Conversation
Bumps [actions/checkout](https://github.com/actions/checkout) from 3df4ab11eba7bda6032a0b82a6bb43b11571feac to aadec899646c8e0f34c52d9219c2faac36626b55. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@3df4ab1...aadec89) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
added
the
dependencies
joshuagl
changed the title
|
I pushed a follow-on cleanup commit to this branch which ensures we're on the latest version of all the GHA we're using and adds a comment after the digest so we can more easily tell which version we're using. Dependabot will update the comments for us as it suggests bumps in future. |
Ensure we're using the latest released version of all GitHub Actions we're using, make it clear what version we have pinned. Signed-off-by: Joshua Lock <joshuagloe@gmail.com>
joshuagl
force-pushed
the
dependabot/github_actions/actions/checkout-aadec899646c8e0f34c52d9219c2faac36626b55
branch
from
33d45df to
a63f67e
Compare
Wasn't obvious why at all to me until I searched for it. Thanks for the PR! |
|
Great question @trishankatdatadog ! I believe dependabot resolved |
|
A newer version of actions/checkout exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged. |
Yeap, looks like it. Out of curiosity, did you resolve the hashes/versions manually or did you use tooling? |
|
I was playing around with frizbee a bit, so I got the hashes automatically but verified them by eye. |
Useful tip, thanks! |
2 participants
Bumps actions/checkout from 3df4ab11eba7bda6032a0b82a6bb43b11571feac to aadec899646c8e0f34c52d9219c2faac36626b55.
Changelog
Sourced from actions/checkout's changelog.
... (truncated)
Commits
aadec89Explicitly disable sparse checkout unless asked for (#1598)df0bcddRefine workflow for generatingtest-ubuntu-git(#1617)473055bCreatetest-ubuntu-gitDocker Container for Proxy Tests (#1616)b4ffde6Link to release page from what's new section (#1514)8530928Correct link to GitHub Docs (#1511)7cdaf2fUpdate CODEOWNERS to Launch team (#1510)8ade135Prepare 4.1.0 release (#1496)c533a0aAdd support for partial checkout filters (#1396)72f2cecUpdate README.md for V4 (#1452)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)