build(deps): bump the callable-workflows group across 1 directory with 11 updates #154

dependabot · 2025-04-01T11:33:08Z

Bumps the callable-workflows group with 11 updates in the / directory:

Package	From	To
docker/setup-buildx-action	`3.8.0`	`3.10.0`
docker/login-action	`3.3.0`	`3.4.0`
docker/metadata-action	`5.6.1`	`5.7.0`
docker/build-push-action	`6.12.0`	`6.15.0`
actions/attest-build-provenance	`2.1.0`	`2.2.3`
actions/setup-python	`5.3.0`	`5.5.0`
actions/cache	`4.2.0`	`4.2.3`
actions/upload-artifact	`4.6.0`	`4.6.2`
pypa/gh-action-pypi-publish	`1.12.3`	`1.12.4`
codecov/codecov-action	`5.1.2`	`5.4.0`
Swatinem/rust-cache	`2.7.7`	`2.7.8`

Updates docker/setup-buildx-action from 3.8.0 to 3.10.0

Release notes

Sourced from docker/setup-buildx-action's releases.

v3.10.0

Bump @docker/actions-toolkit from 0.54.0 to 0.56.0 in docker/setup-buildx-action#408

Full Changelog: docker/setup-buildx-action@v3.9.0...v3.10.0

v3.9.0

Bump @docker/actions-toolkit from 0.48.0 to 0.54.0 in docker/setup-buildx-action#402 docker/setup-buildx-action#404

Full Changelog: docker/setup-buildx-action@v3.8.0...v3.9.0

Commits

b5ca514 Merge pull request #408 from docker/dependabot/npm_and_yarn/docker/actions-to...
1418a4e chore: update generated content
93acf83 build(deps): bump @docker/actions-toolkit from 0.54.0 to 0.56.0
f7ce87c Merge pull request #404 from docker/dependabot/npm_and_yarn/docker/actions-to...
aa1e2a0 chore: update generated content
673e008 build(deps): bump @docker/actions-toolkit from 0.53.0 to 0.54.0
ba31df4 Merge pull request #402 from docker/dependabot/npm_and_yarn/docker/actions-to...
5475af1 chore: update generated content
acacad9 build(deps): bump @docker/actions-toolkit from 0.48.0 to 0.53.0
6a25f98 Merge pull request #396 from crazy-max/bake-v6
Additional commits viewable in compare view

Updates docker/login-action from 3.3.0 to 3.4.0

Release notes

Sourced from docker/login-action's releases.

v3.4.0

Bump @actions/core from 1.10.1 to 1.11.1 in docker/login-action#791

Bump @aws-sdk/client-ecr to 3.766.0 in docker/login-action#789 docker/login-action#856

Bump @aws-sdk/client-ecr-public to 3.758.0 in docker/login-action#789 docker/login-action#856

Bump @docker/actions-toolkit from 0.35.0 to 0.57.0 in docker/login-action#801 docker/login-action#806 docker/login-action#858

Bump cross-spawn from 7.0.3 to 7.0.6 in docker/login-action#814

Bump https-proxy-agent from 7.0.5 to 7.0.6 in docker/login-action#823

Bump path-to-regexp from 6.2.2 to 6.3.0 in docker/login-action#777

Full Changelog: docker/login-action@v3.3.0...v3.4.0

Commits

74a5d14 Merge pull request #856 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...
2f4f00e chore: update generated content
67c1845 build(deps): bump the aws-sdk-dependencies group across 1 directory with 2 up...
3d4cc89 Merge pull request #844 from graysonpike/master
6cc823a Merge pull request #823 from docker/dependabot/npm_and_yarn/proxy-agent-depen...
d94e792 chore: update generated content
033db0d Merge pull request #812 from docker/dependabot/github_actions/codecov/codecov...
09c2ae9 build(deps): bump https-proxy-agent
ba56f00 ci: update deprecated input for codecov-action
75bf9a7 Merge pull request #858 from docker/dependabot/npm_and_yarn/docker/actions-to...
Additional commits viewable in compare view

Updates docker/metadata-action from 5.6.1 to 5.7.0

Release notes

Sourced from docker/metadata-action's releases.

v5.7.0

Global expressions support for labels and annotations by @crazy-max in docker/metadata-action#489

Support disabling outputs as environment variables by @omus in docker/metadata-action#497

Bump @docker/actions-toolkit from 0.44.0 to 0.56.0 in docker/metadata-action#507 docker/metadata-action#509

Bump csv-parse from 5.5.6 to 5.6.0 in docker/metadata-action#482

Bump moment-timezone from 0.5.46 to 0.5.47 in docker/metadata-action#501

Bump semver from 7.6.3 to 7.7.1 in docker/metadata-action#504

Full Changelog: docker/metadata-action@v5.6.1...v5.7.0

Commits

902fa8e Merge pull request #504 from docker/dependabot/npm_and_yarn/semver-7.7.1
c30b9c2 chore: update generated content
0698804 chore(deps): Bump semver from 7.6.3 to 7.7.1
bb3eeca Merge pull request #501 from docker/dependabot/npm_and_yarn/moment-timezone-0...
94a839c chore: update generated content
ecd51a0 Merge pull request #509 from docker/dependabot/npm_and_yarn/docker/actions-to...
a85b1db chore(deps): Bump @docker/actions-toolkit from 0.55.0 to 0.56.0
5a76a0e chore(deps): Bump moment-timezone from 0.5.46 to 0.5.47
1cc4a98 Merge pull request #482 from docker/dependabot/npm_and_yarn/csv-parse-5.6.0
d84de1e chore: update generated content
Additional commits viewable in compare view

Updates docker/build-push-action from 6.12.0 to 6.15.0

Release notes

Sourced from docker/build-push-action's releases.

v6.15.0

Bump @docker/actions-toolkit from 0.55.0 to 0.56.0 in docker/build-push-action#1330

Full Changelog: docker/build-push-action@v6.14.0...v6.15.0

v6.14.0

Bump @docker/actions-toolkit from 0.53.0 to 0.55.0 in docker/build-push-action#1324

Full Changelog: docker/build-push-action@v6.13.0...v6.14.0

v6.13.0

Bump @docker/actions-toolkit from 0.51.0 to 0.53.0 in docker/build-push-action#1308

Full Changelog: docker/build-push-action@v6.12.0...v6.13.0

Commits

471d1dc Merge pull request #1330 from docker/dependabot/npm_and_yarn/docker/actions-t...
b89ff0a chore: update generated content
1e3ae3a chore(deps): Bump @docker/actions-toolkit from 0.55.0 to 0.56.0
b16f42f Merge pull request #1325 from crazy-max/buildx-edge
dc0fea5 ci: update buildx to edge and buildkit to latest
0adf995 Merge pull request #1324 from docker/dependabot/npm_and_yarn/docker/actions-t...
d88cd28 chore: update generated content
3d09a6b chore(deps): Bump @docker/actions-toolkit from 0.53.0 to 0.55.0
ca877d9 Merge pull request #1308 from docker/dependabot/npm_and_yarn/docker/actions-t...
d2fe919 chore: update generated content
Additional commits viewable in compare view

Updates actions/attest-build-provenance from 2.1.0 to 2.2.3

Release notes

Sourced from actions/attest-build-provenance's releases.

v2.2.3

What's Changed

Pin actions/attest reference by commit SHA by @bdehamer in actions/attest-build-provenance#493

Full Changelog: actions/attest-build-provenance@v2.2.2...v2.2.3

v2.2.2

What's Changed

Bump predicate action from 1.1.4 to 1.1.5 by @bdehamer in actions/attest-build-provenance#485

Bump @actions/attest from 1.5.0 to 1.6.0 by @bdehamer in actions/attest-build-provenance#484

Update buildSLSAProvenancePredicate to populate workflow.ref field from the ref claim in the OIDC token (actions/toolkit#1969)

Full Changelog: actions/attest-build-provenance@v2.2.1...v2.2.2

v2.2.1

What's Changed

Bump undici from 5.28.4 to 5.28.5 by @dependabot in actions/attest-build-provenance#457

Bump @octokit/request-error from 5.0.1 to 5.1.1 by @dependabot in actions/attest-build-provenance#469

Bump @octokit/request from 8.2.0 to 8.4.1 by @dependabot in actions/attest-build-provenance#478

Bump actions/attest from 2.2.0 to 2.2.1 by @bdehamer in actions/attest-build-provenance#481

Includes @actions/attest v1.6.0

Full Changelog: actions/attest-build-provenance@v2.2.0...v2.2.1

v2.2.0

What's Changed

Bump actions/attest from v2.1.0 to v2.2.0 by @bdehamer in actions/attest-build-provenance#449

Includes support for now subject-checksums input parameter

Full Changelog: actions/attest-build-provenance@v2.1.0...v2.2.0

Commits

c074443 pin actions/attest reference by commit sha (#493)
bd77c07 bump predicate from 1.1.4 to 1.1.5 (#485)
1176ef5 bump @actions/attest from 1.5.0 to 1.6.0 (#484)
f9eaf23 Bump actions/attest from 2.2.0 to 2.2.1 (#481)
f1321ec Bump @octokit/request from 8.2.0 to 8.4.1 (#478)
d8181f5 Bump the npm-development group with 6 updates (#476)
1f22f30 Bump @octokit/request-error from 5.0.1 to 5.1.1 (#469)
6e5e68c Bump the npm-development group with 4 updates (#471)
555f5b7 Bump the npm-development group with 6 updates (#465)
2d4fa84 Bump the npm-development group with 2 updates (#461)
Additional commits viewable in compare view

Updates actions/setup-python from 5.3.0 to 5.5.0

Release notes

Sourced from actions/setup-python's releases.

v5.5.0

What's Changed

Enhancements:

Support free threaded Python versions like '3.13t' by @colesbury in actions/setup-python#973

Enhance Workflows: Include ubuntu-arm runners, Add e2e Testing for free threaded and Upgrade @action/cache from 4.0.0 to 4.0.3 by @priya-kinthali in actions/setup-python#1056

Add support for .tool-versions file in setup-python by @mahabaleshwars in actions/setup-python#1043

Bug fixes:

Fix architecture for pypy on Linux ARM64 by @mayeut in actions/setup-python#1011 This update maps arm64 to aarch64 for Linux ARM64 PyPy installations.

Dependency updates:

Upgrade @vercel/ncc from 0.38.1 to 0.38.3 by @dependabot in actions/setup-python#1016

Upgrade @actions/glob from 0.4.0 to 0.5.0 by @dependabot in actions/setup-python#1015

New Contributors

@colesbury made their first contribution in actions/setup-python#973

@mahabaleshwars made their first contribution in actions/setup-python#1043

Full Changelog: actions/setup-python@v5...v5.5.0

v5.4.0

What's Changed

Enhancements:

Update cache error message by @aparnajyothi-y in actions/setup-python#968

Enhance Workflows: Add Ubuntu-24, Remove Python 3.8 by @priya-kinthali in actions/setup-python#985

Configure Dependabot settings by @HarithaVattikuti in actions/setup-python#1008

Documentation changes:

Readme update - recommended permissions by @benwells in actions/setup-python#1009

Improve Advanced Usage examples by @lrq3000 in actions/setup-python#645

Dependency updates:

Upgrade undici from 5.28.4 to 5.28.5 by @dependabot in actions/setup-python#1012

Upgrade urllib3 from 1.25.9 to 1.26.19 in /tests/data by @dependabot in actions/setup-python#895

Upgrade actions/publish-immutable-action from 0.0.3 to 0.0.4 by @dependabot in actions/setup-python#1014

Upgrade @actions/http-client from 2.2.1 to 2.2.3 by @dependabot in actions/setup-python#1020

Upgrade requests from 2.24.0 to 2.32.2 in /tests/data by @dependabot in actions/setup-python#1019

Upgrade @actions/cache to ^4.0.0 by @priyagupta108 in actions/setup-python#1007

New Contributors

@benwells made their first contribution in actions/setup-python#1009

@HarithaVattikuti made their first contribution in actions/setup-python#1008

@lrq3000 made their first contribution in actions/setup-python#645

Full Changelog: actions/setup-python@v5...v5.4.0

Commits

8d9ed9a Add e2e Testing for free threaded and Bump @action/cache from 4.0.0 to 4.0.3 ...
19e4675 Add support for .tool-versions file in setup-python (#1043)
6fd11e1 Bump @actions/glob from 0.4.0 to 0.5.0 (#1015)
9e62be8 Support free threaded Python versions like '3.13t' (#973)
6ca8e85 Bump @vercel/ncc from 0.38.1 to 0.38.3 (#1016)
8039c45 fix: install PyPy on Linux ARM64 (#1011)
4237552 Improve Advanced Usage examples (#645)
709bfa5 Bump requests from 2.24.0 to 2.32.2 in /tests/data (#1019)
ceb20b2 Bump @actions/http-client from 2.2.1 to 2.2.3 (#1020)
0dc2d2c Bump actions/publish-immutable-action from 0.0.3 to 0.0.4 (#1014)
Additional commits viewable in compare view

Updates actions/cache from 4.2.0 to 4.2.3

Release notes

Sourced from actions/cache's releases.

v4.2.3

What's Changed

Update to use @actions/cache 4.0.3 package & prepare for new release by @salmanmkc in actions/cache#1577 (SAS tokens for cache entries are now masked in debug logs)

New Contributors

@salmanmkc made their first contribution in actions/cache#1577

Full Changelog: actions/cache@v4.2.2...v4.2.3

v4.2.2

What's Changed

[!IMPORTANT] As a reminder, there were important backend changes to release v4.2.0, see those release notes and the announcement for more details.

Bump @actions/cache to v4.0.2 by @robherley in actions/cache#1560

Full Changelog: actions/cache@v4.2.1...v4.2.2

v4.2.1

What's Changed

[!IMPORTANT] As a reminder, there were important backend changes to release v4.2.0, see those release notes and the announcement for more details.

docs: GitHub is spelled incorrectly in caching-strategies.md by @janco-absa in actions/cache#1526

docs: Make the "always save prime numbers" example more clear by @Tobbe in actions/cache#1525

Update force deletion docs due a recent deprecation by @sebbalex in actions/cache#1500

Bump @actions/cache to v4.0.1 by @robherley in actions/cache#1554

New Contributors

@janco-absa made their first contribution in actions/cache#1526

@Tobbe made their first contribution in actions/cache#1525

@sebbalex made their first contribution in actions/cache#1500

Full Changelog: actions/cache@v4.2.0...v4.2.1

Changelog

Sourced from actions/cache's changelog.

Releases

4.2.3

Bump @actions/cache to v4.0.3 (obfuscates SAS token in debug logs for cache entries)

4.2.2

Bump @actions/cache to v4.0.2

4.2.1

Bump @actions/cache to v4.0.1

4.2.0

TLDR; The cache backend service has been rewritten from the ground up for improved performance and reliability. actions/cache now integrates with the new cache service (v2) APIs.

The new service will gradually roll out as of February 1st, 2025. The legacy service will also be sunset on the same date. Changes in these release are fully backward compatible.

We are deprecating some versions of this action. We recommend upgrading to version v4 or v3 as soon as possible before February 1st, 2025. (Upgrade instructions below).

If you are using pinned SHAs, please use the SHAs of versions v4.2.0 or v3.4.0

If you do not upgrade, all workflow runs using any of the deprecated actions/cache will fail.

Upgrading to the recommended versions will not break your workflows.

4.1.2

Add GitHub Enterprise Cloud instances hostname filters to inform API endpoint choices - #1474

Security fix: Bump braces from 3.0.2 to 3.0.3 - #1475

4.1.1

Restore original behavior of cache-hit output - #1467

4.1.0

Ensure cache-hit output is set when a cache is missed - #1404

Deprecate save-always input - #1452

4.0.2

Fixed restore fail-on-cache-miss not working.

4.0.1

Updated isGhes check

... (truncated)

Commits

5a3ec84 Merge pull request #1577 from salmanmkc/salmanmkc/4-test
7de2102 Update releases.md
76d40dd Update to use the latest version of the cache package to obfuscate the SAS
76dd5eb update cache with main
8c80c27 new package
45cfd0e updates
edd449b updated cache with latest changes
0576707 latest test before pr
3105dc9 update
9450d42 mask
Additional commits viewable in compare view

Updates actions/upload-artifact from 4.6.0 to 4.6.2

Release notes

Sourced from actions/upload-artifact's releases.

v4.6.2

What's Changed

Update to use artifact 2.3.2 package & prepare for new upload-artifact release by @salmanmkc in actions/upload-artifact#685

New Contributors

@salmanmkc made their first contribution in actions/upload-artifact#685

Full Changelog: actions/upload-artifact@v4...v4.6.2

v4.6.1

What's Changed

Update to use artifact 2.2.2 package by @yacaovsnc in actions/upload-artifact#673

Full Changelog: actions/upload-artifact@v4...v4.6.1

Commits

ea165f8 Merge pull request #685 from salmanmkc/salmanmkc/3-new-upload-artifacts-release
0839620 Prepare for new release of actions/upload-artifact with new toolkit cache ver...
4cec3d8 Merge pull request #673 from actions/yacaovsnc/artifact_2.2.2
e9fad96 license cache update for artifact
b26fd06 Update to use artifact 2.2.2 package
See full diff in compare view

Updates pypa/gh-action-pypi-publish from 1.12.3 to 1.12.4

Release notes

Sourced from pypa/gh-action-pypi-publish's releases.

v1.12.4

✨ What's Changed

The main theme of this patch release that the support for uploading PEP 639 licensing metadata to PyPI has been fixed in #327.

🛠️ Internal Updates

A few smaller updates include the attestation existence being checked earlier in the process now, listing all the violating files together, not just one (PR #315). And the lock file with the software available in runtime has been re-pinned in #329. Additionally, the CI now runs the smoke-tests against both Ubuntu 22.04 and 24.04 explicitly via da900af96347cc027433720ad4f122117645459d.

🪞 Full Diff: pypa/gh-action-pypi-publish@v1.12.3...v1.12.4

🧔‍♂️ Release Manager: @webknjaz 🇺🇦

🙏 Special Thanks to @dnicolodi💰 and @woodruffw💰 for releasing the license metadata support fix in Twine!

💬 Discuss on Bluesky 🦋, on Mastodon 🐘 and on GitHub.

Commits

76f52bc Merge pull request #329 from webknjaz/maintenance/runtime-lockfile-24-02-2025
72de13b 📌 Mass-upgrade transitive dependency pins
1995f2e Merge pull request #327 from webknjaz/maintenance/twine-6.1-pep639
29f40bd 📦 Enable metadata 2.4 support in Twine
10df67d 📦 Enable support for PEP 639 metadata
e0449d2 🧪 Integrate a unified alls-green GHA status
cebc64f 🧪 Bump setuptools in smoke test to v75.8.0
da900af 🧪 Run smoke tests against Ubuntu 24 and 22
8cafb5c 💰 Sync the funding config
916e576 Merge pull request #315 from webknjaz/refactoring/attestations-exist-bundle
Additional commits viewable in compare view

Updates codecov/codecov-action from 5.1.2 to 5.4.0

Release notes

Sourced from codecov/codecov-action's releases.

v5.4.0

What's Changed

build(deps): bump github/codeql-action from 3.28.1 to 3.28.5 by @dependabot in codecov/codecov-action#1753

build(deps): bump github/codeql-action from 3.28.5 to 3.28.8 by @dependabot in codecov/codecov-action#1757

Fix a typo in the example by @miranska in codecov/codecov-action#1758

build(deps): bump github/codeql-action from 3.28.8 to 3.28.9 by @dependabot in codecov/codecov-action#1765

Fix description for report_type input by @craigscott-crascit in codecov/codecov-action#1770

Fix use of safe.directory inside containers by @Flamefire in codecov/codecov-action#1768

Clarify in README that use_pypi bypasses integrity checks too by @webknjaz in codecov/codecov-action#1773

build(deps): bump github/codeql-action from 3.28.9 to 3.28.10 by @dependabot in codecov/codecov-action#1777

build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 by @dependabot in codecov/codecov-action#1776

build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 by @dependabot in codecov/codecov-action#1775

update wrapper submodule to 0.2.0, add recurse_submodules arg by @matt-codecov in codecov/codecov-action#1780

chore(release): 5.4.0 by @thomasrockhu-codecov in codecov/codecov-action#1781

New Contributors

@miranska made their first contribution in codecov/codecov-action#1758

@craigscott-crascit made their first contribution in codecov/codecov-action#1770

@Flamefire made their first contribution in codecov/codecov-action#1768

@matt-codecov made their first contribution in codecov/codecov-action#1780

Full Changelog: codecov/codecov-action@v5.3.1...v5.4.0

v5.3.1

What's Changed

fix: add docs and copy over dist by @thomasrockhu-codecov in codecov/codecov-action#1752

Full Changelog: codecov/codecov-action@v5.3.0...v5.3.1

v5.3.0

What's Changed

Update README with reqs by @thomasrockhu-codecov in codecov/codecov-action#1749

chore(release): wrapper -0.1.0 by @codecov-releaser-app in codecov/codecov-action#1750

chore(release): 5.3.0 by @thomasrockhu-codecov in codecov/codecov-action#1751

Full Changelog: codecov/codecov-action@v5.2.0...v5.3.0

v5.2.0

What's Changed

fix: remove erroneous linebreak in readme by @Vampire in codecov/codecov-action#1734

feat: add disable-telem feature by @thomasrockhu-codecov in codecov/codecov-action#1739

chore(deps): bump wrapper to 0.0.32 by @thomasrockhu-codecov in codecov/codecov-action#1740

build(deps): bump actions/upload-artifact from 4.4.3 to 4.6.0 by @dependabot in codecov/codecov-action#1743

build(deps): bump github/codeql-action from 3.27.9 to 3.28.1 by @dependabot in codecov/codecov-action#1742

use correct audience when requesting oidc token by @juho9000 in codecov/codecov-action#1744

Th/add commands by @thomasrockhu-codecov in codecov/codecov-action#1745

Fix typo in README by @tserg in codecov/codecov-action#1747

chore(release): bump to 5.2.0 by @thomasrockhu-codecov in codecov/codecov-action#1748

... (truncated)

Changelog

Sourced from codecov/codecov-action's changelog.

v5.4.0

What's Changed

update wrapper submodule to 0.2.0, add recurse_submodules arg by @matt-codecov in codecov/codecov-action#1780

build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 by @app/dependabot in codecov/codecov-action#1775

build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 by @app/dependabot in codecov/codecov-action#1776

build(deps): bump github/codeql-action from 3.28.9 to 3.28.10 by @app/dependabot in codecov/codecov-action#1777

Clarify in README that use_pypi bypasses integrity checks too by @webknjaz in codecov/codecov-action#1773

Fix use of safe.directory inside containers by @Flamefire in codecov/codecov-action#1768

Fix description for report_type input by @craigscott-crascit in codecov/codecov-action#1770

build(deps): bump github/codeql-action from 3.28.8 to 3.28.9 by @app/dependabot in codecov/codecov-action#1765

Fix a typo in the example by @miranska in codecov/codecov-action#1758

build(deps): bump github/codeql-action from 3.28.5 to 3.28.8 by @app/dependabot in codecov/codecov-action#1757

build(deps): bump github/codeql-action from 3.28.1 to 3.28.5 by @app/dependabot in codecov/codecov-action#1753

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.3.1..v5.4.0

v5.3.1

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.3.0..v5.3.1

v5.3.0

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.2.0..v5.3.0

v5.2.0

What's Changed

Fix typo in README by @tserg in codecov/codecov-action#1747

Th/add commands by @thomasrockhu-codecov in codecov/codecov-action#1745

use correct audience when requesting oidc token by @juho9000 in codecov/codecov-action#1744

build(deps): bump github/codeql-action from 3.27.9 to 3.28.1 by @app/dependabot in codecov/codecov-action#1742

build(deps): bump actions/upload-artifact from 4.4.3 to 4.6.0 by @app/dependabot in codecov/codecov-action#1743

chore(deps): bump wrapper to 0.0.32 by @thomasrockhu-codecov in codecov/codecov-action#1740

feat: add disable-telem feature by @thomasrockhu-codecov in codecov/codecov-action#1739

fix: remove erroneous linebreak in readme by @Vampire in codecov/codecov-action#1734

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.1.2..v5.2.0

... (truncated)

Commits

0565863 chore(release): 5.4.0 (#1781)
c545d7b update wrapper submodule to 0.2.0, add recurse_submodules arg (#1780)
2488e99 build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 (#1775)
a46c158 build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 (#1776)
062ee7e build(deps): bump github/codeql-action from 3.28.9 to 3.28.10 (#1777)
1fecca8 Clarify in README that use_pypi bypasses integrity checks too (#1773)
2e6e9c5 Fix use of safe.directory inside containers (#1768)
a5dc5a5 Fix description for report_type input (#1770)
4898080 build(deps): bump github/codeql-action from 3.28.8 to 3.28.9 (#1765)

…h 11 updates Bumps the callable-workflows group with 11 updates in the / directory: | Package | From | To | | --- | --- | --- | | [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `3.8.0` | `3.10.0` | | [docker/login-action](https://github.com/docker/login-action) | `3.3.0` | `3.4.0` | | [docker/metadata-action](https://github.com/docker/metadata-action) | `5.6.1` | `5.7.0` | | [docker/build-push-action](https://github.com/docker/build-push-action) | `6.12.0` | `6.15.0` | | [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance) | `2.1.0` | `2.2.3` | | [actions/setup-python](https://github.com/actions/setup-python) | `5.3.0` | `5.5.0` | | [actions/cache](https://github.com/actions/cache) | `4.2.0` | `4.2.3` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4.6.0` | `4.6.2` | | [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) | `1.12.3` | `1.12.4` | | [codecov/codecov-action](https://github.com/codecov/codecov-action) | `5.1.2` | `5.4.0` | | [Swatinem/rust-cache](https://github.com/swatinem/rust-cache) | `2.7.7` | `2.7.8` | Updates `docker/setup-buildx-action` from 3.8.0 to 3.10.0 - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](docker/setup-buildx-action@6524bf6...b5ca514) Updates `docker/login-action` from 3.3.0 to 3.4.0 - [Release notes](https://github.com/docker/login-action/releases) - [Commits](docker/login-action@9780b0c...74a5d14) Updates `docker/metadata-action` from 5.6.1 to 5.7.0 - [Release notes](https://github.com/docker/metadata-action/releases) - [Commits](docker/metadata-action@369eb59...902fa8e) Updates `docker/build-push-action` from 6.12.0 to 6.15.0 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@67a2d40...471d1dc) Updates `actions/attest-build-provenance` from 2.1.0 to 2.2.3 - [Release notes](https://github.com/actions/attest-build-provenance/releases) - [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md) - [Commits](actions/attest-build-provenance@7668571...c074443) Updates `actions/setup-python` from 5.3.0 to 5.5.0 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](actions/setup-python@0b93645...8d9ed9a) Updates `actions/cache` from 4.2.0 to 4.2.3 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](actions/cache@1bd1e32...5a3ec84) Updates `actions/upload-artifact` from 4.6.0 to 4.6.2 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@65c4c4a...ea165f8) Updates `pypa/gh-action-pypi-publish` from 1.12.3 to 1.12.4 - [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases) - [Commits](pypa/gh-action-pypi-publish@67339c7...76f52bc) Updates `codecov/codecov-action` from 5.1.2 to 5.4.0 - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@1e68e06...0565863) Updates `Swatinem/rust-cache` from 2.7.7 to 2.7.8 - [Release notes](https://github.com/swatinem/rust-cache/releases) - [Changelog](https://github.com/Swatinem/rust-cache/blob/master/CHANGELOG.md) - [Commits](Swatinem/rust-cache@f0deed1...9d47c6a) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: callable-workflows - dependency-name: docker/login-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: callable-workflows - dependency-name: docker/metadata-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: callable-workflows - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: callable-workflows - dependency-name: actions/attest-build-provenance dependency-type: direct:production update-type: version-update:semver-minor dependency-group: callable-workflows - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-minor dependency-group: callable-workflows - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-patch dependency-group: callable-workflows - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-patch dependency-group: callable-workflows - dependency-name: pypa/gh-action-pypi-publish dependency-type: direct:production update-type: version-update:semver-patch dependency-group: callable-workflows - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: callable-workflows - dependency-name: Swatinem/rust-cache dependency-type: direct:production update-type: version-update:semver-patch dependency-group: callable-workflows ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added the dependencies Pull requests that update a dependency file label Apr 1, 2025

dependabot bot requested a review from a team as a code owner April 1, 2025 11:33

dependabot bot added the github_actions Pull requests that update GitHub Actions code label Apr 1, 2025

shenanigansd merged commit e22a8d2 into main Jun 13, 2025
1 check passed

shenanigansd deleted the dependabot/github_actions/callable-workflows-2c8fbc5b9a branch June 13, 2025 18:55

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

build(deps): bump the callable-workflows group across 1 directory with 11 updates #154

build(deps): bump the callable-workflows group across 1 directory with 11 updates #154

Uh oh!

dependabot bot commented on behalf of github Apr 1, 2025 •

edited

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

build(deps): bump the callable-workflows group across 1 directory with 11 updates #154

build(deps): bump the callable-workflows group across 1 directory with 11 updates #154

Uh oh!

Conversation

dependabot bot commented on behalf of github Apr 1, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v3.10.0

v3.9.0

v3.4.0

v5.7.0

v6.15.0

v6.14.0

v6.13.0

v2.2.3

What's Changed

v2.2.2

What's Changed

v2.2.1

What's Changed

v2.2.0

What's Changed

v5.5.0

What's Changed

Enhancements:

Bug fixes:

Dependency updates:

New Contributors

v5.4.0

What's Changed

Enhancements:

Documentation changes:

Dependency updates:

New Contributors

v4.2.3

What's Changed

New Contributors

v4.2.2

What's Changed

v4.2.1

What's Changed

New Contributors

Releases

4.2.3

4.2.2

4.2.1

4.2.0

4.1.2

4.1.1

4.1.0

4.0.2

4.0.1

v4.6.2

What's Changed

New Contributors

v4.6.1

What's Changed

v1.12.4

✨ What's Changed

🛠️ Internal Updates

v5.4.0

What's Changed

New Contributors

v5.3.1

What's Changed

v5.3.0

What's Changed

v5.2.0

What's Changed

v5.4.0

What's Changed

v5.3.1

What's Changed

v5.3.0

What's Changed

v5.2.0

What's Changed

Uh oh!

Uh oh!

Reviewers

Assignees

dependabot bot commented on behalf of github Apr 1, 2025 •

edited

Loading