Skip to content

build(deps): Bump the github-actions group across 1 directory with 3 updates#2

Merged
gavin-dunlap-luminar merged 1 commit into
mainfrom
dependabot/github_actions/github-actions-b484d26385
Jul 14, 2026
Merged

build(deps): Bump the github-actions group across 1 directory with 3 updates#2
gavin-dunlap-luminar merged 1 commit into
mainfrom
dependabot/github_actions/github-actions-b484d26385

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 14, 2026

Copy link
Copy Markdown
Contributor

Bumps the github-actions group with 3 updates in the / directory: actions/checkout, taiki-e/cache-cargo-install-action and softprops/action-gh-release.

Updates actions/checkout from 6 to 7

Release notes

Sourced from actions/checkout's releases.

v7.0.0

What's Changed

New Contributors

Full Changelog: actions/checkout@v6.0.3...v7.0.0

v6.0.3

What's Changed

New Contributors

Full Changelog: actions/checkout@v6...v6.0.3

v6.0.2

What's Changed

Full Changelog: actions/checkout@v6.0.1...v6.0.2

v6.0.1

What's Changed

Full Changelog: actions/checkout@v6...v6.0.1

Changelog

Sourced from actions/checkout's changelog.

Changelog

v7.0.0

v6.0.3

v6.0.2

v6.0.1

v6.0.0

v5.0.1

v5.0.0

v4.3.1

v4.3.0

v4.2.2

v4.2.1

... (truncated)

Commits

Updates taiki-e/cache-cargo-install-action from 2 to 3

Release notes

Sourced from taiki-e/cache-cargo-install-action's releases.

3.0.0

  • Update actions/cache from 4 to 5. (#14)

2.3.1

  • Fix version parsing failures on Windows caused by trailing carriage returns (\r) in JSON responses from crates.io API. (#12, thanks @​Xevion)

2.3.0

  • Support features, no-default-features, and all-features input options. (#9, thanks @​AlexTMjugador)

  • Support more host architectures.

2.2.0

  • Support AArch64 Windows. (416e06a)

2.1.2

  • Fix installation failure on Ubuntu 24.04 due to HTTP 403 error on requests to crates.io. (#11, thanks @​ctz)

2.1.1

  • Fix regression on Windows introduced in 2.1.0.

2.1.0

  • Improve support for Alpine based containers/self-hosted runners (no longer need to install bash in advance).

2.0.1

Changelog

Sourced from taiki-e/cache-cargo-install-action's changelog.

[3.0.7] - 2026-05-02

  • Update actions/cache to 5.0.5.

[3.0.6] - 2026-04-08

  • Improve robustness for network failure.

[3.0.5] - 2026-04-04

  • Implement workaround for windows-11-arm runner bug which may causes issue that the action successfully completes but the crate is not installed.

    We have not yet received any reports of this issue occurring with this action, but given the nature of the problem, it is possible that it could be affected.

[3.0.4] - 2026-03-28

  • Pin actions/cache action with commit hash.

[3.0.3] - 2026-03-08

  • Avoid triggering zizmor ref-confusion when using this action in form of uses: taiki-e/cache-cargo-install-action@v3.

[3.0.2] - 2026-02-14

  • Improve support for Linux systems without tar is installed.

  • Work around issue where cache doesn't work with "/bin/tar: unrecognized option: posix" warning on Alpine-based image.

[3.0.1] - 2026-01-11

[3.0.0] - 2025-12-30

  • Update actions/cache from 4 to 5. (#14)

[2.3.1] - 2025-09-28

  • Fix version parsing failures on Windows caused by trailing carriage returns (\r) in JSON responses from crates.io API. (#12, thanks @​Xevion)

[2.3.0] - 2025-07-22

  • Support features, no-default-features, and all-features input options. (#9, thanks @​AlexTMjugador)

  • Support more host architectures.

[2.2.0] - 2025-06-29

... (truncated)

Commits
  • 417450f Release 3.0.7
  • 67ffce9 Update changelog
  • 9f0c8d6 Bump actions/cache from 5.0.4 to 5.0.5 (#18)
  • 20be55c ci,tools: Update config and script
  • 0c4e92e Simplify environment variable removal on Windows
  • 2dde827 Unset/reject environment variables that may unexpectedly affect bash
  • b916209 Prefer shell builtin over commad
  • 446b46d ci: Update config
  • c61de9b Use \ path separator on pwsh
  • 5ba56cf Remove sed usage
  • Additional commits viewable in compare view

Updates softprops/action-gh-release from 2 to 3

Release notes

Sourced from softprops/action-gh-release's releases.

v3.0.0

3.0.0 is a major release that moves the action runtime from Node 20 to Node 24. Use v3 on GitHub-hosted runners and self-hosted fleets that already support the Node 24 Actions runtime. If you still need the last Node 20-compatible line, stay on v2.6.2.

What's Changed

Other Changes 🔄

  • Move the action runtime and bundle target to Node 24
  • Update @types/node to the Node 24 line and allow future Dependabot updates
  • Keep the floating major tag on v3; v2 remains pinned to the latest 2.x release

v2.6.2

What's Changed

Other Changes 🔄

Full Changelog: softprops/action-gh-release@v2...v2.6.2

v2.6.1

2.6.1 is a patch release focused on restoring linked discussion thread creation when discussion_category_name is set. It fixes [#764](https://github.com/softprops/action-gh-release/issues/764), where the draft-first publish flow stopped carrying the discussion category through the final publish step.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

Bug fixes 🐛

v2.6.0

2.6.0 is a minor release centered on previous_tag support for generate_release_notes, which lets workflows pin GitHub's comparison base explicitly instead of relying on the default range. It also includes the recent concurrent asset upload recovery fix, a working_directory docs sync, a checked-bundle freshness guard for maintainers, and clearer immutable-prerelease guidance where GitHub platform behavior imposes constraints on how prerelease asset uploads can be published.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

... (truncated)

Changelog

Sourced from softprops/action-gh-release's changelog.

0.1.13

  • fix issue with multiple runs concatenating release bodies #145
Commits
  • 3d0d988 release 3.0.2 (#818)
  • 7e13ed4 fix: clarify release creation 404 errors (#817)
  • e6c70a5 fix: replace existing release assets on Gitea (#816)
  • f345337 fix: publish existing draft releases as prereleases (#801)
  • d8a89a2 fix: upload small checksum assets reliably (#815)
  • 45ece40 chore(deps): remove unused TypeScript tooling (#814)
  • f6b913c feat: improve release error reporting and test coverage (#813)
  • 15f193d chore(deps): upgrade TypeScript to 7 (#812)
  • cc8268d chore(deps): bump actions/checkout in the github-actions group (#810)
  • fd0ed1e chore(deps): bump the npm group with 3 updates (#811)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…updates

Bumps the github-actions group with 3 updates in the / directory: [actions/checkout](https://github.com/actions/checkout), [taiki-e/cache-cargo-install-action](https://github.com/taiki-e/cache-cargo-install-action) and [softprops/action-gh-release](https://github.com/softprops/action-gh-release).


Updates `actions/checkout` from 6 to 7
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@v6...v7)

Updates `taiki-e/cache-cargo-install-action` from 2 to 3
- [Release notes](https://github.com/taiki-e/cache-cargo-install-action/releases)
- [Changelog](https://github.com/taiki-e/cache-cargo-install-action/blob/main/CHANGELOG.md)
- [Commits](taiki-e/cache-cargo-install-action@v2...v3)

Updates `softprops/action-gh-release` from 2 to 3
- [Release notes](https://github.com/softprops/action-gh-release/releases)
- [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md)
- [Commits](softprops/action-gh-release@v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '7'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: taiki-e/cache-cargo-install-action
  dependency-version: '3'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: softprops/action-gh-release
  dependency-version: '3'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jul 14, 2026
@gavin-dunlap-luminar gavin-dunlap-luminar merged commit dca392c into main Jul 14, 2026
18 of 19 checks passed
@dependabot dependabot Bot deleted the dependabot/github_actions/github-actions-b484d26385 branch July 14, 2026 18:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant