Releases: zgosalvez/github-actions-ensure-sha-pinned-actions
Releases · zgosalvez/github-actions-ensure-sha-pinned-actions
v5.0.4
What's Changed
- Bump picomatch from 2.3.1 to 2.3.2 by @dependabot[bot] in #302
- Bump eslint from 10.0.3 to 10.1.0 by @dependabot[bot] in #301
- Bump brace-expansion by @dependabot[bot] in #303
- Bump yaml from 2.8.2 to 2.8.3 by @dependabot[bot] in #300
Full Changelog: v5...v5.0.4
Contributors
dependabot
Assets 2
v5.0.3
What's Changed
- Bump flatted from 3.3.1 to 3.4.2 by @dependabot[bot] in #299
Full Changelog: v5...v5.0.3
Contributors
dependabot
Assets 2
v5.0.2
What's Changed
- Bump jest from 30.2.0 to 30.3.0 by @dependabot[bot] in #298
- Bump eslint from 10.0.1 to 10.0.3 by @dependabot[bot] in #295
- Bump actions/cache from 5.0.1 to 5.0.3 by @dependabot[bot] in #294
- Bump undici from 6.23.0 to 6.24.1 by @dependabot[bot] in #297
- Bump actions/checkout from 6.0.1 to 6.0.2 by @dependabot[bot] in #293
- Bump actions/setup-node from 6.1.0 to 6.2.0 by @dependabot[bot] in #292
Full Changelog: v5...v5.0.2
Contributors
dependabot
Assets 2
v5.0.1
What's Changed
- Bump eslint from 10.0.0 to 10.0.1 by @dependabot[bot] in #287
- Bump minimatch by @dependabot[bot] in #289
- Bump minimatch by @dependabot[bot] in #290
Full Changelog: v5...v5.0.1
Contributors
dependabot
Assets 2
v5.0.0
What's Changed
- Bump actions/cache from 4.3.0 to 5.0.1 by @dependabot[bot] in #277
- Bump eslint from 9.39.1 to 10.0.0 by @dependabot[bot] in #281
- Bump @actions/glob from 0.5.0 to 0.6.1 by @dependabot[bot] in #280
- Bump @actions/core from 1.11.1 to 3.0.0 by @dependabot[bot] in #282
- Potential fix for code scanning alert no. 11: Workflow does not contain permissions by @zgosalvez in #283
- Potential fix for code scanning alert no. 10: Workflow does not contain permissions by @zgosalvez in #284
- Potential fix for code scanning alert no. 12: Shell command built from environment values by @zgosalvez in #285
- Potential fix for code scanning alert no. 12: Shell command built from environment values by @zgosalvez in #286
Full Changelog: v4...v5.0.0
Contributors
zgosalvez and dependabot
Assets 2
v4.0.2
What's Changed
- Bump zgosalvez/github-actions-get-action-runs-using-version from 2.0.24 to 2.0.25 by @dependabot[bot] in #275
- Bump stefanzweifel/git-auto-commit-action from 7.0.0 to 7.1.0 by @dependabot[bot] in #274
- Bump actions/setup-node from 6.0.0 to 6.1.0 by @dependabot[bot] in #276
- Bump actions/checkout from 6.0.0 to 6.0.1 by @dependabot[bot] in #278
Full Changelog: v4...v4.0.2
Contributors
dependabot
Assets 2
v4.0.1
What's Changed
- Bump actions/checkout from 5.0.0 to 6.0.0 by @dependabot[bot] in #270
- Bump glob from 10.4.5 to 10.5.0 by @dependabot[bot] in #269
- Bump js-yaml from 3.14.1 to 3.14.2 by @dependabot[bot] in #268
- Bump eslint from 9.36.0 to 9.39.1 by @dependabot[bot] in #267
- Bump actions/setup-node from 4.4.0 to 6.0.0 by @dependabot[bot] in #266
- Bump stefanzweifel/git-auto-commit-action from 6.0.1 to 7.0.0 by @dependabot[bot] in #265
- Bump jest from 30.1.3 to 30.2.0 by @dependabot[bot] in #260
- Bump yaml from 2.8.1 to 2.8.2 by @dependabot[bot] in #271
Full Changelog: v4...v4.0.1
Contributors
dependabot
Assets 2
v4.0.0
What's Changed
- Bump @vercel/ncc from 0.38.3 to 0.38.4 by @dependabot[bot] in #257
- Bump actions/checkout from 4.2.2 to 5.0.0 by @dependabot[bot] in #253
- Bump eslint from 9.26.0 to 9.36.0 by @dependabot[bot] in #256
- Bump jest from 29.7.0 to 30.1.3 by @dependabot[bot] in #255
- Bump actions/cache from 4.2.3 to 4.2.4 by @dependabot[bot] in #252
- Bump zgosalvez/github-actions-get-action-runs-using-version from 2.0.22 to 2.0.24 by @dependabot[bot] in #234
- Bump stefanzweifel/git-auto-commit-action from 5.2.0 to 6.0.1 by @dependabot[bot] in #242
- Bump yaml from 2.7.1 to 2.8.1 by @dependabot[bot] in #248
- Bump brace-expansion from 1.1.11 to 1.1.12 by @dependabot[bot] in #258
- fix #116: support composite actions by @atchertchian in #239
New Contributors
- @atchertchian made their first contribution in #239
Full Changelog: v3...v4.0.0
Contributors
atchertchian and dependabot
Assets 2
v3.0.25
What's Changed
- Bump undici from 5.28.5 to 5.29.0 by @dependabot in #230
Full Changelog: v3...v3.0.25
Contributors
dependabot
Assets 2
v3.0.24
What's Changed
- Bump eslint from 9.23.0 to 9.26.0 by @dependabot in #229
- Bump stefanzweifel/git-auto-commit-action from 5.1.0 to 5.2.0 by @dependabot in #228
- Bump actions/setup-node from 4.2.0 to 4.4.0 by @dependabot in #227
- Bump zgosalvez/github-actions-get-action-runs-using-version from 2.0.21 to 2.0.22 by @dependabot in #223
- Bump yaml from 2.7.0 to 2.7.1 by @dependabot in #221
Full Changelog: v3...v3.0.24
Contributors
dependabot