From 38dcf02cc0ad3bb900afab789477fae6ddde0bea Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 5 May 2026 03:54:56 +0000 Subject: [PATCH] chore(deps): Bump the development-dependencies group with 3 updates Bumps the development-dependencies group with 3 updates: [go-openapi/gh-actions](https://github.com/go-openapi/gh-actions), [github/contributors](https://github.com/github/contributors) and [taiki-e/install-action](https://github.com/taiki-e/install-action). Updates `go-openapi/gh-actions` from 1.4.12 to 1.4.13 - [Release notes](https://github.com/go-openapi/gh-actions/releases) - [Changelog](https://github.com/go-openapi/gh-actions/blob/master/release_tracker.go) - [Commits](https://github.com/go-openapi/gh-actions/compare/1ade8c4f9415b844bec4a7545967157c5bace961...21fde93224f7f4c39a622fbe7eb50e4a620eb899) Updates `github/contributors` from 2.0.9 to 2.0.10 - [Release notes](https://github.com/github/contributors/releases) - [Commits](https://github.com/github/contributors/compare/9c4c2b60e7a339d2a2ad6cd3274aeb3b5be55be2...1878140f3a38f939c76bcf4af402be1af67b5e94) Updates `taiki-e/install-action` from 2.75.30 to 2.77.0 - [Release notes](https://github.com/taiki-e/install-action/releases) - [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/taiki-e/install-action/compare/db5fb34fa772531a3ece57ca434f579eb334e0fb...7ea35f098a7369cd23488403f58be9c491a6c55f) --- updated-dependencies: - dependency-name: go-openapi/gh-actions dependency-version: 1.4.13 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: development-dependencies - dependency-name: github/contributors dependency-version: 2.0.10 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: development-dependencies - dependency-name: taiki-e/install-action dependency-version: 2.77.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: development-dependencies ... Signed-off-by: dependabot[bot] --- .github/workflows/auto-merge.yml | 2 +- .github/workflows/bump-release-monorepo.yml | 6 +++--- .github/workflows/bump-release.yml | 4 ++-- .github/workflows/collect-reports.yml | 4 ++-- .github/workflows/contributors.yml | 6 +++--- .github/workflows/go-test-monorepo.yml | 6 +++--- .github/workflows/go-test.yml | 2 +- .github/workflows/prepare-release-monorepo.yml | 6 +++--- .github/workflows/release.yml | 4 ++-- 9 files changed, 20 insertions(+), 20 deletions(-) diff --git a/.github/workflows/auto-merge.yml b/.github/workflows/auto-merge.yml index 32034b9..f07f223 100644 --- a/.github/workflows/auto-merge.yml +++ b/.github/workflows/auto-merge.yml @@ -152,7 +152,7 @@ jobs: run: gh pr review --approve "$PR_URL" - name: Wait for all workflow runs to complete - uses: go-openapi/gh-actions/ci-jobs/wait-pending-jobs@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/ci-jobs/wait-pending-jobs@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 with: pr-url: ${{ env.PR_URL }} github-token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/bump-release-monorepo.yml b/.github/workflows/bump-release-monorepo.yml index 32699ac..7fcbe00 100644 --- a/.github/workflows/bump-release-monorepo.yml +++ b/.github/workflows/bump-release-monorepo.yml @@ -136,7 +136,7 @@ jobs: - name: Detect go mono-repo id: detect-monorepo - uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 bump-release-single: name: Bump release (single module) @@ -195,7 +195,7 @@ jobs: - name: Determine next tag id: bump-release - uses: go-openapi/gh-actions/ci-jobs/next-tag@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/ci-jobs/next-tag@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 with: bump-patch: ${{ steps.bump-check.outputs.bump-patch }} bump-minor: ${{ steps.bump-check.outputs.bump-minor }} @@ -307,7 +307,7 @@ jobs: - name: Configure bot credentials if: ${{ inputs.enable-tag-signing == 'true' }} - uses: go-openapi/gh-actions/ci-jobs/bot-credentials@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/ci-jobs/bot-credentials@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 # This is using the GPG signature of bot-go-openapi. # # For go-openapi repos (using secrets: inherit): diff --git a/.github/workflows/bump-release.yml b/.github/workflows/bump-release.yml index 0833620..591853b 100644 --- a/.github/workflows/bump-release.yml +++ b/.github/workflows/bump-release.yml @@ -114,7 +114,7 @@ jobs: - name: Determine next tag id: bump-release - uses: go-openapi/gh-actions/ci-jobs/next-tag@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/ci-jobs/next-tag@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 with: bump-patch: ${{ steps.bump-check.outputs.bump-patch }} bump-minor: ${{ steps.bump-check.outputs.bump-minor }} @@ -122,7 +122,7 @@ jobs: - name: Configure bot credentials if: ${{ inputs.enable-tag-signing == 'true' }} - uses: go-openapi/gh-actions/ci-jobs/bot-credentials@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/ci-jobs/bot-credentials@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 # This is using the GPG signature of bot-go-openapi. # # For go-openapi repos (using secrets: inherit): diff --git a/.github/workflows/collect-reports.yml b/.github/workflows/collect-reports.yml index 7625b2c..6e25330 100644 --- a/.github/workflows/collect-reports.yml +++ b/.github/workflows/collect-reports.yml @@ -32,7 +32,7 @@ jobs: path: reports/ - name: Install go-junit-report - uses: go-openapi/gh-actions/install/go-junit-report@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/install/go-junit-report@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 - name: Convert test reports to a merged JUnit XML # NOTE: codecov test reports only support JUnit format at this moment. See https://docs.codecov.com/docs/test-analytics. @@ -57,7 +57,7 @@ jobs: verbose: true - name: Install go-ctrf-json-reporter - uses: go-openapi/gh-actions/install/go-ctrf-json-reporter@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/install/go-ctrf-json-reporter@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 - name: Convert test reports to CTRF JSON # description: | diff --git a/.github/workflows/contributors.yml b/.github/workflows/contributors.yml index 58a7309..385421d 100644 --- a/.github/workflows/contributors.yml +++ b/.github/workflows/contributors.yml @@ -70,7 +70,7 @@ jobs: - name: Checkout repository uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: Identify all-time contributors to this repository - uses: github/contributors@9c4c2b60e7a339d2a2ad6cd3274aeb3b5be55be2 # v2.0.9 + uses: github/contributors@1878140f3a38f939c76bcf4af402be1af67b5e94 # v2.0.10 env: GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} REPOSITORY: ${{ github.repository }} @@ -118,7 +118,7 @@ jobs: } > "${file}" done - name: Configure bot credentials - uses: go-openapi/gh-actions/ci-jobs/bot-credentials@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/ci-jobs/bot-credentials@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 id: bot-credentials # For go-openapi repos (using secrets: inherit): # Falls back to: CI_BOT_APP_ID, CI_BOT_APP_PRIVATE_KEY, CI_BOT_GPG_PRIVATE_KEY, etc. @@ -183,7 +183,7 @@ jobs: - name: Auto-approve PR run: gh pr review --approve "$PR_URL" - name: Wait for all workflow runs to complete - uses: go-openapi/gh-actions/ci-jobs/wait-pending-jobs@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/ci-jobs/wait-pending-jobs@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 with: pr-url: ${{ env.PR_URL }} github-token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/go-test-monorepo.yml b/.github/workflows/go-test-monorepo.yml index 117d217..3d3539f 100644 --- a/.github/workflows/go-test-monorepo.yml +++ b/.github/workflows/go-test-monorepo.yml @@ -55,7 +55,7 @@ jobs: - name: Detect go mono-repo id: detect-monorepo - uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 - name: golangci-lint [monorepo] # golangci-action v9.1+ has an experimental built-in mono repo detection setup. @@ -132,10 +132,10 @@ jobs: - name: Detect go version capabilities id: detect-go-version - uses: go-openapi/gh-actions/ci-jobs/detect-go-version@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/ci-jobs/detect-go-version@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 - name: Install gotestsum - uses: go-openapi/gh-actions/install/gotestsum@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/install/gotestsum@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 - name: Ensure TMP is created on windows runners # On windows, some tests require testing.TempDir to reside on the same drive as the code. diff --git a/.github/workflows/go-test.yml b/.github/workflows/go-test.yml index 9c7b370..ccf1507 100644 --- a/.github/workflows/go-test.yml +++ b/.github/workflows/go-test.yml @@ -80,7 +80,7 @@ jobs: cache: true - name: Install gotestsum - uses: go-openapi/gh-actions/install/gotestsum@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/install/gotestsum@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 - name: Ensure TMP is created on windows runners # On windows, some tests require testing.TempDir to reside on the same drive as the code. diff --git a/.github/workflows/prepare-release-monorepo.yml b/.github/workflows/prepare-release-monorepo.yml index 11d04d0..757b1c4 100644 --- a/.github/workflows/prepare-release-monorepo.yml +++ b/.github/workflows/prepare-release-monorepo.yml @@ -108,7 +108,7 @@ jobs: cache-dependency-path: "**/go.sum" - name: Detect go mono-repo id: detect-monorepo - uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 - name: Update go.mod files for new release env: TARGET_TAG: ${{ inputs.target-tag }} @@ -185,7 +185,7 @@ jobs: echo "::notice title=changes::Git status after updates" git status --short - name: Configure bot credentials - uses: go-openapi/gh-actions/ci-jobs/bot-credentials@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/ci-jobs/bot-credentials@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 id: bot-credentials # For go-openapi repos (using secrets: inherit): # Falls back to: CI_BOT_APP_ID, CI_BOT_APP_PRIVATE_KEY, CI_BOT_GPG_PRIVATE_KEY, etc. @@ -268,7 +268,7 @@ jobs: run: gh pr review --approve "$PR_URL" - name: Wait for all workflow runs to complete if: ${{ needs.prepare-modules.outputs.pull-request-url != '' }} - uses: go-openapi/gh-actions/ci-jobs/wait-pending-jobs@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/ci-jobs/wait-pending-jobs@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 with: pr-url: ${{ env.PR_URL }} github-token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 203fc4a..5d5c7ca 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -89,10 +89,10 @@ jobs: name: Detect go mono-repo if: ${{ inputs.is-monorepo == 'true' }} id: detect-monorepo - uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@1ade8c4f9415b844bec4a7545967157c5bace961 # v1.14.12 + uses: go-openapi/gh-actions/ci-jobs/detect-go-monorepo@21fde93224f7f4c39a622fbe7eb50e4a620eb899 # v1.14.12 - name: Install git-cliff - uses: taiki-e/install-action@db5fb34fa772531a3ece57ca434f579eb334e0fb # v2.75.30 + uses: taiki-e/install-action@7ea35f098a7369cd23488403f58be9c491a6c55f # v2.77.0 with: tool: git-cliff -