dependabot[bot]
20afcbb2d5
chore: bump the minor-and-patch group with 2 updates ( #37512 )
...
Bumps the minor-and-patch group with 2 updates:
[actions/create-github-app-token](https://github.com/actions/create-github-app-token )
and
[aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials ).
Updates `actions/create-github-app-token` from 3.1.1 to 3.2.0
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/create-github-app-token/releases ">actions/create-github-app-token's
releases</a>.</em></p>
<blockquote>
<h2>v3.2.0</h2>
<h2><a
href="https://github.com/actions/create-github-app-token/compare/v3.1.1...v3.2.0 ">3.2.0</a>
(2026-05-12)</h2>
<h3>Features</h3>
<ul>
<li>add support for enterprise-level GitHub Apps (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/263 ">#263</a>)
(<a
href="952a2a7073https://redirect.github.com/actions/create-github-app-token/issues/372 ">#372</a>)
(<a
href="85eb8dd414https://redirect.github.com/actions/create-github-app-token/issues/364 ">#364</a>)
(<a
href="43e5c345bfhttps://redirect.github.com/actions/create-github-app-token/issues/376 ">#376</a>)
(<a
href="f24bbd8964https://github.com/actions/create-github-app-token/blob/main/CHANGELOG.md ">actions/create-github-app-token's
changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<h2><a
href="https://github.com/actions/create-github-app-token/compare/v3.1.1...v3.2.0 ">3.2.0</a>
(2026-05-12)</h2>
<h3>Features</h3>
<ul>
<li>add support for enterprise-level GitHub Apps (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/263 ">#263</a>)
(<a
href="952a2a7073https://redirect.github.com/actions/create-github-app-token/issues/372 ">#372</a>)
(<a
href="85eb8dd414https://redirect.github.com/actions/create-github-app-token/issues/364 ">#364</a>)
(<a
href="43e5c345bfhttps://redirect.github.com/actions/create-github-app-token/issues/376 ">#376</a>)
(<a
href="f24bbd8964bcd2ba4921https://redirect.github.com/actions/create-github-app-token/issues/370 ">#370</a>)</li>
<li><a
href="f24bbd8964https://redirect.github.com/actions/create-github-app-token/issues/376 ">#376</a>)</li>
<li><a
href="363531b6d9https://redirect.github.com/actions/create-github-app-token/issues/374 ">#374</a>)</li>
<li><a
href="fd2801133ehttps://redirect.github.com/actions/create-github-app-token/issues/287 ">#287</a>)</li>
<li><a
href="85eb8dd414https://redirect.github.com/actions/create-github-app-token/issues/372 ">#372</a>)</li>
<li><a
href="c9aabb8372e02e816e55https://redirect.github.com/actions/create-github-app-token/issues/366 ">#366</a>)</li>
<li><a
href="8d835bfd37952a2a7073https://redirect.github.com/actions/create-github-app-token/issues/263 ">#263</a>)</li>
<li><a
href="43e5c345bf1b10c78c78...bcd2ba4921https://github.com/aws-actions/configure-aws-credentials/releases ">aws-actions/configure-aws-credentials's
releases</a>.</em></p>
<blockquote>
<h2>v6.1.1</h2>
<h2>What's Changed</h2>
<ul>
<li>chore(deps-dev): bump esbuild from 0.27.4 to 0.28.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1722 ">aws-actions/configure-aws-credentials#1722</a></li>
<li>chore(deps-dev): bump <code>@types/node</code> from 25.5.0 to
25.5.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1723 ">aws-actions/configure-aws-credentials#1723</a></li>
<li>chore(deps-dev): bump <code>@smithy/property-provider</code> from
4.2.12 to 4.2.13 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1724 ">aws-actions/configure-aws-credentials#1724</a></li>
<li>chore(deps): bump proxy-agent from 8.0.0 to 8.0.1 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1726 ">aws-actions/configure-aws-credentials#1726</a></li>
<li>chore(deps): bump <code>@smithy/node-http-handler</code> from 4.5.1
to 4.5.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1725 ">aws-actions/configure-aws-credentials#1725</a></li>
<li>chore(deps): bump <code>@aws-sdk/client-sts</code> from 3.1020.0 to
3.1025.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1727 ">aws-actions/configure-aws-credentials#1727</a></li>
<li>chore(deps): bump basic-ftp from 5.2.0 to 5.2.1 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1728 ">aws-actions/configure-aws-credentials#1728</a></li>
<li>chore(deps): bump basic-ftp from 5.2.1 to 5.2.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1729 ">aws-actions/configure-aws-credentials#1729</a></li>
<li>chore(deps-dev): bump <code>@types/node</code> from 25.5.2 to
25.6.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1730 ">aws-actions/configure-aws-credentials#1730</a></li>
<li>chore(deps-dev): bump <code>@aws-sdk/credential-provider-env</code>
from 3.972.24 to 3.972.25 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1733 ">aws-actions/configure-aws-credentials#1733</a></li>
<li>chore(deps): bump <code>@aws-sdk/client-sts</code> from 3.1025.0 to
3.1030.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1732 ">aws-actions/configure-aws-credentials#1732</a></li>
<li>chore(deps-dev): bump <code>@biomejs/biome</code> from 2.4.10 to
2.4.11 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1734 ">aws-actions/configure-aws-credentials#1734</a></li>
<li>chore(deps): bump basic-ftp from 5.2.2 to 5.3.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1736 ">aws-actions/configure-aws-credentials#1736</a></li>
<li>chore(deps-dev): bump memfs from 4.57.1 to 4.57.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1737 ">aws-actions/configure-aws-credentials#1737</a></li>
<li>chore(deps-dev): bump typescript from 6.0.2 to 6.0.3 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1740 ">aws-actions/configure-aws-credentials#1740</a></li>
<li>chore(deps-dev): bump <code>@smithy/property-provider</code> from
4.2.13 to 4.2.14 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1741 ">aws-actions/configure-aws-credentials#1741</a></li>
<li>chore(deps-dev): bump <code>@aws-sdk/credential-provider-env</code>
from 3.972.25 to 3.972.28 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1742 ">aws-actions/configure-aws-credentials#1742</a></li>
<li>chore(deps): bump <code>@aws-sdk/client-sts</code> from 3.1030.0 to
3.1033.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1743 ">aws-actions/configure-aws-credentials#1743</a></li>
<li>chore(deps-dev): bump <code>@biomejs/biome</code> from 2.4.11 to
2.4.12 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1739 ">aws-actions/configure-aws-credentials#1739</a></li>
<li>chore(deps-dev): bump <code>@biomejs/biome</code> from 2.4.12 to
2.4.13 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1747 ">aws-actions/configure-aws-credentials#1747</a></li>
<li>chore(deps): bump postcss from 8.5.6 to 8.5.12 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1752 ">aws-actions/configure-aws-credentials#1752</a></li>
<li>chore(deps): bump <code>@smithy/node-http-handler</code> from 4.6.0
to 4.6.1 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1750 ">aws-actions/configure-aws-credentials#1750</a></li>
<li>chore(deps-dev): bump <code>@aws-sdk/credential-provider-env</code>
from 3.972.28 to 3.972.32 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1751 ">aws-actions/configure-aws-credentials#1751</a></li>
<li>chore(deps): bump <code>@aws-sdk/client-sts</code> from 3.1033.0 to
3.1038.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1749 ">aws-actions/configure-aws-credentials#1749</a></li>
<li>chore: release 6.1.1 by <a
href="https://github.com/lehmanmj "><code>@lehmanmj</code></a> in <a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1757 ">aws-actions/configure-aws-credentials#1757</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/aws-actions/configure-aws-credentials/compare/v6...v6.1.1 ">https://github.com/aws-actions/configure-aws-credentials/compare/v6...v6.1.1 </a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md ">aws-actions/configure-aws-credentials's
changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<p>All notable changes to this project will be documented in this file.
See <a
href="https://github.com/conventional-changelog/standard-version ">standard-version</a>
for commit guidelines.</p>
<h2><a
href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.1.0...v6.1.1 ">6.1.1</a>
(2026-05-05)</h2>
<h3>Miscellaneous Chores</h3>
<ul>
<li>various dependency updates</li>
</ul>
<h2><a
href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.0.0...v6.1.0 ">6.1.0</a>
(2026-04-06)</h2>
<h3>Features</h3>
<ul>
<li>add skip cleanup option (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1716 ">#1716</a>)
(<a
href="11b1c58b24https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1545 ">#1545</a></li>
<li>Support usage of AWS Profiles (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1696 ">#1696</a>)
(<a
href="a7f0c828achttps://github.com/aws-actions/configure-aws-credentials/compare/v5.1.1...v6.0.0 ">6.0.0</a>
(2026-02-04)</h2>
<h3>⚠ BREAKING CHANGES</h3>
<ul>
<li>Update action to use node24 (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1632 ">#1632</a>)
(<a
href="a7a2c1125chttps://redirect.github.com/aws-actions/configure-aws-credentials/pull/1316 ">#1316</a>)
(<a
href="232435c0c0930ebd9bcahttps://redirect.github.com/aws-actions/configure-aws-credentials/pull/1633 ">#1633</a>)
(<a
href="7ceaf96edchttps://github.com/aws-actions/configure-aws-credentials/compare/v5.1.0...v5.1.1 ">5.1.1</a>
(2025-11-24)</h2>
<h3>Miscellaneous Chores</h3>
<ul>
<li>release 5.1.1 (<a
href="56d6a583f0https://github.com/aws-actions/configure-aws-credentials/compare/v5.0.0...v5.1.0 ">5.1.0</a>
(2025-10-06)</h2>
<h3>Features</h3>
<ul>
<li>Add global timeout support (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1487 ">#1487</a>)
(<a
href="1584b8b0e2https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1482 ">#1482</a>)
(<a
href="dde9b22a8ehttps://redirect.github.com/aws-actions/configure-aws-credentials/issues/1485 ">#1485</a>)
(<a
href="97ef425d73d979d5b3a7https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1757 ">#1757</a>)</li>
<li><a
href="d4a9acd8d3fc44f4ae40https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1749 ">#1749</a>)</li>
<li><a
href="0b8336f1ba8c5bf33eedhttps://redirect.github.com/aws-actions/configure-aws-credentials/issues/1751 ">#1751</a>)</li>
<li><a
href="53df0c1c32c2c55827d2https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1750 ">#1750</a>)</li>
<li><a
href="bd0031d7c3https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1752 ">#1752</a>)</li>
<li><a
href="6ab499a698https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1747 ">#1747</a>)</li>
<li><a
href="bc94895858https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1739 ">#1739</a>)</li>
<li>Additional commits viewable in <a
href="ec61189d14...d979d5b3a7support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-18 22:31:48 +00:00
dependabot[bot]
5c27249e27
chore: bump the minor-and-patch group with 5 updates ( #37119 )
...
Bumps the minor-and-patch group with 5 updates:
| Package | From | To |
| --- | --- | --- |
|
[actions/create-github-app-token](https://github.com/actions/create-github-app-token )
| `3.0.0` | `3.1.1` |
|
[peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request )
| `8.1.0` | `8.1.1` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact )
| `7.0.0` | `7.0.1` |
|
[pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish )
| `1.13.0` | `1.14.0` |
|
[aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials )
| `6.0.0` | `6.1.0` |
Updates `actions/create-github-app-token` from 3.0.0 to 3.1.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/create-github-app-token/releases ">actions/create-github-app-token's
releases</a>.</em></p>
<blockquote>
<h2>v3.1.1</h2>
<h2><a
href="https://github.com/actions/create-github-app-token/compare/v3.1.0...v3.1.1 ">3.1.1</a>
(2026-04-11)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>improve error message when app identifier is empty (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/362 ">#362</a>)
(<a
href="07e2b76066https://redirect.github.com/actions/create-github-app-token/issues/249 ">#249</a></li>
</ul>
<h2>v3.1.0</h2>
<h1><a
href="https://github.com/actions/create-github-app-token/compare/v3.0.0...v3.1.0 ">3.1.0</a>
(2026-04-11)</h1>
<h3>Bug Fixes</h3>
<ul>
<li><strong>deps:</strong> bump p-retry from 7.1.1 to 8.0.0 (<a
href="https://redirect.github.com/actions/create-github-app-token/issues/357 ">#357</a>)
(<a
href="3bbe07d928https://redirect.github.com/actions/create-github-app-token/issues/353 ">#353</a>)
(<a
href="e6bd4e6970https://redirect.github.com/actions/create-github-app-token/issues/358 ">#358</a>)
(<a
href="076e9480ca1b10c78c7807e2b76066https://redirect.github.com/actions/create-github-app-token/issues/362 ">#362</a>)</li>
<li><a
href="ea0121618bhttps://redirect.github.com/actions/create-github-app-token/issues/361 ">#361</a>)</li>
<li><a
href="7bd0371149e6bd4e6970https://redirect.github.com/actions/create-github-app-token/issues/353 ">#353</a>)</li>
<li><a
href="076e9480cahttps://redirect.github.com/actions/create-github-app-token/issues/358 ">#358</a>)</li>
<li><a
href="3bbe07d928https://redirect.github.com/actions/create-github-app-token/issues/357 ">#357</a>)</li>
<li><a
href="28a99e369c4df50600ef4843c538d9f8d387b68d...1b10c78c78https://github.com/peter-evans/create-pull-request/releases ">peter-evans/create-pull-request's
releases</a>.</em></p>
<blockquote>
<h2>Create Pull Request v8.1.1</h2>
<h2>What's Changed</h2>
<ul>
<li>build(deps-dev): bump the npm group with 2 updates by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4305 ">peter-evans/create-pull-request#4305</a></li>
<li>build(deps): bump minimatch by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4311 ">peter-evans/create-pull-request#4311</a></li>
<li>build(deps): bump the github-actions group with 2 updates by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4316 ">peter-evans/create-pull-request#4316</a></li>
<li>build(deps): bump <code>@tootallnate/once</code> and
jest-environment-jsdom by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4323 ">peter-evans/create-pull-request#4323</a></li>
<li>build(deps-dev): bump undici from 6.23.0 to 6.24.0 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4328 ">peter-evans/create-pull-request#4328</a></li>
<li>build(deps-dev): bump flatted from 3.3.1 to 3.4.2 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4334 ">peter-evans/create-pull-request#4334</a></li>
<li>build(deps): bump picomatch by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4339 ">peter-evans/create-pull-request#4339</a></li>
<li>build(deps-dev): bump handlebars from 4.7.8 to 4.7.9 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4344 ">peter-evans/create-pull-request#4344</a></li>
<li>build(deps-dev): bump the npm group with 3 updates by <a
href="https://github.com/dependabot "><code>@dependabot</code></a>[bot]
in <a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4349 ">peter-evans/create-pull-request#4349</a></li>
<li>fix: retry post-creation API calls on 422 eventual consistency
errors by <a
href="https://github.com/peter-evans "><code>@peter-evans</code></a> in
<a
href="https://redirect.github.com/peter-evans/create-pull-request/pull/4356 ">peter-evans/create-pull-request#4356</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/peter-evans/create-pull-request/compare/v8.1.0...v8.1.1 ">https://github.com/peter-evans/create-pull-request/compare/v8.1.0...v8.1.1 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5f6978faf0https://redirect.github.com/peter-evans/create-pull-request/issues/4356 ">#4356</a>)</li>
<li><a
href="d32e88dac7https://redirect.github.com/peter-evans/create-pull-request/issues/4349 ">#4349</a>)</li>
<li><a
href="8170bccad1https://redirect.github.com/peter-evans/create-pull-request/issues/4344 ">#4344</a>)</li>
<li><a
href="00418193b4https://redirect.github.com/peter-evans/create-pull-request/issues/4339 ">#4339</a>)</li>
<li><a
href="b993918c85https://redirect.github.com/peter-evans/create-pull-request/issues/4334 ">#4334</a>)</li>
<li><a
href="36d7c8468bhttps://redirect.github.com/peter-evans/create-pull-request/issues/4328 ">#4328</a>)</li>
<li><a
href="a45d1fb447https://redirect.github.com/peter-evans/create-pull-request/issues/4323 ">#4323</a>)</li>
<li><a
href="3499eb6183https://redirect.github.com/peter-evans/create-pull-request/issues/4316 ">#4316</a>)</li>
<li><a
href="3f3b473b8chttps://redirect.github.com/peter-evans/create-pull-request/issues/4311 ">#4311</a>)</li>
<li><a
href="6699836a21https://redirect.github.com/peter-evans/create-pull-request/issues/4305 ">#4305</a>)</li>
<li>See full diff in <a
href="c0f553fe54...5f6978faf0https://github.com/actions/upload-artifact/releases ">actions/upload-artifact's
releases</a>.</em></p>
<blockquote>
<h2>v7.0.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Update the readme with direct upload details by <a
href="https://github.com/danwkennedy "><code>@danwkennedy</code></a> in
<a
href="https://redirect.github.com/actions/upload-artifact/pull/795 ">actions/upload-artifact#795</a></li>
<li>Readme: bump all the example versions to v7 by <a
href="https://github.com/danwkennedy "><code>@danwkennedy</code></a> in
<a
href="https://redirect.github.com/actions/upload-artifact/pull/796 ">actions/upload-artifact#796</a></li>
<li>Include changes in typespec/ts-http-runtime 0.3.5 by <a
href="https://github.com/yacaovsnc "><code>@yacaovsnc</code></a> in <a
href="https://redirect.github.com/actions/upload-artifact/pull/797 ">actions/upload-artifact#797</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/upload-artifact/compare/v7...v7.0.1 ">https://github.com/actions/upload-artifact/compare/v7...v7.0.1 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="043fb46d1ahttps://redirect.github.com/actions/upload-artifact/issues/797 ">#797</a>
from actions/yacaovsnc/update-dependency</li>
<li><a
href="634250c138e454baaac2https://redirect.github.com/actions/upload-artifact/issues/796 ">#796</a>)</li>
<li><a
href="74fad66b98https://redirect.github.com/actions/upload-artifact/issues/795 ">#795</a>)</li>
<li>See full diff in <a
href="bbbca2ddaa...043fb46d1ahttps://github.com/pypa/gh-action-pypi-publish/releases ">pypa/gh-action-pypi-publish's
releases</a>.</em></p>
<blockquote>
<h2>v1.14.0</h2>
<!-- raw HTML omitted -->
<h2>✨ What's Changed</h2>
<p>The main change in this release is that <code>verbose</code> and
<code>print-hash</code> inputs are now on by default. This was
contributed by <a
href="https://github.com/whitequark "><code>@whitequark</code></a><a
href="https://github.com/sponsors/whitequark ">💰 </a> in <a
href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/397 ">#397</a>.</p>
<h2>📝 Docs</h2>
<p><a href="https://github.com/woodruffw "><code>@woodruffw</code></a><a
href="https://github.com/sponsors/woodruffw ">💰 </a> updated the mentions
of PEP 740 to stop implying that it might be experimental (it hasn't
been for quite a while!) in <a
href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/388 ">#388</a>
and <a href="https://github.com/him2him2 "><code>@him2him2</code></a><a
href="https://github.com/sponsors/him2him2 ">💰 </a> brushed up some
grammar in the README and SECURITY docs via <a
href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/395 ">#395</a>.</p>
<h2>🛠️ Internal Updates</h2>
<p><a href="https://github.com/woodruffw "><code>@woodruffw</code></a><a
href="https://github.com/sponsors/woodruffw ">💰 </a> bumped
<code>sigstore</code> and <code>pypi-attestations</code> in the lock
file (<a
href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/391 ">#391</a>)
and <a href="https://github.com/webknjaz "><code>@webknjaz</code></a><a
href="https://github.com/sponsors/webknjaz ">💰 </a> added infra for using
type annotations in the project (<a
href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/381 ">#381</a>).</p>
<h2>💪 New Contributors</h2>
<ul>
<li><a href="https://github.com/him2him2 "><code>@him2him2</code></a>
made their first contribution in <a
href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/395 ">#395</a></li>
<li><a
href="https://github.com/whitequark "><code>@whitequark</code></a> made
their first contribution in <a
href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/397 ">#397</a></li>
</ul>
<p><strong>🪞 Full Diff</strong>: <a
href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.13.0...v1.14.0 ">https://github.com/pypa/gh-action-pypi-publish/compare/v1.13.0...v1.14.0 </a></p>
<p><strong>🧔♂️ Release Manager:</strong> <a
href="https://github.com/sponsors/webknjaz "><code>@webknjaz</code></a>
<a href="https://stand-with-ukraine.pp.ua ">🇺🇦 </a></p>
<p><strong>🙏 Special Thanks</strong> to <a
href="https://github.com/facutuesca "><code>@facutuesca</code></a><a
href="https://github.com/sponsors/facutuesca ">💰 </a> and <a
href="https://github.com/woodruffw "><code>@woodruffw</code></a><a
href="https://github.com/sponsors/woodruffw ">💰 </a> for helping maintain
this project when <a href="https://github.com/sponsors/webknjaz ">I</a>
can't!</p>
<p><strong>💬 Discuss</strong> <a
href="https://bsky.app/profile/webknjaz.me/post/3mivwsz3qzk2e ">on
Bluesky 🦋 </a>, <a
href="https://mastodon.social/@webknjaz/116363779997051422 ">on Mastodon
🐘 </a> and <a
href="https://github.com/pypa/gh-action-pypi-publish/discussions/404 ">on
GitHub</a>.</p>
<p><a href="https://github.com/sponsors/webknjaz "><img
src="https://img.shields.io/badge/%40webknjaz-transparent?logo=githubsponsors&logoColor=%23EA4AAA&label=Sponsor&color=2a313c "
alt="GH Sponsors badge" /></a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="cef221092ehttps://redirect.github.com/pypa/gh-action-pypi-publish/issues/397 ">#397</a>
from whitequark/patch-1</li>
<li><a
href="b4595e2555e2bab26859https://redirect.github.com/pypa/gh-action-pypi-publish/issues/395 ">#395</a>
from him2him2/docs/fix-typos-and-grammar</li>
<li><a
href="7495c384ec03f86fee9ahttps://redirect.github.com/pypa/gh-action-pypi-publish/issues/388 ">#388</a>
from woodruffw-forks/ww/rm-experimental</li>
<li><a
href="4c78f1c53cb5a6e8ba26a48a03e7588087a88a463317ede93a🧪 Integrate actionlint via pre-commit framework</li>
<li>Additional commits viewable in <a
href="ed0c53931b...cef221092ehttps://github.com/aws-actions/configure-aws-credentials/releases ">aws-actions/configure-aws-credentials's
releases</a>.</em></p>
<blockquote>
<h2>v6.1.0</h2>
<h2><a
href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.0.0...v6.1.0 ">6.1.0</a>
(2026-04-06)</h2>
<h3>Features</h3>
<ul>
<li>add skip cleanup option (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1716 ">#1716</a>)
(<a
href="11b1c58b24https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1545 ">#1545</a></li>
<li>Support usage of AWS Profiles (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1696 ">#1696</a>)
(<a
href="a7f0c828achttps://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md ">aws-actions/configure-aws-credentials's
changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<p>All notable changes to this project will be documented in this file.
See <a
href="https://github.com/conventional-changelog/standard-version ">standard-version</a>
for commit guidelines.</p>
<h2><a
href="https://github.com/aws-actions/configure-aws-credentials/compare/v6.0.0...v6.1.0 ">6.1.0</a>
(2026-04-06)</h2>
<h3>Features</h3>
<ul>
<li>add skip cleanup option (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1716 ">#1716</a>)
(<a
href="11b1c58b24https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1545 ">#1545</a></li>
<li>Support usage of AWS Profiles (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1696 ">#1696</a>)
(<a
href="a7f0c828achttps://github.com/aws-actions/configure-aws-credentials/compare/v5.1.1...v6.0.0 ">6.0.0</a>
(2026-02-04)</h2>
<h3>⚠ BREAKING CHANGES</h3>
<ul>
<li>Update action to use node24 (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1632 ">#1632</a>)
(<a
href="a7a2c1125chttps://redirect.github.com/aws-actions/configure-aws-credentials/pull/1316 ">#1316</a>)
(<a
href="232435c0c0930ebd9bcahttps://redirect.github.com/aws-actions/configure-aws-credentials/pull/1633 ">#1633</a>)
(<a
href="7ceaf96edchttps://github.com/aws-actions/configure-aws-credentials/compare/v5.1.0...v5.1.1 ">5.1.1</a>
(2025-11-24)</h2>
<h3>Miscellaneous Chores</h3>
<ul>
<li>release 5.1.1 (<a
href="56d6a583f0https://github.com/aws-actions/configure-aws-credentials/compare/v5.0.0...v5.1.0 ">5.1.0</a>
(2025-10-06)</h2>
<h3>Features</h3>
<ul>
<li>Add global timeout support (<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1487 ">#1487</a>)
(<a
href="1584b8b0e2https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1482 ">#1482</a>)
(<a
href="dde9b22a8ehttps://redirect.github.com/aws-actions/configure-aws-credentials/issues/1485 ">#1485</a>)
(<a
href="97ef425d73https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1482 ">#1482</a>)
(<a
href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1486 ">#1486</a>)
(<a
href="cea42985achttps://github.com/aws-actions/configure-aws-credentials/compare/v4.3.1...v5.0.0 ">5.0.0</a>
(2025-09-03)</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ec61189d14https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1717 ">#1717</a>)</li>
<li><a
href="81676eb9ebhttps://redirect.github.com/aws-actions/configure-aws-credentials/issues/1721 ">#1721</a>)</li>
<li><a
href="dc64d28371https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1720 ">#1720</a>)</li>
<li><a
href="bc0a50afbe9ea6412abahttps://redirect.github.com/aws-actions/configure-aws-credentials/issues/1686 ">#1686</a>)</li>
<li><a
href="0a8759496ba7f0c828achttps://redirect.github.com/aws-actions/configure-aws-credentials/issues/1696 ">#1696</a>)</li>
<li><a
href="e6bb6e5ff3https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1719 ">#1719</a>)</li>
<li><a
href="11b1c58b24https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1716 ">#1716</a>)</li>
<li><a
href="51635dbf418df5847569...ec61189d14support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-01 10:09:34 -04:00
Mason Daugherty
6443612fa3
ci: pin all actions to full-length commit SHAs ( #36621 )
...
Pin all remaining GitHub Actions references to full-length commit SHAs,
matching the convention already established by third-party actions in
this repo. This is a prerequisite for enabling GitHub's "Require actions
to be pinned to a full-length commit SHA" repository ruleset, which
mitigates tag-hijacking supply chain attacks.
2026-04-08 19:02:58 -04:00
Mason Daugherty
9c64cb7136
ci: add --frozen to uv sync/run in refresh_model_profiles ( #36087 )
...
`--no-group test --no-group dev --no-group lint` only controls which
groups get *installed*; uv still resolves the full dependency graph (all
groups) and tries to generate metadata for editable sources like
`../langchain_v1`. In a sparse checkout these paths don't exist.
`--frozen` skips re-resolution entirely and uses the existing lock, so
the missing editable paths are never accessed.
2026-03-18 14:15:43 -04:00
Mason Daugherty
f33667fef3
ci: skip dev/test/lint groups when installing langchain-profiles CLI ( #36086 )
...
The reusable refresh_model_profiles workflow sparse-checks out only
libs/model-profiles from the langchain monorepo. `uv sync` fails because
the test/dev/lint dependency groups reference sibling editable packages
(../langchain_v1, ../core) that aren't present in the sparse checkout.
Restrict to the default dependency group so only the runtime deps
(httpx, tomli, typing-extensions) are installed — which is all the CLI
needs.
2026-03-18 14:07:15 -04:00
Mason Daugherty
6965c87a68
ci(model-profiles): extract reusable workflow for cross-repo profile refresh ( #36038 )
...
Extract the model profile refresh logic into a reusable `workflow_call`
workflow so external repos like `langchain-google` and `langchain-aws`
can run the same daily profile refresh and get auto-PRs without
duplicating the pipeline. The in-monorepo caller becomes a thin wrapper
passing provider JSON.
## Changes
- Add `_refresh_model_profiles.yml` as a reusable `workflow_call`
workflow — accepts a `providers` JSON array of `{provider, data_dir}`
pairs, optional `cli-path` (skips cloning the CLI repo when the caller
already has it), and configurable PR metadata inputs
- External callers get the `langchain-profiles` CLI via sparse checkout
of `langchain-ai/langchain` at a configurable `cli-ref`; the in-monorepo
caller short-circuits with `cli-path: libs/model-profiles`
- Add input validation step using `jq` — rejects non-array JSON and
entries missing `provider`/`data_dir` keys with `::error::` annotations
- Replace the piped `while read` loop with `mapfile`/`for` +
per-provider error handling: one provider failure no longer kills the
rest, and all failures are collected and reported at the end
- Route all `${{ inputs.* }}` expressions through `env:` bindings in
`run:` blocks to prevent script injection from caller-controlled values
- Validate `cli-path` existence before use, with a clear error if the
directory is missing
- Summary step now runs with `if: always()` and handles
failure/success/no-op states separately
- Refactor `refresh_model_profiles.yml` into a thin caller that passes
the 10 in-monorepo providers as JSON
2026-03-17 17:45:41 -04:00
dependabot[bot]
Mason Daugherty