From 8e7b95609c2f3b8d8d20e6279965532aea28e692 Mon Sep 17 00:00:00 2001 From: Andrew Cassidy Date: Sun, 3 Apr 2022 13:12:29 -0700 Subject: [PATCH 1/3] Dependabot for gh actions --- .github/dependabot.yml | 9 +++++++++ 1 file changed, 9 insertions(+) create mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 0000000..c49a301 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,9 @@ +# Set update schedule for GitHub Actions +version: 2 +updates: + + - package-ecosystem: "github-actions" + directory: "/" + schedule: + # Check for updates to GitHub Actions every weekday + interval: "daily" \ No newline at end of file From 8b4e3c574698b9f6ed30cc3bdfa0610d73ac1b34 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 3 Apr 2022 20:15:09 +0000 Subject: [PATCH 2/3] Bump actions/checkout from 2 to 3 Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v2...v3) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/python-package.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/python-package.yml b/.github/workflows/python-package.yml index 594d159..22ae97c 100644 --- a/.github/workflows/python-package.yml +++ b/.github/workflows/python-package.yml @@ -11,7 +11,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v3 with: # Whether to checkout submodules: `true` to checkout submodules or `recursive` to # recursively checkout submodules. @@ -52,7 +52,7 @@ jobs: os: [ macos-latest, windows-latest, ubuntu-latest ] steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v3 with: # Whether to checkout submodules: `true` to checkout submodules or `recursive` to # recursively checkout submodules. @@ -88,7 +88,7 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v3 with: # Whether to checkout submodules: `true` to checkout submodules or `recursive` to # recursively checkout submodules. From 1502c5318caeadb2333882cbb2f37930d76f1281 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 7 Apr 2022 11:45:36 +0000 Subject: [PATCH 3/3] Bump actions/setup-python from 2 to 3.1.1 Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2 to 3.1.1. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v2...v3.1.1) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/python-package.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/python-package.yml b/.github/workflows/python-package.yml index 594d159..de971e4 100644 --- a/.github/workflows/python-package.yml +++ b/.github/workflows/python-package.yml @@ -18,7 +18,7 @@ jobs: submodules: 'true' - name: Set up Python - uses: actions/setup-python@v2 + uses: actions/setup-python@v3.1.1 - name: Install dependencies run: | @@ -95,7 +95,7 @@ jobs: submodules: 'true' - name: Set up Python - uses: actions/setup-python@v2 + uses: actions/setup-python@v3.1.1 - name: Install dependencies run: |