Skip to content

build(deps): bump the github-actions group with 4 updates #54772

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
AndyScherzinger merged 1 commit into from
Sep 1, 2025
Merged

build(deps): bump the github-actions group with 4 updates #54772

AndyScherzinger merged 1 commit into from
Sep 1, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 31, 2025

Bumps the github-actions group with 4 updates: actions/checkout, shivammathur/setup-php, codecov/codecov-action and LizardByte/actions.

Updates actions/checkout from 4 to 5

Release notes

Sourced from actions/checkout's releases.

v5.0.0

What's Changed

⚠️ Minimum Compatible Runner Version

v2.327.1
Release Notes

Make sure your runner is updated to this version or newer to use this release.

Full Changelog: actions/checkout@v4...v5.0.0

v4.3.0

What's Changed

New Contributors

Full Changelog: actions/checkout@v4...v4.3.0

v4.2.2

What's Changed

Full Changelog: actions/checkout@v4.2.1...v4.2.2

v4.2.1

What's Changed

New Contributors

Full Changelog: actions/checkout@v4.2.0...v4.2.1

... (truncated)

Commits

Updates shivammathur/setup-php from 2.35.2 to 2.35.4

Release notes

Sourced from shivammathur/setup-php's releases.

2.35.4

Changelog

  • Fixed updating brew core tap before installing PHP on macOS.

  • Updated actions in internal workflows.

  • Updated Node.js dependencies.

For the complete list of changes, please refer to the Full Changelog

2.35.3

Changelog

  • Improved github-token support for GitHub Enterprise. (#981).

    For GitHub Enterprise users, the github-token input does not default to the GITHUB_TOKEN secret. Therefore, it's recommended to set the github-token input to a Personal Access Token (PAT).

- name: Setup PHP
  uses: shivammathur/setup-php@v2
  with:
    php-version: '8.4'
    github-token: ${{ secrets.YOUR_PAT_TOKEN }}

  • Fixed support for relay extension for PHP 7.4 on macOS.

  • Updated internal workflows to not run on forks. (#982)

  • Updated Node.js dependencies.

Thanks @​jrfnl for the contributions 🎉

For the complete list of changes, please refer to the Full Changelog

Commits
  • ec406be Bump version to 2.35.4
  • 36a27b0 Move to main branch for protoc
  • ea2f858 Move to main branch for brew
  • 507ff06 Merge pull request #989 from shivammathur/dependabot/github_actions/develop/a...
  • 629475b Bump actions/checkout from 4 to 5
  • 521f2e5 Merge pull request #986 from shivammathur/dependabot/github_actions/develop/a...
  • 259d177 Bump actions/download-artifact from 4 to 5
  • 2052987 Bump version to 2.35.3
  • 68634e7 Fix relay for PHP 7.4 [skip ci]
  • 0ac4874 Merge pull request #982 from jrfnl/feature/ghactions-dont-run-cronjobs-on-forks
  • Additional commits viewable in compare view

Updates codecov/codecov-action from 5.4.3 to 5.5.0

Release notes

Sourced from codecov/codecov-action's releases.

v5.5.0

What's Changed

New Contributors

Full Changelog: codecov/codecov-action@v5.4.3...v5.5.0

Changelog

Sourced from codecov/codecov-action's changelog.

v5.5.0

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0

v5.4.3

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3

v5.4.2

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.4.1..v5.4.2

v5.4.1

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.4.0..v5.4.1

v5.4.0

What's Changed

... (truncated)

Commits

Updates LizardByte/actions from 2025.715.25226 to 2025.814.40518

Release notes

Sourced from LizardByte/actions's releases.

v2025.814.40518

What's Changed

Full Changelog: LizardByte/actions@v2025.715.25226...v2025.814.40518

Contributors

v2025.814.40459

What's Changed

Full Changelog: LizardByte/actions@v2025.715.25226...v2025.814.40459

Contributors

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the github-actions group with 4 updates
f816a0b 
Bumps the github-actions group with 4 updates: [actions/checkout](https://github.com/actions/checkout), [shivammathur/setup-php](https://github.com/shivammathur/setup-php), [codecov/codecov-action](https://github.com/codecov/codecov-action) and [LizardByte/actions](https://github.com/lizardbyte/actions).


Updates `actions/checkout` from 4 to 5
- [Release notes](https://github.com/actions/checkout/releases)
- [Commits](actions/checkout@v4...v5)

Updates `shivammathur/setup-php` from 2.35.2 to 2.35.4
- [Release notes](https://github.com/shivammathur/setup-php/releases)
- [Commits](shivammathur/setup-php@ccf2c62...ec406be)

Updates `codecov/codecov-action` from 5.4.3 to 5.5.0
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](codecov/codecov-action@18283e0...fdcc847)

Updates `LizardByte/actions` from 2025.715.25226 to 2025.814.40518
- [Release notes](https://github.com/lizardbyte/actions/releases)
- [Commits](LizardByte/actions@eddc8fc...bff0a19)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: shivammathur/setup-php
  dependency-version: 2.35.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: codecov/codecov-action
  dependency-version: 5.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: LizardByte/actions
  dependency-version: 2025.814.40518
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from a team as a code owner August 31, 2025 22:12
@dependabot dependabot bot requested review from icewind1991 and removed request for a team August 31, 2025 22:12
@dependabot dependabot bot added the 3. to review Waiting for reviews label Aug 31, 2025
@dependabot dependabot bot requested review from come-nc and leftybournes August 31, 2025 22:12
@AndyScherzinger AndyScherzinger merged commit be89b72 into master Sep 1, 2025
202 of 204 checks passed
@AndyScherzinger AndyScherzinger deleted the dependabot/github_actions/github-actions-887c337615 branch September 1, 2025 07:14
@AndyScherzinger AndyScherzinger added this to the Nextcloud 32 milestone Sep 1, 2025
@nextcloud-bot nextcloud-bot mentioned this pull request Sep 2, 2025
Merged
@skjnldsv skjnldsv modified the milestones: Nextcloud 32, Nextcloud 33 Sep 28, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

@icewind1991 icewind1991 Awaiting requested review from icewind1991 icewind1991 is a code owner automatically assigned from nextcloud/server-backend

@leftybournes leftybournes Awaiting requested review from leftybournes leftybournes is a code owner automatically assigned from nextcloud/server-backend

@come-nc come-nc Awaiting requested review from come-nc come-nc is a code owner automatically assigned from nextcloud/server-backend

Assignees

No one assigned

Labels

3. to review Waiting for reviews feature: dependencies

Projects

None yet

Milestone

Nextcloud 32

Development

Successfully merging this pull request may close these issues.

3 participants

@AndyScherzinger @skjnldsv