Skip to content

Bump the ci group across 1 directory with 5 updates #776

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump the ci group across 1 directory with 5 updates #776

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 2, 2025

Bumps the ci group with 5 updates in the / directory:

Package From To
actions/checkout 4 5
clowdhaus/terraform-composite-actions 1.11.1 1.13.0
clowdhaus/terraform-min-max 1.3.2 1.4.1
goreleaser/goreleaser-action 6.3.0 6.4.0
fluxcd/flux2 2.6.0 2.6.4

Updates actions/checkout from 4 to 5

Release notes

Sourced from actions/checkout's releases.

v5.0.0

What's Changed

⚠️ Minimum Compatible Runner Version

v2.327.1
Release Notes

Make sure your runner is updated to this version or newer to use this release.

Full Changelog: actions/checkout@v4...v5.0.0

v4.3.0

What's Changed

New Contributors

Full Changelog: actions/checkout@v4...v4.3.0

v4.2.2

What's Changed

Full Changelog: actions/checkout@v4.2.1...v4.2.2

v4.2.1

What's Changed

New Contributors

Full Changelog: actions/checkout@v4.2.0...v4.2.1

... (truncated)

Commits

Updates clowdhaus/terraform-composite-actions from 1.11.1 to 1.13.0

Release notes

Sourced from clowdhaus/terraform-composite-actions's releases.

v1.13.0

1.13.0 (2025-08-26)

Features

  • Support installing trivy for pre-commit (#32) (26118b7)

v1.12.0

1.12.0 (2025-08-26)

Features

  • Update default versions of tools to latest (#33) (961db97)
Commits
  • 26118b7 feat: Support installing trivy for pre-commit (#32)
  • a958726 chore(deps): update actions/checkout action to v5 (#31)
  • dd093b2 chore(deps): update clowdhaus/terraform-min-max action to v1.4.1 (#29)
  • 961db97 feat: Update default versions of tools to latest (#33)
  • 2b53ffc chore: Update example to correct CI tests part deux
  • de7c658 chore: Update example to correct CI tests
  • 0366d66 chore(deps): update clowdhaus/terraform-min-max action to v1.3.1 (#27)
  • c9ee9c7 chore: Configure Renovate (#26)
  • See full diff in compare view

Updates clowdhaus/terraform-min-max from 1.3.2 to 1.4.1

Release notes

Sourced from clowdhaus/terraform-min-max's releases.

v1.4.1

1.4.1 (2025-07-08)

Bug Fixes

  • Correct Terraform version for module test (#78) (9925580)

v1.4.0

1.4.0 (2025-07-01)

Features

  • Update dependencies to latest, fix CI checks (0e8936f)
Changelog

Sourced from clowdhaus/terraform-min-max's changelog.

1.4.1 (2025-07-08)

Bug Fixes

  • Correct Terraform version for module test (#78) (9925580)

1.4.0 (2025-07-01)

Features

  • Update dependencies to latest, fix CI checks (0e8936f)
Commits
  • 04440fe chore(release): version 1.4.1 [skip ci]
  • b9f859f chore(deps-dev): bump the npm group with 5 updates (#79)
  • 9925580 fix: Correct Terraform version for module test (#78)
  • 503e88c chore(release): version 1.4.0 [skip ci]
  • 0e8936f feat: Update dependencies to latest, fix CI checks
  • 0eccf55 chore(deps-dev): bump the npm group with 7 updates (#75)
  • a92fd76 chore(deps-dev): bump the npm group with 3 updates (#74)
  • 0e5ed91 chore(deps-dev): bump the npm group with 7 updates (#73)
  • f47f8ae chore(deps-dev): bump the npm group with 2 updates (#72)
  • 902f19b chore(deps-dev): bump the npm group with 4 updates (#71)
  • Additional commits viewable in compare view

Updates goreleaser/goreleaser-action from 6.3.0 to 6.4.0

Release notes

Sourced from goreleaser/goreleaser-action's releases.

v6.4.0

What's Changed

New Contributors

Full Changelog: goreleaser/goreleaser-action@v6.3.0...v6.4.0

Commits
  • e435ccd feat: retry downloading releases json (#503)
  • 2ff5850 chore(deps): bump undici from 5.28.5 to 5.29.0 (#496)
  • 9a6cd01 fix: do not get releases.json if version is specific (#502)
  • a386515 chore(deps): bump brace-expansion from 1.1.11 to 1.1.12 (#498)
  • ca48102 chore(deps): bump semver from 7.7.1 to 7.7.2 (#495)
  • 0931acf fix: support .config directory for goreleaser config files (#500)
  • 90c43f2 ci: set contents read as default workflow permissions (#494)
  • See full diff in compare view

Updates fluxcd/flux2 from 2.6.0 to 2.6.4

Release notes

Sourced from fluxcd/flux2's releases.

v2.6.4

Highlights

Flux v2.6.4 is a patch release that comes with various fixes. Users are encouraged to upgrade for the best experience.

Fixes:

  • Fix for SOPS decryption with US Government KMS keys failing with the error:
STS: AssumeRoleWithWebIdentity, https response error\n   StatusCode: 0, RequestID: ,
request send failed, Post\n \"https://sts.arn.amazonaws.com/\": dial tcp:
lookupts.arn.amazonaws.com on 10.100.0.10:53: no such host

Components changelog

CLI changed

Full Changelog: fluxcd/flux2@v2.6.3...v2.6.4

v2.6.3

Highlights

Flux v2.6.3 is a patch release that comes with various fixes. Users are encouraged to upgrade for the best experience.

Fixes:

  • Fix for rsa-sha2-512 and rsa-sha2-256 algorithms not being prioritized for ssh-rsa host keys in source-controller, image-automation-controller and Flux CLI bootstrap.

Components changelog

CLI changed

Full Changelog: fluxcd/flux2@v2.6.2...v2.6.3

v2.6.2

Highlights

... (truncated)

Commits
  • 6bf37f6 Merge pull request #5444 from fluxcd/backport-5443-to-release/v2.6.x
  • 8b21911 Update toolkit components
  • bda4c81 Merge pull request #5427 from fluxcd/backport-5426-to-release/v2.6.x
  • 3f281da Fix: Prioritize sha2-512 and sha2-256 for ssh-rsa host keys
  • 963e991 Update toolkit components
  • a48f81a Merge pull request #5410 from fluxcd/backport-5409-to-release/v2.6.x
  • 55104dc Update toolkit components
  • e771ff2 Merge pull request #5405 from fluxcd/backport-5404-to-release/v2.6.x
  • 998fe11 Upgrade dependencies
  • a6ac4c5 Merge pull request #5396 from fluxcd/backport-5390-to-release/v2.6.x
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the ci group across 1 directory with 5 updates
f044ba7 
Bumps the ci group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout) | `4` | `5` |
| [clowdhaus/terraform-composite-actions](https://github.com/clowdhaus/terraform-composite-actions) | `1.11.1` | `1.13.0` |
| [clowdhaus/terraform-min-max](https://github.com/clowdhaus/terraform-min-max) | `1.3.2` | `1.4.1` |
| [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) | `6.3.0` | `6.4.0` |
| [fluxcd/flux2](https://github.com/fluxcd/flux2) | `2.6.0` | `2.6.4` |



Updates `actions/checkout` from 4 to 5
- [Release notes](https://github.com/actions/checkout/releases)
- [Commits](actions/checkout@v4...v5)

Updates `clowdhaus/terraform-composite-actions` from 1.11.1 to 1.13.0
- [Release notes](https://github.com/clowdhaus/terraform-composite-actions/releases)
- [Changelog](https://github.com/clowdhaus/terraform-composite-actions/blob/main/.releaserc.json)
- [Commits](clowdhaus/terraform-composite-actions@v1.11.1...v1.13.0)

Updates `clowdhaus/terraform-min-max` from 1.3.2 to 1.4.1
- [Release notes](https://github.com/clowdhaus/terraform-min-max/releases)
- [Changelog](https://github.com/clowdhaus/terraform-min-max/blob/main/CHANGELOG.md)
- [Commits](clowdhaus/terraform-min-max@v1.3.2...v1.4.1)

Updates `goreleaser/goreleaser-action` from 6.3.0 to 6.4.0
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](goreleaser/goreleaser-action@9c156ee...e435ccd)

Updates `fluxcd/flux2` from 2.6.0 to 2.6.4
- [Release notes](https://github.com/fluxcd/flux2/releases)
- [Changelog](https://github.com/fluxcd/flux2/blob/main/.goreleaser.yml)
- [Commits](fluxcd/flux2@4c66d37...6bf37f6)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: ci
- dependency-name: clowdhaus/terraform-composite-actions
  dependency-version: 1.13.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci
- dependency-name: clowdhaus/terraform-min-max
  dependency-version: 1.4.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci
- dependency-name: goreleaser/goreleaser-action
  dependency-version: 6.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: ci
- dependency-name: fluxcd/flux2
  dependency-version: 2.6.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ci
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added area/ci CI related issues and pull requests dependencies Pull requests that update a dependency labels Sep 2, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
area/ci CI related issues and pull requests dependencies Pull requests that update a dependency
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants