Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Merged by Bors] - chore(deps): dependabot updates #18026

Closed
wants to merge 13 commits into from

Conversation

bryangingechen
Copy link
Contributor

Doing this manually because dependabot doesn't know how to update build.in.yml.


Open in Gitpod

Subsumes: #18017, #18018, #18019, #18020, #18021, #18022

dependabot bot and others added 13 commits October 21, 2024 14:52
Bumps [credfeto/action-no-ignored-files](https://github.com/credfeto/action-no-ignored-files) from 1.1.0 to 1.2.0.
- [Release notes](https://github.com/credfeto/action-no-ignored-files/releases)
- [Changelog](https://github.com/credfeto/action-no-ignored-files/blob/main/CHANGELOG.md)
- [Commits](credfeto/action-no-ignored-files@v1.1.0...v1.2.0)

---
updated-dependencies:
- dependency-name: credfeto/action-no-ignored-files
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Bumps [dcarbone/install-jq-action](https://github.com/dcarbone/install-jq-action) from 1.0.1 to 2.1.0.
- [Release notes](https://github.com/dcarbone/install-jq-action/releases)
- [Commits](dcarbone/install-jq-action@v1.0.1...v2.1.0)

---
updated-dependencies:
- dependency-name: dcarbone/install-jq-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Bumps [styfle/cancel-workflow-action](https://github.com/styfle/cancel-workflow-action) from 0.11.0 to 0.12.1.
- [Release notes](https://github.com/styfle/cancel-workflow-action/releases)
- [Commits](styfle/cancel-workflow-action@0.11.0...0.12.1)

---
updated-dependencies:
- dependency-name: styfle/cancel-workflow-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Bumps [actions/github-script](https://github.com/actions/github-script) from 6 to 7.
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](actions/github-script@v6...v7)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4 to 5.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](actions/setup-python@v4...v5)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 6 to 7.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](peter-evans/create-pull-request@v6...v7)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
…s/github-script-7' into bgc-dependabot-2024-10
…s/setup-python-5' into bgc-dependabot-2024-10
…to/action-no-ignored-files-1.2.0' into bgc-dependabot-2024-10
…ne/install-jq-action-2.1.0' into bgc-dependabot-2024-10
…evans/create-pull-request-7' into bgc-dependabot-2024-10
…/cancel-workflow-action-0.12.1' into bgc-dependabot-2024-10
@bryangingechen bryangingechen added CI Modifies the continuous integration / deployment setup easy < 20s of review time. See the lifecycle page for guidelines. dependency-bump This PR bumps the version of an upstream dependency (but not toolchain). labels Oct 21, 2024
Copy link

PR summary 835323f4c2

Import changes for modified files

No significant changes to the import graph

Import changes for all files
Files Import difference

Declarations diff

No declarations were harmed in the making of this PR! 🐙

You can run this locally as follows
## summary with just the declaration names:
./scripts/declarations_diff.sh <optional_commit>

## more verbose report:
./scripts/declarations_diff.sh long <optional_commit>

The doc-module for script/declarations_diff.sh contains some details about this script.

@adomani
Copy link
Collaborator

adomani commented Oct 21, 2024

Could we create a symlink to build.in.yml in workflows, so that dependabot edits this file as well?

@bryangingechen
Copy link
Contributor Author

Could we create a symlink to build.in.yml in workflows, so that dependabot edits this file as well?

I'm not sure if symlinks work, but maybe we could try using the directories config option with both .github and .github/workflows explicitly (in a different PR?).

@adomani
Copy link
Collaborator

adomani commented Oct 21, 2024

Yes, definitely no in this PR!

Thanks!

maintainer merge

Copy link

🚀 Pull request has been placed on the maintainer queue by adomani.

@kim-em
Copy link
Contributor

kim-em commented Oct 21, 2024

bors merge

@github-actions github-actions bot added the ready-to-merge This PR has been sent to bors. label Oct 21, 2024
mathlib-bors bot pushed a commit that referenced this pull request Oct 21, 2024
Doing this manually because dependabot doesn't know how to update build.in.yml.



Co-authored-by: Bryan Gin-ge Chen <[email protected]>
@mathlib-bors
Copy link
Contributor

mathlib-bors bot commented Oct 21, 2024

Pull request successfully merged into master.

Build succeeded:

@mathlib-bors mathlib-bors bot changed the title chore(deps): dependabot updates [Merged by Bors] - chore(deps): dependabot updates Oct 21, 2024
@mathlib-bors mathlib-bors bot closed this Oct 21, 2024
@mathlib-bors mathlib-bors bot deleted the bgc-dependabot-2024-10 branch October 21, 2024 23:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
CI Modifies the continuous integration / deployment setup dependency-bump This PR bumps the version of an upstream dependency (but not toolchain). easy < 20s of review time. See the lifecycle page for guidelines. maintainer-merge ready-to-merge This PR has been sent to bors.
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants