From ad36f0accff5399a013965ee981534ef9cea48ae Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 1 Mar 2026 05:09:15 +0000 Subject: [PATCH] build(deps): Bump the ci-dependencies group across 5 directories with 6 updates Bumps the ci-dependencies group with 1 update in the /.github/actions/install_badabump directory: [actions/setup-python](https://github.com/actions/setup-python). Bumps the ci-dependencies group with 2 updates in the /.github/actions/install_python_and_poetry directory: [actions/setup-python](https://github.com/actions/setup-python) and [actions/cache](https://github.com/actions/cache). Bumps the ci-dependencies group with 1 update in the /.github/actions/run_pre_commit directory: [actions/cache](https://github.com/actions/cache). Bumps the ci-dependencies group with 1 update in the /.github/actions/run_tox directory: [actions/cache](https://github.com/actions/cache). Bumps the ci-dependencies group with 4 updates in the /.github/workflows directory: [actions/checkout](https://github.com/actions/checkout), [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish), [actions/labeler](https://github.com/actions/labeler) and [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request). Updates `actions/setup-python` from 5.6.0 to 6.2.0 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v5.6.0...v6.2.0) Updates `actions/setup-python` from 5.6.0 to 6.2.0 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v5.6.0...v6.2.0) Updates `actions/cache` from 4.2.4 to 5.0.3 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/v4.2.4...v5.0.3) Updates `actions/cache` from 4.2.4 to 5.0.3 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/v4.2.4...v5.0.3) Updates `actions/cache` from 4.2.4 to 5.0.3 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/v4.2.4...v5.0.3) Updates `actions/checkout` from 5.0.0 to 6.0.2 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v5.0.0...v6.0.2) Updates `pypa/gh-action-pypi-publish` from 1.12.4 to 1.13.0 - [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases) - [Commits](https://github.com/pypa/gh-action-pypi-publish/compare/v1.12.4...v1.13.0) Updates `actions/labeler` from 5.0.0 to 6.0.1 - [Release notes](https://github.com/actions/labeler/releases) - [Commits](https://github.com/actions/labeler/compare/v5.0.0...v6.0.1) Updates `peter-evans/create-pull-request` from 7.0.8 to 8.1.0 - [Release notes](https://github.com/peter-evans/create-pull-request/releases) - [Commits](https://github.com/peter-evans/create-pull-request/compare/v7.0.8...v8.1.0) --- updated-dependencies: - dependency-name: actions/setup-python dependency-version: 6.2.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: ci-dependencies - dependency-name: actions/setup-python dependency-version: 6.2.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: ci-dependencies - dependency-name: actions/cache dependency-version: 5.0.3 dependency-type: direct:production update-type: version-update:semver-major dependency-group: ci-dependencies - dependency-name: actions/cache dependency-version: 5.0.3 dependency-type: direct:production update-type: version-update:semver-major dependency-group: ci-dependencies - dependency-name: actions/cache dependency-version: 5.0.3 dependency-type: direct:production update-type: version-update:semver-major dependency-group: ci-dependencies - dependency-name: actions/checkout dependency-version: 6.0.2 dependency-type: direct:production update-type: version-update:semver-major dependency-group: ci-dependencies - dependency-name: pypa/gh-action-pypi-publish dependency-version: 1.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: ci-dependencies - dependency-name: actions/labeler dependency-version: 6.0.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: ci-dependencies - dependency-name: peter-evans/create-pull-request dependency-version: 8.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: ci-dependencies ... Signed-off-by: dependabot[bot] --- .github/actions/install_badabump/action.yml | 2 +- .github/actions/install_python_and_poetry/action.yml | 4 ++-- .github/actions/run_pre_commit/action.yml | 2 +- .github/actions/run_tox/action.yml | 2 +- .github/workflows/ci.yml | 4 ++-- .github/workflows/ci_package.yml | 4 ++-- .github/workflows/ci_release.yml | 2 +- .github/workflows/ci_verify_docs_build.yml | 2 +- .github/workflows/labeler.yml | 2 +- .github/workflows/release_pr.yml | 4 ++-- .github/workflows/release_tag.yml | 2 +- 11 files changed, 15 insertions(+), 15 deletions(-) diff --git a/.github/actions/install_badabump/action.yml b/.github/actions/install_badabump/action.yml index f7a4011..fbac37a 100644 --- a/.github/actions/install_badabump/action.yml +++ b/.github/actions/install_badabump/action.yml @@ -12,7 +12,7 @@ runs: steps: - id: "python" name: "Install Python" - uses: "actions/setup-python@v5.6.0" + uses: "actions/setup-python@v6.2.0" with: python-version-file: ".python-version" diff --git a/.github/actions/install_python_and_poetry/action.yml b/.github/actions/install_python_and_poetry/action.yml index e577a01..55957dc 100644 --- a/.github/actions/install_python_and_poetry/action.yml +++ b/.github/actions/install_python_and_poetry/action.yml @@ -39,7 +39,7 @@ runs: steps: - id: "python" name: "Install Python" - uses: "actions/setup-python@v5.6.0" + uses: "actions/setup-python@v6.2.0" with: python-version: "${{ inputs.python-version }}" python-version-file: "${{ inputs.python-version-file }}" @@ -49,7 +49,7 @@ runs: run: "pipx install --python='${{ steps.python.outputs.python-path }}' poetry==${{ inputs.poetry-version }}" - name: "Cache venv" - uses: "actions/cache@v4.2.4" + uses: "actions/cache@v5.0.3" with: path: "./.venv/" key: "venv-${{ runner.os }}-${{ steps.python.outputs.python-version }}-${{ hashFiles('poetry.lock') }}${{ inputs.cache-key-suffix }}" diff --git a/.github/actions/run_pre_commit/action.yml b/.github/actions/run_pre_commit/action.yml index c1b89e5..130bd70 100644 --- a/.github/actions/run_pre_commit/action.yml +++ b/.github/actions/run_pre_commit/action.yml @@ -14,7 +14,7 @@ runs: shell: "bash" - name: "Cache mypy" - uses: "actions/cache@v4.2.4" + uses: "actions/cache@v5.0.3" with: path: "./.mypy_cache/" key: "mypy-${{ runner.os }}-${{ inputs.python-version }}" diff --git a/.github/actions/run_tox/action.yml b/.github/actions/run_tox/action.yml index e2a3dcc..56126e0 100644 --- a/.github/actions/run_tox/action.yml +++ b/.github/actions/run_tox/action.yml @@ -41,7 +41,7 @@ runs: shell: "bash" - name: "Cache tox" - uses: "actions/cache@v4.2.4" + uses: "actions/cache@v5.0.3" with: path: ".tox/" key: "tox-${{ inputs.python-version }}" diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index ebf7c70..331581b 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -29,7 +29,7 @@ jobs: runs-on: "${{ matrix.os }}" steps: - - uses: "actions/checkout@v5.0.0" + - uses: "actions/checkout@v6.0.2" - id: "python_and_poetry" uses: "./.github/actions/install_python_and_poetry" @@ -59,7 +59,7 @@ jobs: runs-on: "ubuntu-24.04" steps: - - uses: "actions/checkout@v5.0.0" + - uses: "actions/checkout@v6.0.2" - id: "python_and_poetry" uses: "./.github/actions/install_python_and_poetry" diff --git a/.github/workflows/ci_package.yml b/.github/workflows/ci_package.yml index 7ba31f8..b601302 100644 --- a/.github/workflows/ci_package.yml +++ b/.github/workflows/ci_package.yml @@ -16,7 +16,7 @@ jobs: runs-on: "ubuntu-24.04" steps: - - uses: "actions/checkout@v5.0.0" + - uses: "actions/checkout@v6.0.2" - id: "python_and_poetry" uses: "./.github/actions/install_python_and_poetry" @@ -34,6 +34,6 @@ jobs: - name: "Publish package" if: "${{ startsWith(github.ref, 'refs/tags/') }}" - uses: "pypa/gh-action-pypi-publish@v1.12.4" + uses: "pypa/gh-action-pypi-publish@v1.13.0" with: attestations: false # Disable attestations until publishing to PyPI from reusable workflow will be fixed diff --git a/.github/workflows/ci_release.yml b/.github/workflows/ci_release.yml index 649f14e..09a105c 100644 --- a/.github/workflows/ci_release.yml +++ b/.github/workflows/ci_release.yml @@ -18,7 +18,7 @@ jobs: runs-on: "ubuntu-24.04" steps: - - uses: "actions/checkout@v5.0.0" + - uses: "actions/checkout@v6.0.2" - name: "Fetch git data" run: | diff --git a/.github/workflows/ci_verify_docs_build.yml b/.github/workflows/ci_verify_docs_build.yml index 3c2e1c1..f798ef1 100644 --- a/.github/workflows/ci_verify_docs_build.yml +++ b/.github/workflows/ci_verify_docs_build.yml @@ -14,7 +14,7 @@ jobs: runs-on: "ubuntu-24.04" steps: - - uses: "actions/checkout@v5.0.0" + - uses: "actions/checkout@v6.0.2" - id: "python_and_poetry" uses: "./.github/actions/install_python_and_poetry" diff --git a/.github/workflows/labeler.yml b/.github/workflows/labeler.yml index 3d380a2..b69e2eb 100644 --- a/.github/workflows/labeler.yml +++ b/.github/workflows/labeler.yml @@ -18,4 +18,4 @@ jobs: runs-on: "ubuntu-24.04" steps: - - uses: "actions/labeler@v5.0.0" + - uses: "actions/labeler@v6.0.1" diff --git a/.github/workflows/release_pr.yml b/.github/workflows/release_pr.yml index 0865a1d..97c22b6 100644 --- a/.github/workflows/release_pr.yml +++ b/.github/workflows/release_pr.yml @@ -23,7 +23,7 @@ jobs: runs-on: "ubuntu-24.04" steps: - - uses: "actions/checkout@v5.0.0" + - uses: "actions/checkout@v6.0.2" with: ref: "main" @@ -47,7 +47,7 @@ jobs: private_key: "${{ secrets.BADABUMP_APP_PRIVATE_KEY }}" - name: "Create pull request with changed files" - uses: "peter-evans/create-pull-request@v7.0.8" + uses: "peter-evans/create-pull-request@v8.1.0" with: token: "${{ steps.token.outputs.token }}" commit-message: | diff --git a/.github/workflows/release_tag.yml b/.github/workflows/release_tag.yml index 4e29512..2bc57d5 100644 --- a/.github/workflows/release_tag.yml +++ b/.github/workflows/release_tag.yml @@ -25,7 +25,7 @@ jobs: app_id: "${{ secrets.BADABUMP_APP_ID }}" private_key: "${{ secrets.BADABUMP_APP_PRIVATE_KEY }}" - - uses: "actions/checkout@v5.0.0" + - uses: "actions/checkout@v6.0.2" with: ref: "main" token: "${{ steps.token.outputs.token }}"