golangci/golangci-lint-action#1031
• feat: use OS and working-directory as cache key by @​ldez in golangci/golangci-lint-action#1032
• feat: improve log about pwd/cwd by @​ldez in golangci/golangci-lint-action#1033

Full Changelog: https://github.com/golangci/golangci-lint-action/compare/v5.2.0...v5.3.0

v5.2.0

What's Changed

Changes

• feat: add an option to enable/disable annotations by @​ldez

Full Changelog: https://github.com/golangci/golangci-lint-action/compare/v5.1.0...v5.2.0

v5.1.0

What's Changed

Changes

• feat: support for pull and merge_group events with the option only-new-issues by @​ldez in golangci/golangci-lint-action#1029

Dependencies

• build(deps-dev): bump @​typescript-eslint/parser from 7.7.0 to 7.7.1 by @​dependabot in golangci/golangci-lint-action#1027
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.7.0 to 7.7.1 by @​dependabot in golangci/golangci-lint-action#1028

... (truncated)

Commits

• a4f60bb fix: use 3-dots syntax for diff on push (#1040)
• 5815a4b doc: improve readme
• 23faadf doc: improve readme
• b556f25 doc: improve readme
• 789f114 feat: rewrite format handling (#1038)
• d36b91c build(deps-dev): bump @​typescript-eslint/parser from 7.7.1 to 7.8.0 (#1035)
• a9eb115 build(deps): bump @​types/node from 20.12.7 to 20.12.8 (#1036)
• bd4fa7c build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.7.1 to 7.8.0 (#...
• 38e1018 feat: improve log about pwd/cwd (#1033)
• 21e9e6b feat: use OS and working-directory as cache key (#1032)
• Additional commits viewable in compare view

Updates docker/build-push-action from 5 to 6

Release notes

Sourced from docker/build-push-action's releases.

v6.0.0

• Export build record and generate build summary by @​crazy-max in docker/build-push-action#1120
• Bump @​docker/actions-toolkit from 0.24.0 to 0.26.0 in docker/build-push-action#1132 docker/build-push-action#1136 docker/build-push-action#1138
• Bump braces from 3.0.2 to 3.0.3 in docker/build-push-action#1137

[!NOTE] This major release adds support for generating Build summary and exporting build record for your build. You can disable this feature by setting DOCKER_BUILD_NO_SUMMARY: true environment variable in your workflow.

Full Changelog: https://github.com/docker/build-push-action/compare/v5.4.0...v6.0.0

v5.4.0

• Show builder information before building by @​crazy-max in docker/build-push-action#1128
• Handle attestations correctly with provenance and sbom inputs by @​crazy-max in docker/build-push-action#1086
• Bump @​docker/actions-toolkit from 0.19.0 to 0.24.0 in docker/build-push-action#1088 docker/build-push-action#1105 docker/build-push-action#1121 docker/build-push-action#1127
• Bump undici from 5.28.3 to 5.28.4 in docker/build-push-action#1090

Full Changelog: https://github.com/docker/build-push-action/compare/v5.3.0...v5.4.0

v5.3.0

• Bump @​docker/actions-toolkit from 0.18.0 to 0.19.0 in docker/build-push-action#1080

Full Changelog: https://github.com/docker/build-push-action/compare/v5.2.0...v5.3.0

v5.2.0

• Disable quotes detection for outputs input by @​crazy-max in docker/build-push-action#1074
• Warn about ignored inputs by @​favonia in docker/build-push-action#1019
• Bump @​docker/actions-toolkit from 0.14.0 to 0.18.0 in docker/build-push-action#1070
• Bump undici from 5.26.3 to 5.28.3 in docker/build-push-action#1057

Full Changelog: https://github.com/docker/build-push-action/compare/v5.1.0...v5.2.0

v5.1.0

• Add annotations input by @​crazy-max in docker/build-push-action#992
• Add secret-envs input by @​elias-lundgren in docker/build-push-action#980
• Bump @​babel/traverse from 7.17.3 to 7.23.2 in docker/build-push-action#991
• Bump @​docker/actions-toolkit from 0.13.0-rc.1 to 0.14.0 in docker/build-push-action#990 docker/build-push-action#1006

Full Changelog: https://github.com/docker/build-push-action/compare/v5.0.0...v5.1.0

Commits

• 31159d4 Merge pull request #1149 from docker/dependabot/npm_and_yarn/docker/actions-t...
• 07e1c3e chore: update generated content
• f7febd6 chore(deps): Bump @​docker/actions-toolkit from 0.26.2 to 0.27.0
• f6010ea Merge pull request #1147 from docker/dependabot/npm_and_yarn/docker/actions-t...
• c0a6b96 chore: update generated content
• 0dfe9c3 chore(deps): Bump @​docker/actions-toolkit from 0.26.1 to 0.26.2
• 94f8f8c Merge pull request #1142 from docker/dependabot/npm_and_yarn/docker/actions-t...
• 22f4433 chore: update generated content
• 6721c56 chore(deps): Bump @​docker/actions-toolkit from 0.26.0 to 0.26.1
• 4367da9 Merge pull request #1140 from docker/dependabot/github_actions/docker/bake-ac...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Superseded by #264.