·
3 commits
to refs/heads/main
since this release
What's Changed
-
Dependabot: Update syntax for ignore dependency names. @apop5 (#512)
Change Details
Dependabot created a lot of update PRs for mu_devops actions. This was tracked back to dependabot configuration needing its syntax tweaked.
Relevant section:
dependency-name | Ignore updates for dependencies with matching names, optionally using * to match zero or more characters.
This week was the first time dependabot created individual PRs for the mu_devops actions.
I suspect this has always been an issue. I am not aware of a case where mu_devops was tagged and there way a week's gap between version.njk being updated and file sync run.
-
Minor fixup: Do not extract iasl nuget package to root @vineelko (#505)
Change Details
Do not extract iasl nuget package to root, because of which we are not cleaning the `iasl` completely because the following line `cd .. && rm -rf iasl_temp` assumes all the extracted contents are in `iasl_temp`
Signed-off-by: Vineel Kovvuri[MSFT] [email protected]
-
Updating actions/upload-artifact from v4 to v5 @apop5 (#506)
Change Details
According to release notes, the major change is supporting Node v24.x, which should not matter when consumed in the github action.
-
Configure dependabot to ignore CodeQL action updates @makubacki (#503)
Change Details
The CodeQL action is exclusively used in workflows synced from mu_devops. Prevent dependabot from creating PRs for it in individual repos.
-
Updates the following CodeQL actions from v3 to v4 @makubacki (#502)
Change Details
- github/codeql-action/init - github/codeql-action/analyze - github/codeql-action/upload-sarif
Dependabot currently has updates out to individual repos but the files in /.sync need to be updated here so they are not overwritten in future file syncs.
Full Changelog: v18.0.1...v18.0.2
Contributors
makubacki, vineelko, and apop5