build(deps): bump the github-actions-all group across 1 directory with 7 updates

[dependabot]

Bumps the github-actions-all group with 7 updates in the / directory:

Package	From	To
actions/checkout	4.2.2	5.0.0
actions/setup-go	5.5.0	6.0.0
schubergphilis/mcvs-docker-action	0.7.2	0.8.1
docker/login-action	3.4.0	3.5.0
schubergphilis/mcvs-golang-action	3.3.1	3.7.5
schubergphilis/mcvs-pr-validation-action	0.2.0	0.2.1
svenstaro/upload-release-action	2.10.0	2.11.2

Updates actions/checkout from 4.2.2 to 5.0.0

Release notes

Sourced from actions/checkout's releases.

v5.0.0

What's Changed

• Update actions checkout to use node 24 by @​salmanmkc in actions/checkout#2226
• Prepare v5.0.0 release by @​salmanmkc in actions/checkout#2238

⚠️ Minimum Compatible Runner Version

v2.327.1
Release Notes

Make sure your runner is updated to this version or newer to use this release.

Full Changelog: actions/checkout@v4...v5.0.0

v4.3.0

What's Changed

• docs: update README.md by @​motss in actions/checkout#1971
• Add internal repos for checking out multiple repositories by @​mouismail in actions/checkout#1977
• Documentation update - add recommended permissions to Readme by @​benwells in actions/checkout#2043
• Adjust positioning of user email note and permissions heading by @​joshmgross in actions/checkout#2044
• Update README.md by @​nebuk89 in actions/checkout#2194
• Update CODEOWNERS for actions by @​TingluoHuang in actions/checkout#2224
• Update package dependencies by @​salmanmkc in actions/checkout#2236
• Prepare release v4.3.0 by @​salmanmkc in actions/checkout#2237

New Contributors

• @​motss made their first contribution in actions/checkout#1971
• @​mouismail made their first contribution in actions/checkout#1977
• @​benwells made their first contribution in actions/checkout#2043
• @​nebuk89 made their first contribution in actions/checkout#2194
• @​salmanmkc made their first contribution in actions/checkout#2236

Full Changelog: actions/checkout@v4...v4.3.0

Changelog

Sourced from actions/checkout's changelog.

V5.0.0

• Update actions checkout to use node 24 by @​salmanmkc in actions/checkout#2226

V4.3.0

• docs: update README.md by @​motss in actions/checkout#1971
• Add internal repos for checking out multiple repositories by @​mouismail in actions/checkout#1977
• Documentation update - add recommended permissions to Readme by @​benwells in actions/checkout#2043
• Adjust positioning of user email note and permissions heading by @​joshmgross in actions/checkout#2044
• Update README.md by @​nebuk89 in actions/checkout#2194
• Update CODEOWNERS for actions by @​TingluoHuang in actions/checkout#2224
• Update package dependencies by @​salmanmkc in actions/checkout#2236

Commits

• 08c6903 Prepare v5.0.0 release (#2238)
• 9f26565 Update actions checkout to use node 24 (#2226)
• 08eba0b Prepare release v4.3.0 (#2237)
• 631c7dc Update package dependencies (#2236)
• 8edcb1b Update CODEOWNERS for actions (#2224)
• 09d2aca Update README.md (#2194)
• 85e6279 Adjust positioning of user email note and permissions heading (#2044)
• 009b9ae Documentation update - add recommended permissions to Readme (#2043)
• cbb7224 Update README.md (#1977)
• 3b9b8c8 docs: update README.md (#1971)
• See full diff in compare view

Updates actions/setup-go from 5.5.0 to 6.0.0

Release notes

Sourced from actions/setup-go's releases.

v6.0.0

What's Changed

Breaking Changes

• Improve toolchain handling to ensure more reliable and consistent toolchain selection and management by @​matthewhughes934 in actions/setup-go#460
• Upgrade Nodejs runtime from node20 to node 24 by @​salmanmkc in actions/setup-go#624

Make sure your runner is on version v2.327.1 or later to ensure compatibility with this release. See Release Notes

Dependency Upgrades

• Upgrade @​types/jest from 29.5.12 to 29.5.14 by @​dependabot[bot] in actions/setup-go#589
• Upgrade @​actions/tool-cache from 2.0.1 to 2.0.2 by @​dependabot[bot] in actions/setup-go#591
• Upgrade @​typescript-eslint/parser from 8.31.1 to 8.35.1 by @​dependabot[bot] in actions/setup-go#590
• Upgrade undici from 5.28.5 to 5.29.0 by @​dependabot[bot] in actions/setup-go#594
• Upgrade typescript from 5.4.2 to 5.8.3 by @​dependabot[bot] in actions/setup-go#538
• Upgrade eslint-plugin-jest from 28.11.0 to 29.0.1 by @​dependabot[bot] in actions/setup-go#603
• Upgrade form-data to bring in fix for critical vulnerability by @​matthewhughes934 in actions/setup-go#618
• Upgrade actions/checkout from 4 to 5 by @​dependabot[bot] in actions/setup-go#631

New Contributors

• @​matthewhughes934 made their first contribution in actions/setup-go#618
• @​salmanmkc made their first contribution in actions/setup-go#624

Full Changelog: actions/setup-go@v5...v6.0.0

Commits

• 4469467 Bump actions/checkout from 4 to 5 (#631)
• e093d1e Node 24 upgrade (#624)
• 1d76b95 Improve toolchain handling (#460)
• e75c3e8 Bump form-data to bring in fix for critical vulnerability (#618)
• 8e57b58 Bump eslint-plugin-jest from 28.11.0 to 29.0.1 (#603)
• 7c0b336 Bump typescript from 5.4.2 to 5.8.3 (#538)
• 6f26dcc Bump undici from 5.28.5 to 5.29.0 (#594)
• 8d4083a Bump @​typescript-eslint/parser from 5.62.0 to 8.32.0 (#590)
• fa96338 Bump @​actions/tool-cache from 2.0.1 to 2.0.2 (#591)
• 4de67c0 Bump @​types/jest from 29.5.12 to 29.5.14 (#589)
• See full diff in compare view

Updates schubergphilis/mcvs-docker-action from 0.7.2 to 0.8.1

Release notes

Sourced from schubergphilis/mcvs-docker-action's releases.

v0.8.1

What's Changed

• build(deps): bump the github-actions-all group across 1 directory with 4 updates by @​dependabot[bot] in schubergphilis/mcvs-docker-action#134

Full Changelog: schubergphilis/mcvs-docker-action@v0.8.0...v0.8.1

v0.8.0

What's Changed

• feat: make push to a container registry optional by @​sbp-bvanb in schubergphilis/mcvs-docker-action#131

Full Changelog: schubergphilis/mcvs-docker-action@v0.7.4...v0.8.0

v0.7.4

What's Changed

• build(deps): bump the github-actions-all group with 2 updates by @​dependabot[bot] in schubergphilis/mcvs-docker-action#129
• fix: move yamllint to general action by @​sbp-bvanb in schubergphilis/mcvs-docker-action#130

Full Changelog: schubergphilis/mcvs-docker-action@v0.7.3...v0.7.4

v0.7.3

What's Changed

• build(deps): bump schubergphilis/mcvs-pr-validation-action from 0.2.0 to 0.2.1 in the github-actions-all group by @​dependabot in schubergphilis/mcvs-docker-action#126
• fix: #123 build args passed as-is if multiline, else formatted as application=value by @​030 in schubergphilis/mcvs-docker-action#127

Full Changelog: schubergphilis/mcvs-docker-action@v0.7.2...v0.7.3

Commits

• 39fc415 build(deps): bump the github-actions-all group across 1 directory with 4 upda...
• 64044b0 feat: make push to a container registry optional (#131)
• e9660d1 fix: move yamllint to general action (#130)
• 1d79f8f build(deps): bump the github-actions-all group with 2 updates (#129)
• 03aba0a fix: #123 build args passed as-is if multiline, else formatted as applicati...
• b0ad628 build(deps): bump schubergphilis/mcvs-pr-validation-action (#126)
• See full diff in compare view

Updates docker/login-action from 3.4.0 to 3.5.0

Release notes

Sourced from docker/login-action's releases.

v3.5.0

• Support dual-stack endpoints for AWS ECR by @​Spacefish @​crazy-max in docker/login-action#874 docker/login-action#876
• Bump @​aws-sdk/client-ecr to 3.859.0 in docker/login-action#860 docker/login-action#878
• Bump @​aws-sdk/client-ecr-public to 3.859.0 in docker/login-action#860 docker/login-action#878
• Bump @​docker/actions-toolkit from 0.57.0 to 0.62.1 in docker/login-action#870
• Bump form-data from 2.5.1 to 2.5.5 in docker/login-action#875

Full Changelog: docker/login-action@v3.4.0...v3.5.0

Commits

• 184bdaa Merge pull request #878 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...
• 5c6bc94 chore: update generated content
• caf4058 build(deps): bump the aws-sdk-dependencies group with 2 updates
• ef38ec3 Merge pull request #860 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...
• d52e8ef chore: update generated content
• 9644ab7 build(deps): bump the aws-sdk-dependencies group with 2 updates
• 7abd1d5 Merge pull request #875 from docker/dependabot/npm_and_yarn/form-data-2.5.5
• 1a81202 Merge pull request #876 from crazy-max/aws-public-dual-stack
• d1ab30d chore: update generated content
• f25ff28 support dual-stack for aws public ecr
• Additional commits viewable in compare view

Updates schubergphilis/mcvs-golang-action from 3.3.1 to 3.7.5

Release notes

Sourced from schubergphilis/mcvs-golang-action's releases.

v3.7.5

What's Changed

• chore(deps): bump gqlgen to v0.17.78 by @​markvl-sbp in schubergphilis/mcvs-golang-action#317

Full Changelog: schubergphilis/mcvs-golang-action@v3.7.4...v3.7.5

v3.7.4

What's Changed

• build(deps): bump Task from 3.44.0 to 3.44.1 by @​markvl-sbp in schubergphilis/mcvs-golang-action#310
• fix: allow users to run only opa in a pipeline by @​sbp-bvanb in schubergphilis/mcvs-golang-action#316

Full Changelog: schubergphilis/mcvs-golang-action@v3.7.3...v3.7.4

v3.7.3

What's Changed

• fix: bump mockery to 3.5.3 which is go1.25 compatible by @​sbp-bvanb in schubergphilis/mcvs-golang-action#309

Full Changelog: schubergphilis/mcvs-golang-action@v3.7.2...v3.7.3

v3.7.2

What's Changed

• build(deps): bump anchore/scan-action from 6.4.0 to 6.5.0 in the github-actions-all group by @​dependabot[bot] in schubergphilis/mcvs-golang-action#302
• build(deps): bump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-all group by @​dependabot[bot] in schubergphilis/mcvs-golang-action#304
• build(deps): bump golang version from 1.24.4 to 1.25.0 by @​github-actions[bot] in schubergphilis/mcvs-golang-action#306
• fix: graphql-linter 0.1.0 and golangci-lint 2.4.0 that is 1.25 golang compatible by @​sbp-bvanb in schubergphilis/mcvs-golang-action#305

New Contributors

• @​github-actions[bot] made their first contribution in schubergphilis/mcvs-golang-action#306

Full Changelog: schubergphilis/mcvs-golang-action@v3.7.1...v3.7.2

v3.7.1

What's Changed

• fix: install certain opa if mismatch and lookup code coverage by @​sbp-bvanb in schubergphilis/mcvs-golang-action#303

Full Changelog: schubergphilis/mcvs-golang-action@v3.7.0...v3.7.1

v3.7.0

What's Changed

• feat: add task to run gqlgen by @​markvl-sbp in schubergphilis/mcvs-golang-action#297

Full Changelog: schubergphilis/mcvs-golang-action@v3.6.0...v3.7.0

v3.6.0

What's Changed

... (truncated)

Commits

• 0fbf176 chore(deps): bump gqlgen to v0.17.78 (#317)
• 5faf70f fix: allow users to run only opa in a pipeline (#316)
• 11cb87a build(deps): bump Task from 3.44.0 to 3.44.1 (#310)
• 7aac33f fix: bump mockery to 3.5.3 which is go1.25 compatible (#309)
• 7569674 fix: graphql-linter 0.1.0 (#305)
• 6fbc432 build(deps): bump golang version from 1.24.4 to 1.25.0 (#306)
• 6951df1 build(deps): bump actions/checkout in the github-actions-all group (#304)
• 6b157b9 build(deps): bump anchore/scan-action in the github-actions-all group (#302)
• fc9375e fix: install certain opa if mismatch and lookup code coverage (#303)
• 3075a03 feat: add task to run gqlgen (#297)
• Additional commits viewable in compare view

Updates schubergphilis/mcvs-pr-validation-action from 0.2.0 to 0.2.1

Release notes

Sourced from schubergphilis/mcvs-pr-validation-action's releases.

v0.2.1

What's Changed

• fix: #10 remove untested and broken issue description check by @​sbp-bvanb in schubergphilis/mcvs-pr-validation-action#16
• build(deps): bump actions/checkout from 4.1.7 to 4.2.2 by @​dependabot in schubergphilis/mcvs-pr-validation-action#15

Full Changelog: schubergphilis/mcvs-pr-validation-action@v0.2.0...v0.2.1

Commits

• 1258718 build(deps): bump actions/checkout from 4.1.7 to 4.2.2 (#15)
• 3907065 fix: #10 remove untested and broken issue description check (#16)
• See full diff in compare view

Updates svenstaro/upload-release-action from 2.10.0 to 2.11.2

Release notes

Sourced from svenstaro/upload-release-action's releases.

2.11.2

Solved race-condition when matrix builds try to create the same release at the same time - #147

2.11.1

Fixed input and output names for release_id

2.11.0

• Adds a release_id output, and optional input, for uploading files to release - #136 (thanks @​alexis-opolka)

Changelog

Sourced from svenstaro/upload-release-action's changelog.

[2.11.2] - 2025-07-06

• Solved race-condition when matrix builds try to create the same release at the same time - #147

[2.11.1] - 2025-06-30

• Adds a release_id output, and optional input, for uploading files to release - #136 (thanks @​alexis-opolka)

Commits

• 81c65b7 2.11.2
• b89a939 Solve the race-condition when matrix builds try to create the same release (#...
• 5e35e58 2.11.1
• fc6aa16 Separate E2E tests into draft + non-draft - each one has its own cleanup (#146)
• 02f15da 2.11.0
• 0b45752 Added docs for draft, input validation, and outputs (#145)
• 7edb9f0 E2E draft tests (#144)
• dfdf376 Feat: Allow upload to draft release using a matrix (#136)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.