Skip to content

Bump the actions group with 6 updates#1

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions-2f19032ed5
Closed

Bump the actions group with 6 updates#1
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions-2f19032ed5

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Dec 15, 2025

Copy link
Copy Markdown
Contributor

Bumps the actions group with 6 updates:

Package From To
docker/setup-qemu-action 3.6.0 3.7.0
docker/login-action 3.4.0 3.6.0
docker/metadata-action 5.7.0 5.10.0
octo-sts/action 1.0.0 1.1.1
chainguard-dev/digestabot 1.2.2 1.2.3
renovatebot/github-action 44.0.5 44.1.0

Updates docker/setup-qemu-action from 3.6.0 to 3.7.0

Release notes

Sourced from docker/setup-qemu-action's releases.

v3.7.0

Full Changelog: docker/setup-qemu-action@v3.6.0...v3.7.0

Commits
  • c7c5346 Merge pull request #230 from docker/dependabot/npm_and_yarn/docker/actions-to...
  • 3a517a1 chore: update generated content
  • a5b45ed build(deps): bump @​docker/actions-toolkit from 0.62.1 to 0.67.0
  • 3a64278 Merge pull request #220 from docker/dependabot/npm_and_yarn/brace-expansion-1...
  • 94906ba chore: update generated content
  • 4027abf build(deps): bump brace-expansion from 1.1.11 to 1.1.12
  • bee0aaa Merge pull request #221 from docker/dependabot/npm_and_yarn/tmp-0.2.4
  • 0d7e257 chore: update generated content
  • b869601 build(deps): bump tmp from 0.2.3 to 0.2.4
  • 3a043ed Merge pull request #219 from docker/dependabot/npm_and_yarn/undici-5.29.0
  • Additional commits viewable in compare view

Updates docker/login-action from 3.4.0 to 3.6.0

Release notes

Sourced from docker/login-action's releases.

v3.6.0

Full Changelog: docker/login-action@v3.5.0...v3.6.0

v3.5.0

Full Changelog: docker/login-action@v3.4.0...v3.5.0

Commits
  • 5e57cd1 Merge pull request #890 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...
  • 97e3143 chore: update generated content
  • 3a0796b build(deps): bump the aws-sdk-dependencies group with 2 updates
  • 5b7b28b Merge pull request #882 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...
  • abc9fb3 chore: update generated content
  • d468688 build(deps): bump the aws-sdk-dependencies group with 2 updates
  • a99b2f8 Merge pull request #883 from docker/dependabot/npm_and_yarn/docker/actions-to...
  • 0d7fae8 chore: update generated content
  • 9832253 build(deps): bump @​docker/actions-toolkit from 0.62.1 to 0.63.0
  • 09e05bb Merge pull request #881 from docker/dependabot/npm_and_yarn/tmp-0.2.4
  • Additional commits viewable in compare view

Updates docker/metadata-action from 5.7.0 to 5.10.0

Release notes

Sourced from docker/metadata-action's releases.

v5.10.0

Full Changelog: docker/metadata-action@v5.9.0...v5.10.0

v5.9.0

Full Changelog: docker/metadata-action@v5.8.0...v5.9.0

v5.8.0

Full Changelog: docker/metadata-action@v5.7.0...v5.8.0

Commits
  • c299e40 Merge pull request #569 from docker/dependabot/npm_and_yarn/docker/actions-to...
  • f015d79 chore: update generated content
  • 121bcc2 chore(deps): Bump @​docker/actions-toolkit from 0.67.0 to 0.68.0
  • f7b6bf4 Merge pull request #564 from docker/dependabot/npm_and_yarn/js-yaml-3.14.2
  • 0b95c6b Merge pull request #565 from docker/dependabot/github_actions/actions/checkout-6
  • 17f70d7 Merge pull request #568 from motoki317/docs/fix-to-24h-schedule-pattern
  • afd7e6d docs(README): Fix date format from 12h to 24h in schedule pattern
  • 602aff8 chore(deps): Bump actions/checkout from 5 to 6
  • aecb1a4 chore(deps): Bump js-yaml from 3.14.1 to 3.14.2
  • 8d8c7c1 Merge pull request #559 from docker/dependabot/npm_and_yarn/docker/actions-to...
  • Additional commits viewable in compare view

Updates octo-sts/action from 1.0.0 to 1.1.1

Release notes

Sourced from octo-sts/action's releases.

v1.1.1

What's Changed

Full Changelog: octo-sts/action@v1.1.0...v1.1.1

v1.1.0

What's Changed

Full Changelog: octo-sts/action@v1.0.3...v1.1.0

v1.0.3

What's Changed

Full Changelog: octo-sts/action@v1.0.2...v1.0.3

v1.0.2

What's Changed

New Contributors

Full Changelog: octo-sts/action@v1.0.1...v1.0.2

v1.0.1

What's Changed

New Contributors

... (truncated)

Commits

Updates chainguard-dev/digestabot from 1.2.2 to 1.2.3

Release notes

Sourced from chainguard-dev/digestabot's releases.

v1.2.3

What's Changed

New Contributors

Full Changelog: chainguard-dev/digestabot@v1...v1.2.3

Commits

Updates renovatebot/github-action from 44.0.5 to 44.1.0

Release notes

Sourced from renovatebot/github-action's releases.

v44.1.0

44.1.0 (2025-12-12)

Features

Documentation

  • update references to ghcr.io/renovatebot/renovate to v42.39.2 (56ac2fc)
  • update references to renovatebot/github-action to v44.0.5 (afa2fa8)

Miscellaneous Chores

  • deps: update actions/setup-node action to v6.1.0 (6eab2b7)
  • deps: update dependency esbuild to v0.27.1 (9e1daf1)
  • deps: update dependency prettier to v3.7.0 (8109939)
  • deps: update dependency prettier to v3.7.1 (c023f56)
  • deps: update dependency prettier to v3.7.2 (e022113)
  • deps: update dependency prettier to v3.7.3 (df0b720)
  • deps: update dependency prettier to v3.7.4 (817bae1)
  • deps: update dependency prettier-plugin-packagejson to v2.5.20 (f7337fd)
  • deps: update dependency typescript-eslint to v8.48.0 (fb6e56f)
  • deps: update dependency typescript-eslint to v8.48.1 (c558985)
  • deps: update pnpm to v10.24.0 (79de259)

Continuous Integration

  • deps: update renovate docker tag to v42.27.3 (cb62681)
  • deps: update renovate docker tag to v42.27.5 (8d95600)
  • deps: update renovate docker tag to v42.28.0 (6bbb048)
  • deps: update renovate docker tag to v42.29.3 (07abe3d)
  • deps: update renovate docker tag to v42.29.4 (bbde94e)
  • deps: update renovate docker tag to v42.29.5 (a014389)
  • deps: update renovate docker tag to v42.30.1 (0a7b3c6)
  • deps: update renovate docker tag to v42.30.2 (9a03ec1)
  • deps: update renovate docker tag to v42.30.3 (ad718be)
  • deps: update renovate docker tag to v42.30.4 (39fbfa4)
  • deps: update renovate docker tag to v42.31.0 (c654f3c)
  • deps: update renovate docker tag to v42.32.2 (f8f972d)
  • deps: update renovate docker tag to v42.32.3 (7dacb79)
  • deps: update renovate docker tag to v42.34.0 (a27b37e)
  • deps: update renovate docker tag to v42.34.1 (d7b2cb9)
  • deps: update renovate docker tag to v42.34.2 (b6077f8)
  • deps: update renovate docker tag to v42.35.1 (a2e6f2c)
  • deps: update renovate docker tag to v42.37.0 (cb999b8)
  • deps: update renovate docker tag to v42.37.1 (280b58e)
  • deps: update renovate docker tag to v42.38.0 (82475db)
  • deps: update renovate docker tag to v42.38.1 (d65800d)
  • deps: update renovate docker tag to v42.39.0 (82ec283)

... (truncated)

Commits
  • 502904f chore(release): 44.1.0 [skip ci]
  • 18f2aa2 skip: merge (7f974c0f8a2d1a5db895b0fef1c2ae0ed818d361) [skip release]
  • 7f974c0 feat: enable tty for docker run (#974)
  • 52deb6e skip: merge (6856febbe5599364858ab45bd1cc9aa3274055cc) [skip release]
  • 6856feb ci(deps): update renovate docker tag to v42.50.0
  • 53124be skip: merge (8342c937a80f45e383262316a736628e32cb1d24) [skip release]
  • 8342c93 ci(deps): update renovate docker tag to v42.49.0
  • 5f72fc3 skip: merge (8380aa89417e0f7d846cfe13b550485998f1ab1a) [skip release]
  • 8380aa8 ci(deps): update renovate docker tag to v42.47.0
  • dcaa340 skip: merge (a272caf98b2af3998fd08aad2115557748c09e96) [skip release]
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the actions group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) | `3.6.0` | `3.7.0` |
| [docker/login-action](https://github.com/docker/login-action) | `3.4.0` | `3.6.0` |
| [docker/metadata-action](https://github.com/docker/metadata-action) | `5.7.0` | `5.10.0` |
| [octo-sts/action](https://github.com/octo-sts/action) | `1.0.0` | `1.1.1` |
| [chainguard-dev/digestabot](https://github.com/chainguard-dev/digestabot) | `1.2.2` | `1.2.3` |
| [renovatebot/github-action](https://github.com/renovatebot/github-action) | `44.0.5` | `44.1.0` |


Updates `docker/setup-qemu-action` from 3.6.0 to 3.7.0
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](docker/setup-qemu-action@2910929...c7c5346)

Updates `docker/login-action` from 3.4.0 to 3.6.0
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](docker/login-action@74a5d14...5e57cd1)

Updates `docker/metadata-action` from 5.7.0 to 5.10.0
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Commits](docker/metadata-action@902fa8e...c299e40)

Updates `octo-sts/action` from 1.0.0 to 1.1.1
- [Release notes](https://github.com/octo-sts/action/releases)
- [Commits](octo-sts/action@v1.0.0...v1.1.1)

Updates `chainguard-dev/digestabot` from 1.2.2 to 1.2.3
- [Release notes](https://github.com/chainguard-dev/digestabot/releases)
- [Commits](chainguard-dev/digestabot@4322223...a3b776c)

Updates `renovatebot/github-action` from 44.0.5 to 44.1.0
- [Release notes](https://github.com/renovatebot/github-action/releases)
- [Changelog](https://github.com/renovatebot/github-action/blob/main/CHANGELOG.md)
- [Commits](renovatebot/github-action@v44.0.5...v44.1.0)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-version: 3.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: docker/login-action
  dependency-version: 3.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: docker/metadata-action
  dependency-version: 5.10.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: octo-sts/action
  dependency-version: 1.1.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: chainguard-dev/digestabot
  dependency-version: 1.2.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
- dependency-name: renovatebot/github-action
  dependency-version: 44.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Dec 15, 2025
@amouat amouat closed this Dec 15, 2025
@dependabot @github

dependabot Bot commented on behalf of github Dec 15, 2025

Copy link
Copy Markdown
Contributor Author

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

@dependabot dependabot Bot deleted the dependabot/github_actions/actions-2f19032ed5 branch December 15, 2025 12:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant