dependabot[bot]
|
5a3b7ca520
|
Bump github/codeql-action from 3.27.0 to 3.27.4
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.27.0 to 3.27.4.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](662472033e...ea9e4e3799)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-11-15 12:03:33 +00:00 |
Gary Gregory
|
1c12b555da
|
Fix dependency-review.yml for PR only
|
2024-11-08 07:19:28 -05:00 |
|
dependabot[bot]
|
f3a60360e4
|
Bump actions/dependency-review-action from 4.3.5 to 4.4.0
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 4.3.5 to 4.4.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](a6993e2c61...4081bf99e2)
---
updated-dependencies:
- dependency-name: actions/dependency-review-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-11-01 12:12:16 +00:00 |
|
Gary Gregory
|
b866c25f61
|
Only run actions/dependency-review-action on pull_request
|
2024-11-01 07:31:28 -04:00 |
Gary Gregory
|
ed1a8a92f3
|
Merge pull request #498 from apache/dependabot/github_actions/github/codeql-action-3.27.0
Bump github/codeql-action from 3.26.13 to 3.27.0
|
2024-10-25 08:22:04 -04:00 |
|
Gary Gregory
|
de2c25db5c
|
Merge pull request #497 from apache/dependabot/github_actions/actions/setup-java-4.5.0
Bump actions/setup-java from 4.4.0 to 4.5.0
|
2024-10-25 08:21:48 -04:00 |
|
dependabot[bot]
|
e2632fe292
|
Bump actions/cache from 4.1.1 to 4.1.2
Bumps [actions/cache](https://github.com/actions/cache) from 4.1.1 to 4.1.2.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](3624ceb22c...6849a64899)
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-10-25 12:21:05 +00:00 |
|
Gary Gregory
|
2e5b9645ff
|
Merge pull request #499 from apache/dependabot/github_actions/actions/checkout-4.2.2
Bump actions/checkout from 4.2.1 to 4.2.2
|
2024-10-25 08:20:35 -04:00 |
|
dependabot[bot]
|
32d98e6fe2
|
Bump actions/dependency-review-action from 4.3.4 to 4.3.5
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 4.3.4 to 4.3.5.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](5a2ce3f5b9...a6993e2c61)
---
updated-dependencies:
- dependency-name: actions/dependency-review-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-10-25 12:19:23 +00:00 |
|
dependabot[bot]
|
da647b7f1e
|
Bump actions/checkout from 4.2.1 to 4.2.2
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.2.1 to 4.2.2.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](eef61447b9...11bd71901b)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-10-25 12:19:20 +00:00 |
|
dependabot[bot]
|
9f1a8930f0
|
Bump github/codeql-action from 3.26.13 to 3.27.0
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.13 to 3.27.0.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](f779452ac5...662472033e)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-10-25 12:19:15 +00:00 |
|
dependabot[bot]
|
c38ee1eab4
|
Bump actions/setup-java from 4.4.0 to 4.5.0
Bumps [actions/setup-java](https://github.com/actions/setup-java) from 4.4.0 to 4.5.0.
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](b36c23c0d9...8df1039502)
---
updated-dependencies:
- dependency-name: actions/setup-java
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-10-25 12:19:05 +00:00 |
|
dependabot[bot]
|
5a26117d7c
|
Bump github/codeql-action from 3.26.12 to 3.26.13
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.12 to 3.26.13.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](c36620d31a...f779452ac5)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-10-18 12:11:58 +00:00 |
|
dependabot[bot]
|
26e06c320c
|
Bump actions/cache from 4.0.2 to 4.1.1
Bumps [actions/cache](https://github.com/actions/cache) from 4.0.2 to 4.1.1.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](0c45773b62...3624ceb22c)
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-10-11 13:32:30 +00:00 |
|
Gary Gregory
|
811db7235a
|
Merge pull request #490 from apache/dependabot/github_actions/actions/upload-artifact-4.4.3
Bump actions/upload-artifact from 4.4.0 to 4.4.3
|
2024-10-11 09:32:13 -04:00 |
|
Gary Gregory
|
5ca559f81c
|
Merge pull request #491 from apache/dependabot/github_actions/github/codeql-action-3.26.12
Bump github/codeql-action from 3.26.11 to 3.26.12
|
2024-10-11 09:32:01 -04:00 |
|
dependabot[bot]
|
5172b052a0
|
Bump github/codeql-action from 3.26.11 to 3.26.12
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.11 to 3.26.12.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](6db8d6351f...c36620d31a)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-10-11 12:48:14 +00:00 |
|
dependabot[bot]
|
f957e0037c
|
Bump actions/upload-artifact from 4.4.0 to 4.4.3
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.4.0 to 4.4.3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](50769540e7...b4b15b8c7c)
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-10-11 12:48:02 +00:00 |
|
dependabot[bot]
|
0174fe7c43
|
Bump actions/checkout from 4.2.0 to 4.2.1
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.2.0 to 4.2.1.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](d632683dd7...eef61447b9)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-10-11 12:47:55 +00:00 |
|
Gary Gregory
|
79eadce18e
|
The Java 23 build is no longer experimental
|
2024-10-06 08:32:03 -04:00 |
|
Gary Gregory
|
aa9fc0d2c2
|
Merge pull request #485 from apache/dependabot/github_actions/actions/checkout-4.2.0
Bump actions/checkout from 4.1.7 to 4.2.0
|
2024-10-04 09:39:11 -04:00 |
|
dependabot[bot]
|
78064189d3
|
Bump actions/checkout from 4.1.7 to 4.2.0
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.7 to 4.2.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](692973e3d9...d632683dd7)
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-10-04 12:26:02 +00:00 |
|
dependabot[bot]
|
e5250c139a
|
Bump github/codeql-action from 3.26.9 to 3.26.11
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.9 to 3.26.11.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](461ef6c76d...6db8d6351f)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-10-04 12:25:58 +00:00 |
|
Gary Gregory
|
55b824d4ff
|
Pin GitHub action versions
|
2024-09-28 16:19:59 -04:00 |
|
Gary Gregory
|
97c6dd82bb
|
Merge pull request #480 from apache/dependabot/github_actions/actions/setup-java-4.4.0
Bump actions/setup-java from 4.3.0 to 4.4.0
|
2024-09-27 09:03:46 -04:00 |
|
dependabot[bot]
|
7986024802
|
Bump actions/setup-java from 4.3.0 to 4.4.0
Bumps [actions/setup-java](https://github.com/actions/setup-java) from 4.3.0 to 4.4.0.
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](2dfa2011c5...b36c23c0d9)
---
updated-dependencies:
- dependency-name: actions/setup-java
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-09-27 13:00:11 +00:00 |
|
dependabot[bot]
|
d849427688
|
Bump github/codeql-action from 3.26.8 to 3.26.9
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.8 to 3.26.9.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](294a9d9291...461ef6c76d)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-09-27 13:00:07 +00:00 |
|
Gary Gregory
|
cab22bb697
|
Also run DR on push
|
2024-09-23 09:28:00 -04:00 |
|
Gary Gregory
|
113147f1e7
|
Add dependency-review.yml to GitHub CI
|
2024-09-20 19:58:24 -04:00 |
|
dependabot[bot]
|
5b2c26eedf
|
Bump github/codeql-action from 3.26.6 to 3.26.8
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.6 to 3.26.8.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](4dd16135b6...294a9d9291)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-09-20 12:15:02 +00:00 |
|
Gary Gregory
|
3480e2c655
|
Remove Java 22
Replace Java 23-ea with 23
|
2024-09-18 17:52:50 -04:00 |
|
dependabot[bot]
|
5a9034e28f
|
Bump actions/setup-java from 4.2.2 to 4.3.0
Bumps [actions/setup-java](https://github.com/actions/setup-java) from 4.2.2 to 4.3.0.
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](6a0805fcef...2dfa2011c5)
---
updated-dependencies:
- dependency-name: actions/setup-java
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-09-13 12:35:51 +00:00 |
|
dependabot[bot]
|
f4cd8dbf82
|
Bump actions/upload-artifact from 4.3.6 to 4.4.0
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.6 to 4.4.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](834a144ee9...50769540e7)
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-09-06 12:20:26 +00:00 |
|
dependabot[bot]
|
4532f84cd9
|
Bump github/codeql-action from 3.26.4 to 3.26.6
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.4 to 3.26.6.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](f0f3afee80...4dd16135b6)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-08-30 12:45:40 +00:00 |
|
dependabot[bot]
|
467201e13b
|
Bump github/codeql-action from 3.26.2 to 3.26.4
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.2 to 3.26.4.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](429e197704...f0f3afee80)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-08-23 12:00:55 +00:00 |
|
dependabot[bot]
|
72a977afdd
|
Bump github/codeql-action from 3.26.0 to 3.26.2
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.0 to 3.26.2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](eb055d739a...429e197704)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-08-16 12:16:46 +00:00 |
|
Gary Gregory
|
0bb7767e55
|
Merge pull request #461 from apache/dependabot/github_actions/actions/setup-java-4.2.2
Bump actions/setup-java from 4.2.1 to 4.2.2
|
2024-08-09 09:13:44 -04:00 |
|
Gary Gregory
|
19a7e1e23b
|
Merge pull request #462 from apache/dependabot/github_actions/actions/upload-artifact-4.3.6
Bump actions/upload-artifact from 4.3.4 to 4.3.6
|
2024-08-09 09:13:33 -04:00 |
|
dependabot[bot]
|
60f65f6ac5
|
Bump actions/upload-artifact from 4.3.4 to 4.3.6
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.4 to 4.3.6.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](0b2256b8c0...834a144ee9)
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-08-09 12:17:38 +00:00 |
|
dependabot[bot]
|
a7181fbda0
|
Bump actions/setup-java from 4.2.1 to 4.2.2
Bumps [actions/setup-java](https://github.com/actions/setup-java) from 4.2.1 to 4.2.2.
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](99b8673ff6...6a0805fcef)
---
updated-dependencies:
- dependency-name: actions/setup-java
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-08-09 12:17:34 +00:00 |
|
dependabot[bot]
|
df8292dae1
|
Bump github/codeql-action from 3.25.15 to 3.26.0
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.15 to 3.26.0.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](afb54ba388...eb055d739a)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-08-09 12:17:30 +00:00 |
|
Gary Gregory
|
5d3bff249d
|
Merge pull request #454 from apache/dependabot/github_actions/ossf/scorecard-action-2.4.0
Bump ossf/scorecard-action from 2.3.3 to 2.4.0
|
2024-08-02 08:47:05 -04:00 |
|
dependabot[bot]
|
cc8699a93c
|
Bump ossf/scorecard-action from 2.3.3 to 2.4.0
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.3 to 2.4.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](dc50aa9510...62b2cac7ed)
---
updated-dependencies:
- dependency-name: ossf/scorecard-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-08-02 12:23:17 +00:00 |
|
dependabot[bot]
|
4810d2cc0b
|
Bump github/codeql-action from 3.25.14 to 3.25.15
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.14 to 3.25.15.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](5cf07d8b70...afb54ba388)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-08-02 12:23:14 +00:00 |
|
dependabot[bot]
|
88ebda29c8
|
Bump github/codeql-action from 3.25.12 to 3.25.14
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.12 to 3.25.14.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](4fa2a79536...5cf07d8b70)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-07-26 12:27:06 +00:00 |
|
Gary Gregory
|
3c6ce535e6
|
Add Java 24-ea as an experimental build
|
2024-07-22 08:49:01 -04:00 |
|
Gary Gregory
|
44559c9bf9
|
Add Java 23-ea as an experimental build
|
2024-07-22 08:39:09 -04:00 |
|
Gary Gregory
|
d8909f9d9e
|
Add Java 22 to the GH CI build
|
2024-07-22 08:38:53 -04:00 |
|
Gary Gregory
|
e80c4ba5b9
|
Merge pull request #447 from apache/dependabot/github_actions/github/codeql-action-3.25.12
Bump github/codeql-action from 3.25.11 to 3.25.12
|
2024-07-12 08:22:45 -04:00 |
|
dependabot[bot]
|
e81ffb995a
|
Bump github/codeql-action from 3.25.11 to 3.25.12
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.11 to 3.25.12.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](b611370bb5...4fa2a79536)
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-07-12 12:15:05 +00:00 |