In scope of this release, we change Nodejs runtime from node16 to node20 (actions/setup-go#421). Moreover, we update some dependencies to the latest versions (actions/setup-go#445).
In scope of this release, slow installation on Windows was fixed by @dsame in actions/setup-go#393 and OS version was added to primaryKey for Ubuntu runners to avoid conflicts (actions/setup-go#383)
Action is now stateful: If the action ends because of operations-per-run then the next run will start from the first unprocessed issue skipping the issues processed during the previous run(s). The state is reset when all the issues are processed. This should be considered for scheduling workflow runs.
Version 9 of this action updated the runtime to Node.js 20. All scripts are now run with Node.js 20 instead of Node.js 16 and are affected by any breaking changes between Node.js 16 and 20.
What Else Changed
Performance optimization that removes unnecessary API calls by @dsame#1033 fixes #792
Logs displaying current github API rate limit by @dsame#1032 addresses #1029
operations: fail fast the current batch to respect the operations limit (#474) (5f6f311), closes #466
label comparison: make label comparison case insensitive #517, closes #516
filtering comments by actor could have strange behavior: "stale" comments are now detected based on if the message is the stale message not who made the comment(#519), fixes #441, #509, #518
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the github-actions group with 10 updates:
6
7
2
3
4
5
1.2.0
1.3.0
4
5
0.8.3
0.9.0
3.1.2
3.3.0
0.14.3
0.15.2
23
24
8
9
Updates
actions/github-script
from 6 to 7Release notes
Sourced from actions/github-script's releases.
... (truncated)
Commits
60a0d83
Merge pull request #440 from actions/joshmgross/v7.0.1b7fb200
Update version to 7.0.112e22ed
Merge pull request #439 from actions/joshmgross/avoid-setting-base-urld319f8f
Avoid settingbaseUrl
to undefined when input is not providede69ef54
Merge pull request #425 from actions/joshmgross/node-20ee0914b
Update licensesd6fc56f
Use@types/node
for Node 20384d6cf
Fix quotations in tests8472492
Only validate GraphQLpreviews
84903f5
Removenode-fetch
from typeUpdates
github/codeql-action
from 2 to 3Release notes
Sourced from github/codeql-action's releases.
... (truncated)
Changelog
Sourced from github/codeql-action's changelog.
Commits
e0c2b0a
change version numbers inside processing function as well8e4a6c7
improve handling of changelog processing for backports511f073
Merge pull request #2033 from github/dependabot/npm_and_yarn/npm-0a98872b3debf5a83
Merge pull request #2035 from github/mergeback/v3.22.11-to-main-b374143c7813bda
Update checked-in dependencies2b2fb6b
Update changelog and version after v3.22.11b374143
Merge pull request #2034 from github/update-v3.22.11-64e61baea95591ba
Merge branch 'main' into dependabot/npm_and_yarn/npm-0a98872b3de2b5cc7
Update changelog for v3.22.11Updates
actions/setup-go
from 4 to 5Release notes
Sourced from actions/setup-go's releases.
Commits
0c52d54
Update dependencies for node20 (#445)bfd2fb3
Merge pull request #421 from chenrui333/node20-runtime3d65fa5
feat: bump to use actions/checkout@v48a505c9
feat: bump to use node20 runtime883490d
Merge pull request #417 from artemgavrilov/maind45ebba
Rephrase sentence317c661
Replacewildcards
term withglobs
.f90673a
Merge pull request #1 from artemgavrilov/caching-docs-improvement8018234
Improve documentation regarding dependencies cachind085b4f
Merge pull request #411 from galargh/fix/windows-hostedtoolcacheUpdates
actions/first-interaction
from 1.2.0 to 1.3.0Release notes
Sourced from actions/first-interaction's releases.
Commits
34f15e8
Merge pull request #288 from actions/allanguigou/bump-minor-version3c71ce7
1.3.0001cc8d
Merge pull request #287 from actions/bump-node-to-v18625b194
Update to node 20.103aee370
Update license to MITf3836b2
Update licensed cachec23c7ec
Update base image to node:18.18.2-buster-slimUpdates
dessant/lock-threads
from 4 to 5Release notes
Sourced from dessant/lock-threads's releases.
Changelog
Sourced from dessant/lock-threads's changelog.
... (truncated)
Commits
1bf7ec2
chore(release): 5.0.1adf4aa5
chore: update package0a63678
fix: support filtering threads by labels with spacesd42e5f4
chore(release): 5.0.0d8da6c1
chore: update packagec1eab4b
chore: update workflow0a0976f
feat: lock discussions53f3f0c
chore: migrate package to ESM5a25b54
fix: update dependenciesUpdates
alex-page/github-project-automation-plus
from 0.8.3 to 0.9.0Release notes
Sourced from alex-page/github-project-automation-plus's releases.
Commits
303f24a
Update node runtime to v20 (#91)Updates
sigstore/cosign-installer
from 3.1.2 to 3.3.0Release notes
Sourced from sigstore/cosign-installer's releases.
Commits
9614fae
update action to use latest cosign v2.2.2 (#153)c81cf06
Bump actions/setup-go from 4.1.0 to 5.0.0 (#152)1fc5bd3
test with latest go version (#150)9ce7d60
bump cosign to v2.2.1 (#148)4b014e3
Support the runner context of gitea act (#147)38ab09d
Bump actions/checkout from 4.1.0 to 4.1.1 (#145)9c520b9
Bump actions/checkout from 4.0.0 to 4.1.0 (#144)ef6a6b3
Bump actions/checkout from 3.6.0 to 4.0.0 (#143)Updates
anchore/sbom-action
from 0.14.3 to 0.15.2Release notes
Sourced from anchore/sbom-action's releases.
Commits
7191336
chore(deps): update Syft to v0.99.0 (#432)b05b28b
chore: fix github-script invocation (#433)5ecf649
chore(deps): update Syft to v0.98.0 (#431)a4126e6
Add config input (#430)9d0277c
chore: pin and upgrade gh actions (#429)fd74a6f
pin and upgrade actions/checkout (#428)c9fb15d
chore(deps): update Syft to v0.97.1 (#427)74207bd
chore: test natively on Windows (#426)ace0b97
add oss community board auto-add workflow (#421)Updates
cachix/install-nix-action
from 23 to 24Release notes
Sourced from cachix/install-nix-action's releases.
Commits
7ac1ec2
Nix 2.19.1dc33a21
Merge pull request #200 from cachix/fix/1962b90cd3
Merge pull request #202 from cachix/feature/kvmfe19c91
feat: enable KVM on Linux if availablea56e3a8
Merge pull request #199 from jalaziz/tempdir81eb746
Update install-nix.sh97a1be3
fix: don't use the default GitHub token for Enterprise2cce1fd
fix: Set TMPDIR to avoid disk space issues300721f
Merge pull request #193 from cachix/dependabot/github_actions/actions/checkout-4fe6788c
chore(deps): bump actions/checkout from 3 to 4Updates
actions/stale
from 8 to 9Release notes
Sourced from actions/stale's releases.
Changelog
Sourced from actions/stale's changelog.
... (truncated)
Commits
28ca103
Upgrade Node to v20 (#1110)b69b346
build(deps-dev): bump@types/node
from 18.16.18 to 20.5.1 (#1079)88a6f4f
build(deps-dev): bump typescript from 5.1.3 to 5.2.2 (#1083)796531a
Merge pull request #1080 from akv-platform/fix-delete-cache8986f62
Don not try to delete cache if it does not existscab99b3
fix typo proceeded/processed184e7af
Merge pull request #1064 from actions/dependabot/npm_and_yarn/typescript-esli...523885c
chore: update eslint-plugin, parser and eslint-plugin-jest2487a1d
build(deps-dev): bump@typescript-eslint/eslint-plugin
60c722e
Merge pull request #1063 from actions/dependabot/npm_and_yarn/jest-29.6.2Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show