{"id":50730,"name":"JS-DevTools/npm-publish","ecosystem":"actions","repository_url":"https://github.com/JS-DevTools/npm-publish","issues_count":234,"created_at":"2025-07-10T20:21:12.378Z","updated_at":"2025-07-10T20:21:12.378Z","purl":"pkg:githubactions/JS-DevTools/npm-publish","metadata":{"id":5800585,"name":"JS-DevTools/npm-publish","ecosystem":"actions","description":"Fast, easy publishing to NPM","homepage":"https://jstools.dev/npm-publish","licenses":"mit","normalized_licenses":["MIT"],"repository_url":"https://github.com/JS-DevTools/npm-publish","keywords_array":["github-action","javascript","nodejs","npm","npm-publish","typescript","version-bump","version-checker"],"namespace":"JS-DevTools","versions_count":40,"first_release_published_at":"2020-01-21T13:54:45.000Z","latest_release_published_at":"2024-03-29T02:01:39.000Z","latest_release_number":"v3.1.1","last_synced_at":"2024-12-01T07:11:08.454Z","created_at":"2023-01-04T12:16:40.419Z","updated_at":"2024-12-01T07:11:08.454Z","registry_url":"https://github.com/JS-DevTools/npm-publish","install_command":null,"documentation_url":null,"metadata":{"name":"NPM Publish","description":"Fast, easy publishing to NPM","author":"James Messinger","branding":{"color":"blue","icon":"package"},"inputs":{"token":{"description":"The NPM access token to use when publishing","required":true},"registry":{"description":"The NPM registry URL to use","required":false},"package":{"description":"The path to your package or its package.json file","required":false},"tag":{"description":"The distribution tag to publish","required":false},"access":{"description":"Determines whether the published package should be publicly visible, or restricted to members of your NPM organization.\n","required":false},"provenance":{"description":"Attach provenance statements when publishing.","required":false},"strategy":{"description":"Version check and release strategy. If \"all\" (default), package will be published if its version is simply not yet published. If \"upgrade\", package will be published if its version is higher than the existing tag, according to semantic versioning.\n","required":false},"ignore-scripts":{"description":"Run npm with the --ignore-scripts flag as a security precaution. Enabled by default.\n","required":false},"dry-run":{"description":"Run npm with the --dry-run flag to avoid actually publishing anything.","required":false}},"outputs":{"id":{"description":"The identifier of the published package. If a release was published, format is `${name}@${version}. If no release occurred, will be an empty string.\n"},"type":{"description":"The type of version change that occurred on the published tag. If release was an upgrade, will be a semver release type (\"major\", \"minor\", ...). If the published tag had no previous version, will be \"initial\". If version was change was not an upgrade, will be \"different\". If no release occurred, will be an empty string.\n"},"name":{"description":"Name of the package."},"version":{"description":"Version of the package."},"old-version":{"description":"The previous version on the distribution tag. If there was no previous version on the tag, will be an empty string.\n"},"registry":{"description":"The registry used for version checking and publishing."},"tag":{"description":"The distribution tag used for version checking and publishing."},"access":{"description":"The package access setting used. If configured by the action or package.json, will be \"public\" or \"protected\". If not configured for a non-scoped package, will be \"public\". If not configured for a scoped package, will be \"default\".\n"}},"runs":{"using":"node20","main":"action.js"},"default_branch":"main","path":null},"repo_metadata":{"uuid":"235231513","full_name":"JS-DevTools/npm-publish","owner":"JS-DevTools","description":"GitHub Action to publish to NPM","archived":false,"fork":false,"pushed_at":"2023-10-18T20:45:14.000Z","size":1600,"stargazers_count":501,"open_issues_count":0,"forks_count":77,"subscribers_count":6,"default_branch":"main","last_synced_at":"2023-10-19T06:43:07.562Z","etag":null,"topics":["github-action","javascript","nodejs","npm","npm-publish","typescript","version-bump","version-checker"],"latest_commit_sha":null,"homepage":"https://jstools.dev/npm-publish","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/JS-DevTools.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null}},"created_at":"2020-01-21T01:25:58.000Z","updated_at":"2023-10-19T06:43:07.563Z","dependencies_parsed_at":"2023-01-05T04:49:15.593Z","dependency_job_id":null,"html_url":"https://github.com/JS-DevTools/npm-publish","commit_stats":{"total_commits":165,"total_committers":15,"mean_commits":11.0,"dds":"0.19393939393939397","last_synced_commit":"c196e53609e852c243616a87994e8961a9903ba4"},"previous_names":[],"tags_count":36,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/JS-DevTools","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":165316925,"owners_count":8887251,"icon_url":"https://github.com/github.png","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"JS-DevTools","name":"JavaScript Dev Tools","uuid":"43779360","kind":"organization","description":"Tools and libraries for JavaScript developers","email":"contact@jstools.dev","website":"https://jstools.dev","location":"Austin, TX","twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/43779360?v=4","repositories_count":31,"last_synced_at":"2023-04-09T10:53:56.974Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/JS-DevTools","created_at":"2022-11-02T16:25:17.158Z","updated_at":"2023-04-09T10:53:57.235Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/JS-DevTools","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/JS-DevTools/repositories"},"tags":[{"name":"v3","sha":"6fd3bc8dad0cb1a484731fe6486a03193f98f037","kind":"tag","published_at":"2023-10-18T20:44:42.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v3","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v3","dependencies_parsed_at":null,"dependency_job_id":"713eb8c0-77f5-4cd3-80d7-f7ff3f75ffa4","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v3/manifests"},{"name":"v3.0","sha":"6fd3bc8dad0cb1a484731fe6486a03193f98f037","kind":"tag","published_at":"2023-10-18T20:44:36.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v3.0","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v3.0","dependencies_parsed_at":null,"dependency_job_id":"87e0e2c2-354f-46e8-b390-d6538cbb16c7","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v3.0/manifests"},{"name":"v3.0.0","sha":"6fd3bc8dad0cb1a484731fe6486a03193f98f037","kind":"tag","published_at":"2023-10-18T20:44:27.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v3.0.0","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v3.0.0","dependencies_parsed_at":null,"dependency_job_id":"d3812e31-bdc5-4b57-bf98-1983b1546fd5","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v3.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v3.0.0/manifests"},{"name":"v2.2.2","sha":"fe72237be0920f7a0cafd6a966c9b929c9466e9b","kind":"tag","published_at":"2023-09-13T01:24:00.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v2.2.2","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v2.2.2","dependencies_parsed_at":"2023-09-13T04:58:20.319Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.2.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.2.2/manifests"},{"name":"v2.2.1","sha":"5a85faf05d2ade2d5b6682bfe5359915d5159c6c","kind":"tag","published_at":"2023-07-11T16:22:46.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v2.2.1","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v2.2.1","dependencies_parsed_at":"2023-07-20T20:41:54.640Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.2.1/manifests"},{"name":"v2.2","sha":"a25b4180b728b0279fca97d4e5bccf391685aead","kind":"tag","published_at":"2023-06-02T21:24:11.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v2.2","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v2.2","dependencies_parsed_at":"2023-07-20T20:41:54.648Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.2/manifests"},{"name":"v2.2.0","sha":"a25b4180b728b0279fca97d4e5bccf391685aead","kind":"commit","published_at":"2023-06-02T21:18:08.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v2.2.0","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v2.2.0","dependencies_parsed_at":"2023-07-20T20:41:56.326Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.2.0/manifests"},{"name":"v2","sha":"541aa6b21b4a1e9990c95a92c21adc16b35e9551","kind":"tag","published_at":"2023-05-02T14:38:45.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v2","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v2","dependencies_parsed_at":"2023-07-20T20:41:55.000Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2/manifests"},{"name":"v2.1","sha":"541aa6b21b4a1e9990c95a92c21adc16b35e9551","kind":"tag","published_at":"2023-05-02T14:38:39.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v2.1","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v2.1","dependencies_parsed_at":"2023-07-20T20:41:55.160Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.1/manifests"},{"name":"v2.1.0","sha":"541aa6b21b4a1e9990c95a92c21adc16b35e9551","kind":"tag","published_at":"2023-05-02T14:36:40.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v2.1.0","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v2.1.0","dependencies_parsed_at":"2023-07-20T20:41:54.887Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.1.0/manifests"},{"name":"v2.0","sha":"0be441d808570461daedc3fb178405dbcac54de0","kind":"tag","published_at":"2023-04-20T15:40:50.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v2.0","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v2.0","dependencies_parsed_at":"2023-07-20T20:41:54.951Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.0/manifests"},{"name":"v2.0.0","sha":"0be441d808570461daedc3fb178405dbcac54de0","kind":"tag","published_at":"2023-04-20T14:28:03.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v2.0.0","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v2.0.0","dependencies_parsed_at":"2023-07-20T20:41:54.886Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v2.0.0/manifests"},{"name":"v1","sha":"0f451a94170d1699fd50710966d48fb26194d939","kind":"tag","published_at":"2021-01-02T18:02:31.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1","dependencies_parsed_at":"2023-07-20T20:41:55.365Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1/manifests"},{"name":"v1.4.3","sha":"0f451a94170d1699fd50710966d48fb26194d939","kind":"tag","published_at":"2021-01-02T18:02:25.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.4.3","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.4.3","dependencies_parsed_at":"2023-07-20T20:41:54.678Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.4.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.4.3/manifests"},{"name":"v1.4.2","sha":"e82a569c830dedcf62423ed04dd01cd785766063","kind":"tag","published_at":"2021-01-02T17:32:22.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.4.2","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.4.2","dependencies_parsed_at":"2023-07-20T20:41:54.909Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.4.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.4.2/manifests"},{"name":"v1.4.1","sha":"63aebe58a8821144b2b29ecec0286f4c48a2a3bf","kind":"tag","published_at":"2021-01-02T16:35:58.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.4.1","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.4.1","dependencies_parsed_at":"2023-07-20T20:41:54.505Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.4.1/manifests"},{"name":"v1.4.0","sha":"00c1cd5b2add9231c26374745f6ade14ef31eeb7","kind":"tag","published_at":"2020-10-02T10:14:51.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.4.0","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.4.0","dependencies_parsed_at":"2023-07-20T20:41:55.236Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.4.0/manifests"},{"name":"v1.3.0","sha":"c37331b6ea5886f589635e81fdbfd69dfb8778e7","kind":"tag","published_at":"2020-10-01T10:47:26.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.3.0","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.3.0","dependencies_parsed_at":"2023-07-20T20:41:55.298Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.3.0/manifests"},{"name":"v1.2.0","sha":"18351461ae08dde235c0ccee0633ec905f0b9a52","kind":"tag","published_at":"2020-07-23T09:57:10.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.2.0","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.2.0","dependencies_parsed_at":"2023-07-20T20:41:57.065Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.2.0/manifests"},{"name":"v1.1.2","sha":"eba6c49c1f36943591f79e5f89b31aef82b2ce5b","kind":"tag","published_at":"2020-07-18T11:42:21.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.1.2","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.1.2","dependencies_parsed_at":"2023-07-20T20:41:55.328Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.1.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.1.2/manifests"},{"name":"v1.1.1","sha":"41501050adb3d024f7ccdc343098bdd631284b67","kind":"tag","published_at":"2020-07-18T11:40:51.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.1.1","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.1.1","dependencies_parsed_at":"2023-07-20T20:41:55.242Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.1.1/manifests"},{"name":"v1.1.0","sha":"70d32c00380ef4ef475321670fcc07f6cf81ae04","kind":"tag","published_at":"2020-03-29T13:32:01.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.1.0","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.1.0","dependencies_parsed_at":"2023-07-20T20:41:55.389Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.1.0/manifests"},{"name":"v1.0.13","sha":"26ebb248892cd9d1aacd0af07d957c74496a154a","kind":"tag","published_at":"2020-03-15T14:58:19.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.0.13","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.0.13","dependencies_parsed_at":"2023-07-20T20:41:54.686Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.13","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.13/manifests"},{"name":"v1.0.12","sha":"402d24ee1e1767ba23b405dabb1495bee4cc1a60","kind":"tag","published_at":"2020-03-05T11:46:58.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.0.12","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.0.12","dependencies_parsed_at":"2023-07-20T20:41:54.762Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.12","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.12/manifests"},{"name":"v1.0.11","sha":"e4b9915a6bc6342903a7d9d7d541080d28e7e36d","kind":"tag","published_at":"2020-01-27T13:12:43.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.0.11","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.0.11","dependencies_parsed_at":"2023-07-20T20:41:55.839Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.11","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.11/manifests"},{"name":"v1.0.10","sha":"92245d7bccbcdfbc539ffa211103f609b1cc47d5","kind":"tag","published_at":"2020-01-23T12:26:29.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.0.10","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.0.10","dependencies_parsed_at":"2023-07-20T20:41:55.814Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.10","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.10/manifests"},{"name":"v1.0.9","sha":"ddec767e386b2027494127408c80d44c4eb96287","kind":"tag","published_at":"2020-01-22T23:07:41.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.0.9","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.0.9","dependencies_parsed_at":"2023-07-20T20:41:56.218Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.9","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.9/manifests"},{"name":"v1.0.8","sha":"3ea7425b205dfe76343cf06a39f7f9fbd8bcadf1","kind":"tag","published_at":"2020-01-22T14:15:44.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.0.8","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.0.8","dependencies_parsed_at":"2023-07-20T20:41:56.086Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.8/manifests"},{"name":"v1.0.7","sha":"29fef56d0435111fc977598c2065376d47c8a52b","kind":"tag","published_at":"2020-01-22T14:04:32.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.0.7","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.0.7","dependencies_parsed_at":"2023-07-20T20:41:55.942Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.7/manifests"},{"name":"v1.0.6","sha":"bbd8d2c4ea1b509f8009242d3edf743e8dc9562b","kind":"tag","published_at":"2020-01-22T13:57:27.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.0.6","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.0.6","dependencies_parsed_at":"2023-07-20T20:41:56.185Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.6/manifests"},{"name":"v1.0.5","sha":"b74b7942ab1c46943fa8cfee5e838ae32ecf6a64","kind":"tag","published_at":"2020-01-22T13:56:40.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.0.5","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.0.5","dependencies_parsed_at":"2023-07-20T20:41:55.863Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.5/manifests"},{"name":"v1.0.4","sha":"bced25f38e28c1407526efb51502e08e6e54810a","kind":"tag","published_at":"2020-01-22T13:52:32.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.0.4","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.0.4","dependencies_parsed_at":"2023-07-20T20:41:56.054Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.4/manifests"},{"name":"v1.0.3","sha":"6b112334a240d3e3f018833fb256636b6c96a6e0","kind":"tag","published_at":"2020-01-22T13:35:29.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.0.3","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.0.3","dependencies_parsed_at":"2023-07-20T20:41:56.404Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.3/manifests"},{"name":"v1.0.2","sha":"d08edc1fd9f6fd1a5292c258b2cc6d0d6cc1baf6","kind":"tag","published_at":"2020-01-22T13:19:32.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.0.2","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.0.2","dependencies_parsed_at":"2023-07-20T20:41:56.459Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.2/manifests"},{"name":"v1.0.1","sha":"e55cbe467aa42b482532c8f47ea4525d7a37205d","kind":"tag","published_at":"2020-01-21T14:07:20.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.0.1","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.0.1","dependencies_parsed_at":"2023-07-20T20:41:56.233Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.1/manifests"},{"name":"v1.0.0","sha":"5022a536959d4e5508d7fd8d4b57a2590d7edbe9","kind":"tag","published_at":"2020-01-21T13:54:45.000Z","download_url":"https://codeload.github.com/JS-DevTools/npm-publish/tar.gz/v1.0.0","html_url":"https://github.com/JS-DevTools/npm-publish/releases/tag/v1.0.0","dependencies_parsed_at":"2023-07-20T20:41:56.334Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/JS-DevTools%2Fnpm-publish/tags/v1.0.0/manifests"}]},"repo_metadata_updated_at":"2023-10-19T07:03:28.184Z","dependent_packages_count":0,"downloads":null,"downloads_period":null,"dependent_repos_count":7096,"rankings":{"downloads":null,"dependent_repos_count":0.19965140231342102,"dependent_packages_count":0.0,"stargazers_count":0.5197274599904927,"forks_count":0.7605767707177943,"docker_downloads_count":null,"average":0.369988908255427},"purl":"pkg:githubactions/JS-DevTools/npm-publish","advisories":[],"docker_usage_url":"https://docker.ecosyste.ms/usage/actions/JS-DevTools/npm-publish","docker_dependents_count":3,"docker_downloads_count":94208197,"usage_url":"https://repos.ecosyste.ms/usage/actions/JS-DevTools/npm-publish","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/actions/JS-DevTools/npm-publish/dependencies","status":"removed","funding_links":[],"critical":true,"issue_metadata":{"last_synced_at":"2023-10-18T06:46:59.909Z","issues_count":59,"pull_requests_count":100,"avg_time_to_close_issue":19468771.15254237,"avg_time_to_close_pull_request":2476500.484848485,"issues_closed_count":59,"pull_requests_closed_count":99,"pull_request_authors_count":20,"issue_authors_count":53,"avg_comments_per_issue":2.1016949152542375,"avg_comments_per_pull_request":0.7,"merged_pull_requests_count":59,"bot_issues_count":0,"bot_pull_requests_count":41,"past_year_issues_count":14,"past_year_pull_requests_count":83,"past_year_avg_time_to_close_issue":1063769.642857143,"past_year_avg_time_to_close_pull_request":389693.0975609756,"past_year_issues_closed_count":14,"past_year_pull_requests_closed_count":82,"past_year_pull_request_authors_count":4,"past_year_issue_authors_count":13,"past_year_avg_comments_per_issue":2.7142857142857144,"past_year_avg_comments_per_pull_request":0.5662650602409639,"past_year_bot_issues_count":0,"past_year_bot_pull_requests_count":41,"past_year_merged_pull_requests_count":48},"versions_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/JS-DevTools%2Fnpm-publish/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/JS-DevTools%2Fnpm-publish/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/JS-DevTools%2Fnpm-publish/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/JS-DevTools%2Fnpm-publish/related_packages","maintainers":[],"registry":{"name":"github actions","url":"https://github.com/marketplace/actions/","ecosystem":"actions","default":true,"packages_count":32020,"maintainers_count":0,"namespaces_count":20135,"keywords_count":6439,"github":"actions","metadata":{"funded_packages_count":2803},"icon_url":"https://github.com/actions.png","created_at":"2023-01-03T17:16:39.185Z","updated_at":"2025-07-13T05:11:27.909Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/namespaces"}},"unique_repositories_count":162,"unique_repositories_count_past_30_days":1,"recent_issues":[{"uuid":"4330024076","node_id":"PR_kwDODWjvzc7Vrn6K","number":409,"state":"open","title":"chore(deps): bump the actions group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-26T04:33:04.000Z","updated_at":"2026-04-26T04:33:30.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"actions","update_count":6,"packages":[{"name":"actions/setup-node","old_version":"6.3.0","new_version":"6.4.0","repository_url":"https://github.com/actions/setup-node"},{"name":"actions/upload-artifact","old_version":"7.0.0","new_version":"7.0.1","repository_url":"https://github.com/actions/upload-artifact"},{"name":"codecov/codecov-action","old_version":"5.5.2","new_version":"6.0.0","repository_url":"https://github.com/codecov/codecov-action"},{"name":"github/codeql-action","old_version":"4.32.6","new_version":"4.35.2","repository_url":"https://github.com/github/codeql-action"},{"name":"actions/download-artifact","old_version":"8.0.0","new_version":"8.0.1","repository_url":"https://github.com/actions/download-artifact"},{"name":"JS-DevTools/npm-publish","old_version":"3.1.1","new_version":"4.1.5","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps the actions group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [actions/setup-node](https://github.com/actions/setup-node) | `6.3.0` | `6.4.0` |\n| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `7.0.0` | `7.0.1` |\n| [codecov/codecov-action](https://github.com/codecov/codecov-action) | `5.5.2` | `6.0.0` |\n| [github/codeql-action](https://github.com/github/codeql-action) | `4.32.6` | `4.35.2` |\n| [actions/download-artifact](https://github.com/actions/download-artifact) | `8.0.0` | `8.0.1` |\n| [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) | `3.1.1` | `4.1.5` |\n\n\nUpdates `actions/setup-node` from 6.3.0 to 6.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/setup-node/releases\"\u003eactions/setup-node's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eDependency updates:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade \u003ca href=\"https://github.com/actions\"\u003e\u003ccode\u003e@​actions\u003c/code\u003e\u003c/a\u003e dependencies by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1525\"\u003eactions/setup-node#1525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Node.js versions in versions.yml and bump package to v6.4.0  by \u003ca href=\"https://github.com/priya-kinthali\"\u003e\u003ccode\u003e@​priya-kinthali\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1533\"\u003eactions/setup-node#1533\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1525\"\u003eactions/setup-node#1525\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-node/compare/v6...v6.4.0\"\u003ehttps://github.com/actions/setup-node/compare/v6...v6.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e\"\u003e\u003ccode\u003e48b55a0\u003c/code\u003e\u003c/a\u003e Update Node.js versions in versions.yml and bump package to v6.4.0 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1533\"\u003e#1533\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/ab72c7e7eba0eaa11f8cab0f5679243900c2cac9\"\u003e\u003ccode\u003eab72c7e\u003c/code\u003e\u003c/a\u003e Upgrade \u003ca href=\"https://github.com/actions\"\u003e\u003ccode\u003e@​actions\u003c/code\u003e\u003c/a\u003e dependencies (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1525\"\u003e#1525\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/setup-node/compare/53b83947a5a98c8d113130e565377fae1a50d02f...48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/upload-artifact` from 7.0.0 to 7.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/upload-artifact/releases\"\u003eactions/upload-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate the readme with direct upload details by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/795\"\u003eactions/upload-artifact#795\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReadme: bump all the example versions to v7 by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/796\"\u003eactions/upload-artifact#796\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInclude changes in typespec/ts-http-runtime 0.3.5 by \u003ca href=\"https://github.com/yacaovsnc\"\u003e\u003ccode\u003e@​yacaovsnc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/797\"\u003eactions/upload-artifact#797\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/upload-artifact/compare/v7...v7.0.1\"\u003ehttps://github.com/actions/upload-artifact/compare/v7...v7.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/043fb46d1a93c77aae656e7c1c64a875d1fc6a0a\"\u003e\u003ccode\u003e043fb46\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/797\"\u003e#797\u003c/a\u003e from actions/yacaovsnc/update-dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/634250c1388765ea7ed0f053e636f1f399000b94\"\u003e\u003ccode\u003e634250c\u003c/code\u003e\u003c/a\u003e Include changes in typespec/ts-http-runtime 0.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/e454baaac2be505c9450e11b8f3215c6fc023ce8\"\u003e\u003ccode\u003ee454baa\u003c/code\u003e\u003c/a\u003e Readme: bump all the example versions to v7 (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/796\"\u003e#796\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/74fad66b98a6d799dc004d3353ccd0e6f6b2530e\"\u003e\u003ccode\u003e74fad66\u003c/code\u003e\u003c/a\u003e Update the readme with direct upload details (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/upload-artifact/compare/bbbca2ddaa5d8feaa63e36b76fdaad77386f024f...043fb46d1a93c77aae656e7c1c64a875d1fc6a0a\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `codecov/codecov-action` from 5.5.2 to 6.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/codecov/codecov-action/releases\"\u003ecodecov/codecov-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003e⚠️ This version introduces support for node24 which make cause breaking changes for systems that do not currently support node24. ⚠️\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;Revert \u0026quot;build(deps): bump actions/github-script from 7.0.1 to 8.0.0\u0026quot;\u0026quot; by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1929\"\u003ecodecov/codecov-action#1929\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTh/6.0.0 by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1928\"\u003ecodecov/codecov-action#1928\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.4...v6.0.0\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.4...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.4\u003c/h2\u003e\n\u003cp\u003eThis is a mirror of \u003ccode\u003ev5.5.2\u003c/code\u003e. \u003ccode\u003ev6\u003c/code\u003e will be released which requires \u003ccode\u003enode24\u003c/code\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;build(deps): bump actions/github-script from 7.0.1 to 8.0.0\u0026quot; by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1926\"\u003ecodecov/codecov-action#1926\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(release): 5.5.4 by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1927\"\u003ecodecov/codecov-action#1927\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.3...v5.5.4\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.3...v5.5.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/github-script from 7.0.1 to 8.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1874\"\u003ecodecov/codecov-action#1874\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(release): bump to 5.5.3 by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1922\"\u003ecodecov/codecov-action#1922\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.2...v5.5.3\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.2...v5.5.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md\"\u003ecodecov/codecov-action's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.5.2\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.1\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: overwrite pr number on fork by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1871\"\u003ecodecov/codecov-action#1871\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.2 to 5.0.0 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1868\"\u003ecodecov/codecov-action#1868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.9 to 3.29.11 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1867\"\u003ecodecov/codecov-action#1867\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update to use local app/ dir by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1872\"\u003ecodecov/codecov-action#1872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix typo in README by \u003ca href=\"https://github.com/datalater\"\u003e\u003ccode\u003e@​datalater\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1866\"\u003ecodecov/codecov-action#1866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument a \u003ccode\u003ecodecov-cli\u003c/code\u003e version reference example by \u003ca href=\"https://github.com/webknjaz\"\u003e\u003ccode\u003e@​webknjaz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1774\"\u003ecodecov/codecov-action#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.29.9 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1861\"\u003ecodecov/codecov-action#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1833\"\u003ecodecov/codecov-action#1833\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.0\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat: upgrade wrapper to 0.2.4 by \u003ca href=\"https://github.com/jviall\"\u003e\u003ccode\u003e@​jviall\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1864\"\u003ecodecov/codecov-action#1864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/github-script by Git SHA by \u003ca href=\"https://github.com/martincostello\"\u003e\u003ccode\u003e@​martincostello\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1859\"\u003ecodecov/codecov-action#1859\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: check reqs exist by \u003ca href=\"https://github.com/joseph-sentry\"\u003e\u003ccode\u003e@​joseph-sentry\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1835\"\u003ecodecov/codecov-action#1835\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Typo in README by \u003ca href=\"https://github.com/spalmurray\"\u003e\u003ccode\u003e@​spalmurray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1838\"\u003ecodecov/codecov-action#1838\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Refine OIDC docs by \u003ca href=\"https://github.com/spalmurray\"\u003e\u003ccode\u003e@​spalmurray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1837\"\u003ecodecov/codecov-action#1837\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.18 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1829\"\u003ecodecov/codecov-action#1829\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.4.3\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.13 to 3.28.17 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1822\"\u003ecodecov/codecov-action#1822\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: OIDC on forks by \u003ca href=\"https://github.com/joseph-sentry\"\u003e\u003ccode\u003e@​joseph-sentry\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1823\"\u003ecodecov/codecov-action#1823\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.4.2\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/57e3a136b779b570ffcdbf80b3bdc90e7fab3de2\"\u003e\u003ccode\u003e57e3a13\u003c/code\u003e\u003c/a\u003e Th/6.0.0 (\u003ca href=\"https://redirect.github.com/codecov/codecov-action/issues/1928\"\u003e#1928\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/f67d33dda8a42b51c42a8318a1f66468119e898b\"\u003e\u003ccode\u003ef67d33d\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Revert \u0026quot;build(deps): bump actions/github-script from 7.0.1 to 8.0.0\u0026quot;\u0026quot;...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/75cd11691c0faa626561e295848008c8a7dddffe\"\u003e\u003ccode\u003e75cd116\u003c/code\u003e\u003c/a\u003e chore(release): 5.5.4 (\u003ca href=\"https://redirect.github.com/codecov/codecov-action/issues/1927\"\u003e#1927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/87d39f4a2cec2673cf9505764fb20a38792ea722\"\u003e\u003ccode\u003e87d39f4\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;build(deps): bump actions/github-script from 7.0.1 to 8.0.0\u0026quot; (\u003ca href=\"https://redirect.github.com/codecov/codecov-action/issues/1926\"\u003e#1926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/1af58845a975a7985b0beb0cbe6fbbb71a41dbad\"\u003e\u003ccode\u003e1af5884\u003c/code\u003e\u003c/a\u003e chore(release): bump to 5.5.3 (\u003ca href=\"https://redirect.github.com/codecov/codecov-action/issues/1922\"\u003e#1922\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/c143300dea6c9a730986ff862c5bf4d458927ef8\"\u003e\u003ccode\u003ec143300\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/github-script from 7.0.1 to 8.0.0 (\u003ca href=\"https://redirect.github.com/codecov/codecov-action/issues/1874\"\u003e#1874\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/codecov/codecov-action/compare/671740ac38dd9b0130fbe1cec585b89eea48d3de...57e3a136b779b570ffcdbf80b3bdc90e7fab3de2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github/codeql-action` from 4.32.6 to 4.35.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/github/codeql-action/releases\"\u003egithub/codeql-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.35.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe undocumented TRAP cache cleanup feature that could be enabled using the \u003ccode\u003eCODEQL_ACTION_CLEANUP_TRAP_CACHES\u003c/code\u003e environment variable is deprecated and will be removed in May 2026. If you are affected by this, we recommend disabling TRAP caching by passing the \u003ccode\u003etrap-caching: false\u003c/code\u003e input to the \u003ccode\u003einit\u003c/code\u003e Action. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3795\"\u003e#3795\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe Git version 2.36.0 requirement for improved incremental analysis now only applies to repositories that contain submodules. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3789\"\u003e#3789\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePython analysis on GHES no longer extracts the standard library, relying instead on models of the standard library. This should result in significantly faster extraction and analysis times, while the effect on alerts should be minimal. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3794\"\u003e#3794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a bug in the validation of OIDC configurations for private registries that was added in CodeQL Action 4.33.0 / 3.33.0. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3807\"\u003e#3807\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.2\"\u003e2.25.2\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3823\"\u003e#3823\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.35.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect minimum required Git version for \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e: it should have been 2.36.0, not 2.11.0. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3781\"\u003e#3781\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.35.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduced the minimum Git version required for \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e from 2.38.0 to 2.11.0. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3767\"\u003e#3767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.1\"\u003e2.25.1\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3773\"\u003e#3773\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.34.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDowngrade default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3\"\u003e2.24.3\u003c/a\u003e due to issues with a small percentage of Actions and JavaScript analyses. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3762\"\u003e#3762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.34.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded an experimental change which disables TRAP caching when \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3569\"\u003e#3569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWe are rolling out improved incremental analysis to C/C++ analyses that use build mode \u003ccode\u003enone\u003c/code\u003e. We expect this rollout to be complete by the end of April 2026. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3584\"\u003e#3584\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.0\"\u003e2.25.0\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3585\"\u003e#3585\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.33.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUpcoming change: Starting April 2026, the CodeQL Action will skip collecting file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. Pull request analyses will log a warning about this upcoming change. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3562\"\u003e#3562\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eTo opt out of this change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRepositories owned by an organization:\u003c/strong\u003e Create a custom repository property with the name \u003ccode\u003egithub-codeql-file-coverage-on-prs\u003c/code\u003e and the type \u0026quot;True/false\u0026quot;, then set this property to \u003ccode\u003etrue\u003c/code\u003e in the repository's settings. For more information, see \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003eManaging custom properties for repositories in your organization\u003c/a\u003e. Alternatively, if you are using an advanced setup workflow, you can set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using default setup:\u003c/strong\u003e Switch to an advanced setup workflow and set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using advanced setup:\u003c/strong\u003e Set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3555\"\u003ea bug\u003c/a\u003e which caused the CodeQL Action to fail loading repository properties if a \u0026quot;Multi select\u0026quot; repository property was configured for the repository. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3557\"\u003e#3557\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eThe CodeQL Action now loads \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003ecustom repository properties\u003c/a\u003e on GitHub Enterprise Server, enabling the customization of features such as \u003ccode\u003egithub-codeql-disable-overlay\u003c/code\u003e that was previously only available on GitHub.com. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3559\"\u003e#3559\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eOnce \u003ca href=\"https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries\"\u003eprivate package registries\u003c/a\u003e can be configured with OIDC-based authentication for organizations, the CodeQL Action will now be able to accept such configurations. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3563\"\u003e#3563\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed the retry mechanism for database uploads. Previously this would fail with the error \u0026quot;Response body object should not be disturbed or locked\u0026quot;. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3564\"\u003e#3564\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eA warning is now emitted if the CodeQL Action detects a repository property whose name suggests that it relates to the CodeQL Action, but which is not one of the properties recognised by the current version of the CodeQL Action. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3570\"\u003e#3570\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/github/codeql-action/blob/main/CHANGELOG.md\"\u003egithub/codeql-action's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eCodeQL Action Changelog\u003c/h1\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/github/codeql-action/releases\"\u003ereleases page\u003c/a\u003e for the relevant changes to the CodeQL CLI and language packs.\u003c/p\u003e\n\u003ch2\u003e[UNRELEASED]\u003c/h2\u003e\n\u003cp\u003eNo user facing changes.\u003c/p\u003e\n\u003ch2\u003e4.35.2 - 15 Apr 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe undocumented TRAP cache cleanup feature that could be enabled using the \u003ccode\u003eCODEQL_ACTION_CLEANUP_TRAP_CACHES\u003c/code\u003e environment variable is deprecated and will be removed in May 2026. If you are affected by this, we recommend disabling TRAP caching by passing the \u003ccode\u003etrap-caching: false\u003c/code\u003e input to the \u003ccode\u003einit\u003c/code\u003e Action. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3795\"\u003e#3795\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe Git version 2.36.0 requirement for improved incremental analysis now only applies to repositories that contain submodules. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3789\"\u003e#3789\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePython analysis on GHES no longer extracts the standard library, relying instead on models of the standard library. This should result in significantly faster extraction and analysis times, while the effect on alerts should be minimal. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3794\"\u003e#3794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a bug in the validation of OIDC configurations for private registries that was added in CodeQL Action 4.33.0 / 3.33.0. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3807\"\u003e#3807\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.2\"\u003e2.25.2\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3823\"\u003e#3823\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.35.1 - 27 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect minimum required Git version for \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e: it should have been 2.36.0, not 2.11.0. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3781\"\u003e#3781\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.35.0 - 27 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduced the minimum Git version required for \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e from 2.38.0 to 2.11.0. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3767\"\u003e#3767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.1\"\u003e2.25.1\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3773\"\u003e#3773\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.34.1 - 20 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDowngrade default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3\"\u003e2.24.3\u003c/a\u003e due to issues with a small percentage of Actions and JavaScript analyses. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3762\"\u003e#3762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.34.0 - 20 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded an experimental change which disables TRAP caching when \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3569\"\u003e#3569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWe are rolling out improved incremental analysis to C/C++ analyses that use build mode \u003ccode\u003enone\u003c/code\u003e. We expect this rollout to be complete by the end of April 2026. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3584\"\u003e#3584\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.0\"\u003e2.25.0\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3585\"\u003e#3585\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.33.0 - 16 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUpcoming change: Starting April 2026, the CodeQL Action will skip collecting file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. Pull request analyses will log a warning about this upcoming change. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3562\"\u003e#3562\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eTo opt out of this change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRepositories owned by an organization:\u003c/strong\u003e Create a custom repository property with the name \u003ccode\u003egithub-codeql-file-coverage-on-prs\u003c/code\u003e and the type \u0026quot;True/false\u0026quot;, then set this property to \u003ccode\u003etrue\u003c/code\u003e in the repository's settings. For more information, see \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003eManaging custom properties for repositories in your organization\u003c/a\u003e. Alternatively, if you are using an advanced setup workflow, you can set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using default setup:\u003c/strong\u003e Switch to an advanced setup workflow and set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using advanced setup:\u003c/strong\u003e Set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3555\"\u003ea bug\u003c/a\u003e which caused the CodeQL Action to fail loading repository properties if a \u0026quot;Multi select\u0026quot; repository property was configured for the repository. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3557\"\u003e#3557\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eThe CodeQL Action now loads \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003ecustom repository properties\u003c/a\u003e on GitHub Enterprise Server, enabling the customization of features such as \u003ccode\u003egithub-codeql-disable-overlay\u003c/code\u003e that was previously only available on GitHub.com. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3559\"\u003e#3559\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eOnce \u003ca href=\"https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries\"\u003eprivate package registries\u003c/a\u003e can be configured with OIDC-based authentication for organizations, the CodeQL Action will now be able to accept such configurations. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3563\"\u003e#3563\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed the retry mechanism for database uploads. Previously this would fail with the error \u0026quot;Response body object should not be disturbed or locked\u0026quot;. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3564\"\u003e#3564\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eA warning is now emitted if the CodeQL Action detects a repository property whose name suggests that it relates to the CodeQL Action, but which is not one of the properties recognised by the current version of the CodeQL Action. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3570\"\u003e#3570\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.32.6 - 05 Mar 2026\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/95e58e9a2cdfd71adc6e0353d5c52f41a045d225\"\u003e\u003ccode\u003e95e58e9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3824\"\u003e#3824\u003c/a\u003e from github/update-v4.35.2-d2e135a73\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/6f31bfe060e817d81e938dbec767969d20031e25\"\u003e\u003ccode\u003e6f31bfe\u003c/code\u003e\u003c/a\u003e Update changelog for v4.35.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/d2e135a73a39154e3a231aeb49163c4661c5b8b1\"\u003e\u003ccode\u003ed2e135a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3823\"\u003e#3823\u003c/a\u003e from github/update-bundle/codeql-bundle-v2.25.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/60abb65df09fcf213c398e064c8a80db1f15cdaf\"\u003e\u003ccode\u003e60abb65\u003c/code\u003e\u003c/a\u003e Add changelog note\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/5a0a562209255e956ad8aafcee303294e64eefa2\"\u003e\u003ccode\u003e5a0a562\u003c/code\u003e\u003c/a\u003e Update default bundle to codeql-bundle-v2.25.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/65216971a11ded447a6b76263d5a144519e5eee1\"\u003e\u003ccode\u003e6521697\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3820\"\u003e#3820\u003c/a\u003e from github/dependabot/github_actions/dot-github/wor...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/3c45af2dd258e1623af1898da5c86545b514e028\"\u003e\u003ccode\u003e3c45af2\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3821\"\u003e#3821\u003c/a\u003e from github/dependabot/npm_and_yarn/npm-minor-345b93...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/f1c339364c12f922998186ed897e45e3b4ae8874\"\u003e\u003ccode\u003ef1c3393\u003c/code\u003e\u003c/a\u003e Rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/1024fc496c87e944a93e98d8cf2c09e2c7602a30\"\u003e\u003ccode\u003e1024fc4\u003c/code\u003e\u003c/a\u003e Rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/9dd4cfed96030ccdfe1af4daf7a7964322704fed\"\u003e\u003ccode\u003e9dd4cfe\u003c/code\u003e\u003c/a\u003e Bump the npm-minor group across 1 directory with 6 updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/github/codeql-action/compare/0d579ffd059c29b07949a3cce3983f0780820c98...95e58e9a2cdfd71adc6e0353d5c52f41a045d225\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/download-artifact` from 8.0.0 to 8.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/download-artifact/releases\"\u003eactions/download-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for CJK characters in the artifact name by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/471\"\u003eactions/download-artifact#471\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a regression test for artifact name + content-type mismatches by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/472\"\u003eactions/download-artifact#472\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/download-artifact/compare/v8...v8.0.1\"\u003ehttps://github.com/actions/download-artifact/compare/v8...v8.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003e\u003ccode\u003e3e5f45b\u003c/code\u003e\u003c/a\u003e Add regression tests for CJK characters (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/471\"\u003e#471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/e6d03f67377d4412c7aa56a8e2e4988e6ec479dd\"\u003e\u003ccode\u003ee6d03f6\u003c/code\u003e\u003c/a\u003e Add a regression test for artifact name + content-type mismatches (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/download-artifact/compare/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3...3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `JS-DevTools/npm-publish` from 3.1.1 to 4.1.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.5\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.5\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump the production group with 2 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/261\"\u003e#261\u003c/a\u003e) (3c4834c)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.4\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e) (57836fb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/0fd2f4369c5d6bcfcde6091a7c527d810b9b5c3f\"\u003e\u003ccode\u003e0fd2f43\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3c4834cd08f123627673af5903c4a540e48726cb\"\u003e\u003ccode\u003e3c4834c\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 2 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/22291edfcc07a313b9e8105d8b81078380a48ecc\"\u003e\u003ccode\u003e22291ed\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 6 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/4ce4bd0f334d5316473155078da1955d42148494\"\u003e\u003ccode\u003e4ce4bd0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/57836fba47be1db47836722ee0fbcccb3980e22b\"\u003e\u003ccode\u003e57836fb\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/19c28f1ef146469e409470805ea4279d47c3d35c...0fd2f4369c5d6bcfcde6091a7c527d810b9b5c3f\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/ltwlf/json-diff-ts/pull/409","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ltwlf%2Fjson-diff-ts/issues/409","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/409/packages"},{"uuid":"4114715980","node_id":"PR_kwDODWjvzc7Mcun8","number":386,"state":"open","title":"chore(deps): bump the actions group across 1 directory with 4 updates","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-03-22T04:32:58.000Z","updated_at":"2026-03-22T04:33:29.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"actions","update_count":4,"packages":[{"name":"codecov/codecov-action","old_version":"5.5.2","new_version":"5.5.3","repository_url":"https://github.com/codecov/codecov-action"},{"name":"github/codeql-action","old_version":"4.32.6","new_version":"4.34.1","repository_url":"https://github.com/github/codeql-action"},{"name":"actions/download-artifact","old_version":"8.0.0","new_version":"8.0.1","repository_url":"https://github.com/actions/download-artifact"},{"name":"JS-DevTools/npm-publish","old_version":"3.1.1","new_version":"4.1.5","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps the actions group with 4 updates in the / directory: [codecov/codecov-action](https://github.com/codecov/codecov-action), [github/codeql-action](https://github.com/github/codeql-action), [actions/download-artifact](https://github.com/actions/download-artifact) and [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish).\n\nUpdates `codecov/codecov-action` from 5.5.2 to 5.5.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/codecov/codecov-action/releases\"\u003ecodecov/codecov-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.5.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/github-script from 7.0.1 to 8.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1874\"\u003ecodecov/codecov-action#1874\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(release): bump to 5.5.3 by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1922\"\u003ecodecov/codecov-action#1922\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.2...v5.5.3\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.2...v5.5.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md\"\u003ecodecov/codecov-action's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.5.2\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.1\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: overwrite pr number on fork by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1871\"\u003ecodecov/codecov-action#1871\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.2 to 5.0.0 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1868\"\u003ecodecov/codecov-action#1868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.9 to 3.29.11 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1867\"\u003ecodecov/codecov-action#1867\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update to use local app/ dir by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1872\"\u003ecodecov/codecov-action#1872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix typo in README by \u003ca href=\"https://github.com/datalater\"\u003e\u003ccode\u003e@​datalater\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1866\"\u003ecodecov/codecov-action#1866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument a \u003ccode\u003ecodecov-cli\u003c/code\u003e version reference example by \u003ca href=\"https://github.com/webknjaz\"\u003e\u003ccode\u003e@​webknjaz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1774\"\u003ecodecov/codecov-action#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.29.9 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1861\"\u003ecodecov/codecov-action#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1833\"\u003ecodecov/codecov-action#1833\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.0\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat: upgrade wrapper to 0.2.4 by \u003ca href=\"https://github.com/jviall\"\u003e\u003ccode\u003e@​jviall\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1864\"\u003ecodecov/codecov-action#1864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/github-script by Git SHA by \u003ca href=\"https://github.com/martincostello\"\u003e\u003ccode\u003e@​martincostello\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1859\"\u003ecodecov/codecov-action#1859\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: check reqs exist by \u003ca href=\"https://github.com/joseph-sentry\"\u003e\u003ccode\u003e@​joseph-sentry\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1835\"\u003ecodecov/codecov-action#1835\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Typo in README by \u003ca href=\"https://github.com/spalmurray\"\u003e\u003ccode\u003e@​spalmurray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1838\"\u003ecodecov/codecov-action#1838\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Refine OIDC docs by \u003ca href=\"https://github.com/spalmurray\"\u003e\u003ccode\u003e@​spalmurray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1837\"\u003ecodecov/codecov-action#1837\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.18 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1829\"\u003ecodecov/codecov-action#1829\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.4.3\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.13 to 3.28.17 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1822\"\u003ecodecov/codecov-action#1822\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: OIDC on forks by \u003ca href=\"https://github.com/joseph-sentry\"\u003e\u003ccode\u003e@​joseph-sentry\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1823\"\u003ecodecov/codecov-action#1823\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.4.2\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/1af58845a975a7985b0beb0cbe6fbbb71a41dbad\"\u003e\u003ccode\u003e1af5884\u003c/code\u003e\u003c/a\u003e chore(release): bump to 5.5.3 (\u003ca href=\"https://redirect.github.com/codecov/codecov-action/issues/1922\"\u003e#1922\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/c143300dea6c9a730986ff862c5bf4d458927ef8\"\u003e\u003ccode\u003ec143300\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/github-script from 7.0.1 to 8.0.0 (\u003ca href=\"https://redirect.github.com/codecov/codecov-action/issues/1874\"\u003e#1874\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/codecov/codecov-action/compare/671740ac38dd9b0130fbe1cec585b89eea48d3de...1af58845a975a7985b0beb0cbe6fbbb71a41dbad\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github/codeql-action` from 4.32.6 to 4.34.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/github/codeql-action/releases\"\u003egithub/codeql-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.34.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDowngrade default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3\"\u003e2.24.3\u003c/a\u003e due to issues with a small percentage of Actions and JavaScript analyses. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3762\"\u003e#3762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.34.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded an experimental change which disables TRAP caching when \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3569\"\u003e#3569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWe are rolling out improved incremental analysis to C/C++ analyses that use build mode \u003ccode\u003enone\u003c/code\u003e. We expect this rollout to be complete by the end of April 2026. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3584\"\u003e#3584\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.0\"\u003e2.25.0\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3585\"\u003e#3585\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.33.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUpcoming change: Starting April 2026, the CodeQL Action will skip collecting file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. Pull request analyses will log a warning about this upcoming change. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3562\"\u003e#3562\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eTo opt out of this change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRepositories owned by an organization:\u003c/strong\u003e Create a custom repository property with the name \u003ccode\u003egithub-codeql-file-coverage-on-prs\u003c/code\u003e and the type \u0026quot;True/false\u0026quot;, then set this property to \u003ccode\u003etrue\u003c/code\u003e in the repository's settings. For more information, see \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003eManaging custom properties for repositories in your organization\u003c/a\u003e. Alternatively, if you are using an advanced setup workflow, you can set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using default setup:\u003c/strong\u003e Switch to an advanced setup workflow and set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using advanced setup:\u003c/strong\u003e Set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3555\"\u003ea bug\u003c/a\u003e which caused the CodeQL Action to fail loading repository properties if a \u0026quot;Multi select\u0026quot; repository property was configured for the repository. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3557\"\u003e#3557\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eThe CodeQL Action now loads \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003ecustom repository properties\u003c/a\u003e on GitHub Enterprise Server, enabling the customization of features such as \u003ccode\u003egithub-codeql-disable-overlay\u003c/code\u003e that was previously only available on GitHub.com. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3559\"\u003e#3559\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eOnce \u003ca href=\"https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries\"\u003eprivate package registries\u003c/a\u003e can be configured with OIDC-based authentication for organizations, the CodeQL Action will now be able to accept such configurations. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3563\"\u003e#3563\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed the retry mechanism for database uploads. Previously this would fail with the error \u0026quot;Response body object should not be disturbed or locked\u0026quot;. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3564\"\u003e#3564\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eA warning is now emitted if the CodeQL Action detects a repository property whose name suggests that it relates to the CodeQL Action, but which is not one of the properties recognised by the current version of the CodeQL Action. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3570\"\u003e#3570\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/github/codeql-action/blob/main/CHANGELOG.md\"\u003egithub/codeql-action's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eCodeQL Action Changelog\u003c/h1\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/github/codeql-action/releases\"\u003ereleases page\u003c/a\u003e for the relevant changes to the CodeQL CLI and language packs.\u003c/p\u003e\n\u003ch2\u003e[UNRELEASED]\u003c/h2\u003e\n\u003cp\u003eNo user facing changes.\u003c/p\u003e\n\u003ch2\u003e4.34.1 - 20 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDowngrade default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3\"\u003e2.24.3\u003c/a\u003e due to issues with a small percentage of Actions and JavaScript analyses. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3762\"\u003e#3762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.34.0 - 20 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded an experimental change which disables TRAP caching when \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3569\"\u003e#3569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWe are rolling out improved incremental analysis to C/C++ analyses that use build mode \u003ccode\u003enone\u003c/code\u003e. We expect this rollout to be complete by the end of April 2026. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3584\"\u003e#3584\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.0\"\u003e2.25.0\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3585\"\u003e#3585\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.33.0 - 16 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUpcoming change: Starting April 2026, the CodeQL Action will skip collecting file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. Pull request analyses will log a warning about this upcoming change. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3562\"\u003e#3562\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eTo opt out of this change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRepositories owned by an organization:\u003c/strong\u003e Create a custom repository property with the name \u003ccode\u003egithub-codeql-file-coverage-on-prs\u003c/code\u003e and the type \u0026quot;True/false\u0026quot;, then set this property to \u003ccode\u003etrue\u003c/code\u003e in the repository's settings. For more information, see \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003eManaging custom properties for repositories in your organization\u003c/a\u003e. Alternatively, if you are using an advanced setup workflow, you can set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using default setup:\u003c/strong\u003e Switch to an advanced setup workflow and set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using advanced setup:\u003c/strong\u003e Set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3555\"\u003ea bug\u003c/a\u003e which caused the CodeQL Action to fail loading repository properties if a \u0026quot;Multi select\u0026quot; repository property was configured for the repository. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3557\"\u003e#3557\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eThe CodeQL Action now loads \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003ecustom repository properties\u003c/a\u003e on GitHub Enterprise Server, enabling the customization of features such as \u003ccode\u003egithub-codeql-disable-overlay\u003c/code\u003e that was previously only available on GitHub.com. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3559\"\u003e#3559\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eOnce \u003ca href=\"https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries\"\u003eprivate package registries\u003c/a\u003e can be configured with OIDC-based authentication for organizations, the CodeQL Action will now be able to accept such configurations. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3563\"\u003e#3563\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed the retry mechanism for database uploads. Previously this would fail with the error \u0026quot;Response body object should not be disturbed or locked\u0026quot;. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3564\"\u003e#3564\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eA warning is now emitted if the CodeQL Action detects a repository property whose name suggests that it relates to the CodeQL Action, but which is not one of the properties recognised by the current version of the CodeQL Action. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3570\"\u003e#3570\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.32.6 - 05 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3\"\u003e2.24.3\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3548\"\u003e#3548\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.32.5 - 02 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRepositories owned by an organization can now set up the \u003ccode\u003egithub-codeql-disable-overlay\u003c/code\u003e custom repository property to disable \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis for CodeQL\u003c/a\u003e. First, create a custom repository property with the name \u003ccode\u003egithub-codeql-disable-overlay\u003c/code\u003e and the type \u0026quot;True/false\u0026quot; in the organization's settings. Then in the repository's settings, set this property to \u003ccode\u003etrue\u003c/code\u003e to disable improved incremental analysis. For more information, see \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003eManaging custom properties for repositories in your organization\u003c/a\u003e. This feature is not yet available on GitHub Enterprise Server. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3507\"\u003e#3507\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded an experimental change so that when \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e fails on a runner — potentially due to insufficient disk space — the failure is recorded in the Actions cache so that subsequent runs will automatically skip improved incremental analysis until something changes (e.g. a larger runner is provisioned or a new CodeQL version is released). We expect to roll this change out to everyone in March. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3487\"\u003e#3487\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe minimum memory check for improved incremental analysis is now skipped for CodeQL 2.24.3 and later, which has reduced peak RAM usage. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3515\"\u003e#3515\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReduced log levels for best-effort private package registry connection check failures to reduce noise from workflow annotations. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3516\"\u003e#3516\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded an experimental change which lowers the minimum disk space requirement for \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e, enabling it to run on standard GitHub Actions runners. We expect to roll this change out to everyone in March. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3498\"\u003e#3498\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded an experimental change which allows the \u003ccode\u003estart-proxy\u003c/code\u003e action to resolve the CodeQL CLI version from feature flags instead of using the linked CLI bundle version. We expect to roll this change out to everyone in March. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3512\"\u003e#3512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe previously experimental changes from versions 4.32.3, 4.32.4, 3.32.3 and 3.32.4 are now enabled by default. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3503\"\u003e#3503\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3504\"\u003e#3504\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.32.4 - 20 Feb 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.2\"\u003e2.24.2\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3493\"\u003e#3493\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded an experimental change which improves how certificates are generated for the authentication proxy that is used by the CodeQL Action in Default Setup when \u003ca href=\"https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries\"\u003eprivate package registries are configured\u003c/a\u003e. This is expected to generate more widely compatible certificates and should have no impact on analyses which are working correctly already. We expect to roll this change out to everyone in February. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3473\"\u003e#3473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/38697555549f1db7851b81482ff19f1fa5c4fedc\"\u003e\u003ccode\u003e3869755\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3763\"\u003e#3763\u003c/a\u003e from github/update-v4.34.1-095e0fe50\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/20e68ac12bc8d1eb16a56d3ef4e78263197d2e47\"\u003e\u003ccode\u003e20e68ac\u003c/code\u003e\u003c/a\u003e Update changelog for v4.34.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/095e0fe505bb5ab6198675d021352632c2c69a46\"\u003e\u003ccode\u003e095e0fe\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3762\"\u003e#3762\u003c/a\u003e from github/henrymercer/downgrade-default-bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/47b94fe61cd788995769140a7a8adffec0738aa1\"\u003e\u003ccode\u003e47b94fe\u003c/code\u003e\u003c/a\u003e Add changelog note\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/51a1d6917f5d33f400200c675401974da443b2ea\"\u003e\u003ccode\u003e51a1d69\u003c/code\u003e\u003c/a\u003e Downgrade default bundle to codeql-bundle-v2.24.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/510cf736e330d7eb9bc471636d65aaa180118824\"\u003e\u003ccode\u003e510cf73\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3589\"\u003e#3589\u003c/a\u003e from github/mergeback/v4.34.0-to-main-c6f93110\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/89f0c86efa3acf01faeff510383f0c4a4152760a\"\u003e\u003ccode\u003e89f0c86\u003c/code\u003e\u003c/a\u003e Rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/c3f90ba975e427c1913b529a89ef97a2442493f2\"\u003e\u003ccode\u003ec3f90ba\u003c/code\u003e\u003c/a\u003e Update changelog and version after v4.34.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/c6f931105cb2c34c8f901cc885ba1e2e259cf745\"\u003e\u003ccode\u003ec6f9311\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3588\"\u003e#3588\u003c/a\u003e from github/update-v4.34.0-30c555a52\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/eeb9b3f4244c2945a20b9761dfa77f19d468d35f\"\u003e\u003ccode\u003eeeb9b3f\u003c/code\u003e\u003c/a\u003e Update changelog for v4.34.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/github/codeql-action/compare/0d579ffd059c29b07949a3cce3983f0780820c98...38697555549f1db7851b81482ff19f1fa5c4fedc\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/download-artifact` from 8.0.0 to 8.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/download-artifact/releases\"\u003eactions/download-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for CJK characters in the artifact name by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/471\"\u003eactions/download-artifact#471\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a regression test for artifact name + content-type mismatches by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/472\"\u003eactions/download-artifact#472\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/download-artifact/compare/v8...v8.0.1\"\u003ehttps://github.com/actions/download-artifact/compare/v8...v8.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003e\u003ccode\u003e3e5f45b\u003c/code\u003e\u003c/a\u003e Add regression tests for CJK characters (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/471\"\u003e#471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/e6d03f67377d4412c7aa56a8e2e4988e6ec479dd\"\u003e\u003ccode\u003ee6d03f6\u003c/code\u003e\u003c/a\u003e Add a regression test for artifact name + content-type mismatches (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/download-artifact/compare/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3...3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `JS-DevTools/npm-publish` from 3.1.1 to 4.1.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.5\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.5\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump the production group with 2 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/261\"\u003e#261\u003c/a\u003e) (3c4834c)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.4\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e) (57836fb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/0fd2f4369c5d6bcfcde6091a7c527d810b9b5c3f\"\u003e\u003ccode\u003e0fd2f43\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3c4834cd08f123627673af5903c4a540e48726cb\"\u003e\u003ccode\u003e3c4834c\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 2 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/22291edfcc07a313b9e8105d8b81078380a48ecc\"\u003e\u003ccode\u003e22291ed\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 6 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/4ce4bd0f334d5316473155078da1955d42148494\"\u003e\u003ccode\u003e4ce4bd0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/57836fba47be1db47836722ee0fbcccb3980e22b\"\u003e\u003ccode\u003e57836fb\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/19c28f1ef146469e409470805ea4279d47c3d35c...0fd2f4369c5d6bcfcde6091a7c527d810b9b5c3f\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/ltwlf/json-diff-ts/pull/386","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ltwlf%2Fjson-diff-ts/issues/386","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/386/packages"},{"uuid":"4077580819","node_id":"PR_kwDODWjvzc7Kr6XM","number":384,"state":"closed","title":"chore(deps): bump the actions group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-03-22T04:32:53.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-15T04:32:45.000Z","updated_at":"2026-03-22T04:32:55.000Z","time_to_close":604808,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"actions","update_count":2,"packages":[{"name":"actions/download-artifact","old_version":"8.0.0","new_version":"8.0.1","repository_url":"https://github.com/actions/download-artifact"},{"name":"JS-DevTools/npm-publish","old_version":"3.1.1","new_version":"4.1.5","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps the actions group with 2 updates in the / directory: [actions/download-artifact](https://github.com/actions/download-artifact) and [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish).\n\nUpdates `actions/download-artifact` from 8.0.0 to 8.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/download-artifact/releases\"\u003eactions/download-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for CJK characters in the artifact name by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/471\"\u003eactions/download-artifact#471\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a regression test for artifact name + content-type mismatches by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/472\"\u003eactions/download-artifact#472\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/download-artifact/compare/v8...v8.0.1\"\u003ehttps://github.com/actions/download-artifact/compare/v8...v8.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003e\u003ccode\u003e3e5f45b\u003c/code\u003e\u003c/a\u003e Add regression tests for CJK characters (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/471\"\u003e#471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/e6d03f67377d4412c7aa56a8e2e4988e6ec479dd\"\u003e\u003ccode\u003ee6d03f6\u003c/code\u003e\u003c/a\u003e Add a regression test for artifact name + content-type mismatches (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/download-artifact/compare/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3...3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `JS-DevTools/npm-publish` from 3.1.1 to 4.1.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.5\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.5\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump the production group with 2 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/261\"\u003e#261\u003c/a\u003e) (3c4834c)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.4\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e) (57836fb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/0fd2f4369c5d6bcfcde6091a7c527d810b9b5c3f\"\u003e\u003ccode\u003e0fd2f43\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3c4834cd08f123627673af5903c4a540e48726cb\"\u003e\u003ccode\u003e3c4834c\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 2 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/22291edfcc07a313b9e8105d8b81078380a48ecc\"\u003e\u003ccode\u003e22291ed\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 6 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/4ce4bd0f334d5316473155078da1955d42148494\"\u003e\u003ccode\u003e4ce4bd0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/57836fba47be1db47836722ee0fbcccb3980e22b\"\u003e\u003ccode\u003e57836fb\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/19c28f1ef146469e409470805ea4279d47c3d35c...0fd2f4369c5d6bcfcde6091a7c527d810b9b5c3f\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/ltwlf/json-diff-ts/pull/384","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ltwlf%2Fjson-diff-ts/issues/384","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/384/packages"},{"uuid":"3829809255","node_id":"PR_kwDOPyv1RM6-A0ZP","number":138,"state":"open","title":"chore(deps): bump JS-DevTools/npm-publish from 4.0.1 to 4.1.4","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-01-19T13:46:32.000Z","updated_at":"2026-01-19T13:46:33.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.0.1","new_version":"4.1.4","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.0.1 to 4.1.4.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.4\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e) (57836fb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow \u003ccode\u003etoken\u003c/code\u003e to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e) (612922f), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/4ce4bd0f334d5316473155078da1955d42148494\"\u003e\u003ccode\u003e4ce4bd0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/57836fba47be1db47836722ee0fbcccb3980e22b\"\u003e\u003ccode\u003e57836fb\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/ad693561f8a5b5d4c76f14407da60aa15cb10f90...4ce4bd0f334d5316473155078da1955d42148494\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.0.1\u0026new-version=4.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/charlie-labs/format-for/pull/138","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/charlie-labs%2Fformat-for/issues/138","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/138/packages"},{"uuid":"3829809193","node_id":"PR_kwDOPysT3s6-A0Yc","number":50,"state":"closed","title":"chore(deps): bump JS-DevTools/npm-publish from 4.0.1 to 4.1.4","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-02-02T13:29:19.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-19T13:46:31.000Z","updated_at":"2026-02-02T13:29:21.000Z","time_to_close":1208568,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.0.1","new_version":"4.1.4","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.0.1 to 4.1.4.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.4\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e) (57836fb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow \u003ccode\u003etoken\u003c/code\u003e to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e) (612922f), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/4ce4bd0f334d5316473155078da1955d42148494\"\u003e\u003ccode\u003e4ce4bd0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/57836fba47be1db47836722ee0fbcccb3980e22b\"\u003e\u003ccode\u003e57836fb\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/ad693561f8a5b5d4c76f14407da60aa15cb10f90...4ce4bd0f334d5316473155078da1955d42148494\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.0.1\u0026new-version=4.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/charlie-labs/bun-lib-template/pull/50","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/charlie-labs%2Fbun-lib-template/issues/50","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/50/packages"},{"uuid":"3829296974","node_id":"PR_kwDOKq0j4c69_Ggs","number":36,"state":"closed","title":"Bump JS-DevTools/npm-publish from 4.1.3 to 4.1.4","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-02T11:19:06.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-19T11:33:49.000Z","updated_at":"2026-02-02T11:19:08.000Z","time_to_close":1208717,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.1.3","new_version":"4.1.4","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.1.3 to 4.1.4.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.4\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e) (57836fb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/4ce4bd0f334d5316473155078da1955d42148494\"\u003e\u003ccode\u003e4ce4bd0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/57836fba47be1db47836722ee0fbcccb3980e22b\"\u003e\u003ccode\u003e57836fb\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51...4ce4bd0f334d5316473155078da1955d42148494\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.1.3\u0026new-version=4.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/FlowFuse/node-red-dashboard-2-user-addon/pull/36","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FlowFuse%2Fnode-red-dashboard-2-user-addon/issues/36","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/36/packages"},{"uuid":"3827578531","node_id":"PR_kwDOOjSx28695gDB","number":34,"state":"closed","title":"Bump JS-DevTools/npm-publish from 4.1.1 to 4.1.4","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-02T00:38:01.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-19T00:45:35.000Z","updated_at":"2026-02-02T00:38:03.000Z","time_to_close":1209146,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.1.1","new_version":"4.1.4","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.1.1 to 4.1.4.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.4\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e) (57836fb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/4ce4bd0f334d5316473155078da1955d42148494\"\u003e\u003ccode\u003e4ce4bd0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/57836fba47be1db47836722ee0fbcccb3980e22b\"\u003e\u003ccode\u003e57836fb\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b...4ce4bd0f334d5316473155078da1955d42148494\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.1.1\u0026new-version=4.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/FlowFuse/node-red-dashboard-2-ui-chat/pull/34","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FlowFuse%2Fnode-red-dashboard-2-ui-chat/issues/34","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/34/packages"},{"uuid":"3806443130","node_id":"PR_kwDOG7cE2s68zxLQ","number":178,"state":"closed","title":"Bump JS-DevTools/npm-publish from 4.1.1 to 4.1.3","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-19T20:42:30.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-12T23:56:53.000Z","updated_at":"2026-01-19T20:42:31.000Z","time_to_close":593137,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.1.1","new_version":"4.1.3","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.1.1 to 4.1.3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b...d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.1.1\u0026new-version=4.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/FlowFuse/forge-ui-components/pull/178","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FlowFuse%2Fforge-ui-components/issues/178","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/178/packages"},{"uuid":"3804729846","node_id":"PR_kwDOPysT3s68uNCV","number":49,"state":"closed","title":"chore(deps): bump JS-DevTools/npm-publish from 4.0.1 to 4.1.3","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-01-19T13:46:33.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-12T15:05:44.000Z","updated_at":"2026-01-19T13:46:35.000Z","time_to_close":600049,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.0.1","new_version":"4.1.3","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.0.1 to 4.1.3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow \u003ccode\u003etoken\u003c/code\u003e to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e) (612922f), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/ad693561f8a5b5d4c76f14407da60aa15cb10f90...d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.0.1\u0026new-version=4.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/charlie-labs/bun-lib-template/pull/49","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/charlie-labs%2Fbun-lib-template/issues/49","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/49/packages"},{"uuid":"3804729726","node_id":"PR_kwDOPyv1RM68uNAj","number":137,"state":"open","title":"chore(deps): bump JS-DevTools/npm-publish from 4.0.1 to 4.1.3","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-01-12T15:05:42.000Z","updated_at":"2026-01-12T15:05:42.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.0.1","new_version":"4.1.3","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.0.1 to 4.1.3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow \u003ccode\u003etoken\u003c/code\u003e to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e) (612922f), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/ad693561f8a5b5d4c76f14407da60aa15cb10f90...d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.0.1\u0026new-version=4.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/charlie-labs/format-for/pull/137","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/charlie-labs%2Fformat-for/issues/137","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/137/packages"},{"uuid":"3792631109","node_id":"PR_kwDOPrf0dM68G4rG","number":197,"state":"closed","title":"dependabot(deps): bump JS-DevTools/npm-publish from 4.1.2 to 4.1.3","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-08T12:15:28.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-08T12:10:36.000Z","updated_at":"2026-01-08T12:15:30.000Z","time_to_close":292,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"dependabot(deps)","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.1.2","new_version":"4.1.3","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.1.2 to 4.1.3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/8f08ec0dafe29acea4e9efe18e67ebde86904ad1...d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.1.2\u0026new-version=4.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/motlin/workflowy-cli/pull/197","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/motlin%2Fworkflowy-cli/issues/197","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/197/packages"},{"uuid":"3782620860","node_id":"PR_kwDOGXldLM67l3B7","number":430,"state":"closed","title":"Bump JS-DevTools/npm-publish from 4.1.1 to 4.1.2","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-13T00:22:19.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-05T19:24:14.000Z","updated_at":"2026-01-13T00:22:21.000Z","time_to_close":622685,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.1.1","new_version":"4.1.2","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.1.1 to 4.1.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b...8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.1.1\u0026new-version=4.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/FlowFuse/nr-launcher/pull/430","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FlowFuse%2Fnr-launcher/issues/430","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/430/packages"},{"uuid":"3782227916","node_id":"PR_kwDOIWJaA867kiwM","number":202,"state":"closed","title":"Bump JS-DevTools/npm-publish from 4.1.1 to 4.1.2","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-12T21:45:33.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-05T17:09:13.000Z","updated_at":"2026-01-12T21:45:34.000Z","time_to_close":621380,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.1.1","new_version":"4.1.2","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.1.1 to 4.1.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b...8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.1.1\u0026new-version=4.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/FlowFuse/file-server/pull/202","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FlowFuse%2Ffile-server/issues/202","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/202/packages"},{"uuid":"3781886460","node_id":"PR_kwDOFrvvzc67jaMo","number":6470,"state":"closed","title":"Bump JS-DevTools/npm-publish from 4.1.1 to 4.1.2","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-12T19:40:26.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-05T15:24:12.000Z","updated_at":"2026-01-12T19:40:27.000Z","time_to_close":620174,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.1.1","new_version":"4.1.2","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.1.1 to 4.1.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b...8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.1.1\u0026new-version=4.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/FlowFuse/flowfuse/pull/6470","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FlowFuse%2Fflowfuse/issues/6470","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6470/packages"},{"uuid":"3781319292","node_id":"PR_kwDOPysT3s67hjtm","number":48,"state":"closed","title":"chore(deps): bump JS-DevTools/npm-publish from 4.0.1 to 4.1.2","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-01-12T15:05:46.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-05T12:26:35.000Z","updated_at":"2026-01-12T15:05:48.000Z","time_to_close":614351,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.0.1","new_version":"4.1.2","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.0.1 to 4.1.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow \u003ccode\u003etoken\u003c/code\u003e to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e) (612922f), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/1fe17a093199d8fabed85cbcc6f0f79eb06470da\"\u003e\u003ccode\u003e1fe17a0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3817acc494b26be8b714d1975f3b963e8a921bd0\"\u003e\u003ccode\u003e3817acc\u003c/code\u003e\u003c/a\u003e fix(action): remove erroneous required \u003ccode\u003etoken\u003c/code\u003e input check (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/248\"\u003e#248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/ad693561f8a5b5d4c76f14407da60aa15cb10f90...8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.0.1\u0026new-version=4.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/charlie-labs/bun-lib-template/pull/48","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/charlie-labs%2Fbun-lib-template/issues/48","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/48/packages"},{"uuid":"3780921958","node_id":"PR_kwDOKq0j4c67gPCn","number":33,"state":"closed","title":"Bump JS-DevTools/npm-publish from 3.1.1 to 4.1.2","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-12T11:59:08.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-05T10:09:21.000Z","updated_at":"2026-01-12T11:59:10.000Z","time_to_close":611387,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"3.1.1","new_version":"4.1.2","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 3.1.1 to 4.1.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow \u003ccode\u003etoken\u003c/code\u003e to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e) (612922f), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.0.1\n  with:\n    token: ${{ secrets.NPM_TOKEN }}\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edo not suppress \u003ccode\u003eE409\u003c/code\u003e from \u003ccode\u003enpm publish\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/246\"\u003e#246\u003c/a\u003e) (c13368d), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/245\"\u003e#245\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cp\u003eThe \u003ccode\u003ev4\u003c/code\u003e release updates the action runtime to Node 24, but there have been no usage changes to the action.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/immutable-releases\"\u003eImmutable releases\u003c/a\u003e have been enabled for this repository. As a security practice, we recommend pinning to an exact release:\u003c/p\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.0.0\n  with:\n    token: ${{ secrets.NPM_TOKEN }}\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/1fe17a093199d8fabed85cbcc6f0f79eb06470da\"\u003e\u003ccode\u003e1fe17a0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3817acc494b26be8b714d1975f3b963e8a921bd0\"\u003e\u003ccode\u003e3817acc\u003c/code\u003e\u003c/a\u003e fix(action): remove erroneous required \u003ccode\u003etoken\u003c/code\u003e input check (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/248\"\u003e#248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/19c28f1ef146469e409470805ea4279d47c3d35c...8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=3.1.1\u0026new-version=4.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/FlowFuse/node-red-dashboard-2-user-addon/pull/33","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FlowFuse%2Fnode-red-dashboard-2-user-addon/issues/33","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/33/packages"},{"uuid":"3660185016","node_id":"PR_kwDOALhkcc61RHmp","number":277,"state":"closed","title":"build(deps): bump the gha group across 1 directory with 4 updates","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2025-12-03T20:08:02.000Z","author_association":null,"state_reason":null,"created_at":"2025-11-24T19:10:58.000Z","updated_at":"2025-12-03T20:08:03.000Z","time_to_close":781024,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"gha","update_count":4,"packages":[{"name":"actions/checkout","old_version":"5.0.0","new_version":"6.0.0","repository_url":"https://github.com/actions/checkout"},{"name":"actions/setup-node","old_version":"5.0.0","new_version":"6.0.0","repository_url":"https://github.com/actions/setup-node"},{"name":"JS-DevTools/npm-publish","old_version":"4.0.1","new_version":"4.1.1","repository_url":"https://github.com/js-devtools/npm-publish"},{"name":"googleapis/release-please-action","old_version":"4.3.0","new_version":"4.4.0","repository_url":"https://github.com/googleapis/release-please-action"}],"path":null,"ecosystem":"actions"},"body":"Bumps the gha group with 4 updates in the /.github/workflows directory: [actions/checkout](https://github.com/actions/checkout), [actions/setup-node](https://github.com/actions/setup-node), [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) and [googleapis/release-please-action](https://github.com/googleapis/release-please-action).\n\nUpdates `actions/checkout` from 5.0.0 to 6.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/releases\"\u003eactions/checkout's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev6-beta by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2298\"\u003eactions/checkout#2298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate readme/changelog for v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2311\"\u003eactions/checkout#2311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/checkout/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6-beta\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eUpdated persist-credentials to store the credentials under \u003ccode\u003e$RUNNER_TEMP\u003c/code\u003e instead of directly in the local git config.\u003c/p\u003e\n\u003cp\u003eThis requires a minimum Actions Runner version of \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.329.0\"\u003ev2.329.0\u003c/a\u003e to access the persisted credentials for \u003ca href=\"https://docs.github.com/en/actions/tutorials/use-containerized-services/create-a-docker-container-action\"\u003eDocker container action\u003c/a\u003e scenarios.\u003c/p\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5...v5.0.1\"\u003ehttps://github.com/actions/checkout/compare/v5...v5.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/blob/main/CHANGELOG.md\"\u003eactions/checkout's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eV6.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eV5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3\"\u003e\u003ccode\u003e1af3b93\u003c/code\u003e\u003c/a\u003e update readme/changelog for v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2311\"\u003e#2311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/71cf2267d89c5cb81562390fa70a37fa40b1305e\"\u003e\u003ccode\u003e71cf226\u003c/code\u003e\u003c/a\u003e v6-beta (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/069c6959146423d11cd0184e6accf28f9d45f06e\"\u003e\u003ccode\u003e069c695\u003c/code\u003e\u003c/a\u003e Persist creds to a separate file (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2286\"\u003e#2286\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493\"\u003e\u003ccode\u003eff7abcd\u003c/code\u003e\u003c/a\u003e Update README to include Node.js 24 support details and requirements (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2248\"\u003e#2248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/checkout/compare/v5.0.0...v6.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/setup-node` from 5.0.0 to 6.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/setup-node/releases\"\u003eactions/setup-node's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking Changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eLimit automatic caching to npm, update workflows and documentation by \u003ca href=\"https://github.com/priyagupta108\"\u003e\u003ccode\u003e@​priyagupta108\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1374\"\u003eactions/setup-node#1374\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eDependency Upgrades\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade ts-jest from 29.1.2 to 29.4.1 and document breaking changes in v5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1336\"\u003e#1336\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 2.8.8 to 3.6.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1334\"\u003e#1334\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions/publish-action from 0.3.0 to 0.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1362\"\u003e#1362\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-node/compare/v5...v6.0.0\"\u003ehttps://github.com/actions/setup-node/compare/v5...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/2028fbc5c25fe9cf00d9f06a71cc4710d4507903\"\u003e\u003ccode\u003e2028fbc\u003c/code\u003e\u003c/a\u003e Limit automatic caching to npm, update workflows and documentation (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1374\"\u003e#1374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/13427813f706a0f6c9b74603b31103c40ab1c35a\"\u003e\u003ccode\u003e1342781\u003c/code\u003e\u003c/a\u003e Bump actions/publish-action from 0.3.0 to 0.4.0 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1362\"\u003e#1362\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/89d709d423dc495668cd762a18dd4a070611be3f\"\u003e\u003ccode\u003e89d709d\u003c/code\u003e\u003c/a\u003e Bump prettier from 2.8.8 to 3.6.2 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1334\"\u003e#1334\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/cd2651c46231bc0d6f48d6b34433b845331235fe\"\u003e\u003ccode\u003ecd2651c\u003c/code\u003e\u003c/a\u003e Bump ts-jest from 29.1.2 to 29.4.1 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1336\"\u003e#1336\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/setup-node/compare/v5.0.0...v6.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `JS-DevTools/npm-publish` from 4.0.1 to 4.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow \u003ccode\u003etoken\u003c/code\u003e to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e) (612922f), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/1fe17a093199d8fabed85cbcc6f0f79eb06470da\"\u003e\u003ccode\u003e1fe17a0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3817acc494b26be8b714d1975f3b963e8a921bd0\"\u003e\u003ccode\u003e3817acc\u003c/code\u003e\u003c/a\u003e fix(action): remove erroneous required \u003ccode\u003etoken\u003c/code\u003e input check (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/248\"\u003e#248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/85420f21fe2984e61cdb5211be069f8398fe3847\"\u003e\u003ccode\u003e85420f2\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/612922fd9545cba1edf1aacc7d73ab157c7a8f53\"\u003e\u003ccode\u003e612922f\u003c/code\u003e\u003c/a\u003e feat: allow token to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/v4.0.1...v4.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `googleapis/release-please-action` from 4.3.0 to 4.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/googleapis/release-please-action/releases\"\u003egoogleapis/release-please-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.4.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/compare/v4.3.0...v4.4.0\"\u003e4.4.0\u003c/a\u003e (2025-10-09)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd ability to select versioning-strategy and release-as (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1121\"\u003e#1121\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/ee0f5bae453367755be0c4340193531b3f538374\"\u003eee0f5ba\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003echangelog-host\u003c/code\u003e parameter ignored when using manifest configuration (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1151\"\u003e#1151\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/535c4130c1030110bdacd1b3076f98c046c3a227\"\u003e535c413\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump mocha from 11.7.1 to 11.7.2 in the npm_and_yarn group across 1 directory (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1149\"\u003e#1149\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/3612a99d75bd7a010bb03d6e2ee3e2392b7392fb\"\u003e3612a99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump release-please from 17.1.2 to 17.1.3 (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1158\"\u003e#1158\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/66fbfe9439cb7a3660ecdc00d42573ef0bd00764\"\u003e66fbfe9\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/googleapis/release-please-action/blob/main/CHANGELOG.md\"\u003egoogleapis/release-please-action's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/compare/v4.3.0...v4.4.0\"\u003e4.4.0\u003c/a\u003e (2025-10-09)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd ability to select versioning-strategy and release-as (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1121\"\u003e#1121\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/ee0f5bae453367755be0c4340193531b3f538374\"\u003eee0f5ba\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003echangelog-host\u003c/code\u003e parameter ignored when using manifest configuration (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1151\"\u003e#1151\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/535c4130c1030110bdacd1b3076f98c046c3a227\"\u003e535c413\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump mocha from 11.7.1 to 11.7.2 in the npm_and_yarn group across 1 directory (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1149\"\u003e#1149\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/3612a99d75bd7a010bb03d6e2ee3e2392b7392fb\"\u003e3612a99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump release-please from 17.1.2 to 17.1.3 (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1158\"\u003e#1158\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/66fbfe9439cb7a3660ecdc00d42573ef0bd00764\"\u003e66fbfe9\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/16a9c90856f42705d54a6fda1823352bdc62cf38\"\u003e\u003ccode\u003e16a9c90\u003c/code\u003e\u003c/a\u003e chore(main): release 4.4.0 (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1156\"\u003e#1156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/e5c2aa4f6acd6194e00632c8f262cff67ae17873\"\u003e\u003ccode\u003ee5c2aa4\u003c/code\u003e\u003c/a\u003e chore: build dist (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1159\"\u003e#1159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/66fbfe9439cb7a3660ecdc00d42573ef0bd00764\"\u003e\u003ccode\u003e66fbfe9\u003c/code\u003e\u003c/a\u003e fix: bump release-please from 17.1.2 to 17.1.3 (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1158\"\u003e#1158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/4cd397a333e5500c1683589c277f56a3c10990e6\"\u003e\u003ccode\u003e4cd397a\u003c/code\u003e\u003c/a\u003e chore: build dist (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1152\"\u003e#1152\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/ee0f5bae453367755be0c4340193531b3f538374\"\u003e\u003ccode\u003eee0f5ba\u003c/code\u003e\u003c/a\u003e feat: add ability to select versioning-strategy and release-as (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1121\"\u003e#1121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/535c4130c1030110bdacd1b3076f98c046c3a227\"\u003e\u003ccode\u003e535c413\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003echangelog-host\u003c/code\u003e parameter ignored when using manifest configuration (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/3612a99d75bd7a010bb03d6e2ee3e2392b7392fb\"\u003e\u003ccode\u003e3612a99\u003c/code\u003e\u003c/a\u003e fix: bump mocha from 11.7.1 to 11.7.2 in the npm_and_yarn group across 1 dire...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/15209c45fcfd128badf82abd8b1c25c1c5726a05\"\u003e\u003ccode\u003e15209c4\u003c/code\u003e\u003c/a\u003e chore: verify body contents when running tests (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1148\"\u003e#1148\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/bf9034945a62263b06cccfb6549caf19f049b589\"\u003e\u003ccode\u003ebf90349\u003c/code\u003e\u003c/a\u003e docs: Add \u003ccode\u003ebody\u003c/code\u003e to Outputs (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1129\"\u003e#1129\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/1cfb21c8d4bdaaa3dd6f20f3f643b4a36cc5cd98\"\u003e\u003ccode\u003e1cfb21c\u003c/code\u003e\u003c/a\u003e docs: adds missing github action permissions to README (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1108\"\u003e#1108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/googleapis/release-please-action/compare/v4.3.0...v4.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/nwjs/grunt-nw-builder/pull/277","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/nwjs%2Fgrunt-nw-builder/issues/277","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/277/packages"},{"uuid":"3617445981","node_id":"PR_kwDOQUQz9c6zB4lW","number":10,"state":"closed","title":"ci:(deps): bump the github-actions group with 3 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-11-12T17:08:31.000Z","author_association":null,"state_reason":null,"created_at":"2025-11-12T17:07:40.000Z","updated_at":"2025-11-12T17:08:33.000Z","time_to_close":51,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"ci:(deps): bump","group_name":"github-actions","update_count":3,"packages":[{"name":"actions/checkout","old_version":"4","new_version":"5","repository_url":"https://github.com/actions/checkout"},{"name":"actions/setup-node","old_version":"4","new_version":"6","repository_url":"https://github.com/actions/setup-node"},{"name":"JS-DevTools/npm-publish","old_version":"3","new_version":"4","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"[//]: # (dependabot-start)\n⚠️  **Dependabot is rebasing this PR** ⚠️ \n\nRebasing might not happen immediately, so don't worry if this takes some time.\n\nNote: if you make any changes to this PR yourself, they will take precedence over the rebase.\n\n---\n\n[//]: # (dependabot-end)\n\nBumps the github-actions group with 3 updates: [actions/checkout](https://github.com/actions/checkout), [actions/setup-node](https://github.com/actions/setup-node) and [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish).\n\nUpdates `actions/checkout` from 4 to 5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/releases\"\u003eactions/checkout's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare v5.0.0 release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2238\"\u003eactions/checkout#2238\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v5.0.0\"\u003ehttps://github.com/actions/checkout/compare/v4...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdjust positioning of user email note and permissions heading by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2044\"\u003eactions/checkout#2044\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CODEOWNERS for actions by \u003ca href=\"https://github.com/TingluoHuang\"\u003e\u003ccode\u003e@​TingluoHuang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2224\"\u003eactions/checkout#2224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate package dependencies by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare release v4.3.0 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2237\"\u003eactions/checkout#2237\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v4.3.0\"\u003ehttps://github.com/actions/checkout/compare/v4...v4.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eurl-helper.ts\u003c/code\u003e now leverages well-known environment variables by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1941\"\u003eactions/checkout#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand unit test coverage for \u003ccode\u003eisGhes\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1946\"\u003eactions/checkout#1946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4.2.1...v4.2.2\"\u003ehttps://github.com/actions/checkout/compare/v4.2.1...v4.2.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck out other refs/* by commit if provided, fall back to ref by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1924\"\u003eactions/checkout#1924\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1919\"\u003eactions/checkout#1919\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4.2.0...v4.2.1\"\u003ehttps://github.com/actions/checkout/compare/v4.2.0...v4.2.1\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/blob/main/CHANGELOG.md\"\u003eactions/checkout's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003eV5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eV4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdjust positioning of user email note and permissions heading by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2044\"\u003eactions/checkout#2044\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CODEOWNERS for actions by \u003ca href=\"https://github.com/TingluoHuang\"\u003e\u003ccode\u003e@​TingluoHuang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2224\"\u003eactions/checkout#2224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate package dependencies by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eurl-helper.ts\u003c/code\u003e now leverages well-known environment variables by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1941\"\u003eactions/checkout#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand unit test coverage for \u003ccode\u003eisGhes\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1946\"\u003eactions/checkout#1946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck out other refs/* by commit if provided, fall back to ref by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1924\"\u003eactions/checkout#1924\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ref and Commit outputs by \u003ca href=\"https://github.com/lucacome\"\u003e\u003ccode\u003e@​lucacome\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1180\"\u003eactions/checkout#1180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e- \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1777\"\u003eactions/checkout#1777\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1872\"\u003eactions/checkout#1872\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump the minor-npm-dependencies group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1739\"\u003eactions/checkout#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1697\"\u003eactions/checkout#1697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck out other refs/* by commit by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1774\"\u003eactions/checkout#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/checkout's own workflows to a known, good, stable version. by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1776\"\u003eactions/checkout#1776\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck platform to set archive extension appropriately by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1732\"\u003eactions/checkout#1732\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate NPM dependencies by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1703\"\u003eactions/checkout#1703\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github/codeql-action from 2 to 3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1694\"\u003eactions/checkout#1694\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 1 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1696\"\u003eactions/checkout#1696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/upload-artifact from 2 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1695\"\u003eactions/checkout#1695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME: Suggest \u003ccode\u003euser.email\u003c/code\u003e to be \u003ccode\u003e41898282+github-actions[bot]@users.noreply.github.com\u003c/code\u003e by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1707\"\u003eactions/checkout#1707\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDisable \u003ccode\u003eextensions.worktreeConfig\u003c/code\u003e when disabling \u003ccode\u003esparse-checkout\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1692\"\u003eactions/checkout#1692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd dependabot config by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1688\"\u003eactions/checkout#1688\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the minor-actions-dependencies group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1693\"\u003eactions/checkout#1693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump word-wrap from 1.2.3 to 1.2.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1643\"\u003eactions/checkout#1643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/08c6903cd8c0fde910a37f88322edcfb5dd907a8\"\u003e\u003ccode\u003e08c6903\u003c/code\u003e\u003c/a\u003e Prepare v5.0.0 release (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/9f265659d3bb64ab1440b03b12f4d47a24320917\"\u003e\u003ccode\u003e9f26565\u003c/code\u003e\u003c/a\u003e Update actions checkout to use node 24 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2226\"\u003e#2226\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/checkout/compare/v4...v5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/setup-node` from 4 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/setup-node/releases\"\u003eactions/setup-node's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking Changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eLimit automatic caching to npm, update workflows and documentation by \u003ca href=\"https://github.com/priyagupta108\"\u003e\u003ccode\u003e@​priyagupta108\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1374\"\u003eactions/setup-node#1374\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eDependency Upgrades\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade ts-jest from 29.1.2 to 29.4.1 and document breaking changes in v5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1336\"\u003e#1336\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 2.8.8 to 3.6.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1334\"\u003e#1334\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions/publish-action from 0.3.0 to 0.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1362\"\u003e#1362\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-node/compare/v5...v6.0.0\"\u003ehttps://github.com/actions/setup-node/compare/v5...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnhance caching in setup-node with automatic package manager detection by \u003ca href=\"https://github.com/priya-kinthali\"\u003e\u003ccode\u003e@​priya-kinthali\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1348\"\u003eactions/setup-node#1348\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThis update, introduces automatic caching when a valid \u003ccode\u003epackageManager\u003c/code\u003e field is present in your \u003ccode\u003epackage.json\u003c/code\u003e. This aims to improve workflow performance and make dependency management more seamless.\nTo disable this automatic caching, set \u003ccode\u003epackage-manager-cache: false\u003c/code\u003e\u003c/p\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003esteps:\n- uses: actions/checkout@v5\n- uses: actions/setup-node@v5\n  with:\n    package-manager-cache: false\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade action to use node24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1325\"\u003eactions/setup-node#1325\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eMake sure your runner is on version v2.327.1 or later to ensure compatibility with this release. \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eSee Release Notes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eDependency Upgrades\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​octokit/request-error\u003c/code\u003e and \u003ccode\u003e@​actions/github\u003c/code\u003e by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1227\"\u003eactions/setup-node#1227\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade uuid from 9.0.1 to 11.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1273\"\u003eactions/setup-node#1273\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade undici from 5.28.5 to 5.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1295\"\u003eactions/setup-node#1295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade form-data to bring in fix for critical vulnerability by \u003ca href=\"https://github.com/gowridurgad\"\u003e\u003ccode\u003e@​gowridurgad\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1332\"\u003eactions/setup-node#1332\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1345\"\u003eactions/setup-node#1345\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/priya-kinthali\"\u003e\u003ccode\u003e@​priya-kinthali\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1348\"\u003eactions/setup-node#1348\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1325\"\u003eactions/setup-node#1325\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-node/compare/v4...v5.0.0\"\u003ehttps://github.com/actions/setup-node/compare/v4...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.4.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/2028fbc5c25fe9cf00d9f06a71cc4710d4507903\"\u003e\u003ccode\u003e2028fbc\u003c/code\u003e\u003c/a\u003e Limit automatic caching to npm, update workflows and documentation (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1374\"\u003e#1374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/13427813f706a0f6c9b74603b31103c40ab1c35a\"\u003e\u003ccode\u003e1342781\u003c/code\u003e\u003c/a\u003e Bump actions/publish-action from 0.3.0 to 0.4.0 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1362\"\u003e#1362\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/89d709d423dc495668cd762a18dd4a070611be3f\"\u003e\u003ccode\u003e89d709d\u003c/code\u003e\u003c/a\u003e Bump prettier from 2.8.8 to 3.6.2 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1334\"\u003e#1334\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/cd2651c46231bc0d6f48d6b34433b845331235fe\"\u003e\u003ccode\u003ecd2651c\u003c/code\u003e\u003c/a\u003e Bump ts-jest from 29.1.2 to 29.4.1 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1336\"\u003e#1336\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/a0853c24544627f65ddf259abe73b1d18a591444\"\u003e\u003ccode\u003ea0853c2\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1345\"\u003e#1345\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/b7234cc9fe124f0f4932554b4e5284543083ae7b\"\u003e\u003ccode\u003eb7234cc\u003c/code\u003e\u003c/a\u003e Upgrade action to use node24 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1325\"\u003e#1325\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/d7a11313b581b306c961b506cfc8971208bb03f6\"\u003e\u003ccode\u003ed7a1131\u003c/code\u003e\u003c/a\u003e Enhance caching in setup-node with automatic package manager detection (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1348\"\u003e#1348\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/5e2628c959b9ade56971c0afcebbe5332d44b398\"\u003e\u003ccode\u003e5e2628c\u003c/code\u003e\u003c/a\u003e Bumps form-data (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1332\"\u003e#1332\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/65beceff8e91358525397bdce9103d999507ab03\"\u003e\u003ccode\u003e65becef\u003c/code\u003e\u003c/a\u003e Bump undici from 5.28.5 to 5.29.0 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1295\"\u003e#1295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/7e24a656e1c7a0d6f3eaef8d8e84ae379a5b035b\"\u003e\u003ccode\u003e7e24a65\u003c/code\u003e\u003c/a\u003e Bump uuid from 9.0.1 to 11.1.0 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1273\"\u003e#1273\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/setup-node/compare/v4...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `JS-DevTools/npm-publish` from 3 to 4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cp\u003eThe \u003ccode\u003ev4\u003c/code\u003e release updates the action runtime to Node 24, but there have been no usage changes to the action.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/immutable-releases\"\u003eImmutable releases\u003c/a\u003e have been enabled for this repository. As a security practice, we recommend pinning to an exact release:\u003c/p\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.0.0\n  with:\n    token: ${{ secrets.NPM_TOKEN }}\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe action now runs on Node 24 with npm 11\u003c/li\u003e\n\u003cli\u003eThe library and CLI now require Node \u0026gt;= 20, Node 16 and 18 are no longer supported\u003c/li\u003e\n\u003cli\u003eThe library is now ESM only\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate action runtime to Node 24 (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/231\"\u003e#231\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/0b36106dbd9cd4915500664889efae23fbef0792\"\u003e0b36106\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/238\"\u003e#238\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/314ae618152af5664459e83148cbc2a6cccae17a\"\u003e314ae61\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update tar and semver dependencies (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/194\"\u003e#194\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/cd26c94e5e1d0969f83432de537ea838d9c8ce4a\"\u003ecd26c94\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate dry-run and publish conflict logic for npm\u0026gt;=10 (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/232\"\u003e#232\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/62716ea038d8ca7356d207d14f5bdebbc57602ac\"\u003e62716ea\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewindows:\u003c/strong\u003e allow spawning \u003ccode\u003enpm\u003c/code\u003e cli on windows (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/199\"\u003e#199\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/f45e793c85d8f38bbd07848de2afe3b1c58ff985\"\u003ef45e793\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/198\"\u003e#198\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCode Refactoring\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eswitch module format to ESM (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/234\"\u003e#234\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e081941d3305d566416be9c3e8f43fe643c10623\"\u003ee081941\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.1.1\u003c/h2\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einclude registry URL pathname in npm config (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/186\"\u003e#186\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edry-run\u003c/strong\u003e: always print publish results in dry run (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/185\"\u003e#185\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/184\"\u003e#184\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePerformance Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaction\u003c/strong\u003e: decrease bundle size (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/166\"\u003e#166\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.1\u003c/h2\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eerrors\u003c/strong\u003e: improve message when version validation fails (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/161\"\u003e#161\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/160\"\u003e#160\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/JS-DevTools/npm-publish/blob/main/CHANGELOG.md\"\u003eJS-DevTools/npm-publish's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChange Log (Archived)\u003c/h1\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/JS-DevTools/npm-publish/releases\"\u003ereleases\u003c/a\u003e for current change log.\u003c/p\u003e\n\u003chr /\u003e\n\u003cp\u003eAll notable changes will be documented in this file.\nNPM Publish adheres to \u003ca href=\"http://semver.org/\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/tree/v1.4.0\"\u003ev1.4.0\u003c/a\u003e (2020-10-02)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdded support NPM's \u003ccode\u003e--tag\u003c/code\u003e argument, which allows packages to be published to a named tag that can then be installed using \u003ccode\u003enpm install \u0026lt;package-name\u0026gt;@\u0026lt;tag\u0026gt;\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded support for NPM's \u003ccode\u003e--access\u003c/code\u003e argument, which controls whether scoped packages are publicly accessible, or restricted to members of your NPM organization\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/compare/v1.3.0...v1.4.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/tree/v1.3.0\"\u003ev1.3.0\u003c/a\u003e (2020-10-01)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNPM-Publish can now successfully publish a brand-new package to NPM. Previously it failed because it couldn't determine the previous package version. ([PR \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/12\"\u003e#12\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/pull/12\"\u003eJS-DevTools/npm-publish#12\u003c/a\u003e) from \u003ca href=\"https://github.com/ZitRos\"\u003e\u003ccode\u003e@​ZitRos\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/compare/v1.2.0...v1.3.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/1fe17a093199d8fabed85cbcc6f0f79eb06470da\"\u003e\u003ccode\u003e1fe17a0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3817acc494b26be8b714d1975f3b963e8a921bd0\"\u003e\u003ccode\u003e3817acc\u003c/code\u003e\u003c/a\u003e fix(action): remove erroneous required \u003ccode\u003etoken\u003c/code\u003e input check (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/248\"\u003e#248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/85420f21fe2984e61cdb5211be069f8398fe3847\"\u003e\u003ccode\u003e85420f2\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/612922fd9545cba1edf1aacc7d73ab157c7a8f53\"\u003e\u003ccode\u003e612922f\u003c/code\u003e\u003c/a\u003e feat: allow token to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/ad693561f8a5b5d4c76f14407da60aa15cb10f90\"\u003e\u003ccode\u003ead69356\u003c/code\u003e\u003c/a\u003e chore(release): 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/c13368de7b925a17078a729178f2c4b632749851\"\u003e\u003ccode\u003ec13368d\u003c/code\u003e\u003c/a\u003e fix: do not suppress E409 from \u003ccode\u003enpm publish\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/246\"\u003e#246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/b6b0bb6ebf081acc55469774087b431d6034e6d7\"\u003e\u003ccode\u003eb6b0bb6\u003c/code\u003e\u003c/a\u003e docs: add usage warning to steer folks to first-party tools (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/241\"\u003e#241\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d9dc932de083f0e6de6a50f0d1097a7142c3751b\"\u003e\u003ccode\u003ed9dc932\u003c/code\u003e\u003c/a\u003e chore(release): 4.0.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/v3...v4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/WDaan/n8n-nodes-openrouter-datadog/pull/10","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/WDaan%2Fn8n-nodes-openrouter-datadog/issues/10","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10/packages"},{"uuid":"3533212100","node_id":"PR_kwDOJZ2vq86urD8F","number":742,"state":"open","title":"Bump JS-DevTools/npm-publish from 3 to 4","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-10-20T17:01:48.000Z","updated_at":"2025-10-20T17:02:17.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"3","new_version":"4","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 3 to 4.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cp\u003eThe \u003ccode\u003ev4\u003c/code\u003e release updates the action runtime to Node 24, but there have been no usage changes to the action.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/immutable-releases\"\u003eImmutable releases\u003c/a\u003e have been enabled for this repository. As a security practice, we recommend pinning to an exact release:\u003c/p\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.0.0\n  with:\n    token: ${{ secrets.NPM_TOKEN }}\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe action now runs on Node 24 with npm 11\u003c/li\u003e\n\u003cli\u003eThe library and CLI now require Node \u0026gt;= 20, Node 16 and 18 are no longer supported\u003c/li\u003e\n\u003cli\u003eThe library is now ESM only\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate action runtime to Node 24 (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/231\"\u003e#231\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/0b36106dbd9cd4915500664889efae23fbef0792\"\u003e0b36106\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/238\"\u003e#238\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/314ae618152af5664459e83148cbc2a6cccae17a\"\u003e314ae61\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update tar and semver dependencies (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/194\"\u003e#194\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/cd26c94e5e1d0969f83432de537ea838d9c8ce4a\"\u003ecd26c94\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate dry-run and publish conflict logic for npm\u0026gt;=10 (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/232\"\u003e#232\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/62716ea038d8ca7356d207d14f5bdebbc57602ac\"\u003e62716ea\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewindows:\u003c/strong\u003e allow spawning \u003ccode\u003enpm\u003c/code\u003e cli on windows (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/199\"\u003e#199\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/f45e793c85d8f38bbd07848de2afe3b1c58ff985\"\u003ef45e793\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/198\"\u003e#198\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCode Refactoring\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eswitch module format to ESM (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/234\"\u003e#234\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e081941d3305d566416be9c3e8f43fe643c10623\"\u003ee081941\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.1.1\u003c/h2\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einclude registry URL pathname in npm config (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/186\"\u003e#186\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edry-run\u003c/strong\u003e: always print publish results in dry run (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/185\"\u003e#185\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/184\"\u003e#184\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePerformance Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaction\u003c/strong\u003e: decrease bundle size (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/166\"\u003e#166\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.1\u003c/h2\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eerrors\u003c/strong\u003e: improve message when version validation fails (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/161\"\u003e#161\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/160\"\u003e#160\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/JS-DevTools/npm-publish/blob/main/CHANGELOG.md\"\u003eJS-DevTools/npm-publish's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChange Log (Archived)\u003c/h1\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/JS-DevTools/npm-publish/releases\"\u003ereleases\u003c/a\u003e for current change log.\u003c/p\u003e\n\u003chr /\u003e\n\u003cp\u003eAll notable changes will be documented in this file.\nNPM Publish adheres to \u003ca href=\"http://semver.org/\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/tree/v1.4.0\"\u003ev1.4.0\u003c/a\u003e (2020-10-02)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdded support NPM's \u003ccode\u003e--tag\u003c/code\u003e argument, which allows packages to be published to a named tag that can then be installed using \u003ccode\u003enpm install \u0026lt;package-name\u0026gt;@\u0026lt;tag\u0026gt;\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded support for NPM's \u003ccode\u003e--access\u003c/code\u003e argument, which controls whether scoped packages are publicly accessible, or restricted to members of your NPM organization\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/compare/v1.3.0...v1.4.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/tree/v1.3.0\"\u003ev1.3.0\u003c/a\u003e (2020-10-01)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNPM-Publish can now successfully publish a brand-new package to NPM. Previously it failed because it couldn't determine the previous package version. ([PR \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/12\"\u003e#12\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/pull/12\"\u003eJS-DevTools/npm-publish#12\u003c/a\u003e) from \u003ca href=\"https://github.com/ZitRos\"\u003e\u003ccode\u003e@​ZitRos\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/compare/v1.2.0...v1.3.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/1fe17a093199d8fabed85cbcc6f0f79eb06470da\"\u003e\u003ccode\u003e1fe17a0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3817acc494b26be8b714d1975f3b963e8a921bd0\"\u003e\u003ccode\u003e3817acc\u003c/code\u003e\u003c/a\u003e fix(action): remove erroneous required \u003ccode\u003etoken\u003c/code\u003e input check (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/248\"\u003e#248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/85420f21fe2984e61cdb5211be069f8398fe3847\"\u003e\u003ccode\u003e85420f2\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/612922fd9545cba1edf1aacc7d73ab157c7a8f53\"\u003e\u003ccode\u003e612922f\u003c/code\u003e\u003c/a\u003e feat: allow token to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/ad693561f8a5b5d4c76f14407da60aa15cb10f90\"\u003e\u003ccode\u003ead69356\u003c/code\u003e\u003c/a\u003e chore(release): 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/c13368de7b925a17078a729178f2c4b632749851\"\u003e\u003ccode\u003ec13368d\u003c/code\u003e\u003c/a\u003e fix: do not suppress E409 from \u003ccode\u003enpm publish\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/246\"\u003e#246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/b6b0bb6ebf081acc55469774087b431d6034e6d7\"\u003e\u003ccode\u003eb6b0bb6\u003c/code\u003e\u003c/a\u003e docs: add usage warning to steer folks to first-party tools (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/241\"\u003e#241\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d9dc932de083f0e6de6a50f0d1097a7142c3751b\"\u003e\u003ccode\u003ed9dc932\u003c/code\u003e\u003c/a\u003e chore(release): 4.0.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/v3...v4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=3\u0026new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/xmtp/xmtp-react-native/pull/742","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/xmtp%2Fxmtp-react-native/issues/742","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/742/packages"},{"uuid":"2922522505","node_id":"PR_kwDOK_Gl2s6uMieJ","number":89,"state":"closed","title":"Bump JS-DevTools/npm-publish from 3 to 4","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-10-17T02:01:35.397Z","updated_at":"2026-03-14T04:30:32.020Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"3","new_version":"4","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 3 to 4.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cp\u003eThe \u003ccode\u003ev4\u003c/code\u003e release updates the action runtime to Node 24, but there have been no usage changes to the action.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/immutable-releases\"\u003eImmutable releases\u003c/a\u003e have been enabled for this repository. As a security practice, we recommend pinning to an exact release:\u003c/p\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.0.0\n  with:\n    token: ${{ secrets.NPM_TOKEN }}\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe action now runs on Node 24 with npm 11\u003c/li\u003e\n\u003cli\u003eThe library and CLI now require Node \u0026gt;= 20, Node 16 and 18 are no longer supported\u003c/li\u003e\n\u003cli\u003eThe library is now ESM only\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate action runtime to Node 24 (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/231\"\u003e#231\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/0b36106dbd9cd4915500664889efae23fbef0792\"\u003e0b36106\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/238\"\u003e#238\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/314ae618152af5664459e83148cbc2a6cccae17a\"\u003e314ae61\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update tar and semver dependencies (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/194\"\u003e#194\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/cd26c94e5e1d0969f83432de537ea838d9c8ce4a\"\u003ecd26c94\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate dry-run and publish conflict logic for npm\u0026gt;=10 (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/232\"\u003e#232\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/62716ea038d8ca7356d207d14f5bdebbc57602ac\"\u003e62716ea\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewindows:\u003c/strong\u003e allow spawning \u003ccode\u003enpm\u003c/code\u003e cli on windows (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/199\"\u003e#199\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/f45e793c85d8f38bbd07848de2afe3b1c58ff985\"\u003ef45e793\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/198\"\u003e#198\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCode Refactoring\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eswitch module format to ESM (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/234\"\u003e#234\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e081941d3305d566416be9c3e8f43fe643c10623\"\u003ee081941\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.1.1\u003c/h2\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einclude registry URL pathname in npm config (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/186\"\u003e#186\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edry-run\u003c/strong\u003e: always print publish results in dry run (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/185\"\u003e#185\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/184\"\u003e#184\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePerformance Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaction\u003c/strong\u003e: decrease bundle size (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/166\"\u003e#166\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.1\u003c/h2\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eerrors\u003c/strong\u003e: improve message when version validation fails (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/161\"\u003e#161\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/160\"\u003e#160\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/JS-DevTools/npm-publish/blob/main/CHANGELOG.md\"\u003eJS-DevTools/npm-publish's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChange Log (Archived)\u003c/h1\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/JS-DevTools/npm-publish/releases\"\u003ereleases\u003c/a\u003e for current change log.\u003c/p\u003e\n\u003chr /\u003e\n\u003cp\u003eAll notable changes will be documented in this file.\nNPM Publish adheres to \u003ca href=\"http://semver.org/\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/tree/v1.4.0\"\u003ev1.4.0\u003c/a\u003e (2020-10-02)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdded support NPM's \u003ccode\u003e--tag\u003c/code\u003e argument, which allows packages to be published to a named tag that can then be installed using \u003ccode\u003enpm install \u0026lt;package-name\u0026gt;@\u0026lt;tag\u0026gt;\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded support for NPM's \u003ccode\u003e--access\u003c/code\u003e argument, which controls whether scoped packages are publicly accessible, or restricted to members of your NPM organization\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/compare/v1.3.0...v1.4.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/tree/v1.3.0\"\u003ev1.3.0\u003c/a\u003e (2020-10-01)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNPM-Publish can now successfully publish a brand-new package to NPM. Previously it failed because it couldn't determine the previous package version. ([PR \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/12\"\u003e#12\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/pull/12\"\u003eJS-DevTools/npm-publish#12\u003c/a\u003e) from \u003ca href=\"https://github.com/ZitRos\"\u003e\u003ccode\u003e@​ZitRos\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/compare/v1.2.0...v1.3.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/1fe17a093199d8fabed85cbcc6f0f79eb06470da\"\u003e\u003ccode\u003e1fe17a0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3817acc494b26be8b714d1975f3b963e8a921bd0\"\u003e\u003ccode\u003e3817acc\u003c/code\u003e\u003c/a\u003e fix(action): remove erroneous required \u003ccode\u003etoken\u003c/code\u003e input check (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/248\"\u003e#248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/85420f21fe2984e61cdb5211be069f8398fe3847\"\u003e\u003ccode\u003e85420f2\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/612922fd9545cba1edf1aacc7d73ab157c7a8f53\"\u003e\u003ccode\u003e612922f\u003c/code\u003e\u003c/a\u003e feat: allow token to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/ad693561f8a5b5d4c76f14407da60aa15cb10f90\"\u003e\u003ccode\u003ead69356\u003c/code\u003e\u003c/a\u003e chore(release): 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/c13368de7b925a17078a729178f2c4b632749851\"\u003e\u003ccode\u003ec13368d\u003c/code\u003e\u003c/a\u003e fix: do not suppress E409 from \u003ccode\u003enpm publish\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/246\"\u003e#246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/b6b0bb6ebf081acc55469774087b431d6034e6d7\"\u003e\u003ccode\u003eb6b0bb6\u003c/code\u003e\u003c/a\u003e docs: add usage warning to steer folks to first-party tools (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/241\"\u003e#241\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d9dc932de083f0e6de6a50f0d1097a7142c3751b\"\u003e\u003ccode\u003ed9dc932\u003c/code\u003e\u003c/a\u003e chore(release): 4.0.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/v3...v4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=3\u0026new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/ng-galien/node-red-pulsar/pull/89","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ng-galien%2Fnode-red-pulsar/issues/89","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/89/packages"}],"issue_packages":[{"old_version":"3.1.1","new_version":"4.1.5","update_type":"major","path":null,"pr_created_at":"2026-04-26T04:33:04.000Z","version_change":"3.1.1 → 4.1.5","issue":{"uuid":"4330024076","node_id":"PR_kwDODWjvzc7Vrn6K","number":409,"state":"open","title":"chore(deps): bump the actions group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-26T04:33:04.000Z","updated_at":"2026-04-26T04:33:30.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"actions","update_count":6,"packages":[{"name":"actions/setup-node","old_version":"6.3.0","new_version":"6.4.0","repository_url":"https://github.com/actions/setup-node"},{"name":"actions/upload-artifact","old_version":"7.0.0","new_version":"7.0.1","repository_url":"https://github.com/actions/upload-artifact"},{"name":"codecov/codecov-action","old_version":"5.5.2","new_version":"6.0.0","repository_url":"https://github.com/codecov/codecov-action"},{"name":"github/codeql-action","old_version":"4.32.6","new_version":"4.35.2","repository_url":"https://github.com/github/codeql-action"},{"name":"actions/download-artifact","old_version":"8.0.0","new_version":"8.0.1","repository_url":"https://github.com/actions/download-artifact"},{"name":"JS-DevTools/npm-publish","old_version":"3.1.1","new_version":"4.1.5","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps the actions group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [actions/setup-node](https://github.com/actions/setup-node) | `6.3.0` | `6.4.0` |\n| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `7.0.0` | `7.0.1` |\n| [codecov/codecov-action](https://github.com/codecov/codecov-action) | `5.5.2` | `6.0.0` |\n| [github/codeql-action](https://github.com/github/codeql-action) | `4.32.6` | `4.35.2` |\n| [actions/download-artifact](https://github.com/actions/download-artifact) | `8.0.0` | `8.0.1` |\n| [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) | `3.1.1` | `4.1.5` |\n\n\nUpdates `actions/setup-node` from 6.3.0 to 6.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/setup-node/releases\"\u003eactions/setup-node's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eDependency updates:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade \u003ca href=\"https://github.com/actions\"\u003e\u003ccode\u003e@​actions\u003c/code\u003e\u003c/a\u003e dependencies by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1525\"\u003eactions/setup-node#1525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Node.js versions in versions.yml and bump package to v6.4.0  by \u003ca href=\"https://github.com/priya-kinthali\"\u003e\u003ccode\u003e@​priya-kinthali\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1533\"\u003eactions/setup-node#1533\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1525\"\u003eactions/setup-node#1525\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-node/compare/v6...v6.4.0\"\u003ehttps://github.com/actions/setup-node/compare/v6...v6.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e\"\u003e\u003ccode\u003e48b55a0\u003c/code\u003e\u003c/a\u003e Update Node.js versions in versions.yml and bump package to v6.4.0 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1533\"\u003e#1533\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/ab72c7e7eba0eaa11f8cab0f5679243900c2cac9\"\u003e\u003ccode\u003eab72c7e\u003c/code\u003e\u003c/a\u003e Upgrade \u003ca href=\"https://github.com/actions\"\u003e\u003ccode\u003e@​actions\u003c/code\u003e\u003c/a\u003e dependencies (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1525\"\u003e#1525\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/setup-node/compare/53b83947a5a98c8d113130e565377fae1a50d02f...48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/upload-artifact` from 7.0.0 to 7.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/upload-artifact/releases\"\u003eactions/upload-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate the readme with direct upload details by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/795\"\u003eactions/upload-artifact#795\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReadme: bump all the example versions to v7 by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/796\"\u003eactions/upload-artifact#796\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInclude changes in typespec/ts-http-runtime 0.3.5 by \u003ca href=\"https://github.com/yacaovsnc\"\u003e\u003ccode\u003e@​yacaovsnc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/797\"\u003eactions/upload-artifact#797\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/upload-artifact/compare/v7...v7.0.1\"\u003ehttps://github.com/actions/upload-artifact/compare/v7...v7.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/043fb46d1a93c77aae656e7c1c64a875d1fc6a0a\"\u003e\u003ccode\u003e043fb46\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/797\"\u003e#797\u003c/a\u003e from actions/yacaovsnc/update-dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/634250c1388765ea7ed0f053e636f1f399000b94\"\u003e\u003ccode\u003e634250c\u003c/code\u003e\u003c/a\u003e Include changes in typespec/ts-http-runtime 0.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/e454baaac2be505c9450e11b8f3215c6fc023ce8\"\u003e\u003ccode\u003ee454baa\u003c/code\u003e\u003c/a\u003e Readme: bump all the example versions to v7 (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/796\"\u003e#796\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/74fad66b98a6d799dc004d3353ccd0e6f6b2530e\"\u003e\u003ccode\u003e74fad66\u003c/code\u003e\u003c/a\u003e Update the readme with direct upload details (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/upload-artifact/compare/bbbca2ddaa5d8feaa63e36b76fdaad77386f024f...043fb46d1a93c77aae656e7c1c64a875d1fc6a0a\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `codecov/codecov-action` from 5.5.2 to 6.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/codecov/codecov-action/releases\"\u003ecodecov/codecov-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003e⚠️ This version introduces support for node24 which make cause breaking changes for systems that do not currently support node24. ⚠️\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;Revert \u0026quot;build(deps): bump actions/github-script from 7.0.1 to 8.0.0\u0026quot;\u0026quot; by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1929\"\u003ecodecov/codecov-action#1929\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTh/6.0.0 by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1928\"\u003ecodecov/codecov-action#1928\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.4...v6.0.0\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.4...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.4\u003c/h2\u003e\n\u003cp\u003eThis is a mirror of \u003ccode\u003ev5.5.2\u003c/code\u003e. \u003ccode\u003ev6\u003c/code\u003e will be released which requires \u003ccode\u003enode24\u003c/code\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRevert \u0026quot;build(deps): bump actions/github-script from 7.0.1 to 8.0.0\u0026quot; by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1926\"\u003ecodecov/codecov-action#1926\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(release): 5.5.4 by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1927\"\u003ecodecov/codecov-action#1927\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.3...v5.5.4\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.3...v5.5.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/github-script from 7.0.1 to 8.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1874\"\u003ecodecov/codecov-action#1874\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(release): bump to 5.5.3 by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1922\"\u003ecodecov/codecov-action#1922\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.2...v5.5.3\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.2...v5.5.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md\"\u003ecodecov/codecov-action's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.5.2\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.1\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: overwrite pr number on fork by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1871\"\u003ecodecov/codecov-action#1871\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.2 to 5.0.0 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1868\"\u003ecodecov/codecov-action#1868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.9 to 3.29.11 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1867\"\u003ecodecov/codecov-action#1867\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update to use local app/ dir by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1872\"\u003ecodecov/codecov-action#1872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix typo in README by \u003ca href=\"https://github.com/datalater\"\u003e\u003ccode\u003e@​datalater\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1866\"\u003ecodecov/codecov-action#1866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument a \u003ccode\u003ecodecov-cli\u003c/code\u003e version reference example by \u003ca href=\"https://github.com/webknjaz\"\u003e\u003ccode\u003e@​webknjaz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1774\"\u003ecodecov/codecov-action#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.29.9 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1861\"\u003ecodecov/codecov-action#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1833\"\u003ecodecov/codecov-action#1833\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.0\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat: upgrade wrapper to 0.2.4 by \u003ca href=\"https://github.com/jviall\"\u003e\u003ccode\u003e@​jviall\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1864\"\u003ecodecov/codecov-action#1864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/github-script by Git SHA by \u003ca href=\"https://github.com/martincostello\"\u003e\u003ccode\u003e@​martincostello\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1859\"\u003ecodecov/codecov-action#1859\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: check reqs exist by \u003ca href=\"https://github.com/joseph-sentry\"\u003e\u003ccode\u003e@​joseph-sentry\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1835\"\u003ecodecov/codecov-action#1835\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Typo in README by \u003ca href=\"https://github.com/spalmurray\"\u003e\u003ccode\u003e@​spalmurray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1838\"\u003ecodecov/codecov-action#1838\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Refine OIDC docs by \u003ca href=\"https://github.com/spalmurray\"\u003e\u003ccode\u003e@​spalmurray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1837\"\u003ecodecov/codecov-action#1837\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.18 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1829\"\u003ecodecov/codecov-action#1829\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.4.3\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.13 to 3.28.17 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1822\"\u003ecodecov/codecov-action#1822\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: OIDC on forks by \u003ca href=\"https://github.com/joseph-sentry\"\u003e\u003ccode\u003e@​joseph-sentry\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1823\"\u003ecodecov/codecov-action#1823\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.4.2\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/57e3a136b779b570ffcdbf80b3bdc90e7fab3de2\"\u003e\u003ccode\u003e57e3a13\u003c/code\u003e\u003c/a\u003e Th/6.0.0 (\u003ca href=\"https://redirect.github.com/codecov/codecov-action/issues/1928\"\u003e#1928\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/f67d33dda8a42b51c42a8318a1f66468119e898b\"\u003e\u003ccode\u003ef67d33d\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Revert \u0026quot;build(deps): bump actions/github-script from 7.0.1 to 8.0.0\u0026quot;\u0026quot;...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/75cd11691c0faa626561e295848008c8a7dddffe\"\u003e\u003ccode\u003e75cd116\u003c/code\u003e\u003c/a\u003e chore(release): 5.5.4 (\u003ca href=\"https://redirect.github.com/codecov/codecov-action/issues/1927\"\u003e#1927\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/87d39f4a2cec2673cf9505764fb20a38792ea722\"\u003e\u003ccode\u003e87d39f4\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;build(deps): bump actions/github-script from 7.0.1 to 8.0.0\u0026quot; (\u003ca href=\"https://redirect.github.com/codecov/codecov-action/issues/1926\"\u003e#1926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/1af58845a975a7985b0beb0cbe6fbbb71a41dbad\"\u003e\u003ccode\u003e1af5884\u003c/code\u003e\u003c/a\u003e chore(release): bump to 5.5.3 (\u003ca href=\"https://redirect.github.com/codecov/codecov-action/issues/1922\"\u003e#1922\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/c143300dea6c9a730986ff862c5bf4d458927ef8\"\u003e\u003ccode\u003ec143300\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/github-script from 7.0.1 to 8.0.0 (\u003ca href=\"https://redirect.github.com/codecov/codecov-action/issues/1874\"\u003e#1874\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/codecov/codecov-action/compare/671740ac38dd9b0130fbe1cec585b89eea48d3de...57e3a136b779b570ffcdbf80b3bdc90e7fab3de2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github/codeql-action` from 4.32.6 to 4.35.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/github/codeql-action/releases\"\u003egithub/codeql-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.35.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe undocumented TRAP cache cleanup feature that could be enabled using the \u003ccode\u003eCODEQL_ACTION_CLEANUP_TRAP_CACHES\u003c/code\u003e environment variable is deprecated and will be removed in May 2026. If you are affected by this, we recommend disabling TRAP caching by passing the \u003ccode\u003etrap-caching: false\u003c/code\u003e input to the \u003ccode\u003einit\u003c/code\u003e Action. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3795\"\u003e#3795\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe Git version 2.36.0 requirement for improved incremental analysis now only applies to repositories that contain submodules. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3789\"\u003e#3789\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePython analysis on GHES no longer extracts the standard library, relying instead on models of the standard library. This should result in significantly faster extraction and analysis times, while the effect on alerts should be minimal. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3794\"\u003e#3794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a bug in the validation of OIDC configurations for private registries that was added in CodeQL Action 4.33.0 / 3.33.0. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3807\"\u003e#3807\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.2\"\u003e2.25.2\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3823\"\u003e#3823\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.35.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect minimum required Git version for \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e: it should have been 2.36.0, not 2.11.0. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3781\"\u003e#3781\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.35.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduced the minimum Git version required for \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e from 2.38.0 to 2.11.0. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3767\"\u003e#3767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.1\"\u003e2.25.1\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3773\"\u003e#3773\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.34.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDowngrade default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3\"\u003e2.24.3\u003c/a\u003e due to issues with a small percentage of Actions and JavaScript analyses. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3762\"\u003e#3762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.34.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded an experimental change which disables TRAP caching when \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3569\"\u003e#3569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWe are rolling out improved incremental analysis to C/C++ analyses that use build mode \u003ccode\u003enone\u003c/code\u003e. We expect this rollout to be complete by the end of April 2026. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3584\"\u003e#3584\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.0\"\u003e2.25.0\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3585\"\u003e#3585\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.33.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUpcoming change: Starting April 2026, the CodeQL Action will skip collecting file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. Pull request analyses will log a warning about this upcoming change. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3562\"\u003e#3562\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eTo opt out of this change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRepositories owned by an organization:\u003c/strong\u003e Create a custom repository property with the name \u003ccode\u003egithub-codeql-file-coverage-on-prs\u003c/code\u003e and the type \u0026quot;True/false\u0026quot;, then set this property to \u003ccode\u003etrue\u003c/code\u003e in the repository's settings. For more information, see \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003eManaging custom properties for repositories in your organization\u003c/a\u003e. Alternatively, if you are using an advanced setup workflow, you can set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using default setup:\u003c/strong\u003e Switch to an advanced setup workflow and set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using advanced setup:\u003c/strong\u003e Set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3555\"\u003ea bug\u003c/a\u003e which caused the CodeQL Action to fail loading repository properties if a \u0026quot;Multi select\u0026quot; repository property was configured for the repository. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3557\"\u003e#3557\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eThe CodeQL Action now loads \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003ecustom repository properties\u003c/a\u003e on GitHub Enterprise Server, enabling the customization of features such as \u003ccode\u003egithub-codeql-disable-overlay\u003c/code\u003e that was previously only available on GitHub.com. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3559\"\u003e#3559\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eOnce \u003ca href=\"https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries\"\u003eprivate package registries\u003c/a\u003e can be configured with OIDC-based authentication for organizations, the CodeQL Action will now be able to accept such configurations. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3563\"\u003e#3563\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed the retry mechanism for database uploads. Previously this would fail with the error \u0026quot;Response body object should not be disturbed or locked\u0026quot;. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3564\"\u003e#3564\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eA warning is now emitted if the CodeQL Action detects a repository property whose name suggests that it relates to the CodeQL Action, but which is not one of the properties recognised by the current version of the CodeQL Action. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3570\"\u003e#3570\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/github/codeql-action/blob/main/CHANGELOG.md\"\u003egithub/codeql-action's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eCodeQL Action Changelog\u003c/h1\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/github/codeql-action/releases\"\u003ereleases page\u003c/a\u003e for the relevant changes to the CodeQL CLI and language packs.\u003c/p\u003e\n\u003ch2\u003e[UNRELEASED]\u003c/h2\u003e\n\u003cp\u003eNo user facing changes.\u003c/p\u003e\n\u003ch2\u003e4.35.2 - 15 Apr 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe undocumented TRAP cache cleanup feature that could be enabled using the \u003ccode\u003eCODEQL_ACTION_CLEANUP_TRAP_CACHES\u003c/code\u003e environment variable is deprecated and will be removed in May 2026. If you are affected by this, we recommend disabling TRAP caching by passing the \u003ccode\u003etrap-caching: false\u003c/code\u003e input to the \u003ccode\u003einit\u003c/code\u003e Action. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3795\"\u003e#3795\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe Git version 2.36.0 requirement for improved incremental analysis now only applies to repositories that contain submodules. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3789\"\u003e#3789\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePython analysis on GHES no longer extracts the standard library, relying instead on models of the standard library. This should result in significantly faster extraction and analysis times, while the effect on alerts should be minimal. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3794\"\u003e#3794\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed a bug in the validation of OIDC configurations for private registries that was added in CodeQL Action 4.33.0 / 3.33.0. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3807\"\u003e#3807\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.2\"\u003e2.25.2\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3823\"\u003e#3823\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.35.1 - 27 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix incorrect minimum required Git version for \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e: it should have been 2.36.0, not 2.11.0. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3781\"\u003e#3781\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.35.0 - 27 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReduced the minimum Git version required for \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e from 2.38.0 to 2.11.0. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3767\"\u003e#3767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.1\"\u003e2.25.1\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3773\"\u003e#3773\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.34.1 - 20 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDowngrade default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3\"\u003e2.24.3\u003c/a\u003e due to issues with a small percentage of Actions and JavaScript analyses. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3762\"\u003e#3762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.34.0 - 20 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded an experimental change which disables TRAP caching when \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3569\"\u003e#3569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWe are rolling out improved incremental analysis to C/C++ analyses that use build mode \u003ccode\u003enone\u003c/code\u003e. We expect this rollout to be complete by the end of April 2026. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3584\"\u003e#3584\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.0\"\u003e2.25.0\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3585\"\u003e#3585\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.33.0 - 16 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUpcoming change: Starting April 2026, the CodeQL Action will skip collecting file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. Pull request analyses will log a warning about this upcoming change. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3562\"\u003e#3562\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eTo opt out of this change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRepositories owned by an organization:\u003c/strong\u003e Create a custom repository property with the name \u003ccode\u003egithub-codeql-file-coverage-on-prs\u003c/code\u003e and the type \u0026quot;True/false\u0026quot;, then set this property to \u003ccode\u003etrue\u003c/code\u003e in the repository's settings. For more information, see \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003eManaging custom properties for repositories in your organization\u003c/a\u003e. Alternatively, if you are using an advanced setup workflow, you can set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using default setup:\u003c/strong\u003e Switch to an advanced setup workflow and set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using advanced setup:\u003c/strong\u003e Set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3555\"\u003ea bug\u003c/a\u003e which caused the CodeQL Action to fail loading repository properties if a \u0026quot;Multi select\u0026quot; repository property was configured for the repository. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3557\"\u003e#3557\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eThe CodeQL Action now loads \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003ecustom repository properties\u003c/a\u003e on GitHub Enterprise Server, enabling the customization of features such as \u003ccode\u003egithub-codeql-disable-overlay\u003c/code\u003e that was previously only available on GitHub.com. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3559\"\u003e#3559\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eOnce \u003ca href=\"https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries\"\u003eprivate package registries\u003c/a\u003e can be configured with OIDC-based authentication for organizations, the CodeQL Action will now be able to accept such configurations. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3563\"\u003e#3563\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed the retry mechanism for database uploads. Previously this would fail with the error \u0026quot;Response body object should not be disturbed or locked\u0026quot;. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3564\"\u003e#3564\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eA warning is now emitted if the CodeQL Action detects a repository property whose name suggests that it relates to the CodeQL Action, but which is not one of the properties recognised by the current version of the CodeQL Action. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3570\"\u003e#3570\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.32.6 - 05 Mar 2026\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/95e58e9a2cdfd71adc6e0353d5c52f41a045d225\"\u003e\u003ccode\u003e95e58e9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3824\"\u003e#3824\u003c/a\u003e from github/update-v4.35.2-d2e135a73\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/6f31bfe060e817d81e938dbec767969d20031e25\"\u003e\u003ccode\u003e6f31bfe\u003c/code\u003e\u003c/a\u003e Update changelog for v4.35.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/d2e135a73a39154e3a231aeb49163c4661c5b8b1\"\u003e\u003ccode\u003ed2e135a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3823\"\u003e#3823\u003c/a\u003e from github/update-bundle/codeql-bundle-v2.25.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/60abb65df09fcf213c398e064c8a80db1f15cdaf\"\u003e\u003ccode\u003e60abb65\u003c/code\u003e\u003c/a\u003e Add changelog note\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/5a0a562209255e956ad8aafcee303294e64eefa2\"\u003e\u003ccode\u003e5a0a562\u003c/code\u003e\u003c/a\u003e Update default bundle to codeql-bundle-v2.25.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/65216971a11ded447a6b76263d5a144519e5eee1\"\u003e\u003ccode\u003e6521697\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3820\"\u003e#3820\u003c/a\u003e from github/dependabot/github_actions/dot-github/wor...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/3c45af2dd258e1623af1898da5c86545b514e028\"\u003e\u003ccode\u003e3c45af2\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3821\"\u003e#3821\u003c/a\u003e from github/dependabot/npm_and_yarn/npm-minor-345b93...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/f1c339364c12f922998186ed897e45e3b4ae8874\"\u003e\u003ccode\u003ef1c3393\u003c/code\u003e\u003c/a\u003e Rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/1024fc496c87e944a93e98d8cf2c09e2c7602a30\"\u003e\u003ccode\u003e1024fc4\u003c/code\u003e\u003c/a\u003e Rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/9dd4cfed96030ccdfe1af4daf7a7964322704fed\"\u003e\u003ccode\u003e9dd4cfe\u003c/code\u003e\u003c/a\u003e Bump the npm-minor group across 1 directory with 6 updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/github/codeql-action/compare/0d579ffd059c29b07949a3cce3983f0780820c98...95e58e9a2cdfd71adc6e0353d5c52f41a045d225\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/download-artifact` from 8.0.0 to 8.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/download-artifact/releases\"\u003eactions/download-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for CJK characters in the artifact name by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/471\"\u003eactions/download-artifact#471\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a regression test for artifact name + content-type mismatches by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/472\"\u003eactions/download-artifact#472\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/download-artifact/compare/v8...v8.0.1\"\u003ehttps://github.com/actions/download-artifact/compare/v8...v8.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003e\u003ccode\u003e3e5f45b\u003c/code\u003e\u003c/a\u003e Add regression tests for CJK characters (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/471\"\u003e#471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/e6d03f67377d4412c7aa56a8e2e4988e6ec479dd\"\u003e\u003ccode\u003ee6d03f6\u003c/code\u003e\u003c/a\u003e Add a regression test for artifact name + content-type mismatches (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/download-artifact/compare/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3...3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `JS-DevTools/npm-publish` from 3.1.1 to 4.1.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.5\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.5\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump the production group with 2 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/261\"\u003e#261\u003c/a\u003e) (3c4834c)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.4\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e) (57836fb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/0fd2f4369c5d6bcfcde6091a7c527d810b9b5c3f\"\u003e\u003ccode\u003e0fd2f43\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3c4834cd08f123627673af5903c4a540e48726cb\"\u003e\u003ccode\u003e3c4834c\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 2 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/22291edfcc07a313b9e8105d8b81078380a48ecc\"\u003e\u003ccode\u003e22291ed\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 6 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/4ce4bd0f334d5316473155078da1955d42148494\"\u003e\u003ccode\u003e4ce4bd0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/57836fba47be1db47836722ee0fbcccb3980e22b\"\u003e\u003ccode\u003e57836fb\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/19c28f1ef146469e409470805ea4279d47c3d35c...0fd2f4369c5d6bcfcde6091a7c527d810b9b5c3f\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/ltwlf/json-diff-ts/pull/409","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ltwlf%2Fjson-diff-ts/issues/409","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/409/packages"}},{"old_version":"3.1.1","new_version":"4.1.5","update_type":"major","path":null,"pr_created_at":"2026-03-22T04:32:58.000Z","version_change":"3.1.1 → 4.1.5","issue":{"uuid":"4114715980","node_id":"PR_kwDODWjvzc7Mcun8","number":386,"state":"open","title":"chore(deps): bump the actions group across 1 directory with 4 updates","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-03-22T04:32:58.000Z","updated_at":"2026-03-22T04:33:29.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"actions","update_count":4,"packages":[{"name":"codecov/codecov-action","old_version":"5.5.2","new_version":"5.5.3","repository_url":"https://github.com/codecov/codecov-action"},{"name":"github/codeql-action","old_version":"4.32.6","new_version":"4.34.1","repository_url":"https://github.com/github/codeql-action"},{"name":"actions/download-artifact","old_version":"8.0.0","new_version":"8.0.1","repository_url":"https://github.com/actions/download-artifact"},{"name":"JS-DevTools/npm-publish","old_version":"3.1.1","new_version":"4.1.5","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps the actions group with 4 updates in the / directory: [codecov/codecov-action](https://github.com/codecov/codecov-action), [github/codeql-action](https://github.com/github/codeql-action), [actions/download-artifact](https://github.com/actions/download-artifact) and [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish).\n\nUpdates `codecov/codecov-action` from 5.5.2 to 5.5.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/codecov/codecov-action/releases\"\u003ecodecov/codecov-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.5.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/github-script from 7.0.1 to 8.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1874\"\u003ecodecov/codecov-action#1874\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(release): bump to 5.5.3 by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1922\"\u003ecodecov/codecov-action#1922\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.2...v5.5.3\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.2...v5.5.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md\"\u003ecodecov/codecov-action's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.5.2\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.1\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: overwrite pr number on fork by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1871\"\u003ecodecov/codecov-action#1871\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.2 to 5.0.0 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1868\"\u003ecodecov/codecov-action#1868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.9 to 3.29.11 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1867\"\u003ecodecov/codecov-action#1867\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update to use local app/ dir by \u003ca href=\"https://github.com/thomasrockhu-codecov\"\u003e\u003ccode\u003e@​thomasrockhu-codecov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1872\"\u003ecodecov/codecov-action#1872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix typo in README by \u003ca href=\"https://github.com/datalater\"\u003e\u003ccode\u003e@​datalater\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1866\"\u003ecodecov/codecov-action#1866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument a \u003ccode\u003ecodecov-cli\u003c/code\u003e version reference example by \u003ca href=\"https://github.com/webknjaz\"\u003e\u003ccode\u003e@​webknjaz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1774\"\u003ecodecov/codecov-action#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.29.9 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1861\"\u003ecodecov/codecov-action#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1833\"\u003ecodecov/codecov-action#1833\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.0\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat: upgrade wrapper to 0.2.4 by \u003ca href=\"https://github.com/jviall\"\u003e\u003ccode\u003e@​jviall\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1864\"\u003ecodecov/codecov-action#1864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/github-script by Git SHA by \u003ca href=\"https://github.com/martincostello\"\u003e\u003ccode\u003e@​martincostello\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1859\"\u003ecodecov/codecov-action#1859\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: check reqs exist by \u003ca href=\"https://github.com/joseph-sentry\"\u003e\u003ccode\u003e@​joseph-sentry\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1835\"\u003ecodecov/codecov-action#1835\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Typo in README by \u003ca href=\"https://github.com/spalmurray\"\u003e\u003ccode\u003e@​spalmurray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1838\"\u003ecodecov/codecov-action#1838\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Refine OIDC docs by \u003ca href=\"https://github.com/spalmurray\"\u003e\u003ccode\u003e@​spalmurray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1837\"\u003ecodecov/codecov-action#1837\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.18 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1829\"\u003ecodecov/codecov-action#1829\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.4.3\u003c/h2\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.13 to 3.28.17 by \u003ccode\u003e@​app/dependabot\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1822\"\u003ecodecov/codecov-action#1822\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: OIDC on forks by \u003ca href=\"https://github.com/joseph-sentry\"\u003e\u003ccode\u003e@​joseph-sentry\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/codecov/codecov-action/pull/1823\"\u003ecodecov/codecov-action#1823\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3\"\u003ehttps://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.4.2\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/1af58845a975a7985b0beb0cbe6fbbb71a41dbad\"\u003e\u003ccode\u003e1af5884\u003c/code\u003e\u003c/a\u003e chore(release): bump to 5.5.3 (\u003ca href=\"https://redirect.github.com/codecov/codecov-action/issues/1922\"\u003e#1922\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/codecov/codecov-action/commit/c143300dea6c9a730986ff862c5bf4d458927ef8\"\u003e\u003ccode\u003ec143300\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/github-script from 7.0.1 to 8.0.0 (\u003ca href=\"https://redirect.github.com/codecov/codecov-action/issues/1874\"\u003e#1874\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/codecov/codecov-action/compare/671740ac38dd9b0130fbe1cec585b89eea48d3de...1af58845a975a7985b0beb0cbe6fbbb71a41dbad\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github/codeql-action` from 4.32.6 to 4.34.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/github/codeql-action/releases\"\u003egithub/codeql-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.34.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDowngrade default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3\"\u003e2.24.3\u003c/a\u003e due to issues with a small percentage of Actions and JavaScript analyses. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3762\"\u003e#3762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.34.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded an experimental change which disables TRAP caching when \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3569\"\u003e#3569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWe are rolling out improved incremental analysis to C/C++ analyses that use build mode \u003ccode\u003enone\u003c/code\u003e. We expect this rollout to be complete by the end of April 2026. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3584\"\u003e#3584\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.0\"\u003e2.25.0\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3585\"\u003e#3585\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.33.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUpcoming change: Starting April 2026, the CodeQL Action will skip collecting file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. Pull request analyses will log a warning about this upcoming change. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3562\"\u003e#3562\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eTo opt out of this change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRepositories owned by an organization:\u003c/strong\u003e Create a custom repository property with the name \u003ccode\u003egithub-codeql-file-coverage-on-prs\u003c/code\u003e and the type \u0026quot;True/false\u0026quot;, then set this property to \u003ccode\u003etrue\u003c/code\u003e in the repository's settings. For more information, see \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003eManaging custom properties for repositories in your organization\u003c/a\u003e. Alternatively, if you are using an advanced setup workflow, you can set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using default setup:\u003c/strong\u003e Switch to an advanced setup workflow and set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using advanced setup:\u003c/strong\u003e Set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3555\"\u003ea bug\u003c/a\u003e which caused the CodeQL Action to fail loading repository properties if a \u0026quot;Multi select\u0026quot; repository property was configured for the repository. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3557\"\u003e#3557\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eThe CodeQL Action now loads \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003ecustom repository properties\u003c/a\u003e on GitHub Enterprise Server, enabling the customization of features such as \u003ccode\u003egithub-codeql-disable-overlay\u003c/code\u003e that was previously only available on GitHub.com. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3559\"\u003e#3559\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eOnce \u003ca href=\"https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries\"\u003eprivate package registries\u003c/a\u003e can be configured with OIDC-based authentication for organizations, the CodeQL Action will now be able to accept such configurations. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3563\"\u003e#3563\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed the retry mechanism for database uploads. Previously this would fail with the error \u0026quot;Response body object should not be disturbed or locked\u0026quot;. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3564\"\u003e#3564\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eA warning is now emitted if the CodeQL Action detects a repository property whose name suggests that it relates to the CodeQL Action, but which is not one of the properties recognised by the current version of the CodeQL Action. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3570\"\u003e#3570\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/github/codeql-action/blob/main/CHANGELOG.md\"\u003egithub/codeql-action's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eCodeQL Action Changelog\u003c/h1\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/github/codeql-action/releases\"\u003ereleases page\u003c/a\u003e for the relevant changes to the CodeQL CLI and language packs.\u003c/p\u003e\n\u003ch2\u003e[UNRELEASED]\u003c/h2\u003e\n\u003cp\u003eNo user facing changes.\u003c/p\u003e\n\u003ch2\u003e4.34.1 - 20 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDowngrade default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3\"\u003e2.24.3\u003c/a\u003e due to issues with a small percentage of Actions and JavaScript analyses. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3762\"\u003e#3762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.34.0 - 20 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded an experimental change which disables TRAP caching when \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3569\"\u003e#3569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWe are rolling out improved incremental analysis to C/C++ analyses that use build mode \u003ccode\u003enone\u003c/code\u003e. We expect this rollout to be complete by the end of April 2026. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3584\"\u003e#3584\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.0\"\u003e2.25.0\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3585\"\u003e#3585\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.33.0 - 16 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUpcoming change: Starting April 2026, the CodeQL Action will skip collecting file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. Pull request analyses will log a warning about this upcoming change. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3562\"\u003e#3562\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eTo opt out of this change:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRepositories owned by an organization:\u003c/strong\u003e Create a custom repository property with the name \u003ccode\u003egithub-codeql-file-coverage-on-prs\u003c/code\u003e and the type \u0026quot;True/false\u0026quot;, then set this property to \u003ccode\u003etrue\u003c/code\u003e in the repository's settings. For more information, see \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003eManaging custom properties for repositories in your organization\u003c/a\u003e. Alternatively, if you are using an advanced setup workflow, you can set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using default setup:\u003c/strong\u003e Switch to an advanced setup workflow and set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUser-owned repositories using advanced setup:\u003c/strong\u003e Set the \u003ccode\u003eCODEQL_ACTION_FILE_COVERAGE_ON_PRS\u003c/code\u003e environment variable to \u003ccode\u003etrue\u003c/code\u003e in your workflow.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3555\"\u003ea bug\u003c/a\u003e which caused the CodeQL Action to fail loading repository properties if a \u0026quot;Multi select\u0026quot; repository property was configured for the repository. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3557\"\u003e#3557\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eThe CodeQL Action now loads \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003ecustom repository properties\u003c/a\u003e on GitHub Enterprise Server, enabling the customization of features such as \u003ccode\u003egithub-codeql-disable-overlay\u003c/code\u003e that was previously only available on GitHub.com. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3559\"\u003e#3559\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eOnce \u003ca href=\"https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries\"\u003eprivate package registries\u003c/a\u003e can be configured with OIDC-based authentication for organizations, the CodeQL Action will now be able to accept such configurations. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3563\"\u003e#3563\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eFixed the retry mechanism for database uploads. Previously this would fail with the error \u0026quot;Response body object should not be disturbed or locked\u0026quot;. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3564\"\u003e#3564\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eA warning is now emitted if the CodeQL Action detects a repository property whose name suggests that it relates to the CodeQL Action, but which is not one of the properties recognised by the current version of the CodeQL Action. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3570\"\u003e#3570\u003c/a\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.32.6 - 05 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3\"\u003e2.24.3\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3548\"\u003e#3548\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.32.5 - 02 Mar 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRepositories owned by an organization can now set up the \u003ccode\u003egithub-codeql-disable-overlay\u003c/code\u003e custom repository property to disable \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis for CodeQL\u003c/a\u003e. First, create a custom repository property with the name \u003ccode\u003egithub-codeql-disable-overlay\u003c/code\u003e and the type \u0026quot;True/false\u0026quot; in the organization's settings. Then in the repository's settings, set this property to \u003ccode\u003etrue\u003c/code\u003e to disable improved incremental analysis. For more information, see \u003ca href=\"https://docs.github.com/en/organizations/managing-organization-settings/managing-custom-properties-for-repositories-in-your-organization\"\u003eManaging custom properties for repositories in your organization\u003c/a\u003e. This feature is not yet available on GitHub Enterprise Server. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3507\"\u003e#3507\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded an experimental change so that when \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e fails on a runner — potentially due to insufficient disk space — the failure is recorded in the Actions cache so that subsequent runs will automatically skip improved incremental analysis until something changes (e.g. a larger runner is provisioned or a new CodeQL version is released). We expect to roll this change out to everyone in March. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3487\"\u003e#3487\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe minimum memory check for improved incremental analysis is now skipped for CodeQL 2.24.3 and later, which has reduced peak RAM usage. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3515\"\u003e#3515\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReduced log levels for best-effort private package registry connection check failures to reduce noise from workflow annotations. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3516\"\u003e#3516\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded an experimental change which lowers the minimum disk space requirement for \u003ca href=\"https://redirect.github.com/github/roadmap/issues/1158\"\u003eimproved incremental analysis\u003c/a\u003e, enabling it to run on standard GitHub Actions runners. We expect to roll this change out to everyone in March. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3498\"\u003e#3498\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded an experimental change which allows the \u003ccode\u003estart-proxy\u003c/code\u003e action to resolve the CodeQL CLI version from feature flags instead of using the linked CLI bundle version. We expect to roll this change out to everyone in March. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3512\"\u003e#3512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe previously experimental changes from versions 4.32.3, 4.32.4, 3.32.3 and 3.32.4 are now enabled by default. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3503\"\u003e#3503\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3504\"\u003e#3504\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e4.32.4 - 20 Feb 2026\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to \u003ca href=\"https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.2\"\u003e2.24.2\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3493\"\u003e#3493\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded an experimental change which improves how certificates are generated for the authentication proxy that is used by the CodeQL Action in Default Setup when \u003ca href=\"https://docs.github.com/en/code-security/how-tos/secure-at-scale/configure-organization-security/manage-usage-and-access/giving-org-access-private-registries\"\u003eprivate package registries are configured\u003c/a\u003e. This is expected to generate more widely compatible certificates and should have no impact on analyses which are working correctly already. We expect to roll this change out to everyone in February. \u003ca href=\"https://redirect.github.com/github/codeql-action/pull/3473\"\u003e#3473\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/38697555549f1db7851b81482ff19f1fa5c4fedc\"\u003e\u003ccode\u003e3869755\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3763\"\u003e#3763\u003c/a\u003e from github/update-v4.34.1-095e0fe50\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/20e68ac12bc8d1eb16a56d3ef4e78263197d2e47\"\u003e\u003ccode\u003e20e68ac\u003c/code\u003e\u003c/a\u003e Update changelog for v4.34.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/095e0fe505bb5ab6198675d021352632c2c69a46\"\u003e\u003ccode\u003e095e0fe\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3762\"\u003e#3762\u003c/a\u003e from github/henrymercer/downgrade-default-bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/47b94fe61cd788995769140a7a8adffec0738aa1\"\u003e\u003ccode\u003e47b94fe\u003c/code\u003e\u003c/a\u003e Add changelog note\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/51a1d6917f5d33f400200c675401974da443b2ea\"\u003e\u003ccode\u003e51a1d69\u003c/code\u003e\u003c/a\u003e Downgrade default bundle to codeql-bundle-v2.24.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/510cf736e330d7eb9bc471636d65aaa180118824\"\u003e\u003ccode\u003e510cf73\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3589\"\u003e#3589\u003c/a\u003e from github/mergeback/v4.34.0-to-main-c6f93110\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/89f0c86efa3acf01faeff510383f0c4a4152760a\"\u003e\u003ccode\u003e89f0c86\u003c/code\u003e\u003c/a\u003e Rebuild\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/c3f90ba975e427c1913b529a89ef97a2442493f2\"\u003e\u003ccode\u003ec3f90ba\u003c/code\u003e\u003c/a\u003e Update changelog and version after v4.34.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/c6f931105cb2c34c8f901cc885ba1e2e259cf745\"\u003e\u003ccode\u003ec6f9311\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/github/codeql-action/issues/3588\"\u003e#3588\u003c/a\u003e from github/update-v4.34.0-30c555a52\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/github/codeql-action/commit/eeb9b3f4244c2945a20b9761dfa77f19d468d35f\"\u003e\u003ccode\u003eeeb9b3f\u003c/code\u003e\u003c/a\u003e Update changelog for v4.34.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/github/codeql-action/compare/0d579ffd059c29b07949a3cce3983f0780820c98...38697555549f1db7851b81482ff19f1fa5c4fedc\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/download-artifact` from 8.0.0 to 8.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/download-artifact/releases\"\u003eactions/download-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for CJK characters in the artifact name by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/471\"\u003eactions/download-artifact#471\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a regression test for artifact name + content-type mismatches by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/472\"\u003eactions/download-artifact#472\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/download-artifact/compare/v8...v8.0.1\"\u003ehttps://github.com/actions/download-artifact/compare/v8...v8.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003e\u003ccode\u003e3e5f45b\u003c/code\u003e\u003c/a\u003e Add regression tests for CJK characters (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/471\"\u003e#471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/e6d03f67377d4412c7aa56a8e2e4988e6ec479dd\"\u003e\u003ccode\u003ee6d03f6\u003c/code\u003e\u003c/a\u003e Add a regression test for artifact name + content-type mismatches (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/download-artifact/compare/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3...3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `JS-DevTools/npm-publish` from 3.1.1 to 4.1.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.5\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.5\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump the production group with 2 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/261\"\u003e#261\u003c/a\u003e) (3c4834c)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.4\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e) (57836fb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/0fd2f4369c5d6bcfcde6091a7c527d810b9b5c3f\"\u003e\u003ccode\u003e0fd2f43\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3c4834cd08f123627673af5903c4a540e48726cb\"\u003e\u003ccode\u003e3c4834c\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 2 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/22291edfcc07a313b9e8105d8b81078380a48ecc\"\u003e\u003ccode\u003e22291ed\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 6 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/4ce4bd0f334d5316473155078da1955d42148494\"\u003e\u003ccode\u003e4ce4bd0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/57836fba47be1db47836722ee0fbcccb3980e22b\"\u003e\u003ccode\u003e57836fb\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/19c28f1ef146469e409470805ea4279d47c3d35c...0fd2f4369c5d6bcfcde6091a7c527d810b9b5c3f\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/ltwlf/json-diff-ts/pull/386","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ltwlf%2Fjson-diff-ts/issues/386","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/386/packages"}},{"old_version":"3.1.1","new_version":"4.1.5","update_type":"major","path":null,"pr_created_at":"2026-03-15T04:32:45.000Z","version_change":"3.1.1 → 4.1.5","issue":{"uuid":"4077580819","node_id":"PR_kwDODWjvzc7Kr6XM","number":384,"state":"closed","title":"chore(deps): bump the actions group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-03-22T04:32:53.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-15T04:32:45.000Z","updated_at":"2026-03-22T04:32:55.000Z","time_to_close":604808,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"actions","update_count":2,"packages":[{"name":"actions/download-artifact","old_version":"8.0.0","new_version":"8.0.1","repository_url":"https://github.com/actions/download-artifact"},{"name":"JS-DevTools/npm-publish","old_version":"3.1.1","new_version":"4.1.5","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps the actions group with 2 updates in the / directory: [actions/download-artifact](https://github.com/actions/download-artifact) and [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish).\n\nUpdates `actions/download-artifact` from 8.0.0 to 8.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/download-artifact/releases\"\u003eactions/download-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport for CJK characters in the artifact name by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/471\"\u003eactions/download-artifact#471\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a regression test for artifact name + content-type mismatches by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/472\"\u003eactions/download-artifact#472\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/download-artifact/compare/v8...v8.0.1\"\u003ehttps://github.com/actions/download-artifact/compare/v8...v8.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003e\u003ccode\u003e3e5f45b\u003c/code\u003e\u003c/a\u003e Add regression tests for CJK characters (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/471\"\u003e#471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/e6d03f67377d4412c7aa56a8e2e4988e6ec479dd\"\u003e\u003ccode\u003ee6d03f6\u003c/code\u003e\u003c/a\u003e Add a regression test for artifact name + content-type mismatches (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/download-artifact/compare/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3...3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `JS-DevTools/npm-publish` from 3.1.1 to 4.1.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.5\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.5\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump the production group with 2 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/261\"\u003e#261\u003c/a\u003e) (3c4834c)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.4\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e) (57836fb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/0fd2f4369c5d6bcfcde6091a7c527d810b9b5c3f\"\u003e\u003ccode\u003e0fd2f43\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3c4834cd08f123627673af5903c4a540e48726cb\"\u003e\u003ccode\u003e3c4834c\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 2 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/22291edfcc07a313b9e8105d8b81078380a48ecc\"\u003e\u003ccode\u003e22291ed\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 6 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/262\"\u003e#262\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/4ce4bd0f334d5316473155078da1955d42148494\"\u003e\u003ccode\u003e4ce4bd0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/57836fba47be1db47836722ee0fbcccb3980e22b\"\u003e\u003ccode\u003e57836fb\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/19c28f1ef146469e409470805ea4279d47c3d35c...0fd2f4369c5d6bcfcde6091a7c527d810b9b5c3f\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/ltwlf/json-diff-ts/pull/384","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ltwlf%2Fjson-diff-ts/issues/384","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/384/packages"}},{"old_version":"4.0.1","new_version":"4.1.4","update_type":"minor","path":null,"pr_created_at":"2026-01-19T13:46:32.000Z","version_change":"4.0.1 → 4.1.4","issue":{"uuid":"3829809255","node_id":"PR_kwDOPyv1RM6-A0ZP","number":138,"state":"open","title":"chore(deps): bump JS-DevTools/npm-publish from 4.0.1 to 4.1.4","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-01-19T13:46:32.000Z","updated_at":"2026-01-19T13:46:33.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.0.1","new_version":"4.1.4","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.0.1 to 4.1.4.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.4\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e) (57836fb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow \u003ccode\u003etoken\u003c/code\u003e to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e) (612922f), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/4ce4bd0f334d5316473155078da1955d42148494\"\u003e\u003ccode\u003e4ce4bd0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/57836fba47be1db47836722ee0fbcccb3980e22b\"\u003e\u003ccode\u003e57836fb\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/ad693561f8a5b5d4c76f14407da60aa15cb10f90...4ce4bd0f334d5316473155078da1955d42148494\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.0.1\u0026new-version=4.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/charlie-labs/format-for/pull/138","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/charlie-labs%2Fformat-for/issues/138","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/138/packages"}},{"old_version":"4.0.1","new_version":"4.1.4","update_type":"minor","path":null,"pr_created_at":"2026-01-19T13:46:31.000Z","version_change":"4.0.1 → 4.1.4","issue":{"uuid":"3829809193","node_id":"PR_kwDOPysT3s6-A0Yc","number":50,"state":"closed","title":"chore(deps): bump JS-DevTools/npm-publish from 4.0.1 to 4.1.4","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-02-02T13:29:19.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-19T13:46:31.000Z","updated_at":"2026-02-02T13:29:21.000Z","time_to_close":1208568,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.0.1","new_version":"4.1.4","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.0.1 to 4.1.4.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.4\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e) (57836fb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow \u003ccode\u003etoken\u003c/code\u003e to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e) (612922f), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/4ce4bd0f334d5316473155078da1955d42148494\"\u003e\u003ccode\u003e4ce4bd0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/57836fba47be1db47836722ee0fbcccb3980e22b\"\u003e\u003ccode\u003e57836fb\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/ad693561f8a5b5d4c76f14407da60aa15cb10f90...4ce4bd0f334d5316473155078da1955d42148494\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.0.1\u0026new-version=4.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/charlie-labs/bun-lib-template/pull/50","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/charlie-labs%2Fbun-lib-template/issues/50","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/50/packages"}},{"old_version":"4.1.3","new_version":"4.1.4","update_type":"patch","path":null,"pr_created_at":"2026-01-19T11:33:49.000Z","version_change":"4.1.3 → 4.1.4","issue":{"uuid":"3829296974","node_id":"PR_kwDOKq0j4c69_Ggs","number":36,"state":"closed","title":"Bump JS-DevTools/npm-publish from 4.1.3 to 4.1.4","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-02T11:19:06.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-19T11:33:49.000Z","updated_at":"2026-02-02T11:19:08.000Z","time_to_close":1208717,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.1.3","new_version":"4.1.4","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.1.3 to 4.1.4.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.4\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e) (57836fb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/4ce4bd0f334d5316473155078da1955d42148494\"\u003e\u003ccode\u003e4ce4bd0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/57836fba47be1db47836722ee0fbcccb3980e22b\"\u003e\u003ccode\u003e57836fb\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51...4ce4bd0f334d5316473155078da1955d42148494\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.1.3\u0026new-version=4.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/FlowFuse/node-red-dashboard-2-user-addon/pull/36","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FlowFuse%2Fnode-red-dashboard-2-user-addon/issues/36","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/36/packages"}},{"old_version":"4.1.1","new_version":"4.1.4","update_type":"patch","path":null,"pr_created_at":"2026-01-19T00:45:35.000Z","version_change":"4.1.1 → 4.1.4","issue":{"uuid":"3827578531","node_id":"PR_kwDOOjSx28695gDB","number":34,"state":"closed","title":"Bump JS-DevTools/npm-publish from 4.1.1 to 4.1.4","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-02T00:38:01.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-19T00:45:35.000Z","updated_at":"2026-02-02T00:38:03.000Z","time_to_close":1209146,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.1.1","new_version":"4.1.4","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.1.1 to 4.1.4.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.4\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e  bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e) (57836fb)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/4ce4bd0f334d5316473155078da1955d42148494\"\u003e\u003ccode\u003e4ce4bd0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/57836fba47be1db47836722ee0fbcccb3980e22b\"\u003e\u003ccode\u003e57836fb\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.5.2 to 7.5.3 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/260\"\u003e#260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b...4ce4bd0f334d5316473155078da1955d42148494\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.1.1\u0026new-version=4.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/FlowFuse/node-red-dashboard-2-ui-chat/pull/34","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FlowFuse%2Fnode-red-dashboard-2-ui-chat/issues/34","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/34/packages"}},{"old_version":"4.1.1","new_version":"4.1.3","update_type":"patch","path":null,"pr_created_at":"2026-01-12T23:56:53.000Z","version_change":"4.1.1 → 4.1.3","issue":{"uuid":"3806443130","node_id":"PR_kwDOG7cE2s68zxLQ","number":178,"state":"closed","title":"Bump JS-DevTools/npm-publish from 4.1.1 to 4.1.3","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-19T20:42:30.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-12T23:56:53.000Z","updated_at":"2026-01-19T20:42:31.000Z","time_to_close":593137,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.1.1","new_version":"4.1.3","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.1.1 to 4.1.3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b...d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.1.1\u0026new-version=4.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/FlowFuse/forge-ui-components/pull/178","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FlowFuse%2Fforge-ui-components/issues/178","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/178/packages"}},{"old_version":"4.0.1","new_version":"4.1.3","update_type":"minor","path":null,"pr_created_at":"2026-01-12T15:05:44.000Z","version_change":"4.0.1 → 4.1.3","issue":{"uuid":"3804729846","node_id":"PR_kwDOPysT3s68uNCV","number":49,"state":"closed","title":"chore(deps): bump JS-DevTools/npm-publish from 4.0.1 to 4.1.3","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-01-19T13:46:33.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-12T15:05:44.000Z","updated_at":"2026-01-19T13:46:35.000Z","time_to_close":600049,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.0.1","new_version":"4.1.3","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.0.1 to 4.1.3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow \u003ccode\u003etoken\u003c/code\u003e to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e) (612922f), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/ad693561f8a5b5d4c76f14407da60aa15cb10f90...d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.0.1\u0026new-version=4.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/charlie-labs/bun-lib-template/pull/49","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/charlie-labs%2Fbun-lib-template/issues/49","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/49/packages"}},{"old_version":"4.0.1","new_version":"4.1.3","update_type":"minor","path":null,"pr_created_at":"2026-01-12T15:05:42.000Z","version_change":"4.0.1 → 4.1.3","issue":{"uuid":"3804729726","node_id":"PR_kwDOPyv1RM68uNAj","number":137,"state":"open","title":"chore(deps): bump JS-DevTools/npm-publish from 4.0.1 to 4.1.3","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-01-12T15:05:42.000Z","updated_at":"2026-01-12T15:05:42.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.0.1","new_version":"4.1.3","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.0.1 to 4.1.3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow \u003ccode\u003etoken\u003c/code\u003e to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e) (612922f), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/ad693561f8a5b5d4c76f14407da60aa15cb10f90...d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.0.1\u0026new-version=4.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/charlie-labs/format-for/pull/137","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/charlie-labs%2Fformat-for/issues/137","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/137/packages"}},{"old_version":"4.1.2","new_version":"4.1.3","update_type":"patch","path":null,"pr_created_at":"2026-01-08T12:10:36.000Z","version_change":"4.1.2 → 4.1.3","issue":{"uuid":"3792631109","node_id":"PR_kwDOPrf0dM68G4rG","number":197,"state":"closed","title":"dependabot(deps): bump JS-DevTools/npm-publish from 4.1.2 to 4.1.3","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-08T12:15:28.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-08T12:10:36.000Z","updated_at":"2026-01-08T12:15:30.000Z","time_to_close":292,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"dependabot(deps)","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.1.2","new_version":"4.1.3","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.1.2 to 4.1.3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.3\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e) (d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003e\u003ccode\u003ed2fef91\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3eb8411983d78ef49fa4779d073ec25ac0754954\"\u003e\u003ccode\u003e3eb8411\u003c/code\u003e\u003c/a\u003e fix: add sourcemap back to tracking (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/259\"\u003e#259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/8f08ec0dafe29acea4e9efe18e67ebde86904ad1...d2fef917d9aa6e1f0ee5eac28ed023eb4921ce51\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.1.2\u0026new-version=4.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/motlin/workflowy-cli/pull/197","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/motlin%2Fworkflowy-cli/issues/197","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/197/packages"}},{"old_version":"4.1.1","new_version":"4.1.2","update_type":"patch","path":null,"pr_created_at":"2026-01-05T19:24:14.000Z","version_change":"4.1.1 → 4.1.2","issue":{"uuid":"3782620860","node_id":"PR_kwDOGXldLM67l3B7","number":430,"state":"closed","title":"Bump JS-DevTools/npm-publish from 4.1.1 to 4.1.2","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-13T00:22:19.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-05T19:24:14.000Z","updated_at":"2026-01-13T00:22:21.000Z","time_to_close":622685,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.1.1","new_version":"4.1.2","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.1.1 to 4.1.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b...8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.1.1\u0026new-version=4.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/FlowFuse/nr-launcher/pull/430","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FlowFuse%2Fnr-launcher/issues/430","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/430/packages"}},{"old_version":"4.1.1","new_version":"4.1.2","update_type":"patch","path":null,"pr_created_at":"2026-01-05T17:09:13.000Z","version_change":"4.1.1 → 4.1.2","issue":{"uuid":"3782227916","node_id":"PR_kwDOIWJaA867kiwM","number":202,"state":"closed","title":"Bump JS-DevTools/npm-publish from 4.1.1 to 4.1.2","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-12T21:45:33.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-05T17:09:13.000Z","updated_at":"2026-01-12T21:45:34.000Z","time_to_close":621380,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.1.1","new_version":"4.1.2","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.1.1 to 4.1.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b...8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.1.1\u0026new-version=4.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/FlowFuse/file-server/pull/202","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FlowFuse%2Ffile-server/issues/202","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/202/packages"}},{"old_version":"4.1.1","new_version":"4.1.2","update_type":"patch","path":null,"pr_created_at":"2026-01-05T15:24:12.000Z","version_change":"4.1.1 → 4.1.2","issue":{"uuid":"3781886460","node_id":"PR_kwDOFrvvzc67jaMo","number":6470,"state":"closed","title":"Bump JS-DevTools/npm-publish from 4.1.1 to 4.1.2","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-12T19:40:26.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-05T15:24:12.000Z","updated_at":"2026-01-12T19:40:27.000Z","time_to_close":620174,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.1.1","new_version":"4.1.2","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.1.1 to 4.1.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b...8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.1.1\u0026new-version=4.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/FlowFuse/flowfuse/pull/6470","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FlowFuse%2Fflowfuse/issues/6470","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6470/packages"}},{"old_version":"4.0.1","new_version":"4.1.2","update_type":"minor","path":null,"pr_created_at":"2026-01-05T12:26:35.000Z","version_change":"4.0.1 → 4.1.2","issue":{"uuid":"3781319292","node_id":"PR_kwDOPysT3s67hjtm","number":48,"state":"closed","title":"chore(deps): bump JS-DevTools/npm-publish from 4.0.1 to 4.1.2","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-01-12T15:05:46.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-05T12:26:35.000Z","updated_at":"2026-01-12T15:05:48.000Z","time_to_close":614351,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"JS-DevTools/npm-publish","old_version":"4.0.1","new_version":"4.1.2","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 4.0.1 to 4.1.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow \u003ccode\u003etoken\u003c/code\u003e to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e) (612922f), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/1fe17a093199d8fabed85cbcc6f0f79eb06470da\"\u003e\u003ccode\u003e1fe17a0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3817acc494b26be8b714d1975f3b963e8a921bd0\"\u003e\u003ccode\u003e3817acc\u003c/code\u003e\u003c/a\u003e fix(action): remove erroneous required \u003ccode\u003etoken\u003c/code\u003e input check (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/248\"\u003e#248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/ad693561f8a5b5d4c76f14407da60aa15cb10f90...8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=4.0.1\u0026new-version=4.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/charlie-labs/bun-lib-template/pull/48","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/charlie-labs%2Fbun-lib-template/issues/48","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/48/packages"}},{"old_version":"3.1.1","new_version":"4.1.2","update_type":"major","path":null,"pr_created_at":"2026-01-05T10:09:21.000Z","version_change":"3.1.1 → 4.1.2","issue":{"uuid":"3780921958","node_id":"PR_kwDOKq0j4c67gPCn","number":33,"state":"closed","title":"Bump JS-DevTools/npm-publish from 3.1.1 to 4.1.2","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-12T11:59:08.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-05T10:09:21.000Z","updated_at":"2026-01-12T11:59:10.000Z","time_to_close":611387,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"3.1.1","new_version":"4.1.2","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 3.1.1 to 4.1.2.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.2\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e) (43babc0)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow \u003ccode\u003etoken\u003c/code\u003e to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e) (612922f), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.0.1\n  with:\n    token: ${{ secrets.NPM_TOKEN }}\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edo not suppress \u003ccode\u003eE409\u003c/code\u003e from \u003ccode\u003enpm publish\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/246\"\u003e#246\u003c/a\u003e) (c13368d), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/245\"\u003e#245\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cp\u003eThe \u003ccode\u003ev4\u003c/code\u003e release updates the action runtime to Node 24, but there have been no usage changes to the action.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/immutable-releases\"\u003eImmutable releases\u003c/a\u003e have been enabled for this repository. As a security practice, we recommend pinning to an exact release:\u003c/p\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.0.0\n  with:\n    token: ${{ secrets.NPM_TOKEN }}\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003e\u003ccode\u003e8f08ec0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/43babc08a6925230df885bb3153dca8200209dfb\"\u003e\u003ccode\u003e43babc0\u003c/code\u003e\u003c/a\u003e fix(deps): bump the production group with 3 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/252\"\u003e#252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/764af6846e7015c31eed9a85425a1d4cfbd15b64\"\u003e\u003ccode\u003e764af68\u003c/code\u003e\u003c/a\u003e docs(readme): switch main example to trusted publishing (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/680fd954f04c7f2065533bf92a3b156665a19584\"\u003e\u003ccode\u003e680fd95\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group across 1 directory with 8 updates...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/89cf006a5b44c9a1d6ebe7fcb952bcfc02a2d966\"\u003e\u003ccode\u003e89cf006\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/254\"\u003e#254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e6cc16d2d37d6c24b542679f7b14ca20ba56d40a\"\u003e\u003ccode\u003ee6cc16d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the development group with 5 updates (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/250\"\u003e#250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/1fe17a093199d8fabed85cbcc6f0f79eb06470da\"\u003e\u003ccode\u003e1fe17a0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3817acc494b26be8b714d1975f3b963e8a921bd0\"\u003e\u003ccode\u003e3817acc\u003c/code\u003e\u003c/a\u003e fix(action): remove erroneous required \u003ccode\u003etoken\u003c/code\u003e input check (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/248\"\u003e#248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/19c28f1ef146469e409470805ea4279d47c3d35c...8f08ec0dafe29acea4e9efe18e67ebde86904ad1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=3.1.1\u0026new-version=4.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/FlowFuse/node-red-dashboard-2-user-addon/pull/33","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/FlowFuse%2Fnode-red-dashboard-2-user-addon/issues/33","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/33/packages"}},{"old_version":"4.0.1","new_version":"4.1.1","update_type":"minor","path":null,"pr_created_at":"2025-11-24T19:10:58.000Z","version_change":"4.0.1 → 4.1.1","issue":{"uuid":"3660185016","node_id":"PR_kwDOALhkcc61RHmp","number":277,"state":"closed","title":"build(deps): bump the gha group across 1 directory with 4 updates","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2025-12-03T20:08:02.000Z","author_association":null,"state_reason":null,"created_at":"2025-11-24T19:10:58.000Z","updated_at":"2025-12-03T20:08:03.000Z","time_to_close":781024,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"gha","update_count":4,"packages":[{"name":"actions/checkout","old_version":"5.0.0","new_version":"6.0.0","repository_url":"https://github.com/actions/checkout"},{"name":"actions/setup-node","old_version":"5.0.0","new_version":"6.0.0","repository_url":"https://github.com/actions/setup-node"},{"name":"JS-DevTools/npm-publish","old_version":"4.0.1","new_version":"4.1.1","repository_url":"https://github.com/js-devtools/npm-publish"},{"name":"googleapis/release-please-action","old_version":"4.3.0","new_version":"4.4.0","repository_url":"https://github.com/googleapis/release-please-action"}],"path":null,"ecosystem":"actions"},"body":"Bumps the gha group with 4 updates in the /.github/workflows directory: [actions/checkout](https://github.com/actions/checkout), [actions/setup-node](https://github.com/actions/setup-node), [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) and [googleapis/release-please-action](https://github.com/googleapis/release-please-action).\n\nUpdates `actions/checkout` from 5.0.0 to 6.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/releases\"\u003eactions/checkout's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev6-beta by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2298\"\u003eactions/checkout#2298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate readme/changelog for v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2311\"\u003eactions/checkout#2311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/checkout/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6-beta\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eUpdated persist-credentials to store the credentials under \u003ccode\u003e$RUNNER_TEMP\u003c/code\u003e instead of directly in the local git config.\u003c/p\u003e\n\u003cp\u003eThis requires a minimum Actions Runner version of \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.329.0\"\u003ev2.329.0\u003c/a\u003e to access the persisted credentials for \u003ca href=\"https://docs.github.com/en/actions/tutorials/use-containerized-services/create-a-docker-container-action\"\u003eDocker container action\u003c/a\u003e scenarios.\u003c/p\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5...v5.0.1\"\u003ehttps://github.com/actions/checkout/compare/v5...v5.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/blob/main/CHANGELOG.md\"\u003eactions/checkout's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eV6.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eV5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3\"\u003e\u003ccode\u003e1af3b93\u003c/code\u003e\u003c/a\u003e update readme/changelog for v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2311\"\u003e#2311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/71cf2267d89c5cb81562390fa70a37fa40b1305e\"\u003e\u003ccode\u003e71cf226\u003c/code\u003e\u003c/a\u003e v6-beta (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/069c6959146423d11cd0184e6accf28f9d45f06e\"\u003e\u003ccode\u003e069c695\u003c/code\u003e\u003c/a\u003e Persist creds to a separate file (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2286\"\u003e#2286\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493\"\u003e\u003ccode\u003eff7abcd\u003c/code\u003e\u003c/a\u003e Update README to include Node.js 24 support details and requirements (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2248\"\u003e#2248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/checkout/compare/v5.0.0...v6.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/setup-node` from 5.0.0 to 6.0.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/setup-node/releases\"\u003eactions/setup-node's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking Changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eLimit automatic caching to npm, update workflows and documentation by \u003ca href=\"https://github.com/priyagupta108\"\u003e\u003ccode\u003e@​priyagupta108\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1374\"\u003eactions/setup-node#1374\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eDependency Upgrades\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade ts-jest from 29.1.2 to 29.4.1 and document breaking changes in v5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1336\"\u003e#1336\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 2.8.8 to 3.6.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1334\"\u003e#1334\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions/publish-action from 0.3.0 to 0.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1362\"\u003e#1362\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-node/compare/v5...v6.0.0\"\u003ehttps://github.com/actions/setup-node/compare/v5...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/2028fbc5c25fe9cf00d9f06a71cc4710d4507903\"\u003e\u003ccode\u003e2028fbc\u003c/code\u003e\u003c/a\u003e Limit automatic caching to npm, update workflows and documentation (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1374\"\u003e#1374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/13427813f706a0f6c9b74603b31103c40ab1c35a\"\u003e\u003ccode\u003e1342781\u003c/code\u003e\u003c/a\u003e Bump actions/publish-action from 0.3.0 to 0.4.0 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1362\"\u003e#1362\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/89d709d423dc495668cd762a18dd4a070611be3f\"\u003e\u003ccode\u003e89d709d\u003c/code\u003e\u003c/a\u003e Bump prettier from 2.8.8 to 3.6.2 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1334\"\u003e#1334\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/cd2651c46231bc0d6f48d6b34433b845331235fe\"\u003e\u003ccode\u003ecd2651c\u003c/code\u003e\u003c/a\u003e Bump ts-jest from 29.1.2 to 29.4.1 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1336\"\u003e#1336\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/setup-node/compare/v5.0.0...v6.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `JS-DevTools/npm-publish` from 4.0.1 to 4.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.1\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e) (99ef290)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.0\u003c/h2\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.1.0\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eallow \u003ccode\u003etoken\u003c/code\u003e to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e) (612922f), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/1fe17a093199d8fabed85cbcc6f0f79eb06470da\"\u003e\u003ccode\u003e1fe17a0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3817acc494b26be8b714d1975f3b963e8a921bd0\"\u003e\u003ccode\u003e3817acc\u003c/code\u003e\u003c/a\u003e fix(action): remove erroneous required \u003ccode\u003etoken\u003c/code\u003e input check (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/248\"\u003e#248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/85420f21fe2984e61cdb5211be069f8398fe3847\"\u003e\u003ccode\u003e85420f2\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/612922fd9545cba1edf1aacc7d73ab157c7a8f53\"\u003e\u003ccode\u003e612922f\u003c/code\u003e\u003c/a\u003e feat: allow token to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/v4.0.1...v4.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `googleapis/release-please-action` from 4.3.0 to 4.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/googleapis/release-please-action/releases\"\u003egoogleapis/release-please-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.4.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/compare/v4.3.0...v4.4.0\"\u003e4.4.0\u003c/a\u003e (2025-10-09)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd ability to select versioning-strategy and release-as (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1121\"\u003e#1121\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/ee0f5bae453367755be0c4340193531b3f538374\"\u003eee0f5ba\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003echangelog-host\u003c/code\u003e parameter ignored when using manifest configuration (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1151\"\u003e#1151\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/535c4130c1030110bdacd1b3076f98c046c3a227\"\u003e535c413\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump mocha from 11.7.1 to 11.7.2 in the npm_and_yarn group across 1 directory (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1149\"\u003e#1149\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/3612a99d75bd7a010bb03d6e2ee3e2392b7392fb\"\u003e3612a99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump release-please from 17.1.2 to 17.1.3 (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1158\"\u003e#1158\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/66fbfe9439cb7a3660ecdc00d42573ef0bd00764\"\u003e66fbfe9\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/googleapis/release-please-action/blob/main/CHANGELOG.md\"\u003egoogleapis/release-please-action's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/compare/v4.3.0...v4.4.0\"\u003e4.4.0\u003c/a\u003e (2025-10-09)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd ability to select versioning-strategy and release-as (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1121\"\u003e#1121\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/ee0f5bae453367755be0c4340193531b3f538374\"\u003eee0f5ba\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003echangelog-host\u003c/code\u003e parameter ignored when using manifest configuration (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1151\"\u003e#1151\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/535c4130c1030110bdacd1b3076f98c046c3a227\"\u003e535c413\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump mocha from 11.7.1 to 11.7.2 in the npm_and_yarn group across 1 directory (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1149\"\u003e#1149\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/3612a99d75bd7a010bb03d6e2ee3e2392b7392fb\"\u003e3612a99\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebump release-please from 17.1.2 to 17.1.3 (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1158\"\u003e#1158\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/release-please-action/commit/66fbfe9439cb7a3660ecdc00d42573ef0bd00764\"\u003e66fbfe9\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/16a9c90856f42705d54a6fda1823352bdc62cf38\"\u003e\u003ccode\u003e16a9c90\u003c/code\u003e\u003c/a\u003e chore(main): release 4.4.0 (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1156\"\u003e#1156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/e5c2aa4f6acd6194e00632c8f262cff67ae17873\"\u003e\u003ccode\u003ee5c2aa4\u003c/code\u003e\u003c/a\u003e chore: build dist (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1159\"\u003e#1159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/66fbfe9439cb7a3660ecdc00d42573ef0bd00764\"\u003e\u003ccode\u003e66fbfe9\u003c/code\u003e\u003c/a\u003e fix: bump release-please from 17.1.2 to 17.1.3 (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1158\"\u003e#1158\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/4cd397a333e5500c1683589c277f56a3c10990e6\"\u003e\u003ccode\u003e4cd397a\u003c/code\u003e\u003c/a\u003e chore: build dist (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1152\"\u003e#1152\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/ee0f5bae453367755be0c4340193531b3f538374\"\u003e\u003ccode\u003eee0f5ba\u003c/code\u003e\u003c/a\u003e feat: add ability to select versioning-strategy and release-as (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1121\"\u003e#1121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/535c4130c1030110bdacd1b3076f98c046c3a227\"\u003e\u003ccode\u003e535c413\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003echangelog-host\u003c/code\u003e parameter ignored when using manifest configuration (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1\"\u003e#1\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/3612a99d75bd7a010bb03d6e2ee3e2392b7392fb\"\u003e\u003ccode\u003e3612a99\u003c/code\u003e\u003c/a\u003e fix: bump mocha from 11.7.1 to 11.7.2 in the npm_and_yarn group across 1 dire...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/15209c45fcfd128badf82abd8b1c25c1c5726a05\"\u003e\u003ccode\u003e15209c4\u003c/code\u003e\u003c/a\u003e chore: verify body contents when running tests (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1148\"\u003e#1148\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/bf9034945a62263b06cccfb6549caf19f049b589\"\u003e\u003ccode\u003ebf90349\u003c/code\u003e\u003c/a\u003e docs: Add \u003ccode\u003ebody\u003c/code\u003e to Outputs (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1129\"\u003e#1129\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/release-please-action/commit/1cfb21c8d4bdaaa3dd6f20f3f643b4a36cc5cd98\"\u003e\u003ccode\u003e1cfb21c\u003c/code\u003e\u003c/a\u003e docs: adds missing github action permissions to README (\u003ca href=\"https://redirect.github.com/googleapis/release-please-action/issues/1108\"\u003e#1108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/googleapis/release-please-action/compare/v4.3.0...v4.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/nwjs/grunt-nw-builder/pull/277","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/nwjs%2Fgrunt-nw-builder/issues/277","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/277/packages"}},{"old_version":"3","new_version":"4","update_type":null,"path":null,"pr_created_at":"2025-11-12T17:07:40.000Z","version_change":"3 → 4","issue":{"uuid":"3617445981","node_id":"PR_kwDOQUQz9c6zB4lW","number":10,"state":"closed","title":"ci:(deps): bump the github-actions group with 3 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-11-12T17:08:31.000Z","author_association":null,"state_reason":null,"created_at":"2025-11-12T17:07:40.000Z","updated_at":"2025-11-12T17:08:33.000Z","time_to_close":51,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"ci:(deps): bump","group_name":"github-actions","update_count":3,"packages":[{"name":"actions/checkout","old_version":"4","new_version":"5","repository_url":"https://github.com/actions/checkout"},{"name":"actions/setup-node","old_version":"4","new_version":"6","repository_url":"https://github.com/actions/setup-node"},{"name":"JS-DevTools/npm-publish","old_version":"3","new_version":"4","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"[//]: # (dependabot-start)\n⚠️  **Dependabot is rebasing this PR** ⚠️ \n\nRebasing might not happen immediately, so don't worry if this takes some time.\n\nNote: if you make any changes to this PR yourself, they will take precedence over the rebase.\n\n---\n\n[//]: # (dependabot-end)\n\nBumps the github-actions group with 3 updates: [actions/checkout](https://github.com/actions/checkout), [actions/setup-node](https://github.com/actions/setup-node) and [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish).\n\nUpdates `actions/checkout` from 4 to 5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/releases\"\u003eactions/checkout's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare v5.0.0 release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2238\"\u003eactions/checkout#2238\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v5.0.0\"\u003ehttps://github.com/actions/checkout/compare/v4...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdjust positioning of user email note and permissions heading by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2044\"\u003eactions/checkout#2044\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CODEOWNERS for actions by \u003ca href=\"https://github.com/TingluoHuang\"\u003e\u003ccode\u003e@​TingluoHuang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2224\"\u003eactions/checkout#2224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate package dependencies by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare release v4.3.0 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2237\"\u003eactions/checkout#2237\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v4.3.0\"\u003ehttps://github.com/actions/checkout/compare/v4...v4.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eurl-helper.ts\u003c/code\u003e now leverages well-known environment variables by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1941\"\u003eactions/checkout#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand unit test coverage for \u003ccode\u003eisGhes\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1946\"\u003eactions/checkout#1946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4.2.1...v4.2.2\"\u003ehttps://github.com/actions/checkout/compare/v4.2.1...v4.2.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck out other refs/* by commit if provided, fall back to ref by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1924\"\u003eactions/checkout#1924\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1919\"\u003eactions/checkout#1919\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4.2.0...v4.2.1\"\u003ehttps://github.com/actions/checkout/compare/v4.2.0...v4.2.1\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/blob/main/CHANGELOG.md\"\u003eactions/checkout's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003eV5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eV4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdjust positioning of user email note and permissions heading by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2044\"\u003eactions/checkout#2044\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CODEOWNERS for actions by \u003ca href=\"https://github.com/TingluoHuang\"\u003e\u003ccode\u003e@​TingluoHuang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2224\"\u003eactions/checkout#2224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate package dependencies by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eurl-helper.ts\u003c/code\u003e now leverages well-known environment variables by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1941\"\u003eactions/checkout#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand unit test coverage for \u003ccode\u003eisGhes\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1946\"\u003eactions/checkout#1946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck out other refs/* by commit if provided, fall back to ref by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1924\"\u003eactions/checkout#1924\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ref and Commit outputs by \u003ca href=\"https://github.com/lucacome\"\u003e\u003ccode\u003e@​lucacome\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1180\"\u003eactions/checkout#1180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e- \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1777\"\u003eactions/checkout#1777\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1872\"\u003eactions/checkout#1872\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump the minor-npm-dependencies group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1739\"\u003eactions/checkout#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1697\"\u003eactions/checkout#1697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck out other refs/* by commit by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1774\"\u003eactions/checkout#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/checkout's own workflows to a known, good, stable version. by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1776\"\u003eactions/checkout#1776\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck platform to set archive extension appropriately by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1732\"\u003eactions/checkout#1732\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate NPM dependencies by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1703\"\u003eactions/checkout#1703\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github/codeql-action from 2 to 3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1694\"\u003eactions/checkout#1694\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 1 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1696\"\u003eactions/checkout#1696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/upload-artifact from 2 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1695\"\u003eactions/checkout#1695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME: Suggest \u003ccode\u003euser.email\u003c/code\u003e to be \u003ccode\u003e41898282+github-actions[bot]@users.noreply.github.com\u003c/code\u003e by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1707\"\u003eactions/checkout#1707\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDisable \u003ccode\u003eextensions.worktreeConfig\u003c/code\u003e when disabling \u003ccode\u003esparse-checkout\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1692\"\u003eactions/checkout#1692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd dependabot config by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1688\"\u003eactions/checkout#1688\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the minor-actions-dependencies group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1693\"\u003eactions/checkout#1693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump word-wrap from 1.2.3 to 1.2.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1643\"\u003eactions/checkout#1643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/08c6903cd8c0fde910a37f88322edcfb5dd907a8\"\u003e\u003ccode\u003e08c6903\u003c/code\u003e\u003c/a\u003e Prepare v5.0.0 release (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/9f265659d3bb64ab1440b03b12f4d47a24320917\"\u003e\u003ccode\u003e9f26565\u003c/code\u003e\u003c/a\u003e Update actions checkout to use node 24 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2226\"\u003e#2226\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/actions/checkout/compare/v4...v5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/setup-node` from 4 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/setup-node/releases\"\u003eactions/setup-node's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking Changes\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eLimit automatic caching to npm, update workflows and documentation by \u003ca href=\"https://github.com/priyagupta108\"\u003e\u003ccode\u003e@​priyagupta108\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1374\"\u003eactions/setup-node#1374\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eDependency Upgrades\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade ts-jest from 29.1.2 to 29.4.1 and document breaking changes in v5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1336\"\u003e#1336\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 2.8.8 to 3.6.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1334\"\u003e#1334\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions/publish-action from 0.3.0 to 0.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1362\"\u003e#1362\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-node/compare/v5...v6.0.0\"\u003ehttps://github.com/actions/setup-node/compare/v5...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEnhance caching in setup-node with automatic package manager detection by \u003ca href=\"https://github.com/priya-kinthali\"\u003e\u003ccode\u003e@​priya-kinthali\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1348\"\u003eactions/setup-node#1348\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThis update, introduces automatic caching when a valid \u003ccode\u003epackageManager\u003c/code\u003e field is present in your \u003ccode\u003epackage.json\u003c/code\u003e. This aims to improve workflow performance and make dependency management more seamless.\nTo disable this automatic caching, set \u003ccode\u003epackage-manager-cache: false\u003c/code\u003e\u003c/p\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003esteps:\n- uses: actions/checkout@v5\n- uses: actions/setup-node@v5\n  with:\n    package-manager-cache: false\n\u003c/code\u003e\u003c/pre\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade action to use node24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1325\"\u003eactions/setup-node#1325\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eMake sure your runner is on version v2.327.1 or later to ensure compatibility with this release. \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eSee Release Notes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eDependency Upgrades\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​octokit/request-error\u003c/code\u003e and \u003ccode\u003e@​actions/github\u003c/code\u003e by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1227\"\u003eactions/setup-node#1227\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade uuid from 9.0.1 to 11.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1273\"\u003eactions/setup-node#1273\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade undici from 5.28.5 to 5.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1295\"\u003eactions/setup-node#1295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade form-data to bring in fix for critical vulnerability by \u003ca href=\"https://github.com/gowridurgad\"\u003e\u003ccode\u003e@​gowridurgad\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1332\"\u003eactions/setup-node#1332\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1345\"\u003eactions/setup-node#1345\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/priya-kinthali\"\u003e\u003ccode\u003e@​priya-kinthali\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1348\"\u003eactions/setup-node#1348\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-node/pull/1325\"\u003eactions/setup-node#1325\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-node/compare/v4...v5.0.0\"\u003ehttps://github.com/actions/setup-node/compare/v4...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.4.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/2028fbc5c25fe9cf00d9f06a71cc4710d4507903\"\u003e\u003ccode\u003e2028fbc\u003c/code\u003e\u003c/a\u003e Limit automatic caching to npm, update workflows and documentation (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1374\"\u003e#1374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/13427813f706a0f6c9b74603b31103c40ab1c35a\"\u003e\u003ccode\u003e1342781\u003c/code\u003e\u003c/a\u003e Bump actions/publish-action from 0.3.0 to 0.4.0 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1362\"\u003e#1362\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/89d709d423dc495668cd762a18dd4a070611be3f\"\u003e\u003ccode\u003e89d709d\u003c/code\u003e\u003c/a\u003e Bump prettier from 2.8.8 to 3.6.2 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1334\"\u003e#1334\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/cd2651c46231bc0d6f48d6b34433b845331235fe\"\u003e\u003ccode\u003ecd2651c\u003c/code\u003e\u003c/a\u003e Bump ts-jest from 29.1.2 to 29.4.1 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1336\"\u003e#1336\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/a0853c24544627f65ddf259abe73b1d18a591444\"\u003e\u003ccode\u003ea0853c2\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1345\"\u003e#1345\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/b7234cc9fe124f0f4932554b4e5284543083ae7b\"\u003e\u003ccode\u003eb7234cc\u003c/code\u003e\u003c/a\u003e Upgrade action to use node24 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1325\"\u003e#1325\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/d7a11313b581b306c961b506cfc8971208bb03f6\"\u003e\u003ccode\u003ed7a1131\u003c/code\u003e\u003c/a\u003e Enhance caching in setup-node with automatic package manager detection (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1348\"\u003e#1348\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/5e2628c959b9ade56971c0afcebbe5332d44b398\"\u003e\u003ccode\u003e5e2628c\u003c/code\u003e\u003c/a\u003e Bumps form-data (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1332\"\u003e#1332\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/65beceff8e91358525397bdce9103d999507ab03\"\u003e\u003ccode\u003e65becef\u003c/code\u003e\u003c/a\u003e Bump undici from 5.28.5 to 5.29.0 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1295\"\u003e#1295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-node/commit/7e24a656e1c7a0d6f3eaef8d8e84ae379a5b035b\"\u003e\u003ccode\u003e7e24a65\u003c/code\u003e\u003c/a\u003e Bump uuid from 9.0.1 to 11.1.0 (\u003ca href=\"https://redirect.github.com/actions/setup-node/issues/1273\"\u003e#1273\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/setup-node/compare/v4...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `JS-DevTools/npm-publish` from 3 to 4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cp\u003eThe \u003ccode\u003ev4\u003c/code\u003e release updates the action runtime to Node 24, but there have been no usage changes to the action.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/immutable-releases\"\u003eImmutable releases\u003c/a\u003e have been enabled for this repository. As a security practice, we recommend pinning to an exact release:\u003c/p\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.0.0\n  with:\n    token: ${{ secrets.NPM_TOKEN }}\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe action now runs on Node 24 with npm 11\u003c/li\u003e\n\u003cli\u003eThe library and CLI now require Node \u0026gt;= 20, Node 16 and 18 are no longer supported\u003c/li\u003e\n\u003cli\u003eThe library is now ESM only\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate action runtime to Node 24 (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/231\"\u003e#231\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/0b36106dbd9cd4915500664889efae23fbef0792\"\u003e0b36106\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/238\"\u003e#238\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/314ae618152af5664459e83148cbc2a6cccae17a\"\u003e314ae61\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update tar and semver dependencies (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/194\"\u003e#194\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/cd26c94e5e1d0969f83432de537ea838d9c8ce4a\"\u003ecd26c94\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate dry-run and publish conflict logic for npm\u0026gt;=10 (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/232\"\u003e#232\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/62716ea038d8ca7356d207d14f5bdebbc57602ac\"\u003e62716ea\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewindows:\u003c/strong\u003e allow spawning \u003ccode\u003enpm\u003c/code\u003e cli on windows (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/199\"\u003e#199\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/f45e793c85d8f38bbd07848de2afe3b1c58ff985\"\u003ef45e793\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/198\"\u003e#198\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCode Refactoring\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eswitch module format to ESM (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/234\"\u003e#234\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e081941d3305d566416be9c3e8f43fe643c10623\"\u003ee081941\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.1.1\u003c/h2\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einclude registry URL pathname in npm config (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/186\"\u003e#186\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edry-run\u003c/strong\u003e: always print publish results in dry run (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/185\"\u003e#185\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/184\"\u003e#184\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePerformance Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaction\u003c/strong\u003e: decrease bundle size (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/166\"\u003e#166\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.1\u003c/h2\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eerrors\u003c/strong\u003e: improve message when version validation fails (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/161\"\u003e#161\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/160\"\u003e#160\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/JS-DevTools/npm-publish/blob/main/CHANGELOG.md\"\u003eJS-DevTools/npm-publish's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChange Log (Archived)\u003c/h1\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/JS-DevTools/npm-publish/releases\"\u003ereleases\u003c/a\u003e for current change log.\u003c/p\u003e\n\u003chr /\u003e\n\u003cp\u003eAll notable changes will be documented in this file.\nNPM Publish adheres to \u003ca href=\"http://semver.org/\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/tree/v1.4.0\"\u003ev1.4.0\u003c/a\u003e (2020-10-02)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdded support NPM's \u003ccode\u003e--tag\u003c/code\u003e argument, which allows packages to be published to a named tag that can then be installed using \u003ccode\u003enpm install \u0026lt;package-name\u0026gt;@\u0026lt;tag\u0026gt;\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded support for NPM's \u003ccode\u003e--access\u003c/code\u003e argument, which controls whether scoped packages are publicly accessible, or restricted to members of your NPM organization\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/compare/v1.3.0...v1.4.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/tree/v1.3.0\"\u003ev1.3.0\u003c/a\u003e (2020-10-01)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNPM-Publish can now successfully publish a brand-new package to NPM. Previously it failed because it couldn't determine the previous package version. ([PR \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/12\"\u003e#12\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/pull/12\"\u003eJS-DevTools/npm-publish#12\u003c/a\u003e) from \u003ca href=\"https://github.com/ZitRos\"\u003e\u003ccode\u003e@​ZitRos\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/compare/v1.2.0...v1.3.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/1fe17a093199d8fabed85cbcc6f0f79eb06470da\"\u003e\u003ccode\u003e1fe17a0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3817acc494b26be8b714d1975f3b963e8a921bd0\"\u003e\u003ccode\u003e3817acc\u003c/code\u003e\u003c/a\u003e fix(action): remove erroneous required \u003ccode\u003etoken\u003c/code\u003e input check (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/248\"\u003e#248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/85420f21fe2984e61cdb5211be069f8398fe3847\"\u003e\u003ccode\u003e85420f2\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/612922fd9545cba1edf1aacc7d73ab157c7a8f53\"\u003e\u003ccode\u003e612922f\u003c/code\u003e\u003c/a\u003e feat: allow token to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/ad693561f8a5b5d4c76f14407da60aa15cb10f90\"\u003e\u003ccode\u003ead69356\u003c/code\u003e\u003c/a\u003e chore(release): 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/c13368de7b925a17078a729178f2c4b632749851\"\u003e\u003ccode\u003ec13368d\u003c/code\u003e\u003c/a\u003e fix: do not suppress E409 from \u003ccode\u003enpm publish\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/246\"\u003e#246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/b6b0bb6ebf081acc55469774087b431d6034e6d7\"\u003e\u003ccode\u003eb6b0bb6\u003c/code\u003e\u003c/a\u003e docs: add usage warning to steer folks to first-party tools (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/241\"\u003e#241\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d9dc932de083f0e6de6a50f0d1097a7142c3751b\"\u003e\u003ccode\u003ed9dc932\u003c/code\u003e\u003c/a\u003e chore(release): 4.0.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/v3...v4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/WDaan/n8n-nodes-openrouter-datadog/pull/10","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/WDaan%2Fn8n-nodes-openrouter-datadog/issues/10","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10/packages"}},{"old_version":"3","new_version":"4","update_type":null,"path":null,"pr_created_at":"2025-10-20T17:01:48.000Z","version_change":"3 → 4","issue":{"uuid":"3533212100","node_id":"PR_kwDOJZ2vq86urD8F","number":742,"state":"open","title":"Bump JS-DevTools/npm-publish from 3 to 4","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-10-20T17:01:48.000Z","updated_at":"2025-10-20T17:02:17.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"3","new_version":"4","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 3 to 4.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cp\u003eThe \u003ccode\u003ev4\u003c/code\u003e release updates the action runtime to Node 24, but there have been no usage changes to the action.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/immutable-releases\"\u003eImmutable releases\u003c/a\u003e have been enabled for this repository. As a security practice, we recommend pinning to an exact release:\u003c/p\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.0.0\n  with:\n    token: ${{ secrets.NPM_TOKEN }}\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe action now runs on Node 24 with npm 11\u003c/li\u003e\n\u003cli\u003eThe library and CLI now require Node \u0026gt;= 20, Node 16 and 18 are no longer supported\u003c/li\u003e\n\u003cli\u003eThe library is now ESM only\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate action runtime to Node 24 (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/231\"\u003e#231\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/0b36106dbd9cd4915500664889efae23fbef0792\"\u003e0b36106\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/238\"\u003e#238\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/314ae618152af5664459e83148cbc2a6cccae17a\"\u003e314ae61\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update tar and semver dependencies (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/194\"\u003e#194\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/cd26c94e5e1d0969f83432de537ea838d9c8ce4a\"\u003ecd26c94\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate dry-run and publish conflict logic for npm\u0026gt;=10 (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/232\"\u003e#232\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/62716ea038d8ca7356d207d14f5bdebbc57602ac\"\u003e62716ea\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewindows:\u003c/strong\u003e allow spawning \u003ccode\u003enpm\u003c/code\u003e cli on windows (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/199\"\u003e#199\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/f45e793c85d8f38bbd07848de2afe3b1c58ff985\"\u003ef45e793\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/198\"\u003e#198\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCode Refactoring\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eswitch module format to ESM (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/234\"\u003e#234\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e081941d3305d566416be9c3e8f43fe643c10623\"\u003ee081941\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.1.1\u003c/h2\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einclude registry URL pathname in npm config (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/186\"\u003e#186\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edry-run\u003c/strong\u003e: always print publish results in dry run (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/185\"\u003e#185\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/184\"\u003e#184\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePerformance Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaction\u003c/strong\u003e: decrease bundle size (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/166\"\u003e#166\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.1\u003c/h2\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eerrors\u003c/strong\u003e: improve message when version validation fails (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/161\"\u003e#161\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/160\"\u003e#160\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/JS-DevTools/npm-publish/blob/main/CHANGELOG.md\"\u003eJS-DevTools/npm-publish's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChange Log (Archived)\u003c/h1\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/JS-DevTools/npm-publish/releases\"\u003ereleases\u003c/a\u003e for current change log.\u003c/p\u003e\n\u003chr /\u003e\n\u003cp\u003eAll notable changes will be documented in this file.\nNPM Publish adheres to \u003ca href=\"http://semver.org/\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/tree/v1.4.0\"\u003ev1.4.0\u003c/a\u003e (2020-10-02)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdded support NPM's \u003ccode\u003e--tag\u003c/code\u003e argument, which allows packages to be published to a named tag that can then be installed using \u003ccode\u003enpm install \u0026lt;package-name\u0026gt;@\u0026lt;tag\u0026gt;\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded support for NPM's \u003ccode\u003e--access\u003c/code\u003e argument, which controls whether scoped packages are publicly accessible, or restricted to members of your NPM organization\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/compare/v1.3.0...v1.4.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/tree/v1.3.0\"\u003ev1.3.0\u003c/a\u003e (2020-10-01)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNPM-Publish can now successfully publish a brand-new package to NPM. Previously it failed because it couldn't determine the previous package version. ([PR \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/12\"\u003e#12\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/pull/12\"\u003eJS-DevTools/npm-publish#12\u003c/a\u003e) from \u003ca href=\"https://github.com/ZitRos\"\u003e\u003ccode\u003e@​ZitRos\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/compare/v1.2.0...v1.3.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/1fe17a093199d8fabed85cbcc6f0f79eb06470da\"\u003e\u003ccode\u003e1fe17a0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3817acc494b26be8b714d1975f3b963e8a921bd0\"\u003e\u003ccode\u003e3817acc\u003c/code\u003e\u003c/a\u003e fix(action): remove erroneous required \u003ccode\u003etoken\u003c/code\u003e input check (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/248\"\u003e#248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/85420f21fe2984e61cdb5211be069f8398fe3847\"\u003e\u003ccode\u003e85420f2\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/612922fd9545cba1edf1aacc7d73ab157c7a8f53\"\u003e\u003ccode\u003e612922f\u003c/code\u003e\u003c/a\u003e feat: allow token to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/ad693561f8a5b5d4c76f14407da60aa15cb10f90\"\u003e\u003ccode\u003ead69356\u003c/code\u003e\u003c/a\u003e chore(release): 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/c13368de7b925a17078a729178f2c4b632749851\"\u003e\u003ccode\u003ec13368d\u003c/code\u003e\u003c/a\u003e fix: do not suppress E409 from \u003ccode\u003enpm publish\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/246\"\u003e#246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/b6b0bb6ebf081acc55469774087b431d6034e6d7\"\u003e\u003ccode\u003eb6b0bb6\u003c/code\u003e\u003c/a\u003e docs: add usage warning to steer folks to first-party tools (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/241\"\u003e#241\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d9dc932de083f0e6de6a50f0d1097a7142c3751b\"\u003e\u003ccode\u003ed9dc932\u003c/code\u003e\u003c/a\u003e chore(release): 4.0.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/v3...v4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=3\u0026new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/xmtp/xmtp-react-native/pull/742","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/xmtp%2Fxmtp-react-native/issues/742","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/742/packages"}},{"old_version":"3","new_version":"4","update_type":null,"path":null,"pr_created_at":"2025-10-17T02:01:35.397Z","version_change":"3 → 4","issue":{"uuid":"2922522505","node_id":"PR_kwDOK_Gl2s6uMieJ","number":89,"state":"closed","title":"Bump JS-DevTools/npm-publish from 3 to 4","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-10-17T02:01:35.397Z","updated_at":"2026-03-14T04:30:32.020Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"JS-DevTools/npm-publish","old_version":"3","new_version":"4","repository_url":"https://github.com/js-devtools/npm-publish"}],"path":null,"ecosystem":"actions"},"body":"Bumps [JS-DevTools/npm-publish](https://github.com/js-devtools/npm-publish) from 3 to 4.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/js-devtools/npm-publish/releases\"\u003eJS-DevTools/npm-publish's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cp\u003eThe \u003ccode\u003ev4\u003c/code\u003e release updates the action runtime to Node 24, but there have been no usage changes to the action.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/immutable-releases\"\u003eImmutable releases\u003c/a\u003e have been enabled for this repository. As a security practice, we recommend pinning to an exact release:\u003c/p\u003e\n\u003cpre lang=\"yaml\"\u003e\u003ccode\u003e- uses: JS-DevTools/npm-publish@v4.0.0\n  with:\n    token: ${{ secrets.NPM_TOKEN }}\n\u003c/code\u003e\u003c/pre\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe action now runs on Node 24 with npm 11\u003c/li\u003e\n\u003cli\u003eThe library and CLI now require Node \u0026gt;= 20, Node 16 and 18 are no longer supported\u003c/li\u003e\n\u003cli\u003eThe library is now ESM only\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eupdate action runtime to Node 24 (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/231\"\u003e#231\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/0b36106dbd9cd4915500664889efae23fbef0792\"\u003e0b36106\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump the production group across 1 directory with 5 updates (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/238\"\u003e#238\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/314ae618152af5664459e83148cbc2a6cccae17a\"\u003e314ae61\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e update tar and semver dependencies (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/194\"\u003e#194\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/cd26c94e5e1d0969f83432de537ea838d9c8ce4a\"\u003ecd26c94\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate dry-run and publish conflict logic for npm\u0026gt;=10 (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/232\"\u003e#232\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/62716ea038d8ca7356d207d14f5bdebbc57602ac\"\u003e62716ea\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewindows:\u003c/strong\u003e allow spawning \u003ccode\u003enpm\u003c/code\u003e cli on windows (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/199\"\u003e#199\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/f45e793c85d8f38bbd07848de2afe3b1c58ff985\"\u003ef45e793\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/198\"\u003e#198\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCode Refactoring\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eswitch module format to ESM (\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/issues/234\"\u003e#234\u003c/a\u003e) (\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/e081941d3305d566416be9c3e8f43fe643c10623\"\u003ee081941\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.1.1\u003c/h2\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einclude registry URL pathname in npm config (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/186\"\u003e#186\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edry-run\u003c/strong\u003e: always print publish results in dry run (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/185\"\u003e#185\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/184\"\u003e#184\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePerformance Improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaction\u003c/strong\u003e: decrease bundle size (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/166\"\u003e#166\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.1\u003c/h2\u003e\n\u003ch2\u003eBug fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eerrors\u003c/strong\u003e: improve message when version validation fails (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/161\"\u003e#161\u003c/a\u003e), closes \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/160\"\u003e#160\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/JS-DevTools/npm-publish/blob/main/CHANGELOG.md\"\u003eJS-DevTools/npm-publish's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChange Log (Archived)\u003c/h1\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/JS-DevTools/npm-publish/releases\"\u003ereleases\u003c/a\u003e for current change log.\u003c/p\u003e\n\u003chr /\u003e\n\u003cp\u003eAll notable changes will be documented in this file.\nNPM Publish adheres to \u003ca href=\"http://semver.org/\"\u003eSemantic Versioning\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/tree/v1.4.0\"\u003ev1.4.0\u003c/a\u003e (2020-10-02)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eAdded support NPM's \u003ccode\u003e--tag\u003c/code\u003e argument, which allows packages to be published to a named tag that can then be installed using \u003ccode\u003enpm install \u0026lt;package-name\u0026gt;@\u0026lt;tag\u0026gt;\u003c/code\u003e\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eAdded support for NPM's \u003ccode\u003e--access\u003c/code\u003e argument, which controls whether scoped packages are publicly accessible, or restricted to members of your NPM organization\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/compare/v1.3.0...v1.4.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/tree/v1.3.0\"\u003ev1.3.0\u003c/a\u003e (2020-10-01)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNPM-Publish can now successfully publish a brand-new package to NPM. Previously it failed because it couldn't determine the previous package version. ([PR \u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/12\"\u003e#12\u003c/a\u003e](\u003ca href=\"https://redirect.github.com/JS-DevTools/npm-publish/pull/12\"\u003eJS-DevTools/npm-publish#12\u003c/a\u003e) from \u003ca href=\"https://github.com/ZitRos\"\u003e\u003ccode\u003e@​ZitRos\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/compare/v1.2.0...v1.3.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/7f8fe47b3bea1be0c3aec2b717c5ec1f3e03410b\"\u003e\u003ccode\u003e7f8fe47\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/99ef29083d0bada1d56c8130f9feb4c5ffcd1a64\"\u003e\u003ccode\u003e99ef290\u003c/code\u003e\u003c/a\u003e fix(deps): bump tar from 7.4.3 to 7.5.1 (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/1fe17a093199d8fabed85cbcc6f0f79eb06470da\"\u003e\u003ccode\u003e1fe17a0\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/3817acc494b26be8b714d1975f3b963e8a921bd0\"\u003e\u003ccode\u003e3817acc\u003c/code\u003e\u003c/a\u003e fix(action): remove erroneous required \u003ccode\u003etoken\u003c/code\u003e input check (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/248\"\u003e#248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/85420f21fe2984e61cdb5211be069f8398fe3847\"\u003e\u003ccode\u003e85420f2\u003c/code\u003e\u003c/a\u003e chore(release): 4.1.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/612922fd9545cba1edf1aacc7d73ab157c7a8f53\"\u003e\u003ccode\u003e612922f\u003c/code\u003e\u003c/a\u003e feat: allow token to be optional for OIDC-based publish (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/247\"\u003e#247\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/ad693561f8a5b5d4c76f14407da60aa15cb10f90\"\u003e\u003ccode\u003ead69356\u003c/code\u003e\u003c/a\u003e chore(release): 4.0.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/c13368de7b925a17078a729178f2c4b632749851\"\u003e\u003ccode\u003ec13368d\u003c/code\u003e\u003c/a\u003e fix: do not suppress E409 from \u003ccode\u003enpm publish\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/246\"\u003e#246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/b6b0bb6ebf081acc55469774087b431d6034e6d7\"\u003e\u003ccode\u003eb6b0bb6\u003c/code\u003e\u003c/a\u003e docs: add usage warning to steer folks to first-party tools (\u003ca href=\"https://redirect.github.com/js-devtools/npm-publish/issues/241\"\u003e#241\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JS-DevTools/npm-publish/commit/d9dc932de083f0e6de6a50f0d1097a7142c3751b\"\u003e\u003ccode\u003ed9dc932\u003c/code\u003e\u003c/a\u003e chore(release): 4.0.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/js-devtools/npm-publish/compare/v3...v4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=JS-DevTools/npm-publish\u0026package-manager=github_actions\u0026previous-version=3\u0026new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/ng-galien/node-red-pulsar/pull/89","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ng-galien%2Fnode-red-pulsar/issues/89","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/89/packages"}}]}