chore(deps): bump the actions group across 1 directory with 10 updates by dependabot[bot] · Pull Request #11 · authzed/spicedb-clients-prototype

dependabot · 2026-06-04T03:33:38Z

Bumps the actions group with 10 updates in the / directory:

Package	From	To
dorny/paths-filter	`3.0.3`	`4.0.1`
actions/setup-go	`5`	`6`
actions/setup-dotnet	`4`	`5`
golangci/golangci-lint-action	`6.5.2`	`9.2.1`
actions/setup-java	`4`	`5`
gradle/actions	`48b5f213c81028ace310571dc5ec0fbbca0b2947`	`ed408507eac070d1f99cc633dbcf757c94c7933a`
actions/setup-node	`4`	`6`
astral-sh/setup-uv	`3.2.4`	`8.2.0`
pnpm/action-setup	`4.3.0`	`6.0.8`
chainguard-dev/actions	`3e76343fe029f8e2a10bfbec0da8f437e5dab7a5`	`fb0251037a0881c603a39914c9bd3247a1a1f11c`

Updates dorny/paths-filter from 3.0.3 to 4.0.1

Release notes

Sourced from dorny/paths-filter's releases.

v4.0.1

What's Changed

Support merge queue by @masaru-iritani in dorny/paths-filter#255

New Contributors

@masaru-iritani made their first contribution in dorny/paths-filter#255

Full Changelog: dorny/paths-filter@v4.0.0...v4.0.1

v4.0.0

What's Changed

feat: update action runtime to node24 by @saschabratton in dorny/paths-filter#294

New Contributors

@saschabratton made their first contribution in dorny/paths-filter#294

Full Changelog: dorny/paths-filter@v3.0.3...v4.0.0

Changelog

Sourced from dorny/paths-filter's changelog.

Changelog

v4.0.0

Update action runtime to node24

v3.0.3

Add missing predicate-quantifier

v3.0.2

Add config parameter for predicate quantifier

v3.0.1

Compare base and ref when token is empty

v3.0.0

Update to Node.js 20

Update all dependencies

v2.11.1

Update @actions/core to v1.10.0 - Fixes warning about deprecated set-output

Document need for pull-requests: read permission

Updating to actions/checkout@v3

v2.11.0

Set list-files input parameter as not required

Update Node.js

Fix incorrect handling of Unicode characters in exec()

Use Octokit pagination

Updates real world links

v2.10.2

Fix getLocalRef() returns wrong ref

v2.10.1

Improve robustness of change detection

v2.10.0

Add ref input parameter

Fix change detection in PR when pullRequest.changed_files is incorrect

v2.9.3

Fix change detection when base is a tag

v2.9.2

Fix fetching git history

v2.9.1

Fix fetching git history + fallback to unshallow repo

v2.9.0

... (truncated)

Commits

fbd0ab8 feat: add merge_group event support
efb1da7 feat: add dist/ freshness check to PR workflow
d8f7b06 Merge pull request #302 from dorny/issue-299
addbc14 Update README for v4
9d7afb8 Update CHANGELOG for v4.0.0
782470c Merge branch 'releases/v3'
ce10459 Merge pull request #294 from saschabratton/master
5f40380 feat: update action runtime to node24
See full diff in compare view

Updates actions/setup-go from 5 to 6

Release notes

Sourced from actions/setup-go's releases.

v6.0.0

What's Changed

Breaking Changes

Improve toolchain handling to ensure more reliable and consistent toolchain selection and management by @matthewhughes934 in actions/setup-go#460

Upgrade Nodejs runtime from node20 to node 24 by @salmanmkc in actions/setup-go#624

Make sure your runner is on version v2.327.1 or later to ensure compatibility with this release. See Release Notes

Dependency Upgrades

Upgrade @types/jest from 29.5.12 to 29.5.14 by @dependabot[bot] in actions/setup-go#589

Upgrade @actions/tool-cache from 2.0.1 to 2.0.2 by @dependabot[bot] in actions/setup-go#591

Upgrade @typescript-eslint/parser from 8.31.1 to 8.35.1 by @dependabot[bot] in actions/setup-go#590

Upgrade undici from 5.28.5 to 5.29.0 by @dependabot[bot] in actions/setup-go#594

Upgrade typescript from 5.4.2 to 5.8.3 by @dependabot[bot] in actions/setup-go#538

Upgrade eslint-plugin-jest from 28.11.0 to 29.0.1 by @dependabot[bot] in actions/setup-go#603

Upgrade form-data to bring in fix for critical vulnerability by @matthewhughes934 in actions/setup-go#618

Upgrade actions/checkout from 4 to 5 by @dependabot[bot] in actions/setup-go#631

New Contributors

@matthewhughes934 made their first contribution in actions/setup-go#618

@salmanmkc made their first contribution in actions/setup-go#624

Full Changelog: actions/setup-go@v5...v6.0.0

v5.6.0

What's Changed

Fall back to downloading from go.dev/dl instead of storage.googleapis.com/golang by @aparnajyothi-y in actions/setup-go#689

Full Changelog: actions/setup-go@v5...v5.6.0

v5.5.0

What's Changed

Bug fixes:

Update self-hosted environment validation by @priyagupta108 in actions/setup-go#556

Add manifest validation and improve error handling by @priyagupta108 in actions/setup-go#586

Update template link by @jsoref in actions/setup-go#527

Dependency updates:

Upgrade @action/cache from 4.0.2 to 4.0.3 by @aparnajyothi-y in actions/setup-go#574

Upgrade @actions/glob from 0.4.0 to 0.5.0 by @dependabot in actions/setup-go#573

Upgrade ts-jest from 29.1.2 to 29.3.2 by @dependabot in actions/setup-go#582

Upgrade eslint-plugin-jest from 27.9.0 to 28.11.0 by @dependabot in actions/setup-go#537

New Contributors

@jsoref made their first contribution in actions/setup-go#527

Full Changelog: actions/setup-go@v5...v5.5.0

... (truncated)

Commits

4a36011 docs: fix Microsoft build of Go link (#734)
8f19afc feat: add go-download-base-url input for custom Go distributions (#721)
27fdb26 Bump minimatch from 3.1.2 to 3.1.5 (#727)
def8c39 Rearrange README.md, add advanced-usage.md (#724)
4b73464 Fix golang download url to go.dev (#469)
a5f9b05 Update default Go module caching to use go.mod (#705)
7a3fe6c Bump qs from 6.14.0 to 6.14.1 (#703)
b9adafd Bump actions/checkout from 5 to 6 (#686)
d73f6bc README.md: correct to actions/checkout@v6 (#683)
ae252ee Bump @actions/cache to v5 (#695)
Additional commits viewable in compare view

Updates actions/setup-dotnet from 4 to 5

Release notes

Sourced from actions/setup-dotnet's releases.

v5.0.0

What's Changed

Breaking Changes

Upgrade to Node.js 24 and modernize async usage by @salmanmkc in actions/setup-dotnet#654

Make sure your runner is updated to this version or newer to use this release. v2.327.1 Release Notes

Dependency Updates

Upgrade @action/cache from 4.0.2 to 4.0.3 by @aparnajyothi-y in actions/setup-dotnet#622

Upgrade husky from 8.0.3 to 9.1.7 by @dependabot[bot] in actions/setup-dotnet#591

Upgrade @actions/glob from 0.4.0 to 0.5.0 by @dependabot[bot] in actions/setup-dotnet#594

Upgrade eslint-config-prettier from 9.1.0 to 10.1.5 by @dependabot[bot] in actions/setup-dotnet#639

Upgrade undici from 5.28.5 to 5.29.0 by @dependabot[bot] in actions/setup-dotnet#641

Upgrade form-data to bring in fix for critical vulnerability by @gowridurgad in actions/setup-dotnet#652

Upgrade actions/checkout from 4 to 5 by @dependabot[bot] in actions/setup-dotnet#662

Bug Fixes

Remove Support for older .NET Versions and Update installers scripts by @gowridurgad in actions/setup-dotnet#647

New Contributors

@gowridurgad made their first contribution in actions/setup-dotnet#647

@salmanmkc made their first contribution in actions/setup-dotnet#654

Full Changelog: actions/setup-dotnet@v4...v5.0.0

v4.3.1

What's Changed

v4 - Remove azureedge.net fallback logic and update install scripts by @zaataylor in actions/setup-dotnet#572 As outlined in Critical .NET Install Links Are Changing, remove the storage account fallback logic added for v4 in actions/setup-dotnet#566 and update the install scripts accordingly. Related issue: dotnet/install-scripts#559

upgrade @actions/cache to 4.0.2 by @HarithaVattikuti in actions/setup-dotnet#615

Full Changelog: actions/setup-dotnet@v4...v4.3.1

v4.3.0

What's Changed

README update - add permissions section by @benwells in actions/setup-dotnet#587

Configure Dependabot settings by @HarithaVattikuti in actions/setup-dotnet#585

Upgrade cache from 3.2.4 to 4.0.0 by @aparnajyothi-y in actions/setup-dotnet#586

Upgrade actions/publish-immutable-action from 0.0.3 to 0.0.4 by @dependabot in actions/setup-dotnet#590

Upgrade @actions/http-client from 2.2.1 to 2.2.3 by @dependabot in actions/setup-dotnet#592

Upgrade undici from 5.28.4 to 5.28.5 by @dependabot in actions/setup-dotnet#596

New Contributors

@benwells made their first contribution in actions/setup-dotnet#587

@aparnajyothi-y made their first contribution in actions/setup-dotnet#586

... (truncated)

Commits

9a946fd Add rollForward note in README, improve proxy health check in e2e tests and b...
98af08b Support global.json's rollForward latest* variants (#538)
8404272 Update install scripts to v2026.05.19 (#736)
f1970f5 Don't download releases-index.json to resolve major version (#560)
af9211b Add dotnet-version: latest support with dotnet-channel input (#730)
df991ae chore: bump @actions/* and fast-xml-parser dependencies (#728)
a66eefa CI: remove manual PowerShell install from test-proxy job (e2e-tests.yml) (#703)
c2fa09f Bump minimatch from 3.1.2 to 3.1.5 (#705)
02574b1 Add support for optional architecture input for cross-architecture .NET insta...
16c7b3c Bump fast-xml-parser from 4.4.1 to 5.3.6 (#671)
Additional commits viewable in compare view

Updates golangci/golangci-lint-action from 6.5.2 to 9.2.1

Release notes

Sourced from golangci/golangci-lint-action's releases.

v9.2.1

What's Changed

IMPORTANT: this is the first immutable release.

Changes

chore: improve workflows by @ldez in golangci/golangci-lint-action#1394

Dependencies

build(deps-dev): bump the dev-dependencies group with 3 updates by @dependabot[bot] in golangci/golangci-lint-action#1325

build(deps-dev): bump the dev-dependencies group with 2 updates by @dependabot[bot] in golangci/golangci-lint-action#1326

build(deps): bump the dependencies group with 4 updates by @dependabot[bot] in golangci/golangci-lint-action#1327

build(deps-dev): bump the dev-dependencies group with 2 updates by @dependabot[bot] in golangci/golangci-lint-action#1328

build(deps): bump @types/node from 25.0.2 to 25.0.3 in the dependencies group by @dependabot[bot] in golangci/golangci-lint-action#1329

build(deps-dev): bump the dev-dependencies group with 2 updates by @dependabot[bot] in golangci/golangci-lint-action#1330

build(deps-dev): bump the dev-dependencies group with 2 updates by @dependabot[bot] in golangci/golangci-lint-action#1332

build(deps-dev): bump the dev-dependencies group with 2 updates by @dependabot[bot] in golangci/golangci-lint-action#1333

build(deps): bump the dependencies group with 6 updates by @dependabot[bot] in golangci/golangci-lint-action#1334

build(deps-dev): bump the dev-dependencies group with 4 updates by @dependabot[bot] in golangci/golangci-lint-action#1335

build(deps): bump the dependencies group with 2 updates by @dependabot[bot] in golangci/golangci-lint-action#1336

build(deps-dev): bump the dev-dependencies group with 3 updates by @dependabot[bot] in golangci/golangci-lint-action#1337

build(deps): bump @types/node from 25.0.9 to 25.0.10 in the dependencies group by @dependabot[bot] in golangci/golangci-lint-action#1338

build(deps): bump fast-xml-parser from 5.3.3 to 5.3.4 by @dependabot[bot] in golangci/golangci-lint-action#1339

build(deps-dev): bump the dev-dependencies group with 2 updates by @dependabot[bot] in golangci/golangci-lint-action#1340

build(deps-dev): bump the dev-dependencies group across 1 directory with 3 updates by @dependabot[bot] in golangci/golangci-lint-action#1344

build(deps): bump fast-xml-parser from 5.3.4 to 5.3.6 by @dependabot[bot] in golangci/golangci-lint-action#1346

build(deps): bump minimatch by @dependabot[bot] in golangci/golangci-lint-action#1348

build(deps): bump minimatch from 3.1.3 to 3.1.5 by @dependabot[bot] in golangci/golangci-lint-action#1350

build(deps): bump fast-xml-parser from 5.3.6 to 5.4.1 by @dependabot[bot] in golangci/golangci-lint-action#1351

build(deps): bump fast-xml-parser from 5.4.1 to 5.5.6 by @dependabot[bot] in golangci/golangci-lint-action#1357

build(deps): bump fast-xml-parser from 5.5.6 to 5.5.7 by @dependabot[bot] in golangci/golangci-lint-action#1358

build(deps-dev): bump flatted from 3.3.3 to 3.4.2 by @dependabot[bot] in golangci/golangci-lint-action#1359

build(deps): bump picomatch from 4.0.3 to 4.0.4 by @dependabot[bot] in golangci/golangci-lint-action#1364

build(deps): bump yaml from 2.8.2 to 2.8.3 by @dependabot[bot] in golangci/golangci-lint-action#1365

build(deps): bump brace-expansion by @dependabot[bot] in golangci/golangci-lint-action#1370

build(deps-dev): bump the dev-dependencies group across 1 directory with 7 updates by @ldez in golangci/golangci-lint-action#1374

build(deps): bump github/codeql-action from 4 to 4.35.2 by @dependabot[bot] in golangci/golangci-lint-action#1384

build(deps): bump fast-xml-builder from 1.1.5 to 1.2.0 by @dependabot[bot] in golangci/golangci-lint-action#1386

build(deps): bump github/codeql-action from 4.35.2 to 4.35.3 by @dependabot[bot] in golangci/golangci-lint-action#1389

build(deps): bump github/codeql-action from 4.35.3 to 4.35.4 by @dependabot[bot] in golangci/golangci-lint-action#1391

Full Changelog: golangci/golangci-lint-action@v9.2.0...v9.2.1

v9.2.0

What's Changed

Changes

feat: add version-file option by @ldez in golangci/golangci-lint-action#1320

chore: move samples into fixtures by @ldez in golangci/golangci-lint-action#1321

... (truncated)

Commits

82606bf chore: prepare release v9.2.1
97c8387 chore: improve workflows (#1394)
28d0a19 build(deps): bump the dependencies group across 1 directory with 2 updates
633fbc7 build(deps): bump github/codeql-action from 4.35.3 to 4.35.4 (#1391)
59f43e2 build(deps): bump github/codeql-action from 4.35.2 to 4.35.3 (#1389)
9eb174e build(deps): bump fast-xml-builder from 1.1.5 to 1.2.0 (#1386)
4f52504 build(deps): bump github/codeql-action from 4 to 4.35.2 (#1384)
6f87dfd docs: update examples
c9500d7 chore: improve workflows
03b1faa chore: improve issue templates
Additional commits viewable in compare view

Updates actions/setup-java from 4 to 5

Release notes

Sourced from actions/setup-java's releases.

v5.0.0

What's Changed

Breaking Changes

Upgrade to node 24 by @salmanmkc in actions/setup-java#888

Make sure your runner is updated to this version or newer to use this release. v2.327.1 Release Notes

Dependency Upgrades

Upgrade Publish Immutable Action by @HarithaVattikuti in actions/setup-java#798

Upgrade eslint-plugin-jest from 27.9.0 to 28.11.0 by @dependabot[bot] in actions/setup-java#730

Upgrade undici from 5.28.5 to 5.29.0 by @dependabot[bot] in actions/setup-java#833

Upgrade form-data to bring in fix for critical vulnerability by @gowridurgad in actions/setup-java#887

Upgrade actions/checkout from 4 to 5 by @dependabot[bot] in actions/setup-java#896

Bug Fixes

Prevent default installation of JetBrains pre-releases by @priyagupta108 in actions/setup-java#859

Improve Error Handling for Setup-Java Action to Help Debug Intermittent Failures by @gowridurgad in actions/setup-java#848

New Contributors

@gowridurgad made their first contribution in actions/setup-java#848

@salmanmkc made their first contribution in actions/setup-java#888

Full Changelog: actions/setup-java@v4...v5.0.0

v4.8.0

What's Changed

License and Audit Fixes by @HarithaVattikuti in actions/setup-java#960

Update SapMachine URLs by @RealCLanger in actions/setup-java#965

Full Changelog: actions/setup-java@v4...v4.8.0

v4.7.1

What's Changed

Documentation changes

Add Documentation to Recommend Using GraalVM JDK 17 Version to 17.0.12 to Align with GFTC License Terms by @aparnajyothi-y in actions/setup-java#704

Remove duplicated GraalVM section in documentation by @Marcono1234 in actions/setup-java#716

Dependency updates:

Upgrade @action/cache from 4.0.0 to 4.0.2 by @aparnajyothi-y in actions/setup-java#766

Upgrade @actions/glob from 0.4.0 to 0.5.0 by @dependabot in actions/setup-java#744

Upgrade ts-jest from 29.1.2 to 29.2.5 by @dependabot in actions/setup-java#743

Upgrade @action/cache to 4.0.3 by @aparnajyothi-y in actions/setup-java#773

Full Changelog: actions/setup-java@v4...v4.7.1

v4.7.0

What's Changed

... (truncated)

Commits

be666c2 Chore: Version Update and Checkout Update to v6 (#973)
f7a6fef Bump actions/checkout from 5 to 6 (#961)
d81c4e4 Upgrade @actions/cache to v5 (#968)
1b1bbe1 readme update (#972)
5d7b214 Retry on HTTP 522 Connection timed out (#964)
f2beeb2 Bump actions/publish-action from 0.3.0 to 0.4.0 (#912)
4e7e684 feat: Add support for .sdkmanrc file in java-version-file parameter (#736)
46c56d6 Add GitHub Token Support for GraalVM and Refactor Code (#849)
66b9457 Update SapMachine URLs (#955)
6ba5449 Enhance error logging for network failures to include endpoint/IP details, ad...
Additional commits viewable in compare view

Updates gradle/actions from 48b5f213c81028ace310571dc5ec0fbbca0b2947 to ed408507eac070d1f99cc633dbcf757c94c7933a

Commits

See full diff in compare view

Updates actions/setup-node from 4 to 6

Release notes

Sourced from actions/setup-node's releases.

v6.0.0

What's Changed

Breaking Changes

Limit automatic caching to npm, update workflows and documentation by @priyagupta108 in actions/setup-node#1374

Dependency Upgrades

Upgrade ts-jest from 29.1.2 to 29.4.1 and document breaking changes in v5 by @dependabot[bot] in #1336

Upgrade prettier from 2.8.8 to 3.6.2 by @dependabot[bot] in #1334

Upgrade actions/publish-action from 0.3.0 to 0.4.0 by @dependabot[bot] in #1362

Full Changelog: actions/setup-node@v5...v6.0.0

v5.0.0

What's Changed

Breaking Changes

Enhance caching in setup-node with automatic package manager detection by @priya-kinthali in actions/setup-node#1348

This update, introduces automatic caching when a valid packageManager field is present in your package.json. This aims to improve workflow performance and make dependency management more seamless. To disable this automatic caching, set package-manager-cache: false
steps:
- uses: actions/checkout@v5
- uses: actions/setup-node@v5
  with:
    package-manager-cache: false
Upgrade action to use node24 by @salmanmkc in actions/setup-node#1325

Make sure your runner is on version v2.327.1 or later to ensure compatibility with this release. See Release Notes

Dependency Upgrades

Upgrade @octokit/request-error and @actions/github by @dependabot[bot] in actions/setup-node#1227

Upgrade uuid from 9.0.1 to 11.1.0 by @dependabot[bot] in actions/setup-node#1273

Upgrade undici from 5.28.5 to 5.29.0 by @dependabot[bot] in actions/setup-node#1295

Upgrade form-data to bring in fix for critical vulnerability by @gowridurgad in actions/setup-node#1332

Upgrade actions/checkout from 4 to 5 by @dependabot[bot] in actions/setup-node#1345

New Contributors

@priya-kinthali made their first contribution in actions/setup-node#1348

@salmanmkc made their first contribution in actions/setup-node#1325

Full Changelog: actions/setup-node@v4...v5.0.0

v4.4.0

... (truncated)

Commits

48b55a0 Update Node.js versions in versions.yml and bump package to v6.4.0 (#1533)
ab72c7e Upgrade @actions dependencies (#1525)
53b8394 Bump minimatch from 3.1.2 to 3.1.5 (#1498)
54045ab Scope test lockfiles by package manager and update cache tests (#1495)
c882bff Replace uuid with crypto.randomUUID() (#1378)
774c1d6 feat(node-version-file): support parsing devEngines field (#1283)
efcb663 fix: remove hardcoded bearer (#1467)
d02c89d Fix npm audit issues (#1491)
6044e13 Docs: bump actions/checkout from v5 to v6 (#1468)
8e49463 Fix README typo (#1226)
Additional commits viewable in compare view

Updates astral-sh/setup-uv from 3.2.4 to 8.2.0

Release notes

Sourced from astral-sh/setup-uv's releases.

v8.2.0 🌈 New inputs quiet and download-from-astral-mirror

Changes

This release brings two new inputs and a few bug fixes.

New inputs

Lets talk about the new inputs first.

quiet

Pretty simple. It turns of all info loggings. Useful if you use this in a composite action and are not interested in all the details. In the upcoming releases we will add log groups to fully implement support for "less noise"

[!NOTE]
Warnings and errors are always logged.

download-from-astral-mirror

In some cases you may want to directly use the fallback of checking for available versions and downloading releases from GitHub instead of using the astral.sh mirror. Setting download-from-astral-mirror: false allows you to do that.

Bugfixes

When using the astral.sh mirror to query available versions and download releases (done by default) we now stop sending the GitHub token in the header. The mirror never looked at it but we shouldn't be handing out that data even if it is just a short lived token. All other bugfixes try to limit the impact of failed GitHub queries due to retries and other faults.

We couldn't pinpoint all rootcauses yet but added more logging for error cases to track them down.

🐛 Bug fixes

fix: report unexpected cache save failures @eifinger (#896)

fix: report unexpected setup failures @eifinger (#895)

fix: add timeout to fetch to prevent silent hangs @eifinger-bot (#883)

Limit GitHub tokens to github.com download URLs @zsol (#878)

increase libuv-workaround timeout to 100ms @eifinger (#880)

🚀 Enhancements

Add quiet input to suppress info-level log output @eifinger (#898)

feat: add download-from-astral-mirror input @eifinger (#897)

🧰 Maintenance

docs: update dependabot rollup biome guidance @eifinger (#902)

chore: update known checksums for 0.11.18 @github-actions[bot] (#899)

chore: update known checksums for 0.11.17 @github-actions[bot] (#892)

chore: update known checksums for 0.11.16 @github-actions[bot] (#889)

chore: update known checksums for 0.11.15 @github-actions[bot] (#885)

chore: update known checksums for 0.11.14 @github-actions[bot] (#879)

chore: update known checksums for 0.11.13 @github-actions[bot] (#877)

... (truncated)

Commits

fac544c chore(deps): roll up dependabot updates (#903)
7390f77 docs: update dependabot rollup biome guidance (#902)
363c64a chore(deps): roll up dependabot updates (#901)
c4fcbaf chore(deps): bump release-drafter/release-drafter from 7.3.0 to 7.3.1 (#900)
8e642c5 chore: update known checksums for 0.11.18 (#899)
a92cb43 Add quiet input to suppress info-level log output (#898)
e07f2ac chore(deps): bump eifinger/actionlint-action from 1.10.1 to 1.10.2 (#842)
bc4034e chore(deps): bump github/codeql-action from 4.35.4 to 4.36.0 (#893)
df42d4f chore(deps): bump zizmorcore/zizmor-action from 0.5.5 to 0.5.6 (#891)
b9c8c4c feat: add download-from-astral-mirror input (#897)
Additional commits viewable in compare view

Updates pnpm/action-setup from 4.3.0 to 6.0.8

Release notes

Sourced from pnpm/action-setup's releases.

v6.0.8

What's Changed

docs(README): fix cache_dependency_path type by @haines in pnpm/action-setup#257

fix: drop patchPnpmEnv so standalone+self-update works on Windows by @zkochan in pnpm/action-setup#258

fix: update pnpm to 11.1.1 by @mungodewar in pnpm/action-setup#248

New Contributors

@mungodewar made their first contribution in pnpm/action-setup#248

Full Changelog: pnpm/action-setup@v6.0.7...v6.0.8

v6.0.7

What's Changed

fix: honor devEngines.packageManager.onFail=error (#252) by @zkochan in pnpm/action-setup#254

fix: restore inputs from state in post by @haines in pnpm/action-setup#255

fix: self-update bootstrap to packageManager-pinned version (#233) by @zkochan in pnpm/action-setup#256

New Contributors

@haines made their first contribution in pnpm/action-setup#255

Full Changelog: pnpm/action-setup@v6.0.6...v6.0.7

v6.0.6

What's Changed

fix: bin_dest output points to self-updated pnpm, not bootstrap by @zkochan in pnpm/action-setup#249

Full Changelog: pnpm/action-setup@v6.0.5...v6.0.6

v6.0.5

What's Changed

fix: append (not prepend) action node dir to PATH for npm bootstrap by @zkochan in pnpm/action-setup#241

Full Changelog: pnpm/action-setup@v6.0.4...v6.0.5

v6.0.4

What's Changed

fix: use npm co-located with the action node binary by @benquarmby in pnpm/action-setup#239

New Contributors

@benquarmby made their first contribution in pnpm/action-setup#239

Full Changelog: https://github.com/pnpm/action-setup/compare/v6.0.3...v6.0.4...
Description has been truncated

Bumps the actions group with 10 updates in the / directory: | Package | From | To | | --- | --- | --- | | [dorny/paths-filter](https://github.com/dorny/paths-filter) | `3.0.3` | `4.0.1` | | [actions/setup-go](https://github.com/actions/setup-go) | `5` | `6` | | [actions/setup-dotnet](https://github.com/actions/setup-dotnet) | `4` | `5` | | [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) | `6.5.2` | `9.2.1` | | [actions/setup-java](https://github.com/actions/setup-java) | `4` | `5` | | [gradle/actions](https://github.com/gradle/actions) | `48b5f213c81028ace310571dc5ec0fbbca0b2947` | `ed408507eac070d1f99cc633dbcf757c94c7933a` | | [actions/setup-node](https://github.com/actions/setup-node) | `4` | `6` | | [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv) | `3.2.4` | `8.2.0` | | [pnpm/action-setup](https://github.com/pnpm/action-setup) | `4.3.0` | `6.0.8` | | [chainguard-dev/actions](https://github.com/chainguard-dev/actions) | `3e76343fe029f8e2a10bfbec0da8f437e5dab7a5` | `fb0251037a0881c603a39914c9bd3247a1a1f11c` | Updates `dorny/paths-filter` from 3.0.3 to 4.0.1 - [Release notes](https://github.com/dorny/paths-filter/releases) - [Changelog](https://github.com/dorny/paths-filter/blob/master/CHANGELOG.md) - [Commits](dorny/paths-filter@d1c1ffe...fbd0ab8) Updates `actions/setup-go` from 5 to 6 - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@v5...v6) Updates `actions/setup-dotnet` from 4 to 5 - [Release notes](https://github.com/actions/setup-dotnet/releases) - [Commits](actions/setup-dotnet@v4...v5) Updates `golangci/golangci-lint-action` from 6.5.2 to 9.2.1 - [Release notes](https://github.com/golangci/golangci-lint-action/releases) - [Commits](golangci/golangci-lint-action@55c2c14...82606bf) Updates `actions/setup-java` from 4 to 5 - [Release notes](https://github.com/actions/setup-java/releases) - [Commits](actions/setup-java@v4...v5) Updates `gradle/actions` from 48b5f213c81028ace310571dc5ec0fbbca0b2947 to ed408507eac070d1f99cc633dbcf757c94c7933a - [Release notes](https://github.com/gradle/actions/releases) - [Commits](gradle/actions@48b5f21...ed40850) Updates `actions/setup-node` from 4 to 6 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](actions/setup-node@v4...v6) Updates `astral-sh/setup-uv` from 3.2.4 to 8.2.0 - [Release notes](https://github.com/astral-sh/setup-uv/releases) - [Commits](astral-sh/setup-uv@caf0cab...fac544c) Updates `pnpm/action-setup` from 4.3.0 to 6.0.8 - [Release notes](https://github.com/pnpm/action-setup/releases) - [Commits](pnpm/action-setup@b906aff...0e279bb) Updates `chainguard-dev/actions` from 3e76343fe029f8e2a10bfbec0da8f437e5dab7a5 to fb0251037a0881c603a39914c9bd3247a1a1f11c - [Release notes](https://github.com/chainguard-dev/actions/releases) - [Commits](chainguard-dev/actions@3e76343...fb02510) --- updated-dependencies: - dependency-name: dorny/paths-filter dependency-version: 4.0.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/setup-go dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/setup-dotnet dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: golangci/golangci-lint-action dependency-version: 9.2.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/setup-java dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: gradle/actions dependency-version: ed408507eac070d1f99cc633dbcf757c94c7933a dependency-type: direct:production dependency-group: actions - dependency-name: actions/setup-node dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: astral-sh/setup-uv dependency-version: 8.2.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: pnpm/action-setup dependency-version: 6.0.8 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: chainguard-dev/actions dependency-version: fb0251037a0881c603a39914c9bd3247a1a1f11c dependency-type: direct:production dependency-group: actions ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jun 4, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the actions group across 1 directory with 10 updates#11

chore(deps): bump the actions group across 1 directory with 10 updates#11
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions-1e5c9d82dc

dependabot Bot commented on behalf of github Jun 4, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Jun 4, 2026

v4.0.1

What's Changed

New Contributors

v4.0.0

What's Changed

New Contributors

Changelog

v4.0.0

v3.0.3

v3.0.2

v3.0.1

v3.0.0

v2.11.1

v2.11.0

v2.10.2

v2.10.1

v2.10.0

v2.9.3

v2.9.2

v2.9.1

v2.9.0

v6.0.0

What's Changed

Breaking Changes

Dependency Upgrades

New Contributors

v5.6.0

What's Changed

v5.5.0

What's Changed

Bug fixes:

Dependency updates:

New Contributors

v5.0.0

What's Changed

Breaking Changes

Dependency Updates

Bug Fixes

New Contributors

v4.3.1

What's Changed

v4.3.0

What's Changed

New Contributors

v9.2.1

What's Changed

Changes

Dependencies

v9.2.0

What's Changed

Changes

v5.0.0

What's Changed

Breaking Changes

Dependency Upgrades

Bug Fixes

New Contributors

v4.8.0

What's Changed

v4.7.1

What's Changed

Documentation changes

Dependency updates:

v4.7.0

What's Changed

v6.0.0

What's Changed

v5.0.0

What's Changed

Breaking Changes

Dependency Upgrades

New Contributors

v4.4.0

v8.2.0 🌈 New inputs quiet and download-from-astral-mirror

Changes

New inputs

quiet

download-from-astral-mirror

v8.2.0 🌈 New inputs `quiet` and `download-from-astral-mirror`