Bump actions/checkout from 2.4.0 to 3.0.2 #389

dependabot · 2022-04-25T05:09:10Z

Bumps actions/checkout from 2.4.0 to 3.0.2.

Release notes

Sourced from actions/checkout's releases.

v3.0.2

What's Changed

Add set-safe-directory input to allow customers to take control. by @TingluoHuang in actions/checkout#770

Prepare changelog for v3.0.2. by @TingluoHuang in actions/checkout#777

Full Changelog: actions/checkout@v3...v3.0.2

v3.0.1

Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory

Bumped various npm package versions

v3.0.0

Updated to the node16 runtime by default

This requires a minimum Actions Runner version of v2.285.0 to run, which is by default available in GHES 3.4 or later.

v2.4.2

What's Changed

Add set-safe-directory input to allow customers to take control. (#770) by @TingluoHuang in actions/checkout#776

Prepare changelog for v2.4.2. by @TingluoHuang in actions/checkout#778

Full Changelog: actions/checkout@v2...v2.4.2

v2.4.1

Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory

Changelog

Sourced from actions/checkout's changelog.

v3.0.2

Add input set-safe-directory

v3.0.1

Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory

Bumped various npm package versions

v3.0.0

Update to node 16

v2.3.1

Fix default branch resolution for .wiki and when using SSH

v2.3.0

Fallback to the default branch

v2.2.0

Fetch all history for all tags and branches when fetch-depth=0

v2.1.1

Changes to support GHES (here and here)

v2.1.0

Group output

Changes to support GHES alpha release

Persist core.sshCommand for submodules

Add support ssh

Convert submodule SSH URL to HTTPS, when not using SSH

Add submodule support

Follow proxy settings

Fix ref for pr closed event when a pr is merged

Fix issue checking detached when git less than 2.22

v2.0.0

Do not pass cred on command line

Add input persist-credentials

Fallback to REST API to download repo

v2 (beta)

Improved fetch performance

The default behavior now fetches only the SHA being checked-out

Script authenticated git commands

... (truncated)

Commits

2541b12 Prepare changelog for v3.0.2. (#777)
0ffe6f9 Add set-safe-directory input to allow customers to take control. (#770)
dcd71f6 Enforce safe directory (#762)
add3486 Patch to fix the dependbot alert. (#744)
5126516 Bump minimist from 1.2.5 to 1.2.6 (#741)
d50f8ea Add v3.0 release information to changelog (#740)
2d1c119 update test workflows to checkout v3 (#709)
a12a394 update readme for v3 (#708)
8f9e05e Update to node 16 (#689)
230611d Change secret name for PAT to not start with GITHUB_ (#623)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [actions/checkout](https://github.com/actions/checkout) from 2.4.0 to 3.0.2. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v2.4.0...v3.0.2) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>

…p ci] Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3.7.1 to 3.8.0. Release notes *Sourced from [docker/setup-buildx-action's releases](https://github.com/docker/setup-buildx-action/releases).* > v3.8.0 > ------ > > * Make cloud prefix optional to download buildx if driver is cloud by [`@crazy-max`](https://github.com/crazy-max) in [docker/setup-buildx-action#390](https://redirect.github.com/docker/setup-buildx-action/pull/390) > * Bump `@actions/core` from 1.10.1 to 1.11.1 in [docker/setup-buildx-action#370](https://redirect.github.com/docker/setup-buildx-action/pull/370) > * Bump `@docker/actions-toolkit` from 0.39.0 to 0.48.0 in [docker/setup-buildx-action#389](https://redirect.github.com/docker/setup-buildx-action/pull/389) > * Bump cross-spawn from 7.0.3 to 7.0.6 in [docker/setup-buildx-action#382](https://redirect.github.com/docker/setup-buildx-action/pull/382) > > **Full Changelog**: <docker/setup-buildx-action@v3.7.1...v3.8.0> Commits * [`6524bf6`](docker/setup-buildx-action@6524bf6) Merge pull request [#390](https://redirect.github.com/docker/setup-buildx-action/issues/390) from crazy-max/buildx-cloud-latest * [`8d5e074`](docker/setup-buildx-action@8d5e074) chore: update generated content * [`7199e57`](docker/setup-buildx-action@7199e57) make cloud prefix optional to download buildx if driver is cloud * [`db63cee`](docker/setup-buildx-action@db63cee) Merge pull request [#381](https://redirect.github.com/docker/setup-buildx-action/issues/381) from docker/dependabot/github\_actions/codecov/codecov... * [`043ebe1`](docker/setup-buildx-action@043ebe1) Merge pull request [#389](https://redirect.github.com/docker/setup-buildx-action/issues/389) from docker/dependabot/npm\_and\_yarn/docker/actions-to... * [`686da90`](docker/setup-buildx-action@686da90) chore: update generated content * [`a3d7487`](docker/setup-buildx-action@a3d7487) Merge pull request [#382](https://redirect.github.com/docker/setup-buildx-action/issues/382) from docker/dependabot/npm\_and\_yarn/cross-spawn-7.0.6 * [`4dcdbce`](docker/setup-buildx-action@4dcdbce) build(deps): bump `@docker/actions-toolkit` from 0.39.0 to 0.48.0 * [`1a8ac74`](docker/setup-buildx-action@1a8ac74) ci: fix deprecated input for codecov-action * [`e827ebe`](docker/setup-buildx-action@e827ebe) build(deps): bump cross-spawn from 7.0.3 to 7.0.6 * Additional commits viewable in [compare view](docker/setup-buildx-action@c47758b...6524bf6) [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility\_score?dependency-name=docker/setup-buildx-action&package-manager=github\_actions&previous-version=3.7.1&new-version=3.8.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code labels Apr 25, 2022

dependabot bot mentioned this pull request Apr 25, 2022

Bump actions/checkout from 2.4.0 to 3.0.1 #378

Closed

dependabot bot force-pushed the dependabot/github_actions/actions/checkout-3.0.2 branch 2 times, most recently from 4c4c8a0 to 83425dc Compare July 14, 2022 21:02

arcade-player self-requested a review July 14, 2022 21:03

dependabot bot force-pushed the dependabot/github_actions/actions/checkout-3.0.2 branch from 83425dc to 1066ae9 Compare July 14, 2022 21:03

arcade-player approved these changes Jul 14, 2022

View reviewed changes

mergify bot merged commit c280ac9 into main Jul 14, 2022

dependabot bot deleted the dependabot/github_actions/actions/checkout-3.0.2 branch July 14, 2022 21:06

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Bump actions/checkout from 2.4.0 to 3.0.2 #389

Bump actions/checkout from 2.4.0 to 3.0.2 #389

Uh oh!

dependabot bot commented on behalf of github Apr 25, 2022 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Uh oh!

Bump actions/checkout from 2.4.0 to 3.0.2 #389

Bump actions/checkout from 2.4.0 to 3.0.2 #389

Uh oh!

Conversation

dependabot bot commented on behalf of github Apr 25, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v3.0.2

What's Changed

v3.0.1

v3.0.0

v2.4.2

What's Changed

v2.4.1

v3.0.2

v3.0.1

v3.0.0

v2.3.1

v2.3.0

v2.2.0

v2.1.1

v2.1.0

v2.0.0

v2 (beta)

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

dependabot bot commented on behalf of github Apr 25, 2022 •

edited

Loading