Bump the github-action-dependencies group across 1 directory with 6 updates by dependabot[bot] · Pull Request #62 · statisticsnorway/ssb-datadoc-model

dependabot · 2025-05-06T10:51:27Z

Bumps the github-action-dependencies group with 6 updates in the / directory:

Package	From	To
actions/checkout	`3`	`4`
actions/setup-java	`3`	`4`
s4u/maven-settings-action	`2.8.0`	`3.1.0`
actions/create-github-app-token	`1`	`2`
crazy-max/ghaction-github-labeler	`4`	`5`
release-drafter/release-drafter	`5`	`6`

Updates actions/checkout from 3 to 4

Release notes

Sourced from actions/checkout's releases.

v4.0.0

What's Changed

Update default runtime to node20 by @takost in actions/checkout#1436

Support fetching without the --progress option by @simonbaird in actions/checkout#1067

Release 4.0.0 by @takost in actions/checkout#1447

New Contributors

@takost made their first contribution in actions/checkout#1436

@simonbaird made their first contribution in actions/checkout#1067

Full Changelog: actions/checkout@v3...v4.0.0

v3.6.0

What's Changed

Mark test scripts with Bash'isms to be run via Bash by @dscho in actions/checkout#1377

Add option to fetch tags even if fetch-depth > 0 by @RobertWieczoreck in actions/checkout#579

Release 3.6.0 by @luketomlinson in actions/checkout#1437

New Contributors

@RobertWieczoreck made their first contribution in actions/checkout#579

@luketomlinson made their first contribution in actions/checkout#1437

Full Changelog: actions/checkout@v3.5.3...v3.6.0

v3.5.3

What's Changed

Fix: Checkout Issue in self hosted runner due to faulty submodule check-ins by @megamanics in actions/checkout#1196

Fix typos found by codespell by @DimitriPapadopoulos in actions/checkout#1287

Add support for sparse checkouts by @dscho and @dfdez in actions/checkout#1369

Release v3.5.3 by @TingluoHuang in actions/checkout#1376

New Contributors

@megamanics made their first contribution in actions/checkout#1196

@DimitriPapadopoulos made their first contribution in actions/checkout#1287

@dfdez made their first contribution in actions/checkout#1369

Full Changelog: actions/checkout@v3...v3.5.3

v3.5.2

What's Changed

Fix: Use correct API url / endpoint in GHES by @fhammerl in actions/checkout#1289 based on #1286 by @1newsr

Full Changelog: actions/checkout@v3.5.1...v3.5.2

v3.5.1

What's Changed

Improve checkout performance on Windows runners by upgrading @actions/github dependency by @BrettDong in actions/checkout#1246

New Contributors

@BrettDong made their first contribution in actions/checkout#1246

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

Changelog

v4.2.2

url-helper.ts now leverages well-known environment variables by @jww3 in actions/checkout#1941

Expand unit test coverage for isGhes by @jww3 in actions/checkout#1946

v4.2.1

Check out other refs/* by commit if provided, fall back to ref by @orhantoy in actions/checkout#1924

v4.2.0

Add Ref and Commit outputs by @lucacome in actions/checkout#1180

Dependency updates by @dependabot- actions/checkout#1777, actions/checkout#1872

v4.1.7

Bump the minor-npm-dependencies group across 1 directory with 4 updates by @dependabot in actions/checkout#1739

Bump actions/checkout from 3 to 4 by @dependabot in actions/checkout#1697

Check out other refs/* by commit by @orhantoy in actions/checkout#1774

Pin actions/checkout's own workflows to a known, good, stable version. by @jww3 in actions/checkout#1776

v4.1.6

Check platform to set archive extension appropriately by @cory-miller in actions/checkout#1732

v4.1.5

Update NPM dependencies by @cory-miller in actions/checkout#1703

Bump github/codeql-action from 2 to 3 by @dependabot in actions/checkout#1694

Bump actions/setup-node from 1 to 4 by @dependabot in actions/checkout#1696

Bump actions/upload-artifact from 2 to 4 by @dependabot in actions/checkout#1695

README: Suggest user.email to be 41898282+github-actions[bot]@users.noreply.github.com by @cory-miller in actions/checkout#1707

v4.1.4

Disable extensions.worktreeConfig when disabling sparse-checkout by @jww3 in actions/checkout#1692

Add dependabot config by @cory-miller in actions/checkout#1688

Bump the minor-actions-dependencies group with 2 updates by @dependabot in actions/checkout#1693

Bump word-wrap from 1.2.3 to 1.2.5 by @dependabot in actions/checkout#1643

v4.1.3

Check git version before attempting to disable sparse-checkout by @jww3 in actions/checkout#1656

Add SSH user parameter by @cory-miller in actions/checkout#1685

Update actions/checkout version in update-main-version.yml by @jww3 in actions/checkout#1650

v4.1.2

Fix: Disable sparse checkout whenever sparse-checkout option is not present @dscho in actions/checkout#1598

v4.1.1

Correct link to GitHub Docs by @peterbe in actions/checkout#1511

Link to release page from what's new section by @cory-miller in actions/checkout#1514

v4.1.0

Add support for partial checkout filters

... (truncated)

Commits

11bd719 Prepare 4.2.2 Release (#1953)
e3d2460 Expand unit test coverage (#1946)
163217d url-helper.ts now leverages well-known environment variables. (#1941)
eef6144 Prepare 4.2.1 release (#1925)
6b42224 Add workflow file for publishing releases to immutable action package (#1919)
de5a000 Check out other refs/* by commit if provided, fall back to ref (#1924)
d632683 Prepare 4.2.0 release (#1878)
6d193bf Bump braces from 3.0.2 to 3.0.3 (#1777)
db0cee9 Bump the minor-npm-dependencies group across 1 directory with 4 updates (#1872)
b684943 Add Ref and Commit outputs (#1180)
Additional commits viewable in compare view

Updates actions/setup-java from 3 to 4

Release notes

Sourced from actions/setup-java's releases.

v4.0.0

What's Changed

In the scope of this release, the version of the Node.js runtime was updated to 20. The majority of dependencies were updated to the latest versions. From now on, the code for the setup-java will run on Node.js 20 instead of Node.js 16.

Breaking changes

Update Node.js runtime to version 20 by @aparnajyothi-y in actions/setup-java#558

Non-breaking changes

Adding support for microsoft openjdk 21.0.0 by @ralfstuckert in actions/setup-java#546

Update @actions/cache dependency and documentation by @IvanZosimov in actions/setup-java#549

Implementation of the cache-dependency-path option to control caching dependency by @itchyny in actions/setup-java#499

New Contributors

@ralfstuckert made their first contribution in actions/setup-java#546

@itchyny made their first contribution in actions/setup-java#499

Full Changelog: actions/setup-java@v3...v4.0.0

v3.14.1

What's Changed

Add workflow file for publishing releases to immutable action package by @aparnajyothi-y in actions/setup-java#797

Full Changelog: actions/setup-java@v3...v3.14.1

v3.14.0

What's Changed

Upgrade @action/cache to 4.0.3 by @aparnajyothi-y in actions/setup-java#790. In scope of this release we updated actions/cache package to ensure continued support and compatibility, as older versions of the package are now deprecated. For more information please refer to the toolkit/cache.

Full Changelog: actions/setup-java@v3...v3.14.0

v3.13.0

What's changed

In the scope of this release, support for Dragonwell JDK was added by @Accelerator1996 in actions/setup-java#532
steps:
 - name: Checkout
   uses: actions/checkout@v3
 - name: Setup-java
   uses: actions/setup-java@v3
   with:
     distribution: 'dragonwell'
     java-version: '17'

... (truncated)

Commits

c5195ef actions/cache upgrade to 4.0.3 (#773)
dd38875 Bump ts-jest from 29.1.2 to 29.2.5 (#743)
148017a Bump @actions/glob from 0.4.0 to 0.5.0 (#744)
3b6c050 Remove duplicated GraalVM section in documentation (#716)
b8ebb8b upgrade @action/cache from 4.0.0 to 4.0.2 (#766)
799ee7c Add Documentation to Recommend Using GraalVM JDK 17 Version to 17.0.12 to Ali...
3a4f6e1 Bump @types/jest from 29.5.12 to 29.5.14 (#729)
25f376e Bump actions/publish-immutable-action from 0.0.3 to 0.0.4 (#727)
d4e4b6b Bump @actions/http-client from 2.2.1 to 2.2.3 (#728)
28b532b Create dependabot.yml (#722)
Additional commits viewable in compare view

Updates s4u/maven-settings-action from 2.8.0 to 3.1.0

Release notes

Sourced from s4u/maven-settings-action's releases.

v3.1.0

What's Changed

🔥 New features

#279 adding auth details for proxy (#338) @Gozke

Resolves s4u/maven-settings-action4, plugin repositories support (#349) @pwoodworth

🔨 Maintenance

Use JDK 17 for testing (#333) @slawekjaranowski

🧰 Dependency updates

Bump undici from 5.28.2 to 5.28.3 (#323) @dependabot

Bump eslint from 8.56.0 to 8.57.0 (#324) @dependabot

Bump undici from 5.28.3 to 5.28.4 (#325) @dependabot

Bump braces from 3.0.2 to 3.0.3 (#332) @dependabot

Update project dependencies (#350) @slawekjaranowski

Bump eslint from 8.57.1 to 9.14.0 (#352) @dependabot

Updates dependencies (#354) @slawekjaranowski

❤️ Thanks

Many thanks for collaboration on this release for: @Gozke, @pwoodworth and @slawekjaranowski

v3.0.0

What's Changed

🔥 New features

Add support for custom repositories #319

Upgrade Node runtime to 20 #320

Use Node 20 by Action #322

🧰 Dependency updates

Bump eslint from 8.27.0 to 8.28.0 #259

Bump eslint from 8.28.0 to 8.29.0 #261

Bump eslint from 8.29.0 to 8.30.0 #262

Bump json5 from 2.2.1 to 2.2.3 #264

Bump eslint from 8.30.0 to 8.32.0 #265

Bump eslint from 8.32.0 to 8.33.0 #268

Bump eslint from 8.33.0 to 8.34.0 #271

Bump eslint from 8.34.0 to 8.35.0 #273

Bump eslint from 8.35.0 to 8.36.0 #275

Bump eslint from 8.36.0 to 8.37.0 #276

Bump @xmldom/xmldom from 0.8.6 to 0.8.7 #277

Bump eslint from 8.37.0 to 8.38.0 #280

Bump eslint from 8.38.0 to 8.39.0 #281

Bump eslint from 8.39.0 to 8.40.0 #282

... (truncated)

Commits

64e42c4 update dependency after merge from master
a30fd1b Merge remote-tracking branch 'origin/master' into releases/v3
13bd1e5 prepare release 3.1.0
ceff4e7 Add a MAINTENANCE.md doc
ec0855f Updates dependencies
074e0bf Resolves s4u/maven-settings-action4, plugin repositories support
06520eb #279 adding auth details for proxy
45ea8e6 Bump eslint from 8.57.1 to 9.14.0 (#352)
adfd5fd Update project dependencies
5a79602 Bump braces from 3.0.2 to 3.0.3
Additional commits viewable in compare view

Updates actions/create-github-app-token from 1 to 2

Release notes

Sourced from actions/create-github-app-token's releases.

v2.0.0

2.0.0 (2025-04-03)

feat!: remove deprecated inputs (#213) (5cc811b)

BREAKING CHANGES

Removed deprecated inputs (app_id, private_key, skip_token_revoke) and made app-id and private-key required in the action configuration.

v1.12.0

1.12.0 (2025-03-27)

Features

permissions (#168) (0e0aa99)

v1.11.7

1.11.7 (2025-03-20)

Bug Fixes

deps: bump undici from 5.28.4 to 7.5.0 (#214) (a24b46a)

v1.11.6

1.11.6 (2025-03-03)

Bug Fixes

deps: bump the production-dependencies group with 2 updates (#210) (1ff1dea)

v1.11.5

1.11.5 (2025-02-15)

Bug Fixes

... (truncated)

Commits

df432ce build(release): 2.0.6 [skip ci]
3336784 fix: replace - with _ (#246)
db3cdf4 build(release): 2.0.5 [skip ci]
d64d7d7 fix(deps): bump the production-dependencies group with 3 updates (#240)
1b6f53e build(deps-dev): bump the development-dependencies group across 1 directory w...
061a84d build(deps-dev): bump @octokit/openapi from 18.2.0 to 19.0.0 (#242)
c8f34a6 build(deps): bump stefanzweifel/git-auto-commit-action from 5.1.0 to 5.2.0 in...
4821f52 build(release): 2.0.4 [skip ci]
2950cbc fix: permission input handling (#243)
30bf625 build(release): 2.0.3 [skip ci]
Additional commits viewable in compare view

Updates crazy-max/ghaction-github-labeler from 4 to 5

Release notes

Sourced from crazy-max/ghaction-github-labeler's releases.

v5.0.0

Node 20 as default runtime (requires Actions Runner v2.308.0 or later) by @crazy-max in crazy-max/ghaction-github-labeler#199

Full Changelog: crazy-max/ghaction-github-labeler@v4.2.0...v5.0.0

v4.2.0

Use fixture for repo labels test by @crazy-max in crazy-max/ghaction-github-labeler#192

Bump http-cache-semantics from 4.1.0 to 4.1.1 in crazy-max/ghaction-github-labeler#183

Bump json5 from 2.2.1 to 2.2.3 in crazy-max/ghaction-github-labeler#181

Bump minimatch from 3.0.4 to 3.1.2 in crazy-max/ghaction-github-labeler#182

Bump semver from 5.7.1 to 5.7.2 in crazy-max/ghaction-github-labeler#187

Bump word-wrap from 1.2.3 to 1.2.5 in crazy-max/ghaction-github-labeler#190

Update yarn to 3.5.1 by @crazy-max in crazy-max/ghaction-github-labeler#186 crazy-max/ghaction-github-labeler#177

Update dev dependencies by @crazy-max in crazy-max/ghaction-github-labeler#179

Full Changelog: crazy-max/ghaction-github-labeler@v4.1.0...v4.2.0

v4.1.0

Bump @actions/core from 1.6.0 to 1.10.0 (#170 #174)

Bump @actions/github from 5.0.1 to 5.1.1 (#175)

Full Changelog: crazy-max/ghaction-github-labeler@v4.0.0...v4.1.0

Commits

24d110a Merge pull request #229 from crazy-max/dependabot/npm_and_yarn/octokit/plugin...
38fb29f chore: update generated content
0113fc2 chore(deps): bump @octokit/plugin-paginate-rest from 9.2.1 to 9.2.2
42f774e Merge pull request #228 from crazy-max/dependabot/npm_and_yarn/octokit/reques...
9983992 chore(deps): bump @octokit/request-error from 5.1.0 to 5.1.1
32d1878 Merge pull request #232 from crazy-max/dependabot/npm_and_yarn/octokit/reques...
3faa845 chore: update generated content
16efe04 Merge pull request #233 from crazy-max/ci-fix-codecov
7f6122b ci: fix test workflow
2ea799d chore(deps): bump @octokit/request from 8.4.0 to 8.4.1
Additional commits viewable in compare view

Updates release-drafter/release-drafter from 5 to 6

Release notes

Sourced from release-drafter/release-drafter's releases.

v6.0.0

What's Changed

Update Node.js to 20 (#1379) @massongit

Full Changelog: release-drafter/release-drafter@v5.25.0...v6.0.0

v6.0.0-beta.1

Prerelease of v6, first release of the CLI, feel free to provide feedback in the pull request: release-drafter/release-drafter#1204

v5.25.0

What's Changed

New

add prerelease increment behavior (#1303) @neilime

add latest input (#1348) @o-mago

Full Changelog: release-drafter/release-drafter@v5.24.0...v5.25.0

v5.24.0

What's Changed

New

Add release version to github action output (#1300) @mehdihadeli

Bug Fixes

fix(release): strip prefix before comparing version (#1255) @neilime

Full Changelog: release-drafter/release-drafter@v5.23.0...v5.24.0

v5.23.0

What's Changed

New

Add include-pre-releases configuration option (#1302) @robbinjanssen

Full Changelog: release-drafter/release-drafter@v5.22.0...v5.23.0

v5.22.0

What's Changed

New

Only use last full release when drafting (#1240) @ssbarnea

... (truncated)

Commits

b1476f6 v6.1.0
d7328d2 Add config option for pull-request-limit (#1362)
5faffa9 docs: Fix Fork Link (#1412)
a914231 Ensure support new main branch name (#1079)
d6eceac Fix: Correctly mention bot accounts in release notes (#1376)
41c11a2 update schema generation and update schema to draft 07 (#1422)
8296e40 fix typo: therelease (#1407)
0ad4f70 Document action outputs introduced in #1300 (#1406)
378bacb Update README.md (#1421)
c139411 Update only drafts with the same prerelease status (#1385)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…pdates Bumps the github-action-dependencies group with 6 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `3` | `4` | | [actions/setup-java](https://github.com/actions/setup-java) | `3` | `4` | | [s4u/maven-settings-action](https://github.com/s4u/maven-settings-action) | `2.8.0` | `3.1.0` | | [actions/create-github-app-token](https://github.com/actions/create-github-app-token) | `1` | `2` | | [crazy-max/ghaction-github-labeler](https://github.com/crazy-max/ghaction-github-labeler) | `4` | `5` | | [release-drafter/release-drafter](https://github.com/release-drafter/release-drafter) | `5` | `6` | Updates `actions/checkout` from 3 to 4 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v3...v4) Updates `actions/setup-java` from 3 to 4 - [Release notes](https://github.com/actions/setup-java/releases) - [Commits](actions/setup-java@v3...v4) Updates `s4u/maven-settings-action` from 2.8.0 to 3.1.0 - [Release notes](https://github.com/s4u/maven-settings-action/releases) - [Commits](s4u/maven-settings-action@v2.8.0...v3.1.0) Updates `actions/create-github-app-token` from 1 to 2 - [Release notes](https://github.com/actions/create-github-app-token/releases) - [Commits](actions/create-github-app-token@v1...v2) Updates `crazy-max/ghaction-github-labeler` from 4 to 5 - [Release notes](https://github.com/crazy-max/ghaction-github-labeler/releases) - [Commits](crazy-max/ghaction-github-labeler@v4...v5) Updates `release-drafter/release-drafter` from 5 to 6 - [Release notes](https://github.com/release-drafter/release-drafter/releases) - [Commits](release-drafter/release-drafter@v5...v6) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-action-dependencies - dependency-name: actions/setup-java dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-action-dependencies - dependency-name: s4u/maven-settings-action dependency-version: 3.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-action-dependencies - dependency-name: actions/create-github-app-token dependency-version: '2' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-action-dependencies - dependency-name: crazy-max/ghaction-github-labeler dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-action-dependencies - dependency-name: release-drafter/release-drafter dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-action-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2025-10-01T12:25:23Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels May 6, 2025

dependabot bot requested review from a team and BjornRoarJoneid as code owners May 6, 2025 10:51

github-actions bot added the ci Continuous Integration label May 6, 2025

dependabot bot force-pushed the dependabot/github_actions/github-action-dependencies-3dc0eecf5e branch from 45ce120 to 800e22d Compare May 7, 2025 09:18

dependabot bot force-pushed the dependabot/github_actions/github-action-dependencies-3dc0eecf5e branch from 800e22d to 7b8e029 Compare May 21, 2025 07:33

dependabot bot force-pushed the dependabot/github_actions/github-action-dependencies-3dc0eecf5e branch from 7b8e029 to e69edac Compare June 1, 2025 13:08

dependabot bot force-pushed the dependabot/github_actions/github-action-dependencies-3dc0eecf5e branch from e69edac to dbc46fe Compare July 1, 2025 12:45

dependabot bot force-pushed the dependabot/github_actions/github-action-dependencies-3dc0eecf5e branch from dbc46fe to f55409f Compare September 2, 2025 01:37

dependabot bot closed this Oct 1, 2025

dependabot bot deleted the dependabot/github_actions/github-action-dependencies-3dc0eecf5e branch October 1, 2025 12:25

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the github-action-dependencies group across 1 directory with 6 updates#62

Bump the github-action-dependencies group across 1 directory with 6 updates#62
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/github-action-dependencies-3dc0eecf5e

dependabot bot commented on behalf of github May 6, 2025 •

edited

Loading

Uh oh!

dependabot bot commented on behalf of github Oct 1, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github May 6, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v4.0.0

What's Changed

New Contributors

v3.6.0

What's Changed

New Contributors

v3.5.3

What's Changed

New Contributors

v3.5.2

What's Changed

v3.5.1

What's Changed

New Contributors

Changelog

v4.2.2

v4.2.1

v4.2.0

v4.1.7

v4.1.6

v4.1.5

v4.1.4

v4.1.3

v4.1.2

v4.1.1

v4.1.0

v4.0.0

What's Changed

Breaking changes

Non-breaking changes

New Contributors

v3.14.1

What's Changed

v3.14.0

What's Changed

v3.13.0

What's changed

v3.1.0

What's Changed

🔥 New features

🔨 Maintenance

🧰 Dependency updates

❤️ Thanks

v3.0.0

What's Changed

🔥 New features

🧰 Dependency updates

v2.0.0

2.0.0 (2025-04-03)

BREAKING CHANGES

v1.12.0

1.12.0 (2025-03-27)

Features

v1.11.7

1.11.7 (2025-03-20)

Bug Fixes

v1.11.6

1.11.6 (2025-03-03)

Bug Fixes

v1.11.5

1.11.5 (2025-02-15)

Bug Fixes

v5.0.0

v4.2.0

v4.1.0

v6.0.0

What's Changed

v6.0.0-beta.1

v5.25.0

What's Changed

New

v5.24.0

What's Changed

New

Bug Fixes

v5.23.0

What's Changed

dependabot bot commented on behalf of github May 6, 2025 •

edited

Loading