diff options
| author | bors[bot] <26634292+bors[bot]@users.noreply.github.com> | 2022-12-18 09:57:43 +0000 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2022-12-18 09:57:43 +0000 |
| commit | 817e2239286ff3a7d7c6996587d64a7e16a95b7f (patch) | |
| tree | 3c7b567039a9f55a33ec656337339539ba1d40b4 | |
| parent | 5fd7b54c1f2673234ffa5b483340da49b8615738 (diff) | |
| parent | 5d857b331a4a84b0e605da70256ca80038d9c1e6 (diff) | |
| parent | e93d60a2a96859fd86c1e233b987b3d47558660f (diff) | |
Merge #12 #13
12: Bump actions/checkout from 2 to 3 r=matthiasbeyer a=dependabot[bot]
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p>
<blockquote>
<h2>v3.0.0</h2>
<ul>
<li>Updated to the node16 runtime by default
<ul>
<li>This requires a minimum <a href="https://github.com/actions/runner/releases/tag/v2.285.0">Actions Runner</a> version of v2.285.0 to run, which is by default available in GHES 3.4 or later.</li>
</ul>
</li>
</ul>
<h2>v2.6.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Add backports to v2 branch by <a href="https://github.com/cory-miller"><code>`@cory-miller</code></a>` in <a href="https://github-redirect.dependabot.com/actions/checkout/pull/1040">actions/checkout#1040</a>
<ul>
<li>Includes backports from the following changes: <a href="https://github-redirect.dependabot.com/actions/checkout/pull/964">actions/checkout#964</a>, <a href="https://github-redirect.dependabot.com/actions/checkout/pull/1002">actions/checkout#1002</a>, <a href="https://github-redirect.dependabot.com/actions/checkout/pull/1029">actions/checkout#1029</a></li>
<li>Upgraded the licensed version to match what is used in v3.</li>
</ul>
</li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v2.5.0...v2.6.0">https://github.com/actions/checkout/compare/v2.5.0...v2.6.0</a></p>
<h2>v2.5.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Update <code>`@actions/core</code>` to 1.10.0 by <a href="https://github.com/rentziass"><code>`@rentziass</code></a>` in <a href="https://github-redirect.dependabot.com/actions/checkout/pull/962">actions/checkout#962</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v2...v2.5.0">https://github.com/actions/checkout/compare/v2...v2.5.0</a></p>
<h2>v2.4.2</h2>
<h2>What's Changed</h2>
<ul>
<li>Add set-safe-directory input to allow customers to take control. (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/770">#770</a>) by <a href="https://github.com/TingluoHuang"><code>`@TingluoHuang</code></a>` in <a href="https://github-redirect.dependabot.com/actions/checkout/pull/776">actions/checkout#776</a></li>
<li>Prepare changelog for v2.4.2. by <a href="https://github.com/TingluoHuang"><code>`@TingluoHuang</code></a>` in <a href="https://github-redirect.dependabot.com/actions/checkout/pull/778">actions/checkout#778</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v2...v2.4.2">https://github.com/actions/checkout/compare/v2...v2.4.2</a></p>
<h2>v2.4.1</h2>
<ul>
<li>Fixed an issue where checkout failed to run in container jobs due to the new git setting <code>safe.directory</code></li>
</ul>
<h2>v2.4.0</h2>
<ul>
<li>Convert SSH URLs like <code>org-<ORG_ID>`@github.com:</code>` to <code>https://github.com/</code> - <a href="https://github-redirect.dependabot.com/actions/checkout/pull/621">pr</a></li>
</ul>
<h2>v2.3.5</h2>
<p>Update dependencies</p>
<h2>v2.3.4</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/379">Add missing <code>await</code>s</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/360">Swap to Environment Files</a></li>
</ul>
<h2>v2.3.3</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/345">Remove Unneeded commit information from build logs</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/326">Add Licensed to verify third party dependencies</a></li>
</ul>
<h2>v2.3.2</h2>
<p><a href="https://github-redirect.dependabot.com/actions/checkout/pull/320">Add Third Party License Information to Dist Files</a></p>
<h2>v2.3.1</h2>
<p><a href="https://github-redirect.dependabot.com/actions/checkout/pull/284">Fix default branch resolution for .wiki and when using SSH</a></p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/actions/checkout/blob/main/CHANGELOG.md">actions/checkout's changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<h2>v3.1.0</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/939">Use <code>`@actions/core</code>` <code>saveState</code> and <code>getState</code></a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/922">Add <code>github-server-url</code> input</a></li>
</ul>
<h2>v3.0.2</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/770">Add input <code>set-safe-directory</code></a></li>
</ul>
<h2>v3.0.1</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/762">Fixed an issue where checkout failed to run in container jobs due to the new git setting <code>safe.directory</code></a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/744">Bumped various npm package versions</a></li>
</ul>
<h2>v3.0.0</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/689">Update to node 16</a></li>
</ul>
<h2>v2.3.1</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/284">Fix default branch resolution for .wiki and when using SSH</a></li>
</ul>
<h2>v2.3.0</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/278">Fallback to the default branch</a></li>
</ul>
<h2>v2.2.0</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/258">Fetch all history for all tags and branches when fetch-depth=0</a></li>
</ul>
<h2>v2.1.1</h2>
<ul>
<li>Changes to support GHES (<a href="https://github-redirect.dependabot.com/actions/checkout/pull/236">here</a> and <a href="https://github-redirect.dependabot.com/actions/checkout/pull/248">here</a>)</li>
</ul>
<h2>v2.1.0</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/191">Group output</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/199">Changes to support GHES alpha release</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/184">Persist core.sshCommand for submodules</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/163">Add support ssh</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/179">Convert submodule SSH URL to HTTPS, when not using SSH</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/157">Add submodule support</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/144">Follow proxy settings</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/141">Fix ref for pr closed event when a pr is merged</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/128">Fix issue checking detached when git less than 2.22</a></li>
</ul>
<h2>v2.0.0</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/108">Do not pass cred on command line</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/107">Add input persist-credentials</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/104">Fallback to REST API to download repo</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/actions/checkout/commit/755da8c3cf115ac066823e79a1e1788f8940201b"><code>755da8c</code></a> 3.2.0 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/1039">#1039</a>)</li>
<li><a href="https://github.com/actions/checkout/commit/26d48e8ea150211a9bc3b1f0c20448599687d926"><code>26d48e8</code></a> Update <code>`@actions/io</code>` to 1.1.2 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/1029">#1029</a>)</li>
<li><a href="https://github.com/actions/checkout/commit/bf085276cecdb0cc76fbbe0687a5a0e786646936"><code>bf08527</code></a> wrap pipeline commands for submoduleForeach in quotes (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/964">#964</a>)</li>
<li><a href="https://github.com/actions/checkout/commit/5c3ccc22eb2c950a0fa5bc7c47190d8e3f7e681a"><code>5c3ccc2</code></a> Replace datadog/squid with ubuntu/squid Docker image (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/1002">#1002</a>)</li>
<li><a href="https://github.com/actions/checkout/commit/1f9a0c22da41e6ebfa534300ef656657ea2c6707"><code>1f9a0c2</code></a> README - fix status badge (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/967">#967</a>)</li>
<li><a href="https://github.com/actions/checkout/commit/8230315d06ad95c617244d2f265d237a1682d445"><code>8230315</code></a> Add workflow to update a main version (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/942">#942</a>)</li>
<li><a href="https://github.com/actions/checkout/commit/93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8"><code>93ea575</code></a> Prepare release v3.1.0 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/940">#940</a>)</li>
<li><a href="https://github.com/actions/checkout/commit/6a84743051be17cee477b0a26bd866b5dba996e4"><code>6a84743</code></a> Bump <code>`@actions/core</code>` to 1.10.0 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/939">#939</a>)</li>
<li><a href="https://github.com/actions/checkout/commit/e6d535c99c374d0c3f6d8cd8086a57b43c6c700a"><code>e6d535c</code></a> Inject GitHub host to be able to clone from another GitHub instance (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/922">#922</a>)</li>
<li><a href="https://github.com/actions/checkout/commit/2541b1294d2704b0964813337f33b291d3f8596b"><code>2541b12</code></a> Prepare changelog for v3.0.2. (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/777">#777</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/actions/checkout/compare/v2...v3">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting ``@dependabot` rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- ``@dependabot` rebase` will rebase this PR
- ``@dependabot` recreate` will recreate this PR, overwriting any edits that have been made to it
- ``@dependabot` merge` will merge this PR after your CI passes on it
- ``@dependabot` squash and merge` will squash and merge this PR after your CI passes on it
- ``@dependabot` cancel merge` will cancel a previously requested merge and block automerging
- ``@dependabot` reopen` will reopen this PR if it is closed
- ``@dependabot` close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- ``@dependabot` ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
13: Bump actions/setup-python from 4.0.0 to 4.3.1 r=matthiasbeyer a=dependabot[bot]
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4.0.0 to 4.3.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/actions/setup-python/releases">actions/setup-python's releases</a>.</em></p>
<blockquote>
<h2>Improve error handling and messages</h2>
<p>In scope of this release we added improved error message to put operating system and its version in the logs (<a href="https://github-redirect.dependabot.com/actions/setup-python/pull/559">actions/setup-python#559</a>). Besides, the release</p>
<ul>
<li>fixes issue about <a href="https://github-redirect.dependabot.com/actions/setup-python/issues/518">specifying architecture for pypy-nightly on Windows</a> with related <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/520">pull request</a>.</li>
<li>improves error handling for Http Errors (<a href="https://github-redirect.dependabot.com/actions/setup-python/pull/511">actions/setup-python#511</a>).</li>
<li>updates minimatch (<a href="https://github-redirect.dependabot.com/actions/setup-python/pull/558">actions/setup-python#558</a>).</li>
</ul>
<h2>v4.3.0</h2>
<ul>
<li>Update <code>`@actions/core</code>` to 1.10.0 version <a href="https://github-redirect.dependabot.com/actions/setup-python/issues/517">#517</a></li>
<li>Update <code>`@actions/cache</code>` to 3.0.4 version <a href="https://github-redirect.dependabot.com/actions/setup-python/issues/499">#499</a></li>
<li>Only use github.token on github.com <a href="https://github-redirect.dependabot.com/actions/setup-python/issues/443">#443</a></li>
<li>Improvement of documentation <a href="https://github-redirect.dependabot.com/actions/setup-python/issues/477">#477</a> <a href="https://github-redirect.dependabot.com/actions/setup-python/issues/479">#479</a> <a href="https://github-redirect.dependabot.com/actions/setup-python/issues/491">#491</a> <a href="https://github-redirect.dependabot.com/actions/setup-python/issues/492">#492</a></li>
</ul>
<h2>Add check-latest input and bug fixes</h2>
<p>In scope of this release we add the <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/406">check-latest</a> input. If check-latest is set to true, the action first checks if the cached version is the latest one. If the locally cached version is not the most up-to-date, the version will then be downloaded from <a href="https://github.com/actions/python-versions">python-versions</a> repository. By default check-latest is set to false. For PyPy it will to try to reach <a href="https://downloads.python.org/pypy/versions.json">https://downloads.python.org/pypy/versions.json</a></p>
<h3>Example of usage:</h3>
<pre lang="yaml"><code>steps:
- uses: actions/checkout@v3
- uses: actions/setup-python@v4
with:
python-version: '3.9'
check-latest: true
- run: python --version
</code></pre>
<p>Besides, it includes such changes as</p>
<ul>
<li>Resolved logs for python-version and file inputs: <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/465">actions/setup-python#465</a></li>
<li>Added linux os release info to primary key: <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/467">actions/setup-python#467</a></li>
<li>Added fix to change Python versions for poetry: <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/445">actions/setup-python#445</a></li>
<li>Fix Tool Path handling for self-hosted runners: <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/466">actions/setup-python#466</a></li>
</ul>
<h2>v4.1.0</h2>
<p>In scope of this pull request we updated <code>actions/cache</code> package as the new version contains fixes for <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/448">caching error handling</a>. Moreover, we added a new input <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/411">update-environment</a>. This option allows to specify if the action shall update environment variables (default) or not.</p>
<h3>Update-environment input</h3>
<pre lang="yaml"><code> - name: setup-python 3.9
uses: actions/setup-python@v4
with:
python-version: 3.9
update-environment: false
</code></pre>
<p><strong>Besides, we added such changes as:</strong></p>
<ul>
<li>Allow python-version-file to be a relative path: <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/431">actions/setup-python#431</a></li>
<li>Added new environment variables for <code>Cmake</code>: <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/440">actions/setup-python#440</a></li>
<li>Updated error message for resolveVersion: <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/450">actions/setup-python#450</a></li>
<li>Assign default value of <code>AGENT_TOOLSDIRECTORY</code> if not set: <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/394">actions/setup-python#394</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/actions/setup-python/commit/2c3dd9e7e29afd70cc0950079bde6c979d1f69f9"><code>2c3dd9e</code></a> Add OS info to the error message (<a href="https://github-redirect.dependabot.com/actions/setup-python/issues/559">#559</a>)</li>
<li><a href="https://github.com/actions/setup-python/commit/76bbdfadd7792e54db5b82bd04a77913663d4dd6"><code>76bbdfa</code></a> Update minimatch (<a href="https://github-redirect.dependabot.com/actions/setup-python/issues/558">#558</a>)</li>
<li><a href="https://github.com/actions/setup-python/commit/1aafadcfb96443dc8b2c66d464369fad6ead5571"><code>1aafadc</code></a> Caching projects that use setup.py (<a href="https://github-redirect.dependabot.com/actions/setup-python/issues/549">#549</a>)</li>
<li><a href="https://github.com/actions/setup-python/commit/b80efd6bc5dcdc82c015d69ecd3e39320d0095e6"><code>b80efd6</code></a> Update to latest <code>actions/publish-action</code> (<a href="https://github-redirect.dependabot.com/actions/setup-python/issues/546">#546</a>)</li>
<li><a href="https://github.com/actions/setup-python/commit/5cddb278857fec730853802fad5126d9d78895d5"><code>5cddb27</code></a> Recommend setting python-version (<a href="https://github-redirect.dependabot.com/actions/setup-python/issues/545">#545</a>)</li>
<li><a href="https://github.com/actions/setup-python/commit/47c4a7af1d72897a511c975c95a5335bb6329dec"><code>47c4a7a</code></a> fix(ci): run <code>.github/workflows/workflow.yml</code> on ubuntu-20.04 (<a href="https://github-redirect.dependabot.com/actions/setup-python/issues/535">#535</a>)</li>
<li><a href="https://github.com/actions/setup-python/commit/af57b6499414c9dd25c305c7c008a5109c5a188f"><code>af57b64</code></a> Extend docu regarding rate limit issues. (<a href="https://github-redirect.dependabot.com/actions/setup-python/issues/510">#510</a>)</li>
<li><a href="https://github.com/actions/setup-python/commit/4818a5a1535387fb9d6e71f7ace82ad3b405804b"><code>4818a5a</code></a> Handle download HTTP error (<a href="https://github-redirect.dependabot.com/actions/setup-python/issues/511">#511</a>)</li>
<li><a href="https://github.com/actions/setup-python/commit/8bcd2560e267a43fbd8ff66c50da8a61825a0782"><code>8bcd256</code></a> Add architecture input check for PyPy for Windows platform (<a href="https://github-redirect.dependabot.com/actions/setup-python/issues/520">#520</a>)</li>
<li><a href="https://github.com/actions/setup-python/commit/13ae5bb136fac2878aff31522b9efb785519f984"><code>13ae5bb</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/actions/setup-python/issues/517">#517</a> from rentziass/rentziass/update-actions-core</li>
<li>Additional commits viewable in <a href="https://github.com/actions/setup-python/compare/v4.0.0...v4.3.1">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting ``@dependabot` rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- ``@dependabot` rebase` will rebase this PR
- ``@dependabot` recreate` will recreate this PR, overwriting any edits that have been made to it
- ``@dependabot` merge` will merge this PR after your CI passes on it
- ``@dependabot` squash and merge` will squash and merge this PR after your CI passes on it
- ``@dependabot` cancel merge` will cancel a previously requested merge and block automerging
- ``@dependabot` reopen` will reopen this PR if it is closed
- ``@dependabot` close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- ``@dependabot` ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- ``@dependabot` ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>