From d6af4755ca264fa74d72e81edc40b3d24ebd12d2 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 9 Feb 2024 08:25:07 +0000 Subject: [PATCH 1/8] Bump actions/checkout from 2 to 4 Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 4. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v2...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/pages.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/pages.yml b/.github/workflows/pages.yml index 424a9e4..493785b 100644 --- a/.github/workflows/pages.yml +++ b/.github/workflows/pages.yml @@ -15,7 +15,7 @@ jobs: name: Deploy to GitHub Pages runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 with: submodules: 'recursive' From abcc9a38877a7251d8aaf5b6e666ac8be178df5e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 9 Feb 2024 08:25:13 +0000 Subject: [PATCH 2/8] Bump actions/upload-pages-artifact from 1 to 3 Bumps [actions/upload-pages-artifact](https://github.com/actions/upload-pages-artifact) from 1 to 3. - [Release notes](https://github.com/actions/upload-pages-artifact/releases) - [Commits](https://github.com/actions/upload-pages-artifact/compare/v1...v3) --- updated-dependencies: - dependency-name: actions/upload-pages-artifact dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/pages.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/pages.yml b/.github/workflows/pages.yml index 424a9e4..557e575 100644 --- a/.github/workflows/pages.yml +++ b/.github/workflows/pages.yml @@ -33,7 +33,7 @@ jobs: uses: actions/configure-pages@v3 - name: Upload artifact - uses: actions/upload-pages-artifact@v1 + uses: actions/upload-pages-artifact@v3 with: path: './build' From db4fe0242f4c65a6a30cfede0d7b7cf1ca73e51c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 9 Feb 2024 08:25:15 +0000 Subject: [PATCH 3/8] Bump actions/deploy-pages from 1 to 4 Bumps [actions/deploy-pages](https://github.com/actions/deploy-pages) from 1 to 4. - [Release notes](https://github.com/actions/deploy-pages/releases) - [Commits](https://github.com/actions/deploy-pages/compare/v1...v4) --- updated-dependencies: - dependency-name: actions/deploy-pages dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/pages.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/pages.yml b/.github/workflows/pages.yml index 424a9e4..2184316 100644 --- a/.github/workflows/pages.yml +++ b/.github/workflows/pages.yml @@ -39,4 +39,4 @@ jobs: - name: Deploy to GitHub Pages id: deployment - uses: actions/deploy-pages@v1 + uses: actions/deploy-pages@v4 From b9c1c3efd2d8f974d455d22494f59116f6a2fbff Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 9 Feb 2024 08:25:18 +0000 Subject: [PATCH 4/8] Bump actions/setup-node from 2 to 4 Bumps [actions/setup-node](https://github.com/actions/setup-node) from 2 to 4. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v2...v4) --- updated-dependencies: - dependency-name: actions/setup-node dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/pages.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/pages.yml b/.github/workflows/pages.yml index 424a9e4..33ebe50 100644 --- a/.github/workflows/pages.yml +++ b/.github/workflows/pages.yml @@ -19,7 +19,7 @@ jobs: with: submodules: 'recursive' - - uses: actions/setup-node@v2 + - uses: actions/setup-node@v4 with: node-version: '18' From 810dc81745c6177c2d56acf710b7380b109148f4 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" Date: Fri, 9 Feb 2024 10:01:37 +0000 Subject: [PATCH 5/8] fix: change base branch as main --- .github/workflows/dependabot.auto.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/dependabot.auto.yml b/.github/workflows/dependabot.auto.yml index 5779a11..8e70d90 100644 --- a/.github/workflows/dependabot.auto.yml +++ b/.github/workflows/dependabot.auto.yml @@ -19,7 +19,7 @@ jobs: run: | git config --global user.name "dependabot[bot]" git config --global user.email "dependabot[bot]@users.noreply.github.com" - gh pr merge --auto --merge "$PR_URL" + gh pr merge --auto --merge "$PR_URL" --base main env: PR_URL: ${{github.event.pull_request.html_url}} GH_TOKEN: ${{secrets.TOKEN_GITHUB}} From bd294852cbbb5c9081b9284353e74b2f8fa0fb32 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" Date: Fri, 9 Feb 2024 10:07:30 +0000 Subject: [PATCH 6/8] fix: update trigger workflow --- .github/workflows/dependabot.auto.yml | 11 ++++------- 1 file changed, 4 insertions(+), 7 deletions(-) diff --git a/.github/workflows/dependabot.auto.yml b/.github/workflows/dependabot.auto.yml index 8e70d90..0a27837 100644 --- a/.github/workflows/dependabot.auto.yml +++ b/.github/workflows/dependabot.auto.yml @@ -1,5 +1,8 @@ name: Dependabot auto-merge -on: pull_request +on: + pull_request: + branches: + - 'dependabot/**' permissions: contents: write @@ -8,13 +11,7 @@ permissions: jobs: dependabot: runs-on: ubuntu-latest - if: ${{ github.event.pull_request.user.login }} == 'dependabot[bot]' steps: - - name: Dependabot metadata - id: metadata - uses: dependabot/fetch-metadata@v1 - with: - github-token: '${{ secrets.TOKEN_GITHUB }}' - name: Enable auto-merge for Dependabot PRs run: | git config --global user.name "dependabot[bot]" From d2f0d08c6762a0111a7905beece2dd92cb993f53 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" Date: Fri, 9 Feb 2024 10:20:15 +0000 Subject: [PATCH 7/8] fix: test auto approve --- .github/workflows/dependabot.auto.yml | 8 +++----- 1 file changed, 3 insertions(+), 5 deletions(-) diff --git a/.github/workflows/dependabot.auto.yml b/.github/workflows/dependabot.auto.yml index 0a27837..2c17e0d 100644 --- a/.github/workflows/dependabot.auto.yml +++ b/.github/workflows/dependabot.auto.yml @@ -1,8 +1,5 @@ name: Dependabot auto-merge -on: - pull_request: - branches: - - 'dependabot/**' +on: pull_request permissions: contents: write @@ -16,7 +13,8 @@ jobs: run: | git config --global user.name "dependabot[bot]" git config --global user.email "dependabot[bot]@users.noreply.github.com" - gh pr merge --auto --merge "$PR_URL" --base main + gh pr merge --auto --merge "$PR_URL" + gh pr review --approve "$PR_URL" env: PR_URL: ${{github.event.pull_request.html_url}} GH_TOKEN: ${{secrets.TOKEN_GITHUB}} From 8ac5540138339f8505a9114bbe8ddb1805753d90 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" Date: Fri, 9 Feb 2024 10:21:25 +0000 Subject: [PATCH 8/8] fix: test auto approve --- .github/workflows/dependabot.auto.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/dependabot.auto.yml b/.github/workflows/dependabot.auto.yml index 2c17e0d..147b6bd 100644 --- a/.github/workflows/dependabot.auto.yml +++ b/.github/workflows/dependabot.auto.yml @@ -8,6 +8,7 @@ permissions: jobs: dependabot: runs-on: ubuntu-latest + if: github.actor == 'dependabot[bot]' || github.actor == 'dependabot-preview[bot]' steps: - name: Enable auto-merge for Dependabot PRs run: |