Skip to content

Bump @octokit/request-error, @actions/github and @octokit/action #20

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

Bump @octokit/request-error, @actions/github and @octokit/action #20

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Feb 14, 2025
edited
Loading

Bumps @octokit/request-error to 5.1.1 and updates ancestor dependencies @octokit/request-error, @actions/github and @octokit/action. These dependencies need to be updated together.

Updates @octokit/request-error from 3.0.1 to 5.1.1

Release notes

Sourced from @​octokit/request-error's releases.

v5.1.1

5.1.1 (2025-02-14)

Bug Fixes

v5.1.0

5.1.0 (2024-04-05)

Bug Fixes

  • upgrade @octokit/types to v13 (3af20bd)

Features

v5.0.1

5.0.1 (2023-09-23)

Bug Fixes

  • deps: update dependency @​octokit/types to v12 (#366) (590fc39)

v5.0.0

5.0.0 (2023-07-07)

Bug Fixes

  • deps: update dependency @​octokit/types to v11 (#348) (372097e)

BREAKING CHANGES

  • deps: upgrade @octokit/types to v11

v4.0.2

4.0.2 (2023-06-16)

Bug Fixes

  • deps: update dependency @​octokit/types to v10 (#343) (28b1958)

... (truncated)

Commits
  • b51ed27 test: ReDos regex vulnerability, reported by @​dayshift
  • 12a14f0 fix: ReDos regex vulnerability, reported by @​dayshift
  • 3af20bd fix: upgrade @octokit/types to v13
  • 94147e8 feat(security): Add provenance (#416)
  • 590fc39 fix(deps): update dependency @​octokit/types to v12 (#366)
  • 4b9c57e ci(action): update peter-evans/create-or-update-comment digest to 46da6c0
  • 710afc3 ci(action): update peter-evans/create-or-update-comment digest to 1f6c514
  • c82c8ce ci(action): update peter-evans/create-or-update-comment digest to 223779b
  • ec24ead ci(action): update peter-evans/create-or-update-comment digest to 46846e5 (#362)
  • 365f18d ci(action): update actions/checkout action to v4
  • Additional commits viewable in compare view

Updates @actions/github from 5.1.1 to 6.0.0

Changelog

Sourced from @​actions/github's changelog.

6.0.0

  • Support the latest Octokit in @​actions/github #1553
    • Drop support of NodeJS v14, v16
Commits

Updates @octokit/action from 4.0.8 to 7.0.0

Release notes

Sourced from @​octokit/action's releases.

v7.0.0

7.0.0 (2024-05-09)

Features

BREAKING CHANGES

  • package is now ESM

v6.1.0

6.1.0 (2024-04-03)

Features

v6.0.7

6.0.7 (2023-12-05)

Bug Fixes

  • deps: update dependency undici to v6 (09d4f08)

v6.0.6

6.0.6 (2023-09-23)

Bug Fixes

  • deps: update octokit monorepo (major) (#543) (d64935b)

v6.0.5

6.0.5 (2023-07-18)

Bug Fixes

  • deps: update octokit monorepo (major) (#513) (3fd4ef6)

v6.0.4

6.0.4 (2023-06-20)

Bug Fixes

... (truncated)

Commits
  • a65b4c3 feat: v7 (#605)
  • 231081b ci(action): update actions/checkout digest to 0ad4b8f
  • eebca24 ci(action): update actions/checkout digest to 44c2b7a
  • 8076b59 build(deps): lock file maintenance (#609)
  • 62d5e4f chore(deps): update dependency esbuild to ^0.21.0 (#610)
  • 6111a68 build(deps): lock file maintenance (#608)
  • aee7aae ci(action): update actions/checkout digest to 0ad4b8f (#606)
  • d291add build(deps): lock file maintenance (#607)
  • 92d2ee0 build(deps): lock file maintenance (#604)
  • a6822e5 ci(action): update actions/add-to-project action to v1.0.1 (#603)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot dependabot bot requested review from wassimk and zhubert as code owners February 14, 2025 23:43
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 14, 2025
@wassimk
Copy link
Member

wassimk commented Feb 19, 2025

I see you PR! This update feels like a YOLO, but that build failure has me wanting to investigate. This is on my list.

@zhubert
Copy link
Contributor

zhubert commented Feb 25, 2025

Several major version changes. I think this is going to take some doing to get working. I re-ran and it had a different error this time (no git).

@zhubert
Copy link
Contributor

zhubert commented Apr 21, 2025

@dependabot rebase

@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Apr 21, 2025

Looks like this PR is already up-to-date with main! If you'd still like to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

@zhubert
Copy link
Contributor

zhubert commented Apr 22, 2025 

Commit and Push
  /usr/bin/git add dist/index.js
  /usr/bin/git commit -m Automated build of e3a1d289726d1170cb938524b53924784705d99d
  [dependabot/npm_and_yarn/multi-0cd0d5a0f8 88291d3] Automated build of e3a1d289726d1170cb938524b53924784705d99d
   1 file changed, 58837 insertions(+), 10141 deletions(-)
  Attempting to push commit
  /usr/bin/git push origin HEAD:dependabot/npm_and_yarn/multi-0cd0d5a0f8
  remote: Permission to planningcenter/plus-one-action.git denied to github-actions[bot].
  fatal: unable to access 'https://github.com/planningcenter/plus-one-action/': The requested URL returned error: 403
  Error: ncc was not successful: Error: The process '/usr/bin/git' failed with exit code 128
  ##[debug]Node Action run completed with exit code 1
  ##[debug]Finishing: Run planningcenter/balto-utils/ncc@v1

@zhubert zhubert mentioned this pull request Apr 22, 2025
Merged
@zhubert
Copy link
Contributor

zhubert commented Apr 23, 2025

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/multi-0cd0d5a0f8 branch from e3a1d28 to 5c417e3 Compare April 23, 2025 17:07
@zhubert
Copy link
Contributor

zhubert commented Apr 23, 2025

@dependabot recreate

@dependabot
Bump @octokit/request-error, @actions/github and @octokit/action
b1581f0 
Bumps [@octokit/request-error](https://github.com/octokit/request-error.js) to 5.1.1 and updates ancestor dependencies [@octokit/request-error](https://github.com/octokit/request-error.js), [@actions/github](https://github.com/actions/toolkit/tree/HEAD/packages/github) and [@octokit/action](https://github.com/octokit/action.js). These dependencies need to be updated together.


Updates `@octokit/request-error` from 3.0.1 to 5.1.1
- [Release notes](https://github.com/octokit/request-error.js/releases)
- [Commits](octokit/request-error.js@v3.0.1...v5.1.1)

Updates `@actions/github` from 5.1.1 to 6.0.0
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/github/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/github)

Updates `@octokit/action` from 4.0.8 to 7.0.0
- [Release notes](https://github.com/octokit/action.js/releases)
- [Commits](octokit/action.js@v4.0.8...v7.0.0)

---
updated-dependencies:
- dependency-name: "@octokit/request-error"
  dependency-type: indirect
- dependency-name: "@actions/github"
  dependency-type: direct:production
- dependency-name: "@octokit/action"
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/multi-0cd0d5a0f8 branch from 5c417e3 to b1581f0 Compare April 23, 2025 17:14
@zhubert
Copy link
Contributor

zhubert commented Apr 23, 2025

It's not wanting to pull in the v2 update. I'm going to close these and create new.

@zhubert zhubert closed this Apr 23, 2025
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Apr 23, 2025

OK, I won't notify you again about this release, but will get in touch when a new version is available.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot bot deleted the dependabot/npm_and_yarn/multi-0cd0d5a0f8 branch April 23, 2025 17:16
@zhubert zhubert mentioned this pull request Apr 23, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@zhubert zhubert Awaiting requested review from zhubert zhubert is a code owner

@wassimk wassimk Awaiting requested review from wassimk wassimk is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@wassimk @zhubert