Skip to content

deps(actions): bump the actions group across 1 directory with 8 updates#29

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions-163ade5866
Open

deps(actions): bump the actions group across 1 directory with 8 updates#29
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions-163ade5866

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 14, 2026

Copy link
Copy Markdown
Contributor

Bumps the actions group with 8 updates in the / directory:

Package From To
EmbarkStudios/cargo-deny-action 2.0.20 2.1.1
crate-ci/typos 1.47.2 1.48.0
taiki-e/install-action 2.82.6 2.83.2
docker/setup-buildx-action 4.1.0 4.2.0
docker/build-push-action 7.2.0 7.3.0
astral-sh/setup-uv 8.2.0 8.3.2
actions/setup-java 5.4.0 5.5.0
actions/setup-node 6.4.0 7.0.0

Updates EmbarkStudios/cargo-deny-action from 2.0.20 to 2.1.1

Commits

Updates crate-ci/typos from 1.47.2 to 1.48.0

Release notes

Sourced from crate-ci/typos's releases.

v1.48.0

[1.48.0] - 2026-06-30

Features

  • Updated the dictionary with the June 2026 changes
Changelog

Sourced from crate-ci/typos's changelog.

Change Log

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog and this project adheres to Semantic Versioning.

[Unreleased] - ReleaseDate

[1.48.0] - 2026-06-30

Features

  • Updated the dictionary with the June 2026 changes

[1.47.2] - 2026-06-04

Fixes

  • Don't correct inferrable
  • Correct unused inferible variant

[1.47.1] - 2026-06-03

Fixes

  • Don't correct requestors

[1.47.0] - 2026-05-29

Features

  • Updated the dictionary with the May 2026 changes

[1.46.3] - 2026-05-23

Fixes

  • Don't correct to sequentials
  • Don't correct to subdolder

[1.46.2] - 2026-05-16

Fixes

  • Don't correct to criterias
  • Don't correct to replaceables

[1.46.1] - 2026-05-08

... (truncated)

Commits

Updates taiki-e/install-action from 2.82.6 to 2.83.2

Release notes

Sourced from taiki-e/install-action's releases.

2.83.2

  • Update parse-dockerfile@latest to 0.1.8.

  • Update mise@latest to 2026.7.5.

  • Update just@latest to 1.56.0.

  • Update gungraun-runner@latest to 0.19.4.

  • Update cargo-neat@latest to 0.4.1.

2.83.1

  • Update rclone@latest to 1.74.4.

  • Update mise@latest to 2026.7.4.

  • Update cargo-deny@latest to 0.20.2.

2.83.0

  • Support cargo-about. (#1924, thanks @​ruffsl)

  • Update uv@latest to 0.11.28.

  • Update martin@latest to 1.12.0.

  • Update kingfisher@latest to 1.106.0.

  • Update biome@latest to 2.5.3.

2.82.11

  • Update wasm-tools@latest to 1.253.0.

  • Update uv@latest to 0.11.27.

  • Update mise@latest to 2026.7.2.

  • Update mdbook@latest to 0.5.4.

2.82.10

  • Update tombi@latest to 1.2.0.

  • Update cargo-nextest@latest to 0.9.140.

2.82.9

  • Update vacuum@latest to 0.29.9.

  • Update prek@latest to 0.4.8.

  • Update cargo-tarpaulin@latest to 0.37.0.

... (truncated)

Changelog

Sourced from taiki-e/install-action's changelog.

Changelog

All notable changes to this project will be documented in this file.

This project adheres to Semantic Versioning.

[Unreleased]

[2.83.2] - 2026-07-12

  • Update parse-dockerfile@latest to 0.1.8.

  • Update mise@latest to 2026.7.5.

  • Update just@latest to 1.56.0.

  • Update gungraun-runner@latest to 0.19.4.

  • Update cargo-neat@latest to 0.4.1.

[2.83.1] - 2026-07-10

  • Update rclone@latest to 1.74.4.

  • Update mise@latest to 2026.7.4.

  • Update cargo-deny@latest to 0.20.2.

[2.83.0] - 2026-07-09

  • Support cargo-about. (#1924, thanks @​ruffsl)

  • Update uv@latest to 0.11.28.

  • Update martin@latest to 1.12.0.

  • Update kingfisher@latest to 1.106.0.

  • Update biome@latest to 2.5.3.

[2.82.11] - 2026-07-08

  • Update wasm-tools@latest to 1.253.0.

  • Update uv@latest to 0.11.27.

... (truncated)

Commits
  • 43aecc8 Release 2.83.2
  • fca4789 Update prek manifest
  • b41cc1f Update parse-dockerfile@latest to 0.1.8
  • 8d866f8 Update mise@latest to 2026.7.5
  • 7ebe462 Update just@latest to 1.56.0
  • 01ab563 Update gungraun-runner@latest to 0.19.4
  • f164a68 Update cargo-neat@latest to 0.4.1
  • 2ca9b94 Release 2.83.1
  • 8598f86 Update parse-dockerfile manifest
  • 76cfe4d Update rclone@latest to 1.74.4
  • Additional commits viewable in compare view

Updates docker/setup-buildx-action from 4.1.0 to 4.2.0

Release notes

Sourced from docker/setup-buildx-action's releases.

v4.2.0

Full Changelog: docker/setup-buildx-action@v4.1.0...v4.2.0

Commits
  • bb05f3f Merge pull request #580 from docker/dependabot/npm_and_yarn/docker/actions-to...
  • 321c814 [dependabot skip] chore: update generated content
  • b9a36ef build(deps): bump @​docker/actions-toolkit from 0.91.0 to 0.92.0
  • ebeab24 Merge pull request #570 from docker/dependabot/npm_and_yarn/undici-6.27.0
  • 5c7b8ae [dependabot skip] chore: update generated content
  • 037e618 build(deps): bump undici from 6.25.0 to 6.27.0
  • 66080e5 Merge pull request #577 from docker/dependabot/npm_and_yarn/sigstore-4.1.1
  • 409aef0 Merge pull request #562 from docker/dependabot/npm_and_yarn/js-yaml-4.2.0
  • 49c6e42 build(deps): bump sigstore from 4.1.0 to 4.1.1
  • 2211273 [dependabot skip] chore: update generated content
  • Additional commits viewable in compare view

Updates docker/build-push-action from 7.2.0 to 7.3.0

Release notes

Sourced from docker/build-push-action's releases.

v7.3.0

Full Changelog: docker/build-push-action@v7.2.0...v7.3.0

Commits
  • 53b7df9 Merge pull request #1572 from docker/dependabot/npm_and_yarn/docker/actions-t...
  • 154298c [dependabot skip] chore: update generated content
  • cb1238b chore(deps): Bump @​docker/actions-toolkit from 0.91.0 to 0.92.0
  • 24f845d Merge pull request #1566 from docker/dependabot/npm_and_yarn/js-yaml-4.2.0
  • 9c69730 [dependabot skip] chore: update generated content
  • bc3a3a5 Merge pull request #1574 from docker/dependabot/github_actions/aws-actions/co...
  • a82c504 chore(deps): Bump js-yaml from 4.1.1 to 4.3.0
  • 0285a75 Merge pull request #1573 from docker/dependabot/github_actions/actions/cache-...
  • c6ad2a3 Merge pull request #1575 from docker/dependabot/github_actions/actions/checko...
  • d37484f Merge pull request #1564 from docker/dependabot/npm_and_yarn/undici-6.27.0
  • Additional commits viewable in compare view

Updates astral-sh/setup-uv from 8.2.0 to 8.3.2

Commits
  • 11f9893 chore: roll up Dependabot updates (#948)
  • f798556 docs: update version references to v8.3.1 (#946)
  • e80544d chore: update known checksums for 0.11.28 (#947)
  • f98e069 Change update-docs PR labels from 'update-docs' to 'documentation' (#945)
  • cd46263 chore: update known checksums for 0.11.27 (#944)
  • 11245c7 docs: update version references to v8.3.0 (#939)
  • d31148d Strip environment markers from detected uv dependency pins (#938)
  • 17c3989 Fix cache keys for Python version ranges (#937)
  • 3cc3c11 chore(deps): roll up Dependabot updates (#936)
  • 9225f84 chore(deps): bump release-drafter/release-drafter from 7.3.1 to 7.4.0 (#924)
  • Additional commits viewable in compare view

Updates actions/setup-java from 5.4.0 to 5.5.0

Release notes

Sourced from actions/setup-java's releases.

v5.5.0

What's Changed

New Contributors

Full Changelog: actions/setup-java@v5...v5.5.0

Commits
  • 0f481fc feat: Add distribution detection support to .sdkmanrc file (#975)
  • c4922bf docs: document problem matcher (and how to disable it), Maven Wrapper caching...
  • 6657b99 feat: Add set-default option (#1017)
  • a50fdcc dist: Support Tencent Kona JDK (#672)
  • 77ee41d fix: Maven Toolchains grows unexpectedly (#534)
  • 0765b15 chore(deps-dev): bump eslint-plugin-jest from 29.0.1 to 29.15.4 (#1074)
  • c712b2f Bump prettier from 3.6.2 to 3.9.1 (#1066)
  • 733efae feat: Disable interactiveMode in generated Maven settings.xml (#1052)
  • 6c4d4a5 feat: suppress Maven transfer progress via MAVEN_ARGS by default (add show-do...
  • 324b333 Fix arm64 e2e workflow tests mislabeled as x64 (#1073)
  • Additional commits viewable in compare view

Updates actions/setup-node from 6.4.0 to 7.0.0

Release notes

Sourced from actions/setup-node's releases.

v7.0.0

What's Changed

Enhancements:

Bug fixes:

Documentation updates:

Dependency update:

New Contributors

Full Changelog: actions/setup-node@v6...v7.0.0

v6.5.0

What's Changed

Full Changelog: actions/setup-node@v6.4.0...v6.5.0

Commits
  • 8207627 Migrate to ESM and upgrade dependencies (#1574)
  • 04be95c Add cache-primary-key and cache-matched-key as outputs (#1577)
  • 7c2c68d docs: Update caching recommendations to mitigate cache poisoning risks (#1567)
  • 6a61c03 Merge pull request #1569 from jasongin/update-actions-cache-5.1.0
  • 30eb73b Resolve high-severity audit issues
  • 4e1a87a Update dist
  • 360237f Strict equality
  • 4f8aac5 Bump @​actions/cache to 5.1.0, log cache write denied
  • f4a67bb Only use mirrorToken in getManifest if it's provided (#1548)
  • 0355742 Remove dummy NODE_AUTH_TOKEN export (#1558)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the actions group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [EmbarkStudios/cargo-deny-action](https://github.com/embarkstudios/cargo-deny-action) | `2.0.20` | `2.1.1` |
| [crate-ci/typos](https://github.com/crate-ci/typos) | `1.47.2` | `1.48.0` |
| [taiki-e/install-action](https://github.com/taiki-e/install-action) | `2.82.6` | `2.83.2` |
| [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `4.1.0` | `4.2.0` |
| [docker/build-push-action](https://github.com/docker/build-push-action) | `7.2.0` | `7.3.0` |
| [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv) | `8.2.0` | `8.3.2` |
| [actions/setup-java](https://github.com/actions/setup-java) | `5.4.0` | `5.5.0` |
| [actions/setup-node](https://github.com/actions/setup-node) | `6.4.0` | `7.0.0` |



Updates `EmbarkStudios/cargo-deny-action` from 2.0.20 to 2.1.1
- [Release notes](https://github.com/embarkstudios/cargo-deny-action/releases)
- [Commits](EmbarkStudios/cargo-deny-action@bb137d7...3c63498)

Updates `crate-ci/typos` from 1.47.2 to 1.48.0
- [Release notes](https://github.com/crate-ci/typos/releases)
- [Changelog](https://github.com/crate-ci/typos/blob/master/CHANGELOG.md)
- [Commits](crate-ci/typos@37bb988...bee27e3)

Updates `taiki-e/install-action` from 2.82.6 to 2.83.2
- [Release notes](https://github.com/taiki-e/install-action/releases)
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md)
- [Commits](taiki-e/install-action@9bcaee1...43aecc8)

Updates `docker/setup-buildx-action` from 4.1.0 to 4.2.0
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](docker/setup-buildx-action@d7f5e7f...bb05f3f)

Updates `docker/build-push-action` from 7.2.0 to 7.3.0
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](docker/build-push-action@f9f3042...53b7df9)

Updates `astral-sh/setup-uv` from 8.2.0 to 8.3.2
- [Release notes](https://github.com/astral-sh/setup-uv/releases)
- [Commits](astral-sh/setup-uv@fac544c...11f9893)

Updates `actions/setup-java` from 5.4.0 to 5.5.0
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](actions/setup-java@1bcf9fb...0f481fc)

Updates `actions/setup-node` from 6.4.0 to 7.0.0
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](actions/setup-node@48b55a0...8207627)

---
updated-dependencies:
- dependency-name: EmbarkStudios/cargo-deny-action
  dependency-version: 2.1.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: crate-ci/typos
  dependency-version: 1.48.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: taiki-e/install-action
  dependency-version: 2.83.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: docker/setup-buildx-action
  dependency-version: 4.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: docker/build-push-action
  dependency-version: 7.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: astral-sh/setup-uv
  dependency-version: 8.3.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: actions/setup-java
  dependency-version: 5.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: actions/setup-node
  dependency-version: 7.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github

dependabot Bot commented on behalf of github Jul 14, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: actions, dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants