Skip to content

chore(deps): bump the actions group across 1 directory with 2 updates#128

Merged
justaugustus merged 2 commits into
mainfrom
dependabot/npm_and_yarn/actions-e0e0e2f970
Apr 25, 2026
Merged

chore(deps): bump the actions group across 1 directory with 2 updates#128
justaugustus merged 2 commits into
mainfrom
dependabot/npm_and_yarn/actions-e0e0e2f970

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 25, 2026

Copy link
Copy Markdown
Contributor

Bumps the actions group with 2 updates in the / directory: @actions/exec and @actions/github.

Updates @actions/exec from 1.1.1 to 3.0.0

Changelog

Sourced from @​actions/exec's changelog.

3.0.0

  • Breaking change: Package is now ESM-only
    • CommonJS consumers must use dynamic import() instead of require()

2.0.0

  • Add support for Node 24 #2110
  • Bump @​actions/io dependency from ^1.0.1 to ^2.0.0
Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​actions/exec since your current version.


Updates @actions/github from 8.0.1 to 9.1.1

Changelog

Sourced from @​actions/github's changelog.

9.1.1

  • Bump undici from 6.23.0 to 6.24.0 #2346

9.1.0

  • Append actions_orchestration_id to user-agent when the ACTIONS_ORCHESTRATION_ID environment variable is set #2364

9.0.0

  • Breaking change: Package is now ESM-only
    • CommonJS consumers must use dynamic import() instead of require()
    • Example: const { getOctokit, context } = await import('@actions/github')
  • Fix TypeScript compilation by migrating to ESM, enabling proper imports from @octokit/core/types
Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 25, 2026
@justaugustus

Copy link
Copy Markdown
Member

@dependabot recreate

Bumps the actions group with 2 updates in the / directory: [@actions/exec](https://github.com/actions/toolkit/tree/HEAD/packages/exec) and [@actions/github](https://github.com/actions/toolkit/tree/HEAD/packages/github).


Updates `@actions/exec` from 1.1.1 to 3.0.0
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/exec/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/exec)

Updates `@actions/github` from 8.0.1 to 9.1.1
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/github/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/github)

---
updated-dependencies:
- dependency-name: "@actions/exec"
  dependency-version: 3.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
- dependency-name: "@actions/github"
  dependency-version: 9.1.1
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title chore(deps): bump the actions group with 2 updates chore(deps): bump the actions group across 1 directory with 2 updates Apr 25, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/actions-e0e0e2f970 branch from edf2a90 to a76ce24 Compare April 25, 2026 19:22

@justaugustus justaugustus left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@copilot — Fix the failing checks. You may need to rebuild the dist directory to do this.

Copilot AI commented Apr 25, 2026

Copy link
Copy Markdown
Contributor

@copilot — Fix the failing checks. You may need to rebuild the dist directory to do this.

Fixed in commit 589853a. Both @actions/github 9.1.1 and @actions/exec 3.0.0 are now ESM-only packages, so I created src/github-loader.js and src/exec-loader.js with dynamic import() singletons (following the same pattern as the existing core-loader.js and got-loader.js), updated src/action.js to use them, and rebuilt the dist directory.

Warning

Firewall rules blocked me from connecting to one or more addresses (expand for details)

I tried to connect to the following addresses, but was blocked by firewall rules:

  • iojs.org
    • Triggering command: /usr/bin/curl curl -q --fail --compressed -L -s REDACTED -o - /home/REDACTED/.nvm/package.json /home/REDACTED/.nvm/rename_test.sh /home/REDACTED/.nvm/test (dns block)

If you need me to access, download, or install something from one of these locations, you can either:

@justaugustus justaugustus merged commit 9316d83 into main Apr 25, 2026
2 checks passed
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/actions-e0e0e2f970 branch April 25, 2026 19:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants