chore(deps): Bump the github-actions group across 1 directory with 9 updates

[dependabot]

Bumps the github-actions group with 9 updates in the / directory:

Package	From	To
actions/configure-pages	5.0.0	6.0.0
sigstore/cosign-installer	4.1.0	4.1.1
actions/download-artifact	8.0.0	8.0.1
updatecli/updatecli-action	2.100.0	3.0.0
actions/setup-go	6.3.0	6.4.0
codecov/codecov-action	5.5.2	6.0.0
azure/setup-helm	4.3.1	5.0.0
actions/cache	5.0.3	5.0.4
release-drafter/release-drafter	6.4.0	7.1.1

Updates actions/configure-pages from 5.0.0 to 6.0.0

Release notes

Sourced from actions/configure-pages's releases.

v6.0.0

Changelog

• upgrade to node 24 @​salmanmkc (#186)
• Upgrade IA Publish @​Jcambass (#165)
• Add workflow file for publishing releases to immutable action package @​Jcambass (#163)
• pin draft release version @​YiMysty (#162)
• Bump espree from 9.6.1 to 10.1.0 @​dependabot (#160)
• Bump eslint-config-prettier from 8.8.0 to 9.1.0 @​dependabot (#143)
• Be more friendly to Dependabot @​yoannchaudet (#158)
• Bump eslint-plugin-github from 4.10.2 to 5.0.1 @​dependabot (#154)
• Bump braces from 3.0.2 to 3.0.3 in the npm_and_yarn group @​dependabot (#156)
• Bump undici from 5.28.3 to 5.28.4 @​dependabot (#145)

See details of all code changes since previous release.

Commits

• 45bfe01 Merge pull request #186 from salmanmkc/node24
• d8770c2 Update Node version from 20 to 24 in action.yml
• cb8a1a3 upgrade to node 24
• d560657 Merge pull request #165 from actions/Jcambass-patch-1
• 35e0ac4 Upgrade IA Publish
• 1dfbcbf Merge pull request #163 from actions/Jcambass-patch-1
• 2f4f988 Add workflow file for publishing releases to immutable action package
• 0d7570c Merge pull request #162 from actions/pin-draft-release-verssion
• 3ea1966 pin draft release version
• aabcbc4 Merge pull request #160 from actions/dependabot/npm_and_yarn/espree-10.1.0
• Additional commits viewable in compare view

Updates sigstore/cosign-installer from 4.1.0 to 4.1.1

Release notes

Sourced from sigstore/cosign-installer's releases.

v4.1.1

What's Changed

• chore: update default cosign-release to v3.0.5 in sigstore/cosign-installer#223

Full Changelog: sigstore/cosign-installer@v4.1.0...v4.1.1

Commits

• cad07c2 chore: update default cosign-release to v3.0.5 (#223)
• See full diff in compare view

Updates actions/download-artifact from 8.0.0 to 8.0.1

Release notes

Sourced from actions/download-artifact's releases.

v8.0.1

What's Changed

• Support for CJK characters in the artifact name by @​danwkennedy in actions/download-artifact#471
• Add a regression test for artifact name + content-type mismatches by @​danwkennedy in actions/download-artifact#472

Full Changelog: actions/download-artifact@v8...v8.0.1

Commits

• 3e5f45b Add regression tests for CJK characters (#471)
• e6d03f6 Add a regression test for artifact name + content-type mismatches (#472)
• See full diff in compare view

Updates updatecli/updatecli-action from 2.100.0 to 3.0.0

Release notes

Sourced from updatecli/updatecli-action's releases.

v3.0.0 🌈

[!IMPORTANT]
The branch v1 and v2 are deprecated and will be remove soon. Y You should use GitHub action version instead (or track the main branch if you really want to). You can migrate to the latest GitHub action version using the following Updatecli policy:

.updatecli-compose.yaml

# export UPDATECLI_GITHUB_TOKEN=<insert PAT>
# export UPDATECLI_GITHUB_USERNAME=<insert username>
# updatecli compose diff --file updatecli-compose.yaml
# updatecli compose apply --file updatecli-compose.yaml
valuesinline:
scm:
enabled: true
kind: githubsearch
search: |
org:<replace with your GitHub organization>
archived:false
branch: "^main$|^master$" # branch accept regular expression
email: <email associatedi with the git commits>
limit: 0 # zero means no repository limit
policies:

name: Update Updatecli GitHub action version
policy: ghcr.io/updatecli/policies/updatecli/githubaction:0.8.1

Changes

🚀 Features

• deps: update Updatecli version to v0.115.0 @updateclibot[bot] (#1058)
• feat: update to Node.js 24 @​olblak (#1039)

🧰 Maintenance

• chore: sync default repository files @updateclibot[bot] (#1063)
• chore: add file exclusions to _typos.toml @​olblak (#1064)
• deps: bump Updatecli GH action to v0.115.0 @updateclibot[bot] (#1059)
• install Zizmor gha action v0.5.2 @updateclibot[bot] (#1047)
• deps: bump Updatecli GH action to v2.100.0 @updateclibot[bot] (#1014)
• chore(deps-dev): Bump picomatch from 2.3.1 to 2.3.2 @dependabot[bot] (#1062)
• Bump "eslint-plugin-jest" package version @updateclibot[bot] (#1060)
• Remove publish condition from release drafter config @​olblak (#1056)
• Refactor permissions in release-drafter workflow @​olblak (#1055)
• fix: zizorm warnings @​olblak (#1054)
• Update Apache 2 License @updateclibot[bot] (#1046)

... (truncated)

Commits

• 2cc8e6d deps(updatecli/policies): bump all policies (#1066)
• c170052 chore(deps-dev): Bump picomatch from 2.3.1 to 2.3.2 (#1062)
• 47ea636 chore: sync default repository files (#1063)
• 2b6d4da chore: add file exclusions to _typos.toml (#1064)
• 0e9729d Bump "eslint-plugin-jest" package version (#1060)
• 13ba4d9 deps: bump Updatecli GH action to v0.115.0 (#1059)
• 0488840 deps: update updatecli version to v0.115.0 (#1058)
• 48b1650 Remove publish condition from release drafter config (#1056)
• eebc940 Refactor permissions in release-drafter workflow (#1055)
• 994e192 fix: zizorm warnings (#1054)
• Additional commits viewable in compare view

Updates actions/setup-go from 6.3.0 to 6.4.0

Release notes

Sourced from actions/setup-go's releases.

v6.4.0

What's Changed

Enhancement

• Add go-download-base-url input for custom Go distributions by @​gdams in actions/setup-go#721

Dependency update

• Upgrade minimatch from 3.1.2 to 3.1.5 by @​dependabot in actions/setup-go#727

Documentation update

• Rearrange README.md, add advanced-usage.md by @​priyagupta108 in actions/setup-go#724
• Fix Microsoft build of Go link by @​gdams in actions/setup-go#734

New Contributors

• @​gdams made their first contribution in actions/setup-go#721

Full Changelog: actions/setup-go@v6...v6.4.0

Commits

• 4a36011 docs: fix Microsoft build of Go link (#734)
• 8f19afc feat: add go-download-base-url input for custom Go distributions (#721)
• 27fdb26 Bump minimatch from 3.1.2 to 3.1.5 (#727)
• def8c39 Rearrange README.md, add advanced-usage.md (#724)
• See full diff in compare view

Updates codecov/codecov-action from 5.5.2 to 6.0.0

Release notes

Sourced from codecov/codecov-action's releases.

v6.0.0

⚠️ This version introduces support for node24 which make cause breaking changes for systems that do not currently support node24. ⚠️

What's Changed

• Revert "Revert "build(deps): bump actions/github-script from 7.0.1 to 8.0.0"" by @​thomasrockhu-codecov in codecov/codecov-action#1929
• Th/6.0.0 by @​thomasrockhu-codecov in codecov/codecov-action#1928

Full Changelog: codecov/codecov-action@v5.5.4...v6.0.0

v5.5.4

This is a mirror of v5.5.2. v6 will be released which requires node24

What's Changed

• Revert "build(deps): bump actions/github-script from 7.0.1 to 8.0.0" by @​thomasrockhu-codecov in codecov/codecov-action#1926
• chore(release): 5.5.4 by @​thomasrockhu-codecov in codecov/codecov-action#1927

Full Changelog: codecov/codecov-action@v5.5.3...v5.5.4

v5.5.3

What's Changed

• build(deps): bump actions/github-script from 7.0.1 to 8.0.0 by @​dependabot[bot] in codecov/codecov-action#1874
• chore(release): bump to 5.5.3 by @​thomasrockhu-codecov in codecov/codecov-action#1922

Full Changelog: codecov/codecov-action@v5.5.2...v5.5.3

Changelog

Sourced from codecov/codecov-action's changelog.

v5.5.2

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2

v5.5.1

What's Changed

• fix: overwrite pr number on fork by @​thomasrockhu-codecov in codecov/codecov-action#1871
• build(deps): bump actions/checkout from 4.2.2 to 5.0.0 by @​app/dependabot in codecov/codecov-action#1868
• build(deps): bump github/codeql-action from 3.29.9 to 3.29.11 by @​app/dependabot in codecov/codecov-action#1867
• fix: update to use local app/ dir by @​thomasrockhu-codecov in codecov/codecov-action#1872
• docs: fix typo in README by @​datalater in codecov/codecov-action#1866
• Document a codecov-cli version reference example by @​webknjaz in codecov/codecov-action#1774
• build(deps): bump github/codeql-action from 3.28.18 to 3.29.9 by @​app/dependabot in codecov/codecov-action#1861
• build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by @​app/dependabot in codecov/codecov-action#1833

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1

v5.5.0

What's Changed

• feat: upgrade wrapper to 0.2.4 by @​jviall in codecov/codecov-action#1864
• Pin actions/github-script by Git SHA by @​martincostello in codecov/codecov-action#1859
• fix: check reqs exist by @​joseph-sentry in codecov/codecov-action#1835
• fix: Typo in README by @​spalmurray in codecov/codecov-action#1838
• docs: Refine OIDC docs by @​spalmurray in codecov/codecov-action#1837
• build(deps): bump github/codeql-action from 3.28.17 to 3.28.18 by @​app/dependabot in codecov/codecov-action#1829

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0

v5.4.3

What's Changed

• build(deps): bump github/codeql-action from 3.28.13 to 3.28.17 by @​app/dependabot in codecov/codecov-action#1822
• fix: OIDC on forks by @​joseph-sentry in codecov/codecov-action#1823

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3

v5.4.2

... (truncated)

Commits

• 57e3a13 Th/6.0.0 (#1928)
• f67d33d Revert "Revert "build(deps): bump actions/github-script from 7.0.1 to 8.0.0""...
• 75cd116 chore(release): 5.5.4 (#1927)
• 87d39f4 Revert "build(deps): bump actions/github-script from 7.0.1 to 8.0.0" (#1926)
• 1af5884 chore(release): bump to 5.5.3 (#1922)
• c143300 build(deps): bump actions/github-script from 7.0.1 to 8.0.0 (#1874)
• See full diff in compare view

Updates azure/setup-helm from 4.3.1 to 5.0.0

Release notes

Sourced from azure/setup-helm's releases.

v5.0.0

Changed

• #259 Update Node.js runtime from node20 to node24
• #263 Bump undici
• #257 Bump undici and @​actions/http-client
• #256 Bump minimatch
• #248 Bump the actions group with 2 updates
• #247 Bump the actions group with 3 updates
• #246 Bump @​types/node from 25.0.2 to 25.0.3 in the actions group
• #245 Bump the actions group with 3 updates
• #243 Bump the actions group with 2 updates
• #240 Bump prettier from 3.6.2 to 3.7.3 in the actions group
• #229 Bump the actions group across 1 directory with 3 updates
• #231 Bump js-yaml from 3.14.1 to 3.14.2
• #234 Bump glob from 10.4.5 to 10.5.0
• #225 Fix build error
• #222 Bump @​types/node from 24.7.2 to 24.8.1 in the actions group
• #220 Bump the actions group across 1 directory with 4 updates
• #216 Bump the actions group across 1 directory with 4 updates
• #213 Bump the actions group with 2 updates
• #211 Bump undici
• #212 Bump jest from 30.0.5 to 30.1.2 in the actions group
• #210 Bump @​types/node from 24.2.1 to 24.3.0 in the actions group

Changelog

Sourced from azure/setup-helm's changelog.

Change Log

[5.0.0] - 2026-03-23

Changed

• #259 Update Node.js runtime from node20 to node24
• #263 Bump undici
• #257 Bump undici and @​actions/http-client
• #256 Bump minimatch
• #248 Bump the actions group with 2 updates
• #247 Bump the actions group with 3 updates
• #246 Bump @​types/node from 25.0.2 to 25.0.3 in the actions group
• #245 Bump the actions group with 3 updates
• #243 Bump the actions group with 2 updates
• #240 Bump prettier from 3.6.2 to 3.7.3 in the actions group
• #229 Bump the actions group across 1 directory with 3 updates
• #231 Bump js-yaml from 3.14.1 to 3.14.2
• #234 Bump glob from 10.4.5 to 10.5.0
• #225 Fix build error
• #222 Bump @​types/node from 24.7.2 to 24.8.1 in the actions group
• #220 Bump the actions group across 1 directory with 4 updates
• #216 Bump the actions group across 1 directory with 4 updates
• #213 Bump the actions group with 2 updates
• #211 Bump undici
• #212 Bump jest from 30.0.5 to 30.1.2 in the actions group
• #210 Bump @​types/node from 24.2.1 to 24.3.0 in the actions group

[4.3.1] - 2025-08-12

Changed

• #167 Pinning Action Dependencies for Security and Reliability
• #181 Fix types, and update node version.
• #191 chore(tests): Mock arch to make tests pass on arm host
• #192 chore: remove unnecessary prebuild script
• #203 Update helm version retrieval to use JSON output for latest version
• #207 ci(workflows): update helm version to v3.18.4 and add matrix for tests

Added

• #197 Add pre-commit hook

[4.3.0] - 2025-02-15

• #152 feat: log when restoring from cache
• #157 Dependencies Update
• #137 Add dependabot

[4.2.0] - 2024-04-15

... (truncated)

Commits

• dda3372 build
• 3894c84 chore(release): v5.0.0 (#265)
• ca66f38 Update Node.js runtime from node20 to node24 (#259)
• 316ed5a Bump undici (#263)
• bc9bc0c Bump undici and @​actions/http-client (#257)
• 16e3094 Bump minimatch (#256)
• 6e42753 Bump actions/stale in /.github/workflows in the actions group (#255)
• 9651d9d Bump actions/checkout in /.github/workflows in the actions group (#251)
• 658bff9 Bump the actions group with 2 updates (#248)
• 331c814 Bump the actions group with 3 updates (#247)
• Additional commits viewable in compare view

Updates actions/cache from 5.0.3 to 5.0.4

Release notes

Sourced from actions/cache's releases.

v5.0.4

What's Changed

• Add release instructions and update maintainer docs by @​Link- in actions/cache#1696
• Potential fix for code scanning alert no. 52: Workflow does not contain permissions by @​Link- in actions/cache#1697
• Fix workflow permissions and cleanup workflow names / formatting by @​Link- in actions/cache#1699
• docs: Update examples to use the latest version by @​XZTDean in actions/cache#1690
• Fix proxy integration tests by @​Link- in actions/cache#1701
• Fix cache key in examples.md for bun.lock by @​RyPeck in actions/cache#1722
• Update dependencies & patch security vulnerabilities by @​Link- in actions/cache#1738

New Contributors

• @​XZTDean made their first contribution in actions/cache#1690
• @​RyPeck made their first contribution in actions/cache#1722

Full Changelog: actions/cache@v5...v5.0.4

Changelog

Sourced from actions/cache's changelog.

Releases

How to prepare a release

[!NOTE]
Relevant for maintainers with write access only.

1. Switch to a new branch from main.
2. Run npm test to ensure all tests are passing.
3. Update the version in https://github.com/actions/cache/blob/main/package.json.
4. Run npm run build to update the compiled files.
5. Update this https://github.com/actions/cache/blob/main/RELEASES.md with the new version and changes in the ## Changelog section.
6. Run licensed cache to update the license report.
7. Run licensed status and resolve any warnings by updating the https://github.com/actions/cache/blob/main/.licensed.yml file with the exceptions.
8. Commit your changes and push your branch upstream.
9. Open a pull request against main and get it reviewed and merged.
10. Draft a new release https://github.com/actions/cache/releases use the same version number used in package.json
    1. Create a new tag with the version number.
    2. Auto generate release notes and update them to match the changes you made in RELEASES.md.
    3. Toggle the set as the latest release option.
    4. Publish the release.
11. Navigate to https://github.com/actions/cache/actions/workflows/release-new-action-version.yml
    1. There should be a workflow run queued with the same version number.
    2. Approve the run to publish the new version and update the major tags for this action.

Changelog

5.0.4

• Bump minimatch to v3.1.5 (fixes ReDoS via globstar patterns)
• Bump undici to v6.24.1 (WebSocket decompression bomb protection, header validation fixes)
• Bump fast-xml-parser to v5.5.6

5.0.3

• Bump @actions/cache to v5.0.5 (Resolves: https://github.com/actions/cache/security/dependabot/33)
• Bump @actions/core to v2.0.3

5.0.2

• Bump @actions/cache to v5.0.3 #1692

5.0.1

• Update @azure/storage-blob to ^12.29.1 via @actions/cache@5.0.1 #1685

5.0.0

[!IMPORTANT] actions/cache@v5 runs on the Node.js 24 runtime and requires a minimum Actions Runner version of 2.327.1.

... (truncated)

Commits

• 6682284 Merge pull request #1738 from actions/prepare-v5.0.4
• e340396 Update RELEASES
• 8a67110 Add licenses
• 1865903 Update dependencies & patch security vulnerabilities
• 5656298 Merge pull request #1722 from RyPeck/patch-1
• 4e380d1 Fix cache key in examples.md for bun.lock
• b7e8d49 Merge pull request #1701 from actions/Link-/fix-proxy-integration-tests
• 984a21b Add traffic sanity check step
• acf2f1f Fix resolution
• 95a07c5 Add wait for proxy
• Additional commits viewable in compare view

Updates release-drafter/release-drafter from 6.4.0 to 7.1.1

Release notes

Sourced from release-drafter/release-drafter's releases.

v7.1.1

What's Changed

Bug Fixes

• fix: remove disable-releaser and disable-autolabeler from action.yaml (#1564) @​cchanche

Full Changelog: release-drafter/release-drafter@v7.1.0...v7.1.1

v7.1.0

What's Changed

New

• feat: filter previous releases by range with semver (#1445) @​cchanche
• feat: support advanced substitutions in replacers (#1517) @​cchanche

Bug Fixes

• fix: support pull_request_target event in autolabeler (#1560) @​jmeridth
• fix: empty template when prs all are excluded by labels (#1429) @​Bledai
• fix: fall back to org .github repo when config not found in current repo (#1554) @​jetersen

Maintenance

• ci: make sure PRs have a type label (#1557) @​cchanche

Documentation

• docs: update README with pull_request_target example (#1561) @​jmeridth

Full Changelog: release-drafter/release-drafter@v7.0.0...v7.1.0

v7.0.0

What's Changed

Breaking

• feat: new major version (#1475) @​cchanche

Bug Fixes

• fix: JSON schema too strict with required fields (#1535) @​jetersen

Maintenance

• chore(deps): update vitest to 4.1.0 (#1544) @renovate[bot]
• chore(deps): update linters (#1549) @renovate[bot]
• chore(deps): update dependency nock to 14.0.11 (#1548) @renovate[bot]
• chore(deps): update dependency @​graphql-codegen/near-operation-file-preset to 5.0.0 (#1545) @renovate[bot]

... (truncated)

Commits

• 139054a chore: release v7.1.1
• 114efa7 fix: remove disable-releaser and disable-autolabeler from action.yaml (#1564)
• b23b6d2 test: add semantic prefix replacer example
• 44a942e chore: release v7.1.0
• f1f40a0 docs: update README with pull_request_target example (#1561)
• ebb69bb fix: support pull_request_target event in autolabeler (#1560)
• bddbd54 ci: make sure PRs have a type label (#1557)
• 4a66170 fix: empty template when prs all are excluded by labels (#1429)
• 7431882 feat: filter releases by semver range (#1445)
• 5a8b0d3 ci: restore CodeQL category lost when matrix was removed
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions