chore: dev to main merge#76
Merged
Roopan-Microsoft merged 9 commits intomainfrom Apr 28, 2026
Merged
Conversation
Upgrades from Dependabot PR #61: - actions/checkout v4 -> v6 - azure/login v2 -> v3 - actions/setup-python v5 -> v6 - tj-actions/changed-files v46 -> v47.0.5 - lycheeverse/lychee-action v2.4.1 -> v2.8.0 - codfish/semantic-release-action v3 -> v5 - amannn/action-semantic-pull-request v5 -> v6 - actions/stale v9 -> v10 - actions/upload-artifact v4 -> v7 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
lychee v0.21.0 (bundled with lychee-action v2.8.0) removed the --exclude-mail flag. Mail links are now excluded by default, so the flag is no longer needed. This fixes the broken-links-checker workflow failure. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
build: bump GitHub Actions packages (9 Dependabot upgrades)
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
fix: Update resource group tags and event hub namespace module versions
fix: removed the bicep parameter
Saswato-Microsoft
requested review from
Avijit-Microsoft,
Prajwal-Microsoft,
Roopan-Microsoft,
Vinay-Microsoft,
aniaroramsft,
dgp10801,
nchandhi and
toherman-msft
as code owners
Saswato-Microsoft
temporarily deployed
to
rti-build
GitHub Actions
Inactive
Saswato-Microsoft
temporarily deployed
to
rti-dev
GitHub Actions
Inactive
Saswato-Microsoft
temporarily deployed
to
rti-dev
GitHub Actions
Inactive
Contributor
There was a problem hiding this comment.
Pull request overview
This PR modernizes CI workflows and Azure infrastructure definitions by upgrading GitHub Actions dependencies and updating Bicep/AVM module versions, aiming to improve security posture and long-term maintainability.
Changes:
- Bumped multiple GitHub Actions to newer major versions across workflows (checkout, login, setup-python, stale, upload-artifact, etc.).
- Updated
infra/main.bicepto a newerMicrosoft.Resources/tagsAPI version and upgraded the AVM Event Hub Namespace module version. - Removed the
bicepversion constraint fromazure.yaml.
Reviewed changes
Copilot reviewed 9 out of 9 changed files in this pull request and generated 1 comment.
Show a summary per file
| File | Description |
|---|---|
| infra/main.bicep | Updates tags API version usage and bumps the AVM Event Hub Namespace module version. |
| azure.yaml | Removes the bicep required version constraint. |
| .github/workflows/stale-bot.yml | Upgrades stale + checkout + artifact action versions. |
| .github/workflows/pylint.yml | Upgrades checkout and setup-python action versions. |
| .github/workflows/pr-title-checker.yml | Upgrades semantic PR title action version. |
| .github/workflows/create-release.yml | Upgrades checkout and semantic-release action versions (workflow currently has a YAML structure issue). |
| .github/workflows/broken-links-checker.yml | Upgrades checkout/changed-files/lychee versions and adjusts lychee args. |
| .github/workflows/azure-dev.yml | Upgrades checkout and azure/login action versions. |
| .github/workflows/azd-ai-template-validation.yml | Upgrades checkout action version. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Agent-Logs-Url: https://github.com/microsoft/real-time-intelligence-operations-solution-accelerator/sessions/2a65369c-51e3-450f-a425-3e54b0c3f697 Co-authored-by: Saswato-Microsoft <234112493+Saswato-Microsoft@users.noreply.github.com>
Roopan-Microsoft
approved these changes
Apr 28, 2026
|
🎉 This PR is included in version 1.3.2 🎉 The release is available on GitHub release Your semantic-release bot 📦🚀 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Purpose
This pull request updates several GitHub Actions workflows and infrastructure templates to use newer versions of actions and modules, improving security, compatibility, and maintainability. The most significant changes are grouped below by theme.
GitHub Actions Workflow Upgrades:
actions/checkoutfrom v4 to v6 across multiple workflow files for improved security and performance. [1] [2] [3] [4] [5] [6] [7] [8]azure/login(v2→v3),lycheeverse/lychee-action(v2.4.1→v2.8.0),tj-actions/changed-files(v46→v47.0.5),codfish/semantic-release-action(v3→v5),amannn/action-semantic-pull-request(v5→v6),actions/setup-python(v5→v6),actions/stale(v9→v10), andactions/upload-artifact(v4→v7). [1] [2] [3] [4] [5] [6] [7] [8] [9] [10] [11]--exclude-mailargument inlycheeverse/lychee-actionsteps, so email addresses are now checked for validity. [1] [2]Infrastructure Template Updates:
Microsoft.Resources/tagsresource API version from2021-04-01to2023-07-01ininfra/main.bicepfor better compatibility and future-proofing.0.13.0to0.14.1ininfra/main.bicepto leverage new features and fixes.Configuration Cleanup:
bicepversion requirement fromazure.yaml, simplifying the version constraints.Does this introduce a breaking change?
How to Test
What to Check
Verify that the following are valid
Other Information