Skip to content

build(deps): bump the github-actions group with 4 updates #52347

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
susnux merged 1 commit into from
Apr 23, 2025
Merged

build(deps): bump the github-actions group with 4 updates #52347

susnux merged 1 commit into from
Apr 23, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 22, 2025

Bumps the github-actions group with 4 updates: shivammathur/setup-php, actions/setup-node, codecov/codecov-action and nextcloud-libraries/npm-audit-action.

Updates shivammathur/setup-php from 2.32.0 to 2.33.0

Release notes

Sourced from shivammathur/setup-php's releases.

2.33.0

Changelog

  • Added support for Arm Ubuntu runners ubuntu-24.04-arm and ubuntu-22.04-arm. (#848)
jobs:
  run:
    runs-on: ubuntu-24.04-arm # or ubuntu-22.04-arm
    steps:
    - name: Setup PHP
      uses: shivammathur/setup-php@v2
      with:
        php-version: '8.4'

  • Dropped support for Ubuntu 20.04 (ubuntu-20.04) for both GitHub hosted and self-hosted runners. Please migrate your workflows to ubuntu-22.04 or ubuntu-24.04. (#939) Ref: https://github.com/shivammathur/setup-php#github-hosted-runners

  • Improved support for installing PHPUnit around new releases. Now setup-php will fallback to the previous release till new release is available on the phpunit.de website after it is tagged. (#913, #938)

- name: Setup PHP
  uses: shivammathur/setup-php@v2
  with:
    php-version: '8.4'
    tools: phpunit
- name: Setup PHP
  uses: shivammathur/setup-php@v2
  with:
    php-version: '8.4'
  env:
    TOOLS_DIR: '/tmp/tools'
- name: Setup PHP
</tr></table>

... (truncated)

Commits
  • cf4cade Drop support for ubuntu-20.04 [skip ci]
  • 316da6e Fix phalcon and zephir_parser support on Windows
  • 34061fa Fix relay support on macOS
  • b7bd9e4 Bump version to 2.33.0
  • 78e1c95 feat: set this via an environment variable instead
  • 310e481 feat: allow tools path directory to be set
  • 42a9487 Fix pdo_oci
  • f5d98d1 Improve support for phalcon5 and zephir_parser
  • 1a94db5 Update dependencies
  • 1489f57 Merge pull request #928 from jg-development/main
  • Additional commits viewable in compare view

Updates actions/setup-node from 4.3.0 to 4.4.0

Release notes

Sourced from actions/setup-node's releases.

v4.4.0

What's Changed

Bug fixes:

Enhancement:

Dependency update:

New Contributors

Full Changelogactions/setup-node@v4...v4.4.0

Commits

Updates codecov/codecov-action from 5.4.0 to 5.4.2

Release notes

Sourced from codecov/codecov-action's releases.

v5.4.2

What's Changed

Full Changelog: codecov/codecov-action@v5.4.1...v5.4.2

v5.4.1

What's Changed

Full Changelog: codecov/codecov-action@v5.4.0...v5.4.1

v5.4.1-beta

What's Changed

Full Changelog: codecov/codecov-action@v5.4.0...v5.4.1-beta

Commits

Updates nextcloud-libraries/npm-audit-action from 0.1.0 to 0.2.0

Release notes

Sourced from nextcloud-libraries/npm-audit-action's releases.

v0.2.0

What's Changed

🐛 Fixed bugs

Other Changes

New Contributors

Full Changelog: nextcloud-libraries/npm-audit-action@v0.1.0...v0.2.0

Commits
  • 1b1728b Merge pull request #38 from nextcloud-libraries/dependabot/npm_and_yarn/npm-d...
  • 7da500d chore: prepare v0.2.0
  • 601e7d2 build(deps-dev): Bump typescript-eslint in the npm-development group
  • 2c0d0a5 Merge pull request #41 from nextcloud-libraries/dependabot/npm_and_yarn/vites...
  • de38a54 Merge pull request #37 from nextcloud-libraries/fix/unfixable
  • 31234a7 chore: adjust to follow code style
  • 2a5e0f1 build(deps-dev): Bump vitest from 1.6.0 to 3.1.1
  • a91c43c chore: compile assets
  • 1b1cf80 fix: do not list unfixable issues
  • a9ffbde chore: add release template
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the github-actions group with 4 updates
ce26d54 
Bumps the github-actions group with 4 updates: [shivammathur/setup-php](https://github.com/shivammathur/setup-php), [actions/setup-node](https://github.com/actions/setup-node), [codecov/codecov-action](https://github.com/codecov/codecov-action) and [nextcloud-libraries/npm-audit-action](https://github.com/nextcloud-libraries/npm-audit-action).


Updates `shivammathur/setup-php` from 2.32.0 to 2.33.0
- [Release notes](https://github.com/shivammathur/setup-php/releases)
- [Commits](shivammathur/setup-php@9e72090...cf4cade)

Updates `actions/setup-node` from 4.3.0 to 4.4.0
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](actions/setup-node@cdca736...49933ea)

Updates `codecov/codecov-action` from 5.4.0 to 5.4.2
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Commits](codecov/codecov-action@v5.4.0...v5.4.2)

Updates `nextcloud-libraries/npm-audit-action` from 0.1.0 to 0.2.0
- [Release notes](https://github.com/nextcloud-libraries/npm-audit-action/releases)
- [Commits](nextcloud-libraries/npm-audit-action@2a60bd2...1b1728b)

---
updated-dependencies:
- dependency-name: shivammathur/setup-php
  dependency-version: 2.33.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: actions/setup-node
  dependency-version: 4.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: codecov/codecov-action
  dependency-version: 5.4.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: nextcloud-libraries/npm-audit-action
  dependency-version: 0.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from a team April 22, 2025 13:05
@dependabot dependabot bot requested a review from a team as a code owner April 22, 2025 13:05
@dependabot dependabot bot requested review from artonge, nfebe and sorbaugh and removed request for a team April 22, 2025 13:05
@susnux susnux merged commit f5f5a07 into master Apr 23, 2025
208 of 224 checks passed
@susnux susnux deleted the dependabot/github_actions/github-actions-510ea978f9 branch April 23, 2025 21:27
@skjnldsv skjnldsv mentioned this pull request Aug 19, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@susnux susnux susnux approved these changes

@github-actions github-actions[bot] github-actions[bot] approved these changes

@artonge artonge Awaiting requested review from artonge artonge is a code owner automatically assigned from nextcloud/server-backend

@nfebe nfebe Awaiting requested review from nfebe nfebe is a code owner automatically assigned from nextcloud/server-backend

@sorbaugh sorbaugh Awaiting requested review from sorbaugh sorbaugh is a code owner automatically assigned from nextcloud/server-backend

Assignees

No one assigned

Labels

3. to review Waiting for reviews feature: dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@susnux