Skip to content

chore(ci)(deps): bump the github-actions group across 1 directory with 6 updates #48

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(ci)(deps): bump the github-actions group across 1 directory with 6 updates #48

dependabot wants to merge 1 commit into from
+14 −14

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Nov 24, 2025
edited
Loading

Bumps the github-actions group with 6 updates in the / directory:

Package From To
actions/checkout 3 6
aws-actions/configure-aws-credentials 1 5
aws-actions/amazon-ecr-login 1 2
aws-actions/amazon-ecs-deploy-task-definition 1 2
actions/setup-python 4 6
codecov/codecov-action 3 5

Updates actions/checkout from 3 to 6

Release notes

Sourced from actions/checkout's releases.

v6.0.0

What's Changed

Full Changelog: actions/checkout@v5.0.0...v6.0.0

v6-beta

What's Changed

Updated persist-credentials to store the credentials under $RUNNER_TEMP instead of directly in the local git config.

This requires a minimum Actions Runner version of v2.329.0 to access the persisted credentials for Docker container action scenarios.

v5.0.1

What's Changed

Full Changelog: actions/checkout@v5...v5.0.1

v5.0.0

What's Changed

⚠️ Minimum Compatible Runner Version

v2.327.1
Release Notes

Make sure your runner is updated to this version or newer to use this release.

Full Changelog: actions/checkout@v4...v5.0.0

v4.3.1

What's Changed

Full Changelog: actions/checkout@v4...v4.3.1

v4.3.0

What's Changed

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

Changelog

V6.0.0

V5.0.1

V5.0.0

V4.3.1

V4.3.0

v4.2.2

v4.2.1

v4.2.0

v4.1.7

v4.1.6

v4.1.5

... (truncated)

Commits

Updates aws-actions/configure-aws-credentials from 1 to 5

Release notes

Sourced from aws-actions/configure-aws-credentials's releases.

v5.0.0

5.0.0 (2025-09-03)

⚠ BREAKING CHANGES

  • Cleanup input handling. Changes invalid boolean input behavior (see #1445)

Features

v4.3.1

4.3.1 (2025-08-04)

Bug Fixes

v4.3.0

4.3.0 (2025-08-04)

NOTE: This release tag originally pointed to 59b441846ad109fa4a1549b73ef4e149c4bfb53b, but a critical bug was discovered shortly after publishing. We updated this tag to d0834ad3a60a024346910e522a81b0002bd37fea to prevent anyone using the 4.3.0 tag from encountering the bug, and we published 4.3.1 to allow workflows to auto update correctly.

Features

Bug Fixes

  • docs: readme samples versioning (5b3c895)
  • the wrong example region for China partition in README (37fe9a7)
  • properly set proxy environment variable (cbea708)

Miscellaneous Chores

v4.2.1

4.2.1 (2025-05-14)

Bug Fixes

... (truncated)

Changelog

Sourced from aws-actions/configure-aws-credentials's changelog.

5.1.0 (2025-10-06)

Features

Bug Fixes

5.0.0 (2025-09-03)

⚠ BREAKING CHANGES

  • Cleanup input handling. Changes invalid boolean input behavior (see #1445)

Features

4.3.1 (2025-08-04)

Bug Fixes

4.3.0 (2025-08-04)

Features

Bug Fixes

  • docs: readme samples versioning (5b3c895)
  • the wrong example region for China partition in README (37fe9a7)
  • properly set proxy environment variable (cbea708)

... (truncated)

Commits
  • 0094301 chore(main): release 5.1.0 (#1483)
  • e381dc3 chore(deps-dev): bump @​vercel/ncc from 0.38.3 to 0.38.4 (#1500)
  • 031a65b chore(deps-dev): bump del-cli from 6.0.0 to 7.0.0 (#1497)
  • 9efe715 chore: Update dist
  • 6bbafa6 chore(deps-dev): bump @​aws-sdk/credential-provider-env (#1502)
  • 4c879b4 chore(deps-dev): bump @​types/node from 24.5.0 to 24.6.0 (#1503)
  • fb52c69 chore(deps-dev): bump memfs from 4.39.0 to 4.47.0 (#1504)
  • f226b05 chore: Update dist
  • be2cf0c chore(deps): bump @​aws-sdk/client-sts from 3.888.0 to 3.899.0 (#1501)
  • 0be22f9 chore: Update dist
  • Additional commits viewable in compare view

Updates aws-actions/amazon-ecr-login from 1 to 2

Release notes

Sourced from aws-actions/amazon-ecr-login's releases.

v2

See the changelog for details about the changes included in this release.

v2.0.0

See the changelog for details about the changes included in this release.

v1.7.0

See the changelog for details about the changes included in this release.

v1.6.2

See the changelog for details about the changes included in this release.

v1.6.1

See the changelog for details about the changes included in this release.

v1.6.0

See the changelog for details about the changes included in this release.

v1.5.3

See the changelog for details about the changes included in this release.

v1.5.2

See the changelog for details about the changes included in this release.

v1.5.1

See the changelog for details about the changes included in this release.

v1.5.0

See the changelog for details about the changes included in this release.

v1.4.0

See the changelog for details about the changes included in this release.

v1.3.3

See the changelog for details about the changes included in this release.

v1.3.2

See the changelog for details about the changes included in this release.

v1.3.1

See the changelog for details about the changes included in this release.

v1.3.0

See the changelog for details about the changes included in this release.

v1.2.2

See the changelog for details about the changes included in this release.

v1.2.1

See the changelog for details about the changes included in this release.

... (truncated)

Changelog

Sourced from aws-actions/amazon-ecr-login's changelog.

Commits

Updates aws-actions/amazon-ecs-deploy-task-definition from 1 to 2

Release notes

Sourced from aws-actions/amazon-ecs-deploy-task-definition's releases.

v2

This tag tracks the latest v2.x.x release.

v1.6.0

See the changelog for details about the changes included in this release.

Please note that this is a backward incompatible release with the upgrade to AWS SDK v3. We recommend using v2 of this Github action which includes the SDK upgrade, and update your task definition parameters to adhere to the specification defined in AWS documentation here.

v1.5.0

See the changelog for details about the changes included in this release.

v1.4.11

See the changelog for details about the changes included in this release.

v1.4.10

See the changelog for details about the changes included in this release.

v1.4.9

See the changelog for details about the changes included in this release.

v1.4.8

See the changelog for details about the changes included in this release.

v1.4.7

See the changelog for details about the changes included in this release.

v1.4.6

See the changelog for details about the changes included in this release.

v1.4.5

See the changelog for details about the changes included in this release.

v1.4.4

See the changelog for details about the changes included in this release.

v1.4.3

See the changelog for details about the changes included in this release.

v1.4.2

See the changelog for details about the changes included in this release.

v1.4.1

See the changelog for details about the changes included in this release.

v1.4.0

See the changelog for details about the changes included in this release.

v1.3.10

See the changelog for details about the changes included in this release.

... (truncated)

Changelog

Sourced from aws-actions/amazon-ecs-deploy-task-definition's changelog.

2.4.0 (2025-09-09)

Features

2.3.4 (2025-07-24)

Bug Fixes

Commits

Updates actions/setup-python from 4 to 6

Release notes

Sourced from actions/setup-python's releases.

v6.0.0

What's Changed

Breaking Changes

Make sure your runner is on version v2.327.1 or later to ensure compatibility with this release. See Release Notes

Enhancements:

Bug fixes:

Dependency updates:

New Contributors

Full Changelog: actions/setup-python@v5...v6.0.0

v5.6.0

What's Changed

Full Changelog: actions/setup-python@v5...v5.6.0

v5.5.0

What's Changed

Enhancements:

Bug fixes:

... (truncated)

Commits
  • e797f83 Upgrade to node 24 (#1164)
  • 3d1e2d2 Revert "Enhance cache-dependency-path handling to support files outside the w...
  • 65b0712 Clarify pythonLocation behavior for PyPy and GraalPy in environment variables...
  • 5b668cf Bump actions/checkout from 4 to 5 (#1181)
  • f62a0e2 Change missing cache directory error to warning (#1182)
  • 9322b3c Upgrade setuptools to 78.1.1 to fix path traversal vulnerability in PackageIn...
  • fbeb884 Bump form-data to fix critical vulnerabilities #182 & #183 (#1163)
  • 03bb615 Bump idna from 2.9 to 3.7 in /tests/data (#843)
  • 36da51d Add version parsing from Pipfile (#1067)
  • 3c6f142 update documentation (#1156)
  • Additional commits viewable in compare view

Updates codecov/codecov-action from 3 to 5

Release notes

Sourced from codecov/codecov-action's releases.

v5.0.0

v5 Release

v5 of the Codecov GitHub Action will use the Codecov Wrapper to encapsulate the CLI. This will help ensure that the Action gets updates quicker.

Migration Guide

The v5 release also coincides with the opt-out feature for tokens for public repositories. In the Global Upload Token section of the settings page of an organization in codecov.io, you can set the ability for Codecov to receive a coverage reports from any source. This will allow contributors or other members of a repository to upload without needing access to the Codecov token. For more details see how to upload without a token.

[!WARNING]
The following arguments have been changed

  • file (this has been deprecated in favor of files)
  • plugin (this has been deprecated in favor of plugins)

The following arguments have been added:

  • binary
  • gcov_args
  • gcov_executable
  • gcov_ignore
  • gcov_include
  • report_type
  • skip_validation
  • swift_project

You can see their usage in the action.yml file.

What's Changed

... (truncated)

Changelog

Sourced from codecov/codecov-action's changelog.

v5 Release

v5 of the Codecov GitHub Action will use the Codecov Wrapper to encapsulate the CLI. This will help ensure that the Action gets updates quicker.

Migration Guide

The v5 release also coincides with the opt-out feature for tokens for public repositories. In the Global Upload Token section of the settings page of an organization in codecov.io, you can set the ability for Codecov to receive a coverage reports from any source. This will allow contributors or other members of a repository to upload without needing access to the Codecov token. For more details see how to upload without a token.

[!WARNING] The following arguments have been changed

  • file (this has been deprecated in favor of files)
  • plugin (this has been deprecated in favor of plugins)

The following arguments have been added:

  • binary
  • gcov_args
  • gcov_executable
  • gcov_ignore
  • gcov_include
  • report_type
  • skip_validation
  • swift_project

You can see their usage in the action.yml file.

What's Changed

@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Nov 24, 2025

Labels

The following labels could not be found: ci/cd, github-actions. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot bot force-pushed the dependabot/github_actions/github-actions-90cef2ee0e branch from 3d4f5e2 to 8400326 Compare December 1, 2025 05:22
@dependabot
chore(ci)(deps): bump the github-actions group across 1 directory wit…
8a39cbb 
…h 6 updates

Bumps the github-actions group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout) | `3` | `6` |
| [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials) | `1` | `5` |
| [aws-actions/amazon-ecr-login](https://github.com/aws-actions/amazon-ecr-login) | `1` | `2` |
| [aws-actions/amazon-ecs-deploy-task-definition](https://github.com/aws-actions/amazon-ecs-deploy-task-definition) | `1` | `2` |
| [actions/setup-python](https://github.com/actions/setup-python) | `4` | `6` |
| [codecov/codecov-action](https://github.com/codecov/codecov-action) | `3` | `5` |



Updates `actions/checkout` from 3 to 6
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@v3...v6)

Updates `aws-actions/configure-aws-credentials` from 1 to 5
- [Release notes](https://github.com/aws-actions/configure-aws-credentials/releases)
- [Changelog](https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md)
- [Commits](aws-actions/configure-aws-credentials@v1...v5)

Updates `aws-actions/amazon-ecr-login` from 1 to 2
- [Release notes](https://github.com/aws-actions/amazon-ecr-login/releases)
- [Changelog](https://github.com/aws-actions/amazon-ecr-login/blob/main/CHANGELOG.md)
- [Commits](aws-actions/amazon-ecr-login@v1...v2)

Updates `aws-actions/amazon-ecs-deploy-task-definition` from 1 to 2
- [Release notes](https://github.com/aws-actions/amazon-ecs-deploy-task-definition/releases)
- [Changelog](https://github.com/aws-actions/amazon-ecs-deploy-task-definition/blob/master/CHANGELOG.md)
- [Commits](aws-actions/amazon-ecs-deploy-task-definition@v1...v2)

Updates `actions/setup-python` from 4 to 6
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](actions/setup-python@v4...v6)

Updates `codecov/codecov-action` from 3 to 5
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](codecov/codecov-action@v3...v5)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: aws-actions/configure-aws-credentials
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: aws-actions/amazon-ecr-login
  dependency-version: '2'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: aws-actions/amazon-ecs-deploy-task-definition
  dependency-version: '2'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: actions/setup-python
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: codecov/codecov-action
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/github_actions/github-actions-90cef2ee0e branch from 8400326 to 8a39cbb Compare December 15, 2025 04:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant