Skip to content

Commit 22aee72

Browse files
mergify[bot]mergify[bot]
authored
chore(deps): bump zgosalvez/github-actions-ensure-sha-pinned-actions from 3.0.25 to 4.0.0 [skip ci]
Bumps [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions) from 3.0.25 to 4.0.0. Release notes *Sourced from [zgosalvez/github-actions-ensure-sha-pinned-actions's releases](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases).* > v4.0.0 > ------ > > What's Changed > -------------- > > * Bump `@​vercel/ncc` from 0.38.3 to 0.38.4 by [`@​dependabot`](https://github.com/dependabot)[bot] in [zgosalvez/github-actions-ensure-sha-pinned-actions#257](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/pull/257) > * Bump actions/checkout from 4.2.2 to 5.0.0 by [`@​dependabot`](https://github.com/dependabot)[bot] in [zgosalvez/github-actions-ensure-sha-pinned-actions#253](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/pull/253) > * Bump eslint from 9.26.0 to 9.36.0 by [`@​dependabot`](https://github.com/dependabot)[bot] in [zgosalvez/github-actions-ensure-sha-pinned-actions#256](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/pull/256) > * Bump jest from 29.7.0 to 30.1.3 by [`@​dependabot`](https://github.com/dependabot)[bot] in [zgosalvez/github-actions-ensure-sha-pinned-actions#255](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/pull/255) > * Bump actions/cache from 4.2.3 to 4.2.4 by [`@​dependabot`](https://github.com/dependabot)[bot] in [zgosalvez/github-actions-ensure-sha-pinned-actions#252](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/pull/252) > * Bump zgosalvez/github-actions-get-action-runs-using-version from 2.0.22 to 2.0.24 by [`@​dependabot`](https://github.com/dependabot)[bot] in [zgosalvez/github-actions-ensure-sha-pinned-actions#234](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/pull/234) > * Bump stefanzweifel/git-auto-commit-action from 5.2.0 to 6.0.1 by [`@​dependabot`](https://github.com/dependabot)[bot] in [zgosalvez/github-actions-ensure-sha-pinned-actions#242](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/pull/242) > * Bump yaml from 2.7.1 to 2.8.1 by [`@​dependabot`](https://github.com/dependabot)[bot] in [zgosalvez/github-actions-ensure-sha-pinned-actions#248](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/pull/248) > * Bump brace-expansion from 1.1.11 to 1.1.12 by [`@​dependabot`](https://github.com/dependabot)[bot] in [zgosalvez/github-actions-ensure-sha-pinned-actions#258](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/pull/258) > * fix [#116](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/issues/116): support composite actions by [`@​atchertchian`](https://github.com/atchertchian) in [zgosalvez/github-actions-ensure-sha-pinned-actions#239](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/pull/239) > > New Contributors > ---------------- > > * [`@​atchertchian`](https://github.com/atchertchian) made their first contribution in [zgosalvez/github-actions-ensure-sha-pinned-actions#239](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/pull/239) > > **Full Changelog**: <zgosalvez/github-actions-ensure-sha-pinned-actions@v3...v4.0.0> Commits * [`9e9574e`](zgosalvez/github-actions-ensure-sha-pinned-actions@9e9574e) fix [#116](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/issues/116): support composite actions ([#239](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/issues/239)) * [`574bec8`](zgosalvez/github-actions-ensure-sha-pinned-actions@574bec8) Bump brace-expansion from 1.1.11 to 1.1.12 ([#258](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/issues/258)) * [`bdf825c`](zgosalvez/github-actions-ensure-sha-pinned-actions@bdf825c) Bump yaml from 2.7.1 to 2.8.1 ([#248](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/issues/248)) * [`12cd4d2`](zgosalvez/github-actions-ensure-sha-pinned-actions@12cd4d2) Bump stefanzweifel/git-auto-commit-action from 5.2.0 to 6.0.1 ([#242](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/issues/242)) * [`2783169`](zgosalvez/github-actions-ensure-sha-pinned-actions@2783169) Bump zgosalvez/github-actions-get-action-runs-using-version ([#234](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/issues/234)) * [`d952774`](zgosalvez/github-actions-ensure-sha-pinned-actions@d952774) Bump actions/cache from 4.2.3 to 4.2.4 ([#252](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/issues/252)) * [`e839297`](zgosalvez/github-actions-ensure-sha-pinned-actions@e839297) Bump jest from 29.7.0 to 30.1.3 ([#255](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/issues/255)) * [`f1328f7`](zgosalvez/github-actions-ensure-sha-pinned-actions@f1328f7) Bump eslint from 9.26.0 to 9.36.0 ([#256](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/issues/256)) * [`74db6f0`](zgosalvez/github-actions-ensure-sha-pinned-actions@74db6f0) Bump actions/checkout from 4.2.2 to 5.0.0 ([#253](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/issues/253)) * [`cae7e06`](zgosalvez/github-actions-ensure-sha-pinned-actions@cae7e06) Bump `@​vercel/ncc` from 0.38.3 to 0.38.4 ([#257](https://redirect.github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/issues/257)) * See full diff in [compare view](zgosalvez/github-actions-ensure-sha-pinned-actions@fc87bb5...9e9574e) [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility\_score?dependency-name=zgosalvez/github-actions-ensure-sha-pinned-actions&package-manager=github\_actions&previous-version=3.0.25&new-version=4.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
2 parents af5341a + 5d4c985 commit 22aee72

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

.github/workflows/mvn-test.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@ jobs:
1515
steps:
1616
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
1717
- name: Ensure SHA pinned actions
18-
uses: zgosalvez/github-actions-ensure-sha-pinned-actions@fc87bb5b5a97953d987372e74478de634726b3e5 # v3.0.25
18+
uses: zgosalvez/github-actions-ensure-sha-pinned-actions@9e9574ef04ea69da568d6249bd69539ccc704e74 # v4.0.0
1919
- name: Run pre-commit
2020
uses: actions/setup-python@e797f83bcb11b83ae66e0230d6156d7c80228e7c # v6.0.0
2121
with:

0 commit comments

Comments
 (0)