BAU: Bump the gha-all-dependencies group across 1 directory with 14 updates by dependabot[bot] · Pull Request #7876 · govuk-one-login/authentication-api

dependabot · 2026-02-20T15:51:56Z

Updates the requirements on actions/checkout, aws-actions/configure-aws-credentials, actions/setup-java, gradle/actions, actions/upload-artifact, actions/download-artifact, tj-actions/changed-files, peter-evans/find-comment, peter-evans/create-or-update-comment, aws-actions/setup-sam, govuk-one-login/devplatform-upload-action, actions/setup-python, actions/cache and zgosalvez/github-actions-ensure-sha-pinned-actions to permit the latest version.
Updates actions/checkout from 4.2.2 to 6.0.2

Release notes

Sourced from actions/checkout's releases.

v6.0.2

What's Changed

Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set by @TingluoHuang in actions/checkout#2355

Fix tag handling: preserve annotations and explicit fetch-tags by @ericsciple in actions/checkout#2356

Full Changelog: actions/checkout@v6.0.1...v6.0.2

v6.0.1

What's Changed

Update all references from v5 and v4 to v6 by @ericsciple in actions/checkout#2314

Add worktree support for persist-credentials includeIf by @ericsciple in actions/checkout#2327

Clarify v6 README by @ericsciple in actions/checkout#2328

Full Changelog: actions/checkout@v6...v6.0.1

v6.0.0

What's Changed

Update README to include Node.js 24 support details and requirements by @salmanmkc in actions/checkout#2248

Persist creds to a separate file by @ericsciple in actions/checkout#2286

v6-beta by @ericsciple in actions/checkout#2298

update readme/changelog for v6 by @ericsciple in actions/checkout#2311

Full Changelog: actions/checkout@v5.0.0...v6.0.0

v6-beta

What's Changed

Updated persist-credentials to store the credentials under $RUNNER_TEMP instead of directly in the local git config.

This requires a minimum Actions Runner version of v2.329.0 to access the persisted credentials for Docker container action scenarios.

v5.0.1

What's Changed

Port v6 cleanup to v5 by @ericsciple in actions/checkout#2301

Full Changelog: actions/checkout@v5...v5.0.1

v5.0.0

What's Changed

Update actions checkout to use node 24 by @salmanmkc in actions/checkout#2226

Prepare v5.0.0 release by @salmanmkc in actions/checkout#2238

⚠️ Minimum Compatible Runner Version

v2.327.1
Release Notes

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

Changelog

v6.0.2

Fix tag handling: preserve annotations and explicit fetch-tags by @ericsciple in actions/checkout#2356

v6.0.1

Add worktree support for persist-credentials includeIf by @ericsciple in actions/checkout#2327

v6.0.0

Persist creds to a separate file by @ericsciple in actions/checkout#2286

Update README to include Node.js 24 support details and requirements by @salmanmkc in actions/checkout#2248

v5.0.1

Port v6 cleanup to v5 by @ericsciple in actions/checkout#2301

v5.0.0

Update actions checkout to use node 24 by @salmanmkc in actions/checkout#2226

v4.3.1

Port v6 cleanup to v4 by @ericsciple in actions/checkout#2305

v4.3.0

docs: update README.md by @motss in actions/checkout#1971

Add internal repos for checking out multiple repositories by @mouismail in actions/checkout#1977

Documentation update - add recommended permissions to Readme by @benwells in actions/checkout#2043

Adjust positioning of user email note and permissions heading by @joshmgross in actions/checkout#2044

Update README.md by @nebuk89 in actions/checkout#2194

Update CODEOWNERS for actions by @TingluoHuang in actions/checkout#2224

Update package dependencies by @salmanmkc in actions/checkout#2236

v4.2.2

url-helper.ts now leverages well-known environment variables by @jww3 in actions/checkout#1941

Expand unit test coverage for isGhes by @jww3 in actions/checkout#1946

v4.2.1

Check out other refs/* by commit if provided, fall back to ref by @orhantoy in actions/checkout#1924

v4.2.0

Add Ref and Commit outputs by @lucacome in actions/checkout#1180

Dependency updates by @dependabot- actions/checkout#1777, actions/checkout#1872

v4.1.7

Bump the minor-npm-dependencies group across 1 directory with 4 updates by @dependabot in actions/checkout#1739

Bump actions/checkout from 3 to 4 by @dependabot in actions/checkout#1697

Check out other refs/* by commit by @orhantoy in actions/checkout#1774

Pin actions/checkout's own workflows to a known, good, stable version. by @jww3 in actions/checkout#1776

v4.1.6

Check platform to set archive extension appropriately by @cory-miller in actions/checkout#1732

... (truncated)

Commits

de0fac2 Fix tag handling: preserve annotations and explicit fetch-tags (#2356)
064fe7f Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...
8e8c483 Clarify v6 README (#2328)
033fa0d Add worktree support for persist-credentials includeIf (#2327)
c2d88d3 Update all references from v5 and v4 to v6 (#2314)
1af3b93 update readme/changelog for v6 (#2311)
71cf226 v6-beta (#2298)
069c695 Persist creds to a separate file (#2286)
ff7abcd Update README to include Node.js 24 support details and requirements (#2248)
08c6903 Prepare v5.0.0 release (#2238)
Additional commits viewable in compare view

Updates aws-actions/configure-aws-credentials from 4.2.0 to 6.0.0

Release notes

Sourced from aws-actions/configure-aws-credentials's releases.

v6.0.0

6.0.0 (2026-02-04)

⚠ BREAKING CHANGES

Update action to use node24 Note this requires GitHub action runner version v2.327.1 or later (#1632) (a7a2c11)

Features

add support to define transitive tag keys (#1316) (232435c) (930ebd9)

Bug Fixes

properly output aws-account-id and authenticated-arn when using role-chaining (#1633) (7ceaf96)

v5.1.1

5.1.1 (2025-11-24)

Miscellaneous Chores

release 5.1.1 (56d6a58)

various dependency updates

v5.1.0

5.1.0 (2025-10-06)

Features

Add global timeout support (#1487) (1584b8b)

add no-proxy support (#1482) (dde9b22)

Improve debug logging in retry logic (#1485) (97ef425)

Bug Fixes

properly expose getProxyForUrl (introduced in #1482) (#1486) (cea4298)

v5.0.0

5.0.0 (2025-09-03)

⚠ BREAKING CHANGES

Cleanup input handling. Changes invalid boolean input behavior (see #1445)

Features

... (truncated)

Changelog

Sourced from aws-actions/configure-aws-credentials's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

6.0.0 (2026-02-04)

⚠ BREAKING CHANGES

Update action to use node24 (#1632) (a7a2c11)

Features

add support to define transitive tag keys (#1316) (232435c) (930ebd9)

Bug Fixes

properly output aws-account-id and authenticated-arn when using role-chaining (#1633) (7ceaf96)

5.1.1 (2025-11-24)

Miscellaneous Chores

release 5.1.1 (56d6a58)

5.1.0 (2025-10-06)

Features

Add global timeout support (#1487) (1584b8b)

add no-proxy support (#1482) (dde9b22)

Improve debug logging in retry logic (#1485) (97ef425)

Bug Fixes

properly expose getProxyForUrl (introduced in #1482) (#1486) (cea4298)

5.0.0 (2025-09-03)

⚠ BREAKING CHANGES

Cleanup input handling. Changes invalid boolean input behavior (see #1445)

Features

add skip OIDC option (#1458) (8c45f6b)

... (truncated)

Commits

8df5847 chore(deps): bump fast-xml-parser and @aws-sdk/xml-builder (#1640)
d22a0f8 chore(deps-dev): bump @types/node from 25.0.10 to 25.2.0 (#1635)
f7b8181 chore(main): release 6.0.0 (#1641)
c367a6a chore: integ tests manual option (#1639)
7ceaf96 fix: correct outputs for role chaining (#1633)
a7a2c11 feat!: update action to use node24 (#1632)
6e3375d chore: remove release-please release automation (#1631)
98abed7 chore: add workflow_dispatch trigger to release workflow (#1630)
bf3adbb chore: Update dist
db43b8b chore: re-run linter
Additional commits viewable in compare view

Updates actions/setup-java from 4.7.1 to 5.2.0

Release notes

Sourced from actions/setup-java's releases.

v5.2.0

What's Changed

Enhancement

Retry on HTTP 522 Connection timed out by @findepi in actions/setup-java#964

Documentation Changes

Update gradle caching by @priya-kinthali in actions/setup-java#972

Update checkout to v6 by @mahabaleshwars in actions/setup-java#973

Dependency Updates

Upgrade @actions/cache to v5 by @salmanmkc in actions/setup-java#968

Upgrade actions/checkout from 5 to 6 by @dependabot in actions/setup-java#961

New Contributors

@findepi made their first contribution in actions/setup-java#964

Full Changelog: actions/setup-java@v5...v5.2.0

v5.1.0

What's Changed

New Features

Add support for .sdkmanrc file in java-version-file parameter by @guicamest in actions/setup-java#736

Add support for Microsoft OpenJDK 25 builds by @the-mod in actions/setup-java#927

Bug Fixes & Improvements

Update Regex to Support All ASDF Versions for the supported distributions in tool-versions File by @aparnajyothi-y in actions/setup-java#767

Enhance error logging for network failures to include endpoint/IP details, add retry mechanism and update workflows to use macos-15-intel by @priya-kinthali in actions/setup-java#946

Update SapMachine URLs by @RealCLanger in actions/setup-java#955

Add GitHub Token Support for GraalVM and Refactor Code by @mahabaleshwars in actions/setup-java#849

Documentation changes

Update documentation to use checkout and Java v5 by @lmvysakh in actions/setup-java#903

Clarify JAVA_HOME and PATH setup in README by @chiranjib-swain in actions/setup-java#841

Dependency updates

Upgrade prettier from 2.8.8 to 3.6.2 and document breaking changes in v5 by @dependabot in actions/setup-java#873

Upgrade actions/publish-action from 0.3.0 to 0.4.0 by @dependabot in actions/setup-java#912

New Contributors

@lmvysakh made their first contribution in actions/setup-java#903

@chiranjib-swain made their first contribution in actions/setup-java#841

@the-mod made their first contribution in actions/setup-java#927

@priya-kinthali made their first contribution in actions/setup-java#946

@guicamest made their first contribution in actions/setup-java#736

Full Changelog: actions/setup-java@v5...v5.1.0

... (truncated)

Commits

be666c2 Chore: Version Update and Checkout Update to v6 (#973)
f7a6fef Bump actions/checkout from 5 to 6 (#961)
d81c4e4 Upgrade @actions/cache to v5 (#968)
1b1bbe1 readme update (#972)
5d7b214 Retry on HTTP 522 Connection timed out (#964)
f2beeb2 Bump actions/publish-action from 0.3.0 to 0.4.0 (#912)
4e7e684 feat: Add support for .sdkmanrc file in java-version-file parameter (#736)
46c56d6 Add GitHub Token Support for GraalVM and Refactor Code (#849)
66b9457 Update SapMachine URLs (#955)
6ba5449 Enhance error logging for network failures to include endpoint/IP details, ad...
Additional commits viewable in compare view

Updates gradle/actions from 4.4.1 to 5.0.1

Release notes

Sourced from gradle/actions's releases.

v5.0.1

What's Changed

Bump npm code dependency versions

Bump Gradle versions used in sample builds

Bump dependencies versions in Gradle sample builds

Bump GitHub actions used for build and test

Update known wrapper checksums to include Gradle 9.2+

Full Changelog: gradle/actions@v5.0.0...v5.0.1

v5.0.0

What's Changed

Breaking Changes

Upgrade to node 24 by @amyu in gradle/actions#721

Make sure your runner is updated to this version or newer to use this release. v2.327.1 Release Notes

Dependency upgrades

Bump the github-actions group across 1 directory with 2 updates by @dependabot[bot] in gradle/actions#748

Full Changelog: gradle/actions@v4...v5.0.0

v4.4.4

What's Changed

Bump the github-actions group across 2 directories with 3 updates by @dependabot[bot] in gradle/actions#726

Regenerating package lock by @cdsap in gradle/actions#729

Update known wrapper checksums by @github-actions[bot] in gradle/actions#730

Bump the github-actions group across 1 directory with 3 updates by @dependabot[bot] in gradle/actions#735

Bump the gradle group across 3 directories with 1 update by @dependabot[bot] in gradle/actions#734

Bump the npm-dependencies group in /sources with 4 updates by @dependabot[bot] in gradle/actions#733

Bump references to Develocity Gradle plugin from 4.1.1 to 4.2 by @bot-githubaction in gradle/actions#736

Handle gracefully parse errors in checksum file by @jprinet in gradle/actions#737

Bump Gradle Wrapper from 9.0.0 to 9.1.0 in /.github/workflow-samples/kotlin-dsl by @bot-githubaction in gradle/actions#742

Bump Gradle Wrapper from 9.0.0 to 9.1.0 in /.github/workflow-samples/java-toolchain by @bot-githubaction in gradle/actions#741

Bump Gradle Wrapper from 9.0.0 to 9.1.0 in /.github/workflow-samples/groovy-dsl by @bot-githubaction in gradle/actions#740

Bump Gradle Wrapper from 9.0.0 to 9.1.0 in /.github/workflow-samples/gradle-plugin by @bot-githubaction in gradle/actions#739

Bump Gradle Wrapper from 9.0.0 to 9.1.0 in /sources/test/init-scripts by @bot-githubaction in gradle/actions#738

Update known wrapper checksums by @github-actions[bot] in gradle/actions#743

Bump com.google.guava:guava from 33.4.8-jre to 33.5.0-jre in /.github/workflow-samples/kotlin-dsl in the gradle group across 1 directory by @dependabot[bot] in gradle/actions#746

Bump the npm-dependencies group in /sources with 5 updates by @dependabot[bot] in gradle/actions#745

Full Changelog: gradle/actions@v4...v4.4.4

v4.4.3

What's Changed

Adapt tests to future new Build Scan publication message by @alextu in gradle/actions#708

... (truncated)

Commits

f29f5a9 Attempt to fix flaky caching tests (#836)
8c7f3ff Bump to v1.4.1 of the dependency-submission plugin
85e9805 [bot] Update dist directory
acb81f1 Bump the npm-dependencies group across 1 directory with 8 updates (#821)
00660c8 Bump github/codeql-action from 4.31.10 to 4.32.0 in the github-actions group ...
d498ad3 [bot] Update dist directory
de83f33 Update Gradle version and Gradle dependencies (#834)
baabf40 Bump the github-actions group across 2 directories with 5 updates
69353a9 Bump the gradle group across 1 directory with 4 updates
221c7f4 Update known wrapper checksums
Additional commits viewable in compare view

Updates actions/upload-artifact from 4.6.2 to 6.0.0

Release notes

Sourced from actions/upload-artifact's releases.

v6.0.0

v6 - What's new

[!IMPORTANT] actions/upload-artifact@v6 now runs on Node.js 24 (runs.using: node24) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.

Node.js 24

This release updates the runtime to Node.js 24. v5 had preliminary support for Node.js 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.

What's Changed

Upload Artifact Node 24 support by @salmanmkc in actions/upload-artifact#719

fix: update @actions/artifact for Node.js 24 punycode deprecation by @salmanmkc in actions/upload-artifact#744

prepare release v6.0.0 for Node.js 24 support by @salmanmkc in actions/upload-artifact#745

Full Changelog: actions/upload-artifact@v5.0.0...v6.0.0

v5.0.0

What's Changed

BREAKING CHANGE: this update supports Node v24.x. This is not a breaking change per-se but we're treating it as such.

Update README.md by @GhadimiR in actions/upload-artifact#681

Update README.md by @nebuk89 in actions/upload-artifact#712

Readme: spell out the first use of GHES by @danwkennedy in actions/upload-artifact#727

Update GHES guidance to include reference to Node 20 version by @patrikpolyak in actions/upload-artifact#725

Bump @actions/artifact to v4.0.0

Prepare v5.0.0 by @danwkennedy in actions/upload-artifact#734

New Contributors

@GhadimiR made their first contribution in actions/upload-artifact#681

@nebuk89 made their first contribution in actions/upload-artifact#712

@danwkennedy made their first contribution in actions/upload-artifact#727

@patrikpolyak made their first contribution in actions/upload-artifact#725

Full Changelog: actions/upload-artifact@v4...v5.0.0

Commits

b7c566a Merge pull request #745 from actions/upload-artifact-v6-release
e516bc8 docs: correct description of Node.js 24 support in README
ddc45ed docs: update README to correct action name for Node.js 24 support
615b319 chore: release v6.0.0 for Node.js 24 support
017748b Merge pull request #744 from actions/fix-storage-blob
38d4c79 chore: rebuild dist
7d27270 chore: add missing license cache files for @actions/core, @actions/io, and mi...
5f643d3 chore: update license files for @actions/artifact@5.0.1 dependencies
1df1684 chore: update package-lock.json with @actions/artifact@5.0.1
b5b1a91 fix: update @actions/artifact to ^5.0.0 for Node.js 24 punycode fix
Additional commits viewable in compare view

Updates actions/download-artifact from 5.0.0 to 7.0.0

Release notes

Sourced from actions/download-artifact's releases.

v7.0.0

v7 - What's new

[!IMPORTANT] actions/download-artifact@v7 now runs on Node.js 24 (runs.using: node24) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.

Node.js 24

This release updates the runtime to Node.js 24. v6 had preliminary support for Node 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.

What's Changed

Update GHES guidance to include reference to Node 20 version by @patrikpolyak in actions/download-artifact#440

Download Artifact Node24 support by @salmanmkc in actions/download-artifact#415

fix: update @actions/artifact to fix Node.js 24 punycode deprecation by @salmanmkc in actions/download-artifact#451

prepare release v7.0.0 for Node.js 24 support by @salmanmkc in actions/download-artifact#452

New Contributors

@patrikpolyak made their first contribution in actions/download-artifact#440

@salmanmkc made their first contribution in actions/download-artifact#415

Full Changelog: actions/download-artifact@v6.0.0...v7.0.0

v6.0.0

What's Changed

BREAKING CHANGE: this update supports Node v24.x. This is not a breaking change per-se but we're treating it as such.

Update README for download-artifact v5 changes by @yacaovsnc in actions/download-artifact#417

Update README with artifact extraction details by @yacaovsnc in actions/download-artifact#424

Readme: spell out the first use of GHES by @danwkennedy in actions/download-artifact#431

Bump @actions/artifact to v4.0.0

Prepare v6.0.0 by @danwkennedy in actions/download-artifact#438

New Contributors

@danwkennedy made their first contribution in actions/download-artifact#431

Full Changelog: actions/download-artifact@v5...v6.0.0

Commits

37930b1 Merge pull request #452 from actions/download-artifact-v7-release
72582b9 doc: update readme
0d2ec9d chore: release v7.0.0 for Node.js 24 support
fd7ae8f Merge pull request #451 from actions/fix-storage-blob
d484700 chore: restore minimatch.dep.yml license file
03a8080 chore: remove obsolete dependency license files
56fe6d9 chore: update @actions/artifact license file to 5.0.1
8e3ebc4 chore: update package-lock.json with @actions/artifact@5.0.1
1e3c4b4 fix: update @actions/artifact to ^5.0.0 for Node.js 24 punycode fix
458627d chore: use local @actions/artifact package for Node.js 24 testing
Additional commits viewable in compare view

Updates tj-actions/changed-files from 3b04099b21072562f07469c10deb182b24236ca9 to b7ac303c8684d5e668c6c810e61a6fe32a53fe25

Changelog

Sourced from tj-actions/changed-files's changelog.

Changelog

47.0.4 - (2026-02-17)

🔄 Update

Release-tagger action to version 6.0.6 (#2801) (7dee1b0) - (Tonye Jack)

47.0.3 - (2026-02-17)

🔄 Update

Release-tagger action to version 6.0.0 (#2800) (28b28f6) - (Tonye Jack)

⚙️ Miscellaneous Tasks

deps: Bump github/codeql-action from 4.31.10 to 4.32.2 (#2790) (875e6e5) - (dependabot[bot])

47.0.2 - (2026-02-09)

🚀 Features

Add support for excluding symlinks and fix bug with commit not found (#2770) (8c4da28) - (Tonye Jack)

🐛 Bug Fixes

Update test.yml (#2781) (caee9d9) - (Tonye Jack)

🔄 Update

Updated README.md (#2771)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> (7d5bbf4) - (github-actions[bot])

Updated README.md (#2768)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> (b3bb1f8) - (github-actions[bot])

Update README.md (c6a5847) - (Tonye Jack)

⚙️ Miscellaneous Tasks

deps: Bump actions/setup-node from 6.1.0 to 6.2.0 (#2766) (8cba46e) - (dependabot[bot])

deps-dev: Bump @types/node from 25.0.0 to 25.2.2 (#2793) (925972f) - (dependabot[bot])

deps: Bump @stdlib/utils-convert-path from 0.2.2 to 0.2.3 (#2795) (a98754b) - (dependabot[bot])

deps: Bump actions/checkout from 6.0.1 to 6.0.2 (#2777) (9c13e73) - (dependabot[bot])

deps-dev: Bump @types/lodash from 4.17.21 to 4.17.23 (#2759) (16d791c) - (dependabot[bot])

deps-dev: Bump eslint-plugin-jest from 29.11.0 to 29.12.1 (#2756) (8e056de) - (dependabot[bot])

deps: Bump github/codeql-action from 4.31.7 to 4.31.10 (#2761) (078e2bc) - (dependabot[bot])

Update matrix-example.yml (#2752) (2f2f6cf) - (Tonye Jack)

Update dist (#2769) (8262acc) - (Tonye Jack)

deps: Bump @actions/core from 2.0.0 to 2.0.2 (#2757) (daf9d2d) - (dependabot[bot])

... (truncated)

Commits

See full diff in compare view

Updates peter-evans/find-comment from 3.1.0 to 4.0.0

Release notes

Sourced from peter-evans/find-comment's releases.

Find Comment v4.0.0

⚙️ Requires Actions Runner v2.327.1 or later if you are using a self-hosted runner for Node 24 support.

What's Changed

build(deps-dev): bump @types/node from 18.19.28 to 18.19.30 by @dependabot[bot] in peter-evans/find-comment#301

build(deps-dev): bump @types/node from 18.19.30 to 18.19.31 by @dependabot[bot] in peter-evans/find-comment#302

build(deps-dev): bump @types/node from 18.19.31 to 18.19.33 by @dependabot[bot] in peter-evans/find-comment#303

build(deps-dev): bump prettier from 3.2.5 to 3.3.0 by @dependabot[bot] in peter-evans/find-comment#304

build(deps-dev): bump prettier from 3.3.0 to 3.3.1 by @dependabot[bot] in peter-evans/find-comment#305

build(deps-dev): bump @types/node from 18.19.33 to 18.19.34 by @dependabot[bot] in peter-evans/find-comment#306

build(deps-dev): bump prettier from 3.3.1 to 3.3.2 by @dependabot[bot] in peter-evans/find-comment#307

build(deps-dev): bump braces from 3.0.2 to 3.0.3 by @dependabot[bot] in peter-evans/find-comment#308

build(deps-dev): bump ws from 7.5.9 to 7.5.10 by @dependabot[bot] in peter-evans/find-comment#309

build(deps-dev): bump @types/node from 18.19.34 to 18.19.39 by @dependabot[bot] in peter-evans/find-comment#310

build(deps-dev): bump prettier from 3.3.2 to 3.3.3 by @dependabot[bot] in peter-evans/find-comment#311

build(deps-dev): bump eslint-plugin-prettier from 5.1.3 to 5.2.1 by @dependabot[bot] in peter-eva...
Description has been truncated

…pdates Updates the requirements on [actions/checkout](https://github.com/actions/checkout), [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials), [actions/setup-java](https://github.com/actions/setup-java), [gradle/actions](https://github.com/gradle/actions), [actions/upload-artifact](https://github.com/actions/upload-artifact), [actions/download-artifact](https://github.com/actions/download-artifact), [tj-actions/changed-files](https://github.com/tj-actions/changed-files), [peter-evans/find-comment](https://github.com/peter-evans/find-comment), [peter-evans/create-or-update-comment](https://github.com/peter-evans/create-or-update-comment), [aws-actions/setup-sam](https://github.com/aws-actions/setup-sam), [govuk-one-login/devplatform-upload-action](https://github.com/govuk-one-login/devplatform-upload-action), [actions/setup-python](https://github.com/actions/setup-python), [actions/cache](https://github.com/actions/cache) and [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions) to permit the latest version. Updates `actions/checkout` from 4.2.2 to 6.0.2 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v4.2.2...de0fac2) Updates `aws-actions/configure-aws-credentials` from 4.2.0 to 6.0.0 - [Release notes](https://github.com/aws-actions/configure-aws-credentials/releases) - [Changelog](https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md) - [Commits](aws-actions/configure-aws-credentials@v4.2.0...8df5847) Updates `actions/setup-java` from 4.7.1 to 5.2.0 - [Release notes](https://github.com/actions/setup-java/releases) - [Commits](actions/setup-java@v4.7.1...be666c2) Updates `gradle/actions` from 4.4.1 to 5.0.1 - [Release notes](https://github.com/gradle/actions/releases) - [Commits](gradle/actions@v4.4.1...f29f5a9) Updates `actions/upload-artifact` from 4.6.2 to 6.0.0 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@ea165f8...b7c566a) Updates `actions/download-artifact` from 5.0.0 to 7.0.0 - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@634f93c...37930b1) Updates `tj-actions/changed-files` from 3b04099b21072562f07469c10deb182b24236ca9 to b7ac303c8684d5e668c6c810e61a6fe32a53fe25 - [Release notes](https://github.com/tj-actions/changed-files/releases) - [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md) - [Commits](tj-actions/changed-files@3b04099...3b04099) Updates `peter-evans/find-comment` from 3.1.0 to 4.0.0 - [Release notes](https://github.com/peter-evans/find-comment/releases) - [Commits](peter-evans/find-comment@3eae4d3...b30e6a3) Updates `peter-evans/create-or-update-comment` from 4.0.0 to 5.0.0 - [Release notes](https://github.com/peter-evans/create-or-update-comment/releases) - [Commits](peter-evans/create-or-update-comment@71345be...e8674b0) Updates `aws-actions/setup-sam` to d78e1a4a9656d3b223e59b80676a797f20093133 - [Release notes](https://github.com/aws-actions/setup-sam/releases) - [Commits](https://github.com/aws-actions/setup-sam/commits/d78e1a4a9656d3b223e59b80676a797f20093133) Updates `govuk-one-login/devplatform-upload-action` from 3.9.3 to 3.13.0 - [Release notes](https://github.com/govuk-one-login/devplatform-upload-action/releases) - [Commits](govuk-one-login/devplatform-upload-action@v3.9.3...b7bc01e) Updates `actions/setup-python` from 5.6.0 to 6.2.0 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](actions/setup-python@a26af69...a309ff8) Updates `actions/cache` from 4.2.4 to 5.0.3 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](actions/cache@0400d5f...cdf6c1f) Updates `zgosalvez/github-actions-ensure-sha-pinned-actions` from 3.0.25 to 5.0.0 - [Release notes](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases) - [Commits](zgosalvez/github-actions-ensure-sha-pinned-actions@fc87bb5...d5d20e1) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.2 dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha-all-dependencies - dependency-name: aws-actions/configure-aws-credentials dependency-version: 6.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha-all-dependencies - dependency-name: actions/setup-java dependency-version: 5.2.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha-all-dependencies - dependency-name: gradle/actions dependency-version: 5.0.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha-all-dependencies - dependency-name: actions/upload-artifact dependency-version: 6.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha-all-dependencies - dependency-name: actions/download-artifact dependency-version: 7.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha-all-dependencies - dependency-name: tj-actions/changed-files dependency-version: 3b04099b21072562f07469c10deb182b24236ca9 dependency-type: direct:production dependency-group: gha-all-dependencies - dependency-name: peter-evans/find-comment dependency-version: 4.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha-all-dependencies - dependency-name: peter-evans/create-or-update-comment dependency-version: 5.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha-all-dependencies - dependency-name: aws-actions/setup-sam dependency-version: d78e1a4a9656d3b223e59b80676a797f20093133 dependency-type: direct:production dependency-group: gha-all-dependencies - dependency-name: govuk-one-login/devplatform-upload-action dependency-version: 3.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gha-all-dependencies - dependency-name: actions/setup-python dependency-version: 6.2.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha-all-dependencies - dependency-name: actions/cache dependency-version: 5.0.3 dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha-all-dependencies - dependency-name: zgosalvez/github-actions-ensure-sha-pinned-actions dependency-version: 5.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: gha-all-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

github-actions · 2026-02-20T15:52:22Z

Java Tests Skipped

No Java files were changed in this pull request. Java tests will be skipped¹.

Any Java files that are changed in a subsequent commit will trigger the Java tests.

These tests will still show as passing in the PR status check, but will not actually have run. ↩

dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Feb 20, 2026

dependabot bot requested review from a team as code owners February 20, 2026 15:51

dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Feb 20, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Comments

BAU: Bump the gha-all-dependencies group across 1 directory with 14 updates#7876

BAU: Bump the gha-all-dependencies group across 1 directory with 14 updates#7876
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/main/gha-all-dependencies-df82499340

dependabot bot commented on behalf of github Feb 20, 2026

Uh oh!

github-actions bot commented Feb 20, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Comments

Conversation

dependabot bot commented on behalf of github Feb 20, 2026

v6.0.2

What's Changed

v6.0.1

What's Changed

v6.0.0

What's Changed

v6-beta

What's Changed

v5.0.1

What's Changed

v5.0.0

What's Changed

⚠️ Minimum Compatible Runner Version

Changelog

v6.0.2

v6.0.1

v6.0.0

v5.0.1

v5.0.0

v4.3.1

v4.3.0

v4.2.2

v4.2.1

v4.2.0

v4.1.7

v4.1.6

v6.0.0

6.0.0 (2026-02-04)

⚠ BREAKING CHANGES

Features

Bug Fixes

v5.1.1

5.1.1 (2025-11-24)

Miscellaneous Chores

v5.1.0

5.1.0 (2025-10-06)

Features

Bug Fixes

v5.0.0

5.0.0 (2025-09-03)

⚠ BREAKING CHANGES

Features

Changelog

6.0.0 (2026-02-04)

⚠ BREAKING CHANGES

Features

Bug Fixes

5.1.1 (2025-11-24)

Miscellaneous Chores

5.1.0 (2025-10-06)

Features

Bug Fixes

5.0.0 (2025-09-03)

⚠ BREAKING CHANGES

Features

v5.2.0

What's Changed

Enhancement

Documentation Changes

Dependency Updates

New Contributors

v5.1.0

What's Changed

New Features

Bug Fixes & Improvements

Documentation changes

Dependency updates

New Contributors

v5.0.1

What's Changed

v5.0.0

What's Changed

Breaking Changes

Dependency upgrades

v4.4.4

What's Changed

v4.4.3