search

tektronix / python-package-ci-cd

A collection of Actions and Reusable Workflows for Python Packaging CI/CD
Apache License 2.0
1 stars 1 forks source link

chore(gh-actions-deps): update actions/attest-build-provenance action to v1.4.4 in all dependant reusable workflows #200

Closed renovate[bot] closed 3 weeks ago

renovate[bot] commented 3 weeks ago

This PR contains the following updates:

Package Type Update Change
actions/attest-build-provenance action patch v1.4.3 -> v1.4.4

Release Notes

actions/attest-build-provenance (actions/attest-build-provenance) ### [`v1.4.4`](https://redirect.github.com/actions/attest-build-provenance/releases/tag/v1.4.4) [Compare Source](https://redirect.github.com/actions/attest-build-provenance/compare/v1.4.3...v1.4.4) #### What's Changed - Bump predicate action from 1.1.3 to 1.1.4 by [@​bdehamer](https://redirect.github.com/bdehamer) in [https://github.com/actions/attest-build-provenance/pull/310](https://redirect.github.com/actions/attest-build-provenance/pull/310) - Bump [@​actions/core](https://redirect.github.com/actions/core) from 1.10.1 to 1.11.1 by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/actions/attest-build-provenance/pull/275](https://redirect.github.com/actions/attest-build-provenance/pull/275) - Bump [@​actions/attest](https://redirect.github.com/actions/attest) from 1.4.2 to 1.5.0 by [@​bdehamer](https://redirect.github.com/bdehamer) in [https://github.com/actions/attest-build-provenance/pull/309](https://redirect.github.com/actions/attest-build-provenance/pull/309) - Fix SLSA provenance bug related to `workflow_ref` OIDC token claims containing the "@​" symbol in the tag [https://github.com/actions/toolkit/pull/1863](https://redirect.github.com/actions/toolkit/pull/1863)l/1863) **Full Changelog**: https://github.com/actions/attest-build-provenance/compare/v1.4.3...v1.4.4

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

This PR was generated by Mend Renovate. View the repository job log.

codecov[bot] commented 3 weeks ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Project coverage is 100.00%. Comparing base (fe24396) to head (30f96b7). Report is 1 commits behind head on main.

Additional details and impacted files ```diff @@ Coverage Diff @@ ## main #200 +/- ## ========================================= Coverage 100.00% 100.00% ========================================= Files 4 4 Lines 224 224 Branches 30 30 ========================================= Hits 224 224 ```

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.

github-actions[bot] commented 3 weeks ago

Test Results (windows)

path passed subtotal
tests\test_bump_version_in_files.py 5 5
tests\test_create_unique_testpypi_version.py 7 7
tests\test_find_unreleased_changelog_items.py 6 6
tests\test_update_development_dependencies.py 13 13
TOTAL 31 31

Link to workflow run

github-actions[bot] commented 3 weeks ago

Test Results (macos)

path passed subtotal
tests/test_bump_version_in_files.py 5 5
tests/test_create_unique_testpypi_version.py 7 7
tests/test_find_unreleased_changelog_items.py 6 6
tests/test_update_development_dependencies.py 13 13
TOTAL 31 31

Link to workflow run

github-actions[bot] commented 3 weeks ago

Test Results (ubuntu)

path passed subtotal
tests/test_bump_version_in_files.py 5 5
tests/test_create_unique_testpypi_version.py 7 7
tests/test_find_unreleased_changelog_items.py 6 6
tests/test_update_development_dependencies.py 13 13
TOTAL 31 31

Link to workflow run