search

pydata / pydata-sphinx-theme

A clean, three-column Sphinx theme with Bootstrap for the PyData community
https://pydata-sphinx-theme.readthedocs.io
BSD 3-Clause "New" or "Revised" License
601 stars 314 forks source link

Build(deps): Bump pre-commit/action from 3.0.0 to 3.0.1 #1715

Closed dependabot[bot] closed 6 months ago

dependabot[bot] commented 7 months ago

Bumps pre-commit/action from 3.0.0 to 3.0.1.

Release notes

Sourced from pre-commit/action's releases.

pre-commit/action@v3.0.1

Misc

Commits
  • 2c7b380 v3.0.1
  • 8e2deeb Merge pull request #190 from SukiCZ/upgrade-action/cache-v4
  • 0dbc303 Upgrade action/cache to v4. Fixes: #189
  • c7d159c Merge pull request #185 from pre-commit/asottile-patch-1
  • 9dd4237 fix main badge
  • 37faf8a Merge pull request #184 from pre-commit/pre-commit-ci-update-config
  • 049686e [pre-commit.ci] pre-commit autoupdate
  • 5f528da move back to maintenance-only
  • efd3bcf Merge pull request #170 from pre-commit/pre-commit-ci-update-config
  • df308c7 [pre-commit.ci] pre-commit autoupdate
  • Additional commits viewable in compare view


Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

12rambau commented 7 months ago

@drammock any reason you remember why we are not relying on a lighter pin ? "v3" (which I use in other projects) would not require anything from us.

drammock commented 7 months ago

@drammock any reason you remember why we are not relying on a lighter pin ? "v3" (which I use in other projects) would not require anything from us.

the vX.Y.Z pin is what is given as the example in the pre-commit/action repo. It's what I've seen in other repos I work on too. I think the answer to why we were using v3.0.0 instead of v3 is "because it was copy-pasted from the example".

My feeling is to leave it that way; it's usually not very much work to merge these, and if the action ever did break something, it would be nice to have it isolated to a PR rather than to show up on main unannounced.

drammock commented 7 months ago

@dependabot rebase

drammock commented 7 months ago

oops, the rebase needs to wait for #1717 to be merged first