Bump the actions group in /.github/workflows with 6 updates

[dependabot[bot]]

Bumps the actions group in /.github/workflows with 6 updates:

Package	From	To
actions/add-to-project	1.0.1	1.0.2
actions/checkout	3	4
lycheeverse/lychee-action	1.9.0	1.10.0
actions/setup-python	4	5
pre-commit/action	2.0.0	3.0.1
peter-evans/create-pull-request	5	6

Updates actions/add-to-project from 1.0.1 to 1.0.2

Release notes

Sourced from actions/add-to-project's releases.

v1.0.2

What's Changed

• build(deps-dev): bump braces from 3.0.2 to 3.0.3 by @​dependabot in actions/add-to-project#583
• build(deps-dev): bump @​types/node from 16.18.96 to 16.18.101 by @​dependabot in actions/add-to-project#588
• build(deps-dev): bump ts-jest from 29.1.2 to 29.1.5 by @​dependabot in actions/add-to-project#582
• build(deps-dev): bump @​typescript-eslint/parser from 7.6.0 to 7.14.1 by @​dependabot in actions/add-to-project#589
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.6.0 to 7.14.1 by @​dependabot in actions/add-to-project#590
• build(deps-dev): bump eslint-plugin-jest from 27.9.0 to 28.6.0 by @​dependabot in actions/add-to-project#578
• Dependabot/npm and yarn/eslint plugin jest 28.6.0 fixes by @​talune in actions/add-to-project#591

Full Changelog: https://github.com/actions/add-to-project/compare/v1.0.1...v1.0.2

Commits

• 244f685 Merge pull request #591 from actions/dependabot/npm_and_yarn/eslint-plugin-je...
• 2a5ef71 Build and package
• 8c11461 Update license for json-schema.dep.yml
• 66f6cff Merge pull request #578 from actions/dependabot/npm_and_yarn/eslint-plugin-je...
• ddf5099 Merge pull request #590 from actions/dependabot/npm_and_yarn/typescript-eslin...
• da1ae5b build(deps-dev): bump @​typescript-eslint/eslint-plugin
• ced87c7 Merge pull request #589 from actions/dependabot/npm_and_yarn/typescript-eslin...
• c78e6a1 Merge pull request #582 from actions/dependabot/npm_and_yarn/ts-jest-29.1.5
• 267a19f build(deps-dev): bump @​typescript-eslint/parser from 7.6.0 to 7.14.1
• e005a86 Merge pull request #588 from actions/dependabot/npm_and_yarn/types/node-16.18...
• Additional commits viewable in compare view

Updates actions/checkout from 3 to 4

Release notes

Sourced from actions/checkout's releases.

v4.0.0

What's Changed

• Update default runtime to node20 by @​takost in actions/checkout#1436
• Support fetching without the --progress option by @​simonbaird in actions/checkout#1067
• Release 4.0.0 by @​takost in actions/checkout#1447

New Contributors

• @​takost made their first contribution in actions/checkout#1436
• @​simonbaird made their first contribution in actions/checkout#1067

Full Changelog: https://github.com/actions/checkout/compare/v3...v4.0.0

v3.6.0

What's Changed

• Mark test scripts with Bash'isms to be run via Bash by @​dscho in actions/checkout#1377
• Add option to fetch tags even if fetch-depth > 0 by @​RobertWieczoreck in actions/checkout#579
• Release 3.6.0 by @​luketomlinson in actions/checkout#1437

New Contributors

• @​RobertWieczoreck made their first contribution in actions/checkout#579
• @​luketomlinson made their first contribution in actions/checkout#1437

Full Changelog: https://github.com/actions/checkout/compare/v3.5.3...v3.6.0

v3.5.3

What's Changed

• Fix: Checkout Issue in self hosted runner due to faulty submodule check-ins by @​megamanics in actions/checkout#1196
• Fix typos found by codespell by @​DimitriPapadopoulos in actions/checkout#1287
• Add support for sparse checkouts by @​dscho and @​dfdez in actions/checkout#1369
• Release v3.5.3 by @​TingluoHuang in actions/checkout#1376

New Contributors

• @​megamanics made their first contribution in actions/checkout#1196
• @​DimitriPapadopoulos made their first contribution in actions/checkout#1287
• @​dfdez made their first contribution in actions/checkout#1369

Full Changelog: https://github.com/actions/checkout/compare/v3...v3.5.3

v3.5.2

What's Changed

• Fix: Use correct API url / endpoint in GHES by @​fhammerl in actions/checkout#1289 based on #1286 by @​1newsr

Full Changelog: https://github.com/actions/checkout/compare/v3.5.1...v3.5.2

v3.5.1

What's Changed

• Improve checkout performance on Windows runners by upgrading @​actions/github dependency by @​BrettDong in actions/checkout#1246

New Contributors

• @​BrettDong made their first contribution in actions/checkout#1246

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

Changelog

v4.1.7

• Bump the minor-npm-dependencies group across 1 directory with 4 updates by @​dependabot in actions/checkout#1739
• Bump actions/checkout from 3 to 4 by @​dependabot in actions/checkout#1697
• Check out other refs/* by commit by @​orhantoy in actions/checkout#1774
• Pin actions/checkout's own workflows to a known, good, stable version. by @​jww3 in actions/checkout#1776

v4.1.6

• Check platform to set archive extension appropriately by @​cory-miller in actions/checkout#1732

v4.1.5

• Update NPM dependencies by @​cory-miller in actions/checkout#1703
• Bump github/codeql-action from 2 to 3 by @​dependabot in actions/checkout#1694
• Bump actions/setup-node from 1 to 4 by @​dependabot in actions/checkout#1696
• Bump actions/upload-artifact from 2 to 4 by @​dependabot in actions/checkout#1695
• README: Suggest user.email to be 41898282+github-actions[bot]@users.noreply.github.com by @​cory-miller in actions/checkout#1707

v4.1.4

• Disable extensions.worktreeConfig when disabling sparse-checkout by @​jww3 in actions/checkout#1692
• Add dependabot config by @​cory-miller in actions/checkout#1688
• Bump the minor-actions-dependencies group with 2 updates by @​dependabot in actions/checkout#1693
• Bump word-wrap from 1.2.3 to 1.2.5 by @​dependabot in actions/checkout#1643

v4.1.3

• Check git version before attempting to disable sparse-checkout by @​jww3 in actions/checkout#1656
• Add SSH user parameter by @​cory-miller in actions/checkout#1685
• Update actions/checkout version in update-main-version.yml by @​jww3 in actions/checkout#1650

v4.1.2

• Fix: Disable sparse checkout whenever sparse-checkout option is not present @​dscho in actions/checkout#1598

v4.1.1

• Correct link to GitHub Docs by @​peterbe in actions/checkout#1511
• Link to release page from what's new section by @​cory-miller in actions/checkout#1514

v4.1.0

• Add support for partial checkout filters

v4.0.0

• Support fetching without the --progress option
• Update to node20

v3.6.0

• Fix: Mark test scripts with Bash'isms to be run via Bash
• Add option to fetch tags even if fetch-depth > 0

v3.5.3

• Fix: Checkout fail in self-hosted runners when faulty submodule are checked-in
• Fix typos found by codespell

... (truncated)

Commits

• 692973e Prepare 4.1.7 release (#1775)
• 6ccd57f Pin actions/checkout's own workflows to a known, good, stable version. (#1776)
• b17fe1e Handle hidden refs (#1774)
• b80ff79 Bump actions/checkout from 3 to 4 (#1697)
• b1ec302 Bump the minor-npm-dependencies group across 1 directory with 4 updates (#1739)
• a5ac7e5 Update for 4.1.6 release (#1733)
• 24ed1a3 Check platform for extension (#1732)
• 44c2b7a README: Suggest user.email to be `41898282+github-actions[bot]@​users.norepl...
• 8459bc0 Bump actions/upload-artifact from 2 to 4 (#1695)
• 3f603f6 Bump actions/setup-node from 1 to 4 (#1696)
• Additional commits viewable in compare view

Updates lycheeverse/lychee-action from 1.9.0 to 1.10.0

Release notes

Sourced from lycheeverse/lychee-action's releases.

v1.10.0

What's Changed

• Update actions/checkout to version 4 by @​jacobdalamb in lycheeverse/lychee-action#224
• Bump lychee to 0.15.0 by @​mre in lycheeverse/lychee-action#226

New Contributors

• @​jacobdalamb made their first contribution in lycheeverse/lychee-action#224

Full Changelog: https://github.com/lycheeverse/lychee-action/compare/v1.9.3...v1.10.0

Version 1.9.3

What's Changed

• Bugfix: Pass custom token as input argument to action by @​mre in lycheeverse/lychee-action#222 Previously, the name of the token was incorrect, leading to no token being used if the user specified with: [token: ...]. Thanks to @​tobon4 for pointing this out.

Full Changelog: https://github.com/lycheeverse/lychee-action/compare/v1...v1.9.3

Version 1.9.2

What's Changed

• Bump actions/cache from 3 to 4 by @​dependabot in lycheeverse/lychee-action#221
• Bump peter-evans/create-issue-from-file from 4 to 5 by @​dependabot in lycheeverse/lychee-action#223
• Bump to lychee 0.14.2 in https://github.com/lycheeverse/lychee-action/commit/eeb9cb63fe093e4d17e5853314dbf862bb35f28d

Full Changelog: https://github.com/lycheeverse/lychee-action/compare/v1...v1.9.2

Version 1.9.1

This is a hotfix release which restores the behavior of the accept config parameter. Integers are accepted again as status codes.

accept = [200, 201, 202, 203, 429]

is equivalent to

accept = ["200..=203", 429]

Integers and strings (e.g. for ranges) can be mixed.

Commits

• 2b973e8 Bump lychee to 0.15.0 (#226)
• 1e92115 Update actions/checkout to version 4 (#224)
• c053181 Pass custom token as input argument to action (#222)
• eeb9cb6 Bump to lychee 0.14.2
• 0fa791a Bump peter-evans/create-issue-from-file from 4 to 5 (#223)
• 8c9a282 Bump actions/cache from 3 to 4 (#221)
• c3089c7 Bump to lychee 0.14.1
• fdea703 Update secure git hash for 1.9.0
• See full diff in compare view

Updates actions/setup-python from 4 to 5

Release notes

Sourced from actions/setup-python's releases.

v5.0.0

What's Changed

In scope of this release, we update node version runtime from node16 to node20 (actions/setup-python#772). Besides, we update dependencies to the latest versions.

Full Changelog: https://github.com/actions/setup-python/compare/v4.8.0...v5.0.0

v4.8.0

What's Changed

In scope of this release we added support for GraalPy (actions/setup-python#694). You can use this snippet to set up GraalPy:

steps:
- uses: actions/checkout@v4
- uses: actions/setup-python@v4 
  with:
    python-version: 'graalpy-22.3' 
- run: python my_script.py

Besides, the release contains such changes as:

• Trim python version when reading from file by @​FerranPares in actions/setup-python#628
• Use non-deprecated versions in examples by @​jeffwidman in actions/setup-python#724
• Change deprecation comment to past tense by @​jeffwidman in actions/setup-python#723
• Bump @​babel/traverse from 7.9.0 to 7.23.2 by @​dependabot in actions/setup-python#743
• advanced-usage.md: Encourage the use actions/checkout@v4 by @​cclauss in actions/setup-python#729
• Examples now use checkout@v4 by @​simonw in actions/setup-python#738
• Update actions/checkout to v4 by @​dmitry-shibanov in actions/setup-python#761

New Contributors

• @​FerranPares made their first contribution in actions/setup-python#628
• @​timfel made their first contribution in actions/setup-python#694
• @​jeffwidman made their first contribution in actions/setup-python#724

Full Changelog: https://github.com/actions/setup-python/compare/v4...v4.8.0

v4.7.1

What's Changed

• Bump word-wrap from 1.2.3 to 1.2.4 by @​dependabot in actions/setup-python#702
• Add range validation for toml files by @​dmitry-shibanov in actions/setup-python#726

Full Changelog: https://github.com/actions/setup-python/compare/v4...v4.7.1

v4.7.0

In scope of this release, the support for reading python version from pyproject.toml was added (actions/setup-python#669).

      - name: Setup Python
        uses: actions/setup-python@v4
</tr></table> 

... (truncated)

Commits

• 82c7e63 Documentation changes for avoiding rate limit issues on GHES (#835)
• 10aa35a feat: fallback to raw endpoint for manifest when rate limit is reached (#766)
• 9a7ac94 Bump undici from 5.27.2 to 5.28.3 (#817)
• 871daa9 Fix the "Specifying multiple Python/PyPy versions" link (#782)
• 2f07895 Fix broken README.md link (#793)
• e9d6f99 Replace setup-python@v4 by setup-python@v5 in README (#776)
• 0a5c615 Update action to node20 (#772)
• 0ae5836 Add example of GraalPy to docs (#773)
• b64ffca update actions/checkout to v4 (#761)
• 8d28961 Examples now use checkout@v4 (#738)
• Additional commits viewable in compare view

Updates pre-commit/action from 2.0.0 to 3.0.1

Release notes

Sourced from pre-commit/action's releases.

pre-commit/action@v3.0.1

Misc

• Update actions/cache to v4
  • #190 PR by @​SukiCZ.
  • #189 issue by @​bakerkj.

pre-commit/action@v3.0.0

Breaking

• remove pushing behaviour.
  • PR #164 by @​asottile.

see README for alternatives

pre-commit/action@v2.0.3

Fixes

• push compatibility with actions/checkout@v2 which checks out the branch
  • #97 PR by @​jackton1.

pre-commit/action@v2.0.2

retag of 2.0.1 but on the proper branch

pre-commit/action@v2.0.1

Fixes

• Avoid failures if cache saving fails
  • #54 PR by @​s-weigand
  • #53 issue by @​s-weigand

Commits

• 2c7b380 v3.0.1
• 8e2deeb Merge pull request #190 from SukiCZ/upgrade-action/cache-v4
• 0dbc303 Upgrade action/cache to v4. Fixes: #189
• c7d159c Merge pull request #185 from pre-commit/asottile-patch-1
• 9dd4237 fix main badge
• 37faf8a Merge pull request #184 from pre-commit/pre-commit-ci-update-config
• 049686e [pre-commit.ci] pre-commit autoupdate
• 5f528da move back to maintenance-only
• efd3bcf Merge pull request #170 from pre-commit/pre-commit-ci-update-config
• df308c7 [pre-commit.ci] pre-commit autoupdate
• Additional commits viewable in compare view

Updates peter-evans/create-pull-request from 5 to 6

Release notes

Sourced from peter-evans/create-pull-request's releases.

Create Pull Request v6.0.0

Behaviour changes

• The default values for author and committer have changed. See "What's new" below for details. If you are overriding the default values you will not be affected by this change.
• On completion, the action now removes the temporary git remote configuration it adds when using push-to-fork. This should not affect you unless you were using the temporary configuration for some other purpose after the action completes.

What's new

• Updated runtime to Node.js 20
  • The action now requires a minimum version of v2.308.0 for the Actions runner. Update self-hosted runners to v2.308.0 or later to ensure compatibility.
• The default value for author has been changed to ${{ github.actor }} <${{ github.actor_id }}+${{ github.actor }}@users.noreply.github.com>. The change adds the ${{ github.actor_id }}+ prefix to the email address to align with GitHub's standard format for the author email address.
• The default value for committer has been changed to github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>. This is to align with the default GitHub Actions bot user account.
• Adds input git-token, the Personal Access Token (PAT) that the action will use for git operations. This input defaults to the value of token. Use this input if you would like the action to use a different token for git operations than the one used for the GitHub API.
• push-to-fork now supports pushing to sibling repositories in the same network.
• Previously, when using push-to-fork, the action did not remove temporary git remote configuration it adds during execution. This has been fixed and the configuration is now removed when the action completes.
• If the pull request body is truncated due to exceeding the maximum length, the action will now suffix the body with the message "...[Pull request body truncated]" to indicate that the body has been truncated.
• The action now uses --unshallow only when necessary, rather than as a default argument of git fetch. This should improve performance, particularly for large git repositories with extensive commit history.
• The action can now be executed on one GitHub server and create pull requests on a different GitHub server. Server products include GitHub hosted (github.com), GitHub Enterprise Server (GHES), and GitHub Enterprise Cloud (GHEC). For example, the action can be executed on GitHub hosted and create pull requests on a GHES or GHEC instance.

What's Changed

• Update distribution by @​actions-bot in peter-evans/create-pull-request#2086
• fix crazy-max/ghaction-import-gp parameters by @​fharper in peter-evans/create-pull-request#2177
• Update distribution by @​actions-bot in peter-evans/create-pull-request#2364
• Use checkout v4 by @​okuramasafumi in peter-evans/create-pull-request#2521
• Note about delete-branch by @​dezren39 in peter-evans/create-pull-request#2631
• 98 dependency updates by @​dependabot

New Contributors

• @​fharper made their first contribution in peter-evans/create-pull-request#2177
• @​okuramasafumi made their first contribution in peter-evans/create-pull-request#2521
• @​dezren39 made their first contribution in peter-evans/create-pull-request#2631

Full Changelog: https://github.com/peter-evans/create-pull-request/compare/v5.0.2...v6.0.0

Create Pull Request v5.0.2

⚙️ Fixes an issue that occurs when using push-to-fork and both base and head repositories are in the same org/user account.

What's Changed

• fix: specify head repo by @​peter-evans in peter-evans/create-pull-request#2044
• 20 dependency updates by @​dependabot

Full Changelog: https://github.com/peter-evans/create-pull-request/compare/v5.0.1...v5.0.2

Create Pull Request v5.0.1

What's Changed

• fix: truncate body if exceeds max length by @​peter-evans in peter-evans/create-pull-request#1915
• 12 dependency updates by @​dependabot

Full Changelog: https://github.com/peter-evans/create-pull-request/compare/v5.0.0...v5.0.1

Commits

• c5a7806 feat: add branch name output (#2995)
• 4383ba9 build: update distribution (#2990)
• 36f7648 build(deps): bump undici from 6.18.2 to 6.19.2 (#2977)
• 5f7c158 build(deps-dev): bump @​types/node from 18.19.34 to 18.19.36 (#2976)
• db1713d build(deps-dev): bump ts-jest from 29.1.4 to 29.1.5 (#2975)
• ca98a71 build(deps-dev): bump ws from 8.11.0 to 8.17.1 (#2970)
• ce00808 build(deps-dev): bump braces from 3.0.2 to 3.0.3 (#2962)
• 7318c0b build(deps-dev): bump prettier from 3.3.0 to 3.3.2 (#2959)
• e30bbbb build: update distribution (#2947)
• bad19b8 build(deps-dev): bump @​types/node from 18.19.33 to 18.19.34 (#2935)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[lwasser]

@pllim THANK YOU! this is a really amazing tool. i've been doing this manually for too long.