Skip to content

chore(deps): bump the all group with 4 updates #2255

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

chore(deps): bump the all group with 4 updates #2255

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 1, 2025
edited
Loading

Bumps the all group with 4 updates: docker/setup-qemu-action, docker/setup-buildx-action, golangci/golangci-lint-action and sigstore/cosign-installer.

Updates docker/setup-qemu-action from 737ba1e397ec2caff0d098f75e1136f9a926dc0a to 05340d1c670183e7caabdb33ae9f1c80fae3b0c2

Commits
  • 05340d1 Merge pull request #217 from docker/dependabot/npm_and_yarn/docker/actions-to...
  • 2c50240 chore: update generated content
  • 914cee9 build(deps): bump @​docker/actions-toolkit from 0.56.0 to 0.62.1
  • See full diff in compare view

Updates docker/setup-buildx-action from 3f1544eb9eff0b4d4d279b33f704a06fcf8d0e43 to e468171a9de216ec08956ac3ada2f0791b6bd435

Commits
  • e468171 Merge pull request #429 from crazy-max/fix-keep-state
  • a3e7502 chore: update generated content
  • b145473 fix keep-state not being respected
  • 18ce135 Merge pull request #425 from docker/dependabot/npm_and_yarn/docker/actions-to...
  • 0e198e9 chore: update generated content
  • 05f3f3a build(deps): bump @​docker/actions-toolkit from 0.61.0 to 0.62.1
  • 6229134 Merge pull request #427 from crazy-max/keep-state
  • c6f6a07 chore: update generated content
  • 6c5e29d skip builder creation if one already exists with the same name
  • 548b297 ci: keep-state check
  • Additional commits viewable in compare view

Updates golangci/golangci-lint-action from 481777f62fe06de6923fd3a69efd3ba597fe628a to 4f58623b88e35c8172c05b70ed3b93ee8a1bfdd1

Commits
  • 4f58623 build(deps): bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 in ...
  • cc227bc build(deps-dev): bump the dev-dependencies group with 4 updates (#1257)
  • f509bac build(deps): bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 in ...
  • 8861dcf build(deps-dev): bump the dev-dependencies group with 5 updates (#1254)
  • dee96ac build(deps): bump brace-expansion from 1.1.11 to 1.1.12 (#1252)
  • a33ebd7 build(deps-dev): bump the dev-dependencies group with 2 updates (#1250)
  • cf2fd4c docs: remove perf example
  • 09dada9 build(deps): bump @​types/node from 22.15.29 to 22.15.30 in the dependencies g...
  • 73aa715 build(deps-dev): bump the dev-dependencies group with 2 updates (#1247)
  • 5286ed6 build(deps): bump @​types/node from 22.15.21 to 22.15.29 in the dependencies g...
  • Additional commits viewable in compare view

Updates sigstore/cosign-installer from 3.8.2 to 3.9.1

Release notes

Sourced from sigstore/cosign-installer's releases.

v3.9.1

What's Changed

Full Changelog: sigstore/cosign-installer@v3.9.0...v3.9.1

v3.9.0

What's Changed

Full Changelog: sigstore/cosign-installer@v3...v3.9.0

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jul 1, 2025
@dependabot
chore(deps): bump the all group with 4 updates
fd63129 
Bumps the all group with 4 updates: [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action), [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action), [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) and [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer).


Updates `docker/setup-qemu-action` from 737ba1e397ec2caff0d098f75e1136f9a926dc0a to 05340d1c670183e7caabdb33ae9f1c80fae3b0c2
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](docker/setup-qemu-action@737ba1e...05340d1)

Updates `docker/setup-buildx-action` from 3f1544eb9eff0b4d4d279b33f704a06fcf8d0e43 to e468171a9de216ec08956ac3ada2f0791b6bd435
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](docker/setup-buildx-action@3f1544e...e468171)

Updates `golangci/golangci-lint-action` from 481777f62fe06de6923fd3a69efd3ba597fe628a to 4f58623b88e35c8172c05b70ed3b93ee8a1bfdd1
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](golangci/golangci-lint-action@481777f...4f58623)

Updates `sigstore/cosign-installer` from 3.8.2 to 3.9.1
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](sigstore/cosign-installer@3454372...398d4b0)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-version: 05340d1c670183e7caabdb33ae9f1c80fae3b0c2
  dependency-type: direct:production
  dependency-group: all
- dependency-name: docker/setup-buildx-action
  dependency-version: e468171a9de216ec08956ac3ada2f0791b6bd435
  dependency-type: direct:production
  dependency-group: all
- dependency-name: golangci/golangci-lint-action
  dependency-version: 4f58623b88e35c8172c05b70ed3b93ee8a1bfdd1
  dependency-type: direct:production
  dependency-group: all
- dependency-name: sigstore/cosign-installer
  dependency-version: 3.9.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/github_actions/master/all-d541adeecb branch from fd29757 to fd63129 Compare July 3, 2025 01:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants