Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump peter-evans/create-or-update-comment from 3.0.2 to 4.0.0 #309

Open
wants to merge 16 commits into
base: master
Choose a base branch
from
Open

chore(deps): bump peter-evans/create-or-update-comment from 3.0.2 to 4.0.0 #309

wants to merge 16 commits into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Apr 1, 2024
edited
Loading

Bumps peter-evans/create-or-update-comment from 3.0.2 to 4.0.0.

Release notes

Sourced from peter-evans/create-or-update-comment's releases.

Create or Update Comment v4.0.0

⚙️ Updated runtime to Node.js 20

  • The action now requires a minimum version of v2.308.0 for the Actions runner. Update self-hosted runners to v2.308.0 or later to ensure compatibility.

What's Changed

Full Changelog: peter-evans/create-or-update-comment@v3.1.0...v4.0.0

Create or Update Comment v3.1.0

What's Changed

Full Changelog: peter-evans/create-or-update-comment@v3.0.2...v3.1.0

Commits
  • 71345be feat: update runtime to node 20 (#306)
  • d41bfe3 build(deps-dev): bump prettier from 3.2.3 to 3.2.4 (#305)
  • 73b4b9e build(deps-dev): bump @​types/node from 18.19.7 to 18.19.8 (#304)
  • b865fac build(deps-dev): bump @​types/node from 18.19.6 to 18.19.7 (#303)
  • 52b668a build(deps-dev): bump eslint-plugin-jest from 27.6.1 to 27.6.3 (#302)
  • 974f56a build(deps-dev): bump prettier from 3.1.1 to 3.2.3 (#301)
  • 2cbfe8b build(deps-dev): bump @​types/node from 18.19.4 to 18.19.6 (#300)
  • 761872a build(deps-dev): bump eslint-plugin-prettier from 5.1.2 to 5.1.3 (#299)
  • 72c3238 build(deps-dev): bump @​types/node from 18.19.3 to 18.19.4 (#298)
  • 07daf7b build(deps-dev): bump eslint-plugin-jest from 27.6.0 to 27.6.1 (#297)
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

snyk-bot and others added 16 commits October 4, 2021 04:34
@snyk-bot
fix: package.json to reduce vulnerabilities
9ddbdd4 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908
@snyk-bot
fix: package.json to reduce vulnerabilities
0d26958 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-NODEFETCH-2342118
@dependabot
meta: bump the storybook group with 4 updates
a004c3d 
Bumps the storybook group with 4 updates: [@storybook/addon-controls](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/controls), [@storybook/addon-interactions](https://github.com/storybookjs/storybook/tree/HEAD/code/addons/interactions), [@storybook/nextjs](https://github.com/storybookjs/storybook/tree/HEAD/code/frameworks/nextjs) and [storybook](https://github.com/storybookjs/storybook/tree/HEAD/code/lib/cli).


Updates `@storybook/addon-controls` from 7.0.26 to 7.1.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.1.0/code/addons/controls)

Updates `@storybook/addon-interactions` from 7.0.26 to 7.1.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.1.0/code/addons/interactions)

Updates `@storybook/nextjs` from 7.0.26 to 7.1.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.1.0/code/frameworks/nextjs)

Updates `storybook` from 7.0.26 to 7.1.0
- [Release notes](https://github.com/storybookjs/storybook/releases)
- [Changelog](https://github.com/storybookjs/storybook/blob/next/CHANGELOG.md)
- [Commits](https://github.com/storybookjs/storybook/commits/v7.1.0/code/lib/cli)

---
updated-dependencies:
- dependency-name: "@storybook/addon-controls"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: "@storybook/addon-interactions"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: "@storybook/nextjs"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
- dependency-name: storybook
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: storybook
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
meta: bump the testing-library group with 2 updates
827795e 
Bumps the testing-library group with 2 updates: [@testing-library/jest-dom](https://github.com/testing-library/jest-dom) and [@types/testing-library__jest-dom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/testing-library__jest-dom).


Updates `@testing-library/jest-dom` from 5.16.5 to 5.17.0
- [Release notes](https://github.com/testing-library/jest-dom/releases)
- [Changelog](https://github.com/testing-library/jest-dom/blob/main/CHANGELOG.md)
- [Commits](testing-library/jest-dom@v5.16.5...v5.17.0)

Updates `@types/testing-library__jest-dom` from 5.14.7 to 5.14.8
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/testing-library__jest-dom)

---
updated-dependencies:
- dependency-name: "@testing-library/jest-dom"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: testing-library
- dependency-name: "@types/testing-library__jest-dom"
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: testing-library
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
meta: bump the next-js group with 2 updates
b0b15e9 
Bumps the next-js group with 2 updates: [next](https://github.com/vercel/next.js) and [turbo](https://github.com/vercel/turbo).


Updates `next` from 13.4.9 to 13.4.10
- [Release notes](https://github.com/vercel/next.js/releases)
- [Changelog](https://github.com/vercel/next.js/blob/canary/release.js)
- [Commits](vercel/next.js@v13.4.9...v13.4.10)

Updates `turbo` from 1.10.7 to 1.10.8
- [Release notes](https://github.com/vercel/turbo/releases)
- [Changelog](https://github.com/vercel/turbo/blob/main/release.md)
- [Commits](vercel/turborepo@v1.10.7...v1.10.8)

---
updated-dependencies:
- dependency-name: next
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: next-js
- dependency-name: turbo
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: next-js
...

Signed-off-by: dependabot[bot] <support@github.com>
@hixio-mh
Merge branch 'master' into snyk-fix-4323eeb306a1585c618f5c463ab28483
906cc09 
Signed-off-by: HardFizz <52647469+hixio-mh@users.noreply.github.com>
@hixio-mh
Merge pull request #133 from FFhix10/snyk-fix-4323eeb306a1585c618f5c4…
b2bf222 
…63ab28483

[Snyk] Security upgrade standard from 16.0.3 to 16.0.4
@hixio-mh
Merge branch 'master' into dependabot/npm_and_yarn/testing-library-83…
9ec9a5b 
…76bf6a08
@hixio-mh
Merge pull request #292 from FFhix10/dependabot/npm_and_yarn/testing-…
d9acfcd 
…library-8376bf6a08

meta: bump the testing-library group with 2 updates
@hixio-mh
Merge branch 'master' into snyk-fix-b79dd9ec71723ce4eff015a751ed9128
aebdf5d 
Signed-off-by: HardFizz <52647469+hixio-mh@users.noreply.github.com>
@hixio-mh
Merge pull request #187 from FFhix10/snyk-fix-b79dd9ec71723ce4eff015a…
41dccd0 
…751ed9128

[Snyk] Security upgrade node-fetch from 2.6.6 to 3.1.1
@hixio-mh
Merge branch 'master' into dependabot/npm_and_yarn/storybook-54701aaee0
95e03ba 
Signed-off-by: HardFizz <52647469+hixio-mh@users.noreply.github.com>
@hixio-mh
Merge pull request #291 from FFhix10/dependabot/npm_and_yarn/storyboo…
019087d 
…k-54701aaee0

meta: bump the storybook group with 4 updates
@hixio-mh
Merge branch 'master' into dependabot/npm_and_yarn/next-js-8fa9aa3d1e
4b9d807
@hixio-mh
Merge pull request #293 from FFhix10/dependabot/npm_and_yarn/next-js-…
7b3e867 
…8fa9aa3d1e

meta: bump the next-js group with 2 updates
@dependabot
chore(deps): bump peter-evans/create-or-update-comment
1621476 
Bumps [peter-evans/create-or-update-comment](https://github.com/peter-evans/create-or-update-comment) from 3.0.2 to 4.0.0.
- [Release notes](https://github.com/peter-evans/create-or-update-comment/releases)
- [Commits](peter-evans/create-or-update-comment@c6c9a1a...71345be)

---
updated-dependencies:
- dependency-name: peter-evans/create-or-update-comment
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code labels Apr 1, 2024
@dependabot dependabot bot mentioned this pull request Apr 1, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code
Projects
None yet
Milestone
No milestone
2 participants
@snyk-bot @hixio-mh