Skip to content

Bump the actions group across 1 directory with 9 updates#22708

Closed
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/github_actions/actions-c8a32d65d6
Closed

Bump the actions group across 1 directory with 9 updates#22708
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/github_actions/actions-c8a32d65d6

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Feb 23, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps the actions group with 9 updates in the / directory:

Package From To
taiki-e/install-action 2.67.15 2.68.8
actions/cache 5.0.2 5.0.3
github/codeql-action b126facd4e5d140dbdf5202489ec4a70ff75ce5c 710e2945787622b429f8982cacb154faa182de18
DataDog/datadog-static-analyzer-github-action 2.0.0 3.0.0
actions/dependency-review-action 4.8.2 4.8.3
tj-actions/changed-files 47.0.1 47.0.4
docker/login-action 3.6.0 3.7.0
docker/build-push-action 6.18.0 6.19.2
suzuki-shunsuke/pinact-action 1.3.1 1.4.0

Updates taiki-e/install-action from 2.67.15 to 2.68.8

Release notes

Sourced from taiki-e/install-action's releases.

2.68.8

  • Update cargo-nextest@latest to 0.9.129.

  • Update mise@latest to 2026.2.19.

  • Update tombi@latest to 0.7.32.

2.68.7

  • Update mise@latest to 2026.2.18.

  • Update wasm-bindgen@latest to 0.2.111.

2.68.6

  • Update wasm-bindgen@latest to 0.2.110.

2.68.5

  • Update wasm-bindgen@latest to 0.2.109.

2.68.4

  • Update cargo-nextest@latest to 0.9.128.

2.68.3

  • Update mise@latest to 2026.2.17.

  • Update cargo-tarpaulin@latest to 0.35.2.

  • Update syft@latest to 1.42.1.

2.68.2

  • Update uv@latest to 0.10.4.

  • Update tombi@latest to 0.7.31.

  • Update rclone@latest to 1.73.1.

2.68.1

  • Update mise@latest to 2026.2.15.

  • Update tombi@latest to 0.7.30.

  • Update knope@latest to 0.22.3.

2.68.0

  • Support gungraun-runner. (#1520, thanks @​gamma0987)

  • Update uv@latest to 0.10.3.

  • Update typos@latest to 1.43.5.

  • Update tombi@latest to 0.7.29.

... (truncated)

Changelog

Sourced from taiki-e/install-action's changelog.

Changelog

All notable changes to this project will be documented in this file.

This project adheres to Semantic Versioning.

[Unreleased]

[2.68.8] - 2026-02-23

  • Update cargo-nextest@latest to 0.9.129.

  • Update mise@latest to 2026.2.19.

  • Update tombi@latest to 0.7.32.

[2.68.7] - 2026-02-22

  • Update mise@latest to 2026.2.18.

  • Update wasm-bindgen@latest to 0.2.111.

[2.68.6] - 2026-02-21

  • Update wasm-bindgen@latest to 0.2.110.

[2.68.5] - 2026-02-20

  • Update wasm-bindgen@latest to 0.2.109.

[2.68.4] - 2026-02-20

  • Update cargo-nextest@latest to 0.9.128.

[2.68.3] - 2026-02-19

  • Update mise@latest to 2026.2.17.

  • Update cargo-tarpaulin@latest to 0.35.2.

  • Update syft@latest to 1.42.1.

[2.68.2] - 2026-02-18

  • Update uv@latest to 0.10.4.

... (truncated)

Commits

Updates actions/cache from 5.0.2 to 5.0.3

Release notes

Sourced from actions/cache's releases.

v5.0.3

What's Changed

Full Changelog: actions/cache@v5...v5.0.3

Changelog

Sourced from actions/cache's changelog.

Releases

How to prepare a release

[!NOTE]
Relevant for maintainers with write access only.

  1. Switch to a new branch from main.
  2. Run npm test to ensure all tests are passing.
  3. Update the version in https://github.com/actions/cache/blob/main/package.json.
  4. Run npm run build to update the compiled files.
  5. Update this https://github.com/actions/cache/blob/main/RELEASES.md with the new version and changes in the ## Changelog section.
  6. Run licensed cache to update the license report.
  7. Run licensed status and resolve any warnings by updating the https://github.com/actions/cache/blob/main/.licensed.yml file with the exceptions.
  8. Commit your changes and push your branch upstream.
  9. Open a pull request against main and get it reviewed and merged.
  10. Draft a new release https://github.com/actions/cache/releases use the same version number used in package.json
    1. Create a new tag with the version number.
    2. Auto generate release notes and update them to match the changes you made in RELEASES.md.
    3. Toggle the set as the latest release option.
    4. Publish the release.
  11. Navigate to https://github.com/actions/cache/actions/workflows/release-new-action-version.yml
    1. There should be a workflow run queued with the same version number.
    2. Approve the run to publish the new version and update the major tags for this action.

Changelog

5.0.3

5.0.2

  • Bump @actions/cache to v5.0.3 #1692

5.0.1

  • Update @azure/storage-blob to ^12.29.1 via @actions/cache@5.0.1 #1685

5.0.0

[!IMPORTANT] actions/cache@v5 runs on the Node.js 24 runtime and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.

4.3.0

  • Bump @actions/cache to v4.1.0

... (truncated)

Commits
  • cdf6c1f Merge pull request #1695 from actions/Link-/prepare-5.0.3
  • a1bee22 Add review for the @​actions/http-client license
  • 4695763 Add licensed output
  • dc73bb9 Upgrade dependencies and address security warnings
  • 345d5c2 Add 5.0.3 builds
  • See full diff in compare view

Updates github/codeql-action from b126facd4e5d140dbdf5202489ec4a70ff75ce5c to 710e2945787622b429f8982cacb154faa182de18

Changelog

Sourced from github/codeql-action's changelog.

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

[UNRELEASED]

No user facing changes.

4.32.4 - 20 Feb 2026

  • Update default CodeQL bundle version to 2.24.2. #3493
  • Added an experimental change which improves how certificates are generated for the authentication proxy that is used by the CodeQL Action in Default Setup when private package registries are configured. This is expected to generate more widely compatible certificates and should have no impact on analyses which are working correctly already. We expect to roll this change out to everyone in February. #3473
  • When the CodeQL Action is run with debugging enabled in Default Setup and private package registries are configured, the "Setup proxy for registries" step will output additional diagnostic information that can be used for troubleshooting. #3486
  • Added a setting which allows the CodeQL Action to enable network debugging for Java programs. This will help GitHub staff support customers with troubleshooting issues in GitHub-managed CodeQL workflows, such as Default Setup. This setting can only be enabled by GitHub staff. #3485
  • Added a setting which enables GitHub-managed workflows, such as Default Setup, to use a nightly CodeQL CLI release instead of the latest, stable release that is used by default. This will help GitHub staff support customers whose analyses for a given repository or organization require early access to a change in an upcoming CodeQL CLI release. This setting can only be enabled by GitHub staff. #3484

4.32.3 - 13 Feb 2026

  • Added experimental support for testing connections to private package registries. This feature is not currently enabled for any analysis. In the future, it may be enabled by default for Default Setup. #3466

4.32.2 - 05 Feb 2026

  • Update default CodeQL bundle version to 2.24.1. #3460

4.32.1 - 02 Feb 2026

  • A warning is now shown in Default Setup workflow logs if a private package registry is configured using a GitHub Personal Access Token (PAT), but no username is configured. #3422
  • Fixed a bug which caused the CodeQL Action to fail when repository properties cannot successfully be retrieved. #3421

4.32.0 - 26 Jan 2026

  • Update default CodeQL bundle version to 2.24.0. #3425

4.31.11 - 23 Jan 2026

  • When running a Default Setup workflow with Actions debugging enabled, the CodeQL Action will now use more unique names when uploading logs from the Dependabot authentication proxy as workflow artifacts. This ensures that the artifact names do not clash between multiple jobs in a build matrix. #3409
  • Improved error handling throughout the CodeQL Action. #3415
  • Added experimental support for automatically excluding generated files from the analysis. This feature is not currently enabled for any analysis. In the future, it may be enabled by default for some GitHub-managed analyses. #3318
  • The changelog extracts that are included with releases of the CodeQL Action are now shorter to avoid duplicated information from appearing in Dependabot PRs. #3403

4.31.10 - 12 Jan 2026

  • Update default CodeQL bundle version to 2.23.9. #3393

4.31.9 - 16 Dec 2025

No user facing changes.

4.31.8 - 11 Dec 2025

... (truncated)

Commits
  • 710e294 Merge pull request #3489 from github/dependabot/npm_and_yarn/npm-minor-37a5b5...
  • 559d85d Merge pull request #3477 from github/mbg/features/offline-features
  • 8e01055 Merge pull request #3495 from github/mergeback/v4.32.4-to-main-89a39a4e
  • 37d6d1c Rebuild
  • 68b53dc Update changelog and version after v4.32.4
  • 89a39a4 Merge pull request #3494 from github/update-v4.32.4-39ba80c47
  • e5d84c8 Apply remaining review suggestions
  • 0c20209 Apply suggestions from code review
  • 314172e Fix typo
  • cdda72d Add changelog entries
  • Additional commits viewable in compare view

Updates DataDog/datadog-static-analyzer-github-action from 2.0.0 to 3.0.0

Release notes

Sourced from DataDog/datadog-static-analyzer-github-action's releases.

v3.0.0

This is a major release that converts the action from a container action to a composite action.

In practice, this will reduce the time the action takes to initialize from over 1 minute to under 10 seconds.

Upgrading from v2

TL;DR unless you are self-hosting runners, upgrading from v2 will work without issue.

GitHub-hosted Runners

If you're using Github's runners, you can upgrade without issue.

Side Effects

Note that with the move away from containerization, there are some net-new side effects to using the action that persist to following steps. These are not expected to cause behavior regressions but are listed below for transparency:

  • $HOME/.local/bin/ will be created and added to $GITHUB_PATH
    • The datadog-static-analyzer binary will be written here
    • The datadog-ci binary might be written here
  • git config --global --add safe.directory "$GITHUB_WORKSPACE" will be run
  • git config --unset extensions.worktreeConfig might be run
  • A temporary dir (mktemp -d) containing datadog-ci (semver ^4) might be written to $GITHUB_PATH

Self-hosted Runners

If you are using self-hosted runners you might need additional configuration, depending on your setup (firewalls, etc).

Net-new network calls

  • npm view @datadog/datadog-ci is used
  • GET https://github.com/DataDog/datadog-static-analyzer/releases/latest/download/*
  • GET https://github.com/DataDog/datadog-ci/releases/download/*/*

Net-new required binaries in $PATH

  • bash
  • git
  • curl (additionally, CA certificates)
  • node
  • npm
  • unzip

The same "Side Effects" from the section above apply.

Commits

Updates actions/dependency-review-action from 4.8.2 to 4.8.3

Release notes

Sourced from actions/dependency-review-action's releases.

4.8.3

Dependency Review Action v4.8.3

This is a bugfix release that updates a number of upstream dependencies and includes a fix for the earlier feature that detected oversized summaries and upload them as artifacts, which could occasionally crash the action.

We have also updated the release process to use a long-lived v4 branch for the action, instead of a force-pushed tag, which aligns better with git branching strategies; the change should be transparent to end users.

What's Changed

Full Changelog: https://github.com/actions/dependency-review-action/compare/v4.8.2..v4.8.3

Commits
  • 05fe457 Merge pull request #1054 from actions/ahpook/release-4.8.3
  • 3a8496c Update generated package files for v4.8.3
  • 0f22a01 Update CONTRIBUTING for new release process
  • 58be343 Updating package versions for 4.8.3
  • 9284e0c Merge pull request #931 from actions/dependabot/npm_and_yarn/spdx-licenses-20...
  • 8b76656 Bump spdx-expression-parse in the spdx-licenses group across 1 directory
  • 43f5f02 Merge pull request #1052 from actions/juxtin/fix-long-summaries
  • f0033fc Merge pull request #1053 from actions/dependabot/npm_and_yarn/fast-xml-parser...
  • b379e2e Bump fast-xml-parser from 5.3.5 to 5.3.6
  • 2e1cf54 Properly truncate long summaries and catch errors
  • Additional commits viewable in compare view

Updates tj-actions/changed-files from 47.0.1 to 47.0.4

Release notes

Sourced from tj-actions/changed-files's releases.

v47.0.4

What's Changed

Full Changelog: tj-actions/changed-files@v47.0.3...v47.0.4

v47.0.3

What's Changed

Full Changelog: tj-actions/changed-files@v47.0.2...v47.0.3

v47.0.2

What's Changed

Full Changelog: tj-actions/changed-files@v47.0.1...v47.0.2

Changelog

Sourced from tj-actions/changed-files's changelog.

Changelog

47.0.4 - (2026-02-17)

🔄 Update

  • Release-tagger action to version 6.0.6 (#2801) (7dee1b0) - (Tonye Jack)

47.0.3 - (2026-02-17)

🔄 Update

  • Release-tagger action to version 6.0.0 (#2800) (28b28f6) - (Tonye Jack)

⚙️ Miscellaneous Tasks

  • deps: Bump github/codeql-action from 4.31.10 to 4.32.2 (#2790) (875e6e5) - (dependabot[bot])

47.0.2 - (2026-02-09)

🚀 Features

  • Add support for excluding symlinks and fix bug with commit not found (#2770) (8c4da28) - (Tonye Jack)

🐛 Bug Fixes

🔄 Update

  • Updated README.md (#2771)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@​users.noreply.github.com> (7d5bbf4) - (github-actions[bot])

  • Updated README.md (#2768)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@​users.noreply.github.com> (b3bb1f8) - (github-actions[bot])

  • Update README.md (c6a5847) - (Tonye Jack)

⚙️ Miscellaneous Tasks

  • deps: Bump actions/setup-node from 6.1.0 to 6.2.0 (#2766) (8cba46e) - (dependabot[bot])
  • deps-dev: Bump @​types/node from 25.0.0 to 25.2.2 (#2793) (925972f) - (dependabot[bot])
  • deps: Bump @​stdlib/utils-convert-path from 0.2.2 to 0.2.3 (#2795) (a98754b) - (dependabot[bot])
  • deps: Bump actions/checkout from 6.0.1 to 6.0.2 (#2777) (9c13e73) - (dependabot[bot])
  • deps-dev: Bump @​types/lodash from 4.17.21 to 4.17.23 (#2759) (16d791c) - (dependabot[bot])
  • deps-dev: Bump eslint-plugin-jest from 29.11.0 to 29.12.1 (#2756) (8e056de) - (dependabot[bot])
  • deps: Bump github/codeql-action from 4.31.7 to 4.31.10 (#2761) (078e2bc) - (dependabot[bot])
  • Update matrix-example.yml (#2752) (2f2f6cf) - (Tonye Jack)
  • Update dist (#2769) (8262acc) - (Tonye Jack)
  • deps: Bump @​actions/core from 2.0.0 to 2.0.2 (#2757) (daf9d2d) - (dependabot[bot])

... (truncated)

Commits
  • 7dee1b0 update: release-tagger action to version 6.0.6 (#2801)
  • 28b28f6 update: release-tagger action to version 6.0.0 (#2800)
  • 875e6e5 chore(deps): bump github/codeql-action from 4.31.10 to 4.32.2 (#2790)
  • 8cba46e chore(deps): bump actions/setup-node from 6.1.0 to 6.2.0 (#2766)
  • 925972f chore(deps-dev): bump @​types/node from 25.0.0 to 25.2.2 (#2793)
  • a98754b chore(deps): bump @​stdlib/utils-convert-path from 0.2.2 to 0.2.3 (#2795)
  • 9c13e73 chore(deps): bump actions/checkout from 6.0.1 to 6.0.2 (#2777)
  • caee9d9 fix: Update test.yml (#2781)
  • 16d791c chore(deps-dev): bump @​types/lodash from 4.17.21 to 4.17.23 (#2759)
  • 8e056de chore(deps-dev): bump eslint-plugin-jest from 29.11.0 to 29.12.1 (#2756)
  • Additional commits viewable in compare view

Updates docker/login-action from 3.6.0 to 3.7.0

Release notes

Sourced from docker/login-action's releases.

v3.7.0

Full Changelog: docker/login-action@v3.6.0...v3.7.0

Commits
  • c94ce9f Merge pull request #915 from docker/dependabot/npm_and_yarn/lodash-4.17.23
  • 8339c95 Merge pull request #912 from docker/scope
  • c83e932 build(deps): bump lodash from 4.17.21 to 4.17.23
  • b268aa5 chore: update generated content
  • a603229 documentation for scope input
  • 7567f92 Add scope input to set scopes for the authentication token
  • 0567fa5 Merge pull request #914 from dphi/add-support-for-amazonaws.eu
  • f6ef577 feat: add support for AWS European Sovereign Cloud ECR registries
  • 916386b Merge pull request #911 from crazy-max/ensure-redact
  • 5b3f94a chore: update generated content
  • Additional commits viewable in compare view

Updates docker/build-push-action from 6.18.0 to 6.19.2

Release notes

Sourced from docker/build-push-action's releases.

v6.19.2

Full Changelog: docker/build-push-action@v6.19.1...v6.19.2

v6.19.1

Full Changelog: docker/build-push-action@v6.19.0...v6.19.1

v6.19.0

Full Changelog: docker/build-push-action@v6.18.0...v6.19.0

Commits
  • 10e90e3 Merge pull request #1458 from crazy-max/git-auth-port
  • 5262538 chore: update generated content
  • cd130e4 preserve port in GIT_AUTH_TOKEN host
  • 806c751 Merge pull request #1452 from crazy-max/update-yarn
  • 601a80b Merge pull request #1456 from crazy-max/auth-token-dyn-host
  • 8f7fd7c chore: update generated content
  • 710e335 derive GIT_AUTH_TOKEN host from GitHub server URL
  • c4ca848 update yarn to 4.9.2
  • ee4ca42 Merge pull request #1398 from docker/dependabot/npm_and_yarn/tmp-0.2.4
  • f1b3bb5 chore: update generated content
  • Additional commits viewable in compare view

Updates suzuki-shunsuke/pinact-action from 1.3.1 to 1.4.0

Release notes

Sourced from suzuki-shunsuke/pinact-action's releases.

v1.4.0

Issues | Pull Requests | suzuki-shunsuke/pinact-action@v1.3.1...v1.4.0 | Base revision

Features

Add the optional input separator to change separator between action version and comment

e.g.

- uses: suzuki-shunsuke/pinact-action@1081f5ad49ac904b7d977784f338145150a32112  # v1.4.0
  with:
    separator: "  # "
Commits
  • 1081f5a chore: prepare release v1.4.0
  • 455ac61 docs: fix deepwiki badge (#914)
  • 2bb7f82 fix: fix a bug the action fails if separator is set (#913)
  • 6e11b88 fix(deps): update dependency @​actions/github to v9 (#902)
  • 75529ef feat: support separator (#912)
  • c02f9ee chore(deps): update dependency typescript-eslint to v8.54.0 (#911)
  • 12297b6 fix(deps): update dependency @​actions/exec to v3 (#903)
  • 8980627 chore(deps): pin dependency jiti to 2.6.1 (#910)
  • 6f9b870 fix(deps): update dependency @​actions/core to v3 (#904)
  • 72f2097 chore: introduce eslint (#909)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the actions group across 1 directory with 9 updates
16ebfbe 
Bumps the actions group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [taiki-e/install-action](https://github.com/taiki-e/install-action) | `2.67.15` | `2.68.8` |
| [actions/cache](https://github.com/actions/cache) | `5.0.2` | `5.0.3` |
| [github/codeql-action](https://github.com/github/codeql-action) | `b126facd4e5d140dbdf5202489ec4a70ff75ce5c` | `710e2945787622b429f8982cacb154faa182de18` |
| [DataDog/datadog-static-analyzer-github-action](https://github.com/datadog/datadog-static-analyzer-github-action) | `2.0.0` | `3.0.0` |
| [actions/dependency-review-action](https://github.com/actions/dependency-review-action) | `4.8.2` | `4.8.3` |
| [tj-actions/changed-files](https://github.com/tj-actions/changed-files) | `47.0.1` | `47.0.4` |
| [docker/login-action](https://github.com/docker/login-action) | `3.6.0` | `3.7.0` |
| [docker/build-push-action](https://github.com/docker/build-push-action) | `6.18.0` | `6.19.2` |
| [suzuki-shunsuke/pinact-action](https://github.com/suzuki-shunsuke/pinact-action) | `1.3.1` | `1.4.0` |



Updates `taiki-e/install-action` from 2.67.15 to 2.68.8
- [Release notes](https://github.com/taiki-e/install-action/releases)
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md)
- [Commits](taiki-e/install-action@7e574ed...cfdb446)

Updates `actions/cache` from 5.0.2 to 5.0.3
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](actions/cache@8b402f5...cdf6c1f)

Updates `github/codeql-action` from b126facd4e5d140dbdf5202489ec4a70ff75ce5c to 710e2945787622b429f8982cacb154faa182de18
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@b126fac...710e294)

Updates `DataDog/datadog-static-analyzer-github-action` from 2.0.0 to 3.0.0
- [Release notes](https://github.com/datadog/datadog-static-analyzer-github-action/releases)
- [Commits](DataDog/datadog-static-analyzer-github-action@2cc0e06...8340f18)

Updates `actions/dependency-review-action` from 4.8.2 to 4.8.3
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](actions/dependency-review-action@3c4e3dc...05fe457)

Updates `tj-actions/changed-files` from 47.0.1 to 47.0.4
- [Release notes](https://github.com/tj-actions/changed-files/releases)
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md)
- [Commits](tj-actions/changed-files@e002140...7dee1b0)

Updates `docker/login-action` from 3.6.0 to 3.7.0
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](docker/login-action@5e57cd1...c94ce9f)

Updates `docker/build-push-action` from 6.18.0 to 6.19.2
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](docker/build-push-action@2634353...10e90e3)

Updates `suzuki-shunsuke/pinact-action` from 1.3.1 to 1.4.0
- [Release notes](https://github.com/suzuki-shunsuke/pinact-action/releases)
- [Commits](suzuki-shunsuke/pinact-action@3d49c64...1081f5a)

---
updated-dependencies:
- dependency-name: taiki-e/install-action
  dependency-version: 2.68.8
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: actions/cache
  dependency-version: 5.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
- dependency-name: github/codeql-action
  dependency-version: 710e2945787622b429f8982cacb154faa182de18
  dependency-type: direct:production
  dependency-group: actions
- dependency-name: DataDog/datadog-static-analyzer-github-action
  dependency-version: 3.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
- dependency-name: actions/dependency-review-action
  dependency-version: 4.8.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
- dependency-name: tj-actions/changed-files
  dependency-version: 47.0.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
- dependency-name: docker/login-action
  dependency-version: 3.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: docker/build-push-action
  dependency-version: 6.19.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: suzuki-shunsuke/pinact-action
  dependency-version: 1.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added renovate/actions Renovate update of GitHub actions qa/skip-qa Automatically skip this PR for the next QA labels Feb 23, 2026
@dependabot dependabot Bot requested a review from a team as a code owner February 23, 2026 06:39
@dependabot dependabot Bot added qa/skip-qa Automatically skip this PR for the next QA renovate/actions Renovate update of GitHub actions labels Feb 23, 2026
@codecov

codecov Bot commented Feb 23, 2026
edited
Loading

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 90.52%. Comparing base (0b2cf10) to head (16ebfbe).
⚠️ Report is 26 commits behind head on master.

Additional details and impacted files
🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@dependabot @github

dependabot Bot commented on behalf of github Feb 27, 2026

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Feb 27, 2026
@dependabot dependabot Bot deleted the dependabot/github_actions/actions-c8a32d65d6 branch February 27, 2026 10:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

ecosystems/review-requested product/review-requested qa/skip-qa Automatically skip this PR for the next QA renovate/actions Renovate update of GitHub actions

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants