Bump the ci-deps group with 5 updates

[dependabot[bot]]

Bumps the ci-deps group with 5 updates:

Package	From	To
peter-evans/create-pull-request	5	6
actions/cache	3	4
mathieudutour/github-tag-action	6.1	6.2
softprops/action-gh-release	1	2
microsoft/setup-msbuild	1	2

Updates peter-evans/create-pull-request from 5 to 6

Release notes

Sourced from peter-evans/create-pull-request's releases.

Create Pull Request v6.0.0

Behaviour changes

• The default values for author and committer have changed. See "What's new" below for details. If you are overriding the default values you will not be affected by this change.
• On completion, the action now removes the temporary git remote configuration it adds when using push-to-fork. This should not affect you unless you were using the temporary configuration for some other purpose after the action completes.

What's new

• Updated runtime to Node.js 20
  • The action now requires a minimum version of v2.308.0 for the Actions runner. Update self-hosted runners to v2.308.0 or later to ensure compatibility.
• The default value for author has been changed to ${{ github.actor }} <${{ github.actor_id }}+${{ github.actor }}@users.noreply.github.com>. The change adds the ${{ github.actor_id }}+ prefix to the email address to align with GitHub's standard format for the author email address.
• The default value for committer has been changed to github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>. This is to align with the default GitHub Actions bot user account.
• Adds input git-token, the Personal Access Token (PAT) that the action will use for git operations. This input defaults to the value of token. Use this input if you would like the action to use a different token for git operations than the one used for the GitHub API.
• push-to-fork now supports pushing to sibling repositories in the same network.
• Previously, when using push-to-fork, the action did not remove temporary git remote configuration it adds during execution. This has been fixed and the configuration is now removed when the action completes.
• If the pull request body is truncated due to exceeding the maximum length, the action will now suffix the body with the message "...[Pull request body truncated]" to indicate that the body has been truncated.
• The action now uses --unshallow only when necessary, rather than as a default argument of git fetch. This should improve performance, particularly for large git repositories with extensive commit history.
• The action can now be executed on one GitHub server and create pull requests on a different GitHub server. Server products include GitHub hosted (github.com), GitHub Enterprise Server (GHES), and GitHub Enterprise Cloud (GHEC). For example, the action can be executed on GitHub hosted and create pull requests on a GHES or GHEC instance.

What's Changed

• Update distribution by @​actions-bot in peter-evans/create-pull-request#2086
• fix crazy-max/ghaction-import-gp parameters by @​fharper in peter-evans/create-pull-request#2177
• Update distribution by @​actions-bot in peter-evans/create-pull-request#2364
• Use checkout v4 by @​okuramasafumi in peter-evans/create-pull-request#2521
• Note about delete-branch by @​dezren39 in peter-evans/create-pull-request#2631
• 98 dependency updates by @​dependabot

New Contributors

• @​fharper made their first contribution in peter-evans/create-pull-request#2177
• @​okuramasafumi made their first contribution in peter-evans/create-pull-request#2521
• @​dezren39 made their first contribution in peter-evans/create-pull-request#2631

Full Changelog: https://github.com/peter-evans/create-pull-request/compare/v5.0.2...v6.0.0

Create Pull Request v5.0.2

⚙️ Fixes an issue that occurs when using push-to-fork and both base and head repositories are in the same org/user account.

What's Changed

• fix: specify head repo by @​peter-evans in peter-evans/create-pull-request#2044
• 20 dependency updates by @​dependabot

Full Changelog: https://github.com/peter-evans/create-pull-request/compare/v5.0.1...v5.0.2

Create Pull Request v5.0.1

What's Changed

• fix: truncate body if exceeds max length by @​peter-evans in peter-evans/create-pull-request#1915
• 12 dependency updates by @​dependabot

Full Changelog: https://github.com/peter-evans/create-pull-request/compare/v5.0.0...v5.0.1

Commits

• a4f52f8 fix: list pulls using the correct head format (#2792)
• 853c071 build(deps-dev): bump eslint from 8.56.0 to 8.57.0 (#2781)
• d2c126e build(deps-dev): bump @​types/node from 18.19.17 to 18.19.18 (#2780)
• 43d39c6 build(deps-dev): bump @​types/node from 18.19.15 to 18.19.17 (#2768)
• 5a9d206 build(deps-dev): bump eslint-plugin-jest from 27.6.3 to 27.9.0 (#2769)
• e0743ed build(deps-dev): bump @​types/node from 18.19.14 to 18.19.15 (#2759)
• e1529cb build(deps): bump peter-evans/create-pull-request from 5 to 6 (#2747)
• aad52e8 build(deps): bump peter-evans/slash-command-dispatch from 3 to 4 (#2748)
• a64ebdd build(deps-dev): bump @​types/node from 18.19.10 to 18.19.14 (#2732)
• 51b40af build(deps-dev): bump prettier from 3.2.4 to 3.2.5 (#2731)
• Additional commits viewable in compare view

Updates actions/cache from 3 to 4

Release notes

Sourced from actions/cache's releases.

v4.0.0

What's Changed

• Update action to node20 by @​takost in actions/cache#1284
• feat: save-always flag by @​to-s in actions/cache#1242

New Contributors

• @​takost made their first contribution in actions/cache#1284
• @​to-s made their first contribution in actions/cache#1242

Full Changelog: https://github.com/actions/cache/compare/v3...v4.0.0

v3.3.3

What's Changed

• Cache v3.3.3 by @​robherley in actions/cache#1302

New Contributors

• @​robherley made their first contribution in actions/cache#1302

Full Changelog: https://github.com/actions/cache/compare/v3...v3.3.3

v3.3.2

What's Changed

• Fixed readme with new segment timeout values by @​kotewar in actions/cache#1133
• Readme fixes by @​kotewar in actions/cache#1134
• Updated description of the lookup-only input for main action by @​kotewar in actions/cache#1130
• Change two new actions mention as quoted text by @​bishal-pdMSFT in actions/cache#1131
• Update Cross-OS Caching tips by @​pdotl in actions/cache#1122
• Bazel example (Take #2️⃣) by @​vorburger in actions/cache#1132
• Remove actions to add new PRs and issues to a project board by @​jorendorff in actions/cache#1187
• Consume latest toolkit and fix dangling promise bug by @​chkimes in actions/cache#1217
• Bump action version to 3.3.2 by @​bethanyj28 in actions/cache#1236

New Contributors

• @​vorburger made their first contribution in actions/cache#1132
• @​jorendorff made their first contribution in actions/cache#1187
• @​chkimes made their first contribution in actions/cache#1217
• @​bethanyj28 made their first contribution in actions/cache#1236

Full Changelog: https://github.com/actions/cache/compare/v3...v3.3.2

v3.3.1

What's Changed

• Reduced download segment size to 128 MB and timeout to 10 minutes by @​kotewar in actions/cache#1129

Full Changelog: https://github.com/actions/cache/compare/v3...v3.3.1

v3.3.0

What's Changed

• Bug: Permission is missing in cache delete example by @​kotokaze in actions/cache#1123

... (truncated)

Changelog

Sourced from actions/cache's changelog.

Releases

4.0.1

• Updated isGhes check

4.0.0

• Updated minimum runner version support from node 12 -> node 20

3.3.3

• Updates @​actions/cache to v3.2.3 to fix accidental mutated path arguments to getCacheVersion actions/toolkit#1378
• Additional audit fixes of npm package(s)

3.3.2

• Fixes bug with Azure SDK causing blob downloads to get stuck.

3.3.1

• Reduced segment size to 128MB and segment timeout to 10 minutes to fail fast in case the cache download is stuck.

3.3.0

• Added option to lookup cache without downloading it.

3.2.6

• Fix zstd not being used after zstd version upgrade to 1.5.4 on hosted runners.

3.2.5

• Added fix to prevent from setting MYSYS environment variable globally.

3.2.4

• Added option to fail job on cache miss.

3.2.3

• Support cross os caching on Windows as an opt-in feature.
• Fix issue with symlink restoration on Windows for cross-os caches.

3.2.2

• Reverted the changes made in 3.2.1 to use gnu tar and zstd by default on windows.

3.2.1

... (truncated)

Commits

• ab5e6d0 Merge pull request #1341 from bethanyj28/main
• 89c7d86 licensed cache
• d2c84da update @​actions/cache
• 37e7d4e Merge pull request #1340 from actions/bethanyj28/update-publish-flow
• a18323f add release action
• a2ed59d Merge pull request #1305 from actions/yacaovsnc/update_examples
• dc88ab5 Update examples
• 1d78355 Merge pull request #1304 from actions/yacaovsnc/update_readme
• c36458f Update README.md
• 13aacd8 Merge pull request #1242 from to-s/main
• Additional commits viewable in compare view

Updates mathieudutour/github-tag-action from 6.1 to 6.2

Commits

• a22cf08 check in prod dependencies
• f36074f version 6.2
• f40d7ee match latest tag regex (#171)
• 1bf7977 fix: add previous_version to action.yml (#183)
• 5a16d14 Bump tough-cookie from 4.0.0 to 4.1.3 (#184)
• 71c3689 Update README.md (#205)
• a079ba4 Update Node version to 20 (#202)
• 86301c8 Revert "Use ${{github.token}} as default" (#167)
• 5bd9038 Bump minimatch from 3.0.4 to 3.1.2 (#162)
• ac8cb38 getValidTags() should exclude tags that do not match the prefixRegex (#158)
• Additional commits viewable in compare view

Updates softprops/action-gh-release from 1 to 2

Release notes

Sourced from softprops/action-gh-release's releases.

v2.0.0

• update actions.yml declaration to node20 to address warnings

Changelog

Sourced from softprops/action-gh-release's changelog.

0.1.12

• fix bug leading to empty strings subsituted for inputs users don't provide breaking api calls #144

Commits

• 3198ee1 prep release
• 7ee8e06 declare an update docs for make_latest input (#419)
• d99959e prep release
• 0e39c67 make pattern error opt in (#417)
• 20e085c kick off 2.0.1 release
• 9f5c4d3 update changelog
• 0bea76b Add support for make_latest property (#304)
• 762fe13 typo in changelog
• c0f2569 remove unused script
• 5743e06 update changelog
• Additional commits viewable in compare view

Updates microsoft/setup-msbuild from 1 to 2

Release notes

Sourced from microsoft/setup-msbuild's releases.

v2

This is a major version bump with no functionality changes. The major version change is due to moving to node20 for the node version per the deprecation announcement for GitHub Actions (https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/). This change from node16 to node20 could cause breaking changes to other workflow actions steps (see #125) running and needing/leveraging expected functionality in node16 and thus as a safe boundary, changing the version here.

Full Changelog: https://github.com/microsoft/setup-msbuild/compare/v1.3...v2

v1.3.3

This is a patch update that reverts the node16->node20 change which introduced unintended breaking changes for users of this action. The v1, v1.3 tags have been updated to this release as well.

Full Changelog: https://github.com/microsoft/setup-msbuild/compare/v1.3.2...v1.3.3

v1.3.2

What's Changed

• Update test.yml by @​mosfet80 in microsoft/setup-msbuild#122
• Update to node20 by @​kawon7317 in microsoft/setup-msbuild#124

New Contributors

• @​mosfet80 made their first contribution in microsoft/setup-msbuild#122
• @​kawon7317 made their first contribution in microsoft/setup-msbuild#124

Full Changelog: https://github.com/microsoft/setup-msbuild/compare/v1.3.1...v1.3.2

v1.3.1

What's Changed

• Implement #109 adding action types file by @​Vampire in microsoft/setup-msbuild#110

New Contributors

• @​Vampire made their first contribution in microsoft/setup-msbuild#110

Full Changelog: https://github.com/microsoft/setup-msbuild/compare/v1.2...v1.3.1

v1.1.3 - Updating toolkit for output variables

Updates the GitHub Actions @actions/core toolkit to latest version to accommodate deprecated set-output calls.

v1.1.2 - Update to node16

This updates to using node16 per deprecation notice for GitHub Actions

v1.1.1

Adding msbuild-architecture to select specific architecture for host agents when running with Visual Studio 2022 (VS 17.0)

v1.0.3

This release adds the ability for another input to look for pre-release versions of Visual Studio by specifying vs-prerelease: true as an input.

v1.0.2 Release

Updates Actions core toolkit to fix vulnerability on environment/path variable setting.

v1.0.1 Release

Fixes some input parameters and resolving dependency updates.

Thanks @​heaths for the contribution of fixes!

Commits

• 6fb0222 Address issue #125 releasing the node20 action as major version change
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

[dependabot[bot]]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

[dependabot[bot]]

Superseded by #133.