Open dependabot[bot] opened 7 months ago
I pushed a follow-on cleanup commit to this branch which ensures we're on the latest version of all the GHA we're using and adds a comment after the digest so we can more easily tell which version we're using. Dependabot will update the comments for us as it suggests bumps in future.
Dependabot will update the comments for us as it suggests bumps in future.
Wasn't obvious why at all to me until I searched for it. Thanks for the PR!
Great question @trishankatdatadog ! I believe dependabot resolved main
(though two new commits have been made since then) whereas I am pinning to a release.
A newer version of actions/checkout exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged.
Great question @trishankatdatadog ! I believe dependabot resolved
main
(though two new commits have been made since then) whereas I am pinning to a release.
Yeap, looks like it. Out of curiosity, did you resolve the hashes/versions manually or did you use tooling?
I was playing around with frizbee a bit, so I got the hashes automatically but verified them by eye.
I was playing around with frizbee a bit, so I got the hashes automatically but verified them by eye.
Useful tip, thanks!
Bumps actions/checkout from 3df4ab11eba7bda6032a0b82a6bb43b11571feac to aadec899646c8e0f34c52d9219c2faac36626b55.
Changelog
Sourced from actions/checkout's changelog.
... (truncated)
Commits
aadec89
Explicitly disable sparse checkout unless asked for (#1598)df0bcdd
Refine workflow for generatingtest-ubuntu-git
(#1617)473055b
Createtest-ubuntu-git
Docker Container for Proxy Tests (#1616)b4ffde6
Link to release page from what's new section (#1514)8530928
Correct link to GitHub Docs (#1511)7cdaf2f
Update CODEOWNERS to Launch team (#1510)8ade135
Prepare 4.1.0 release (#1496)c533a0a
Add support for partial checkout filters (#1396)72f2cec
Update README.md for V4 (#1452)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show