Upgrade: [dependabot] - bump NHSDigital/eps-common-workflows/.github/workflows/tag-release.yml from 5.5.3 to 5.6.3 (#45)

dependabot[bot] · web-flow · commit 96cc53a993a1 · 2026-03-10T15:02:43.000Z
Bumps [NHSDigital/eps-common-workflows/.github/workflows/tag-release.yml](https://github.com/nhsdigital/eps-common-workflows) from 5.5.3 to 5.6.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nhsdigital/eps-common-workflows/releases">NHSDigital/eps-common-workflows/.github/workflows/tag-release.yml's releases</a>.</em></p> <blockquote> <h2>v5.6.3</h2> <h2><a href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.2...v5.6.3">5.6.3</a> (2026-03-06)</h2> <h3>Chore</h3> <ul> <li>[AEA-5986] - Allow semantic release to handle python build (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/83">#83</a>) (<a href="https://github.com/NHSDigital/eps-common-workflows/commit/141907b215220e95e3ed3811d0fe8fa18675dbed">141907b</a>)</li> </ul> <h2>Info</h2> <p><a href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22773044980">Release workflow run</a> - Workflow ID: 22773044980</p> <p>It was initialized by <a href="https://github.com/originalphil">originalphil</a></p> <h2>v5.6.2</h2> <h2><a href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.1...v5.6.2">5.6.2</a> (2026-03-05)</h2> <h3>Upgrade</h3> <ul> <li>[dependabot] - bump conventional-changelog-eslint from 6.0.0 to 6.1.0 (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/82">#82</a>) (<a href="https://github.com/NHSDigital/eps-common-workflows/commit/91d5906640395bcda81360fb4b78adaf2f09fd2e">91d5906</a>)</li> </ul> <h2>Info</h2> <p><a href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22730971742">Release workflow run</a> - Workflow ID: 22730971742</p> <p>It was initialized by <a href="https://github.com/apps/eps-autoapprove-dependabot">eps-autoapprove-dependabot[bot]</a></p> <h2>v5.6.1</h2> <h2><a href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.0...v5.6.1">5.6.1</a> (2026-03-05)</h2> <h3>Fix</h3> <ul> <li>[AEA-0000] - Always run valid trivy scans even if a previous scan failed, so that all vulnerabilities are identified at once. Shorten feedback cycle for vulnerabilities across multiple scans. (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/78">#78</a>) (<a href="https://github.com/NHSDigital/eps-common-workflows/commit/d116ba935f2a9544c7bcc6dc37ea997fada6e780">d116ba9</a>)</li> </ul> <h2>Info</h2> <p><a href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22727356777">Release workflow run</a> - Workflow ID: 22727356777</p> <p>It was initialized by <a href="https://github.com/connoravo-nhs">connoravo-nhs</a></p> <h2>v5.6.0</h2> <h1><a href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.5.3...v5.6.0">5.6.0</a> (2026-03-05)</h1> <h3>Fix</h3> <ul> <li>[AEA-5986] - Fix publish fame library (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/77">#77</a>) (<a href="https://github.com/NHSDigital/eps-common-workflows/commit/aac5b797ee198b8bd260d618cf7cbdf723860033">aac5b79</a>)</li> </ul> <h3>New</h3> <ul> <li>[AEA-5986] - Publish to PyPI (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/76">#76</a>) (<a href="https://github.com/NHSDigital/eps-common-workflows/commit/de2118390681f2e1701dddcaa463dcea743a6e92">de21183</a>)</li> </ul>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/NHSDigital/eps-common-workflows/commit/141907b215220e95e3ed3811d0fe8fa18675dbed"><code>141907b</code></a> Chore: [AEA-5986] - Allow semantic release to handle python build (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/83">#83</a>)</li> <li><a href="https://github.com/NHSDigital/eps-common-workflows/commit/91d5906640395bcda81360fb4b78adaf2f09fd2e"><code>91d5906</code></a> Upgrade: [dependabot] - bump conventional-changelog-eslint from 6.0.0 to 6.1....</li> <li><a href="https://github.com/NHSDigital/eps-common-workflows/commit/d116ba935f2a9544c7bcc6dc37ea997fada6e780"><code>d116ba9</code></a> Fix: [AEA-0000] - Always run valid trivy scans even if a previous scan failed...</li> <li><a href="https://github.com/NHSDigital/eps-common-workflows/commit/aac5b797ee198b8bd260d618cf7cbdf723860033"><code>aac5b79</code></a> Fix: [AEA-5986] - Fix publish fame library (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/77">#77</a>)</li> <li><a href="https://github.com/NHSDigital/eps-common-workflows/commit/d5222938de3b91e0fe94db73d61eb9e0f781b1ed"><code>d522293</code></a> Upgrade: [dependabot] - bump aquasecurity/trivy-action from 0.34.0 to 0.34.1 ...</li> <li><a href="https://github.com/NHSDigital/eps-common-workflows/commit/de2118390681f2e1701dddcaa463dcea743a6e92"><code>de21183</code></a> New: [AEA-5986] - Publish to PyPI (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/76">#76</a>)</li> <li>See full diff in <a href="https://github.com/nhsdigital/eps-common-workflows/compare/8404cf6e3a61ac8de4d1644e175e288aa4965815...141907b215220e95e3ed3811d0fe8fa18675dbed">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=NHSDigital/eps-common-workflows/.github/workflows/tag-release.yml&package-manager=github_actions&previous-version=5.5.3&new-version=5.6.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -32,7 +32,7 @@ jobs:
       SONAR_TOKEN: '${{ secrets.SONAR_TOKEN }}'
   tag_release:
     needs: [quality_checks, get_asdf_version]
-    uses: NHSDigital/eps-common-workflows/.github/workflows/tag-release.yml@8404cf6e3a61ac8de4d1644e175e288aa4965815
+    uses: NHSDigital/eps-common-workflows/.github/workflows/tag-release.yml@dac60c1e29babc62013e7bb9ade002cb381c4c49
     with:
       dry_run: true
       asdfVersion: ${{ needs.get_asdf_version.outputs.asdf_version }}
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -33,7 +33,7 @@ jobs:
       SONAR_TOKEN: '${{ secrets.SONAR_TOKEN }}'
   tag_release:
     needs: [quality_checks, get_asdf_version]
-    uses: NHSDigital/eps-common-workflows/.github/workflows/tag-release.yml@8404cf6e3a61ac8de4d1644e175e288aa4965815
+    uses: NHSDigital/eps-common-workflows/.github/workflows/tag-release.yml@dac60c1e29babc62013e7bb9ade002cb381c4c49
     with:
       dry_run: false
       asdfVersion: ${{ needs.get_asdf_version.outputs.asdf_version }}
