chore(deps): bump the dependencies group with 3 updates

[dependabot]

Bumps the dependencies group with 3 updates: github/ospo-reusable-workflows, goreleaser/goreleaser-action and actions/setup-node.

Updates github/ospo-reusable-workflows from 0.4.6 to 0.5.3

Release notes

Sourced from github/ospo-reusable-workflows's releases.

v0.5.3

Changelog

🧰 Maintenance

• chore(deps): bump amannn/action-semantic-pull-request from 6.0.1 to 6.1.0 in the dependencies group @dependabot[bot] (#68)
• chore(deps): bump actions/checkout from 4 to 5 @dependabot[bot] (#66)

See details of all code changes since previous release

v0.5.2

Changelog

🐛 Bug Fixes

• fix: add secret/token to major-version-updater @​jmeridth (#57)

🧰 Maintenance

• chore(deps): bump docker/login-action from 3.4.0 to 3.5.0 in the dependencies group @dependabot[bot] (#64)
• chore(deps): bump docker/setup-buildx-action from 3.11.0 to 3.11.1 in the dependencies group @dependabot[bot] (#63)
• chore(deps): bump docker/setup-buildx-action from 3.10.0 to 3.11.0 in the dependencies group @dependabot[bot] (#62)

See details of all code changes since previous release

v0.5.1

Changelog

🧰 Maintenance

• chore(deps): bump docker/build-push-action from 6.17.0 to 6.18.0 in the dependencies group @dependabot[bot] (#60)
• chore(deps): bump docker/build-push-action from 6.16.0 to 6.17.0 in the dependencies group @dependabot[bot] (#59)
• chore(deps): bump docker/build-push-action from 6.15.0 to 6.16.0 in the dependencies group @dependabot[bot] (#58)

See details of all code changes since previous release

v0.5.0

Changelog

🚀 Features

• feat: major version updater @​jmeridth (#55)

🧰 Maintenance

• chore(deps): bump abirismyname/create-discussion from 1.2.0 to 2.1.0 @dependabot[bot] (#54)
• chore(deps): bump docker/login-action from 3.3.0 to 3.4.0 in the dependencies group @dependabot[bot] (#52)
• chore(deps): bump the dependencies group with 2 updates @dependabot[bot] (#51)

See details of all code changes since previous release

Commits

• c9afb9b chore(deps): bump amannn/action-semantic-pull-request (#68)
• 23b65d1 chore(deps): bump amannn/action-semantic-pull-request (#67)
• c49e0aa chore(deps): bump actions/checkout from 4 to 5 (#66)
• ebb4e21 chore(deps): bump docker/login-action in the dependencies group (#64)
• 4965fba chore(deps): bump docker/setup-buildx-action in the dependencies group (#63)
• ab23c8c chore(deps): bump docker/setup-buildx-action in the dependencies group (#62)
• 6d41e9f fix: add secret/token to major-version-updater (#57)
• 6f158f2 chore(deps): bump docker/build-push-action in the dependencies group (#60)
• b2dd1e4 chore(deps): bump docker/build-push-action in the dependencies group (#59)
• be70262 Merge pull request #58 from github/dependabot/github_actions/dependencies-5f5...
• Additional commits viewable in compare view

Updates goreleaser/goreleaser-action from 6.3.0 to 6.4.0

Release notes

Sourced from goreleaser/goreleaser-action's releases.

v6.4.0

What's Changed

• ci: set contents read as default workflow permissions by @​crazy-max in goreleaser/goreleaser-action#494
• fix: support .config directory for goreleaser config files by @​haya14busa in goreleaser/goreleaser-action#500
• chore(deps): bump semver from 7.7.1 to 7.7.2 by @​dependabot[bot] in goreleaser/goreleaser-action#495
• chore(deps): bump brace-expansion from 1.1.11 to 1.1.12 by @​dependabot[bot] in goreleaser/goreleaser-action#498
• fix: do not get releases.json if version is specific by @​caarlos0 in goreleaser/goreleaser-action#502
• chore(deps): bump undici from 5.28.5 to 5.29.0 by @​dependabot[bot] in goreleaser/goreleaser-action#496
• feat: retry downloading releases json by @​caarlos0 in goreleaser/goreleaser-action#503

New Contributors

• @​haya14busa made their first contribution in goreleaser/goreleaser-action#500

Full Changelog: goreleaser/goreleaser-action@v6.3.0...v6.4.0

Commits

• e435ccd feat: retry downloading releases json (#503)
• 2ff5850 chore(deps): bump undici from 5.28.5 to 5.29.0 (#496)
• 9a6cd01 fix: do not get releases.json if version is specific (#502)
• a386515 chore(deps): bump brace-expansion from 1.1.11 to 1.1.12 (#498)
• ca48102 chore(deps): bump semver from 7.7.1 to 7.7.2 (#495)
• 0931acf fix: support .config directory for goreleaser config files (#500)
• 90c43f2 ci: set contents read as default workflow permissions (#494)
• See full diff in compare view

Updates actions/setup-node from 4.3.0 to 4.4.0

Release notes

Sourced from actions/setup-node's releases.

v4.4.0

What's Changed

Bug fixes:

• Make eslint-compact matcher compatible with Stylelint by @​FloEdelmann in actions/setup-node#98
• Add support for indented eslint output by @​fregante in actions/setup-node#1245

Enhancement:

• Support private mirrors by @​marco-ippolito in actions/setup-node#1240

Dependency update:

• Upgrade @​action/cache from 4.0.2 to 4.0.3 by @​aparnajyothi-y in actions/setup-node#1262

New Contributors

• @​FloEdelmann made their first contribution in actions/setup-node#98
• @​fregante made their first contribution in actions/setup-node#1245
• @​marco-ippolito made their first contribution in actions/setup-node#1240

Full Changelog: actions/setup-node@v4...v4.4.0

Commits

• 49933ea Bump @​action/cache from 4.0.2 to 4.0.3 (#1262)
• e3ce749 feat: support private mirrors (#1240)
• 40337cb Add support for indented eslint output (#1245)
• 1ccdddc Make eslint-compact matcher compatible with Stylelint (#98)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions