Skip to content

ci: github: bump the actions-deps group across 1 directory with 2 updates#348

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions-deps-721cc7e55d
Closed

ci: github: bump the actions-deps group across 1 directory with 2 updates#348
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions-deps-721cc7e55d

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 13, 2025
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps the actions-deps group with 2 updates in the / directory: aws-actions/configure-aws-credentials and zephyrproject-rtos/action-manifest.

Updates aws-actions/configure-aws-credentials from 4.1.0 to 4.2.0

Release notes

Sourced from aws-actions/configure-aws-credentials's releases.

v4.2.0

4.2.0 (2025-05-06)

Features

  • add Expiration field to Outputs (a4f3267)
  • Document role-duration-seconds range (5a0cf01)
  • support action inputs as environment variables (#1338) (2c168ad)

Bug Fixes

  • make sure action builds, also fix dependabot autoapprove (c401b8a)
  • role chaning on mulitple runs (#1340) (9e38641)
Changelog

Sourced from aws-actions/configure-aws-credentials's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

4.2.0 (2025-05-06)

Features

  • add Expiration field to Outputs (a4f3267)
  • Document role-duration-seconds range (5a0cf01)
  • support action inputs as environment variables (#1338) (2c168ad)

Bug Fixes

  • make sure action builds, also fix dependabot autoapprove (c401b8a)
  • role chaning on mulitple runs (#1340) (9e38641)

4.1.0 (2025-02-08)

Features

Bug Fixes

4.0.3 (2025-01-27)

Features

  • added release-please action config (0f88004)

Bug Fixes

  • add id-token permission to automerge (97834a4)
  • cpy syntax on npm package (#1195) (83b5a56)
  • force push packaged files to main (bfd2185)

Miscellaneous Chores

... (truncated)

Commits
  • f24d719 Merge pull request #1331 from aws-actions/release-please--branches--main--com...
  • f6095d9 Merge branch 'main' into release-please--branches--main--components--configur...
  • df1fa04 chore(deps-dev): bump memfs from 4.17.0 to 4.17.1 (#1348)
  • 1c39738 chore(deps-dev): bump @​types/node from 22.15.3 to 22.15.11 (#1345)
  • 21e0c4b chore(main): release 4.2.0
  • b0f2baf chore: Update dist
  • 4320d1b chore(deps): bump @​aws-sdk/client-sts from 3.798.0 to 3.803.0 (#1346)
  • 5d1959c chore(deps): bump vite from 6.3.2 to 6.3.4 (#1344)
  • 3ecfae8 chore: Update dist
  • 2f26d75 chore(deps): bump @​aws-sdk/client-sts from 3.787.0 to 3.798.0 (#1342)
  • Additional commits viewable in compare view

Updates zephyrproject-rtos/action-manifest from 1.7.0 to 1.8.0

Commits
  • 1dab8ef action: Fix when unreachable repo and no allowed specified
  • 2107c9d action: Allow specifying a list of allowed unreachable repos
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
ci: github: bump the actions-deps group across 1 directory with 2 upd…
28e4262 
…ates

Bumps the actions-deps group with 2 updates in the / directory: [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials) and [zephyrproject-rtos/action-manifest](https://github.com/zephyrproject-rtos/action-manifest).


Updates `aws-actions/configure-aws-credentials` from 4.1.0 to 4.2.0
- [Release notes](https://github.com/aws-actions/configure-aws-credentials/releases)
- [Changelog](https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md)
- [Commits](aws-actions/configure-aws-credentials@ececac1...f24d719)

Updates `zephyrproject-rtos/action-manifest` from 1.7.0 to 1.8.0
- [Commits](zephyrproject-rtos/action-manifest@cb8f6fb...1dab8ef)

---
updated-dependencies:
- dependency-name: aws-actions/configure-aws-credentials
  dependency-version: 4.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-deps
- dependency-name: zephyrproject-rtos/action-manifest
  dependency-version: 1.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels May 13, 2025
@sonarqubecloud

sonarqubecloud Bot commented May 13, 2025

Copy link
Copy Markdown

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@nashif nashif force-pushed the main branch 3 times, most recently from d94d096 to a7a775b Compare May 18, 2025 15:22
@dependabot @github

dependabot Bot commented on behalf of github May 19, 2025

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this May 19, 2025
@dependabot dependabot Bot deleted the dependabot/github_actions/actions-deps-721cc7e55d branch May 19, 2025 10:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@fabiobaltieri fabiobaltieri Awaiting requested review from fabiobaltieri
@kartben kartben Awaiting requested review from kartben
@nashif nashif Awaiting requested review from nashif
@stephanosio stephanosio Awaiting requested review from stephanosio

Assignees

@nashif nashif

@stephanosio stephanosio

Labels

area: Continuous Integration dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@nashif @stephanosio