{"id":2649,"name":"dependabot/fetch-metadata","ecosystem":"actions","repository_url":"https://github.com/dependabot/fetch-metadata","issues_count":12583,"created_at":"2025-06-06T15:02:08.733Z","updated_at":"2025-06-06T15:02:08.733Z","purl":"pkg:githubactions/dependabot/fetch-metadata","metadata":{"id":5806397,"name":"dependabot/fetch-metadata","ecosystem":"actions","description":"Extract information from about the dependency being updated by a Dependabot-generated PR","homepage":"","licenses":"mit","normalized_licenses":["MIT"],"repository_url":"https://github.com/dependabot/fetch-metadata","keywords_array":[],"namespace":"dependabot","versions_count":25,"first_release_published_at":"2021-06-01T14:14:27.000Z","latest_release_published_at":"2024-07-04T23:20:39.000Z","latest_release_number":"v2.2.0","last_synced_at":"2025-01-23T16:01:37.648Z","created_at":"2023-01-04T16:07:27.861Z","updated_at":"2025-01-23T16:01:37.649Z","registry_url":"https://github.com/dependabot/fetch-metadata","install_command":null,"documentation_url":null,"metadata":{"name":"Fetch Metadata from Dependabot PRs","description":"Extract information from about the dependency being updated by a Dependabot-generated PR","branding":{"icon":"search","color":"blue"},"inputs":{"alert-lookup":{"type":"boolean","description":"If true, then populate the `alert-state`, `ghsa-id` and `cvss` outputs"},"compat-lookup":{"type":"boolean","description":"If true, then populate the `compatibility-score` output"},"github-token":{"description":"The GITHUB_TOKEN secret","default":"${{ github.token }}"},"skip-commit-verification":{"type":"boolean","description":"If true, the action will not expect Dependabot commits to be verified. This should be set as `true` in GHES environments","default":false},"skip-verification":{"type":"boolean","description":"If true, the action will not validate the user or the commit verification status","default":false}},"outputs":{"dependency-names":{"description":"A comma-separated list of all package names updated."},"dependency-type":{"description":"The type of dependency has determined this PR to be, e.g. \"direct:production\"."},"update-type":{"description":"The highest semver change being made by this PR, e.g. \"version-update:semver-major\""},"updated-dependencies-json":{"description":"A JSON string containing the full information about each updated Dependency."},"directory":{"description":"The `directory` configuration that was used by dependabot for this updated Dependency."},"package-ecosystem":{"description":"The `package-ecosystem` configuration that was used by dependabot for this updated Dependency."},"target-branch":{"description":"The `target-branch` configuration that was used by dependabot for this updated Dependency."},"previous-version":{"description":"The version that this PR updates the dependency from."},"new-version":{"description":"The version that this PR updates the dependency to."},"alert-state":{"description":"If this PR is associated with a security alert and `alert-lookup` is `true`, this contains the current state of that alert (OPEN, FIXED or DISMISSED)."},"ghsa-id":{"description":"If this PR is associated with a security alert and `alert-lookup` is `true`, this contains the GHSA-ID of that alert."},"cvss":{"description":"If this PR is associated with a security alert and `alert-lookup` is `true`, this contains the CVSS value of that alert (otherwise it contains 0)."},"compatibility-score":{"description":"If this PR has a known compatibility score and `compat-lookup` is `true`, this contains the compatibility score (otherwise it contains 0)."},"maintainer-changes":{"description":"Whether or not the the body of this PR contains the phrase \"Maintainer changes\" which is an indicator of whether or not any maintainers have changed."}},"runs":{"using":"node20","main":"dist/index.js"},"default_branch":"main","path":null},"repo_metadata":{"uuid":"371068214","full_name":"dependabot/fetch-metadata","owner":"dependabot","description":"Extract information about the dependencies being updated by a Dependabot-generated PR.","archived":false,"fork":false,"pushed_at":"2024-03-21T23:00:12.000Z","size":2916,"stargazers_count":135,"open_issues_count":26,"forks_count":56,"subscribers_count":10,"default_branch":"main","last_synced_at":"2024-03-22T04:26:25.402Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/dependabot.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":"CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null}},"created_at":"2021-05-26T14:42:50.000Z","updated_at":"2024-03-21T07:02:12.000Z","dependencies_parsed_at":"2024-03-21T04:26:16.612Z","dependency_job_id":"2c9605a1-4062-49c7-98b1-74fcbe3bb531","html_url":"https://github.com/dependabot/fetch-metadata","commit_stats":{"total_commits":283,"total_committers":23,"mean_commits":"12.304347826086957","dds":0.5618374558303887,"last_synced_commit":"32fd3a60da0fe81733ecdb38cdd2ecc6b31c733c"},"previous_names":[],"tags_count":23,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/dependabot","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":192366987,"owners_count":12690272,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"dependabot","name":"Dependabot","uuid":"27347476","kind":"organization","description":"Automated dependency updates built into GitHub","email":"support@github.com","website":"https://github.com/features/security","location":"United States of America","twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/27347476?v=4","repositories_count":17,"last_synced_at":"2023-02-27T16:01:00.860Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/dependabot","funding_links":[],"total_stars":null,"created_at":"2022-11-10T23:22:47.248Z","updated_at":"2023-02-27T16:01:00.874Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/dependabot","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/dependabot/repositories"},"tags":[{"name":"v2.0.0","sha":"0fb21704c18a42ce5aa8d720ea4b912f5e6babef","kind":"commit","published_at":"2024-03-21T21:45:33.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v2.0.0","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v2.0.0","dependencies_parsed_at":null,"dependency_job_id":"33cf8f10-b8a3-4130-8e36-08a28218304d","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v2.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v2.0.0/manifests"},{"name":"v2","sha":"0fb21704c18a42ce5aa8d720ea4b912f5e6babef","kind":"commit","published_at":"2024-03-21T21:45:33.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v2","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v2","dependencies_parsed_at":null,"dependency_job_id":"c240a3f8-a40f-447d-90cd-d09177802098","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v2/manifests"},{"name":"v1.7.0","sha":"8348ea7f5d949b08c7f125a44b569c9626b05db3","kind":"commit","published_at":"2024-03-21T15:42:57.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.7.0","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.7.0","dependencies_parsed_at":null,"dependency_job_id":"5e804841-e5cc-4c21-bb62-f66106a7510c","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.7.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.7.0/manifests"},{"name":"v1.6.0","sha":"c9c4182bf1b97f5224aee3906fd373f6b61b4526","kind":"commit","published_at":"2023-06-27T18:31:40.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.6.0","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.6.0","dependencies_parsed_at":"2023-07-01T04:20:14.892Z","dependency_job_id":"65508487-227d-431f-9292-2dbb85d24e71","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.6.0/manifests"},{"name":"v1.5.1","sha":"cd6e996708b8cfe0b639401134a3b9a3177be7b2","kind":"commit","published_at":"2023-05-24T01:16:23.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.5.1","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.5.1","dependencies_parsed_at":"2023-06-01T00:04:31.125Z","dependency_job_id":"4ed64c08-4d5f-4a73-937e-6e0e63af84d7","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.5.1/manifests"},{"name":"v1.5.0","sha":"28a846a1194a2665a2eea75dd4556c91e43af857","kind":"commit","published_at":"2023-05-22T16:27:18.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.5.0","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.5.0","dependencies_parsed_at":"2023-06-01T00:04:28.732Z","dependency_job_id":"725ea3e7-c0cc-4082-bb0a-4cf78aeb6ea1","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.5.0/manifests"},{"name":"v1.4.0","sha":"efb5c8deb113433243b6b08de1aa879d5aa01cf7","kind":"commit","published_at":"2023-04-17T21:10:46.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.4.0","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.4.0","dependencies_parsed_at":"2023-06-01T00:04:27.302Z","dependency_job_id":"2c99e19b-d6c9-444d-ac88-05362211cb14","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.4.0/manifests"},{"name":"v1.3.6","sha":"4de7a6c08ce727a42e0adbbdc345f761a01240ce","kind":"commit","published_at":"2023-01-24T00:15:28.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.3.6","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.3.6","dependencies_parsed_at":"2023-06-01T00:04:26.950Z","dependency_job_id":"b4ad403e-3df2-43a9-a2a7-0795bcc0af3a","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.3.6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.3.6/manifests"},{"name":"v1.3.5","sha":"5ef00187930bafb52d529e0b9c3dff045dfa9851","kind":"commit","published_at":"2022-11-02T22:58:33.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.3.5","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.3.5","dependencies_parsed_at":"2023-05-31T19:12:10.762Z","dependency_job_id":"0e7e24a7-717f-4350-8be5-34da2d0529a6","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.3.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.3.5/manifests"},{"name":"v1.3.4","sha":"bfc19f43c126171ed783cdcf9a125055b7831d32","kind":"commit","published_at":"2022-09-29T18:21:51.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.3.4","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.3.4","dependencies_parsed_at":"2023-05-31T15:13:41.228Z","dependency_job_id":"90b58713-5477-498a-af0a-b170a54cea0c","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.3.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.3.4/manifests"},{"name":"v1.3.3","sha":"605e039bf3a1b6595b0074dcc00db2c8825ee8a5","kind":"commit","published_at":"2022-07-01T16:36:32.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.3.3","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.3.3","dependencies_parsed_at":"2023-05-30T23:47:35.018Z","dependency_job_id":"6445f83c-a61b-4471-91e5-18a9c614c248","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.3.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.3.3/manifests"},{"name":"v1","sha":"605e039bf3a1b6595b0074dcc00db2c8825ee8a5","kind":"commit","published_at":"2022-07-01T16:36:32.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1","dependencies_parsed_at":"2023-05-30T23:47:37.292Z","dependency_job_id":"73a59b30-a294-4152-a96c-8e9eb026c89b","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1/manifests"},{"name":"v1.3.2","sha":"90ed90dba204fdf8970c1f891b4349c96353f220","kind":"commit","published_at":"2022-06-30T16:55:01.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.3.2","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.3.2","dependencies_parsed_at":"2023-05-30T23:47:38.623Z","dependency_job_id":"a98c3bcc-4f75-4fb9-9612-b9803d321cc5","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.3.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.3.2/manifests"},{"name":"v1.3.1","sha":"bfac3fa29cc6834ca2e3fd659343da191a65d971","kind":"commit","published_at":"2022-04-20T11:33:51.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.3.1","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.3.1","dependencies_parsed_at":"2023-05-30T23:47:39.915Z","dependency_job_id":"acc5740f-6c45-4434-9319-906f04e36735","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.3.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.3.1/manifests"},{"name":"v1.3.0","sha":"a96c30f6ac86e5673ed0a03957891f85b6d60abc","kind":"commit","published_at":"2022-03-01T14:10:02.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.3.0","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.3.0","dependencies_parsed_at":"2023-05-30T23:47:41.105Z","dependency_job_id":"2bfff98b-1fb1-4dcf-a3d6-1fb6a6d18d70","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.3.0/manifests"},{"name":"v1.2.1","sha":"2354b3f276bc0c4c63f4abb3a1734e7dc000efb6","kind":"commit","published_at":"2022-02-22T19:39:17.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.2.1","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.2.1","dependencies_parsed_at":"2023-05-30T23:47:42.507Z","dependency_job_id":"f500f09d-71fe-4d8a-b197-059ab3f7b139","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.2.1/manifests"},{"name":"v1.2.0","sha":"37d2f784cd5e714568666d7ddc32a39fe2a9fc01","kind":"commit","published_at":"2022-02-11T23:41:15.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.2.0","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.2.0","dependencies_parsed_at":"2023-05-30T23:47:43.499Z","dependency_job_id":"474c6a12-97a7-4bfc-852b-98c683b88cf7","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.2.0/manifests"},{"name":"v1.1.1","sha":"a3e5f86ae9f2f49b441498973ddec20035d326b8","kind":"commit","published_at":"2021-06-21T11:34:29.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.1.1","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.1.1","dependencies_parsed_at":"2023-05-30T23:47:44.663Z","dependency_job_id":"01ebeae1-9ee0-4319-8a62-3d8f4bd82a6c","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.1.1/manifests"},{"name":"v1.1.0","sha":"8d4ad2bff16fbf3f28c7d6d409a88361a5200544","kind":"commit","published_at":"2021-06-04T09:49:00.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.1.0","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.1.0","dependencies_parsed_at":"2023-05-30T23:47:45.769Z","dependency_job_id":"f702955a-0ac1-4b4e-82e1-18be899eb109","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.1.0/manifests"},{"name":"v1.0.3","sha":"81e2bef55baf351e126734d8251e6fa802449e0b","kind":"commit","published_at":"2021-06-03T10:59:34.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.0.3","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.0.3","dependencies_parsed_at":"2023-05-30T23:47:46.632Z","dependency_job_id":"de46d056-d684-4af3-877c-54b78fb54dcf","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.0.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.0.3/manifests"},{"name":"v1.0.2","sha":"1438237def885eb342ca8d45d48118eca9ad191c","kind":"commit","published_at":"2021-06-02T13:16:35.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.0.2","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.0.2","dependencies_parsed_at":"2023-05-30T23:47:47.618Z","dependency_job_id":"cdee42f7-ab8d-44f6-94f2-cfd07c5614ec","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.0.2/manifests"},{"name":"v1.0.1","sha":"87968fcf6dc4a5c4f1afd4c7be5c6f5b6c2568ba","kind":"commit","published_at":"2021-06-01T14:14:27.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.0.1","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.0.1","dependencies_parsed_at":"2023-05-30T23:47:48.380Z","dependency_job_id":"4f46a889-f99b-47a7-a2dc-12fb116cb4f4","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.0.1/manifests"},{"name":"v1.0.0","sha":"87968fcf6dc4a5c4f1afd4c7be5c6f5b6c2568ba","kind":"commit","published_at":"2021-06-01T14:14:27.000Z","download_url":"https://codeload.github.com/dependabot/fetch-metadata/tar.gz/v1.0.0","html_url":"https://github.com/dependabot/fetch-metadata/releases/tag/v1.0.0","dependencies_parsed_at":"2023-05-30T23:47:49.444Z","dependency_job_id":"cdb44e97-c75b-4110-a766-e4692ef811e4","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dependabot%2Ffetch-metadata/tags/v1.0.0/manifests"}]},"repo_metadata_updated_at":"2024-03-22T04:26:42.314Z","dependent_packages_count":0,"downloads":null,"downloads_period":null,"dependent_repos_count":5805,"rankings":{"downloads":null,"dependent_repos_count":0.23768024084931072,"dependent_packages_count":0.0,"stargazers_count":2.0662335604500077,"forks_count":1.2232609729044523,"docker_downloads_count":null,"average":0.8817936935509427},"purl":"pkg:githubactions/dependabot/fetch-metadata","advisories":[],"docker_usage_url":"https://docker.ecosyste.ms/usage/actions/dependabot/fetch-metadata","docker_dependents_count":4,"docker_downloads_count":25580312,"usage_url":"https://repos.ecosyste.ms/usage/actions/dependabot/fetch-metadata","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/actions/dependabot/fetch-metadata/dependencies","status":"removed","funding_links":[],"critical":null,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/dependabot%2Ffetch-metadata/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/dependabot%2Ffetch-metadata/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/dependabot%2Ffetch-metadata/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/dependabot%2Ffetch-metadata/related_packages","maintainers":[],"registry":{"name":"github actions","url":"https://github.com/marketplace/actions/","ecosystem":"actions","default":true,"packages_count":31615,"maintainers_count":0,"namespaces_count":19962,"keywords_count":6709,"github":"actions","metadata":{"funded_packages_count":2985},"icon_url":"https://github.com/actions.png","created_at":"2023-01-03T17:16:39.185Z","updated_at":"2025-06-06T06:00:12.453Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/namespaces"}},"unique_repositories_count":7286,"unique_repositories_count_past_30_days":146,"recent_issues":[{"uuid":"4559533186","node_id":"PR_kwDON5kUQM7hLl5M","number":14,"state":"open","title":"build(deps): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-01T00:36:35.000Z","updated_at":"2026-06-01T00:37:49.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/spago-official/sunlady-home/pull/14","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/spago-official%2Fsunlady-home/issues/14","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/14/packages"},{"uuid":"4559313531","node_id":"PR_kwDOLnwLAs7hK7xn","number":252,"state":"open","title":"chore(deps): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":["dependencies","type: chore 🧹","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-31T23:06:05.000Z","updated_at":"2026-05-31T23:06:15.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/chrisleekr/langchain-playground/pull/252","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/chrisleekr%2Flangchain-playground/issues/252","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/252/packages"},{"uuid":"4557991987","node_id":"PR_kwDOSsc_HM7hG8_x","number":4,"state":"open","title":"chore(ci): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":[],"assignees":["anilcancakir"],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-31T15:12:07.000Z","updated_at":"2026-05-31T15:12:08.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(ci)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/anilcancakir/laravel-agent-mcp/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/anilcancakir%2Flaravel-agent-mcp/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"},{"uuid":"4556264590","node_id":"PR_kwDORqagns7hB24W","number":36,"state":"open","title":"ci(deps): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-31T01:46:16.000Z","updated_at":"2026-05-31T01:47:45.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"ci(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/ecooaonline/ecooa-website/pull/36","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ecooaonline%2Fecooa-website/issues/36","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/36/packages"},{"uuid":"4554123882","node_id":"PR_kwDOSfRakc7g7gD2","number":287,"state":"open","title":"chore(actions): bump the github-actions-all group across 1 directory with 8 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-30T10:35:42.000Z","updated_at":"2026-05-30T10:35:43.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(actions): bump","group_name":"github-actions-all","update_count":8,"packages":[{"name":"actions/checkout","old_version":"4","new_version":"6","repository_url":"https://github.com/actions/checkout"},{"name":"dorny/paths-filter","old_version":"3","new_version":"4","repository_url":"https://github.com/dorny/paths-filter"},{"name":"actions/upload-artifact","old_version":"4","new_version":"7","repository_url":"https://github.com/actions/upload-artifact"},{"name":"actions/download-artifact","old_version":"4","new_version":"8","repository_url":"https://github.com/actions/download-artifact"},{"name":"actions/cache","old_version":"4","new_version":"5","repository_url":"https://github.com/actions/cache"},{"name":"supabase/setup-cli","old_version":"1","new_version":"2","repository_url":"https://github.com/supabase/setup-cli"},{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"},{"name":"actions/deploy-pages","old_version":"4","new_version":"5","repository_url":"https://github.com/actions/deploy-pages"}],"path":null,"ecosystem":"actions"},"body":"Bumps the github-actions-all group with 8 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [actions/checkout](https://github.com/actions/checkout) | `4` | `6` |\n| [dorny/paths-filter](https://github.com/dorny/paths-filter) | `3` | `4` |\n| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4` | `7` |\n| [actions/download-artifact](https://github.com/actions/download-artifact) | `4` | `8` |\n| [actions/cache](https://github.com/actions/cache) | `4` | `5` |\n| [supabase/setup-cli](https://github.com/supabase/setup-cli) | `1` | `2` |\n| [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) | `2` | `3` |\n| [actions/deploy-pages](https://github.com/actions/deploy-pages) | `4` | `5` |\n\n\nUpdates `actions/checkout` from 4 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/releases\"\u003eactions/checkout's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev6-beta by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2298\"\u003eactions/checkout#2298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate readme/changelog for v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2311\"\u003eactions/checkout#2311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/checkout/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6-beta\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eUpdated persist-credentials to store the credentials under \u003ccode\u003e$RUNNER_TEMP\u003c/code\u003e instead of directly in the local git config.\u003c/p\u003e\n\u003cp\u003eThis requires a minimum Actions Runner version of \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.329.0\"\u003ev2.329.0\u003c/a\u003e to access the persisted credentials for \u003ca href=\"https://docs.github.com/en/actions/tutorials/use-containerized-services/create-a-docker-container-action\"\u003eDocker container action\u003c/a\u003e scenarios.\u003c/p\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5...v5.0.1\"\u003ehttps://github.com/actions/checkout/compare/v5...v5.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare v5.0.0 release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2238\"\u003eactions/checkout#2238\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v5.0.0\"\u003ehttps://github.com/actions/checkout/compare/v4...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v4.3.1\"\u003ehttps://github.com/actions/checkout/compare/v4...v4.3.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/blob/main/CHANGELOG.md\"\u003eactions/checkout's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev6.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix tag handling: preserve annotations and explicit fetch-tags by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2356\"\u003eactions/checkout#2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd worktree support for persist-credentials includeIf by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2327\"\u003eactions/checkout#2327\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdjust positioning of user email note and permissions heading by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2044\"\u003eactions/checkout#2044\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CODEOWNERS for actions by \u003ca href=\"https://github.com/TingluoHuang\"\u003e\u003ccode\u003e@​TingluoHuang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2224\"\u003eactions/checkout#2224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate package dependencies by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eurl-helper.ts\u003c/code\u003e now leverages well-known environment variables by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1941\"\u003eactions/checkout#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand unit test coverage for \u003ccode\u003eisGhes\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1946\"\u003eactions/checkout#1946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck out other refs/* by commit if provided, fall back to ref by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1924\"\u003eactions/checkout#1924\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ref and Commit outputs by \u003ca href=\"https://github.com/lucacome\"\u003e\u003ccode\u003e@​lucacome\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1180\"\u003eactions/checkout#1180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e- \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1777\"\u003eactions/checkout#1777\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1872\"\u003eactions/checkout#1872\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump the minor-npm-dependencies group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1739\"\u003eactions/checkout#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1697\"\u003eactions/checkout#1697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck out other refs/* by commit by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1774\"\u003eactions/checkout#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/checkout's own workflows to a known, good, stable version. by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1776\"\u003eactions/checkout#1776\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck platform to set archive extension appropriately by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1732\"\u003eactions/checkout#1732\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/de0fac2e4500dabe0009e67214ff5f5447ce83dd\"\u003e\u003ccode\u003ede0fac2\u003c/code\u003e\u003c/a\u003e Fix tag handling: preserve annotations and explicit fetch-tags (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2356\"\u003e#2356\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/064fe7f3312418007dea2b49a19844a9ee378f49\"\u003e\u003ccode\u003e064fe7f\u003c/code\u003e\u003c/a\u003e Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/8e8c483db84b4bee98b60c0593521ed34d9990e8\"\u003e\u003ccode\u003e8e8c483\u003c/code\u003e\u003c/a\u003e Clarify v6 README (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/033fa0dc0b82693d8986f1016a0ec2c5e7d9cbb1\"\u003e\u003ccode\u003e033fa0d\u003c/code\u003e\u003c/a\u003e Add worktree support for persist-credentials includeIf (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/c2d88d3ecc89a9ef08eebf45d9637801dcee7eb5\"\u003e\u003ccode\u003ec2d88d3\u003c/code\u003e\u003c/a\u003e Update all references from v5 and v4 to v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2314\"\u003e#2314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3\"\u003e\u003ccode\u003e1af3b93\u003c/code\u003e\u003c/a\u003e update readme/changelog for v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2311\"\u003e#2311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/71cf2267d89c5cb81562390fa70a37fa40b1305e\"\u003e\u003ccode\u003e71cf226\u003c/code\u003e\u003c/a\u003e v6-beta (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/069c6959146423d11cd0184e6accf28f9d45f06e\"\u003e\u003ccode\u003e069c695\u003c/code\u003e\u003c/a\u003e Persist creds to a separate file (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2286\"\u003e#2286\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493\"\u003e\u003ccode\u003eff7abcd\u003c/code\u003e\u003c/a\u003e Update README to include Node.js 24 support details and requirements (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2248\"\u003e#2248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/08c6903cd8c0fde910a37f88322edcfb5dd907a8\"\u003e\u003ccode\u003e08c6903\u003c/code\u003e\u003c/a\u003e Prepare v5.0.0 release (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/checkout/compare/v4...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dorny/paths-filter` from 3 to 4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dorny/paths-filter/releases\"\u003edorny/paths-filter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: update action runtime to node24 by \u003ca href=\"https://github.com/saschabratton\"\u003e\u003ccode\u003e@​saschabratton\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/294\"\u003edorny/paths-filter#294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saschabratton\"\u003e\u003ccode\u003e@​saschabratton\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/294\"\u003edorny/paths-filter#294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3.0.3...v4.0.0\"\u003ehttps://github.com/dorny/paths-filter/compare/v3.0.3...v4.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd missing predicate-quantifier by \u003ca href=\"https://github.com/wardpeet\"\u003e\u003ccode\u003e@​wardpeet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/279\"\u003edorny/paths-filter#279\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wardpeet\"\u003e\u003ccode\u003e@​wardpeet\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/279\"\u003edorny/paths-filter#279\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v3.0.3\"\u003ehttps://github.com/dorny/paths-filter/compare/v3...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add config parameter for predicate quantifier by \u003ca href=\"https://github.com/petermetz\"\u003e\u003ccode\u003e@​petermetz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/224\"\u003edorny/paths-filter#224\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/petermetz\"\u003e\u003ccode\u003e@​petermetz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/224\"\u003edorny/paths-filter#224\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v3.0.2\"\u003ehttps://github.com/dorny/paths-filter/compare/v3...v3.0.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCompare base and ref when token is empty by \u003ca href=\"https://github.com/frouioui\"\u003e\u003ccode\u003e@​frouioui\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/133\"\u003edorny/paths-filter#133\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frouioui\"\u003e\u003ccode\u003e@​frouioui\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/133\"\u003edorny/paths-filter#133\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v3.0.1\"\u003ehttps://github.com/dorny/paths-filter/compare/v3...v3.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dorny/paths-filter/blob/master/CHANGELOG.md\"\u003edorny/paths-filter's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/294\"\u003eUpdate action runtime to node24\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/279\"\u003eAdd missing predicate-quantifier\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/224\"\u003eAdd config parameter for predicate quantifier\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/133\"\u003eCompare base and ref when token is empty\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/210\"\u003eUpdate to Node.js 20\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/215\"\u003eUpdate all dependencies\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.11.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/167\"\u003eUpdate @​actions/core to v1.10.0 - Fixes warning about deprecated set-output\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/168\"\u003eDocument need for pull-requests: read permission\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/164\"\u003eUpdating to actions/checkout@v3\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/157\"\u003eSet list-files input parameter as not required\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/161\"\u003eUpdate Node.js\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/162\"\u003eFix incorrect handling of Unicode characters in exec()\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/163\"\u003eUse Octokit pagination\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/160\"\u003eUpdates real world links\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/91\"\u003eFix getLocalRef() returns wrong ref\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/85\"\u003eImprove robustness of change detection\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/82\"\u003eAdd ref input parameter\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/83\"\u003eFix change detection in PR when pullRequest.changed_files is incorrect\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/78\"\u003eFix change detection when base is a tag\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/75\"\u003eFix fetching git history\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/74\"\u003eFix fetching git history + fallback to unshallow repo\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/fbd0ab8f3e69293af611ebaee6363fc25e6d187d\"\u003e\u003ccode\u003efbd0ab8\u003c/code\u003e\u003c/a\u003e feat: add merge_group event support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/efb1da7ce8d89bbc261191e5a2dc1453c3837339\"\u003e\u003ccode\u003eefb1da7\u003c/code\u003e\u003c/a\u003e feat: add dist/ freshness check to PR workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/d8f7b061b24c30a325ff314b76c37adb05b041ce\"\u003e\u003ccode\u003ed8f7b06\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dorny/paths-filter/issues/302\"\u003e#302\u003c/a\u003e from dorny/issue-299\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/addbc147a95845176e1bc013a012fbf1d366389a\"\u003e\u003ccode\u003eaddbc14\u003c/code\u003e\u003c/a\u003e Update README for v4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/9d7afb8d214ad99e78fbd4247752c4caed2b6e4c\"\u003e\u003ccode\u003e9d7afb8\u003c/code\u003e\u003c/a\u003e Update CHANGELOG for v4.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/782470c5d953cae2693d643172b14e01bacb71f3\"\u003e\u003ccode\u003e782470c\u003c/code\u003e\u003c/a\u003e Merge branch 'releases/v3'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/ce10459c8b92cd8901166c0a222fbb033ef39365\"\u003e\u003ccode\u003ece10459\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dorny/paths-filter/issues/294\"\u003e#294\u003c/a\u003e from saschabratton/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/5f40380c5482e806c81cec080f5192e7234d8fe9\"\u003e\u003ccode\u003e5f40380\u003c/code\u003e\u003c/a\u003e feat: update action runtime to node24\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/upload-artifact` from 4 to 7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/upload-artifact/releases\"\u003eactions/upload-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.0.0\u003c/h2\u003e\n\u003ch2\u003ev7 What's new\u003c/h2\u003e\n\u003ch3\u003eDirect Uploads\u003c/h3\u003e\n\u003cp\u003eAdds support for uploading single files directly (unzipped). Callers can set the new \u003ccode\u003earchive\u003c/code\u003e parameter to \u003ccode\u003efalse\u003c/code\u003e to skip zipping the file during upload. Right now, we only support single files. The action will fail if the glob passed resolves to multiple files. The \u003ccode\u003ename\u003c/code\u003e parameter is also ignored with this setting. Instead, the name of the artifact will be the name of the uploaded file.\u003c/p\u003e\n\u003ch3\u003eESM\u003c/h3\u003e\n\u003cp\u003eTo support new versions of the \u003ccode\u003e@actions/*\u003c/code\u003e packages, we've upgraded the package to ESM.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd proxy integration test by \u003ca href=\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/754\"\u003eactions/upload-artifact#754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade the module to ESM and bump dependencies by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/762\"\u003eactions/upload-artifact#762\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport direct file uploads by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/764\"\u003eactions/upload-artifact#764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- made their first contribution in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/754\"\u003eactions/upload-artifact#754\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/upload-artifact/compare/v6...v7.0.0\"\u003ehttps://github.com/actions/upload-artifact/compare/v6...v7.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003ev6 - What's new\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nactions/upload-artifact@v6 now runs on Node.js 24 (\u003ccode\u003eruns.using: node24\u003c/code\u003e) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNode.js 24\u003c/h3\u003e\n\u003cp\u003eThis release updates the runtime to Node.js 24. v5 had preliminary support for Node.js 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpload Artifact Node 24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/719\"\u003eactions/upload-artifact#719\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update \u003ccode\u003e@​actions/artifact\u003c/code\u003e for Node.js 24 punycode deprecation by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/744\"\u003eactions/upload-artifact#744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare release v6.0.0 for Node.js 24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/745\"\u003eactions/upload-artifact#745\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/upload-artifact/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/upload-artifact/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING CHANGE:\u003c/strong\u003e this update supports Node \u003ccode\u003ev24.x\u003c/code\u003e. This is not a breaking change per-se but we're treating it as such.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/GhadimiR\"\u003e\u003ccode\u003e@​GhadimiR\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/681\"\u003eactions/upload-artifact#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/712\"\u003eactions/upload-artifact#712\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReadme: spell out the first use of GHES by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/727\"\u003eactions/upload-artifact#727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GHES guidance to include reference to Node 20 version by \u003ca href=\"https://github.com/patrikpolyak\"\u003e\u003ccode\u003e@​patrikpolyak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/725\"\u003eactions/upload-artifact#725\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@actions/artifact\u003c/code\u003e to \u003ccode\u003ev4.0.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003ePrepare \u003ccode\u003ev5.0.0\u003c/code\u003e by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/734\"\u003eactions/upload-artifact#734\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/043fb46d1a93c77aae656e7c1c64a875d1fc6a0a\"\u003e\u003ccode\u003e043fb46\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/797\"\u003e#797\u003c/a\u003e from actions/yacaovsnc/update-dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/634250c1388765ea7ed0f053e636f1f399000b94\"\u003e\u003ccode\u003e634250c\u003c/code\u003e\u003c/a\u003e Include changes in typespec/ts-http-runtime 0.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/e454baaac2be505c9450e11b8f3215c6fc023ce8\"\u003e\u003ccode\u003ee454baa\u003c/code\u003e\u003c/a\u003e Readme: bump all the example versions to v7 (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/796\"\u003e#796\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/74fad66b98a6d799dc004d3353ccd0e6f6b2530e\"\u003e\u003ccode\u003e74fad66\u003c/code\u003e\u003c/a\u003e Update the readme with direct upload details (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/bbbca2ddaa5d8feaa63e36b76fdaad77386f024f\"\u003e\u003ccode\u003ebbbca2d\u003c/code\u003e\u003c/a\u003e Support direct file uploads (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/764\"\u003e#764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/589182c5a4cec8920b8c1bce3e2fab1c97a02296\"\u003e\u003ccode\u003e589182c\u003c/code\u003e\u003c/a\u003e Upgrade the module to ESM and bump dependencies (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/762\"\u003e#762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/47309c993abb98030a35d55ef7ff34b7fa1074b5\"\u003e\u003ccode\u003e47309c9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/754\"\u003e#754\u003c/a\u003e from actions/Link-/add-proxy-integration-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/02a8460834e70dab0ce194c64360c59dc1475ef0\"\u003e\u003ccode\u003e02a8460\u003c/code\u003e\u003c/a\u003e Add proxy integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/b7c566a772e6b6bfb58ed0dc250532a479d7789f\"\u003e\u003ccode\u003eb7c566a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/745\"\u003e#745\u003c/a\u003e from actions/upload-artifact-v6-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/e516bc8500aaf3d07d591fcd4ae6ab5f9c391d5b\"\u003e\u003ccode\u003ee516bc8\u003c/code\u003e\u003c/a\u003e docs: correct description of Node.js 24 support in README\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/upload-artifact/compare/v4...v7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/download-artifact` from 4 to 8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/download-artifact/releases\"\u003eactions/download-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003ev8 - What's new\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nactions/download-artifact@v8 has been migrated to an ESM module. This should be transparent to the caller but forks might need to make significant changes.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nHash mismatches will now error by default. Users can override this behavior with a setting change (see below).\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eDirect downloads\u003c/h3\u003e\n\u003cp\u003eTo support direct uploads in \u003ccode\u003eactions/upload-artifact\u003c/code\u003e, the action will no longer attempt to unzip all downloaded files. Instead, the action checks the \u003ccode\u003eContent-Type\u003c/code\u003e header ahead of unzipping and skips non-zipped files. Callers wishing to download a zipped file as-is can also set the new \u003ccode\u003eskip-decompress\u003c/code\u003e parameter to \u003ccode\u003etrue\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eEnforced checks (breaking)\u003c/h3\u003e\n\u003cp\u003eA previous release introduced digest checks on the download. If a download hash didn't match the expected hash from the server, the action would log a warning. Callers can now configure the behavior on mismatch with the \u003ccode\u003edigest-mismatch\u003c/code\u003e parameter. To be secure by default, we are now defaulting the behavior to \u003ccode\u003eerror\u003c/code\u003e which will fail the workflow run.\u003c/p\u003e\n\u003ch3\u003eESM\u003c/h3\u003e\n\u003cp\u003eTo support new versions of the @actions/* packages, we've upgraded the package to ESM.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDon't attempt to un-zip non-zipped downloads by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/460\"\u003eactions/download-artifact#460\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a setting to specify what to do on hash mismatch and default it to \u003ccode\u003eerror\u003c/code\u003e by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/461\"\u003eactions/download-artifact#461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/download-artifact/compare/v7...v8.0.0\"\u003ehttps://github.com/actions/download-artifact/compare/v7...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.0.0\u003c/h2\u003e\n\u003ch2\u003ev7 - What's new\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nactions/download-artifact@v7 now runs on Node.js 24 (\u003ccode\u003eruns.using: node24\u003c/code\u003e) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNode.js 24\u003c/h3\u003e\n\u003cp\u003eThis release updates the runtime to Node.js 24. v6 had preliminary support for Node 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate GHES guidance to include reference to Node 20 version by \u003ca href=\"https://github.com/patrikpolyak\"\u003e\u003ccode\u003e@​patrikpolyak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/440\"\u003eactions/download-artifact#440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDownload Artifact Node24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/415\"\u003eactions/download-artifact#415\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update \u003ccode\u003e@​actions/artifact\u003c/code\u003e to fix Node.js 24 punycode deprecation by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/451\"\u003eactions/download-artifact#451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare release v7.0.0 for Node.js 24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/452\"\u003eactions/download-artifact#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrikpolyak\"\u003e\u003ccode\u003e@​patrikpolyak\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/440\"\u003eactions/download-artifact#440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/415\"\u003eactions/download-artifact#415\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/download-artifact/compare/v6.0.0...v7.0.0\"\u003ehttps://github.com/actions/download-artifact/compare/v6.0.0...v7.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003e\u003ccode\u003e3e5f45b\u003c/code\u003e\u003c/a\u003e Add regression tests for CJK characters (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/471\"\u003e#471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/e6d03f67377d4412c7aa56a8e2e4988e6ec479dd\"\u003e\u003ccode\u003ee6d03f6\u003c/code\u003e\u003c/a\u003e Add a regression test for artifact name + content-type mismatches (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3\"\u003e\u003ccode\u003e70fc10c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/461\"\u003e#461\u003c/a\u003e from actions/danwkennedy/digest-mismatch-behavior\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/f258da9a506b755b84a09a531814700b86ccfc62\"\u003e\u003ccode\u003ef258da9\u003c/code\u003e\u003c/a\u003e Add change docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/ccc058e5fbb0bb2352213eaec3491e117cbc4a5c\"\u003e\u003ccode\u003eccc058e\u003c/code\u003e\u003c/a\u003e Fix linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/bd7976ba57ecea96e6f3df575eb922d11a12a9fd\"\u003e\u003ccode\u003ebd7976b\u003c/code\u003e\u003c/a\u003e Add a setting to specify what to do on hash mismatch and default it to \u003ccode\u003eerror\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/ac21fcf45e0aaee541c0f7030558bdad38d77d6c\"\u003e\u003ccode\u003eac21fcf\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/460\"\u003e#460\u003c/a\u003e from actions/danwkennedy/download-no-unzip\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/15999bff51058bc7c19b50ebbba518eaef7c26c0\"\u003e\u003ccode\u003e15999bf\u003c/code\u003e\u003c/a\u003e Add note about package bumps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/974686ed5098c7f9c9289ec946b9058e496a2561\"\u003e\u003ccode\u003e974686e\u003c/code\u003e\u003c/a\u003e Bump the version to \u003ccode\u003ev8\u003c/code\u003e and add release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/fbe48b1d2756394be4cd4358ed3bc1343b330e75\"\u003e\u003ccode\u003efbe48b1\u003c/code\u003e\u003c/a\u003e Update test names to make it clearer what they do\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/download-artifact/compare/v4...v8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/cache` from 4 to 5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/cache/releases\"\u003eactions/cache's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\n\u003cstrong\u003e\u003ccode\u003eactions/cache@v5\u003c/code\u003e runs on the Node.js 24 runtime and requires a minimum Actions Runner version of \u003ccode\u003e2.327.1\u003c/code\u003e.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eIf you are using self-hosted runners, ensure they are updated before upgrading.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003chr /\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to use node24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1630\"\u003eactions/cache#1630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare v5.0.0 release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1684\"\u003eactions/cache#1684\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/cache/compare/v4.3.0...v5.0.0\"\u003ehttps://github.com/actions/cache/compare/v4.3.0...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd note on runner versions by \u003ca href=\"https://github.com/GhadimiR\"\u003e\u003ccode\u003e@​GhadimiR\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1642\"\u003eactions/cache#1642\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare \u003ccode\u003ev4.3.0\u003c/code\u003e release by \u003ca href=\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1655\"\u003eactions/cache#1655\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GhadimiR\"\u003e\u003ccode\u003e@​GhadimiR\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1642\"\u003eactions/cache#1642\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/cache/compare/v4...v4.3.0\"\u003ehttps://github.com/actions/cache/compare/v4...v4.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.2.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1620\"\u003eactions/cache#1620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@actions/cache\u003c/code\u003e to \u003ccode\u003e4.0.5\u003c/code\u003e and move \u003ccode\u003e@protobuf-ts/plugin\u003c/code\u003e to dev depdencies by \u003ca href=\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1634\"\u003eactions/cache#1634\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare release \u003ccode\u003e4.2.4\u003c/code\u003e by \u003ca href=\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1636\"\u003eactions/cache#1636\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1620\"\u003eactions/cache#1620\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/cache/compare/v4...v4.2.4\"\u003ehttps://github.com/actions/cache/compare/v4...v4.2.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.2.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate to use \u003ccode\u003e@​actions/cache\u003c/code\u003e 4.0.3 package \u0026amp; prepare for new release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1577\"\u003eactions/cache#1577\u003c/a\u003e (SAS tokens for cache entries are now masked in debug logs)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1577\"\u003eactions/cache#1577\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/cache/compare/v4.2.2...v4.2.3\"\u003ehttps://github.com/actions/cache/compare/v4.2.2...v4.2.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/cache/blob/main/RELEASES.md\"\u003eactions/cache's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eReleases\u003c/h1\u003e\n\u003ch2\u003eHow to prepare a release\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\u003cbr /\u003e\nRelevant for maintainers with write access only.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003col\u003e\n\u003cli\u003eSwitch to a new branch from \u003ccode\u003emain\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eRun \u003ccode\u003enpm test\u003c/code\u003e to ensure all tests are passing.\u003c/li\u003e\n\u003cli\u003eUpdate the version in \u003ca href=\"https://github.com/actions/cache/blob/main/package.json\"\u003e\u003ccode\u003ehttps://github.com/actions/cache/blob/main/package.json\u003c/code\u003e\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eRun \u003ccode\u003enpm run build\u003c/code\u003e to update the compiled files.\u003c/li\u003e\n\u003cli\u003eUpdate this \u003ca href=\"https://github.com/actions/cache/blob/main/RELEASES.md\"\u003e\u003ccode\u003ehttps://github.com/actions/cache/blob/main/RELEASES.md\u003c/code\u003e\u003c/a\u003e with the new version and changes in the \u003ccode\u003e## Changelog\u003c/code\u003e section.\u003c/li\u003e\n\u003cli\u003eRun \u003ccode\u003elicensed cache\u003c/code\u003e to update the license report.\u003c/li\u003e\n\u003cli\u003eRun \u003ccode\u003elicensed status\u003c/code\u003e and resolve any warnings by updating the \u003ca href=\"https://github.com/actions/cache/blob/main/.licensed.yml\"\u003e\u003ccode\u003ehttps://github.com/actions/cache/blob/main/.licensed.yml\u003c/code\u003e\u003c/a\u003e file with the exceptions.\u003c/li\u003e\n\u003cli\u003eCommit your changes and push your branch upstream.\u003c/li\u003e\n\u003cli\u003eOpen a pull request against \u003ccode\u003emain\u003c/code\u003e and get it reviewed and merged.\u003c/li\u003e\n\u003cli\u003eDraft a new release \u003ca href=\"https://github.com/actions/cache/releases\"\u003ehttps://github.com/actions/cache/releases\u003c/a\u003e use the same version number used in \u003ccode\u003epackage.json\u003c/code\u003e\n\u003col\u003e\n\u003cli\u003eCreate a new tag with the version number.\u003c/li\u003e\n\u003cli\u003eAuto generate release notes and update them to match the changes you made in \u003ccode\u003eRELEASES.md\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eToggle the set as the latest release option.\u003c/li\u003e\n\u003cli\u003ePublish the release.\u003c/li\u003e\n\u003c/ol\u003e\n\u003c/li\u003e\n\u003cli\u003eNavigate to \u003ca href=\"https://github.com/actions/cache/actions/workflows/release-new-action-version.yml\"\u003ehttps://github.com/actions/cache/actions/workflows/release-new-action-version.yml\u003c/a\u003e\n\u003col\u003e\n\u003cli\u003eThere should be a workflow run queued with the same version number.\u003c/li\u003e\n\u003cli\u003eApprove the run to publish the new version and update the major tags for this action.\u003c/li\u003e\n\u003c/ol\u003e\n\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003e5.0.4\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003eminimatch\u003c/code\u003e to v3.1.5 (fixes ReDoS via globstar patterns)\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003eundici\u003c/code\u003e to v6.24.1 (WebSocket decompression bomb protection, header validation fixes)\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003efast-xml-parser\u003c/code\u003e to v5.5.6\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e5.0.3\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@actions/cache\u003c/code\u003e to v5.0.5 (Resolves: \u003ca href=\"https://github.com/actions/cache/security/dependabot/33\"\u003ehttps://github.com/actions/cache/security/dependabot/33\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@actions/core\u003c/code\u003e to v2.0.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e5.0.2\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@actions/cache\u003c/code\u003e to v5.0.3 \u003ca href=\"https://redirect.github.com/actions/cache/pull/1692\"\u003e#1692\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e5.0.1\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003e@azure/storage-blob\u003c/code\u003e to \u003ccode\u003e^12.29.1\u003c/code\u003e via \u003ccode\u003e@actions/cache@5.0.1\u003c/code\u003e \u003ca href=\"https://redirect.github.com/actions/cache/pull/1685\"\u003e#1685\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e5.0.0\u003c/h3\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\n\u003ccode\u003eactions/cache@v5\u003c/code\u003e runs on the Node.js 24 runtime and requires a minimum Actions Runner version of \u003ccode\u003e2.327.1\u003c/code\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/27d5ce7f107fe9357f9df03efb73ab90386fccae\"\u003e\u003ccode\u003e27d5ce7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/cache/issues/1747\"\u003e#1747\u003c/a\u003e from actions/yacaovsnc/update-dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/f280785d7b6e1884c7d12b9136eb0f4a1574fcfd\"\u003e\u003ccode\u003ef280785\u003c/code\u003e\u003c/a\u003e licensed changes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/619aeb1606e195be0b36fd0ff68dcf1aff6b65a7\"\u003e\u003ccode\u003e619aeb1\u003c/code\u003e\u003c/a\u003e npm run build generated dist files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/bcf16c2893940a4899761e55c7ac3c1cf88a04f6\"\u003e\u003ccode\u003ebcf16c2\u003c/code\u003e\u003c/a\u003e Update ts-http-runtime to 0.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/668228422ae6a00e4ad889ee87cd7109ec5666a7\"\u003e\u003ccode\u003e6682284\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/cache/issues/1738\"\u003e#1738\u003c/a\u003e from actions/prepare-v5.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/e34039626f957d3e3e50843d15c1b20547fc90e2\"\u003e\u003ccode\u003ee340396\u003c/code\u003e\u003c/a\u003e Update RELEASES\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/8a671105293e81530f1af99863cdf94550aba1a6\"\u003e\u003ccode\u003e8a67110\u003c/code\u003e\u003c/a\u003e Add licenses\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/1865903e1b0cb750dda9bc5c58be03424cc62830\"\u003e\u003ccode\u003e1865903\u003c/code\u003e\u003c/a\u003e Update dependencies \u0026amp; patch security vulnerabilities\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/565629816435f6c0b50676926c9b05c254113c0c\"\u003e\u003ccode\u003e5656298\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/cache/issues/1722\"\u003e#1722\u003c/a\u003e from RyPeck/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/4e380d19e192ace8e86f23f32ca6fdec98a673c6\"\u003e\u003ccode\u003e4e380d1\u003c/code\u003e\u003c/a\u003e Fix cache key in examples.md for bun.lock\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/cache/compare/v4...v5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `supabase/setup-cli` from 1 to 2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/supabase/setup-cli/releases\"\u003esupabase/setup-cli's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.0\u003c/h2\u003e\n\u003cp\u003eThis major release refreshes the action internals, CI coverage, and release pipeline while keeping usage straightforward with \u003ccode\u003euses: supabase/setup-cli@v2\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSwitched the action implementation to a composite action flow and modernized runtime/dependency setup.\u003c/li\u003e\n\u003cli\u003eImproved CLI version resolution: when \u003ccode\u003eversion\u003c/code\u003e is omitted, the action now detects it from root lockfiles (\u003ccode\u003ebun.lock\u003c/code\u003e, \u003ccode\u003epnpm-lock.yaml\u003c/code\u003e, \u003ccode\u003epackage-lock.json\u003c/code\u003e) and falls back to \u003ccode\u003elatest\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eExpanded validation with dedicated CI + E2E workflows and updated docs/examples around \u003ccode\u003e@v2\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eHardened repository automation and supply-chain posture (pinned actions, Dependabot workflow/policy updates, licensed workflow fixes).\u003c/li\u003e\n\u003cli\u003eMigrated away from old bundled distribution/test setup to a cleaner Bun-based project structure.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMaintenance updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDependency refreshes across Bun/TypeScript and GitHub Actions tooling.\u003c/li\u003e\n\u003cli\u003eDocumentation and workflow cleanup for long-term maintainability.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cp\u003eThanks to everyone who contributed to this release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/staaldraad\"\u003e\u003ccode\u003e@​staaldraad\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/martindonadieu\"\u003e\u003ccode\u003e@​martindonadieu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFull changelog\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e36 commits\u003c/strong\u003e between \u003ccode\u003ev1.6.0\u003c/code\u003e and \u003ccode\u003ev2.0.0\u003c/code\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/supabase/setup-cli/compare/v1.6.0...v2.0.0\"\u003eCompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.1\u003c/h2\u003e\n\u003cp\u003eBackport the Alpine/Linux musl runtime dependency fix to the v1 action channel.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eInstall missing \u003ccode\u003elibstdc++\u003c/code\u003e and \u003ccode\u003elibgcc\u003c/code\u003e before verifying Supabase CLI versions from \u003ccode\u003e.apk\u003c/code\u003e archives.\u003c/li\u003e\n\u003cli\u003eKeep non-\u003ccode\u003e.apk\u003c/code\u003e archive installs unchanged.\u003c/li\u003e\n\u003cli\u003eRebuild the bundled v1 action artifact.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eValidation: \u003ca href=\"https://github.com/jgoux/setup-cli-testing/actions/runs/26172791463\"\u003ehttps://github.com/jgoux/setup-cli-testing/actions/runs/26172791463\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.0\u003c/h2\u003e\n\u003cp\u003eBackport Linux musl/Alpine support to the v1 action channel.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDownload Supabase CLI \u003ccode\u003e.apk\u003c/code\u003e assets for Linux musl and CLI versions v2.99.0+.\u003c/li\u003e\n\u003cli\u003eAdd the extracted \u003ccode\u003e.apk\u003c/code\u003e \u003ccode\u003eusr/bin\u003c/code\u003e directory to PATH.\u003c/li\u003e\n\u003cli\u003eSupport authenticated \u003ccode\u003elatest\u003c/code\u003e release lookup with the optional \u003ccode\u003egithub-token\u003c/code\u003e input.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1\u003c/h2\u003e\n\u003cp\u003eBackport latest Supabase CLI archive resolution for v2.99.0+ to the v1 action channel.\u003c/p\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: update code owners by \u003ca href=\"https://github.com/sweatybridge\"\u003e\u003ccode\u003e@​sweatybridge\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/supabase/setup-cli/pull/327\"\u003esupabase/setup-cli#327\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: explicit permissions on actions by \u003ca href=\"https://github.com/doublethink\"\u003e\u003ccode\u003e@​doublethink\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/supabase/setup-cli/pull/326\"\u003esupabase/setup-cli#326\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/3c2f5e2ae34c34e428e8e206e2c4d21fa2d20fbf\"\u003e\u003ccode\u003e3c2f5e2\u003c/code\u003e\u003c/a\u003e fix: install Alpine runtime dependencies (\u003ca href=\"https://redirect.github.com/supabase/setup-cli/issues/433\"\u003e#433\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/365cb468b99542715ed739102501e3f7987088de\"\u003e\u003ccode\u003e365cb46\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump the bun-minor-patch group across 1 directory with 4 upd...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/e0099b2bdb8020257ff40f6595a1d274df558646\"\u003e\u003ccode\u003ee0099b2\u003c/code\u003e\u003c/a\u003e chore(deps): bump the actions-minor-patch group across 1 directory with 2 upd...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/52a446718e4edd1a9f1e2631186019c87e329f60\"\u003e\u003ccode\u003e52a4467\u003c/code\u003e\u003c/a\u003e fix: setup-cli on Linux musl containers (\u003ca href=\"https://redirect.github.com/supabase/setup-cli/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/3095b000b664c979051fee48203cc4d4af8aca28\"\u003e\u003ccode\u003e3095b00\u003c/code\u003e\u003c/a\u003e fix: authenticate latest release lookup (\u003ca href=\"https://redirect.github.com/supabase/setup-cli/issues/430\"\u003e#430\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/a4d563a017eb7e7da097c40c441f85dbdcc4411f\"\u003e\u003ccode\u003ea4d563a\u003c/code\u003e\u003c/a\u003e fix: handle Supabase CLI v2.99 archives (\u003ca href=\"https://redirect.github.com/supabase/setup-cli/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/0abc813ee30fc6710a975fb92db02aa8a6b14501\"\u003e\u003ccode\u003e0abc813\u003c/code\u003e\u003c/a\u003e chore(deps): bump the bun-minor-patch group with 5 updates (\u003ca href=\"https://redirect.github.com/supabase/setup-cli/issues/421\"\u003e#421\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/f55616e35e3b5e71238be6cff104393d7f66fc8e\"\u003e\u003ccode\u003ef55616e\u003c/code\u003e\u003c/a\u003e fix: cache licensed action (\u003ca href=\"https://redirect.github.com/supabase/setup-cli/issues/422\"\u003e#422\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/2df3f5f50e3d33ca2003cb2b1ec307af901cbfb6\"\u003e\u003ccode\u003e2df3f5f\u003c/code\u003e\u003c/a\u003e chore(deps): bump the actions-minor-patch group across 1 directory with 3 upd...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/df56b21da46c98abb12a9804e4fb1f657773e333\"\u003e\u003ccode\u003edf56b21\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump the bun-minor-patch group with 2 updates (\u003ca href=\"https://redirect.github.com/supabase/setup-cli/issues/419\"\u003e#419\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/supabase/setup-cli/compare/v1...v2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dependabot/fetch-metadata` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/deploy-pages` from 4 to 5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/deploy-pages/releases\"\u003eactions/deploy-pages's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Node.js version to 24.x \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/actions/deploy-pages/issues/404\"\u003e#404\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd workflow file for publishing releases to immutable action package \u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/actions/deploy-pages/issues/374\"\u003e#374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump braces from 3.0.2 to 3.0.3 in the npm_and_yarn group across 1 directory \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/actions/deploy-pages/issues/360\"\u003e#360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMake the rebuild dist workflow work nicer with Dependabot \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/actions/deploy-pages/issues/361\"\u003e#361\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump the non-breaking-changes group across 1 directory with 3 updates \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/actions/deploy-pages/issues/358\"\u003e#358\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDelete repeated sentence \u003ca href=\"https://github.com/garethsb\"\u003e\u003ccode\u003e@​garethsb\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/actions/deploy-pages/issues/359\"\u003e#359\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate README.md \u003ca href=\"https://github.com/tsusdere\"\u003e\u003ccode\u003e@​tsusdere\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/actions/deploy-pages/issues/348\"\u003e#348\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump the non-breaking-changes group with 4 updates \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e (...\n\n_Description has been truncated_","html_url":"https://github.com/rumeadia-dotcom/ing0415/pull/287","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/rumeadia-dotcom%2Fing0415/issues/287","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/287/packages"},{"uuid":"4553578336","node_id":"PR_kwDOIk5VP87g541g","number":977,"state":"open","title":"chore(deps): bump the github-actions group across 1 directory with 3 updates","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":["frasermolyneux"],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-30T06:37:51.000Z","updated_at":"2026-05-30T06:42:08.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"github-actions","update_count":3,"packages":[{"name":"actions/dependency-review-action","old_version":"4","new_version":"5","repository_url":"https://github.com/actions/dependency-review-action"},{"name":"actions/github-script","old_version":"7","new_version":"9","repository_url":"https://github.com/actions/github-script"},{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps the github-actions group with 3 updates in the / directory: [actions/dependency-review-action](https://github.com/actions/dependency-review-action), [actions/github-script](https://github.com/actions/github-script) and [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata).\n\nUpdates `actions/dependency-review-action` from 4 to 5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/dependency-review-action/releases\"\u003eactions/dependency-review-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.0.0\u003c/h2\u003e\n\u003cp\u003eThis is a new major version of the Dependency Review Action which updates the runtime to node24. This requires a minimum Actions Runner version \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003ev2.327.1\u003c/a\u003e to run.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd .github/copilot-instructions.md for Copilot coding agent by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1067\"\u003eactions/dependency-review-action#1067\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Node.js runtime from 20 to 24 by \u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump spdx-license-ids from 3.0.20 to 3.0.23 by \u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: bump actions/checkout from v4 to v6 in workflow examples by \u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: patched version display for advisories with non-strict semver ranges (e.g. Maven beta versions) by \u003ca href=\"https://github.com/tspascoal\"\u003e\u003ccode\u003e@​tspascoal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1076\"\u003eactions/dependency-review-action#1076\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eResolve security findings by \u003ca href=\"https://github.com/AshelyTC\"\u003e\u003ccode\u003e@​AshelyTC\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1094\"\u003eactions/dependency-review-action#1094\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5.0.0 release branch by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1098\"\u003eactions/dependency-review-action#1098\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eDependency Review Action 4.9.0\u003c/h2\u003e\n\u003cp\u003eThis feature release contains a couple of notable changes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThere is a new configuration option \u003ccode\u003eshow_patched_versions\u003c/code\u003e which will add a column to the output, showing the fix version of each vulnerable dependency. Thanks \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eRuns which do not display OpenSSF scorecards no longer fetch scorecard information; previously it was fetched regardless of whether or not it was displayed, causing unneccessary slowness. Great catch \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eThere are a couple of fixes to purl parsing which should improve match accuracy for \u003ccode\u003eallow-package-dependency\u003c/code\u003e lists, including case (in)sensitivity and url-encoded namespaces Thanks \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCompare normalized purls to account for encoding quirks by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1056\"\u003eactions/dependency-review-action#1056\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake purl comparisons case insensitive by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1057\"\u003eactions/dependency-review-action#1057\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeat: Add \u003ccode\u003ePatched Version\u003c/code\u003e to \u003ccode\u003eVulnerabilities\u003c/code\u003e summary by \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1045\"\u003eactions/dependency-review-action#1045\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: only get scorecard levels if user wants to see the OpenSSF scorecard by \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 10.1.0 to 10.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1058\"\u003eactions/dependency-review-action#1058\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1021\"\u003eactions/dependency-review-action#1021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates for release 4.9.0 by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1064\"\u003eactions/dependency-review-action#1064\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.8.3\u003c/h2\u003e\n\u003ch2\u003eDependency Review Action v4.8.3\u003c/h2\u003e\n\u003cp\u003eThis is a bugfix release that updates a number of upstream dependencies and includes a fix for the earlier feature that detected oversized summaries and upload them as artifacts, which could occasionally crash the action.\u003c/p\u003e\n\u003cp\u003eWe have also updated the release process to use a long-lived \u003ccode\u003ev4\u003c/code\u003e \u003cstrong\u003ebranch\u003c/strong\u003e for the action, instead of a force-pushed tag, which aligns better with git branching strategies; the change should be transparent to end users.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eGitHub Actions can't push to our protected main by \u003ca href=\"https://github.com/dangoor\"\u003e\u003ccode\u003e@​dangoor\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1017\"\u003eactions/dependency-review-action#1017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 9.1.0 to 10.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/995\"\u003eactions/dependency-review-action#995\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a1d282b36b6f3519aa1f3fc636f609c47dddb294\"\u003e\u003ccode\u003ea1d282b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1098\"\u003e#1098\u003c/a\u003e from actions/ahpook/v5-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/eb6c199c5a85c7387f1f0b02b3ba5c6364740695\"\u003e\u003ccode\u003eeb6c199\u003c/code\u003e\u003c/a\u003e update examples to show \u003ca href=\"https://github.com/v5\"\u003e\u003ccode\u003e@​v5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/3943c2c5beaaaf1806eb3758273c203dabcbf89c\"\u003e\u003ccode\u003e3943c2c\u003c/code\u003e\u003c/a\u003e v5.0.0 release branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/454943c880b147adbfe7de0cdd3ece1c00882033\"\u003e\u003ccode\u003e454943c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1094\"\u003e#1094\u003c/a\u003e from actions/ashelytc/security-findings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/6d92a1228e9e9db334f02c09f84fe9217d2b4463\"\u003e\u003ccode\u003e6d92a12\u003c/code\u003e\u003c/a\u003e revert \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a8e5a7e93695b41abf6d1083cd220bee39a720f0\"\u003e\u003ccode\u003ea8e5a7e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1076\"\u003e#1076\u003c/a\u003e from tspascoal/fix-version-matching-for-non-string-s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/b6b7079031ef4ed61656c221988f1f3bcbf35101\"\u003e\u003ccode\u003eb6b7079\u003c/code\u003e\u003c/a\u003e update \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e to 8.40.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/821a21dd691f162c4c5c2e9754a344accde9a208\"\u003e\u003ccode\u003e821a21d\u003c/code\u003e\u003c/a\u003e update more dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/05aaaae45cf4c420de012addf2a72e3435ddaa63\"\u003e\u003ccode\u003e05aaaae\u003c/code\u003e\u003c/a\u003e run npm audit fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/55d3e754501fc13c84b95637ce51f135012d41ea\"\u003e\u003ccode\u003e55d3e75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1077\"\u003e#1077\u003c/a\u003e from Marukome0743/docs/checkout\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4...v5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/github-script` from 7 to 9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/github-script/releases\"\u003eactions/github-script's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eNew features:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003egetOctokit\u003c/code\u003e factory function\u003c/strong\u003e — Available directly in the script context. Create additional authenticated Octokit clients with different tokens for multi-token workflows, GitHub App tokens, and cross-org access. See \u003ca href=\"https://github.com/actions/github-script#creating-additional-clients-with-getoctokit\"\u003eCreating additional clients with \u003ccode\u003egetOctokit\u003c/code\u003e\u003c/a\u003e for details and examples.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eOrchestration ID in user-agent\u003c/strong\u003e — The \u003ccode\u003eACTIONS_ORCHESTRATION_ID\u003c/code\u003e environment variable is automatically appended to the user-agent string for request tracing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003erequire('@actions/github')\u003c/code\u003e no longer works in scripts.\u003c/strong\u003e The upgrade to \u003ccode\u003e@actions/github\u003c/code\u003e v9 (ESM-only) means \u003ccode\u003erequire('@actions/github')\u003c/code\u003e will fail at runtime. If you previously used patterns like \u003ccode\u003econst { getOctokit } = require('@actions/github')\u003c/code\u003e to create secondary clients, use the new injected \u003ccode\u003egetOctokit\u003c/code\u003e function instead — it's available directly in the script context with no imports needed.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egetOctokit\u003c/code\u003e is now an injected function parameter. Scripts that declare \u003ccode\u003econst getOctokit = ...\u003c/code\u003e or \u003ccode\u003elet getOctokit = ...\u003c/code\u003e will get a \u003ccode\u003eSyntaxError\u003c/code\u003e because JavaScript does not allow \u003ccode\u003econst\u003c/code\u003e/\u003ccode\u003elet\u003c/code\u003e redeclaration of function parameters. Use the injected \u003ccode\u003egetOctokit\u003c/code\u003e directly, or use \u003ccode\u003evar getOctokit = ...\u003c/code\u003e if you need to redeclare it.\u003c/li\u003e\n\u003cli\u003eIf your script accesses other \u003ccode\u003e@actions/github\u003c/code\u003e internals beyond the standard \u003ccode\u003egithub\u003c/code\u003e/\u003ccode\u003eoctokit\u003c/code\u003e client, you may need to update those references for v9 compatibility.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ACTIONS_ORCHESTRATION_ID to user-agent string by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/695\"\u003eactions/github-script#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: use deployment: false for integration test environments by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/712\"\u003eactions/github-script#712\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: add getOctokit to script context, upgrade \u003ccode\u003e@​actions/github\u003c/code\u003e v9, \u003ccode\u003e@​octokit/core\u003c/code\u003e v7, and related packages by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/700\"\u003eactions/github-script#700\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/695\"\u003eactions/github-script#695\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/github-script/compare/v8.0.0...v9.0.0\"\u003ehttps://github.com/actions/github-script/compare/v8.0.0...v9.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Node.js version support to 24.x by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/637\"\u003eactions/github-script#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME for updating actions/github-script from v7 to v8 by \u003ca href=\"https://github.com/sneha-krip\"\u003e\u003ccode\u003e@​sneha-krip\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/653\"\u003eactions/github-script#653\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/637\"\u003eactions/github-script#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sneha-krip\"\u003e\u003ccode\u003e@​sneha-krip\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/653\"\u003eactions/github-script#653\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/github-script/compare/v7.1.0...v8.0.0\"\u003ehttps://github.com/actions/github-script/compare/v7.1.0...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade husky to v9 by \u003ca href=\"https://github.com/benelan\"\u003e\u003ccode\u003e@​benelan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/482\"\u003eactions/github-script#482\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd workflow file for publishing releases to immutable action package by \u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/485\"\u003eactions/github-script#485\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade IA Publish by \u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/486\"\u003eactions/github-script#486\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix workflow status badges by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/497\"\u003eactions/github-script#497\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate usage of \u003ccode\u003eactions/upload-artifact\u003c/code\u003e by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/512\"\u003eactions/github-script#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClear up package name confusion by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/514\"\u003eactions/github-script#514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies with \u003ccode\u003enpm audit fix\u003c/code\u003e by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/515\"\u003eactions/github-script#515\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpecify that the used script is JavaScript by \u003ca href=\"https://github.com/timotk\"\u003e\u003ccode\u003e@​timotk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/478\"\u003eactions/github-script#478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Add Dependabot for NPM and Actions by \u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/472\"\u003eactions/github-script#472\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/3a2844b7e9c422d3c10d287c895573f7108da1b3\"\u003e\u003ccode\u003e3a2844b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/github-script/issues/700\"\u003e#700\u003c/a\u003e from actions/salmanmkc/expose-getoctokit + prepare re...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/ca10bbdd1a7739de09e99a200c7a59f5d73a4079\"\u003e\u003ccode\u003eca10bbd\u003c/code\u003e\u003c/a\u003e fix: use \u003ccode\u003e@​octokit/core/\u003c/code\u003etypes import for v7 compatibility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/86e48e20ac85c970ed1f96e718fd068173948b7b\"\u003e\u003ccode\u003e86e48e2\u003c/code\u003e\u003c/a\u003e merge: incorporate main branch changes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/c1084728b5b935ec4ddc1e4cee877b01797b3ff9\"\u003e\u003ccode\u003ec108472\u003c/code\u003e\u003c/a\u003e chore: rebuild dist for v9 upgrade and getOctokit factory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/afff112e4f8b57c718168af75b89ce00bc8d091d\"\u003e\u003ccode\u003eafff112\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/github-script/issues/712\"\u003e#712\u003c/a\u003e from actions/salmanmkc/deployment-false + fix user-ag...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/ff8117e5b78c415f814f39ad6998f424fee7b817\"\u003e\u003ccode\u003eff8117e\u003c/code\u003e\u003c/a\u003e ci: fix user-agent test to handle orchestration ID\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/81c6b7876079abe10ff715951c9fc7b3e1ab389d\"\u003e\u003ccode\u003e81c6b78\u003c/code\u003e\u003c/a\u003e ci: use deployment: false to suppress deployment noise from integration tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/3953caf8858d318f37b6cc53a9f5708859b5a7b7\"\u003e\u003ccode\u003e3953caf\u003c/code\u003e\u003c/a\u003e docs: update README examples from \u003ca href=\"https://github.com/v8\"\u003e\u003ccode\u003e@​v8\u003c/code\u003e\u003c/a\u003e to \u003ca href=\"https://github.com/v9\"\u003e\u003ccode\u003e@​v9\u003c/code\u003e\u003c/a\u003e, add getOctokit docs and v9 brea...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/c17d55b90dcdb3d554d0027a6c180a7adc2daf78\"\u003e\u003ccode\u003ec17d55b\u003c/code\u003e\u003c/a\u003e ci: add getOctokit integration test job\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/a047196d9a02fe92098771cafbb98c2f1814e408\"\u003e\u003ccode\u003ea047196\u003c/code\u003e\u003c/a\u003e test: add getOctokit integration tests via callAsyncFunction\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/github-script/compare/v7...v9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dependabot/fetch-metadata` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/frasermolyneux/portal-servers-integration/pull/977","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/frasermolyneux%2Fportal-servers-integration/issues/977","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/977/packages"},{"uuid":"4553577796","node_id":"PR_kwDOIx7ksM7g54uS","number":805,"state":"closed","title":"chore(deps): bump the github-actions group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":["frasermolyneux"],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-30T06:41:29.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-30T06:37:39.000Z","updated_at":"2026-05-30T06:41:31.000Z","time_to_close":230,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"github-actions","update_count":6,"packages":[{"name":"actions/checkout","old_version":"4","new_version":"6","repository_url":"https://github.com/actions/checkout"},{"name":"actions/dependency-review-action","old_version":"4","new_version":"5","repository_url":"https://github.com/actions/dependency-review-action"},{"name":"actions/github-script","old_version":"7","new_version":"9","repository_url":"https://github.com/actions/github-script"},{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"},{"name":"azure/login","old_version":"2","new_version":"3","repository_url":"https://github.com/azure/login"},{"name":"azure/cli","old_version":"2","new_version":"3","repository_url":"https://github.com/azure/cli"}],"path":null,"ecosystem":"actions"},"body":"Bumps the github-actions group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [actions/checkout](https://github.com/actions/checkout) | `4` | `6` |\n| [actions/dependency-review-action](https://github.com/actions/dependency-review-action) | `4` | `5` |\n| [actions/github-script](https://github.com/actions/github-script) | `7` | `9` |\n| [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) | `2` | `3` |\n| [azure/login](https://github.com/azure/login) | `2` | `3` |\n| [azure/cli](https://github.com/azure/cli) | `2` | `3` |\n\n\nUpdates `actions/checkout` from 4 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/releases\"\u003eactions/checkout's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev6-beta by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2298\"\u003eactions/checkout#2298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate readme/changelog for v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2311\"\u003eactions/checkout#2311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/checkout/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6-beta\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eUpdated persist-credentials to store the credentials under \u003ccode\u003e$RUNNER_TEMP\u003c/code\u003e instead of directly in the local git config.\u003c/p\u003e\n\u003cp\u003eThis requires a minimum Actions Runner version of \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.329.0\"\u003ev2.329.0\u003c/a\u003e to access the persisted credentials for \u003ca href=\"https://docs.github.com/en/actions/tutorials/use-containerized-services/create-a-docker-container-action\"\u003eDocker container action\u003c/a\u003e scenarios.\u003c/p\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5...v5.0.1\"\u003ehttps://github.com/actions/checkout/compare/v5...v5.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare v5.0.0 release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2238\"\u003eactions/checkout#2238\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v5.0.0\"\u003ehttps://github.com/actions/checkout/compare/v4...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v4.3.1\"\u003ehttps://github.com/actions/checkout/compare/v4...v4.3.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/blob/main/CHANGELOG.md\"\u003eactions/checkout's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev6.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix tag handling: preserve annotations and explicit fetch-tags by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2356\"\u003eactions/checkout#2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd worktree support for persist-credentials includeIf by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2327\"\u003eactions/checkout#2327\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdjust positioning of user email note and permissions heading by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2044\"\u003eactions/checkout#2044\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CODEOWNERS for actions by \u003ca href=\"https://github.com/TingluoHuang\"\u003e\u003ccode\u003e@​TingluoHuang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2224\"\u003eactions/checkout#2224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate package dependencies by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eurl-helper.ts\u003c/code\u003e now leverages well-known environment variables by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1941\"\u003eactions/checkout#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand unit test coverage for \u003ccode\u003eisGhes\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1946\"\u003eactions/checkout#1946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck out other refs/* by commit if provided, fall back to ref by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1924\"\u003eactions/checkout#1924\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ref and Commit outputs by \u003ca href=\"https://github.com/lucacome\"\u003e\u003ccode\u003e@​lucacome\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1180\"\u003eactions/checkout#1180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e- \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1777\"\u003eactions/checkout#1777\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1872\"\u003eactions/checkout#1872\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump the minor-npm-dependencies group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1739\"\u003eactions/checkout#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1697\"\u003eactions/checkout#1697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck out other refs/* by commit by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1774\"\u003eactions/checkout#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/checkout's own workflows to a known, good, stable version. by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1776\"\u003eactions/checkout#1776\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck platform to set archive extension appropriately by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1732\"\u003eactions/checkout#1732\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/de0fac2e4500dabe0009e67214ff5f5447ce83dd\"\u003e\u003ccode\u003ede0fac2\u003c/code\u003e\u003c/a\u003e Fix tag handling: preserve annotations and explicit fetch-tags (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2356\"\u003e#2356\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/064fe7f3312418007dea2b49a19844a9ee378f49\"\u003e\u003ccode\u003e064fe7f\u003c/code\u003e\u003c/a\u003e Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/8e8c483db84b4bee98b60c0593521ed34d9990e8\"\u003e\u003ccode\u003e8e8c483\u003c/code\u003e\u003c/a\u003e Clarify v6 README (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/033fa0dc0b82693d8986f1016a0ec2c5e7d9cbb1\"\u003e\u003ccode\u003e033fa0d\u003c/code\u003e\u003c/a\u003e Add worktree support for persist-credentials includeIf (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/c2d88d3ecc89a9ef08eebf45d9637801dcee7eb5\"\u003e\u003ccode\u003ec2d88d3\u003c/code\u003e\u003c/a\u003e Update all references from v5 and v4 to v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2314\"\u003e#2314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3\"\u003e\u003ccode\u003e1af3b93\u003c/code\u003e\u003c/a\u003e update readme/changelog for v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2311\"\u003e#2311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/71cf2267d89c5cb81562390fa70a37fa40b1305e\"\u003e\u003ccode\u003e71cf226\u003c/code\u003e\u003c/a\u003e v6-beta (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/069c6959146423d11cd0184e6accf28f9d45f06e\"\u003e\u003ccode\u003e069c695\u003c/code\u003e\u003c/a\u003e Persist creds to a separate file (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2286\"\u003e#2286\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493\"\u003e\u003ccode\u003eff7abcd\u003c/code\u003e\u003c/a\u003e Update README to include Node.js 24 support details and requirements (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2248\"\u003e#2248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/08c6903cd8c0fde910a37f88322edcfb5dd907a8\"\u003e\u003ccode\u003e08c6903\u003c/code\u003e\u003c/a\u003e Prepare v5.0.0 release (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/checkout/compare/v4...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/dependency-review-action` from 4 to 5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/dependency-review-action/releases\"\u003eactions/dependency-review-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.0.0\u003c/h2\u003e\n\u003cp\u003eThis is a new major version of the Dependency Review Action which updates the runtime to node24. This requires a minimum Actions Runner version \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003ev2.327.1\u003c/a\u003e to run.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd .github/copilot-instructions.md for Copilot coding agent by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1067\"\u003eactions/dependency-review-action#1067\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Node.js runtime from 20 to 24 by \u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump spdx-license-ids from 3.0.20 to 3.0.23 by \u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: bump actions/checkout from v4 to v6 in workflow examples by \u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: patched version display for advisories with non-strict semver ranges (e.g. Maven beta versions) by \u003ca href=\"https://github.com/tspascoal\"\u003e\u003ccode\u003e@​tspascoal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1076\"\u003eactions/dependency-review-action#1076\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eResolve security findings by \u003ca href=\"https://github.com/AshelyTC\"\u003e\u003ccode\u003e@​AshelyTC\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1094\"\u003eactions/dependency-review-action#1094\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5.0.0 release branch by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1098\"\u003eactions/dependency-review-action#1098\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eDependency Review Action 4.9.0\u003c/h2\u003e\n\u003cp\u003eThis feature release contains a couple of notable changes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThere is a new configuration option \u003ccode\u003eshow_patched_versions\u003c/code\u003e which will add a column to the output, showing the fix version of each vulnerable dependency. Thanks \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eRuns which do not display OpenSSF scorecards no longer fetch scorecard information; previously it was fetched regardless of whether or not it was displayed, causing unneccessary slowness. Great catch \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eThere are a couple of fixes to purl parsing which should improve match accuracy for \u003ccode\u003eallow-package-dependency\u003c/code\u003e lists, including case (in)sensitivity and url-encoded namespaces Thanks \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCompare normalized purls to account for encoding quirks by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1056\"\u003eactions/dependency-review-action#1056\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake purl comparisons case insensitive by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1057\"\u003eactions/dependency-review-action#1057\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeat: Add \u003ccode\u003ePatched Version\u003c/code\u003e to \u003ccode\u003eVulnerabilities\u003c/code\u003e summary by \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1045\"\u003eactions/dependency-review-action#1045\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: only get scorecard levels if user wants to see the OpenSSF scorecard by \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 10.1.0 to 10.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1058\"\u003eactions/dependency-review-action#1058\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1021\"\u003eactions/dependency-review-action#1021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates for release 4.9.0 by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1064\"\u003eactions/dependency-review-action#1064\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.8.3\u003c/h2\u003e\n\u003ch2\u003eDependency Review Action v4.8.3\u003c/h2\u003e\n\u003cp\u003eThis is a bugfix release that updates a number of upstream dependencies and includes a fix for the earlier feature that detected oversized summaries and upload them as artifacts, which could occasionally crash the action.\u003c/p\u003e\n\u003cp\u003eWe have also updated the release process to use a long-lived \u003ccode\u003ev4\u003c/code\u003e \u003cstrong\u003ebranch\u003c/strong\u003e for the action, instead of a force-pushed tag, which aligns better with git branching strategies; the change should be transparent to end users.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eGitHub Actions can't push to our protected main by \u003ca href=\"https://github.com/dangoor\"\u003e\u003ccode\u003e@​dangoor\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1017\"\u003eactions/dependency-review-action#1017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 9.1.0 to 10.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/995\"\u003eactions/dependency-review-action#995\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a1d282b36b6f3519aa1f3fc636f609c47dddb294\"\u003e\u003ccode\u003ea1d282b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1098\"\u003e#1098\u003c/a\u003e from actions/ahpook/v5-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/eb6c199c5a85c7387f1f0b02b3ba5c6364740695\"\u003e\u003ccode\u003eeb6c199\u003c/code\u003e\u003c/a\u003e update examples to show \u003ca href=\"https://github.com/v5\"\u003e\u003ccode\u003e@​v5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/3943c2c5beaaaf1806eb3758273c203dabcbf89c\"\u003e\u003ccode\u003e3943c2c\u003c/code\u003e\u003c/a\u003e v5.0.0 release branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/454943c880b147adbfe7de0cdd3ece1c00882033\"\u003e\u003ccode\u003e454943c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1094\"\u003e#1094\u003c/a\u003e from actions/ashelytc/security-findings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/6d92a1228e9e9db334f02c09f84fe9217d2b4463\"\u003e\u003ccode\u003e6d92a12\u003c/code\u003e\u003c/a\u003e revert \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a8e5a7e93695b41abf6d1083cd220bee39a720f0\"\u003e\u003ccode\u003ea8e5a7e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1076\"\u003e#1076\u003c/a\u003e from tspascoal/fix-version-matching-for-non-string-s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/b6b7079031ef4ed61656c221988f1f3bcbf35101\"\u003e\u003ccode\u003eb6b7079\u003c/code\u003e\u003c/a\u003e update \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e to 8.40.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/821a21dd691f162c4c5c2e9754a344accde9a208\"\u003e\u003ccode\u003e821a21d\u003c/code\u003e\u003c/a\u003e update more dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/05aaaae45cf4c420de012addf2a72e3435ddaa63\"\u003e\u003ccode\u003e05aaaae\u003c/code\u003e\u003c/a\u003e run npm audit fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/55d3e754501fc13c84b95637ce51f135012d41ea\"\u003e\u003ccode\u003e55d3e75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1077\"\u003e#1077\u003c/a\u003e from Marukome0743/docs/checkout\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4...v5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/github-script` from 7 to 9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/github-script/releases\"\u003eactions/github-script's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eNew features:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003egetOctokit\u003c/code\u003e factory function\u003c/strong\u003e — Available directly in the script context. Create additional authenticated Octokit clients with different tokens for multi-token workflows, GitHub App tokens, and cross-org access. See \u003ca href=\"https://github.com/actions/github-script#creating-additional-clients-with-getoctokit\"\u003eCreating additional clients with \u003ccode\u003egetOctokit\u003c/code\u003e\u003c/a\u003e for details and examples.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eOrchestration ID in user-agent\u003c/strong\u003e — The \u003ccode\u003eACTIONS_ORCHESTRATION_ID\u003c/code\u003e environment variable is automatically appended to the user-agent string for request tracing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003erequire('@actions/github')\u003c/code\u003e no longer works in scripts.\u003c/strong\u003e The upgrade to \u003ccode\u003e@actions/github\u003c/code\u003e v9 (ESM-only) means \u003ccode\u003erequire('@actions/github')\u003c/code\u003e will fail at runtime. If you previously used patterns like \u003ccode\u003econst { getOctokit } = require('@actions/github')\u003c/code\u003e to create secondary clients, use the new injected \u003ccode\u003egetOctokit\u003c/code\u003e function instead — it's available directly in the script context with no imports needed.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egetOctokit\u003c/code\u003e is now an injected function parameter. Scripts that declare \u003ccode\u003econst getOctokit = ...\u003c/code\u003e or \u003ccode\u003elet getOctokit = ...\u003c/code\u003e will get a \u003ccode\u003eSyntaxError\u003c/code\u003e because JavaScript does not allow \u003ccode\u003econst\u003c/code\u003e/\u003ccode\u003elet\u003c/code\u003e redeclaration of function parameters. Use the injected \u003ccode\u003egetOctokit\u003c/code\u003e directly, or use \u003ccode\u003evar getOctokit = ...\u003c/code\u003e if you need to redeclare it.\u003c/li\u003e\n\u003cli\u003eIf your script accesses other \u003ccode\u003e@actions/github\u003c/code\u003e internals beyond the standard \u003ccode\u003egithub\u003c/code\u003e/\u003ccode\u003eoctokit\u003c/code\u003e client, you may need to update those references for v9 compatibility.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ACTIONS_ORCHESTRATION_ID to user-agent string by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/695\"\u003eactions/github-script#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: use deployment: false for integration test environments by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/712\"\u003eactions/github-script#712\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: add getOctokit to script context, upgrade \u003ccode\u003e@​actions/github\u003c/code\u003e v9, \u003ccode\u003e@​octokit/core\u003c/code\u003e v7, and related packages by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/700\"\u003eactions/github-script#700\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/695\"\u003eactions/github-script#695\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/github-script/compare/v8.0.0...v9.0.0\"\u003ehttps://github.com/actions/github-script/compare/v8.0.0...v9.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Node.js version support to 24.x by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/637\"\u003eactions/github-script#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME for updating actions/github-script from v7 to v8 by \u003ca href=\"https://github.com/sneha-krip\"\u003e\u003ccode\u003e@​sneha-krip\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/653\"\u003eactions/github-script#653\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/637\"\u003eactions/github-script#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sneha-krip\"\u003e\u003ccode\u003e@​sneha-krip\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/653\"\u003eactions/github-script#653\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/github-script/compare/v7.1.0...v8.0.0\"\u003ehttps://github.com/actions/github-script/compare/v7.1.0...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade husky to v9 by \u003ca href=\"https://github.com/benelan\"\u003e\u003ccode\u003e@​benelan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/482\"\u003eactions/github-script#482\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd workflow file for publishing releases to immutable action package by \u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/485\"\u003eactions/github-script#485\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade IA Publish by \u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/486\"\u003eactions/github-script#486\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix workflow status badges by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/497\"\u003eactions/github-script#497\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate usage of \u003ccode\u003eactions/upload-artifact\u003c/code\u003e by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/512\"\u003eactions/github-script#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClear up package name confusion by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/514\"\u003eactions/github-script#514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies with \u003ccode\u003enpm audit fix\u003c/code\u003e by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/515\"\u003eactions/github-script#515\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpecify that the used script is JavaScript by \u003ca href=\"https://github.com/timotk\"\u003e\u003ccode\u003e@​timotk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/478\"\u003eactions/github-script#478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Add Dependabot for NPM and Actions by \u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/472\"\u003eactions/github-script#472\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/3a2844b7e9c422d3c10d287c895573f7108da1b3\"\u003e\u003ccode\u003e3a2844b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/github-script/issues/700\"\u003e#700\u003c/a\u003e from actions/salmanmkc/expose-getoctokit + prepare re...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/ca10bbdd1a7739de09e99a200c7a59f5d73a4079\"\u003e\u003ccode\u003eca10bbd\u003c/code\u003e\u003c/a\u003e fix: use \u003ccode\u003e@​octokit/core/\u003c/code\u003etypes import for v7 compatibility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/86e48e20ac85c970ed1f96e718fd068173948b7b\"\u003e\u003ccode\u003e86e48e2\u003c/code\u003e\u003c/a\u003e merge: incorporate main branch changes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/c1084728b5b935ec4ddc1e4cee877b01797b3ff9\"\u003e\u003ccode\u003ec108472\u003c/code\u003e\u003c/a\u003e chore: rebuild dist for v9 upgrade and getOctokit factory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/afff112e4f8b57c718168af75b89ce00bc8d091d\"\u003e\u003ccode\u003eafff112\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/github-script/issues/712\"\u003e#712\u003c/a\u003e from actions/salmanmkc/deployment-false + fix user-ag...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/ff8117e5b78c415f814f39ad6998f424fee7b817\"\u003e\u003ccode\u003eff8117e\u003c/code\u003e\u003c/a\u003e ci: fix user-agent test to handle orchestration ID\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/81c6b7876079abe10ff715951c9fc7b3e1ab389d\"\u003e\u003ccode\u003e81c6b78\u003c/code\u003e\u003c/a\u003e ci: use deployment: false to suppress deployment noise from integration tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/3953caf8858d318f37b6cc53a9f5708859b5a7b7\"\u003e\u003ccode\u003e3953caf\u003c/code\u003e\u003c/a\u003e docs: update README examples from \u003ca href=\"https://github.com/v8\"\u003e\u003ccode\u003e@​v8\u003c/code\u003e\u003c/a\u003e to \u003ca href=\"https://github.com/v9\"\u003e\u003ccode\u003e@​v9\u003c/code\u003e\u003c/a\u003e, add getOctokit docs and v9 brea...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/c17d55b90dcdb3d554d0027a6c180a7adc2daf78\"\u003e\u003ccode\u003ec17d55b\u003c/code\u003e\u003c/a\u003e ci: add getOctokit integration test job\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/a047196d9a02fe92098771cafbb98c2f1814e408\"\u003e\u003ccode\u003ea047196\u003c/code\u003e\u003c/a\u003e test: add getOctokit integration tests via callAsyncFunction\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/github-script/compare/v7...v9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dependabot/fetch-metadata` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `azure/login` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/azure/login/releases\"\u003eazure/login's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAzure Login Action v3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupgrade nodejs from 20 to 24 and update dependencies by \u003ca href=\"https://github.com/YanaXu\"\u003e\u003ccode\u003e@​YanaXu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/578\"\u003eAzure/login#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/login/compare/v2.3.0...v3\"\u003ehttps://github.com/Azure/login/compare/v2.3.0...v3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAzure Login Action v3.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade nodejs from 20 to 24 and update dependencies by \u003ca href=\"https://github.com/YanaXu\"\u003e\u003ccode\u003e@​YanaXu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/578\"\u003eAzure/login#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/login/compare/v2.3.0...v3.0.0\"\u003ehttps://github.com/Azure/login/compare/v2.3.0...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAzure Login Action v2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the invalid link for the GitHub Action Doc by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/510\"\u003eAzure/login#510\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump braces from 3.0.2 to 3.0.3 by \u003ca href=\"https://github.com/YanaXu\"\u003e\u003ccode\u003e@​YanaXu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/511\"\u003eAzure/login#511\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMention \u0026quot;allow-no-subscriptions\u0026quot; in missing subscriptionId error by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/512\"\u003eAzure/login#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLog more claims for OIDC login by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/520\"\u003eAzure/login#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003e--client-id\u003c/code\u003e for user-assigned managed identity authentication in Azure CLI v2.69.0 or later. by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/514\"\u003eAzure/login#514\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/login/compare/v2.2.0...v2.3.0\"\u003ehttps://github.com/Azure/login/compare/v2.2.0...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAzure Login Action v2.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace \u003ccode\u003eaz --version\u003c/code\u003e with \u003ccode\u003eaz version\u003c/code\u003e by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/450\"\u003eAzure/login#450\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate documentation for setting audience when environment is set by \u003ca href=\"https://github.com/jcantosz\"\u003e\u003ccode\u003e@​jcantosz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/455\"\u003eAzure/login#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/azure/login/issues/459\"\u003e#459\u003c/a\u003e: Errors when registering cloud profile for AzureStack by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/466\"\u003eAzure/login#466\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix typo by \u003ca href=\"https://github.com/KronosTheLate\"\u003e\u003ccode\u003e@​KronosTheLate\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/483\"\u003eAzure/login#483\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emove pre cleanup to main and add pre-if and post-if by \u003ca href=\"https://github.com/YanaXu\"\u003e\u003ccode\u003e@​YanaXu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/484\"\u003eAzure/login#484\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jcantosz\"\u003e\u003ccode\u003e@​jcantosz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Azure/login/pull/455\"\u003eAzure/login#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KronosTheLate\"\u003e\u003ccode\u003e@​KronosTheLate\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Azure/login/pull/483\"\u003eAzure/login#483\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/login/compare/v2.1.1...v2.2.0\"\u003ehttps://github.com/Azure/login/compare/v2.1.1...v2.2.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.1.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDisable information output in Connect-AzAccount by \u003ca href=\"https://github.com/YanaXu\"\u003e\u003ccode\u003e@​YanaXu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/448\"\u003eAzure/login#448\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jiasli\"\u003e\u003ccode\u003e@​jiasli\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Azure/login/pull/438\"\u003eAzure/login#438\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isra-fel\"\u003e\u003ccode\u003e@​isra-fel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Azure/login/pull/446\"\u003eAzure/login#446\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/login/compare/v2.1.0...v2.1.1\"\u003ehttps://github.com/Azure/login/compare/v2.1.0...v2.1.1\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/login/commit/532459ea530d8321f2fb9bb10d1e0bcf23869a43\"\u003e\u003ccode\u003e532459e\u003c/code\u003e\u003c/a\u003e prepare release v3.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/login/commit/893aa84218880a3fafd9a6d332ff1aea7108f1fe\"\u003e\u003ccode\u003e893aa84\u003c/code\u003e\u003c/a\u003e upgrade Azure Login Action version in README (\u003ca href=\"https://redirect.github.com/azure/login/issues/579\"\u003e#579\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/login/commit/ce6a9ff965c6b99ee966eee159baa8c35e135635\"\u003e\u003ccode\u003ece6a9ff\u003c/code\u003e\u003c/a\u003e upgrade nodejs from 20 to 24 and update dependencies (\u003ca href=\"https://redirect.github.com/azure/login/issues/578\"\u003e#578\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/azure/login/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `azure/cli` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/azure/cli/releases\"\u003eazure/cli's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eGitHub Action for Azure CLI v3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated to use node24 by \u003ca href=\"https://github.com/thomas-temby\"\u003e\u003ccode\u003e@​thomas-temby\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/197\"\u003eAzure/cli#197\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/cli/compare/v2.2.0...v3\"\u003ehttps://github.com/Azure/cli/compare/v2.2.0...v3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eGitHub Action for Azure CLI v3.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated to use node24 by \u003ca href=\"https://github.com/thomas-temby\"\u003e\u003ccode\u003e@​thomas-temby\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/197\"\u003eAzure/cli#197\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/cli/compare/v2.2.0...v3.0.0\"\u003ehttps://github.com/Azure/cli/compare/v2.2.0...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eGitHub Action for Azure CLI v2.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMount \u003ccode\u003eAZURE_CONFIG_DIR\u003c/code\u003e folder instead of \u003ccode\u003e~/.azure\u003c/code\u003e by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/176\"\u003eAzure/cli#176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFIX: Broken links by appended dot azcliversion errors by \u003ca href=\"https://github.com/nselpriv\"\u003e\u003ccode\u003e@​nselpriv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/178\"\u003eAzure/cli#178\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nselpriv\"\u003e\u003ccode\u003e@​nselpriv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/178\"\u003eAzure/cli#178\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/cli/compare/v2.1.0...v2.2.0\"\u003ehttps://github.com/Azure/cli/compare/v2.1.0...v2.2.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eGitHub Action for Azure CLI v2.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: add yaml syntax highlighting to workflow examples by \u003ca href=\"https://github.com/baysideengineer\"\u003e\u003ccode\u003e@​baysideengineer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/141\"\u003eAzure/cli#141\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/azure/cli/issues/153\"\u003e#153\u003c/a\u003e: Prevent stdout cutoff in Azure CLI versions by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/154\"\u003eAzure/cli#154\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/baysideengineer\"\u003e\u003ccode\u003e@​baysideengineer\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/141\"\u003eAzure/cli#141\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isra-fel\"\u003e\u003ccode\u003e@​isra-fel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/151\"\u003eAzure/cli#151\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/cli/compare/v2.0.0...v2.1.0\"\u003ehttps://github.com/Azure/cli/compare/v2.0.0...v2.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/cli/blob/master/ReleaseProcess.md\"\u003eazure/cli's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003eReleasing a new version\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eSemanting versioning is used to release different versions of the action. Following steps are to be followed :\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eCreate a new branch for every major version. \u003cbr /\u003e\nExample, releases/v1, releases/v2.\u003c/li\u003e\n\u003cli\u003eFor every minor and patch release for a major version, update the corresponding release branch. \u003cbr /\u003e\nExample, for releasing v1.1.1, update releases/v1.\u003c/li\u003e\n\u003cli\u003eCreate tags for every new release (major/minor/patch). \u003cbr /\u003e\nExample,v1.0.0. , v1.0.1, v2.0.1, etc. and also have tags like v1, v2 for every major version release.\u003c/li\u003e\n\u003cli\u003eOn releasing minor and patch versions, update the tag of the corresponding major version. \u003cbr /\u003e\nExample, for releasing v1.0.1, update the v1 tag to point to the ref of the current release. \u003cbr /\u003e\nThe following commands are to be run on the release\\v1 branch so that it picks the latest commit and updates the v1 tag accordingly :\n(Ensure that you are on same commit locally as you want to release)\u003c/li\u003e\n\u003c/ol\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003egit tag -fa v1 -m \u0026quot;Update v1 tag\u0026quot;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egit push origin v1 --force\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/cli/commit/9eb25b8360668fb0ecbafa808d40e2197b2f5f52\"\u003e\u003ccode\u003e9eb25b8\u003c/code\u003e\u003c/a\u003e Release v3.0.0 (\u003ca href=\"https://redirect.github.com/azure/cli/issues/199\"\u003e#199\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/cli/commit/c1ad80439ad9dfdbdcb53dccd4af40c9737d9a35\"\u003e\u003ccode\u003ec1ad804\u003c/code\u003e\u003c/a\u003e Add changes (\u003ca href=\"https://redirect.github.com/azure/cli/issues/198\"\u003e#198\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/cli/commit/41fca1b4f839bddb83a7fc3319db2e9db28ed42a\"\u003e\u003ccode\u003e41fca1b\u003c/code\u003e\u003c/a\u003e Updated to use node24 (\u003ca href=\"https://redirect.github.com/azure/cli/issues/197\"\u003e#197\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/cli/commit/cbea6ec14de255853c4e94dcf860771c944d4a78\"\u003e\u003ccode\u003ecbea6ec\u003c/code\u003e\u003c/a\u003e change the assignee (\u003ca href=\"https://redirect.github.com/azure/cli/issues/191\"\u003e#191\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/azure/cli/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/frasermolyneux/portal-sync/pull/805","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/frasermolyneux%2Fportal-sync/issues/805","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/805/packages"},{"uuid":"4552066984","node_id":"PR_kwDOSrwuJc7g1CM7","number":1,"state":"closed","title":"chore(deps): Bump the actions group across 1 directory with 11 updates","user":"dependabot[bot]","labels":["ci"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-30T17:59:57.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-29T22:41:56.000Z","updated_at":"2026-05-30T17:59:59.000Z","time_to_close":69481,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","group_name":"actions","update_count":11,"packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"},{"name":"actions/checkout","old_version":"4","new_version":"6","repository_url":"https://github.com/actions/checkout"},{"name":"actions/setup-python","old_version":"5","new_version":"6","repository_url":"https://github.com/actions/setup-python"},{"name":"actions/dependency-review-action","old_version":"4","new_version":"5","repository_url":"https://github.com/actions/dependency-review-action"},{"name":"actions/labeler","old_version":"5","new_version":"6","repository_url":"https://github.com/actions/labeler"},{"name":"peter-evans/create-pull-request","old_version":"6","new_version":"8","repository_url":"https://github.com/peter-evans/create-pull-request"},{"name":"googleapis/release-please-action","old_version":"4","new_version":"5","repository_url":"https://github.com/googleapis/release-please-action"},{"name":"ossf/scorecard-action","old_version":"2.4.0","new_version":"2.4.3","repository_url":"https://github.com/ossf/scorecard-action"},{"name":"actions/upload-artifact","old_version":"4","new_version":"7","repository_url":"https://github.com/actions/upload-artifact"},{"name":"github/codeql-action","old_version":"3","new_version":"4","repository_url":"https://github.com/github/codeql-action"},{"name":"actions/stale","old_version":"9","new_version":"10","repository_url":"https://github.com/actions/stale"}],"path":null,"ecosystem":"actions"},"body":"Bumps the actions group with 11 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) | `2` | `3` |\n| [actions/checkout](https://github.com/actions/checkout) | `4` | `6` |\n| [actions/setup-python](https://github.com/actions/setup-python) | `5` | `6` |\n| [actions/dependency-review-action](https://github.com/actions/dependency-review-action) | `4` | `5` |\n| [actions/labeler](https://github.com/actions/labeler) | `5` | `6` |\n| [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) | `6` | `8` |\n| [googleapis/release-please-action](https://github.com/googleapis/release-please-action) | `4` | `5` |\n| [ossf/scorecard-action](https://github.com/ossf/scorecard-action) | `2.4.0` | `2.4.3` |\n| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4` | `7` |\n| [github/codeql-action](https://github.com/github/codeql-action) | `3` | `4` |\n| [actions/stale](https://github.com/actions/stale) | `9` | `10` |\n\n\nUpdates `dependabot/fetch-metadata` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/checkout` from 4 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/releases\"\u003eactions/checkout's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev6-beta by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2298\"\u003eactions/checkout#2298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate readme/changelog for v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2311\"\u003eactions/checkout#2311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/checkout/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6-beta\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eUpdated persist-credentials to store the credentials under \u003ccode\u003e$RUNNER_TEMP\u003c/code\u003e instead of directly in the local git config.\u003c/p\u003e\n\u003cp\u003eThis requires a minimum Actions Runner version of \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.329.0\"\u003ev2.329.0\u003c/a\u003e to access the persisted credentials for \u003ca href=\"https://docs.github.com/en/actions/tutorials/use-containerized-services/create-a-docker-container-action\"\u003eDocker container action\u003c/a\u003e scenarios.\u003c/p\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5...v5.0.1\"\u003ehttps://github.com/actions/checkout/compare/v5...v5.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare v5.0.0 release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2238\"\u003eactions/checkout#2238\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v5.0.0\"\u003ehttps://github.com/actions/checkout/compare/v4...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v4.3.1\"\u003ehttps://github.com/actions/checkout/compare/v4...v4.3.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/blob/main/CHANGELOG.md\"\u003eactions/checkout's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev6.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix tag handling: preserve annotations and explicit fetch-tags by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2356\"\u003eactions/checkout#2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd worktree support for persist-credentials includeIf by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2327\"\u003eactions/checkout#2327\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdjust positioning of user email note and permissions heading by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2044\"\u003eactions/checkout#2044\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CODEOWNERS for actions by \u003ca href=\"https://github.com/TingluoHuang\"\u003e\u003ccode\u003e@​TingluoHuang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2224\"\u003eactions/checkout#2224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate package dependencies by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eurl-helper.ts\u003c/code\u003e now leverages well-known environment variables by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1941\"\u003eactions/checkout#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand unit test coverage for \u003ccode\u003eisGhes\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1946\"\u003eactions/checkout#1946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck out other refs/* by commit if provided, fall back to ref by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1924\"\u003eactions/checkout#1924\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ref and Commit outputs by \u003ca href=\"https://github.com/lucacome\"\u003e\u003ccode\u003e@​lucacome\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1180\"\u003eactions/checkout#1180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e- \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1777\"\u003eactions/checkout#1777\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1872\"\u003eactions/checkout#1872\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump the minor-npm-dependencies group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1739\"\u003eactions/checkout#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1697\"\u003eactions/checkout#1697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck out other refs/* by commit by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1774\"\u003eactions/checkout#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/checkout's own workflows to a known, good, stable version. by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1776\"\u003eactions/checkout#1776\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck platform to set archive extension appropriately by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1732\"\u003eactions/checkout#1732\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/de0fac2e4500dabe0009e67214ff5f5447ce83dd\"\u003e\u003ccode\u003ede0fac2\u003c/code\u003e\u003c/a\u003e Fix tag handling: preserve annotations and explicit fetch-tags (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2356\"\u003e#2356\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/064fe7f3312418007dea2b49a19844a9ee378f49\"\u003e\u003ccode\u003e064fe7f\u003c/code\u003e\u003c/a\u003e Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/8e8c483db84b4bee98b60c0593521ed34d9990e8\"\u003e\u003ccode\u003e8e8c483\u003c/code\u003e\u003c/a\u003e Clarify v6 README (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/033fa0dc0b82693d8986f1016a0ec2c5e7d9cbb1\"\u003e\u003ccode\u003e033fa0d\u003c/code\u003e\u003c/a\u003e Add worktree support for persist-credentials includeIf (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/c2d88d3ecc89a9ef08eebf45d9637801dcee7eb5\"\u003e\u003ccode\u003ec2d88d3\u003c/code\u003e\u003c/a\u003e Update all references from v5 and v4 to v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2314\"\u003e#2314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3\"\u003e\u003ccode\u003e1af3b93\u003c/code\u003e\u003c/a\u003e update readme/changelog for v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2311\"\u003e#2311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/71cf2267d89c5cb81562390fa70a37fa40b1305e\"\u003e\u003ccode\u003e71cf226\u003c/code\u003e\u003c/a\u003e v6-beta (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/069c6959146423d11cd0184e6accf28f9d45f06e\"\u003e\u003ccode\u003e069c695\u003c/code\u003e\u003c/a\u003e Persist creds to a separate file (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2286\"\u003e#2286\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493\"\u003e\u003ccode\u003eff7abcd\u003c/code\u003e\u003c/a\u003e Update README to include Node.js 24 support details and requirements (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2248\"\u003e#2248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/08c6903cd8c0fde910a37f88322edcfb5dd907a8\"\u003e\u003ccode\u003e08c6903\u003c/code\u003e\u003c/a\u003e Prepare v5.0.0 release (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/checkout/compare/v4...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/setup-python` from 5 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/setup-python/releases\"\u003eactions/setup-python's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1164\"\u003eactions/setup-python#1164\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eMake sure your runner is on version v2.327.1 or later to ensure compatibility with this release. \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eSee Release Notes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eEnhancements:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for \u003ccode\u003epip-version\u003c/code\u003e  by \u003ca href=\"https://github.com/priyagupta108\"\u003e\u003ccode\u003e@​priyagupta108\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1129\"\u003eactions/setup-python#1129\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnhance reading from .python-version by \u003ca href=\"https://github.com/krystof-k\"\u003e\u003ccode\u003e@​krystof-k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/787\"\u003eactions/setup-python#787\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd version parsing from Pipfile by \u003ca href=\"https://github.com/aradkdj\"\u003e\u003ccode\u003e@​aradkdj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1067\"\u003eactions/setup-python#1067\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eClarify pythonLocation behaviour for PyPy and GraalPy in environment variables by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1183\"\u003eactions/setup-python#1183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eChange missing cache directory error to warning  by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1182\"\u003eactions/setup-python#1182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Architecture-Specific PATH Management for Python with --user Flag on Windows by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1122\"\u003eactions/setup-python#1122\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInclude python version in PyPy python-version output by \u003ca href=\"https://github.com/cdce8p\"\u003e\u003ccode\u003e@​cdce8p\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1110\"\u003eactions/setup-python#1110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate docs: clarification on pip authentication with setup-python by \u003ca href=\"https://github.com/priya-kinthali\"\u003e\u003ccode\u003e@​priya-kinthali\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1156\"\u003eactions/setup-python#1156\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency updates:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade idna from 2.9 to 3.7 in /\u003cstrong\u003etests\u003c/strong\u003e/data by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/843\"\u003eactions/setup-python#843\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade form-data to fix critical vulnerabilities \u003ca href=\"https://redirect.github.com/actions/setup-python/issues/182\"\u003e#182\u003c/a\u003e \u0026amp; \u003ca href=\"https://redirect.github.com/actions/setup-python/issues/183\"\u003e#183\u003c/a\u003e by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1163\"\u003eactions/setup-python#1163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade setuptools to 78.1.1 to fix path traversal vulnerability in PackageIndex.download by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1165\"\u003eactions/setup-python#1165\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1181\"\u003eactions/setup-python#1181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/tool-cache\u003c/code\u003e from 2.0.1 to 2.0.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1095\"\u003eactions/setup-python#1095\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/krystof-k\"\u003e\u003ccode\u003e@​krystof-k\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/787\"\u003eactions/setup-python#787\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cdce8p\"\u003e\u003ccode\u003e@​cdce8p\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1110\"\u003eactions/setup-python#1110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aradkdj\"\u003e\u003ccode\u003e@​aradkdj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1067\"\u003eactions/setup-python#1067\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-python/compare/v5...v6.0.0\"\u003ehttps://github.com/actions/setup-python/compare/v5...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWorkflow updates related to Ubuntu 20.04 by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1065\"\u003eactions/setup-python#1065\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for Candidate Not Iterable Error by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1082\"\u003eactions/setup-python#1082\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade semver and \u003ccode\u003e@​types/semver\u003c/code\u003e by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1091\"\u003eactions/setup-python#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 2.8.8 to 3.5.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1046\"\u003eactions/setup-python#1046\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade ts-jest from 29.1.2 to 29.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1081\"\u003eactions/setup-python#1081\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-python/compare/v5...v5.6.0\"\u003ehttps://github.com/actions/setup-python/compare/v5...v5.6.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eEnhancements:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport free threaded Python versions like '3.13t' by \u003ca href=\"https://github.com/colesbury\"\u003e\u003ccode\u003e@​colesbury\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/973\"\u003eactions/setup-python#973\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnhance Workflows: Include ubuntu-arm runners, Add e2e Testing for free threaded and Upgrade \u003ccode\u003e@​action/cache\u003c/code\u003e from 4.0.0 to 4.0.3 by \u003ca href=\"https://github.com/priya-kinthali\"\u003e\u003ccode\u003e@​priya-kinthali\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1056\"\u003eactions/setup-python#1056\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for .tool-versions file in setup-python by \u003ca href=\"https://github.com/mahabaleshwars\"\u003e\u003ccode\u003e@​mahabaleshwars\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1043\"\u003eactions/setup-python#1043\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix architecture for pypy on Linux ARM64 by \u003ca href=\"https://github.com/mayeut\"\u003e\u003ccode\u003e@​mayeut\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1011\"\u003eactions/setup-python#1011\u003c/a\u003e\nThis update maps arm64 to aarch64 for Linux ARM64 PyPy installations.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/a309ff8b426b58ec0e2a45f0f869d46889d02405\"\u003e\u003ccode\u003ea309ff8\u003c/code\u003e\u003c/a\u003e Bump urllib3 from 2.6.0 to 2.6.3 in /\u003cstrong\u003etests\u003c/strong\u003e/data (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1264\"\u003e#1264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/bfe8cc55a7890e3d6672eda6460ef37bfcc70755\"\u003e\u003ccode\u003ebfe8cc5\u003c/code\u003e\u003c/a\u003e Upgrade \u003ca href=\"https://github.com/actions\"\u003e\u003ccode\u003e@​actions\u003c/code\u003e\u003c/a\u003e dependencies to Node 24 compatible versions (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1259\"\u003e#1259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/4f41a90a1f38628c7ccc608d05fbafe701bc20ae\"\u003e\u003ccode\u003e4f41a90\u003c/code\u003e\u003c/a\u003e Bump urllib3 from 2.5.0 to 2.6.0 in /\u003cstrong\u003etests\u003c/strong\u003e/data (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1253\"\u003e#1253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/83679a892e2d95755f2dac6acb0bfd1e9ac5d548\"\u003e\u003ccode\u003e83679a8\u003c/code\u003e\u003c/a\u003e Bump \u003ccode\u003e@​types/node\u003c/code\u003e from 24.1.0 to 24.9.1 and update macos-13 to macos-15-intel ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/bfc4944b43a5d84377eca3cf6ab5b7992ba61923\"\u003e\u003ccode\u003ebfc4944\u003c/code\u003e\u003c/a\u003e Bump prettier from 3.5.3 to 3.6.2 (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1234\"\u003e#1234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/97aeb3efb8a852c559869050c7fb175b4efcc8cf\"\u003e\u003ccode\u003e97aeb3e\u003c/code\u003e\u003c/a\u003e Bump requests from 2.32.2 to 2.32.4 in /\u003cstrong\u003etests\u003c/strong\u003e/data (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1130\"\u003e#1130\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/443da59188462e2402e2942686db5aa6723f4bed\"\u003e\u003ccode\u003e443da59\u003c/code\u003e\u003c/a\u003e Bump actions/publish-action from 0.3.0 to 0.4.0 \u0026amp; Documentation update for pi...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/cfd55ca82492758d853442341ad4d8010466803a\"\u003e\u003ccode\u003ecfd55ca\u003c/code\u003e\u003c/a\u003e graalpy: add graalpy early-access and windows builds (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/880\"\u003e#880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/bba65e51ff35d50c6dbaaacd8a4681db13aa7cb4\"\u003e\u003ccode\u003ebba65e5\u003c/code\u003e\u003c/a\u003e Bump typescript from 5.4.2 to 5.9.3 and update docs/advanced-usage.md (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1094\"\u003e#1094\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/18566f86b301499665bd3eb1a2247e0849c64fa5\"\u003e\u003ccode\u003e18566f8\u003c/code\u003e\u003c/a\u003e Improve wording and \u0026quot;fix example\u0026quot; (remove 3.13) on testing against pre-releas...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/setup-python/compare/v5...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/dependency-review-action` from 4 to 5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/dependency-review-action/releases\"\u003eactions/dependency-review-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.0.0\u003c/h2\u003e\n\u003cp\u003eThis is a new major version of the Dependency Review Action which updates the runtime to node24. This requires a minimum Actions Runner version \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003ev2.327.1\u003c/a\u003e to run.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd .github/copilot-instructions.md for Copilot coding agent by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1067\"\u003eactions/dependency-review-action#1067\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Node.js runtime from 20 to 24 by \u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump spdx-license-ids from 3.0.20 to 3.0.23 by \u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: bump actions/checkout from v4 to v6 in workflow examples by \u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: patched version display for advisories with non-strict semver ranges (e.g. Maven beta versions) by \u003ca href=\"https://github.com/tspascoal\"\u003e\u003ccode\u003e@​tspascoal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1076\"\u003eactions/dependency-review-action#1076\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eResolve security findings by \u003ca href=\"https://github.com/AshelyTC\"\u003e\u003ccode\u003e@​AshelyTC\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1094\"\u003eactions/dependency-review-action#1094\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5.0.0 release branch by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1098\"\u003eactions/dependency-review-action#1098\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eDependency Review Action 4.9.0\u003c/h2\u003e\n\u003cp\u003eThis feature release contains a couple of notable changes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThere is a new configuration option \u003ccode\u003eshow_patched_versions\u003c/code\u003e which will add a column to the output, showing the fix version of each vulnerable dependency. Thanks \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eRuns which do not display OpenSSF scorecards no longer fetch scorecard information; previously it was fetched regardless of whether or not it was displayed, causing unneccessary slowness. Great catch \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eThere are a couple of fixes to purl parsing which should improve match accuracy for \u003ccode\u003eallow-package-dependency\u003c/code\u003e lists, including case (in)sensitivity and url-encoded namespaces Thanks \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCompare normalized purls to account for encoding quirks by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1056\"\u003eactions/dependency-review-action#1056\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake purl comparisons case insensitive by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1057\"\u003eactions/dependency-review-action#1057\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeat: Add \u003ccode\u003ePatched Version\u003c/code\u003e to \u003ccode\u003eVulnerabilities\u003c/code\u003e summary by \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1045\"\u003eactions/dependency-review-action#1045\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: only get scorecard levels if user wants to see the OpenSSF scorecard by \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 10.1.0 to 10.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1058\"\u003eactions/dependency-review-action#1058\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1021\"\u003eactions/dependency-review-action#1021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates for release 4.9.0 by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1064\"\u003eactions/dependency-review-action#1064\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.8.3\u003c/h2\u003e\n\u003ch2\u003eDependency Review Action v4.8.3\u003c/h2\u003e\n\u003cp\u003eThis is a bugfix release that updates a number of upstream dependencies and includes a fix for the earlier feature that detected oversized summaries and upload them as artifacts, which could occasionally crash the action.\u003c/p\u003e\n\u003cp\u003eWe have also updated the release process to use a long-lived \u003ccode\u003ev4\u003c/code\u003e \u003cstrong\u003ebranch\u003c/strong\u003e for the action, instead of a force-pushed tag, which aligns better with git branching strategies; the change should be transparent to end users.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eGitHub Actions can't push to our protected main by \u003ca href=\"https://github.com/dangoor\"\u003e\u003ccode\u003e@​dangoor\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1017\"\u003eactions/dependency-review-action#1017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 9.1.0 to 10.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/995\"\u003eactions/dependency-review-action#995\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a1d282b36b6f3519aa1f3fc636f609c47dddb294\"\u003e\u003ccode\u003ea1d282b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1098\"\u003e#1098\u003c/a\u003e from actions/ahpook/v5-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/eb6c199c5a85c7387f1f0b02b3ba5c6364740695\"\u003e\u003ccode\u003eeb6c199\u003c/code\u003e\u003c/a\u003e update examples to show \u003ca href=\"https://github.com/v5\"\u003e\u003ccode\u003e@​v5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/3943c2c5beaaaf1806eb3758273c203dabcbf89c\"\u003e\u003ccode\u003e3943c2c\u003c/code\u003e\u003c/a\u003e v5.0.0 release branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/454943c880b147adbfe7de0cdd3ece1c00882033\"\u003e\u003ccode\u003e454943c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1094\"\u003e#1094\u003c/a\u003e from actions/ashelytc/security-findings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/6d92a1228e9e9db334f02c09f84fe9217d2b4463\"\u003e\u003ccode\u003e6d92a12\u003c/code\u003e\u003c/a\u003e revert \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a8e5a7e93695b41abf6d1083cd220bee39a720f0\"\u003e\u003ccode\u003ea8e5a7e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1076\"\u003e#1076\u003c/a\u003e from tspascoal/fix-version-matching-for-non-string-s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/b6b7079031ef4ed61656c221988f1f3bcbf35101\"\u003e\u003ccode\u003eb6b7079\u003c/code\u003e\u003c/a\u003e update \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e to 8.40.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/821a21dd691f162c4c5c2e9754a344accde9a208\"\u003e\u003ccode\u003e821a21d\u003c/code\u003e\u003c/a\u003e update more dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/05aaaae45cf4c420de012addf2a72e3435ddaa63\"\u003e\u003ccode\u003e05aaaae\u003c/code\u003e\u003c/a\u003e run npm audit fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/55d3e754501fc13c84b95637ce51f135012d41ea\"\u003e\u003ccode\u003e55d3e75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1077\"\u003e#1077\u003c/a\u003e from Marukome0743/docs/checkout\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4...v5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/labeler` from 5 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/labeler/releases\"\u003eactions/labeler's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd workflow file for publishing releases to immutable action package by \u003ca href=\"https://github.com/jcambass\"\u003e\u003ccode\u003e@​jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/802\"\u003eactions/labeler#802\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Node.js version to 24 in action and dependencies \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/891\"\u003eactions/labeler#891\u003c/a\u003e\nMake sure your runner is on version v2.327.1 or later to ensure compatibility with this release. \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency Upgrades\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade eslint-config-prettier from 9.0.0 to 9.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/711\"\u003eactions/labeler#711\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint from 8.52.0 to 8.55.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/720\"\u003eactions/labeler#720\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​types/jest\u003c/code\u003e from 29.5.6 to 29.5.11 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/719\"\u003eactions/labeler#719\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​types/js-yaml\u003c/code\u003e from 4.0.8 to 4.0.9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/718\"\u003eactions/labeler#718\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e from 6.9.0 to 6.14.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/717\"\u003eactions/labeler#717\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 3.0.3 to 3.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/726\"\u003eactions/labeler#726\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint from 8.55.0 to 8.56.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/725\"\u003eactions/labeler#725\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e from 6.14.0 to 6.19.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/745\"\u003eactions/labeler#745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint-plugin-jest from 27.4.3 to 27.6.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/744\"\u003eactions/labeler#744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/eslint-plugin\u003c/code\u003e from 6.9.0 to 6.20.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/750\"\u003eactions/labeler#750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 3.1.1 to 3.2.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/752\"\u003eactions/labeler#752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade undici from 5.26.5 to 5.28.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/757\"\u003eactions/labeler#757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade braces from 3.0.2 to 3.0.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/789\"\u003eactions/labeler#789\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade minimatch from 9.0.3 to 10.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/805\"\u003eactions/labeler#805\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e from 1.10.1 to 1.11.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/811\"\u003eactions/labeler#811\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade typescript from 5.4.3 to 5.7.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/819\"\u003eactions/labeler#819\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e from 7.3.1 to 8.17.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/824\"\u003eactions/labeler#824\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 3.2.5 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/825\"\u003eactions/labeler#825\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​types/jest\u003c/code\u003e from 29.5.12 to 29.5.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/827\"\u003eactions/labeler#827\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint-plugin-jest from 27.9.0 to 28.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/832\"\u003eactions/labeler#832\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade ts-jest from 29.1.2 to 29.2.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/831\"\u003eactions/labeler#831\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​vercel/ncc\u003c/code\u003e from 0.38.1 to 0.38.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/830\"\u003eactions/labeler#830\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade typescript from 5.7.2 to 5.7.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/835\"\u003eactions/labeler#835\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint-plugin-jest from 28.9.0 to 28.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/839\"\u003eactions/labeler#839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade undici from 5.28.4 to 5.28.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/842\"\u003eactions/labeler#842\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​octokit/request-error\u003c/code\u003e from 5.0.1 to 5.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/846\"\u003eactions/labeler#846\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd note regarding \u003ccode\u003epull_request_target\u003c/code\u003e to README.md by \u003ca href=\"https://github.com/silverwind\"\u003e\u003ccode\u003e@​silverwind\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/669\"\u003eactions/labeler#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate readme with additional examples and important note about \u003ccode\u003epull_request_target\u003c/code\u003e event by \u003ca href=\"https://github.com/IvanZosimov\"\u003e\u003ccode\u003e@​IvanZosimov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/721\"\u003eactions/labeler#721\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument update - permission section  by \u003ca href=\"https://github.com/harithavattikuti\"\u003e\u003ccode\u003e@​harithavattikuti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/840\"\u003eactions/labeler#840\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprovement in documentation for pull_request_target event usage in README by \u003ca href=\"https://github.com/suyashgaonkar\"\u003e\u003ccode\u003e@​suyashgaonkar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/871\"\u003eactions/labeler#871\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix broken links in documentation by \u003ca href=\"https://github.com/suyashgaonkar\"\u003e\u003ccode\u003e@​suyashgaonkar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/822\"\u003eactions/labeler#822\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/silverwind\"\u003e\u003ccode\u003e@​silverwind\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/669\"\u003eactions/labeler#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/802\"\u003eactions/labeler#802\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/suyashgaonkar\"\u003e\u003ccode\u003e@​suyashgaonkar\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/822\"\u003eactions/labeler#822\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/HarithaVattikuti\"\u003e\u003ccode\u003e@​HarithaVattikuti\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/840\"\u003eactions/labeler#840\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/891\"\u003eactions/labeler#891\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/f27b608878404679385c85cfa523b85ccb86e213\"\u003e\u003ccode\u003ef27b608\u003c/code\u003e\u003c/a\u003e chore: upgrade dependencies (\u003ccode\u003e@​actions/core\u003c/code\u003e, \u003ccode\u003e@​actions/github\u003c/code\u003e, js-yaml, minimat...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/c5dadc2a45784a4b6adfcd20fea3465da3a5f904\"\u003e\u003ccode\u003ec5dadc2\u003c/code\u003e\u003c/a\u003e Add 'changed-files-labels-limit' and 'max-files-changed' configs to allow cap...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/e52e4fb63ed5cd0e07abaad9826b2a893ccb921f\"\u003e\u003ccode\u003ee52e4fb\u003c/code\u003e\u003c/a\u003e Bump minimatch from 10.0.1 to 10.2.3 (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/77a4082b841706ac431479b7e2bb11216ffef250\"\u003e\u003ccode\u003e77a4082\u003c/code\u003e\u003c/a\u003e Fix: Preserve manually added labels during workflow run and refine label sync...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/25abb3cad4f14b7ac27968a495c37798860a5a1a\"\u003e\u003ccode\u003e25abb3c\u003c/code\u003e\u003c/a\u003e Improve Labeler Action Documentation and Error Handling for Permissions (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/897\"\u003e#897\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/395c8cfdb1e1e691cc4bad0dd315820af8eb67fd\"\u003e\u003ccode\u003e395c8cf\u003c/code\u003e\u003c/a\u003e Bump brace-expansion from 1.1.11 to 1.1.12 and document breaking changes in v...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/634933edcd8ababfe52f92936142cc22ac488b1b\"\u003e\u003ccode\u003e634933e\u003c/code\u003e\u003c/a\u003e publish-action upgrade to 0.4.0 from 0.2.2 (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/f1a63e87db0c6baf19c5713083f8d00d789ca184\"\u003e\u003ccode\u003ef1a63e8\u003c/code\u003e\u003c/a\u003e Update Node.js version to 24 in action and dependencies (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/891\"\u003e#891\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/b0a1180683c9f17424de4d71c044bea4c7b9bc7c\"\u003e\u003ccode\u003eb0a1180\u003c/code\u003e\u003c/a\u003e Bump \u003ccode\u003e@​octokit/request-error\u003c/code\u003e from 5.0.1 to 5.1.1 (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/846\"\u003e#846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/110d44140c9195b853f2f24044bbfed8f4968efb\"\u003e\u003ccode\u003e110d441\u003c/code\u003e\u003c/a\u003e Update README.md (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/871\"\u003e#871\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/labeler/compare/v5...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `peter-evans/create-pull-request` from 6 to 8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/peter-evans/create-pull-request/releases\"\u003epeter-evans/create-pull-request's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCreate Pull Request v8.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's new in v8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequires \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eActions Runner v2.327.1\u003c/a\u003e or later if you are using a self-hosted runner for Node 24 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Update checkout action version to v6 by \u003ca href=\"https://github.com/yonas\"\u003e\u003ccode\u003e@​yonas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4258\"\u003epeter-evans/create-pull-request#4258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate actions/checkout references to \u003ca href=\"https://github.com/v6\"\u003e\u003ccode\u003e@​v6\u003c/code\u003e\u003c/a\u003e in docs by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4259\"\u003epeter-evans/create-pull-request#4259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: v8 by \u003ca href=\"https://github.com/peter-evans\"\u003e\u003ccode\u003e@​peter-evans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4260\"\u003epeter-evans/create-pull-request#4260\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yonas\"\u003e\u003ccode\u003e@​yonas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4258\"\u003epeter-evans/create-pull-request#4258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4259\"\u003epeter-evans/create-pull-request#4259\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/peter-evans/create-pull-request/compare/v7.0.11...v8.0.0\"\u003ehttps://github.com/peter-evans/create-pull-request/compare/v7.0.11...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCreate Pull Request v7.0.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: restrict remote prune to self-hosted runners by \u003ca href=\"https://github.com/peter-evans\"\u003e\u003ccode\u003e@​peter-evans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4250\"\u003epeter-evans/create-pull-request#4250\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/peter-evans/create-pull-request/compare/v7.0.10...v7.0.11\"\u003ehttps://github.com/peter-evans/create-pull-request/compare/v7.0.10...v7.0.11\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCreate Pull Request v7.0.10\u003c/h2\u003e\n\u003cp\u003e⚙️ Fixes an issue where updating a pull request failed when targeting a forked repository with the same owner as its parent.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump the github-actions group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4235\"\u003epeter-evans/create-pull-request#4235\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump prettier from 3.6.2 to 3.7.3 in the npm group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4240\"\u003epeter-evans/create-pull-request#4240\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: provider list pulls fallback for multi fork same owner by \u003ca href=\"https://github.com/peter-evans\"\u003e\u003ccode\u003e@​peter-evans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4245\"\u003epeter-evans/create-pull-request#4245\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/obnyis\"\u003e\u003ccode\u003e@​obnyis\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4064\"\u003epeter-evans/create-pull-request#4064\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/peter-evans/create-pull-request/compare/v7.0.9...v7.0.10\"\u003ehttps://github.com/peter-evans/create-pull-request/compare/v7.0.9...v7.0.10\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCreate Pull Request v7.0.9\u003c/h2\u003e\n\u003cp\u003e⚙️ Fixes an \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/issues/4228\"\u003eincompatibility\u003c/a\u003e with the recently released \u003ccode\u003eactions/checkout@v6\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e~70 dependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix workaround description about \u003ccode\u003eready_for_review\u003c/code\u003e by \u003ca href=\"https://github.com/ybiquitous\"\u003e\u003ccode\u003e@​ybiquitous\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/3939\"\u003epeter-evans/create-pull-request#3939\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocs: \u003ccode\u003eadd-paths\u003c/code\u003e default behavior by \u003ca href=\"https://github.com/joeflack4\"\u003e\u003ccode\u003e@​joeflack4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/3928\"\u003epeter-evans/create-pull-request#3928\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update to create-github-app-token v2 by \u003ca href=\"https://github.com/Goooler\"\u003e\u003ccode\u003e@​Goooler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4063\"\u003epeter-evans/create-pull-request#4063\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix compatibility with actions/checkout@v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4230\"\u003epeter-evans/create-pull-request#4230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/joeflack4\"\u003e\u003ccode\u003e@​joeflack4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/3928\"\u003epeter-evans/create-pull-request#3928\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Goooler\"\u003e\u003ccode\u003e@​Goooler\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4063\"\u003epeter-evans/create-pull-request#4063\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4230\"\u003epeter-evans/create-pull-request#4230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peter-evans/create-pull-request/commit/5f6978faf089d4d20b00c7766989d076bb2fc7f1\"\u003e\u003ccode\u003e5f6978f\u003c/code\u003e\u003c/a\u003e fix: retry post-creation API calls on 422 eventual consistency errors (\u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/issues/4356\"\u003e#4356\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peter-evans/create-pull-request/commit/d32e88dac789dcc7906e7d26f69f24116fa9c97d\"\u003e\u003ccode\u003ed32e88d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the npm group with 3 updates (\u003ca href=\"https://redi...\n\n_Description has been truncated_","html_url":"https://github.com/DataCore-VietNam/datacore-cli/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/DataCore-VietNam%2Fdatacore-cli/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"},{"uuid":"4552053877","node_id":"PR_kwDOSrwv9M7g0_bD","number":1,"state":"open","title":"chore(deps): Bump the actions group with 11 updates","user":"dependabot[bot]","labels":["ci"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-29T22:39:06.000Z","updated_at":"2026-05-29T22:40:49.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","group_name":"actions","update_count":11,"packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"},{"name":"actions/checkout","old_version":"4","new_version":"6","repository_url":"https://github.com/actions/checkout"},{"name":"actions/dependency-review-action","old_version":"4","new_version":"5","repository_url":"https://github.com/actions/dependency-review-action"},{"name":"actions/labeler","old_version":"5","new_version":"6","repository_url":"https://github.com/actions/labeler"},{"name":"actions/setup-python","old_version":"5","new_version":"6","repository_url":"https://github.com/actions/setup-python"},{"name":"peter-evans/create-pull-request","old_version":"6","new_version":"8","repository_url":"https://github.com/peter-evans/create-pull-request"},{"name":"googleapis/release-please-action","old_version":"4","new_version":"5","repository_url":"https://github.com/googleapis/release-please-action"},{"name":"ossf/scorecard-action","old_version":"2.4.0","new_version":"2.4.3","repository_url":"https://github.com/ossf/scorecard-action"},{"name":"actions/upload-artifact","old_version":"4","new_version":"7","repository_url":"https://github.com/actions/upload-artifact"},{"name":"github/codeql-action","old_version":"3","new_version":"4","repository_url":"https://github.com/github/codeql-action"},{"name":"actions/stale","old_version":"9","new_version":"10","repository_url":"https://github.com/actions/stale"}],"path":null,"ecosystem":"actions"},"body":"Bumps the actions group with 11 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) | `2` | `3` |\n| [actions/checkout](https://github.com/actions/checkout) | `4` | `6` |\n| [actions/dependency-review-action](https://github.com/actions/dependency-review-action) | `4` | `5` |\n| [actions/labeler](https://github.com/actions/labeler) | `5` | `6` |\n| [actions/setup-python](https://github.com/actions/setup-python) | `5` | `6` |\n| [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) | `6` | `8` |\n| [googleapis/release-please-action](https://github.com/googleapis/release-please-action) | `4` | `5` |\n| [ossf/scorecard-action](https://github.com/ossf/scorecard-action) | `2.4.0` | `2.4.3` |\n| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4` | `7` |\n| [github/codeql-action](https://github.com/github/codeql-action) | `3` | `4` |\n| [actions/stale](https://github.com/actions/stale) | `9` | `10` |\n\nUpdates `dependabot/fetch-metadata` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/checkout` from 4 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/releases\"\u003eactions/checkout's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev6-beta by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2298\"\u003eactions/checkout#2298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate readme/changelog for v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2311\"\u003eactions/checkout#2311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/checkout/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6-beta\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eUpdated persist-credentials to store the credentials under \u003ccode\u003e$RUNNER_TEMP\u003c/code\u003e instead of directly in the local git config.\u003c/p\u003e\n\u003cp\u003eThis requires a minimum Actions Runner version of \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.329.0\"\u003ev2.329.0\u003c/a\u003e to access the persisted credentials for \u003ca href=\"https://docs.github.com/en/actions/tutorials/use-containerized-services/create-a-docker-container-action\"\u003eDocker container action\u003c/a\u003e scenarios.\u003c/p\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5...v5.0.1\"\u003ehttps://github.com/actions/checkout/compare/v5...v5.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare v5.0.0 release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2238\"\u003eactions/checkout#2238\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v5.0.0\"\u003ehttps://github.com/actions/checkout/compare/v4...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v4.3.1\"\u003ehttps://github.com/actions/checkout/compare/v4...v4.3.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/blob/main/CHANGELOG.md\"\u003eactions/checkout's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev6.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix tag handling: preserve annotations and explicit fetch-tags by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2356\"\u003eactions/checkout#2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd worktree support for persist-credentials includeIf by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2327\"\u003eactions/checkout#2327\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdjust positioning of user email note and permissions heading by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2044\"\u003eactions/checkout#2044\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CODEOWNERS for actions by \u003ca href=\"https://github.com/TingluoHuang\"\u003e\u003ccode\u003e@​TingluoHuang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2224\"\u003eactions/checkout#2224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate package dependencies by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eurl-helper.ts\u003c/code\u003e now leverages well-known environment variables by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1941\"\u003eactions/checkout#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand unit test coverage for \u003ccode\u003eisGhes\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1946\"\u003eactions/checkout#1946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck out other refs/* by commit if provided, fall back to ref by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1924\"\u003eactions/checkout#1924\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ref and Commit outputs by \u003ca href=\"https://github.com/lucacome\"\u003e\u003ccode\u003e@​lucacome\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1180\"\u003eactions/checkout#1180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e- \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1777\"\u003eactions/checkout#1777\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1872\"\u003eactions/checkout#1872\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump the minor-npm-dependencies group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1739\"\u003eactions/checkout#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1697\"\u003eactions/checkout#1697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck out other refs/* by commit by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1774\"\u003eactions/checkout#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/checkout's own workflows to a known, good, stable version. by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1776\"\u003eactions/checkout#1776\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck platform to set archive extension appropriately by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1732\"\u003eactions/checkout#1732\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/de0fac2e4500dabe0009e67214ff5f5447ce83dd\"\u003e\u003ccode\u003ede0fac2\u003c/code\u003e\u003c/a\u003e Fix tag handling: preserve annotations and explicit fetch-tags (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2356\"\u003e#2356\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/064fe7f3312418007dea2b49a19844a9ee378f49\"\u003e\u003ccode\u003e064fe7f\u003c/code\u003e\u003c/a\u003e Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/8e8c483db84b4bee98b60c0593521ed34d9990e8\"\u003e\u003ccode\u003e8e8c483\u003c/code\u003e\u003c/a\u003e Clarify v6 README (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/033fa0dc0b82693d8986f1016a0ec2c5e7d9cbb1\"\u003e\u003ccode\u003e033fa0d\u003c/code\u003e\u003c/a\u003e Add worktree support for persist-credentials includeIf (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/c2d88d3ecc89a9ef08eebf45d9637801dcee7eb5\"\u003e\u003ccode\u003ec2d88d3\u003c/code\u003e\u003c/a\u003e Update all references from v5 and v4 to v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2314\"\u003e#2314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3\"\u003e\u003ccode\u003e1af3b93\u003c/code\u003e\u003c/a\u003e update readme/changelog for v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2311\"\u003e#2311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/71cf2267d89c5cb81562390fa70a37fa40b1305e\"\u003e\u003ccode\u003e71cf226\u003c/code\u003e\u003c/a\u003e v6-beta (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/069c6959146423d11cd0184e6accf28f9d45f06e\"\u003e\u003ccode\u003e069c695\u003c/code\u003e\u003c/a\u003e Persist creds to a separate file (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2286\"\u003e#2286\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493\"\u003e\u003ccode\u003eff7abcd\u003c/code\u003e\u003c/a\u003e Update README to include Node.js 24 support details and requirements (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2248\"\u003e#2248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/08c6903cd8c0fde910a37f88322edcfb5dd907a8\"\u003e\u003ccode\u003e08c6903\u003c/code\u003e\u003c/a\u003e Prepare v5.0.0 release (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/checkout/compare/v4...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/dependency-review-action` from 4 to 5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/dependency-review-action/releases\"\u003eactions/dependency-review-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.0.0\u003c/h2\u003e\n\u003cp\u003eThis is a new major version of the Dependency Review Action which updates the runtime to node24. This requires a minimum Actions Runner version \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003ev2.327.1\u003c/a\u003e to run.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd .github/copilot-instructions.md for Copilot coding agent by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1067\"\u003eactions/dependency-review-action#1067\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Node.js runtime from 20 to 24 by \u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump spdx-license-ids from 3.0.20 to 3.0.23 by \u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: bump actions/checkout from v4 to v6 in workflow examples by \u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: patched version display for advisories with non-strict semver ranges (e.g. Maven beta versions) by \u003ca href=\"https://github.com/tspascoal\"\u003e\u003ccode\u003e@​tspascoal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1076\"\u003eactions/dependency-review-action#1076\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eResolve security findings by \u003ca href=\"https://github.com/AshelyTC\"\u003e\u003ccode\u003e@​AshelyTC\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1094\"\u003eactions/dependency-review-action#1094\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5.0.0 release branch by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1098\"\u003eactions/dependency-review-action#1098\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eDependency Review Action 4.9.0\u003c/h2\u003e\n\u003cp\u003eThis feature release contains a couple of notable changes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThere is a new configuration option \u003ccode\u003eshow_patched_versions\u003c/code\u003e which will add a column to the output, showing the fix version of each vulnerable dependency. Thanks \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eRuns which do not display OpenSSF scorecards no longer fetch scorecard information; previously it was fetched regardless of whether or not it was displayed, causing unneccessary slowness. Great catch \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eThere are a couple of fixes to purl parsing which should improve match accuracy for \u003ccode\u003eallow-package-dependency\u003c/code\u003e lists, including case (in)sensitivity and url-encoded namespaces Thanks \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCompare normalized purls to account for encoding quirks by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1056\"\u003eactions/dependency-review-action#1056\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake purl comparisons case insensitive by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1057\"\u003eactions/dependency-review-action#1057\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeat: Add \u003ccode\u003ePatched Version\u003c/code\u003e to \u003ccode\u003eVulnerabilities\u003c/code\u003e summary by \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1045\"\u003eactions/dependency-review-action#1045\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: only get scorecard levels if user wants to see the OpenSSF scorecard by \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 10.1.0 to 10.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1058\"\u003eactions/dependency-review-action#1058\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1021\"\u003eactions/dependency-review-action#1021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates for release 4.9.0 by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1064\"\u003eactions/dependency-review-action#1064\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.8.3\u003c/h2\u003e\n\u003ch2\u003eDependency Review Action v4.8.3\u003c/h2\u003e\n\u003cp\u003eThis is a bugfix release that updates a number of upstream dependencies and includes a fix for the earlier feature that detected oversized summaries and upload them as artifacts, which could occasionally crash the action.\u003c/p\u003e\n\u003cp\u003eWe have also updated the release process to use a long-lived \u003ccode\u003ev4\u003c/code\u003e \u003cstrong\u003ebranch\u003c/strong\u003e for the action, instead of a force-pushed tag, which aligns better with git branching strategies; the change should be transparent to end users.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eGitHub Actions can't push to our protected main by \u003ca href=\"https://github.com/dangoor\"\u003e\u003ccode\u003e@​dangoor\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1017\"\u003eactions/dependency-review-action#1017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 9.1.0 to 10.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/995\"\u003eactions/dependency-review-action#995\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a1d282b36b6f3519aa1f3fc636f609c47dddb294\"\u003e\u003ccode\u003ea1d282b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1098\"\u003e#1098\u003c/a\u003e from actions/ahpook/v5-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/eb6c199c5a85c7387f1f0b02b3ba5c6364740695\"\u003e\u003ccode\u003eeb6c199\u003c/code\u003e\u003c/a\u003e update examples to show \u003ca href=\"https://github.com/v5\"\u003e\u003ccode\u003e@​v5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/3943c2c5beaaaf1806eb3758273c203dabcbf89c\"\u003e\u003ccode\u003e3943c2c\u003c/code\u003e\u003c/a\u003e v5.0.0 release branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/454943c880b147adbfe7de0cdd3ece1c00882033\"\u003e\u003ccode\u003e454943c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1094\"\u003e#1094\u003c/a\u003e from actions/ashelytc/security-findings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/6d92a1228e9e9db334f02c09f84fe9217d2b4463\"\u003e\u003ccode\u003e6d92a12\u003c/code\u003e\u003c/a\u003e revert \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a8e5a7e93695b41abf6d1083cd220bee39a720f0\"\u003e\u003ccode\u003ea8e5a7e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1076\"\u003e#1076\u003c/a\u003e from tspascoal/fix-version-matching-for-non-string-s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/b6b7079031ef4ed61656c221988f1f3bcbf35101\"\u003e\u003ccode\u003eb6b7079\u003c/code\u003e\u003c/a\u003e update \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e to 8.40.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/821a21dd691f162c4c5c2e9754a344accde9a208\"\u003e\u003ccode\u003e821a21d\u003c/code\u003e\u003c/a\u003e update more dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/05aaaae45cf4c420de012addf2a72e3435ddaa63\"\u003e\u003ccode\u003e05aaaae\u003c/code\u003e\u003c/a\u003e run npm audit fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/55d3e754501fc13c84b95637ce51f135012d41ea\"\u003e\u003ccode\u003e55d3e75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1077\"\u003e#1077\u003c/a\u003e from Marukome0743/docs/checkout\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4...v5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/labeler` from 5 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/labeler/releases\"\u003eactions/labeler's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd workflow file for publishing releases to immutable action package by \u003ca href=\"https://github.com/jcambass\"\u003e\u003ccode\u003e@​jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/802\"\u003eactions/labeler#802\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Node.js version to 24 in action and dependencies \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/891\"\u003eactions/labeler#891\u003c/a\u003e\nMake sure your runner is on version v2.327.1 or later to ensure compatibility with this release. \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency Upgrades\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade eslint-config-prettier from 9.0.0 to 9.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/711\"\u003eactions/labeler#711\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint from 8.52.0 to 8.55.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/720\"\u003eactions/labeler#720\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​types/jest\u003c/code\u003e from 29.5.6 to 29.5.11 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/719\"\u003eactions/labeler#719\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​types/js-yaml\u003c/code\u003e from 4.0.8 to 4.0.9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/718\"\u003eactions/labeler#718\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e from 6.9.0 to 6.14.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/717\"\u003eactions/labeler#717\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 3.0.3 to 3.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/726\"\u003eactions/labeler#726\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint from 8.55.0 to 8.56.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/725\"\u003eactions/labeler#725\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e from 6.14.0 to 6.19.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/745\"\u003eactions/labeler#745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint-plugin-jest from 27.4.3 to 27.6.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/744\"\u003eactions/labeler#744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/eslint-plugin\u003c/code\u003e from 6.9.0 to 6.20.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/750\"\u003eactions/labeler#750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 3.1.1 to 3.2.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/752\"\u003eactions/labeler#752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade undici from 5.26.5 to 5.28.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/757\"\u003eactions/labeler#757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade braces from 3.0.2 to 3.0.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/789\"\u003eactions/labeler#789\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade minimatch from 9.0.3 to 10.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/805\"\u003eactions/labeler#805\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e from 1.10.1 to 1.11.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/811\"\u003eactions/labeler#811\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade typescript from 5.4.3 to 5.7.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/819\"\u003eactions/labeler#819\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e from 7.3.1 to 8.17.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/824\"\u003eactions/labeler#824\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 3.2.5 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/825\"\u003eactions/labeler#825\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​types/jest\u003c/code\u003e from 29.5.12 to 29.5.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/827\"\u003eactions/labeler#827\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint-plugin-jest from 27.9.0 to 28.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/832\"\u003eactions/labeler#832\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade ts-jest from 29.1.2 to 29.2.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/831\"\u003eactions/labeler#831\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​vercel/ncc\u003c/code\u003e from 0.38.1 to 0.38.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/830\"\u003eactions/labeler#830\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade typescript from 5.7.2 to 5.7.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/835\"\u003eactions/labeler#835\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint-plugin-jest from 28.9.0 to 28.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/839\"\u003eactions/labeler#839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade undici from 5.28.4 to 5.28.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/842\"\u003eactions/labeler#842\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​octokit/request-error\u003c/code\u003e from 5.0.1 to 5.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/846\"\u003eactions/labeler#846\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd note regarding \u003ccode\u003epull_request_target\u003c/code\u003e to README.md by \u003ca href=\"https://github.com/silverwind\"\u003e\u003ccode\u003e@​silverwind\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/669\"\u003eactions/labeler#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate readme with additional examples and important note about \u003ccode\u003epull_request_target\u003c/code\u003e event by \u003ca href=\"https://github.com/IvanZosimov\"\u003e\u003ccode\u003e@​IvanZosimov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/721\"\u003eactions/labeler#721\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument update - permission section  by \u003ca href=\"https://github.com/harithavattikuti\"\u003e\u003ccode\u003e@​harithavattikuti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/840\"\u003eactions/labeler#840\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprovement in documentation for pull_request_target event usage in README by \u003ca href=\"https://github.com/suyashgaonkar\"\u003e\u003ccode\u003e@​suyashgaonkar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/871\"\u003eactions/labeler#871\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix broken links in documentation by \u003ca href=\"https://github.com/suyashgaonkar\"\u003e\u003ccode\u003e@​suyashgaonkar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/822\"\u003eactions/labeler#822\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/silverwind\"\u003e\u003ccode\u003e@​silverwind\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/669\"\u003eactions/labeler#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/802\"\u003eactions/labeler#802\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/suyashgaonkar\"\u003e\u003ccode\u003e@​suyashgaonkar\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/822\"\u003eactions/labeler#822\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/HarithaVattikuti\"\u003e\u003ccode\u003e@​HarithaVattikuti\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/840\"\u003eactions/labeler#840\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/891\"\u003eactions/labeler#891\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/f27b608878404679385c85cfa523b85ccb86e213\"\u003e\u003ccode\u003ef27b608\u003c/code\u003e\u003c/a\u003e chore: upgrade dependencies (\u003ccode\u003e@​actions/core\u003c/code\u003e, \u003ccode\u003e@​actions/github\u003c/code\u003e, js-yaml, minimat...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/c5dadc2a45784a4b6adfcd20fea3465da3a5f904\"\u003e\u003ccode\u003ec5dadc2\u003c/code\u003e\u003c/a\u003e Add 'changed-files-labels-limit' and 'max-files-changed' configs to allow cap...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/e52e4fb63ed5cd0e07abaad9826b2a893ccb921f\"\u003e\u003ccode\u003ee52e4fb\u003c/code\u003e\u003c/a\u003e Bump minimatch from 10.0.1 to 10.2.3 (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/77a4082b841706ac431479b7e2bb11216ffef250\"\u003e\u003ccode\u003e77a4082\u003c/code\u003e\u003c/a\u003e Fix: Preserve manually added labels during workflow run and refine label sync...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/25abb3cad4f14b7ac27968a495c37798860a5a1a\"\u003e\u003ccode\u003e25abb3c\u003c/code\u003e\u003c/a\u003e Improve Labeler Action Documentation and Error Handling for Permissions (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/897\"\u003e#897\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/395c8cfdb1e1e691cc4bad0dd315820af8eb67fd\"\u003e\u003ccode\u003e395c8cf\u003c/code\u003e\u003c/a\u003e Bump brace-expansion from 1.1.11 to 1.1.12 and document breaking changes in v...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/634933edcd8ababfe52f92936142cc22ac488b1b\"\u003e\u003ccode\u003e634933e\u003c/code\u003e\u003c/a\u003e publish-action upgrade to 0.4.0 from 0.2.2 (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/f1a63e87db0c6baf19c5713083f8d00d789ca184\"\u003e\u003ccode\u003ef1a63e8\u003c/code\u003e\u003c/a\u003e Update Node.js version to 24 in action and dependencies (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/891\"\u003e#891\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/b0a1180683c9f17424de4d71c044bea4c7b9bc7c\"\u003e\u003ccode\u003eb0a1180\u003c/code\u003e\u003c/a\u003e Bump \u003ccode\u003e@​octokit/request-error\u003c/code\u003e from 5.0.1 to 5.1.1 (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/846\"\u003e#846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/110d44140c9195b853f2f24044bbfed8f4968efb\"\u003e\u003ccode\u003e110d441\u003c/code\u003e\u003c/a\u003e Update README.md (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/871\"\u003e#871\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/labeler/compare/v5...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/setup-python` from 5 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/setup-python/releases\"\u003eactions/setup-python's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1164\"\u003eactions/setup-python#1164\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eMake sure your runner is on version v2.327.1 or later to ensure compatibility with this release. \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eSee Release Notes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eEnhancements:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for \u003ccode\u003epip-version\u003c/code\u003e  by \u003ca href=\"https://github.com/priyagupta108\"\u003e\u003ccode\u003e@​priyagupta108\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1129\"\u003eactions/setup-python#1129\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnhance reading from .python-version by \u003ca href=\"https://github.com/krystof-k\"\u003e\u003ccode\u003e@​krystof-k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/787\"\u003eactions/setup-python#787\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd version parsing from Pipfile by \u003ca href=\"https://github.com/aradkdj\"\u003e\u003ccode\u003e@​aradkdj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1067\"\u003eactions/setup-python#1067\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eClarify pythonLocation behaviour for PyPy and GraalPy in environment variables by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1183\"\u003eactions/setup-python#1183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eChange missing cache directory error to warning  by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1182\"\u003eactions/setup-python#1182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Architecture-Specific PATH Management for Python with --user Flag on Windows by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1122\"\u003eactions/setup-python#1122\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInclude python version in PyPy python-version output by \u003ca href=\"https://github.com/cdce8p\"\u003e\u003ccode\u003e@​cdce8p\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1110\"\u003eactions/setup-python#1110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate docs: clarification on pip authentication with setup-python by \u003ca href=\"https://github.com/priya-kinthali\"\u003e\u003ccode\u003e@​priya-kinthali\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1156\"\u003eactions/setup-python#1156\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency updates:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade idna from 2.9 to 3.7 in /\u003cstrong\u003etests\u003c/strong\u003e/data by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/843\"\u003eactions/setup-python#843\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade form-data to fix critical vulnerabilities \u003ca href=\"https://redirect.github.com/actions/setup-python/issues/182\"\u003e#182\u003c/a\u003e \u0026amp; \u003ca href=\"https://redirect.github.com/actions/setup-python/issues/183\"\u003e#183\u003c/a\u003e by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1163\"\u003eactions/setup-python#1163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade setuptools to 78.1.1 to fix path traversal vulnerability in PackageIndex.download by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1165\"\u003eactions/setup-python#1165\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1181\"\u003eactions/setup-python#1181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/tool-cache\u003c/code\u003e from 2.0.1 to 2.0.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1095\"\u003eactions/setup-python#1095\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/krystof-k\"\u003e\u003ccode\u003e@​krystof-k\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/787\"\u003eactions/setup-python#787\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cdce8p\"\u003e\u003ccode\u003e@​cdce8p\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1110\"\u003eactions/setup-python#1110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aradkdj\"\u003e\u003ccode\u003e@​aradkdj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1067\"\u003eactions/setup-python#1067\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-python/compare/v5...v6.0.0\"\u003ehttps://github.com/actions/setup-python/compare/v5...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWorkflow updates related to Ubuntu 20.04 by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1065\"\u003eactions/setup-python#1065\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for Candidate Not Iterable Error by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1082\"\u003eactions/setup-python#1082\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade semver and \u003ccode\u003e@​types/semver\u003c/code\u003e by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1091\"\u003eactions/setup-python#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 2.8.8 to 3.5.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1046\"\u003eactions/setup-python#1046\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade ts-jest from 29.1.2 to 29.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1081\"\u003eactions/setup-python#1081\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-python/compare/v5...v5.6.0\"\u003ehttps://github.com/actions/setup-python/compare/v5...v5.6.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eEnhancements:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport free threaded Python versions like '3.13t' by \u003ca href=\"https://github.com/colesbury\"\u003e\u003ccode\u003e@​colesbury\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/973\"\u003eactions/setup-python#973\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnhance Workflows: Include ubuntu-arm runners, Add e2e Testing for free threaded and Upgrade \u003ccode\u003e@​action/cache\u003c/code\u003e from 4.0.0 to 4.0.3 by \u003ca href=\"https://github.com/priya-kinthali\"\u003e\u003ccode\u003e@​priya-kinthali\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1056\"\u003eactions/setup-python#1056\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for .tool-versions file in setup-python by \u003ca href=\"https://github.com/mahabaleshwars\"\u003e\u003ccode\u003e@​mahabaleshwars\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1043\"\u003eactions/setup-python#1043\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix architecture for pypy on Linux ARM64 by \u003ca href=\"https://github.com/mayeut\"\u003e\u003ccode\u003e@​mayeut\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1011\"\u003eactions/setup-python#1011\u003c/a\u003e\nThis update maps arm64 to aarch64 for Linux ARM64 PyPy installations.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/a309ff8b426b58ec0e2a45f0f869d46889d02405\"\u003e\u003ccode\u003ea309ff8\u003c/code\u003e\u003c/a\u003e Bump urllib3 from 2.6.0 to 2.6.3 in /\u003cstrong\u003etests\u003c/strong\u003e/data (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1264\"\u003e#1264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/bfe8cc55a7890e3d6672eda6460ef37bfcc70755\"\u003e\u003ccode\u003ebfe8cc5\u003c/code\u003e\u003c/a\u003e Upgrade \u003ca href=\"https://github.com/actions\"\u003e\u003ccode\u003e@​actions\u003c/code\u003e\u003c/a\u003e dependencies to Node 24 compatible versions (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1259\"\u003e#1259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/4f41a90a1f38628c7ccc608d05fbafe701bc20ae\"\u003e\u003ccode\u003e4f41a90\u003c/code\u003e\u003c/a\u003e Bump urllib3 from 2.5.0 to 2.6.0 in /\u003cstrong\u003etests\u003c/strong\u003e/data (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1253\"\u003e#1253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/83679a892e2d95755f2dac6acb0bfd1e9ac5d548\"\u003e\u003ccode\u003e83679a8\u003c/code\u003e\u003c/a\u003e Bump \u003ccode\u003e@​types/node\u003c/code\u003e from 24.1.0 to 24.9.1 and update macos-13 to macos-15-intel ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/bfc4944b43a5d84377eca3cf6ab5b7992ba61923\"\u003e\u003ccode\u003ebfc4944\u003c/code\u003e\u003c/a\u003e Bump prettier from 3.5.3 to 3.6.2 (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1234\"\u003e#1234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/97aeb3efb8a852c559869050c7fb175b4efcc8cf\"\u003e\u003ccode\u003e97aeb3e\u003c/code\u003e\u003c/a\u003e Bump requests from 2.32.2 to 2.32.4 in /\u003cstrong\u003etests\u003c/strong\u003e/data (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1130\"\u003e#1130\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/443da59188462e2402e2942686db5aa6723f4bed\"\u003e\u003ccode\u003e443da59\u003c/code\u003e\u003c/a\u003e Bump actions/publish-action from 0.3.0 to 0.4.0 \u0026amp; Documentation update for pi...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/cfd55ca82492758d853442341ad4d8010466803a\"\u003e\u003ccode\u003ecfd55ca\u003c/code\u003e\u003c/a\u003e graalpy: add graalpy early-access and windows builds (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/880\"\u003e#880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/bba65e51ff35d50c6dbaaacd8a4681db13aa7cb4\"\u003e\u003ccode\u003ebba65e5\u003c/code\u003e\u003c/a\u003e Bump typescript from 5.4.2 to 5.9.3 and update docs/advanced-usage.md (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1094\"\u003e#1094\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/18566f86b301499665bd3eb1a2247e0849c64fa5\"\u003e\u003ccode\u003e18566f8\u003c/code\u003e\u003c/a\u003e Improve wording and \u0026quot;fix example\u0026quot; (remove 3.13) on testing against pre-releas...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/setup-python/compare/v5...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `peter-evans/create-pull-request` from 6 to 8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/peter-evans/create-pull-request/releases\"\u003epeter-evans/create-pull-request's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCreate Pull Request v8.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's new in v8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequires \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eActions Runner v2.327.1\u003c/a\u003e or later if you are using a self-hosted runner for Node 24 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Update checkout action version to v6 by \u003ca href=\"https://github.com/yonas\"\u003e\u003ccode\u003e@​yonas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4258\"\u003epeter-evans/create-pull-request#4258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate actions/checkout references to \u003ca href=\"https://github.com/v6\"\u003e\u003ccode\u003e@​v6\u003c/code\u003e\u003c/a\u003e in docs by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4259\"\u003epeter-evans/create-pull-request#4259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: v8 by \u003ca href=\"https://github.com/peter-evans\"\u003e\u003ccode\u003e@​peter-evans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4260\"\u003epeter-evans/create-pull-request#4260\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yonas\"\u003e\u003ccode\u003e@​yonas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4258\"\u003epeter-evans/create-pull-request#4258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4259\"\u003epeter-evans/create-pull-request#4259\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/peter-evans/create-pull-request/compare/v7.0.11...v8.0.0\"\u003ehttps://github.com/peter-evans/create-pull-request/compare/v7.0.11...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCreate Pull Request v7.0.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: restrict remote prune to self-hosted runners by \u003ca href=\"https://github.com/peter-evans\"\u003e\u003ccode\u003e@​peter-evans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4250\"\u003epeter-evans/create-pull-request#4250\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/peter-evans/create-pull-request/compare/v7.0.10...v7.0.11\"\u003ehttps://github.com/peter-evans/create-pull-request/compare/v7.0.10...v7.0.11\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCreate Pull Request v7.0.10\u003c/h2\u003e\n\u003cp\u003e⚙️ Fixes an issue where updating a pull request failed when targeting a forked repository with the same owner as its parent.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump the github-actions group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4235\"\u003epeter-evans/create-pull-request#4235\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump prettier from 3.6.2 to 3.7.3 in the npm group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4240\"\u003epeter-evans/create-pull-request#4240\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: provider list pulls fallback for multi fork same owner by \u003ca href=\"https://github.com/peter-evans\"\u003e\u003ccode\u003e@​peter-evans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4245\"\u003epeter-evans/create-pull-request#4245\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/obnyis\"\u003e\u003ccode\u003e@​obnyis\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4064\"\u003epeter-evans/create-pull-request#4064\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/peter-evans/create-pull-request/compare/v7.0.9...v7.0.10\"\u003ehttps://github.com/peter-evans/create-pull-request/compare/v7.0.9...v7.0.10\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCreate Pull Request v7.0.9\u003c/h2\u003e\n\u003cp\u003e⚙️ Fixes an \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/issues/4228\"\u003eincompatibility\u003c/a\u003e with the recently released \u003ccode\u003eactions/checkout@v6\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e~70 dependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix workaround description about \u003ccode\u003eready_for_review\u003c/code\u003e by \u003ca href=\"https://github.com/ybiquitous\"\u003e\u003ccode\u003e@​ybiquitous\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/3939\"\u003epeter-evans/create-pull-request#3939\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocs: \u003ccode\u003eadd-paths\u003c/code\u003e default behavior by \u003ca href=\"https://github.com/joeflack4\"\u003e\u003ccode\u003e@​joeflack4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/3928\"\u003epeter-evans/create-pull-request#3928\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update to create-github-app-token v2 by \u003ca href=\"https://github.com/Goooler\"\u003e\u003ccode\u003e@​Goooler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4063\"\u003epeter-evans/create-pull-request#4063\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix compatibility with actions/checkout@v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4230\"\u003epeter-evans/create-pull-request#4230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/joeflack4\"\u003e\u003ccode\u003e@​joeflack4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/3928\"\u003epeter-evans/create-pull-request#3928\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Goooler\"\u003e\u003ccode\u003e@​Goooler\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4063\"\u003epeter-evans/create-pull-request#4063\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4230\"\u003epeter-evans/create-pull-request#4230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peter-evans/create-pull-request/commit/5f6978faf089d4d20b00c7766989d076bb2fc7f1\"\u003e\u003ccode\u003e5f6978f\u003c/code\u003e\u003c/a\u003e fix: retry post-creation API calls on 422 eventual consistency errors (\u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/issues/4356\"\u003e#4356\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peter-evans/create-pull-request/commit/d32e88dac789dcc7906e7d26f69f24116fa9c97d\"\u003e\u003ccode\u003ed32e88d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the npm group with 3 updates (\u003ca href=\"https://redirect.github.com/pet...\n\n_Description has been truncated_","html_url":"https://github.com/DataCore-VietNam/awesome-mcp-finance/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/DataCore-VietNam%2Fawesome-mcp-finance/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"},{"uuid":"4549991205","node_id":"PR_kwDOGsQe5c7guP5l","number":21,"state":"open","title":"Bump dependabot/fetch-metadata from 1.6.0 to 3.1.0","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-29T16:25:42.000Z","updated_at":"2026-05-29T16:25:43.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"dependabot/fetch-metadata","old_version":"1.6.0","new_version":"3.1.0","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.6.0 to 3.1.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd permissions to all workflows by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/687\"\u003edependabot/fetch-metadata#687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 16.0.0 to 17.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/690\"\u003edependabot/fetch-metadata#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump esbuild from 0.27.4 to 0.28.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/693\"\u003edependabot/fetch-metadata#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.10 to 1.19.13 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/694\"\u003edependabot/fetch-metadata#694\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.7 to 4.12.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/695\"\u003edependabot/fetch-metadata#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDynamically update the tracking tag in action by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/696\"\u003edependabot/fetch-metadata#696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: handle duplicate dependency names in parseMetadataLinks by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove $ anchor from updateFragment regex to handle pip directory suffixes by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/698\"\u003edependabot/fetch-metadata#698\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates to README for permissions clarification by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/697\"\u003edependabot/fetch-metadata#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: resolve update-type null for Python, Composer, and Terraform PRs by \u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 17.4.0 to 17.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/703\"\u003edependabot/fetch-metadata#703\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/701\"\u003edependabot/fetch-metadata#701\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e from 9.0.0 to 9.1.0 in the dependencies group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/702\"\u003edependabot/fetch-metadata#702\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.12 to 4.12.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/705\"\u003edependabot/fetch-metadata#705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev3.1.0 by \u003ca href=\"https://github.com/fetch-metadata-action-automation\"\u003e\u003ccode\u003e@​fetch-metadata-action-automation\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/692\"\u003edependabot/fetch-metadata#692\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v1.6.0...v3.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=1.6.0\u0026new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/appnave/nave-credito-iss/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/appnave%2Fnave-credito-iss/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"},{"uuid":"4544423138","node_id":"PR_kwDOSpuk5c7gb_X2","number":1,"state":"open","title":"ci(deps): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-28T23:06:41.000Z","updated_at":"2026-05-28T23:06:53.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"ci(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/ViktorsBaikers/DevRites/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ViktorsBaikers%2FDevRites/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"},{"uuid":"4539037344","node_id":"PR_kwDORZbJIs7gKSRy","number":20,"state":"closed","title":"build(deps): Bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":true,"comments_count":2,"pull_request":true,"closed_at":"2026-05-31T15:26:19.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-28T08:48:50.000Z","updated_at":"2026-05-31T15:26:28.000Z","time_to_close":283049,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Wintersta7e/mz-scene-builder/pull/20","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Wintersta7e%2Fmz-scene-builder/issues/20","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/20/packages"},{"uuid":"4537879154","node_id":"PR_kwDORqKQkc7gGjMu","number":36,"state":"closed","title":"chore(deps)(deps): bump the github-actions group with 13 updates","user":"dependabot[bot]","labels":["dependencies"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-28T05:13:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-28T05:08:26.000Z","updated_at":"2026-05-28T05:13:58.000Z","time_to_close":330,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)(deps): bump","group_name":"github-actions","update_count":13,"packages":[{"name":"actions/github-script","old_version":"7","new_version":"9","repository_url":"https://github.com/actions/github-script"},{"name":"actions/checkout","old_version":"4","new_version":"6","repository_url":"https://github.com/actions/checkout"},{"name":"dorny/paths-filter","old_version":"3","new_version":"4","repository_url":"https://github.com/dorny/paths-filter"},{"name":"actions/upload-artifact","old_version":"4","new_version":"7","repository_url":"https://github.com/actions/upload-artifact"},{"name":"actions/download-artifact","old_version":"4","new_version":"8","repository_url":"https://github.com/actions/download-artifact"},{"name":"dependabot/fetch-metadata","old_version":"3.0.0","new_version":"3.1.0","repository_url":"https://github.com/dependabot/fetch-metadata"},{"name":"docker/metadata-action","old_version":"5","new_version":"6","repository_url":"https://github.com/docker/metadata-action"},{"name":"docker/login-action","old_version":"3","new_version":"4","repository_url":"https://github.com/docker/login-action"},{"name":"docker/build-push-action","old_version":"6","new_version":"7","repository_url":"https://github.com/docker/build-push-action"},{"name":"actions/configure-pages","old_version":"5","new_version":"6","repository_url":"https://github.com/actions/configure-pages"},{"name":"actions/upload-pages-artifact","old_version":"3","new_version":"5","repository_url":"https://github.com/actions/upload-pages-artifact"},{"name":"actions/setup-node","old_version":"4","new_version":"6","repository_url":"https://github.com/actions/setup-node"},{"name":"peter-evans/create-issue-from-file","old_version":"5","new_version":"6","repository_url":"https://github.com/peter-evans/create-issue-from-file"}],"path":null,"ecosystem":"actions"},"body":"Bumps the github-actions group with 13 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [actions/github-script](https://github.com/actions/github-script) | `7` | `9` |\n| [actions/checkout](https://github.com/actions/checkout) | `4` | `6` |\n| [dorny/paths-filter](https://github.com/dorny/paths-filter) | `3` | `4` |\n| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4` | `7` |\n| [actions/download-artifact](https://github.com/actions/download-artifact) | `4` | `8` |\n| [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) | `3.0.0` | `3.1.0` |\n| [docker/metadata-action](https://github.com/docker/metadata-action) | `5` | `6` |\n| [docker/login-action](https://github.com/docker/login-action) | `3` | `4` |\n| [docker/build-push-action](https://github.com/docker/build-push-action) | `6` | `7` |\n| [actions/configure-pages](https://github.com/actions/configure-pages) | `5` | `6` |\n| [actions/upload-pages-artifact](https://github.com/actions/upload-pages-artifact) | `3` | `5` |\n| [actions/setup-node](https://github.com/actions/setup-node) | `4` | `6` |\n| [peter-evans/create-issue-from-file](https://github.com/peter-evans/create-issue-from-file) | `5` | `6` |\n\nUpdates `actions/github-script` from 7 to 9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/github-script/releases\"\u003eactions/github-script's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eNew features:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003egetOctokit\u003c/code\u003e factory function\u003c/strong\u003e — Available directly in the script context. Create additional authenticated Octokit clients with different tokens for multi-token workflows, GitHub App tokens, and cross-org access. See \u003ca href=\"https://github.com/actions/github-script#creating-additional-clients-with-getoctokit\"\u003eCreating additional clients with \u003ccode\u003egetOctokit\u003c/code\u003e\u003c/a\u003e for details and examples.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eOrchestration ID in user-agent\u003c/strong\u003e — The \u003ccode\u003eACTIONS_ORCHESTRATION_ID\u003c/code\u003e environment variable is automatically appended to the user-agent string for request tracing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003erequire('@actions/github')\u003c/code\u003e no longer works in scripts.\u003c/strong\u003e The upgrade to \u003ccode\u003e@actions/github\u003c/code\u003e v9 (ESM-only) means \u003ccode\u003erequire('@actions/github')\u003c/code\u003e will fail at runtime. If you previously used patterns like \u003ccode\u003econst { getOctokit } = require('@actions/github')\u003c/code\u003e to create secondary clients, use the new injected \u003ccode\u003egetOctokit\u003c/code\u003e function instead — it's available directly in the script context with no imports needed.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egetOctokit\u003c/code\u003e is now an injected function parameter. Scripts that declare \u003ccode\u003econst getOctokit = ...\u003c/code\u003e or \u003ccode\u003elet getOctokit = ...\u003c/code\u003e will get a \u003ccode\u003eSyntaxError\u003c/code\u003e because JavaScript does not allow \u003ccode\u003econst\u003c/code\u003e/\u003ccode\u003elet\u003c/code\u003e redeclaration of function parameters. Use the injected \u003ccode\u003egetOctokit\u003c/code\u003e directly, or use \u003ccode\u003evar getOctokit = ...\u003c/code\u003e if you need to redeclare it.\u003c/li\u003e\n\u003cli\u003eIf your script accesses other \u003ccode\u003e@actions/github\u003c/code\u003e internals beyond the standard \u003ccode\u003egithub\u003c/code\u003e/\u003ccode\u003eoctokit\u003c/code\u003e client, you may need to update those references for v9 compatibility.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ACTIONS_ORCHESTRATION_ID to user-agent string by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/695\"\u003eactions/github-script#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: use deployment: false for integration test environments by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/712\"\u003eactions/github-script#712\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: add getOctokit to script context, upgrade \u003ccode\u003e@​actions/github\u003c/code\u003e v9, \u003ccode\u003e@​octokit/core\u003c/code\u003e v7, and related packages by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/700\"\u003eactions/github-script#700\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/695\"\u003eactions/github-script#695\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/github-script/compare/v8.0.0...v9.0.0\"\u003ehttps://github.com/actions/github-script/compare/v8.0.0...v9.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Node.js version support to 24.x by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/637\"\u003eactions/github-script#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME for updating actions/github-script from v7 to v8 by \u003ca href=\"https://github.com/sneha-krip\"\u003e\u003ccode\u003e@​sneha-krip\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/653\"\u003eactions/github-script#653\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/637\"\u003eactions/github-script#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sneha-krip\"\u003e\u003ccode\u003e@​sneha-krip\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/653\"\u003eactions/github-script#653\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/github-script/compare/v7.1.0...v8.0.0\"\u003ehttps://github.com/actions/github-script/compare/v7.1.0...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade husky to v9 by \u003ca href=\"https://github.com/benelan\"\u003e\u003ccode\u003e@​benelan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/482\"\u003eactions/github-script#482\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd workflow file for publishing releases to immutable action package by \u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/485\"\u003eactions/github-script#485\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade IA Publish by \u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/486\"\u003eactions/github-script#486\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix workflow status badges by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/497\"\u003eactions/github-script#497\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate usage of \u003ccode\u003eactions/upload-artifact\u003c/code\u003e by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/512\"\u003eactions/github-script#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClear up package name confusion by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/514\"\u003eactions/github-script#514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies with \u003ccode\u003enpm audit fix\u003c/code\u003e by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/515\"\u003eactions/github-script#515\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpecify that the used script is JavaScript by \u003ca href=\"https://github.com/timotk\"\u003e\u003ccode\u003e@​timotk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/478\"\u003eactions/github-script#478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Add Dependabot for NPM and Actions by \u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/472\"\u003eactions/github-script#472\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/3a2844b7e9c422d3c10d287c895573f7108da1b3\"\u003e\u003ccode\u003e3a2844b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/github-script/issues/700\"\u003e#700\u003c/a\u003e from actions/salmanmkc/expose-getoctokit + prepare re...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/ca10bbdd1a7739de09e99a200c7a59f5d73a4079\"\u003e\u003ccode\u003eca10bbd\u003c/code\u003e\u003c/a\u003e fix: use \u003ccode\u003e@​octokit/core/\u003c/code\u003etypes import for v7 compatibility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/86e48e20ac85c970ed1f96e718fd068173948b7b\"\u003e\u003ccode\u003e86e48e2\u003c/code\u003e\u003c/a\u003e merge: incorporate main branch changes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/c1084728b5b935ec4ddc1e4cee877b01797b3ff9\"\u003e\u003ccode\u003ec108472\u003c/code\u003e\u003c/a\u003e chore: rebuild dist for v9 upgrade and getOctokit factory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/afff112e4f8b57c718168af75b89ce00bc8d091d\"\u003e\u003ccode\u003eafff112\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/github-script/issues/712\"\u003e#712\u003c/a\u003e from actions/salmanmkc/deployment-false + fix user-ag...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/ff8117e5b78c415f814f39ad6998f424fee7b817\"\u003e\u003ccode\u003eff8117e\u003c/code\u003e\u003c/a\u003e ci: fix user-agent test to handle orchestration ID\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/81c6b7876079abe10ff715951c9fc7b3e1ab389d\"\u003e\u003ccode\u003e81c6b78\u003c/code\u003e\u003c/a\u003e ci: use deployment: false to suppress deployment noise from integration tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/3953caf8858d318f37b6cc53a9f5708859b5a7b7\"\u003e\u003ccode\u003e3953caf\u003c/code\u003e\u003c/a\u003e docs: update README examples from \u003ca href=\"https://github.com/v8\"\u003e\u003ccode\u003e@​v8\u003c/code\u003e\u003c/a\u003e to \u003ca href=\"https://github.com/v9\"\u003e\u003ccode\u003e@​v9\u003c/code\u003e\u003c/a\u003e, add getOctokit docs and v9 brea...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/c17d55b90dcdb3d554d0027a6c180a7adc2daf78\"\u003e\u003ccode\u003ec17d55b\u003c/code\u003e\u003c/a\u003e ci: add getOctokit integration test job\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/a047196d9a02fe92098771cafbb98c2f1814e408\"\u003e\u003ccode\u003ea047196\u003c/code\u003e\u003c/a\u003e test: add getOctokit integration tests via callAsyncFunction\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/github-script/compare/v7...v9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/checkout` from 4 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/releases\"\u003eactions/checkout's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev6-beta by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2298\"\u003eactions/checkout#2298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate readme/changelog for v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2311\"\u003eactions/checkout#2311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/checkout/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6-beta\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eUpdated persist-credentials to store the credentials under \u003ccode\u003e$RUNNER_TEMP\u003c/code\u003e instead of directly in the local git config.\u003c/p\u003e\n\u003cp\u003eThis requires a minimum Actions Runner version of \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.329.0\"\u003ev2.329.0\u003c/a\u003e to access the persisted credentials for \u003ca href=\"https://docs.github.com/en/actions/tutorials/use-containerized-services/create-a-docker-container-action\"\u003eDocker container action\u003c/a\u003e scenarios.\u003c/p\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5...v5.0.1\"\u003ehttps://github.com/actions/checkout/compare/v5...v5.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare v5.0.0 release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2238\"\u003eactions/checkout#2238\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v5.0.0\"\u003ehttps://github.com/actions/checkout/compare/v4...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v4.3.1\"\u003ehttps://github.com/actions/checkout/compare/v4...v4.3.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/blob/main/CHANGELOG.md\"\u003eactions/checkout's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev6.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix tag handling: preserve annotations and explicit fetch-tags by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2356\"\u003eactions/checkout#2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd worktree support for persist-credentials includeIf by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2327\"\u003eactions/checkout#2327\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdjust positioning of user email note and permissions heading by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2044\"\u003eactions/checkout#2044\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CODEOWNERS for actions by \u003ca href=\"https://github.com/TingluoHuang\"\u003e\u003ccode\u003e@​TingluoHuang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2224\"\u003eactions/checkout#2224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate package dependencies by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eurl-helper.ts\u003c/code\u003e now leverages well-known environment variables by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1941\"\u003eactions/checkout#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand unit test coverage for \u003ccode\u003eisGhes\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1946\"\u003eactions/checkout#1946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck out other refs/* by commit if provided, fall back to ref by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1924\"\u003eactions/checkout#1924\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ref and Commit outputs by \u003ca href=\"https://github.com/lucacome\"\u003e\u003ccode\u003e@​lucacome\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1180\"\u003eactions/checkout#1180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e- \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1777\"\u003eactions/checkout#1777\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1872\"\u003eactions/checkout#1872\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump the minor-npm-dependencies group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1739\"\u003eactions/checkout#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1697\"\u003eactions/checkout#1697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck out other refs/* by commit by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1774\"\u003eactions/checkout#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/checkout's own workflows to a known, good, stable version. by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1776\"\u003eactions/checkout#1776\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck platform to set archive extension appropriately by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1732\"\u003eactions/checkout#1732\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/de0fac2e4500dabe0009e67214ff5f5447ce83dd\"\u003e\u003ccode\u003ede0fac2\u003c/code\u003e\u003c/a\u003e Fix tag handling: preserve annotations and explicit fetch-tags (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2356\"\u003e#2356\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/064fe7f3312418007dea2b49a19844a9ee378f49\"\u003e\u003ccode\u003e064fe7f\u003c/code\u003e\u003c/a\u003e Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/8e8c483db84b4bee98b60c0593521ed34d9990e8\"\u003e\u003ccode\u003e8e8c483\u003c/code\u003e\u003c/a\u003e Clarify v6 README (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/033fa0dc0b82693d8986f1016a0ec2c5e7d9cbb1\"\u003e\u003ccode\u003e033fa0d\u003c/code\u003e\u003c/a\u003e Add worktree support for persist-credentials includeIf (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/c2d88d3ecc89a9ef08eebf45d9637801dcee7eb5\"\u003e\u003ccode\u003ec2d88d3\u003c/code\u003e\u003c/a\u003e Update all references from v5 and v4 to v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2314\"\u003e#2314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3\"\u003e\u003ccode\u003e1af3b93\u003c/code\u003e\u003c/a\u003e update readme/changelog for v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2311\"\u003e#2311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/71cf2267d89c5cb81562390fa70a37fa40b1305e\"\u003e\u003ccode\u003e71cf226\u003c/code\u003e\u003c/a\u003e v6-beta (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/069c6959146423d11cd0184e6accf28f9d45f06e\"\u003e\u003ccode\u003e069c695\u003c/code\u003e\u003c/a\u003e Persist creds to a separate file (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2286\"\u003e#2286\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493\"\u003e\u003ccode\u003eff7abcd\u003c/code\u003e\u003c/a\u003e Update README to include Node.js 24 support details and requirements (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2248\"\u003e#2248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/08c6903cd8c0fde910a37f88322edcfb5dd907a8\"\u003e\u003ccode\u003e08c6903\u003c/code\u003e\u003c/a\u003e Prepare v5.0.0 release (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/checkout/compare/v4...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dorny/paths-filter` from 3 to 4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dorny/paths-filter/releases\"\u003edorny/paths-filter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: update action runtime to node24 by \u003ca href=\"https://github.com/saschabratton\"\u003e\u003ccode\u003e@​saschabratton\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/294\"\u003edorny/paths-filter#294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saschabratton\"\u003e\u003ccode\u003e@​saschabratton\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/294\"\u003edorny/paths-filter#294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3.0.3...v4.0.0\"\u003ehttps://github.com/dorny/paths-filter/compare/v3.0.3...v4.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd missing predicate-quantifier by \u003ca href=\"https://github.com/wardpeet\"\u003e\u003ccode\u003e@​wardpeet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/279\"\u003edorny/paths-filter#279\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wardpeet\"\u003e\u003ccode\u003e@​wardpeet\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/279\"\u003edorny/paths-filter#279\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v3.0.3\"\u003ehttps://github.com/dorny/paths-filter/compare/v3...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add config parameter for predicate quantifier by \u003ca href=\"https://github.com/petermetz\"\u003e\u003ccode\u003e@​petermetz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/224\"\u003edorny/paths-filter#224\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/petermetz\"\u003e\u003ccode\u003e@​petermetz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/224\"\u003edorny/paths-filter#224\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v3.0.2\"\u003ehttps://github.com/dorny/paths-filter/compare/v3...v3.0.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCompare base and ref when token is empty by \u003ca href=\"https://github.com/frouioui\"\u003e\u003ccode\u003e@​frouioui\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/133\"\u003edorny/paths-filter#133\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frouioui\"\u003e\u003ccode\u003e@​frouioui\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/133\"\u003edorny/paths-filter#133\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v3.0.1\"\u003ehttps://github.com/dorny/paths-filter/compare/v3...v3.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dorny/paths-filter/blob/master/CHANGELOG.md\"\u003edorny/paths-filter's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/294\"\u003eUpdate action runtime to node24\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/279\"\u003eAdd missing predicate-quantifier\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/224\"\u003eAdd config parameter for predicate quantifier\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/133\"\u003eCompare base and ref when token is empty\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/210\"\u003eUpdate to Node.js 20\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/215\"\u003eUpdate all dependencies\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.11.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/167\"\u003eUpdate @​actions/core to v1.10.0 - Fixes warning about deprecated set-output\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/168\"\u003eDocument need for pull-requests: read permission\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/164\"\u003eUpdating to actions/checkout@v3\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/157\"\u003eSet list-files input parameter as not required\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/161\"\u003eUpdate Node.js\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/162\"\u003eFix incorrect handling of Unicode characters in exec()\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/163\"\u003eUse Octokit pagination\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/160\"\u003eUpdates real world links\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/91\"\u003eFix getLocalRef() returns wrong ref\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/85\"\u003eImprove robustness of change detection\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/82\"\u003eAdd ref input parameter\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/83\"\u003eFix change detection in PR when pullRequest.changed_files is incorrect\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/78\"\u003eFix change detection when base is a tag\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/75\"\u003eFix fetching git history\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/74\"\u003eFix fetching git history + fallback to unshallow repo\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/fbd0ab8f3e69293af611ebaee6363fc25e6d187d\"\u003e\u003ccode\u003efbd0ab8\u003c/code\u003e\u003c/a\u003e feat: add merge_group event support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/efb1da7ce8d89bbc261191e5a2dc1453c3837339\"\u003e\u003ccode\u003eefb1da7\u003c/code\u003e\u003c/a\u003e feat: add dist/ freshness check to PR workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/d8f7b061b24c30a325ff314b76c37adb05b041ce\"\u003e\u003ccode\u003ed8f7b06\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dorny/paths-filter/issues/302\"\u003e#302\u003c/a\u003e from dorny/issue-299\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/addbc147a95845176e1bc013a012fbf1d366389a\"\u003e\u003ccode\u003eaddbc14\u003c/code\u003e\u003c/a\u003e Update README for v4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/9d7afb8d214ad99e78fbd4247752c4caed2b6e4c\"\u003e\u003ccode\u003e9d7afb8\u003c/code\u003e\u003c/a\u003e Update CHANGELOG for v4.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/782470c5d953cae2693d643172b14e01bacb71f3\"\u003e\u003ccode\u003e782470c\u003c/code\u003e\u003c/a\u003e Merge branch 'releases/v3'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/ce10459c8b92cd8901166c0a222fbb033ef39365\"\u003e\u003ccode\u003ece10459\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dorny/paths-filter/issues/294\"\u003e#294\u003c/a\u003e from saschabratton/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/5f40380c5482e806c81cec080f5192e7234d8fe9\"\u003e\u003ccode\u003e5f40380\u003c/code\u003e\u003c/a\u003e feat: update action runtime to node24\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/upload-artifact` from 4 to 7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/upload-artifact/releases\"\u003eactions/upload-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.0.0\u003c/h2\u003e\n\u003ch2\u003ev7 What's new\u003c/h2\u003e\n\u003ch3\u003eDirect Uploads\u003c/h3\u003e\n\u003cp\u003eAdds support for uploading single files directly (unzipped). Callers can set the new \u003ccode\u003earchive\u003c/code\u003e parameter to \u003ccode\u003efalse\u003c/code\u003e to skip zipping the file during upload. Right now, we only support single files. The action will fail if the glob passed resolves to multiple files. The \u003ccode\u003ename\u003c/code\u003e parameter is also ignored with this setting. Instead, the name of the artifact will be the name of the uploaded file.\u003c/p\u003e\n\u003ch3\u003eESM\u003c/h3\u003e\n\u003cp\u003eTo support new versions of the \u003ccode\u003e@actions/*\u003c/code\u003e packages, we've upgraded the package to ESM.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd proxy integration test by \u003ca href=\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/754\"\u003eactions/upload-artifact#754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade the module to ESM and bump dependencies by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/762\"\u003eactions/upload-artifact#762\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport direct file uploads by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/764\"\u003eactions/upload-artifact#764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- made their first contribution in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/754\"\u003eactions/upload-artifact#754\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/upload-artifact/compare/v6...v7.0.0\"\u003ehttps://github.com/actions/upload-artifact/compare/v6...v7.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003ev6 - What's new\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nactions/upload-artifact@v6 now runs on Node.js 24 (\u003ccode\u003eruns.using: node24\u003c/code\u003e) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNode.js 24\u003c/h3\u003e\n\u003cp\u003eThis release updates the runtime to Node.js 24. v5 had preliminary support for Node.js 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpload Artifact Node 24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/719\"\u003eactions/upload-artifact#719\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update \u003ccode\u003e@​actions/artifact\u003c/code\u003e for Node.js 24 punycode deprecation by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/744\"\u003eactions/upload-artifact#744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare release v6.0.0 for Node.js 24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/745\"\u003eactions/upload-artifact#745\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/upload-artifact/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/upload-artifact/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING CHANGE:\u003c/strong\u003e this update supports Node \u003ccode\u003ev24.x\u003c/code\u003e. This is not a breaking change per-se but we're treating it as such.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/GhadimiR\"\u003e\u003ccode\u003e@​GhadimiR\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/681\"\u003eactions/upload-artifact#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/712\"\u003eactions/upload-artifact#712\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReadme: spell out the first use of GHES by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/727\"\u003eactions/upload-artifact#727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GHES guidance to include reference to Node 20 version by \u003ca href=\"https://github.com/patrikpolyak\"\u003e\u003ccode\u003e@​patrikpolyak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/725\"\u003eactions/upload-artifact#725\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@actions/artifact\u003c/code\u003e to \u003ccode\u003ev4.0.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003ePrepare \u003ccode\u003ev5.0.0\u003c/code\u003e by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/734\"\u003eactions/upload-artifact#734\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/043fb46d1a93c77aae656e7c1c64a875d1fc6a0a\"\u003e\u003ccode\u003e043fb46\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/797\"\u003e#797\u003c/a\u003e from actions/yacaovsnc/update-dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/634250c1388765ea7ed0f053e636f1f399000b94\"\u003e\u003ccode\u003e634250c\u003c/code\u003e\u003c/a\u003e Include changes in typespec/ts-http-runtime 0.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/e454baaac2be505c9450e11b8f3215c6fc023ce8\"\u003e\u003ccode\u003ee454baa\u003c/code\u003e\u003c/a\u003e Readme: bump all the example versions to v7 (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/796\"\u003e#796\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/74fad66b98a6d799dc004d3353ccd0e6f6b2530e\"\u003e\u003ccode\u003e74fad66\u003c/code\u003e\u003c/a\u003e Update the readme with direct upload details (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/bbbca2ddaa5d8feaa63e36b76fdaad77386f024f\"\u003e\u003ccode\u003ebbbca2d\u003c/code\u003e\u003c/a\u003e Support direct file uploads (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/764\"\u003e#764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/589182c5a4cec8920b8c1bce3e2fab1c97a02296\"\u003e\u003ccode\u003e589182c\u003c/code\u003e\u003c/a\u003e Upgrade the module to ESM and bump dependencies (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/762\"\u003e#762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/47309c993abb98030a35d55ef7ff34b7fa1074b5\"\u003e\u003ccode\u003e47309c9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/754\"\u003e#754\u003c/a\u003e from actions/Link-/add-proxy-integration-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/02a8460834e70dab0ce194c64360c59dc1475ef0\"\u003e\u003ccode\u003e02a8460\u003c/code\u003e\u003c/a\u003e Add proxy integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/b7c566a772e6b6bfb58ed0dc250532a479d7789f\"\u003e\u003ccode\u003eb7c566a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/745\"\u003e#745\u003c/a\u003e from actions/upload-artifact-v6-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/e516bc8500aaf3d07d591fcd4ae6ab5f9c391d5b\"\u003e\u003ccode\u003ee516bc8\u003c/code\u003e\u003c/a\u003e docs: correct description of Node.js 24 support in README\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/upload-artifact/compare/v4...v7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/download-artifact` from 4 to 8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/download-artifact/releases\"\u003eactions/download-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003ev8 - What's new\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nactions/download-artifact@v8 has been migrated to an ESM module. This should be transparent to the caller but forks might need to make significant changes.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nHash mismatches will now error by default. Users can override this behavior with a setting change (see below).\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eDirect downloads\u003c/h3\u003e\n\u003cp\u003eTo support direct uploads in \u003ccode\u003eactions/upload-artifact\u003c/code\u003e, the action will no longer attempt to unzip all downloaded files. Instead, the action checks the \u003ccode\u003eContent-Type\u003c/code\u003e header ahead of unzipping and skips non-zipped files. Callers wishing to download a zipped file as-is can also set the new \u003ccode\u003eskip-decompress\u003c/code\u003e parameter to \u003ccode\u003etrue\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eEnforced checks (breaking)\u003c/h3\u003e\n\u003cp\u003eA previous release introduced digest checks on the download. If a download hash didn't match the expected hash from the server, the action would log a warning. Callers can now configure the behavior on mismatch with the \u003ccode\u003edigest-mismatch\u003c/code\u003e parameter. To be secure by default, we are now defaulting the behavior to \u003ccode\u003eerror\u003c/code\u003e which will fail the workflow run.\u003c/p\u003e\n\u003ch3\u003eESM\u003c/h3\u003e\n\u003cp\u003eTo support new versions of the @actions/* packages, we've upgraded the package to ESM.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDon't attempt to un-zip non-zipped downloads by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/460\"\u003eactions/download-artifact#460\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a setting to specify what to do on hash mismatch and default it to \u003ccode\u003eerror\u003c/code\u003e by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/461\"\u003eactions/download-artifact#461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/download-artifact/compare/v7...v8.0.0\"\u003ehttps://github.com/actions/download-artifact/compare/v7...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.0.0\u003c/h2\u003e\n\u003ch2\u003ev7 - What's new\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nactions/download-artifact@v7 now runs on Node.js 24 (\u003ccode\u003eruns.using: node24\u003c/code\u003e) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNode.js 24\u003c/h3\u003e\n\u003cp\u003eThis release updates the runtime to Node.js 24. v6 had preliminary support for Node 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate GHES guidance to include reference to Node 20 version by \u003ca href=\"https://github.com/patrikpolyak\"\u003e\u003ccode\u003e@​patrikpolyak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/440\"\u003eactions/download-artifact#440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDownload Artifact Node24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/415\"\u003eactions/download-artifact#415\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update \u003ccode\u003e@​actions/artifact\u003c/code\u003e to fix Node.js 24 punycode deprecation by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/451\"\u003eactions/download-artifact#451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare release v7.0.0 for Node.js 24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/452\"\u003eactions/download-artifact#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrikpolyak\"\u003e\u003ccode\u003e@​patrikpolyak\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/440\"\u003eactions/download-artifact#440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/415\"\u003eactions/download-artifact#415\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/download-artifact/compare/v6.0.0...v7.0.0\"\u003ehttps://github.com/actions/download-artifact/compare/v6.0.0...v7.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003e\u003ccode\u003e3e5f45b\u003c/code\u003e\u003c/a\u003e Add regression tests for CJK characters (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/471\"\u003e#471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/e6d03f67377d4412c7aa56a8e2e4988e6ec479dd\"\u003e\u003ccode\u003ee6d03f6\u003c/code\u003e\u003c/a\u003e Add a regression test for artifact name + content-type mismatches (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3\"\u003e\u003ccode\u003e70fc10c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/461\"\u003e#461\u003c/a\u003e from actions/danwkennedy/digest-mismatch-behavior\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/f258da9a506b755b84a09a531814700b86ccfc62\"\u003e\u003ccode\u003ef258da9\u003c/code\u003e\u003c/a\u003e Add change docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/ccc058e5fbb0bb2352213eaec3491e117cbc4a5c\"\u003e\u003ccode\u003eccc058e\u003c/code\u003e\u003c/a\u003e Fix linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/bd7976ba57ecea96e6f3df575eb922d11a12a9fd\"\u003e\u003ccode\u003ebd7976b\u003c/code\u003e\u003c/a\u003e Add a setting to specify what to do on hash mismatch and default it to \u003ccode\u003eerror\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/ac21fcf45e0aaee541c0f7030558bdad38d77d6c\"\u003e\u003ccode\u003eac21fcf\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/460\"\u003e#460\u003c/a\u003e from actions/danwkennedy/download-no-unzip\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/15999bff51058bc7c19b50ebbba518eaef7c26c0\"\u003e\u003ccode\u003e15999bf\u003c/code\u003e\u003c/a\u003e Add note about package bumps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/974686ed5098c7f9c9289ec946b9058e496a2561\"\u003e\u003ccode\u003e974686e\u003c/code\u003e\u003c/a\u003e Bump the version to \u003ccode\u003ev8\u003c/code\u003e and add release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/fbe48b1d2756394be4cd4358ed3bc1343b330e75\"\u003e\u003ccode\u003efbe48b1\u003c/code\u003e\u003c/a\u003e Update test names to make it clearer what they do\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/download-artifact/compare/v4...v8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dependabot/fetch-metadata` from 3.0.0 to 3.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd permissions to all workflows by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/687\"\u003edependabot/fetch-metadata#687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 16.0.0 to 17.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/690\"\u003edependabot/fetch-metadata#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump esbuild from 0.27.4 to 0.28.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/693\"\u003edependabot/fetch-metadata#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.10 to 1.19.13 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/694\"\u003edependabot/fetch-metadata#694\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.7 to 4.12.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/695\"\u003edependabot/fetch-metadata#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDynamically update the tracking tag in action by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/696\"\u003edependabot/fetch-metadata#696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: handle duplicate dependency names in parseMetadataLinks by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove $ anchor from updateFragment regex to handle pip directory suffixes by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/698\"\u003edependabot/fetch-metadata#698\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates to README for permissions clarification by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/697\"\u003edependabot/fetch-metadata#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: resolve update-type null for Python, Composer, and Terraform PRs by \u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 17.4.0 to 17.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/703\"\u003edependabot/fetch-metadata#703\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/701\"\u003edependabot/fetch-metadata#701\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e from 9.0.0 to 9.1.0 in the dependencies group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/702\"\u003edependabot/fetch-metadata#702\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.12 to 4.12.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/705\"\u003edependabot/fetch-metadata#705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev3.1.0 by \u003ca href=\"https://github.com/fetch-metadata-action-automation\"\u003e\u003ccode\u003e@​fetch-metadata-action-automation\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/692\"\u003edependabot/fetch-metadata#692\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/ffa630c65fa7e0ecfa0625b5ceda64399aea1b36...25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `docker/metadata-action` from 5 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/docker/metadata-action/releases\"\u003edocker/metadata-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNode 24 as default runtime (requires \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eActions Runner v2.327.1\u003c/a\u003e or later) by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/605\"\u003edocker/metadata-action#605\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eList inputs now preserve \u003ccode\u003e#\u003c/code\u003e inside values while still supporting full-line \u003ccode\u003e#\u003c/code\u003e comments by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/607\"\u003edocker/metadata-action#607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch to ESM and update config/test wiring by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/602\"\u003edocker/metadata-action#602\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump lodash from 4.17.21 to 4.17.23 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/588\"\u003edocker/metadata-action#588\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​actions/core\u003c/code\u003e from 1.11.1 to 3.0.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/599\"\u003edocker/metadata-action#599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​actions/github\u003c/code\u003e from 6.0.1 to 9.0.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/597\"\u003edocker/metadata-action#597\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.68.0 to 0.79.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/604\"\u003edocker/metadata-action#604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​isaacs/brace-expansion\u003c/code\u003e from 5.0.0 to 5.0.1 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/600\"\u003edocker/metadata-action#600\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump semver from 7.7.3 to 7.7.4 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/603\"\u003edocker/metadata-action#603\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/docker/metadata-action/compare/v5.10.0...v6.0.0\"\u003ehttps://github.com/docker/metadata-action/compare/v5.10.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.66.0 to 0.68.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/559\"\u003edocker/metadata-action#559\u003c/a\u003e \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/569\"\u003edocker/metadata-action#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump js-yaml from 3.14.1 to 3.14.2 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/564\"\u003edocker/metadata-action#564\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/docker/metadata-action/compare/v5.9.0...v5.10.0\"\u003ehttps://github.com/docker/metadata-action/compare/v5.9.0...v5.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003etag-names\u003c/code\u003e output to return tag names without image base name by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/553\"\u003edocker/metadata-action#553\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​babel/runtime-corejs3\u003c/code\u003e from 7.14.7 to 7.28.2 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/539\"\u003edocker/metadata-action#539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.62.1 to 0.66.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/555\"\u003edocker/metadata-action#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump brace-expansion from 1.1.11 to 1.1.12 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/540\"\u003edocker/metadata-action#540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump csv-parse from 5.6.0 to 6.1.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/532\"\u003edocker/metadata-action#532\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump semver from 7.7.2 to 7.7.3 in in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/554\"\u003edocker/metadata-action#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tmp from 0.2.3 to 0.2.5 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/541\"\u003edocker/metadata-action#541\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/docker/metadata-action/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/docker/metadata-action/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew \u003ccode\u003eis_not_default_branch\u003c/code\u003e global expression by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/535\"\u003edocker/metadata-action#535\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow to match part of the git tag or value for semver/pep440 types by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/536\"\u003edocker/metadata-action#536\u003c/a\u003e \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/537\"\u003edocker/metadata-action#537\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​actions/github\u003c/code\u003e from 6.0.0 to 6.0.1 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/523\"\u003edocker/metadata-action#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.56.0 to 0.62.1 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/526\"\u003edocker/metadata-action#526\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump form-data from 2.5.1 to 2.5.5 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/533\"\u003edocker/metadata-action#533\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump moment-timezone from 0.5.47 to 0.6.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/525\"\u003edocker/metadata-action#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump semver from 7.7.1 to 7.7.2 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/524\"\u003edocker/metadata-action#524\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/docker/metadata-action/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/docker/metadata-action/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eGlobal expressions support for labels and annotations by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/489\"\u003edocker/metadata-action#489\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport disabling outputs as environment variables by \u003ca href=\"https://github.com/omus\"\u003e\u003ccode\u003e@​omus\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/497\"\u003edocker/metadata-action#497\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.44.0 to 0.56.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/507\"\u003edocker/metadata-action#507\u003c/a\u003e \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/509\"\u003edocker/metadata-action#509\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump csv-parse from 5.5.6 to 5.6.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/482\"\u003edocker/metadata-action#482\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump moment-timezone from 0.5.46 to 0.5.47 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/501\"\u003edocker/metadata-action#501\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump semver from 7.6.3 to 7.7.1 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/504\"\u003edocker/metadata-action#504\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/docker/metadata-action/compare/v5.6.1...v5.7.0\"\u003ehttps://github.com/docker/metadata-action/compare/v5.6.1...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/80c7e94dd9b9319bd5eb7a0e0fe9291e23a2a2e9\"\u003e\u003ccode\u003e80c7e94\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/metadata-action/issues/613\"\u003e#613\u003c/a\u003e from docker/dependabot/npm_and_yarn/docker/actions-to...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/8e0ddab90c29de6fff30c787e328563e48106fd0\"\u003e\u003ccode\u003e8e0ddab\u003c/code\u003e\u003c/a\u003e chore: update generated content\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/a8db14bd863c93be08c93c13e1cc816ec5b49b2e\"\u003e\u003ccode\u003ea8db14b\u003c/code\u003e\u003c/a\u003e chore(deps): Bump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.79.0 to 0.90.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/63a7371ee01888324f2c7b3e18be9ac13b9dbdbc\"\u003e\u003ccode\u003e63a7371\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/metadata-action/issues/617\"\u003e#617\u003c/a\u003e from docker/dependabot/npm_and_yarn/csv-parse-6.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/c6916a6cf86608c44ba936565d57f550835ecd45\"\u003e\u003ccode\u003ec6916a6\u003c/code\u003e\u003c/a\u003e chore: update generated content\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/aca9205632182712a2d859059cf12fdc9b2ca202\"\u003e\u003ccode\u003eaca9205\u003c/code\u003e\u003c/a\u003e chore(deps): Bump csv-parse from 6.1.0 to 6.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/9dcfe60f10ebea72e9e48bf8bf366d01629d045a\"\u003e\u003ccode\u003e9dcfe60\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/metadata-action/issues/629\"\u003e#629\u003c/a\u003e from docker/dependabot/npm_and_yarn/handlebars-4.7.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/43dea7677c80686dc31a7b16e61ba9d542081b59\"\u003e\u003ccode\u003e43dea76\u003c/code\u003e\u003c/a\u003e chore: update generated content\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/7a56f5af0aa2d36278ba725bb44091417def9f73\"\u003e\u003ccode\u003e7a56f5a\u003c/code\u003e\u003c/a\u003e chore(deps): Bump handlebars from 4.7.8 to 4.7.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/e49e0aa5deac3d581afd6ce80464d84ef68f5ccc\"\u003e\u003ccode\u003ee49e0aa\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/metadata-action/issues/658\"\u003e#658\u003c/a\u003e from docker/dependabot/npm_and_yarn/brace-expansion-5...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/metadata-action/compare/v5...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `docker/login-action` from 3 to 4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/docker/login-action/releases\"\u003edocker/login-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNode 24 as default runtime (requires \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eActions Runner v2.327.1\u003c/a\u003e or later) by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/929\"\u003edocker/login-action#929\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch to ESM and update config/test wiring by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/927\"\u003edocker/login-action#927\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​actions/core\u003c/code\u003e from 1.11.1 to 3.0.0 in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/919\"\u003edocker/login-action#919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​aws-sdk/client-ecr\u003c/code\u003e from 3.890.0 to 3.1000.0 in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/909\"\u003edocker/login-action#909\u003c/a\u003e \u003ca href=\"https://redirect.github.com/docker/login-action/pull/920\"\u003edocker/login-action#920\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​aws-sdk/client-ecr-public\u003c/code\u003e from 3.890.0 to 3.1000.0 in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/909\"\u003edocker/login-action#909\u003c/a\u003e \u003ca href=\"https://redirect.github.com/docker/login-action/pull/920\"\u003edocker/login-action#920\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.63.0 to 0.77.0 in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/910\"\u003edocker/login-action#910\u003c/a\u003e \u003ca href=\"https://redirect.github.com/docker/login-action/pull/928\"\u003edocker/login-action#928\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​isaacs/brace-expansion\u003c/code\u003e from 5.0.0 to 5.0.1 in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/921\"\u003edocker/login-action#921\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump js-yaml from 4.1.0 to 4.1.1 in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/901\"\u003edocker/login-action#901\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/docker/login-action/compare/v3.7.0...v4.0.0\"\u003ehttps://github.com/docker/login-action/compare/v3.7.0...v4.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003escope\u003c/code\u003e input to set scopes for the authentication token by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/912\"\u003edocker/login-action#912\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for AWS European Sovereign Cloud ECR by \u003ca href=\"https://github.com/dphi\"\u003e\u003ccode\u003e@​dphi\u003c/code\u003e\u003c/a\u003e in \u003ca hre...\n\n_Description has been truncated_","html_url":"https://github.com/acertainromance401/SentiVision/pull/36","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/acertainromance401%2FSentiVision/issues/36","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/36/packages"},{"uuid":"4528304100","node_id":"PR_kwDOSl5Tvc7fncAH","number":5,"state":"open","title":"ci(deps): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-26T23:51:58.000Z","updated_at":"2026-05-26T23:51:59.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"ci(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Altagen/Riced/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Altagen%2FRiced/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"},{"uuid":"4524389268","node_id":"PR_kwDOQXMM-c7fatWi","number":477,"state":"open","title":"chore(actions)(deps): bump the third-party-actions group with 2 updates","user":"dependabot[bot]","labels":["deps"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-26T13:14:56.000Z","updated_at":"2026-05-26T13:18:24.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(actions)(deps): bump","group_name":"third-party-actions","update_count":2,"packages":[{"name":"astral-sh/setup-uv","old_version":"4","new_version":"7","repository_url":"https://github.com/astral-sh/setup-uv"},{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps the third-party-actions group with 2 updates: [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv) and [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata).\n\nUpdates `astral-sh/setup-uv` from 4 to 7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/astral-sh/setup-uv/releases\"\u003eastral-sh/setup-uv's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.2.1 🌈 update known checksums up to 0.9.28\u003c/h2\u003e\n\u003ch2\u003eChanges\u003c/h2\u003e\n\u003ch2\u003e🧰 Maintenance\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: update known checksums for 0.9.28 @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/744\"\u003e#744\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: update known checksums for 0.9.27 @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: update known checksums for 0.9.26 @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/734\"\u003e#734\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: update known checksums for 0.9.25 @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/733\"\u003e#733\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: update known checksums for 0.9.24 @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/730\"\u003e#730\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📚 Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eClarify impact of using actions/setup-python \u003ca href=\"https://github.com/eifinger\"\u003e\u003ccode\u003e@​eifinger\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/732\"\u003e#732\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⬆️ Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump zizmorcore/zizmor-action from 0.3.0 to 0.4.1 @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.0 🌈 node24 and a lot of bugfixes\u003c/h2\u003e\n\u003ch2\u003eChanges\u003c/h2\u003e\n\u003cp\u003eThis release comes with a load of bug fixes and a speed up. Because of switching from node20 to node24 it is also a breaking change. If you are running on GitHub hosted runners this will just work, if you are using self-hosted runners make sure, that your runners are up to date. If you followed the normal installation instructions your self-hosted runner will keep itself updated.\u003c/p\u003e\n\u003cp\u003eThis release also removes the deprecated input \u003ccode\u003eserver-url\u003c/code\u003e which was used to download uv releases from a different server.\nThe \u003ca href=\"https://github.com/astral-sh/setup-uv?tab=readme-ov-file#manifest-file\"\u003emanifest-file\u003c/a\u003e input supersedes that functionality by adding a flexible way to define available versions and where they should be downloaded from.\u003c/p\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe action now respects when the environment variable \u003ccode\u003eUV_CACHE_DIR\u003c/code\u003e is already set and does not overwrite it. It now also finds \u003ca href=\"https://docs.astral.sh/uv/reference/settings/#cache-dir\"\u003ecache-dir\u003c/a\u003e settings in config files if you set them.\u003c/li\u003e\n\u003cli\u003eSome users encountered problems that \u003ca href=\"https://github.com/astral-sh/setup-uv?tab=readme-ov-file#disable-cache-pruning\"\u003ecache pruning\u003c/a\u003e took forever because they had some \u003ccode\u003euv\u003c/code\u003e processes running in the background. Starting with uv version \u003ccode\u003e0.8.24\u003c/code\u003e this action uses \u003ccode\u003euv cache prune --ci --force\u003c/code\u003e to ignore the running processes\u003c/li\u003e\n\u003cli\u003eIf you just want to install uv but not have it available in path, this action now respects \u003ccode\u003eUV_NO_MODIFY_PATH\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eSome other actions also set the env var \u003ccode\u003eUV_CACHE_DIR\u003c/code\u003e. This action can now deal with that but as this could lead to unwanted behavior in some edgecases a warning is now displayed.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eImprovements\u003c/h3\u003e\n\u003cp\u003eIf you are using minimum version specifiers for the version of uv to install for example\u003c/p\u003e\n\u003cpre lang=\"toml\"\u003e\u003ccode\u003e[tool.uv]\r\nrequired-version = \u0026quot;\u0026gt;=0.8.17\u0026quot;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis action now detects that and directly uses the latest version. Previously it would download all available releases from the uv repo\nto determine the highest matching candidate for the version specifier, which took much more time.\u003c/p\u003e\n\u003cp\u003eIf you are using other specifiers like \u003ccode\u003e0.8.x\u003c/code\u003e this action still needs to download all available releases because the specifier defines an upper bound (not 0.9.0 or later) and \u0026quot;latest\u0026quot; would possibly not satisfy that.\u003c/p\u003e\n\u003ch2\u003e🚨 Breaking changes\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/37802adc94f370d6bfd71619e3f0bf239e1f3b78\"\u003e\u003ccode\u003e37802ad\u003c/code\u003e\u003c/a\u003e Fetch uv from Astral's mirror by default (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/809\"\u003e#809\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/9f00d186ce05fb186322da2c89bac726cc9005f5\"\u003e\u003ccode\u003e9f00d18\u003c/code\u003e\u003c/a\u003e chore(deps): bump zizmorcore/zizmor-action from 0.5.0 to 0.5.2 (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/808\"\u003e#808\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/fd8f376b22c1219b8021404baf54539061a0339a\"\u003e\u003ccode\u003efd8f376\u003c/code\u003e\u003c/a\u003e Switch to ESM for source and test, use CommonJS for dist (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/806\"\u003e#806\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/f9070de1eac8816a02afc90f4a12cc6fe70d141c\"\u003e\u003ccode\u003ef9070de\u003c/code\u003e\u003c/a\u003e Bump deps (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/805\"\u003e#805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/cadb67bdc9933e2f8795f82ab47acc5f41ed4d31\"\u003e\u003ccode\u003ecadb67b\u003c/code\u003e\u003c/a\u003e chore: update known checksums for 0.10.10 (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/e06108dd0aef18192324c70427afc47652e63a82\"\u003e\u003ccode\u003ee06108d\u003c/code\u003e\u003c/a\u003e Use astral-sh/versions as primary version provider (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/802\"\u003e#802\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/0f6ec07aafe46cff7a322c837e5ba37d95c82b00\"\u003e\u003ccode\u003e0f6ec07\u003c/code\u003e\u003c/a\u003e docs: replace copilot instructions with AGENTS.md (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/821e5c98158b218f7c8e97d0ea3862c6d6425e8b\"\u003e\u003ccode\u003e821e5c9\u003c/code\u003e\u003c/a\u003e docs: add cross-client dependabot rollup skill (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/6ee6290f1cbc4156c0bdd66691b2c144ef8df19a\"\u003e\u003ccode\u003e6ee6290\u003c/code\u003e\u003c/a\u003e chore(deps): bump versions (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/792\"\u003e#792\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/9f332a133a60f39d23361d5262fa95793aa02590\"\u003e\u003ccode\u003e9f332a1\u003c/code\u003e\u003c/a\u003e Add riscv64 architecture support to platform detection (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/791\"\u003e#791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/astral-sh/setup-uv/compare/v4...v7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dependabot/fetch-metadata` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/ariffazil/arifOS/pull/477","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ariffazil%2FarifOS/issues/477","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/477/packages"},{"uuid":"4521711088","node_id":"PR_kwDOF3BwCs7fR_tp","number":952,"state":"open","title":"chore(deps): bump dependabot/fetch-metadata from 2.3.0 to 3.1.0","user":"dependabot[bot]","labels":["dependencies","minor","major"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-26T05:47:12.000Z","updated_at":"2026-05-26T05:50:58.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2.3.0","new_version":"3.1.0","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2.3.0 to 3.1.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd permissions to all workflows by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/687\"\u003edependabot/fetch-metadata#687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 16.0.0 to 17.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/690\"\u003edependabot/fetch-metadata#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump esbuild from 0.27.4 to 0.28.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/693\"\u003edependabot/fetch-metadata#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.10 to 1.19.13 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/694\"\u003edependabot/fetch-metadata#694\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.7 to 4.12.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/695\"\u003edependabot/fetch-metadata#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDynamically update the tracking tag in action by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/696\"\u003edependabot/fetch-metadata#696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: handle duplicate dependency names in parseMetadataLinks by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove $ anchor from updateFragment regex to handle pip directory suffixes by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/698\"\u003edependabot/fetch-metadata#698\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates to README for permissions clarification by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/697\"\u003edependabot/fetch-metadata#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: resolve update-type null for Python, Composer, and Terraform PRs by \u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 17.4.0 to 17.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/703\"\u003edependabot/fetch-metadata#703\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/701\"\u003edependabot/fetch-metadata#701\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e from 9.0.0 to 9.1.0 in the dependencies group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/702\"\u003edependabot/fetch-metadata#702\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.12 to 4.12.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/705\"\u003edependabot/fetch-metadata#705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev3.1.0 by \u003ca href=\"https://github.com/fetch-metadata-action-automation\"\u003e\u003ccode\u003e@​fetch-metadata-action-automation\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/692\"\u003edependabot/fetch-metadata#692\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/d7267f607e9d3fb96fc2fbe83e0af444713e90b7...25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2.3.0\u0026new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/pixiv/charcoal/pull/952","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pixiv%2Fcharcoal/issues/952","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/952/packages"},{"uuid":"4521055933","node_id":"PR_kwDOScBj-s7fP4CL","number":21,"state":"open","title":"chore(deps): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":["dependencies"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-26T03:20:09.000Z","updated_at":"2026-05-26T03:20:19.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/HybridAIWorkforce/book_framework_analyzer/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/HybridAIWorkforce%2Fbook_framework_analyzer/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"},{"uuid":"4520204183","node_id":"PR_kwDOSnhNVM7fNGwG","number":16,"state":"open","title":"ci: Bump dependabot/fetch-metadata from 2.3.0 to 3.1.0","user":"dependabot[bot]","labels":["dependencies","ci","docs"],"assignees":[],"locked":false,"comments_count":6,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-25T23:56:11.000Z","updated_at":"2026-05-25T23:58:54.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"ci: Bump","packages":[{"name":"dependabot/fetch-metadata","old_version":"2.3.0","new_version":"3.1.0","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2.3.0 to 3.1.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd permissions to all workflows by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/687\"\u003edependabot/fetch-metadata#687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 16.0.0 to 17.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/690\"\u003edependabot/fetch-metadata#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump esbuild from 0.27.4 to 0.28.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/693\"\u003edependabot/fetch-metadata#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.10 to 1.19.13 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/694\"\u003edependabot/fetch-metadata#694\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.7 to 4.12.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/695\"\u003edependabot/fetch-metadata#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDynamically update the tracking tag in action by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/696\"\u003edependabot/fetch-metadata#696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: handle duplicate dependency names in parseMetadataLinks by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove $ anchor from updateFragment regex to handle pip directory suffixes by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/698\"\u003edependabot/fetch-metadata#698\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates to README for permissions clarification by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/697\"\u003edependabot/fetch-metadata#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: resolve update-type null for Python, Composer, and Terraform PRs by \u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 17.4.0 to 17.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/703\"\u003edependabot/fetch-metadata#703\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/701\"\u003edependabot/fetch-metadata#701\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e from 9.0.0 to 9.1.0 in the dependencies group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/702\"\u003edependabot/fetch-metadata#702\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.12 to 4.12.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/705\"\u003edependabot/fetch-metadata#705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev3.1.0 by \u003ca href=\"https://github.com/fetch-metadata-action-automation\"\u003e\u003ccode\u003e@​fetch-metadata-action-automation\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/692\"\u003edependabot/fetch-metadata#692\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/d7267f607e9d3fb96fc2fbe83e0af444713e90b7...25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2.3.0\u0026new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\n\u003c!-- This is an auto-generated comment: release notes by coderabbit.ai --\u003e\n\n## Summary by CodeRabbit\n\n* **Chores**\n  * Updated GitHub Actions workflow to use a newer version of the Dependabot metadata action.\n\n\u003c!-- review_stack_entry_start --\u003e\n\n[![Review Change Stack](https://storage.googleapis.com/coderabbit_public_assets/review-stack-in-coderabbit-ui.svg)](https://app.coderabbit.ai/change-stack/seathatflowsinourveins/ourveins/pull/16?utm_source=github_walkthrough\u0026utm_medium=github\u0026utm_campaign=change_stack)\n\n\u003c!-- review_stack_entry_end --\u003e\n\n\u003c!-- end of auto-generated comment: release notes by coderabbit.ai --\u003e","html_url":"https://github.com/seathatflowsinourveins/ourveins/pull/16","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/seathatflowsinourveins%2Fourveins/issues/16","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/16/packages"},{"uuid":"4520139202","node_id":"PR_kwDOSb-8ks7fM4-1","number":29,"state":"open","title":"chore(deps): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":["dependencies"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-25T23:39:46.000Z","updated_at":"2026-05-25T23:39:56.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/HybridAIWorkforce/ai_trend_hub/pull/29","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/HybridAIWorkforce%2Fai_trend_hub/issues/29","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/29/packages"},{"uuid":"4519374242","node_id":"PR_kwDORK_SKM7fKaQq","number":245,"state":"open","title":"chore(deps): bump dependabot/fetch-metadata from 2.5.0 to 3.1.0","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-25T20:29:48.000Z","updated_at":"2026-05-28T21:45:44.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2.5.0","new_version":"3.1.0","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2.5.0 to 3.1.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd permissions to all workflows by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/687\"\u003edependabot/fetch-metadata#687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 16.0.0 to 17.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/690\"\u003edependabot/fetch-metadata#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump esbuild from 0.27.4 to 0.28.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/693\"\u003edependabot/fetch-metadata#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.10 to 1.19.13 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/694\"\u003edependabot/fetch-metadata#694\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.7 to 4.12.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/695\"\u003edependabot/fetch-metadata#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDynamically update the tracking tag in action by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/696\"\u003edependabot/fetch-metadata#696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: handle duplicate dependency names in parseMetadataLinks by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove $ anchor from updateFragment regex to handle pip directory suffixes by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/698\"\u003edependabot/fetch-metadata#698\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates to README for permissions clarification by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/697\"\u003edependabot/fetch-metadata#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: resolve update-type null for Python, Composer, and Terraform PRs by \u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 17.4.0 to 17.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/703\"\u003edependabot/fetch-metadata#703\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/701\"\u003edependabot/fetch-metadata#701\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e from 9.0.0 to 9.1.0 in the dependencies group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/702\"\u003edependabot/fetch-metadata#702\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.12 to 4.12.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/705\"\u003edependabot/fetch-metadata#705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev3.1.0 by \u003ca href=\"https://github.com/fetch-metadata-action-automation\"\u003e\u003ccode\u003e@​fetch-metadata-action-automation\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/692\"\u003edependabot/fetch-metadata#692\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/21025c705c08248db411dc16f3619e6b5f9ea21a...25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2.5.0\u0026new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/zircote/nsip/pull/245","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/zircote%2Fnsip/issues/245","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/245/packages"}],"issue_packages":[{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-06-01T00:36:35.000Z","version_change":"2 → 3","issue":{"uuid":"4559533186","node_id":"PR_kwDON5kUQM7hLl5M","number":14,"state":"open","title":"build(deps): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-06-01T00:36:35.000Z","updated_at":"2026-06-01T00:37:49.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/spago-official/sunlady-home/pull/14","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/spago-official%2Fsunlady-home/issues/14","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/14/packages"}},{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-05-31T23:06:05.000Z","version_change":"2 → 3","issue":{"uuid":"4559313531","node_id":"PR_kwDOLnwLAs7hK7xn","number":252,"state":"open","title":"chore(deps): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":["dependencies","type: chore 🧹","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-31T23:06:05.000Z","updated_at":"2026-05-31T23:06:15.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/chrisleekr/langchain-playground/pull/252","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/chrisleekr%2Flangchain-playground/issues/252","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/252/packages"}},{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-05-31T15:12:07.000Z","version_change":"2 → 3","issue":{"uuid":"4557991987","node_id":"PR_kwDOSsc_HM7hG8_x","number":4,"state":"open","title":"chore(ci): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":[],"assignees":["anilcancakir"],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-31T15:12:07.000Z","updated_at":"2026-05-31T15:12:08.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(ci)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/anilcancakir/laravel-agent-mcp/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/anilcancakir%2Flaravel-agent-mcp/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"}},{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-05-31T01:46:16.000Z","version_change":"2 → 3","issue":{"uuid":"4556264590","node_id":"PR_kwDORqagns7hB24W","number":36,"state":"open","title":"ci(deps): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-31T01:46:16.000Z","updated_at":"2026-05-31T01:47:45.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"ci(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/ecooaonline/ecooa-website/pull/36","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ecooaonline%2Fecooa-website/issues/36","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/36/packages"}},{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-05-30T10:35:42.000Z","version_change":"2 → 3","issue":{"uuid":"4554123882","node_id":"PR_kwDOSfRakc7g7gD2","number":287,"state":"open","title":"chore(actions): bump the github-actions-all group across 1 directory with 8 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-30T10:35:42.000Z","updated_at":"2026-05-30T10:35:43.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(actions): bump","group_name":"github-actions-all","update_count":8,"packages":[{"name":"actions/checkout","old_version":"4","new_version":"6","repository_url":"https://github.com/actions/checkout"},{"name":"dorny/paths-filter","old_version":"3","new_version":"4","repository_url":"https://github.com/dorny/paths-filter"},{"name":"actions/upload-artifact","old_version":"4","new_version":"7","repository_url":"https://github.com/actions/upload-artifact"},{"name":"actions/download-artifact","old_version":"4","new_version":"8","repository_url":"https://github.com/actions/download-artifact"},{"name":"actions/cache","old_version":"4","new_version":"5","repository_url":"https://github.com/actions/cache"},{"name":"supabase/setup-cli","old_version":"1","new_version":"2","repository_url":"https://github.com/supabase/setup-cli"},{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"},{"name":"actions/deploy-pages","old_version":"4","new_version":"5","repository_url":"https://github.com/actions/deploy-pages"}],"path":null,"ecosystem":"actions"},"body":"Bumps the github-actions-all group with 8 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [actions/checkout](https://github.com/actions/checkout) | `4` | `6` |\n| [dorny/paths-filter](https://github.com/dorny/paths-filter) | `3` | `4` |\n| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4` | `7` |\n| [actions/download-artifact](https://github.com/actions/download-artifact) | `4` | `8` |\n| [actions/cache](https://github.com/actions/cache) | `4` | `5` |\n| [supabase/setup-cli](https://github.com/supabase/setup-cli) | `1` | `2` |\n| [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) | `2` | `3` |\n| [actions/deploy-pages](https://github.com/actions/deploy-pages) | `4` | `5` |\n\n\nUpdates `actions/checkout` from 4 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/releases\"\u003eactions/checkout's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev6-beta by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2298\"\u003eactions/checkout#2298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate readme/changelog for v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2311\"\u003eactions/checkout#2311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/checkout/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6-beta\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eUpdated persist-credentials to store the credentials under \u003ccode\u003e$RUNNER_TEMP\u003c/code\u003e instead of directly in the local git config.\u003c/p\u003e\n\u003cp\u003eThis requires a minimum Actions Runner version of \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.329.0\"\u003ev2.329.0\u003c/a\u003e to access the persisted credentials for \u003ca href=\"https://docs.github.com/en/actions/tutorials/use-containerized-services/create-a-docker-container-action\"\u003eDocker container action\u003c/a\u003e scenarios.\u003c/p\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5...v5.0.1\"\u003ehttps://github.com/actions/checkout/compare/v5...v5.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare v5.0.0 release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2238\"\u003eactions/checkout#2238\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v5.0.0\"\u003ehttps://github.com/actions/checkout/compare/v4...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v4.3.1\"\u003ehttps://github.com/actions/checkout/compare/v4...v4.3.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/blob/main/CHANGELOG.md\"\u003eactions/checkout's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev6.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix tag handling: preserve annotations and explicit fetch-tags by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2356\"\u003eactions/checkout#2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd worktree support for persist-credentials includeIf by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2327\"\u003eactions/checkout#2327\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdjust positioning of user email note and permissions heading by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2044\"\u003eactions/checkout#2044\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CODEOWNERS for actions by \u003ca href=\"https://github.com/TingluoHuang\"\u003e\u003ccode\u003e@​TingluoHuang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2224\"\u003eactions/checkout#2224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate package dependencies by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eurl-helper.ts\u003c/code\u003e now leverages well-known environment variables by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1941\"\u003eactions/checkout#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand unit test coverage for \u003ccode\u003eisGhes\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1946\"\u003eactions/checkout#1946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck out other refs/* by commit if provided, fall back to ref by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1924\"\u003eactions/checkout#1924\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ref and Commit outputs by \u003ca href=\"https://github.com/lucacome\"\u003e\u003ccode\u003e@​lucacome\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1180\"\u003eactions/checkout#1180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e- \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1777\"\u003eactions/checkout#1777\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1872\"\u003eactions/checkout#1872\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump the minor-npm-dependencies group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1739\"\u003eactions/checkout#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1697\"\u003eactions/checkout#1697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck out other refs/* by commit by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1774\"\u003eactions/checkout#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/checkout's own workflows to a known, good, stable version. by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1776\"\u003eactions/checkout#1776\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck platform to set archive extension appropriately by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1732\"\u003eactions/checkout#1732\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/de0fac2e4500dabe0009e67214ff5f5447ce83dd\"\u003e\u003ccode\u003ede0fac2\u003c/code\u003e\u003c/a\u003e Fix tag handling: preserve annotations and explicit fetch-tags (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2356\"\u003e#2356\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/064fe7f3312418007dea2b49a19844a9ee378f49\"\u003e\u003ccode\u003e064fe7f\u003c/code\u003e\u003c/a\u003e Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/8e8c483db84b4bee98b60c0593521ed34d9990e8\"\u003e\u003ccode\u003e8e8c483\u003c/code\u003e\u003c/a\u003e Clarify v6 README (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/033fa0dc0b82693d8986f1016a0ec2c5e7d9cbb1\"\u003e\u003ccode\u003e033fa0d\u003c/code\u003e\u003c/a\u003e Add worktree support for persist-credentials includeIf (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/c2d88d3ecc89a9ef08eebf45d9637801dcee7eb5\"\u003e\u003ccode\u003ec2d88d3\u003c/code\u003e\u003c/a\u003e Update all references from v5 and v4 to v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2314\"\u003e#2314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3\"\u003e\u003ccode\u003e1af3b93\u003c/code\u003e\u003c/a\u003e update readme/changelog for v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2311\"\u003e#2311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/71cf2267d89c5cb81562390fa70a37fa40b1305e\"\u003e\u003ccode\u003e71cf226\u003c/code\u003e\u003c/a\u003e v6-beta (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/069c6959146423d11cd0184e6accf28f9d45f06e\"\u003e\u003ccode\u003e069c695\u003c/code\u003e\u003c/a\u003e Persist creds to a separate file (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2286\"\u003e#2286\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493\"\u003e\u003ccode\u003eff7abcd\u003c/code\u003e\u003c/a\u003e Update README to include Node.js 24 support details and requirements (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2248\"\u003e#2248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/08c6903cd8c0fde910a37f88322edcfb5dd907a8\"\u003e\u003ccode\u003e08c6903\u003c/code\u003e\u003c/a\u003e Prepare v5.0.0 release (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/checkout/compare/v4...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dorny/paths-filter` from 3 to 4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dorny/paths-filter/releases\"\u003edorny/paths-filter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: update action runtime to node24 by \u003ca href=\"https://github.com/saschabratton\"\u003e\u003ccode\u003e@​saschabratton\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/294\"\u003edorny/paths-filter#294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saschabratton\"\u003e\u003ccode\u003e@​saschabratton\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/294\"\u003edorny/paths-filter#294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3.0.3...v4.0.0\"\u003ehttps://github.com/dorny/paths-filter/compare/v3.0.3...v4.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd missing predicate-quantifier by \u003ca href=\"https://github.com/wardpeet\"\u003e\u003ccode\u003e@​wardpeet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/279\"\u003edorny/paths-filter#279\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wardpeet\"\u003e\u003ccode\u003e@​wardpeet\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/279\"\u003edorny/paths-filter#279\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v3.0.3\"\u003ehttps://github.com/dorny/paths-filter/compare/v3...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add config parameter for predicate quantifier by \u003ca href=\"https://github.com/petermetz\"\u003e\u003ccode\u003e@​petermetz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/224\"\u003edorny/paths-filter#224\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/petermetz\"\u003e\u003ccode\u003e@​petermetz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/224\"\u003edorny/paths-filter#224\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v3.0.2\"\u003ehttps://github.com/dorny/paths-filter/compare/v3...v3.0.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCompare base and ref when token is empty by \u003ca href=\"https://github.com/frouioui\"\u003e\u003ccode\u003e@​frouioui\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/133\"\u003edorny/paths-filter#133\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frouioui\"\u003e\u003ccode\u003e@​frouioui\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/133\"\u003edorny/paths-filter#133\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v3.0.1\"\u003ehttps://github.com/dorny/paths-filter/compare/v3...v3.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dorny/paths-filter/blob/master/CHANGELOG.md\"\u003edorny/paths-filter's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/294\"\u003eUpdate action runtime to node24\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/279\"\u003eAdd missing predicate-quantifier\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/224\"\u003eAdd config parameter for predicate quantifier\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/133\"\u003eCompare base and ref when token is empty\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/210\"\u003eUpdate to Node.js 20\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/215\"\u003eUpdate all dependencies\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.11.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/167\"\u003eUpdate @​actions/core to v1.10.0 - Fixes warning about deprecated set-output\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/168\"\u003eDocument need for pull-requests: read permission\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/164\"\u003eUpdating to actions/checkout@v3\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/157\"\u003eSet list-files input parameter as not required\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/161\"\u003eUpdate Node.js\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/162\"\u003eFix incorrect handling of Unicode characters in exec()\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/163\"\u003eUse Octokit pagination\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/160\"\u003eUpdates real world links\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/91\"\u003eFix getLocalRef() returns wrong ref\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/85\"\u003eImprove robustness of change detection\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/82\"\u003eAdd ref input parameter\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/83\"\u003eFix change detection in PR when pullRequest.changed_files is incorrect\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/78\"\u003eFix change detection when base is a tag\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/75\"\u003eFix fetching git history\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/74\"\u003eFix fetching git history + fallback to unshallow repo\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/fbd0ab8f3e69293af611ebaee6363fc25e6d187d\"\u003e\u003ccode\u003efbd0ab8\u003c/code\u003e\u003c/a\u003e feat: add merge_group event support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/efb1da7ce8d89bbc261191e5a2dc1453c3837339\"\u003e\u003ccode\u003eefb1da7\u003c/code\u003e\u003c/a\u003e feat: add dist/ freshness check to PR workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/d8f7b061b24c30a325ff314b76c37adb05b041ce\"\u003e\u003ccode\u003ed8f7b06\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dorny/paths-filter/issues/302\"\u003e#302\u003c/a\u003e from dorny/issue-299\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/addbc147a95845176e1bc013a012fbf1d366389a\"\u003e\u003ccode\u003eaddbc14\u003c/code\u003e\u003c/a\u003e Update README for v4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/9d7afb8d214ad99e78fbd4247752c4caed2b6e4c\"\u003e\u003ccode\u003e9d7afb8\u003c/code\u003e\u003c/a\u003e Update CHANGELOG for v4.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/782470c5d953cae2693d643172b14e01bacb71f3\"\u003e\u003ccode\u003e782470c\u003c/code\u003e\u003c/a\u003e Merge branch 'releases/v3'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/ce10459c8b92cd8901166c0a222fbb033ef39365\"\u003e\u003ccode\u003ece10459\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dorny/paths-filter/issues/294\"\u003e#294\u003c/a\u003e from saschabratton/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/5f40380c5482e806c81cec080f5192e7234d8fe9\"\u003e\u003ccode\u003e5f40380\u003c/code\u003e\u003c/a\u003e feat: update action runtime to node24\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/upload-artifact` from 4 to 7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/upload-artifact/releases\"\u003eactions/upload-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.0.0\u003c/h2\u003e\n\u003ch2\u003ev7 What's new\u003c/h2\u003e\n\u003ch3\u003eDirect Uploads\u003c/h3\u003e\n\u003cp\u003eAdds support for uploading single files directly (unzipped). Callers can set the new \u003ccode\u003earchive\u003c/code\u003e parameter to \u003ccode\u003efalse\u003c/code\u003e to skip zipping the file during upload. Right now, we only support single files. The action will fail if the glob passed resolves to multiple files. The \u003ccode\u003ename\u003c/code\u003e parameter is also ignored with this setting. Instead, the name of the artifact will be the name of the uploaded file.\u003c/p\u003e\n\u003ch3\u003eESM\u003c/h3\u003e\n\u003cp\u003eTo support new versions of the \u003ccode\u003e@actions/*\u003c/code\u003e packages, we've upgraded the package to ESM.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd proxy integration test by \u003ca href=\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/754\"\u003eactions/upload-artifact#754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade the module to ESM and bump dependencies by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/762\"\u003eactions/upload-artifact#762\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport direct file uploads by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/764\"\u003eactions/upload-artifact#764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- made their first contribution in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/754\"\u003eactions/upload-artifact#754\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/upload-artifact/compare/v6...v7.0.0\"\u003ehttps://github.com/actions/upload-artifact/compare/v6...v7.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003ev6 - What's new\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nactions/upload-artifact@v6 now runs on Node.js 24 (\u003ccode\u003eruns.using: node24\u003c/code\u003e) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNode.js 24\u003c/h3\u003e\n\u003cp\u003eThis release updates the runtime to Node.js 24. v5 had preliminary support for Node.js 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpload Artifact Node 24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/719\"\u003eactions/upload-artifact#719\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update \u003ccode\u003e@​actions/artifact\u003c/code\u003e for Node.js 24 punycode deprecation by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/744\"\u003eactions/upload-artifact#744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare release v6.0.0 for Node.js 24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/745\"\u003eactions/upload-artifact#745\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/upload-artifact/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/upload-artifact/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING CHANGE:\u003c/strong\u003e this update supports Node \u003ccode\u003ev24.x\u003c/code\u003e. This is not a breaking change per-se but we're treating it as such.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/GhadimiR\"\u003e\u003ccode\u003e@​GhadimiR\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/681\"\u003eactions/upload-artifact#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/712\"\u003eactions/upload-artifact#712\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReadme: spell out the first use of GHES by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/727\"\u003eactions/upload-artifact#727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GHES guidance to include reference to Node 20 version by \u003ca href=\"https://github.com/patrikpolyak\"\u003e\u003ccode\u003e@​patrikpolyak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/725\"\u003eactions/upload-artifact#725\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@actions/artifact\u003c/code\u003e to \u003ccode\u003ev4.0.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003ePrepare \u003ccode\u003ev5.0.0\u003c/code\u003e by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/734\"\u003eactions/upload-artifact#734\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/043fb46d1a93c77aae656e7c1c64a875d1fc6a0a\"\u003e\u003ccode\u003e043fb46\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/797\"\u003e#797\u003c/a\u003e from actions/yacaovsnc/update-dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/634250c1388765ea7ed0f053e636f1f399000b94\"\u003e\u003ccode\u003e634250c\u003c/code\u003e\u003c/a\u003e Include changes in typespec/ts-http-runtime 0.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/e454baaac2be505c9450e11b8f3215c6fc023ce8\"\u003e\u003ccode\u003ee454baa\u003c/code\u003e\u003c/a\u003e Readme: bump all the example versions to v7 (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/796\"\u003e#796\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/74fad66b98a6d799dc004d3353ccd0e6f6b2530e\"\u003e\u003ccode\u003e74fad66\u003c/code\u003e\u003c/a\u003e Update the readme with direct upload details (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/bbbca2ddaa5d8feaa63e36b76fdaad77386f024f\"\u003e\u003ccode\u003ebbbca2d\u003c/code\u003e\u003c/a\u003e Support direct file uploads (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/764\"\u003e#764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/589182c5a4cec8920b8c1bce3e2fab1c97a02296\"\u003e\u003ccode\u003e589182c\u003c/code\u003e\u003c/a\u003e Upgrade the module to ESM and bump dependencies (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/762\"\u003e#762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/47309c993abb98030a35d55ef7ff34b7fa1074b5\"\u003e\u003ccode\u003e47309c9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/754\"\u003e#754\u003c/a\u003e from actions/Link-/add-proxy-integration-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/02a8460834e70dab0ce194c64360c59dc1475ef0\"\u003e\u003ccode\u003e02a8460\u003c/code\u003e\u003c/a\u003e Add proxy integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/b7c566a772e6b6bfb58ed0dc250532a479d7789f\"\u003e\u003ccode\u003eb7c566a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/745\"\u003e#745\u003c/a\u003e from actions/upload-artifact-v6-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/e516bc8500aaf3d07d591fcd4ae6ab5f9c391d5b\"\u003e\u003ccode\u003ee516bc8\u003c/code\u003e\u003c/a\u003e docs: correct description of Node.js 24 support in README\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/upload-artifact/compare/v4...v7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/download-artifact` from 4 to 8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/download-artifact/releases\"\u003eactions/download-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003ev8 - What's new\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nactions/download-artifact@v8 has been migrated to an ESM module. This should be transparent to the caller but forks might need to make significant changes.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nHash mismatches will now error by default. Users can override this behavior with a setting change (see below).\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eDirect downloads\u003c/h3\u003e\n\u003cp\u003eTo support direct uploads in \u003ccode\u003eactions/upload-artifact\u003c/code\u003e, the action will no longer attempt to unzip all downloaded files. Instead, the action checks the \u003ccode\u003eContent-Type\u003c/code\u003e header ahead of unzipping and skips non-zipped files. Callers wishing to download a zipped file as-is can also set the new \u003ccode\u003eskip-decompress\u003c/code\u003e parameter to \u003ccode\u003etrue\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eEnforced checks (breaking)\u003c/h3\u003e\n\u003cp\u003eA previous release introduced digest checks on the download. If a download hash didn't match the expected hash from the server, the action would log a warning. Callers can now configure the behavior on mismatch with the \u003ccode\u003edigest-mismatch\u003c/code\u003e parameter. To be secure by default, we are now defaulting the behavior to \u003ccode\u003eerror\u003c/code\u003e which will fail the workflow run.\u003c/p\u003e\n\u003ch3\u003eESM\u003c/h3\u003e\n\u003cp\u003eTo support new versions of the @actions/* packages, we've upgraded the package to ESM.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDon't attempt to un-zip non-zipped downloads by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/460\"\u003eactions/download-artifact#460\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a setting to specify what to do on hash mismatch and default it to \u003ccode\u003eerror\u003c/code\u003e by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/461\"\u003eactions/download-artifact#461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/download-artifact/compare/v7...v8.0.0\"\u003ehttps://github.com/actions/download-artifact/compare/v7...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.0.0\u003c/h2\u003e\n\u003ch2\u003ev7 - What's new\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nactions/download-artifact@v7 now runs on Node.js 24 (\u003ccode\u003eruns.using: node24\u003c/code\u003e) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNode.js 24\u003c/h3\u003e\n\u003cp\u003eThis release updates the runtime to Node.js 24. v6 had preliminary support for Node 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate GHES guidance to include reference to Node 20 version by \u003ca href=\"https://github.com/patrikpolyak\"\u003e\u003ccode\u003e@​patrikpolyak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/440\"\u003eactions/download-artifact#440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDownload Artifact Node24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/415\"\u003eactions/download-artifact#415\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update \u003ccode\u003e@​actions/artifact\u003c/code\u003e to fix Node.js 24 punycode deprecation by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/451\"\u003eactions/download-artifact#451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare release v7.0.0 for Node.js 24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/452\"\u003eactions/download-artifact#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrikpolyak\"\u003e\u003ccode\u003e@​patrikpolyak\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/440\"\u003eactions/download-artifact#440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/415\"\u003eactions/download-artifact#415\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/download-artifact/compare/v6.0.0...v7.0.0\"\u003ehttps://github.com/actions/download-artifact/compare/v6.0.0...v7.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003e\u003ccode\u003e3e5f45b\u003c/code\u003e\u003c/a\u003e Add regression tests for CJK characters (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/471\"\u003e#471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/e6d03f67377d4412c7aa56a8e2e4988e6ec479dd\"\u003e\u003ccode\u003ee6d03f6\u003c/code\u003e\u003c/a\u003e Add a regression test for artifact name + content-type mismatches (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3\"\u003e\u003ccode\u003e70fc10c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/461\"\u003e#461\u003c/a\u003e from actions/danwkennedy/digest-mismatch-behavior\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/f258da9a506b755b84a09a531814700b86ccfc62\"\u003e\u003ccode\u003ef258da9\u003c/code\u003e\u003c/a\u003e Add change docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/ccc058e5fbb0bb2352213eaec3491e117cbc4a5c\"\u003e\u003ccode\u003eccc058e\u003c/code\u003e\u003c/a\u003e Fix linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/bd7976ba57ecea96e6f3df575eb922d11a12a9fd\"\u003e\u003ccode\u003ebd7976b\u003c/code\u003e\u003c/a\u003e Add a setting to specify what to do on hash mismatch and default it to \u003ccode\u003eerror\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/ac21fcf45e0aaee541c0f7030558bdad38d77d6c\"\u003e\u003ccode\u003eac21fcf\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/460\"\u003e#460\u003c/a\u003e from actions/danwkennedy/download-no-unzip\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/15999bff51058bc7c19b50ebbba518eaef7c26c0\"\u003e\u003ccode\u003e15999bf\u003c/code\u003e\u003c/a\u003e Add note about package bumps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/974686ed5098c7f9c9289ec946b9058e496a2561\"\u003e\u003ccode\u003e974686e\u003c/code\u003e\u003c/a\u003e Bump the version to \u003ccode\u003ev8\u003c/code\u003e and add release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/fbe48b1d2756394be4cd4358ed3bc1343b330e75\"\u003e\u003ccode\u003efbe48b1\u003c/code\u003e\u003c/a\u003e Update test names to make it clearer what they do\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/download-artifact/compare/v4...v8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/cache` from 4 to 5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/cache/releases\"\u003eactions/cache's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\n\u003cstrong\u003e\u003ccode\u003eactions/cache@v5\u003c/code\u003e runs on the Node.js 24 runtime and requires a minimum Actions Runner version of \u003ccode\u003e2.327.1\u003c/code\u003e.\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eIf you are using self-hosted runners, ensure they are updated before upgrading.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003chr /\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to use node24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1630\"\u003eactions/cache#1630\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare v5.0.0 release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1684\"\u003eactions/cache#1684\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/cache/compare/v4.3.0...v5.0.0\"\u003ehttps://github.com/actions/cache/compare/v4.3.0...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd note on runner versions by \u003ca href=\"https://github.com/GhadimiR\"\u003e\u003ccode\u003e@​GhadimiR\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1642\"\u003eactions/cache#1642\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare \u003ccode\u003ev4.3.0\u003c/code\u003e release by \u003ca href=\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1655\"\u003eactions/cache#1655\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GhadimiR\"\u003e\u003ccode\u003e@​GhadimiR\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1642\"\u003eactions/cache#1642\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/cache/compare/v4...v4.3.0\"\u003ehttps://github.com/actions/cache/compare/v4...v4.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.2.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1620\"\u003eactions/cache#1620\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@actions/cache\u003c/code\u003e to \u003ccode\u003e4.0.5\u003c/code\u003e and move \u003ccode\u003e@protobuf-ts/plugin\u003c/code\u003e to dev depdencies by \u003ca href=\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1634\"\u003eactions/cache#1634\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare release \u003ccode\u003e4.2.4\u003c/code\u003e by \u003ca href=\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1636\"\u003eactions/cache#1636\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1620\"\u003eactions/cache#1620\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/cache/compare/v4...v4.2.4\"\u003ehttps://github.com/actions/cache/compare/v4...v4.2.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.2.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate to use \u003ccode\u003e@​actions/cache\u003c/code\u003e 4.0.3 package \u0026amp; prepare for new release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1577\"\u003eactions/cache#1577\u003c/a\u003e (SAS tokens for cache entries are now masked in debug logs)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/cache/pull/1577\"\u003eactions/cache#1577\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/cache/compare/v4.2.2...v4.2.3\"\u003ehttps://github.com/actions/cache/compare/v4.2.2...v4.2.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/cache/blob/main/RELEASES.md\"\u003eactions/cache's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eReleases\u003c/h1\u003e\n\u003ch2\u003eHow to prepare a release\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\u003cbr /\u003e\nRelevant for maintainers with write access only.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003col\u003e\n\u003cli\u003eSwitch to a new branch from \u003ccode\u003emain\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eRun \u003ccode\u003enpm test\u003c/code\u003e to ensure all tests are passing.\u003c/li\u003e\n\u003cli\u003eUpdate the version in \u003ca href=\"https://github.com/actions/cache/blob/main/package.json\"\u003e\u003ccode\u003ehttps://github.com/actions/cache/blob/main/package.json\u003c/code\u003e\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eRun \u003ccode\u003enpm run build\u003c/code\u003e to update the compiled files.\u003c/li\u003e\n\u003cli\u003eUpdate this \u003ca href=\"https://github.com/actions/cache/blob/main/RELEASES.md\"\u003e\u003ccode\u003ehttps://github.com/actions/cache/blob/main/RELEASES.md\u003c/code\u003e\u003c/a\u003e with the new version and changes in the \u003ccode\u003e## Changelog\u003c/code\u003e section.\u003c/li\u003e\n\u003cli\u003eRun \u003ccode\u003elicensed cache\u003c/code\u003e to update the license report.\u003c/li\u003e\n\u003cli\u003eRun \u003ccode\u003elicensed status\u003c/code\u003e and resolve any warnings by updating the \u003ca href=\"https://github.com/actions/cache/blob/main/.licensed.yml\"\u003e\u003ccode\u003ehttps://github.com/actions/cache/blob/main/.licensed.yml\u003c/code\u003e\u003c/a\u003e file with the exceptions.\u003c/li\u003e\n\u003cli\u003eCommit your changes and push your branch upstream.\u003c/li\u003e\n\u003cli\u003eOpen a pull request against \u003ccode\u003emain\u003c/code\u003e and get it reviewed and merged.\u003c/li\u003e\n\u003cli\u003eDraft a new release \u003ca href=\"https://github.com/actions/cache/releases\"\u003ehttps://github.com/actions/cache/releases\u003c/a\u003e use the same version number used in \u003ccode\u003epackage.json\u003c/code\u003e\n\u003col\u003e\n\u003cli\u003eCreate a new tag with the version number.\u003c/li\u003e\n\u003cli\u003eAuto generate release notes and update them to match the changes you made in \u003ccode\u003eRELEASES.md\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eToggle the set as the latest release option.\u003c/li\u003e\n\u003cli\u003ePublish the release.\u003c/li\u003e\n\u003c/ol\u003e\n\u003c/li\u003e\n\u003cli\u003eNavigate to \u003ca href=\"https://github.com/actions/cache/actions/workflows/release-new-action-version.yml\"\u003ehttps://github.com/actions/cache/actions/workflows/release-new-action-version.yml\u003c/a\u003e\n\u003col\u003e\n\u003cli\u003eThere should be a workflow run queued with the same version number.\u003c/li\u003e\n\u003cli\u003eApprove the run to publish the new version and update the major tags for this action.\u003c/li\u003e\n\u003c/ol\u003e\n\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003e5.0.4\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003eminimatch\u003c/code\u003e to v3.1.5 (fixes ReDoS via globstar patterns)\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003eundici\u003c/code\u003e to v6.24.1 (WebSocket decompression bomb protection, header validation fixes)\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003efast-xml-parser\u003c/code\u003e to v5.5.6\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e5.0.3\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@actions/cache\u003c/code\u003e to v5.0.5 (Resolves: \u003ca href=\"https://github.com/actions/cache/security/dependabot/33\"\u003ehttps://github.com/actions/cache/security/dependabot/33\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@actions/core\u003c/code\u003e to v2.0.3\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e5.0.2\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@actions/cache\u003c/code\u003e to v5.0.3 \u003ca href=\"https://redirect.github.com/actions/cache/pull/1692\"\u003e#1692\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e5.0.1\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003e@azure/storage-blob\u003c/code\u003e to \u003ccode\u003e^12.29.1\u003c/code\u003e via \u003ccode\u003e@actions/cache@5.0.1\u003c/code\u003e \u003ca href=\"https://redirect.github.com/actions/cache/pull/1685\"\u003e#1685\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e5.0.0\u003c/h3\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\n\u003ccode\u003eactions/cache@v5\u003c/code\u003e runs on the Node.js 24 runtime and requires a minimum Actions Runner version of \u003ccode\u003e2.327.1\u003c/code\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/27d5ce7f107fe9357f9df03efb73ab90386fccae\"\u003e\u003ccode\u003e27d5ce7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/cache/issues/1747\"\u003e#1747\u003c/a\u003e from actions/yacaovsnc/update-dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/f280785d7b6e1884c7d12b9136eb0f4a1574fcfd\"\u003e\u003ccode\u003ef280785\u003c/code\u003e\u003c/a\u003e licensed changes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/619aeb1606e195be0b36fd0ff68dcf1aff6b65a7\"\u003e\u003ccode\u003e619aeb1\u003c/code\u003e\u003c/a\u003e npm run build generated dist files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/bcf16c2893940a4899761e55c7ac3c1cf88a04f6\"\u003e\u003ccode\u003ebcf16c2\u003c/code\u003e\u003c/a\u003e Update ts-http-runtime to 0.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/668228422ae6a00e4ad889ee87cd7109ec5666a7\"\u003e\u003ccode\u003e6682284\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/cache/issues/1738\"\u003e#1738\u003c/a\u003e from actions/prepare-v5.0.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/e34039626f957d3e3e50843d15c1b20547fc90e2\"\u003e\u003ccode\u003ee340396\u003c/code\u003e\u003c/a\u003e Update RELEASES\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/8a671105293e81530f1af99863cdf94550aba1a6\"\u003e\u003ccode\u003e8a67110\u003c/code\u003e\u003c/a\u003e Add licenses\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/1865903e1b0cb750dda9bc5c58be03424cc62830\"\u003e\u003ccode\u003e1865903\u003c/code\u003e\u003c/a\u003e Update dependencies \u0026amp; patch security vulnerabilities\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/565629816435f6c0b50676926c9b05c254113c0c\"\u003e\u003ccode\u003e5656298\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/cache/issues/1722\"\u003e#1722\u003c/a\u003e from RyPeck/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/cache/commit/4e380d19e192ace8e86f23f32ca6fdec98a673c6\"\u003e\u003ccode\u003e4e380d1\u003c/code\u003e\u003c/a\u003e Fix cache key in examples.md for bun.lock\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/cache/compare/v4...v5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `supabase/setup-cli` from 1 to 2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/supabase/setup-cli/releases\"\u003esupabase/setup-cli's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.0.0\u003c/h2\u003e\n\u003cp\u003eThis major release refreshes the action internals, CI coverage, and release pipeline while keeping usage straightforward with \u003ccode\u003euses: supabase/setup-cli@v2\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSwitched the action implementation to a composite action flow and modernized runtime/dependency setup.\u003c/li\u003e\n\u003cli\u003eImproved CLI version resolution: when \u003ccode\u003eversion\u003c/code\u003e is omitted, the action now detects it from root lockfiles (\u003ccode\u003ebun.lock\u003c/code\u003e, \u003ccode\u003epnpm-lock.yaml\u003c/code\u003e, \u003ccode\u003epackage-lock.json\u003c/code\u003e) and falls back to \u003ccode\u003elatest\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eExpanded validation with dedicated CI + E2E workflows and updated docs/examples around \u003ccode\u003e@v2\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eHardened repository automation and supply-chain posture (pinned actions, Dependabot workflow/policy updates, licensed workflow fixes).\u003c/li\u003e\n\u003cli\u003eMigrated away from old bundled distribution/test setup to a cleaner Bun-based project structure.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMaintenance updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDependency refreshes across Bun/TypeScript and GitHub Actions tooling.\u003c/li\u003e\n\u003cli\u003eDocumentation and workflow cleanup for long-term maintainability.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cp\u003eThanks to everyone who contributed to this release:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/staaldraad\"\u003e\u003ccode\u003e@​staaldraad\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/martindonadieu\"\u003e\u003ccode\u003e@​martindonadieu\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFull changelog\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003e36 commits\u003c/strong\u003e between \u003ccode\u003ev1.6.0\u003c/code\u003e and \u003ccode\u003ev2.0.0\u003c/code\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/supabase/setup-cli/compare/v1.6.0...v2.0.0\"\u003eCompare changes\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.1\u003c/h2\u003e\n\u003cp\u003eBackport the Alpine/Linux musl runtime dependency fix to the v1 action channel.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eInstall missing \u003ccode\u003elibstdc++\u003c/code\u003e and \u003ccode\u003elibgcc\u003c/code\u003e before verifying Supabase CLI versions from \u003ccode\u003e.apk\u003c/code\u003e archives.\u003c/li\u003e\n\u003cli\u003eKeep non-\u003ccode\u003e.apk\u003c/code\u003e archive installs unchanged.\u003c/li\u003e\n\u003cli\u003eRebuild the bundled v1 action artifact.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eValidation: \u003ca href=\"https://github.com/jgoux/setup-cli-testing/actions/runs/26172791463\"\u003ehttps://github.com/jgoux/setup-cli-testing/actions/runs/26172791463\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.0\u003c/h2\u003e\n\u003cp\u003eBackport Linux musl/Alpine support to the v1 action channel.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eDownload Supabase CLI \u003ccode\u003e.apk\u003c/code\u003e assets for Linux musl and CLI versions v2.99.0+.\u003c/li\u003e\n\u003cli\u003eAdd the extracted \u003ccode\u003e.apk\u003c/code\u003e \u003ccode\u003eusr/bin\u003c/code\u003e directory to PATH.\u003c/li\u003e\n\u003cli\u003eSupport authenticated \u003ccode\u003elatest\u003c/code\u003e release lookup with the optional \u003ccode\u003egithub-token\u003c/code\u003e input.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.6.1\u003c/h2\u003e\n\u003cp\u003eBackport latest Supabase CLI archive resolution for v2.99.0+ to the v1 action channel.\u003c/p\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: update code owners by \u003ca href=\"https://github.com/sweatybridge\"\u003e\u003ccode\u003e@​sweatybridge\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/supabase/setup-cli/pull/327\"\u003esupabase/setup-cli#327\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: explicit permissions on actions by \u003ca href=\"https://github.com/doublethink\"\u003e\u003ccode\u003e@​doublethink\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/supabase/setup-cli/pull/326\"\u003esupabase/setup-cli#326\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/3c2f5e2ae34c34e428e8e206e2c4d21fa2d20fbf\"\u003e\u003ccode\u003e3c2f5e2\u003c/code\u003e\u003c/a\u003e fix: install Alpine runtime dependencies (\u003ca href=\"https://redirect.github.com/supabase/setup-cli/issues/433\"\u003e#433\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/365cb468b99542715ed739102501e3f7987088de\"\u003e\u003ccode\u003e365cb46\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump the bun-minor-patch group across 1 directory with 4 upd...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/e0099b2bdb8020257ff40f6595a1d274df558646\"\u003e\u003ccode\u003ee0099b2\u003c/code\u003e\u003c/a\u003e chore(deps): bump the actions-minor-patch group across 1 directory with 2 upd...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/52a446718e4edd1a9f1e2631186019c87e329f60\"\u003e\u003ccode\u003e52a4467\u003c/code\u003e\u003c/a\u003e fix: setup-cli on Linux musl containers (\u003ca href=\"https://redirect.github.com/supabase/setup-cli/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/3095b000b664c979051fee48203cc4d4af8aca28\"\u003e\u003ccode\u003e3095b00\u003c/code\u003e\u003c/a\u003e fix: authenticate latest release lookup (\u003ca href=\"https://redirect.github.com/supabase/setup-cli/issues/430\"\u003e#430\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/a4d563a017eb7e7da097c40c441f85dbdcc4411f\"\u003e\u003ccode\u003ea4d563a\u003c/code\u003e\u003c/a\u003e fix: handle Supabase CLI v2.99 archives (\u003ca href=\"https://redirect.github.com/supabase/setup-cli/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/0abc813ee30fc6710a975fb92db02aa8a6b14501\"\u003e\u003ccode\u003e0abc813\u003c/code\u003e\u003c/a\u003e chore(deps): bump the bun-minor-patch group with 5 updates (\u003ca href=\"https://redirect.github.com/supabase/setup-cli/issues/421\"\u003e#421\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/f55616e35e3b5e71238be6cff104393d7f66fc8e\"\u003e\u003ccode\u003ef55616e\u003c/code\u003e\u003c/a\u003e fix: cache licensed action (\u003ca href=\"https://redirect.github.com/supabase/setup-cli/issues/422\"\u003e#422\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/2df3f5f50e3d33ca2003cb2b1ec307af901cbfb6\"\u003e\u003ccode\u003e2df3f5f\u003c/code\u003e\u003c/a\u003e chore(deps): bump the actions-minor-patch group across 1 directory with 3 upd...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/supabase/setup-cli/commit/df56b21da46c98abb12a9804e4fb1f657773e333\"\u003e\u003ccode\u003edf56b21\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump the bun-minor-patch group with 2 updates (\u003ca href=\"https://redirect.github.com/supabase/setup-cli/issues/419\"\u003e#419\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/supabase/setup-cli/compare/v1...v2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dependabot/fetch-metadata` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/deploy-pages` from 4 to 5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/deploy-pages/releases\"\u003eactions/deploy-pages's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Node.js version to 24.x \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/actions/deploy-pages/issues/404\"\u003e#404\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd workflow file for publishing releases to immutable action package \u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/actions/deploy-pages/issues/374\"\u003e#374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump braces from 3.0.2 to 3.0.3 in the npm_and_yarn group across 1 directory \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/actions/deploy-pages/issues/360\"\u003e#360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMake the rebuild dist workflow work nicer with Dependabot \u003ca href=\"https://github.com/yoannchaudet\"\u003e\u003ccode\u003e@​yoannchaudet\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/actions/deploy-pages/issues/361\"\u003e#361\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump the non-breaking-changes group across 1 directory with 3 updates \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/actions/deploy-pages/issues/358\"\u003e#358\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDelete repeated sentence \u003ca href=\"https://github.com/garethsb\"\u003e\u003ccode\u003e@​garethsb\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/actions/deploy-pages/issues/359\"\u003e#359\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate README.md \u003ca href=\"https://github.com/tsusdere\"\u003e\u003ccode\u003e@​tsusdere\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/actions/deploy-pages/issues/348\"\u003e#348\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eBump the non-breaking-changes group with 4 updates \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e (...\n\n_Description has been truncated_","html_url":"https://github.com/rumeadia-dotcom/ing0415/pull/287","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/rumeadia-dotcom%2Fing0415/issues/287","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/287/packages"}},{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-05-30T06:37:51.000Z","version_change":"2 → 3","issue":{"uuid":"4553578336","node_id":"PR_kwDOIk5VP87g541g","number":977,"state":"open","title":"chore(deps): bump the github-actions group across 1 directory with 3 updates","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":["frasermolyneux"],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-30T06:37:51.000Z","updated_at":"2026-05-30T06:42:08.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"github-actions","update_count":3,"packages":[{"name":"actions/dependency-review-action","old_version":"4","new_version":"5","repository_url":"https://github.com/actions/dependency-review-action"},{"name":"actions/github-script","old_version":"7","new_version":"9","repository_url":"https://github.com/actions/github-script"},{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps the github-actions group with 3 updates in the / directory: [actions/dependency-review-action](https://github.com/actions/dependency-review-action), [actions/github-script](https://github.com/actions/github-script) and [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata).\n\nUpdates `actions/dependency-review-action` from 4 to 5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/dependency-review-action/releases\"\u003eactions/dependency-review-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.0.0\u003c/h2\u003e\n\u003cp\u003eThis is a new major version of the Dependency Review Action which updates the runtime to node24. This requires a minimum Actions Runner version \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003ev2.327.1\u003c/a\u003e to run.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd .github/copilot-instructions.md for Copilot coding agent by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1067\"\u003eactions/dependency-review-action#1067\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Node.js runtime from 20 to 24 by \u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump spdx-license-ids from 3.0.20 to 3.0.23 by \u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: bump actions/checkout from v4 to v6 in workflow examples by \u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: patched version display for advisories with non-strict semver ranges (e.g. Maven beta versions) by \u003ca href=\"https://github.com/tspascoal\"\u003e\u003ccode\u003e@​tspascoal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1076\"\u003eactions/dependency-review-action#1076\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eResolve security findings by \u003ca href=\"https://github.com/AshelyTC\"\u003e\u003ccode\u003e@​AshelyTC\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1094\"\u003eactions/dependency-review-action#1094\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5.0.0 release branch by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1098\"\u003eactions/dependency-review-action#1098\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eDependency Review Action 4.9.0\u003c/h2\u003e\n\u003cp\u003eThis feature release contains a couple of notable changes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThere is a new configuration option \u003ccode\u003eshow_patched_versions\u003c/code\u003e which will add a column to the output, showing the fix version of each vulnerable dependency. Thanks \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eRuns which do not display OpenSSF scorecards no longer fetch scorecard information; previously it was fetched regardless of whether or not it was displayed, causing unneccessary slowness. Great catch \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eThere are a couple of fixes to purl parsing which should improve match accuracy for \u003ccode\u003eallow-package-dependency\u003c/code\u003e lists, including case (in)sensitivity and url-encoded namespaces Thanks \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCompare normalized purls to account for encoding quirks by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1056\"\u003eactions/dependency-review-action#1056\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake purl comparisons case insensitive by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1057\"\u003eactions/dependency-review-action#1057\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeat: Add \u003ccode\u003ePatched Version\u003c/code\u003e to \u003ccode\u003eVulnerabilities\u003c/code\u003e summary by \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1045\"\u003eactions/dependency-review-action#1045\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: only get scorecard levels if user wants to see the OpenSSF scorecard by \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 10.1.0 to 10.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1058\"\u003eactions/dependency-review-action#1058\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1021\"\u003eactions/dependency-review-action#1021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates for release 4.9.0 by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1064\"\u003eactions/dependency-review-action#1064\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.8.3\u003c/h2\u003e\n\u003ch2\u003eDependency Review Action v4.8.3\u003c/h2\u003e\n\u003cp\u003eThis is a bugfix release that updates a number of upstream dependencies and includes a fix for the earlier feature that detected oversized summaries and upload them as artifacts, which could occasionally crash the action.\u003c/p\u003e\n\u003cp\u003eWe have also updated the release process to use a long-lived \u003ccode\u003ev4\u003c/code\u003e \u003cstrong\u003ebranch\u003c/strong\u003e for the action, instead of a force-pushed tag, which aligns better with git branching strategies; the change should be transparent to end users.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eGitHub Actions can't push to our protected main by \u003ca href=\"https://github.com/dangoor\"\u003e\u003ccode\u003e@​dangoor\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1017\"\u003eactions/dependency-review-action#1017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 9.1.0 to 10.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/995\"\u003eactions/dependency-review-action#995\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a1d282b36b6f3519aa1f3fc636f609c47dddb294\"\u003e\u003ccode\u003ea1d282b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1098\"\u003e#1098\u003c/a\u003e from actions/ahpook/v5-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/eb6c199c5a85c7387f1f0b02b3ba5c6364740695\"\u003e\u003ccode\u003eeb6c199\u003c/code\u003e\u003c/a\u003e update examples to show \u003ca href=\"https://github.com/v5\"\u003e\u003ccode\u003e@​v5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/3943c2c5beaaaf1806eb3758273c203dabcbf89c\"\u003e\u003ccode\u003e3943c2c\u003c/code\u003e\u003c/a\u003e v5.0.0 release branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/454943c880b147adbfe7de0cdd3ece1c00882033\"\u003e\u003ccode\u003e454943c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1094\"\u003e#1094\u003c/a\u003e from actions/ashelytc/security-findings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/6d92a1228e9e9db334f02c09f84fe9217d2b4463\"\u003e\u003ccode\u003e6d92a12\u003c/code\u003e\u003c/a\u003e revert \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a8e5a7e93695b41abf6d1083cd220bee39a720f0\"\u003e\u003ccode\u003ea8e5a7e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1076\"\u003e#1076\u003c/a\u003e from tspascoal/fix-version-matching-for-non-string-s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/b6b7079031ef4ed61656c221988f1f3bcbf35101\"\u003e\u003ccode\u003eb6b7079\u003c/code\u003e\u003c/a\u003e update \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e to 8.40.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/821a21dd691f162c4c5c2e9754a344accde9a208\"\u003e\u003ccode\u003e821a21d\u003c/code\u003e\u003c/a\u003e update more dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/05aaaae45cf4c420de012addf2a72e3435ddaa63\"\u003e\u003ccode\u003e05aaaae\u003c/code\u003e\u003c/a\u003e run npm audit fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/55d3e754501fc13c84b95637ce51f135012d41ea\"\u003e\u003ccode\u003e55d3e75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1077\"\u003e#1077\u003c/a\u003e from Marukome0743/docs/checkout\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4...v5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/github-script` from 7 to 9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/github-script/releases\"\u003eactions/github-script's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eNew features:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003egetOctokit\u003c/code\u003e factory function\u003c/strong\u003e — Available directly in the script context. Create additional authenticated Octokit clients with different tokens for multi-token workflows, GitHub App tokens, and cross-org access. See \u003ca href=\"https://github.com/actions/github-script#creating-additional-clients-with-getoctokit\"\u003eCreating additional clients with \u003ccode\u003egetOctokit\u003c/code\u003e\u003c/a\u003e for details and examples.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eOrchestration ID in user-agent\u003c/strong\u003e — The \u003ccode\u003eACTIONS_ORCHESTRATION_ID\u003c/code\u003e environment variable is automatically appended to the user-agent string for request tracing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003erequire('@actions/github')\u003c/code\u003e no longer works in scripts.\u003c/strong\u003e The upgrade to \u003ccode\u003e@actions/github\u003c/code\u003e v9 (ESM-only) means \u003ccode\u003erequire('@actions/github')\u003c/code\u003e will fail at runtime. If you previously used patterns like \u003ccode\u003econst { getOctokit } = require('@actions/github')\u003c/code\u003e to create secondary clients, use the new injected \u003ccode\u003egetOctokit\u003c/code\u003e function instead — it's available directly in the script context with no imports needed.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egetOctokit\u003c/code\u003e is now an injected function parameter. Scripts that declare \u003ccode\u003econst getOctokit = ...\u003c/code\u003e or \u003ccode\u003elet getOctokit = ...\u003c/code\u003e will get a \u003ccode\u003eSyntaxError\u003c/code\u003e because JavaScript does not allow \u003ccode\u003econst\u003c/code\u003e/\u003ccode\u003elet\u003c/code\u003e redeclaration of function parameters. Use the injected \u003ccode\u003egetOctokit\u003c/code\u003e directly, or use \u003ccode\u003evar getOctokit = ...\u003c/code\u003e if you need to redeclare it.\u003c/li\u003e\n\u003cli\u003eIf your script accesses other \u003ccode\u003e@actions/github\u003c/code\u003e internals beyond the standard \u003ccode\u003egithub\u003c/code\u003e/\u003ccode\u003eoctokit\u003c/code\u003e client, you may need to update those references for v9 compatibility.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ACTIONS_ORCHESTRATION_ID to user-agent string by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/695\"\u003eactions/github-script#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: use deployment: false for integration test environments by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/712\"\u003eactions/github-script#712\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: add getOctokit to script context, upgrade \u003ccode\u003e@​actions/github\u003c/code\u003e v9, \u003ccode\u003e@​octokit/core\u003c/code\u003e v7, and related packages by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/700\"\u003eactions/github-script#700\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/695\"\u003eactions/github-script#695\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/github-script/compare/v8.0.0...v9.0.0\"\u003ehttps://github.com/actions/github-script/compare/v8.0.0...v9.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Node.js version support to 24.x by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/637\"\u003eactions/github-script#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME for updating actions/github-script from v7 to v8 by \u003ca href=\"https://github.com/sneha-krip\"\u003e\u003ccode\u003e@​sneha-krip\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/653\"\u003eactions/github-script#653\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/637\"\u003eactions/github-script#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sneha-krip\"\u003e\u003ccode\u003e@​sneha-krip\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/653\"\u003eactions/github-script#653\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/github-script/compare/v7.1.0...v8.0.0\"\u003ehttps://github.com/actions/github-script/compare/v7.1.0...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade husky to v9 by \u003ca href=\"https://github.com/benelan\"\u003e\u003ccode\u003e@​benelan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/482\"\u003eactions/github-script#482\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd workflow file for publishing releases to immutable action package by \u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/485\"\u003eactions/github-script#485\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade IA Publish by \u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/486\"\u003eactions/github-script#486\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix workflow status badges by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/497\"\u003eactions/github-script#497\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate usage of \u003ccode\u003eactions/upload-artifact\u003c/code\u003e by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/512\"\u003eactions/github-script#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClear up package name confusion by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/514\"\u003eactions/github-script#514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies with \u003ccode\u003enpm audit fix\u003c/code\u003e by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/515\"\u003eactions/github-script#515\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpecify that the used script is JavaScript by \u003ca href=\"https://github.com/timotk\"\u003e\u003ccode\u003e@​timotk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/478\"\u003eactions/github-script#478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Add Dependabot for NPM and Actions by \u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/472\"\u003eactions/github-script#472\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/3a2844b7e9c422d3c10d287c895573f7108da1b3\"\u003e\u003ccode\u003e3a2844b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/github-script/issues/700\"\u003e#700\u003c/a\u003e from actions/salmanmkc/expose-getoctokit + prepare re...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/ca10bbdd1a7739de09e99a200c7a59f5d73a4079\"\u003e\u003ccode\u003eca10bbd\u003c/code\u003e\u003c/a\u003e fix: use \u003ccode\u003e@​octokit/core/\u003c/code\u003etypes import for v7 compatibility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/86e48e20ac85c970ed1f96e718fd068173948b7b\"\u003e\u003ccode\u003e86e48e2\u003c/code\u003e\u003c/a\u003e merge: incorporate main branch changes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/c1084728b5b935ec4ddc1e4cee877b01797b3ff9\"\u003e\u003ccode\u003ec108472\u003c/code\u003e\u003c/a\u003e chore: rebuild dist for v9 upgrade and getOctokit factory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/afff112e4f8b57c718168af75b89ce00bc8d091d\"\u003e\u003ccode\u003eafff112\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/github-script/issues/712\"\u003e#712\u003c/a\u003e from actions/salmanmkc/deployment-false + fix user-ag...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/ff8117e5b78c415f814f39ad6998f424fee7b817\"\u003e\u003ccode\u003eff8117e\u003c/code\u003e\u003c/a\u003e ci: fix user-agent test to handle orchestration ID\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/81c6b7876079abe10ff715951c9fc7b3e1ab389d\"\u003e\u003ccode\u003e81c6b78\u003c/code\u003e\u003c/a\u003e ci: use deployment: false to suppress deployment noise from integration tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/3953caf8858d318f37b6cc53a9f5708859b5a7b7\"\u003e\u003ccode\u003e3953caf\u003c/code\u003e\u003c/a\u003e docs: update README examples from \u003ca href=\"https://github.com/v8\"\u003e\u003ccode\u003e@​v8\u003c/code\u003e\u003c/a\u003e to \u003ca href=\"https://github.com/v9\"\u003e\u003ccode\u003e@​v9\u003c/code\u003e\u003c/a\u003e, add getOctokit docs and v9 brea...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/c17d55b90dcdb3d554d0027a6c180a7adc2daf78\"\u003e\u003ccode\u003ec17d55b\u003c/code\u003e\u003c/a\u003e ci: add getOctokit integration test job\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/a047196d9a02fe92098771cafbb98c2f1814e408\"\u003e\u003ccode\u003ea047196\u003c/code\u003e\u003c/a\u003e test: add getOctokit integration tests via callAsyncFunction\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/github-script/compare/v7...v9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dependabot/fetch-metadata` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/frasermolyneux/portal-servers-integration/pull/977","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/frasermolyneux%2Fportal-servers-integration/issues/977","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/977/packages"}},{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-05-30T06:37:39.000Z","version_change":"2 → 3","issue":{"uuid":"4553577796","node_id":"PR_kwDOIx7ksM7g54uS","number":805,"state":"closed","title":"chore(deps): bump the github-actions group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":["frasermolyneux"],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-30T06:41:29.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-30T06:37:39.000Z","updated_at":"2026-05-30T06:41:31.000Z","time_to_close":230,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"github-actions","update_count":6,"packages":[{"name":"actions/checkout","old_version":"4","new_version":"6","repository_url":"https://github.com/actions/checkout"},{"name":"actions/dependency-review-action","old_version":"4","new_version":"5","repository_url":"https://github.com/actions/dependency-review-action"},{"name":"actions/github-script","old_version":"7","new_version":"9","repository_url":"https://github.com/actions/github-script"},{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"},{"name":"azure/login","old_version":"2","new_version":"3","repository_url":"https://github.com/azure/login"},{"name":"azure/cli","old_version":"2","new_version":"3","repository_url":"https://github.com/azure/cli"}],"path":null,"ecosystem":"actions"},"body":"Bumps the github-actions group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [actions/checkout](https://github.com/actions/checkout) | `4` | `6` |\n| [actions/dependency-review-action](https://github.com/actions/dependency-review-action) | `4` | `5` |\n| [actions/github-script](https://github.com/actions/github-script) | `7` | `9` |\n| [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) | `2` | `3` |\n| [azure/login](https://github.com/azure/login) | `2` | `3` |\n| [azure/cli](https://github.com/azure/cli) | `2` | `3` |\n\n\nUpdates `actions/checkout` from 4 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/releases\"\u003eactions/checkout's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev6-beta by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2298\"\u003eactions/checkout#2298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate readme/changelog for v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2311\"\u003eactions/checkout#2311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/checkout/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6-beta\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eUpdated persist-credentials to store the credentials under \u003ccode\u003e$RUNNER_TEMP\u003c/code\u003e instead of directly in the local git config.\u003c/p\u003e\n\u003cp\u003eThis requires a minimum Actions Runner version of \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.329.0\"\u003ev2.329.0\u003c/a\u003e to access the persisted credentials for \u003ca href=\"https://docs.github.com/en/actions/tutorials/use-containerized-services/create-a-docker-container-action\"\u003eDocker container action\u003c/a\u003e scenarios.\u003c/p\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5...v5.0.1\"\u003ehttps://github.com/actions/checkout/compare/v5...v5.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare v5.0.0 release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2238\"\u003eactions/checkout#2238\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v5.0.0\"\u003ehttps://github.com/actions/checkout/compare/v4...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v4.3.1\"\u003ehttps://github.com/actions/checkout/compare/v4...v4.3.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/blob/main/CHANGELOG.md\"\u003eactions/checkout's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev6.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix tag handling: preserve annotations and explicit fetch-tags by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2356\"\u003eactions/checkout#2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd worktree support for persist-credentials includeIf by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2327\"\u003eactions/checkout#2327\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdjust positioning of user email note and permissions heading by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2044\"\u003eactions/checkout#2044\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CODEOWNERS for actions by \u003ca href=\"https://github.com/TingluoHuang\"\u003e\u003ccode\u003e@​TingluoHuang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2224\"\u003eactions/checkout#2224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate package dependencies by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eurl-helper.ts\u003c/code\u003e now leverages well-known environment variables by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1941\"\u003eactions/checkout#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand unit test coverage for \u003ccode\u003eisGhes\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1946\"\u003eactions/checkout#1946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck out other refs/* by commit if provided, fall back to ref by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1924\"\u003eactions/checkout#1924\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ref and Commit outputs by \u003ca href=\"https://github.com/lucacome\"\u003e\u003ccode\u003e@​lucacome\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1180\"\u003eactions/checkout#1180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e- \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1777\"\u003eactions/checkout#1777\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1872\"\u003eactions/checkout#1872\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump the minor-npm-dependencies group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1739\"\u003eactions/checkout#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1697\"\u003eactions/checkout#1697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck out other refs/* by commit by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1774\"\u003eactions/checkout#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/checkout's own workflows to a known, good, stable version. by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1776\"\u003eactions/checkout#1776\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck platform to set archive extension appropriately by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1732\"\u003eactions/checkout#1732\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/de0fac2e4500dabe0009e67214ff5f5447ce83dd\"\u003e\u003ccode\u003ede0fac2\u003c/code\u003e\u003c/a\u003e Fix tag handling: preserve annotations and explicit fetch-tags (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2356\"\u003e#2356\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/064fe7f3312418007dea2b49a19844a9ee378f49\"\u003e\u003ccode\u003e064fe7f\u003c/code\u003e\u003c/a\u003e Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/8e8c483db84b4bee98b60c0593521ed34d9990e8\"\u003e\u003ccode\u003e8e8c483\u003c/code\u003e\u003c/a\u003e Clarify v6 README (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/033fa0dc0b82693d8986f1016a0ec2c5e7d9cbb1\"\u003e\u003ccode\u003e033fa0d\u003c/code\u003e\u003c/a\u003e Add worktree support for persist-credentials includeIf (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/c2d88d3ecc89a9ef08eebf45d9637801dcee7eb5\"\u003e\u003ccode\u003ec2d88d3\u003c/code\u003e\u003c/a\u003e Update all references from v5 and v4 to v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2314\"\u003e#2314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3\"\u003e\u003ccode\u003e1af3b93\u003c/code\u003e\u003c/a\u003e update readme/changelog for v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2311\"\u003e#2311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/71cf2267d89c5cb81562390fa70a37fa40b1305e\"\u003e\u003ccode\u003e71cf226\u003c/code\u003e\u003c/a\u003e v6-beta (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/069c6959146423d11cd0184e6accf28f9d45f06e\"\u003e\u003ccode\u003e069c695\u003c/code\u003e\u003c/a\u003e Persist creds to a separate file (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2286\"\u003e#2286\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493\"\u003e\u003ccode\u003eff7abcd\u003c/code\u003e\u003c/a\u003e Update README to include Node.js 24 support details and requirements (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2248\"\u003e#2248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/08c6903cd8c0fde910a37f88322edcfb5dd907a8\"\u003e\u003ccode\u003e08c6903\u003c/code\u003e\u003c/a\u003e Prepare v5.0.0 release (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/checkout/compare/v4...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/dependency-review-action` from 4 to 5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/dependency-review-action/releases\"\u003eactions/dependency-review-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.0.0\u003c/h2\u003e\n\u003cp\u003eThis is a new major version of the Dependency Review Action which updates the runtime to node24. This requires a minimum Actions Runner version \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003ev2.327.1\u003c/a\u003e to run.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd .github/copilot-instructions.md for Copilot coding agent by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1067\"\u003eactions/dependency-review-action#1067\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Node.js runtime from 20 to 24 by \u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump spdx-license-ids from 3.0.20 to 3.0.23 by \u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: bump actions/checkout from v4 to v6 in workflow examples by \u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: patched version display for advisories with non-strict semver ranges (e.g. Maven beta versions) by \u003ca href=\"https://github.com/tspascoal\"\u003e\u003ccode\u003e@​tspascoal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1076\"\u003eactions/dependency-review-action#1076\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eResolve security findings by \u003ca href=\"https://github.com/AshelyTC\"\u003e\u003ccode\u003e@​AshelyTC\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1094\"\u003eactions/dependency-review-action#1094\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5.0.0 release branch by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1098\"\u003eactions/dependency-review-action#1098\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eDependency Review Action 4.9.0\u003c/h2\u003e\n\u003cp\u003eThis feature release contains a couple of notable changes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThere is a new configuration option \u003ccode\u003eshow_patched_versions\u003c/code\u003e which will add a column to the output, showing the fix version of each vulnerable dependency. Thanks \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eRuns which do not display OpenSSF scorecards no longer fetch scorecard information; previously it was fetched regardless of whether or not it was displayed, causing unneccessary slowness. Great catch \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eThere are a couple of fixes to purl parsing which should improve match accuracy for \u003ccode\u003eallow-package-dependency\u003c/code\u003e lists, including case (in)sensitivity and url-encoded namespaces Thanks \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCompare normalized purls to account for encoding quirks by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1056\"\u003eactions/dependency-review-action#1056\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake purl comparisons case insensitive by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1057\"\u003eactions/dependency-review-action#1057\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeat: Add \u003ccode\u003ePatched Version\u003c/code\u003e to \u003ccode\u003eVulnerabilities\u003c/code\u003e summary by \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1045\"\u003eactions/dependency-review-action#1045\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: only get scorecard levels if user wants to see the OpenSSF scorecard by \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 10.1.0 to 10.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1058\"\u003eactions/dependency-review-action#1058\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1021\"\u003eactions/dependency-review-action#1021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates for release 4.9.0 by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1064\"\u003eactions/dependency-review-action#1064\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.8.3\u003c/h2\u003e\n\u003ch2\u003eDependency Review Action v4.8.3\u003c/h2\u003e\n\u003cp\u003eThis is a bugfix release that updates a number of upstream dependencies and includes a fix for the earlier feature that detected oversized summaries and upload them as artifacts, which could occasionally crash the action.\u003c/p\u003e\n\u003cp\u003eWe have also updated the release process to use a long-lived \u003ccode\u003ev4\u003c/code\u003e \u003cstrong\u003ebranch\u003c/strong\u003e for the action, instead of a force-pushed tag, which aligns better with git branching strategies; the change should be transparent to end users.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eGitHub Actions can't push to our protected main by \u003ca href=\"https://github.com/dangoor\"\u003e\u003ccode\u003e@​dangoor\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1017\"\u003eactions/dependency-review-action#1017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 9.1.0 to 10.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/995\"\u003eactions/dependency-review-action#995\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a1d282b36b6f3519aa1f3fc636f609c47dddb294\"\u003e\u003ccode\u003ea1d282b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1098\"\u003e#1098\u003c/a\u003e from actions/ahpook/v5-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/eb6c199c5a85c7387f1f0b02b3ba5c6364740695\"\u003e\u003ccode\u003eeb6c199\u003c/code\u003e\u003c/a\u003e update examples to show \u003ca href=\"https://github.com/v5\"\u003e\u003ccode\u003e@​v5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/3943c2c5beaaaf1806eb3758273c203dabcbf89c\"\u003e\u003ccode\u003e3943c2c\u003c/code\u003e\u003c/a\u003e v5.0.0 release branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/454943c880b147adbfe7de0cdd3ece1c00882033\"\u003e\u003ccode\u003e454943c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1094\"\u003e#1094\u003c/a\u003e from actions/ashelytc/security-findings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/6d92a1228e9e9db334f02c09f84fe9217d2b4463\"\u003e\u003ccode\u003e6d92a12\u003c/code\u003e\u003c/a\u003e revert \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a8e5a7e93695b41abf6d1083cd220bee39a720f0\"\u003e\u003ccode\u003ea8e5a7e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1076\"\u003e#1076\u003c/a\u003e from tspascoal/fix-version-matching-for-non-string-s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/b6b7079031ef4ed61656c221988f1f3bcbf35101\"\u003e\u003ccode\u003eb6b7079\u003c/code\u003e\u003c/a\u003e update \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e to 8.40.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/821a21dd691f162c4c5c2e9754a344accde9a208\"\u003e\u003ccode\u003e821a21d\u003c/code\u003e\u003c/a\u003e update more dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/05aaaae45cf4c420de012addf2a72e3435ddaa63\"\u003e\u003ccode\u003e05aaaae\u003c/code\u003e\u003c/a\u003e run npm audit fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/55d3e754501fc13c84b95637ce51f135012d41ea\"\u003e\u003ccode\u003e55d3e75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1077\"\u003e#1077\u003c/a\u003e from Marukome0743/docs/checkout\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4...v5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/github-script` from 7 to 9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/github-script/releases\"\u003eactions/github-script's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eNew features:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003egetOctokit\u003c/code\u003e factory function\u003c/strong\u003e — Available directly in the script context. Create additional authenticated Octokit clients with different tokens for multi-token workflows, GitHub App tokens, and cross-org access. See \u003ca href=\"https://github.com/actions/github-script#creating-additional-clients-with-getoctokit\"\u003eCreating additional clients with \u003ccode\u003egetOctokit\u003c/code\u003e\u003c/a\u003e for details and examples.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eOrchestration ID in user-agent\u003c/strong\u003e — The \u003ccode\u003eACTIONS_ORCHESTRATION_ID\u003c/code\u003e environment variable is automatically appended to the user-agent string for request tracing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003erequire('@actions/github')\u003c/code\u003e no longer works in scripts.\u003c/strong\u003e The upgrade to \u003ccode\u003e@actions/github\u003c/code\u003e v9 (ESM-only) means \u003ccode\u003erequire('@actions/github')\u003c/code\u003e will fail at runtime. If you previously used patterns like \u003ccode\u003econst { getOctokit } = require('@actions/github')\u003c/code\u003e to create secondary clients, use the new injected \u003ccode\u003egetOctokit\u003c/code\u003e function instead — it's available directly in the script context with no imports needed.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egetOctokit\u003c/code\u003e is now an injected function parameter. Scripts that declare \u003ccode\u003econst getOctokit = ...\u003c/code\u003e or \u003ccode\u003elet getOctokit = ...\u003c/code\u003e will get a \u003ccode\u003eSyntaxError\u003c/code\u003e because JavaScript does not allow \u003ccode\u003econst\u003c/code\u003e/\u003ccode\u003elet\u003c/code\u003e redeclaration of function parameters. Use the injected \u003ccode\u003egetOctokit\u003c/code\u003e directly, or use \u003ccode\u003evar getOctokit = ...\u003c/code\u003e if you need to redeclare it.\u003c/li\u003e\n\u003cli\u003eIf your script accesses other \u003ccode\u003e@actions/github\u003c/code\u003e internals beyond the standard \u003ccode\u003egithub\u003c/code\u003e/\u003ccode\u003eoctokit\u003c/code\u003e client, you may need to update those references for v9 compatibility.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ACTIONS_ORCHESTRATION_ID to user-agent string by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/695\"\u003eactions/github-script#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: use deployment: false for integration test environments by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/712\"\u003eactions/github-script#712\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: add getOctokit to script context, upgrade \u003ccode\u003e@​actions/github\u003c/code\u003e v9, \u003ccode\u003e@​octokit/core\u003c/code\u003e v7, and related packages by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/700\"\u003eactions/github-script#700\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/695\"\u003eactions/github-script#695\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/github-script/compare/v8.0.0...v9.0.0\"\u003ehttps://github.com/actions/github-script/compare/v8.0.0...v9.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Node.js version support to 24.x by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/637\"\u003eactions/github-script#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME for updating actions/github-script from v7 to v8 by \u003ca href=\"https://github.com/sneha-krip\"\u003e\u003ccode\u003e@​sneha-krip\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/653\"\u003eactions/github-script#653\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/637\"\u003eactions/github-script#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sneha-krip\"\u003e\u003ccode\u003e@​sneha-krip\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/653\"\u003eactions/github-script#653\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/github-script/compare/v7.1.0...v8.0.0\"\u003ehttps://github.com/actions/github-script/compare/v7.1.0...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade husky to v9 by \u003ca href=\"https://github.com/benelan\"\u003e\u003ccode\u003e@​benelan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/482\"\u003eactions/github-script#482\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd workflow file for publishing releases to immutable action package by \u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/485\"\u003eactions/github-script#485\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade IA Publish by \u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/486\"\u003eactions/github-script#486\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix workflow status badges by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/497\"\u003eactions/github-script#497\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate usage of \u003ccode\u003eactions/upload-artifact\u003c/code\u003e by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/512\"\u003eactions/github-script#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClear up package name confusion by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/514\"\u003eactions/github-script#514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies with \u003ccode\u003enpm audit fix\u003c/code\u003e by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/515\"\u003eactions/github-script#515\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpecify that the used script is JavaScript by \u003ca href=\"https://github.com/timotk\"\u003e\u003ccode\u003e@​timotk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/478\"\u003eactions/github-script#478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Add Dependabot for NPM and Actions by \u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/472\"\u003eactions/github-script#472\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/3a2844b7e9c422d3c10d287c895573f7108da1b3\"\u003e\u003ccode\u003e3a2844b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/github-script/issues/700\"\u003e#700\u003c/a\u003e from actions/salmanmkc/expose-getoctokit + prepare re...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/ca10bbdd1a7739de09e99a200c7a59f5d73a4079\"\u003e\u003ccode\u003eca10bbd\u003c/code\u003e\u003c/a\u003e fix: use \u003ccode\u003e@​octokit/core/\u003c/code\u003etypes import for v7 compatibility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/86e48e20ac85c970ed1f96e718fd068173948b7b\"\u003e\u003ccode\u003e86e48e2\u003c/code\u003e\u003c/a\u003e merge: incorporate main branch changes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/c1084728b5b935ec4ddc1e4cee877b01797b3ff9\"\u003e\u003ccode\u003ec108472\u003c/code\u003e\u003c/a\u003e chore: rebuild dist for v9 upgrade and getOctokit factory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/afff112e4f8b57c718168af75b89ce00bc8d091d\"\u003e\u003ccode\u003eafff112\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/github-script/issues/712\"\u003e#712\u003c/a\u003e from actions/salmanmkc/deployment-false + fix user-ag...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/ff8117e5b78c415f814f39ad6998f424fee7b817\"\u003e\u003ccode\u003eff8117e\u003c/code\u003e\u003c/a\u003e ci: fix user-agent test to handle orchestration ID\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/81c6b7876079abe10ff715951c9fc7b3e1ab389d\"\u003e\u003ccode\u003e81c6b78\u003c/code\u003e\u003c/a\u003e ci: use deployment: false to suppress deployment noise from integration tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/3953caf8858d318f37b6cc53a9f5708859b5a7b7\"\u003e\u003ccode\u003e3953caf\u003c/code\u003e\u003c/a\u003e docs: update README examples from \u003ca href=\"https://github.com/v8\"\u003e\u003ccode\u003e@​v8\u003c/code\u003e\u003c/a\u003e to \u003ca href=\"https://github.com/v9\"\u003e\u003ccode\u003e@​v9\u003c/code\u003e\u003c/a\u003e, add getOctokit docs and v9 brea...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/c17d55b90dcdb3d554d0027a6c180a7adc2daf78\"\u003e\u003ccode\u003ec17d55b\u003c/code\u003e\u003c/a\u003e ci: add getOctokit integration test job\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/a047196d9a02fe92098771cafbb98c2f1814e408\"\u003e\u003ccode\u003ea047196\u003c/code\u003e\u003c/a\u003e test: add getOctokit integration tests via callAsyncFunction\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/github-script/compare/v7...v9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dependabot/fetch-metadata` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `azure/login` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/azure/login/releases\"\u003eazure/login's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAzure Login Action v3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupgrade nodejs from 20 to 24 and update dependencies by \u003ca href=\"https://github.com/YanaXu\"\u003e\u003ccode\u003e@​YanaXu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/578\"\u003eAzure/login#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/login/compare/v2.3.0...v3\"\u003ehttps://github.com/Azure/login/compare/v2.3.0...v3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAzure Login Action v3.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade nodejs from 20 to 24 and update dependencies by \u003ca href=\"https://github.com/YanaXu\"\u003e\u003ccode\u003e@​YanaXu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/578\"\u003eAzure/login#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/login/compare/v2.3.0...v3.0.0\"\u003ehttps://github.com/Azure/login/compare/v2.3.0...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAzure Login Action v2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace the invalid link for the GitHub Action Doc by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/510\"\u003eAzure/login#510\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump braces from 3.0.2 to 3.0.3 by \u003ca href=\"https://github.com/YanaXu\"\u003e\u003ccode\u003e@​YanaXu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/511\"\u003eAzure/login#511\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMention \u0026quot;allow-no-subscriptions\u0026quot; in missing subscriptionId error by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/512\"\u003eAzure/login#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLog more claims for OIDC login by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/520\"\u003eAzure/login#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse \u003ccode\u003e--client-id\u003c/code\u003e for user-assigned managed identity authentication in Azure CLI v2.69.0 or later. by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/514\"\u003eAzure/login#514\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/login/compare/v2.2.0...v2.3.0\"\u003ehttps://github.com/Azure/login/compare/v2.2.0...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAzure Login Action v2.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace \u003ccode\u003eaz --version\u003c/code\u003e with \u003ccode\u003eaz version\u003c/code\u003e by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/450\"\u003eAzure/login#450\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate documentation for setting audience when environment is set by \u003ca href=\"https://github.com/jcantosz\"\u003e\u003ccode\u003e@​jcantosz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/455\"\u003eAzure/login#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/azure/login/issues/459\"\u003e#459\u003c/a\u003e: Errors when registering cloud profile for AzureStack by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/466\"\u003eAzure/login#466\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix typo by \u003ca href=\"https://github.com/KronosTheLate\"\u003e\u003ccode\u003e@​KronosTheLate\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/483\"\u003eAzure/login#483\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emove pre cleanup to main and add pre-if and post-if by \u003ca href=\"https://github.com/YanaXu\"\u003e\u003ccode\u003e@​YanaXu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/484\"\u003eAzure/login#484\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jcantosz\"\u003e\u003ccode\u003e@​jcantosz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Azure/login/pull/455\"\u003eAzure/login#455\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KronosTheLate\"\u003e\u003ccode\u003e@​KronosTheLate\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Azure/login/pull/483\"\u003eAzure/login#483\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/login/compare/v2.1.1...v2.2.0\"\u003ehttps://github.com/Azure/login/compare/v2.1.1...v2.2.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.1.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDisable information output in Connect-AzAccount by \u003ca href=\"https://github.com/YanaXu\"\u003e\u003ccode\u003e@​YanaXu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/login/pull/448\"\u003eAzure/login#448\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jiasli\"\u003e\u003ccode\u003e@​jiasli\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Azure/login/pull/438\"\u003eAzure/login#438\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isra-fel\"\u003e\u003ccode\u003e@​isra-fel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Azure/login/pull/446\"\u003eAzure/login#446\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/login/compare/v2.1.0...v2.1.1\"\u003ehttps://github.com/Azure/login/compare/v2.1.0...v2.1.1\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/login/commit/532459ea530d8321f2fb9bb10d1e0bcf23869a43\"\u003e\u003ccode\u003e532459e\u003c/code\u003e\u003c/a\u003e prepare release v3.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/login/commit/893aa84218880a3fafd9a6d332ff1aea7108f1fe\"\u003e\u003ccode\u003e893aa84\u003c/code\u003e\u003c/a\u003e upgrade Azure Login Action version in README (\u003ca href=\"https://redirect.github.com/azure/login/issues/579\"\u003e#579\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/login/commit/ce6a9ff965c6b99ee966eee159baa8c35e135635\"\u003e\u003ccode\u003ece6a9ff\u003c/code\u003e\u003c/a\u003e upgrade nodejs from 20 to 24 and update dependencies (\u003ca href=\"https://redirect.github.com/azure/login/issues/578\"\u003e#578\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/azure/login/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `azure/cli` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/azure/cli/releases\"\u003eazure/cli's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eGitHub Action for Azure CLI v3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated to use node24 by \u003ca href=\"https://github.com/thomas-temby\"\u003e\u003ccode\u003e@​thomas-temby\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/197\"\u003eAzure/cli#197\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/cli/compare/v2.2.0...v3\"\u003ehttps://github.com/Azure/cli/compare/v2.2.0...v3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eGitHub Action for Azure CLI v3.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated to use node24 by \u003ca href=\"https://github.com/thomas-temby\"\u003e\u003ccode\u003e@​thomas-temby\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/197\"\u003eAzure/cli#197\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/cli/compare/v2.2.0...v3.0.0\"\u003ehttps://github.com/Azure/cli/compare/v2.2.0...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eGitHub Action for Azure CLI v2.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMount \u003ccode\u003eAZURE_CONFIG_DIR\u003c/code\u003e folder instead of \u003ccode\u003e~/.azure\u003c/code\u003e by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/176\"\u003eAzure/cli#176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFIX: Broken links by appended dot azcliversion errors by \u003ca href=\"https://github.com/nselpriv\"\u003e\u003ccode\u003e@​nselpriv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/178\"\u003eAzure/cli#178\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nselpriv\"\u003e\u003ccode\u003e@​nselpriv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/178\"\u003eAzure/cli#178\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/cli/compare/v2.1.0...v2.2.0\"\u003ehttps://github.com/Azure/cli/compare/v2.1.0...v2.2.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eGitHub Action for Azure CLI v2.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: add yaml syntax highlighting to workflow examples by \u003ca href=\"https://github.com/baysideengineer\"\u003e\u003ccode\u003e@​baysideengineer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/141\"\u003eAzure/cli#141\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/azure/cli/issues/153\"\u003e#153\u003c/a\u003e: Prevent stdout cutoff in Azure CLI versions by \u003ca href=\"https://github.com/MoChilia\"\u003e\u003ccode\u003e@​MoChilia\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/154\"\u003eAzure/cli#154\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/baysideengineer\"\u003e\u003ccode\u003e@​baysideengineer\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/141\"\u003eAzure/cli#141\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/isra-fel\"\u003e\u003ccode\u003e@​isra-fel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Azure/cli/pull/151\"\u003eAzure/cli#151\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Azure/cli/compare/v2.0.0...v2.1.0\"\u003ehttps://github.com/Azure/cli/compare/v2.0.0...v2.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/cli/blob/master/ReleaseProcess.md\"\u003eazure/cli's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003eReleasing a new version\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eSemanting versioning is used to release different versions of the action. Following steps are to be followed :\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eCreate a new branch for every major version. \u003cbr /\u003e\nExample, releases/v1, releases/v2.\u003c/li\u003e\n\u003cli\u003eFor every minor and patch release for a major version, update the corresponding release branch. \u003cbr /\u003e\nExample, for releasing v1.1.1, update releases/v1.\u003c/li\u003e\n\u003cli\u003eCreate tags for every new release (major/minor/patch). \u003cbr /\u003e\nExample,v1.0.0. , v1.0.1, v2.0.1, etc. and also have tags like v1, v2 for every major version release.\u003c/li\u003e\n\u003cli\u003eOn releasing minor and patch versions, update the tag of the corresponding major version. \u003cbr /\u003e\nExample, for releasing v1.0.1, update the v1 tag to point to the ref of the current release. \u003cbr /\u003e\nThe following commands are to be run on the release\\v1 branch so that it picks the latest commit and updates the v1 tag accordingly :\n(Ensure that you are on same commit locally as you want to release)\u003c/li\u003e\n\u003c/ol\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003egit tag -fa v1 -m \u0026quot;Update v1 tag\u0026quot;\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egit push origin v1 --force\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/cli/commit/9eb25b8360668fb0ecbafa808d40e2197b2f5f52\"\u003e\u003ccode\u003e9eb25b8\u003c/code\u003e\u003c/a\u003e Release v3.0.0 (\u003ca href=\"https://redirect.github.com/azure/cli/issues/199\"\u003e#199\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/cli/commit/c1ad80439ad9dfdbdcb53dccd4af40c9737d9a35\"\u003e\u003ccode\u003ec1ad804\u003c/code\u003e\u003c/a\u003e Add changes (\u003ca href=\"https://redirect.github.com/azure/cli/issues/198\"\u003e#198\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/cli/commit/41fca1b4f839bddb83a7fc3319db2e9db28ed42a\"\u003e\u003ccode\u003e41fca1b\u003c/code\u003e\u003c/a\u003e Updated to use node24 (\u003ca href=\"https://redirect.github.com/azure/cli/issues/197\"\u003e#197\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/cli/commit/cbea6ec14de255853c4e94dcf860771c944d4a78\"\u003e\u003ccode\u003ecbea6ec\u003c/code\u003e\u003c/a\u003e change the assignee (\u003ca href=\"https://redirect.github.com/azure/cli/issues/191\"\u003e#191\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/azure/cli/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/frasermolyneux/portal-sync/pull/805","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/frasermolyneux%2Fportal-sync/issues/805","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/805/packages"}},{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-05-29T22:41:56.000Z","version_change":"2 → 3","issue":{"uuid":"4552066984","node_id":"PR_kwDOSrwuJc7g1CM7","number":1,"state":"closed","title":"chore(deps): Bump the actions group across 1 directory with 11 updates","user":"dependabot[bot]","labels":["ci"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-30T17:59:57.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-29T22:41:56.000Z","updated_at":"2026-05-30T17:59:59.000Z","time_to_close":69481,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","group_name":"actions","update_count":11,"packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"},{"name":"actions/checkout","old_version":"4","new_version":"6","repository_url":"https://github.com/actions/checkout"},{"name":"actions/setup-python","old_version":"5","new_version":"6","repository_url":"https://github.com/actions/setup-python"},{"name":"actions/dependency-review-action","old_version":"4","new_version":"5","repository_url":"https://github.com/actions/dependency-review-action"},{"name":"actions/labeler","old_version":"5","new_version":"6","repository_url":"https://github.com/actions/labeler"},{"name":"peter-evans/create-pull-request","old_version":"6","new_version":"8","repository_url":"https://github.com/peter-evans/create-pull-request"},{"name":"googleapis/release-please-action","old_version":"4","new_version":"5","repository_url":"https://github.com/googleapis/release-please-action"},{"name":"ossf/scorecard-action","old_version":"2.4.0","new_version":"2.4.3","repository_url":"https://github.com/ossf/scorecard-action"},{"name":"actions/upload-artifact","old_version":"4","new_version":"7","repository_url":"https://github.com/actions/upload-artifact"},{"name":"github/codeql-action","old_version":"3","new_version":"4","repository_url":"https://github.com/github/codeql-action"},{"name":"actions/stale","old_version":"9","new_version":"10","repository_url":"https://github.com/actions/stale"}],"path":null,"ecosystem":"actions"},"body":"Bumps the actions group with 11 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) | `2` | `3` |\n| [actions/checkout](https://github.com/actions/checkout) | `4` | `6` |\n| [actions/setup-python](https://github.com/actions/setup-python) | `5` | `6` |\n| [actions/dependency-review-action](https://github.com/actions/dependency-review-action) | `4` | `5` |\n| [actions/labeler](https://github.com/actions/labeler) | `5` | `6` |\n| [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) | `6` | `8` |\n| [googleapis/release-please-action](https://github.com/googleapis/release-please-action) | `4` | `5` |\n| [ossf/scorecard-action](https://github.com/ossf/scorecard-action) | `2.4.0` | `2.4.3` |\n| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4` | `7` |\n| [github/codeql-action](https://github.com/github/codeql-action) | `3` | `4` |\n| [actions/stale](https://github.com/actions/stale) | `9` | `10` |\n\n\nUpdates `dependabot/fetch-metadata` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/checkout` from 4 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/releases\"\u003eactions/checkout's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev6-beta by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2298\"\u003eactions/checkout#2298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate readme/changelog for v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2311\"\u003eactions/checkout#2311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/checkout/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6-beta\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eUpdated persist-credentials to store the credentials under \u003ccode\u003e$RUNNER_TEMP\u003c/code\u003e instead of directly in the local git config.\u003c/p\u003e\n\u003cp\u003eThis requires a minimum Actions Runner version of \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.329.0\"\u003ev2.329.0\u003c/a\u003e to access the persisted credentials for \u003ca href=\"https://docs.github.com/en/actions/tutorials/use-containerized-services/create-a-docker-container-action\"\u003eDocker container action\u003c/a\u003e scenarios.\u003c/p\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5...v5.0.1\"\u003ehttps://github.com/actions/checkout/compare/v5...v5.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare v5.0.0 release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2238\"\u003eactions/checkout#2238\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v5.0.0\"\u003ehttps://github.com/actions/checkout/compare/v4...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v4.3.1\"\u003ehttps://github.com/actions/checkout/compare/v4...v4.3.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/blob/main/CHANGELOG.md\"\u003eactions/checkout's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev6.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix tag handling: preserve annotations and explicit fetch-tags by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2356\"\u003eactions/checkout#2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd worktree support for persist-credentials includeIf by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2327\"\u003eactions/checkout#2327\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdjust positioning of user email note and permissions heading by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2044\"\u003eactions/checkout#2044\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CODEOWNERS for actions by \u003ca href=\"https://github.com/TingluoHuang\"\u003e\u003ccode\u003e@​TingluoHuang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2224\"\u003eactions/checkout#2224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate package dependencies by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eurl-helper.ts\u003c/code\u003e now leverages well-known environment variables by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1941\"\u003eactions/checkout#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand unit test coverage for \u003ccode\u003eisGhes\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1946\"\u003eactions/checkout#1946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck out other refs/* by commit if provided, fall back to ref by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1924\"\u003eactions/checkout#1924\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ref and Commit outputs by \u003ca href=\"https://github.com/lucacome\"\u003e\u003ccode\u003e@​lucacome\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1180\"\u003eactions/checkout#1180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e- \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1777\"\u003eactions/checkout#1777\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1872\"\u003eactions/checkout#1872\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump the minor-npm-dependencies group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1739\"\u003eactions/checkout#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1697\"\u003eactions/checkout#1697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck out other refs/* by commit by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1774\"\u003eactions/checkout#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/checkout's own workflows to a known, good, stable version. by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1776\"\u003eactions/checkout#1776\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck platform to set archive extension appropriately by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1732\"\u003eactions/checkout#1732\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/de0fac2e4500dabe0009e67214ff5f5447ce83dd\"\u003e\u003ccode\u003ede0fac2\u003c/code\u003e\u003c/a\u003e Fix tag handling: preserve annotations and explicit fetch-tags (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2356\"\u003e#2356\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/064fe7f3312418007dea2b49a19844a9ee378f49\"\u003e\u003ccode\u003e064fe7f\u003c/code\u003e\u003c/a\u003e Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/8e8c483db84b4bee98b60c0593521ed34d9990e8\"\u003e\u003ccode\u003e8e8c483\u003c/code\u003e\u003c/a\u003e Clarify v6 README (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/033fa0dc0b82693d8986f1016a0ec2c5e7d9cbb1\"\u003e\u003ccode\u003e033fa0d\u003c/code\u003e\u003c/a\u003e Add worktree support for persist-credentials includeIf (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/c2d88d3ecc89a9ef08eebf45d9637801dcee7eb5\"\u003e\u003ccode\u003ec2d88d3\u003c/code\u003e\u003c/a\u003e Update all references from v5 and v4 to v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2314\"\u003e#2314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3\"\u003e\u003ccode\u003e1af3b93\u003c/code\u003e\u003c/a\u003e update readme/changelog for v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2311\"\u003e#2311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/71cf2267d89c5cb81562390fa70a37fa40b1305e\"\u003e\u003ccode\u003e71cf226\u003c/code\u003e\u003c/a\u003e v6-beta (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/069c6959146423d11cd0184e6accf28f9d45f06e\"\u003e\u003ccode\u003e069c695\u003c/code\u003e\u003c/a\u003e Persist creds to a separate file (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2286\"\u003e#2286\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493\"\u003e\u003ccode\u003eff7abcd\u003c/code\u003e\u003c/a\u003e Update README to include Node.js 24 support details and requirements (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2248\"\u003e#2248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/08c6903cd8c0fde910a37f88322edcfb5dd907a8\"\u003e\u003ccode\u003e08c6903\u003c/code\u003e\u003c/a\u003e Prepare v5.0.0 release (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/checkout/compare/v4...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/setup-python` from 5 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/setup-python/releases\"\u003eactions/setup-python's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1164\"\u003eactions/setup-python#1164\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eMake sure your runner is on version v2.327.1 or later to ensure compatibility with this release. \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eSee Release Notes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eEnhancements:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for \u003ccode\u003epip-version\u003c/code\u003e  by \u003ca href=\"https://github.com/priyagupta108\"\u003e\u003ccode\u003e@​priyagupta108\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1129\"\u003eactions/setup-python#1129\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnhance reading from .python-version by \u003ca href=\"https://github.com/krystof-k\"\u003e\u003ccode\u003e@​krystof-k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/787\"\u003eactions/setup-python#787\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd version parsing from Pipfile by \u003ca href=\"https://github.com/aradkdj\"\u003e\u003ccode\u003e@​aradkdj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1067\"\u003eactions/setup-python#1067\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eClarify pythonLocation behaviour for PyPy and GraalPy in environment variables by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1183\"\u003eactions/setup-python#1183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eChange missing cache directory error to warning  by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1182\"\u003eactions/setup-python#1182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Architecture-Specific PATH Management for Python with --user Flag on Windows by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1122\"\u003eactions/setup-python#1122\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInclude python version in PyPy python-version output by \u003ca href=\"https://github.com/cdce8p\"\u003e\u003ccode\u003e@​cdce8p\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1110\"\u003eactions/setup-python#1110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate docs: clarification on pip authentication with setup-python by \u003ca href=\"https://github.com/priya-kinthali\"\u003e\u003ccode\u003e@​priya-kinthali\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1156\"\u003eactions/setup-python#1156\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency updates:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade idna from 2.9 to 3.7 in /\u003cstrong\u003etests\u003c/strong\u003e/data by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/843\"\u003eactions/setup-python#843\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade form-data to fix critical vulnerabilities \u003ca href=\"https://redirect.github.com/actions/setup-python/issues/182\"\u003e#182\u003c/a\u003e \u0026amp; \u003ca href=\"https://redirect.github.com/actions/setup-python/issues/183\"\u003e#183\u003c/a\u003e by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1163\"\u003eactions/setup-python#1163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade setuptools to 78.1.1 to fix path traversal vulnerability in PackageIndex.download by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1165\"\u003eactions/setup-python#1165\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1181\"\u003eactions/setup-python#1181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/tool-cache\u003c/code\u003e from 2.0.1 to 2.0.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1095\"\u003eactions/setup-python#1095\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/krystof-k\"\u003e\u003ccode\u003e@​krystof-k\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/787\"\u003eactions/setup-python#787\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cdce8p\"\u003e\u003ccode\u003e@​cdce8p\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1110\"\u003eactions/setup-python#1110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aradkdj\"\u003e\u003ccode\u003e@​aradkdj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1067\"\u003eactions/setup-python#1067\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-python/compare/v5...v6.0.0\"\u003ehttps://github.com/actions/setup-python/compare/v5...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWorkflow updates related to Ubuntu 20.04 by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1065\"\u003eactions/setup-python#1065\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for Candidate Not Iterable Error by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1082\"\u003eactions/setup-python#1082\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade semver and \u003ccode\u003e@​types/semver\u003c/code\u003e by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1091\"\u003eactions/setup-python#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 2.8.8 to 3.5.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1046\"\u003eactions/setup-python#1046\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade ts-jest from 29.1.2 to 29.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1081\"\u003eactions/setup-python#1081\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-python/compare/v5...v5.6.0\"\u003ehttps://github.com/actions/setup-python/compare/v5...v5.6.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eEnhancements:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport free threaded Python versions like '3.13t' by \u003ca href=\"https://github.com/colesbury\"\u003e\u003ccode\u003e@​colesbury\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/973\"\u003eactions/setup-python#973\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnhance Workflows: Include ubuntu-arm runners, Add e2e Testing for free threaded and Upgrade \u003ccode\u003e@​action/cache\u003c/code\u003e from 4.0.0 to 4.0.3 by \u003ca href=\"https://github.com/priya-kinthali\"\u003e\u003ccode\u003e@​priya-kinthali\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1056\"\u003eactions/setup-python#1056\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for .tool-versions file in setup-python by \u003ca href=\"https://github.com/mahabaleshwars\"\u003e\u003ccode\u003e@​mahabaleshwars\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1043\"\u003eactions/setup-python#1043\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix architecture for pypy on Linux ARM64 by \u003ca href=\"https://github.com/mayeut\"\u003e\u003ccode\u003e@​mayeut\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1011\"\u003eactions/setup-python#1011\u003c/a\u003e\nThis update maps arm64 to aarch64 for Linux ARM64 PyPy installations.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/a309ff8b426b58ec0e2a45f0f869d46889d02405\"\u003e\u003ccode\u003ea309ff8\u003c/code\u003e\u003c/a\u003e Bump urllib3 from 2.6.0 to 2.6.3 in /\u003cstrong\u003etests\u003c/strong\u003e/data (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1264\"\u003e#1264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/bfe8cc55a7890e3d6672eda6460ef37bfcc70755\"\u003e\u003ccode\u003ebfe8cc5\u003c/code\u003e\u003c/a\u003e Upgrade \u003ca href=\"https://github.com/actions\"\u003e\u003ccode\u003e@​actions\u003c/code\u003e\u003c/a\u003e dependencies to Node 24 compatible versions (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1259\"\u003e#1259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/4f41a90a1f38628c7ccc608d05fbafe701bc20ae\"\u003e\u003ccode\u003e4f41a90\u003c/code\u003e\u003c/a\u003e Bump urllib3 from 2.5.0 to 2.6.0 in /\u003cstrong\u003etests\u003c/strong\u003e/data (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1253\"\u003e#1253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/83679a892e2d95755f2dac6acb0bfd1e9ac5d548\"\u003e\u003ccode\u003e83679a8\u003c/code\u003e\u003c/a\u003e Bump \u003ccode\u003e@​types/node\u003c/code\u003e from 24.1.0 to 24.9.1 and update macos-13 to macos-15-intel ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/bfc4944b43a5d84377eca3cf6ab5b7992ba61923\"\u003e\u003ccode\u003ebfc4944\u003c/code\u003e\u003c/a\u003e Bump prettier from 3.5.3 to 3.6.2 (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1234\"\u003e#1234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/97aeb3efb8a852c559869050c7fb175b4efcc8cf\"\u003e\u003ccode\u003e97aeb3e\u003c/code\u003e\u003c/a\u003e Bump requests from 2.32.2 to 2.32.4 in /\u003cstrong\u003etests\u003c/strong\u003e/data (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1130\"\u003e#1130\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/443da59188462e2402e2942686db5aa6723f4bed\"\u003e\u003ccode\u003e443da59\u003c/code\u003e\u003c/a\u003e Bump actions/publish-action from 0.3.0 to 0.4.0 \u0026amp; Documentation update for pi...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/cfd55ca82492758d853442341ad4d8010466803a\"\u003e\u003ccode\u003ecfd55ca\u003c/code\u003e\u003c/a\u003e graalpy: add graalpy early-access and windows builds (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/880\"\u003e#880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/bba65e51ff35d50c6dbaaacd8a4681db13aa7cb4\"\u003e\u003ccode\u003ebba65e5\u003c/code\u003e\u003c/a\u003e Bump typescript from 5.4.2 to 5.9.3 and update docs/advanced-usage.md (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1094\"\u003e#1094\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/18566f86b301499665bd3eb1a2247e0849c64fa5\"\u003e\u003ccode\u003e18566f8\u003c/code\u003e\u003c/a\u003e Improve wording and \u0026quot;fix example\u0026quot; (remove 3.13) on testing against pre-releas...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/setup-python/compare/v5...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/dependency-review-action` from 4 to 5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/dependency-review-action/releases\"\u003eactions/dependency-review-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.0.0\u003c/h2\u003e\n\u003cp\u003eThis is a new major version of the Dependency Review Action which updates the runtime to node24. This requires a minimum Actions Runner version \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003ev2.327.1\u003c/a\u003e to run.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd .github/copilot-instructions.md for Copilot coding agent by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1067\"\u003eactions/dependency-review-action#1067\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Node.js runtime from 20 to 24 by \u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump spdx-license-ids from 3.0.20 to 3.0.23 by \u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: bump actions/checkout from v4 to v6 in workflow examples by \u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: patched version display for advisories with non-strict semver ranges (e.g. Maven beta versions) by \u003ca href=\"https://github.com/tspascoal\"\u003e\u003ccode\u003e@​tspascoal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1076\"\u003eactions/dependency-review-action#1076\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eResolve security findings by \u003ca href=\"https://github.com/AshelyTC\"\u003e\u003ccode\u003e@​AshelyTC\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1094\"\u003eactions/dependency-review-action#1094\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5.0.0 release branch by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1098\"\u003eactions/dependency-review-action#1098\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eDependency Review Action 4.9.0\u003c/h2\u003e\n\u003cp\u003eThis feature release contains a couple of notable changes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThere is a new configuration option \u003ccode\u003eshow_patched_versions\u003c/code\u003e which will add a column to the output, showing the fix version of each vulnerable dependency. Thanks \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eRuns which do not display OpenSSF scorecards no longer fetch scorecard information; previously it was fetched regardless of whether or not it was displayed, causing unneccessary slowness. Great catch \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eThere are a couple of fixes to purl parsing which should improve match accuracy for \u003ccode\u003eallow-package-dependency\u003c/code\u003e lists, including case (in)sensitivity and url-encoded namespaces Thanks \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCompare normalized purls to account for encoding quirks by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1056\"\u003eactions/dependency-review-action#1056\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake purl comparisons case insensitive by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1057\"\u003eactions/dependency-review-action#1057\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeat: Add \u003ccode\u003ePatched Version\u003c/code\u003e to \u003ccode\u003eVulnerabilities\u003c/code\u003e summary by \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1045\"\u003eactions/dependency-review-action#1045\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: only get scorecard levels if user wants to see the OpenSSF scorecard by \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 10.1.0 to 10.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1058\"\u003eactions/dependency-review-action#1058\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1021\"\u003eactions/dependency-review-action#1021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates for release 4.9.0 by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1064\"\u003eactions/dependency-review-action#1064\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.8.3\u003c/h2\u003e\n\u003ch2\u003eDependency Review Action v4.8.3\u003c/h2\u003e\n\u003cp\u003eThis is a bugfix release that updates a number of upstream dependencies and includes a fix for the earlier feature that detected oversized summaries and upload them as artifacts, which could occasionally crash the action.\u003c/p\u003e\n\u003cp\u003eWe have also updated the release process to use a long-lived \u003ccode\u003ev4\u003c/code\u003e \u003cstrong\u003ebranch\u003c/strong\u003e for the action, instead of a force-pushed tag, which aligns better with git branching strategies; the change should be transparent to end users.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eGitHub Actions can't push to our protected main by \u003ca href=\"https://github.com/dangoor\"\u003e\u003ccode\u003e@​dangoor\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1017\"\u003eactions/dependency-review-action#1017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 9.1.0 to 10.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/995\"\u003eactions/dependency-review-action#995\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a1d282b36b6f3519aa1f3fc636f609c47dddb294\"\u003e\u003ccode\u003ea1d282b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1098\"\u003e#1098\u003c/a\u003e from actions/ahpook/v5-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/eb6c199c5a85c7387f1f0b02b3ba5c6364740695\"\u003e\u003ccode\u003eeb6c199\u003c/code\u003e\u003c/a\u003e update examples to show \u003ca href=\"https://github.com/v5\"\u003e\u003ccode\u003e@​v5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/3943c2c5beaaaf1806eb3758273c203dabcbf89c\"\u003e\u003ccode\u003e3943c2c\u003c/code\u003e\u003c/a\u003e v5.0.0 release branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/454943c880b147adbfe7de0cdd3ece1c00882033\"\u003e\u003ccode\u003e454943c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1094\"\u003e#1094\u003c/a\u003e from actions/ashelytc/security-findings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/6d92a1228e9e9db334f02c09f84fe9217d2b4463\"\u003e\u003ccode\u003e6d92a12\u003c/code\u003e\u003c/a\u003e revert \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a8e5a7e93695b41abf6d1083cd220bee39a720f0\"\u003e\u003ccode\u003ea8e5a7e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1076\"\u003e#1076\u003c/a\u003e from tspascoal/fix-version-matching-for-non-string-s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/b6b7079031ef4ed61656c221988f1f3bcbf35101\"\u003e\u003ccode\u003eb6b7079\u003c/code\u003e\u003c/a\u003e update \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e to 8.40.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/821a21dd691f162c4c5c2e9754a344accde9a208\"\u003e\u003ccode\u003e821a21d\u003c/code\u003e\u003c/a\u003e update more dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/05aaaae45cf4c420de012addf2a72e3435ddaa63\"\u003e\u003ccode\u003e05aaaae\u003c/code\u003e\u003c/a\u003e run npm audit fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/55d3e754501fc13c84b95637ce51f135012d41ea\"\u003e\u003ccode\u003e55d3e75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1077\"\u003e#1077\u003c/a\u003e from Marukome0743/docs/checkout\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4...v5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/labeler` from 5 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/labeler/releases\"\u003eactions/labeler's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd workflow file for publishing releases to immutable action package by \u003ca href=\"https://github.com/jcambass\"\u003e\u003ccode\u003e@​jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/802\"\u003eactions/labeler#802\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Node.js version to 24 in action and dependencies \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/891\"\u003eactions/labeler#891\u003c/a\u003e\nMake sure your runner is on version v2.327.1 or later to ensure compatibility with this release. \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency Upgrades\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade eslint-config-prettier from 9.0.0 to 9.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/711\"\u003eactions/labeler#711\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint from 8.52.0 to 8.55.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/720\"\u003eactions/labeler#720\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​types/jest\u003c/code\u003e from 29.5.6 to 29.5.11 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/719\"\u003eactions/labeler#719\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​types/js-yaml\u003c/code\u003e from 4.0.8 to 4.0.9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/718\"\u003eactions/labeler#718\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e from 6.9.0 to 6.14.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/717\"\u003eactions/labeler#717\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 3.0.3 to 3.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/726\"\u003eactions/labeler#726\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint from 8.55.0 to 8.56.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/725\"\u003eactions/labeler#725\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e from 6.14.0 to 6.19.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/745\"\u003eactions/labeler#745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint-plugin-jest from 27.4.3 to 27.6.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/744\"\u003eactions/labeler#744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/eslint-plugin\u003c/code\u003e from 6.9.0 to 6.20.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/750\"\u003eactions/labeler#750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 3.1.1 to 3.2.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/752\"\u003eactions/labeler#752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade undici from 5.26.5 to 5.28.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/757\"\u003eactions/labeler#757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade braces from 3.0.2 to 3.0.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/789\"\u003eactions/labeler#789\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade minimatch from 9.0.3 to 10.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/805\"\u003eactions/labeler#805\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e from 1.10.1 to 1.11.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/811\"\u003eactions/labeler#811\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade typescript from 5.4.3 to 5.7.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/819\"\u003eactions/labeler#819\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e from 7.3.1 to 8.17.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/824\"\u003eactions/labeler#824\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 3.2.5 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/825\"\u003eactions/labeler#825\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​types/jest\u003c/code\u003e from 29.5.12 to 29.5.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/827\"\u003eactions/labeler#827\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint-plugin-jest from 27.9.0 to 28.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/832\"\u003eactions/labeler#832\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade ts-jest from 29.1.2 to 29.2.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/831\"\u003eactions/labeler#831\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​vercel/ncc\u003c/code\u003e from 0.38.1 to 0.38.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/830\"\u003eactions/labeler#830\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade typescript from 5.7.2 to 5.7.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/835\"\u003eactions/labeler#835\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint-plugin-jest from 28.9.0 to 28.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/839\"\u003eactions/labeler#839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade undici from 5.28.4 to 5.28.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/842\"\u003eactions/labeler#842\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​octokit/request-error\u003c/code\u003e from 5.0.1 to 5.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/846\"\u003eactions/labeler#846\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd note regarding \u003ccode\u003epull_request_target\u003c/code\u003e to README.md by \u003ca href=\"https://github.com/silverwind\"\u003e\u003ccode\u003e@​silverwind\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/669\"\u003eactions/labeler#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate readme with additional examples and important note about \u003ccode\u003epull_request_target\u003c/code\u003e event by \u003ca href=\"https://github.com/IvanZosimov\"\u003e\u003ccode\u003e@​IvanZosimov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/721\"\u003eactions/labeler#721\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument update - permission section  by \u003ca href=\"https://github.com/harithavattikuti\"\u003e\u003ccode\u003e@​harithavattikuti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/840\"\u003eactions/labeler#840\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprovement in documentation for pull_request_target event usage in README by \u003ca href=\"https://github.com/suyashgaonkar\"\u003e\u003ccode\u003e@​suyashgaonkar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/871\"\u003eactions/labeler#871\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix broken links in documentation by \u003ca href=\"https://github.com/suyashgaonkar\"\u003e\u003ccode\u003e@​suyashgaonkar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/822\"\u003eactions/labeler#822\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/silverwind\"\u003e\u003ccode\u003e@​silverwind\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/669\"\u003eactions/labeler#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/802\"\u003eactions/labeler#802\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/suyashgaonkar\"\u003e\u003ccode\u003e@​suyashgaonkar\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/822\"\u003eactions/labeler#822\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/HarithaVattikuti\"\u003e\u003ccode\u003e@​HarithaVattikuti\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/840\"\u003eactions/labeler#840\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/891\"\u003eactions/labeler#891\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/f27b608878404679385c85cfa523b85ccb86e213\"\u003e\u003ccode\u003ef27b608\u003c/code\u003e\u003c/a\u003e chore: upgrade dependencies (\u003ccode\u003e@​actions/core\u003c/code\u003e, \u003ccode\u003e@​actions/github\u003c/code\u003e, js-yaml, minimat...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/c5dadc2a45784a4b6adfcd20fea3465da3a5f904\"\u003e\u003ccode\u003ec5dadc2\u003c/code\u003e\u003c/a\u003e Add 'changed-files-labels-limit' and 'max-files-changed' configs to allow cap...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/e52e4fb63ed5cd0e07abaad9826b2a893ccb921f\"\u003e\u003ccode\u003ee52e4fb\u003c/code\u003e\u003c/a\u003e Bump minimatch from 10.0.1 to 10.2.3 (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/77a4082b841706ac431479b7e2bb11216ffef250\"\u003e\u003ccode\u003e77a4082\u003c/code\u003e\u003c/a\u003e Fix: Preserve manually added labels during workflow run and refine label sync...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/25abb3cad4f14b7ac27968a495c37798860a5a1a\"\u003e\u003ccode\u003e25abb3c\u003c/code\u003e\u003c/a\u003e Improve Labeler Action Documentation and Error Handling for Permissions (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/897\"\u003e#897\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/395c8cfdb1e1e691cc4bad0dd315820af8eb67fd\"\u003e\u003ccode\u003e395c8cf\u003c/code\u003e\u003c/a\u003e Bump brace-expansion from 1.1.11 to 1.1.12 and document breaking changes in v...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/634933edcd8ababfe52f92936142cc22ac488b1b\"\u003e\u003ccode\u003e634933e\u003c/code\u003e\u003c/a\u003e publish-action upgrade to 0.4.0 from 0.2.2 (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/f1a63e87db0c6baf19c5713083f8d00d789ca184\"\u003e\u003ccode\u003ef1a63e8\u003c/code\u003e\u003c/a\u003e Update Node.js version to 24 in action and dependencies (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/891\"\u003e#891\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/b0a1180683c9f17424de4d71c044bea4c7b9bc7c\"\u003e\u003ccode\u003eb0a1180\u003c/code\u003e\u003c/a\u003e Bump \u003ccode\u003e@​octokit/request-error\u003c/code\u003e from 5.0.1 to 5.1.1 (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/846\"\u003e#846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/110d44140c9195b853f2f24044bbfed8f4968efb\"\u003e\u003ccode\u003e110d441\u003c/code\u003e\u003c/a\u003e Update README.md (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/871\"\u003e#871\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/labeler/compare/v5...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `peter-evans/create-pull-request` from 6 to 8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/peter-evans/create-pull-request/releases\"\u003epeter-evans/create-pull-request's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCreate Pull Request v8.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's new in v8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequires \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eActions Runner v2.327.1\u003c/a\u003e or later if you are using a self-hosted runner for Node 24 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Update checkout action version to v6 by \u003ca href=\"https://github.com/yonas\"\u003e\u003ccode\u003e@​yonas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4258\"\u003epeter-evans/create-pull-request#4258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate actions/checkout references to \u003ca href=\"https://github.com/v6\"\u003e\u003ccode\u003e@​v6\u003c/code\u003e\u003c/a\u003e in docs by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4259\"\u003epeter-evans/create-pull-request#4259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: v8 by \u003ca href=\"https://github.com/peter-evans\"\u003e\u003ccode\u003e@​peter-evans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4260\"\u003epeter-evans/create-pull-request#4260\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yonas\"\u003e\u003ccode\u003e@​yonas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4258\"\u003epeter-evans/create-pull-request#4258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4259\"\u003epeter-evans/create-pull-request#4259\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/peter-evans/create-pull-request/compare/v7.0.11...v8.0.0\"\u003ehttps://github.com/peter-evans/create-pull-request/compare/v7.0.11...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCreate Pull Request v7.0.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: restrict remote prune to self-hosted runners by \u003ca href=\"https://github.com/peter-evans\"\u003e\u003ccode\u003e@​peter-evans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4250\"\u003epeter-evans/create-pull-request#4250\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/peter-evans/create-pull-request/compare/v7.0.10...v7.0.11\"\u003ehttps://github.com/peter-evans/create-pull-request/compare/v7.0.10...v7.0.11\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCreate Pull Request v7.0.10\u003c/h2\u003e\n\u003cp\u003e⚙️ Fixes an issue where updating a pull request failed when targeting a forked repository with the same owner as its parent.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump the github-actions group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4235\"\u003epeter-evans/create-pull-request#4235\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump prettier from 3.6.2 to 3.7.3 in the npm group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4240\"\u003epeter-evans/create-pull-request#4240\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: provider list pulls fallback for multi fork same owner by \u003ca href=\"https://github.com/peter-evans\"\u003e\u003ccode\u003e@​peter-evans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4245\"\u003epeter-evans/create-pull-request#4245\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/obnyis\"\u003e\u003ccode\u003e@​obnyis\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4064\"\u003epeter-evans/create-pull-request#4064\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/peter-evans/create-pull-request/compare/v7.0.9...v7.0.10\"\u003ehttps://github.com/peter-evans/create-pull-request/compare/v7.0.9...v7.0.10\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCreate Pull Request v7.0.9\u003c/h2\u003e\n\u003cp\u003e⚙️ Fixes an \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/issues/4228\"\u003eincompatibility\u003c/a\u003e with the recently released \u003ccode\u003eactions/checkout@v6\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e~70 dependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix workaround description about \u003ccode\u003eready_for_review\u003c/code\u003e by \u003ca href=\"https://github.com/ybiquitous\"\u003e\u003ccode\u003e@​ybiquitous\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/3939\"\u003epeter-evans/create-pull-request#3939\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocs: \u003ccode\u003eadd-paths\u003c/code\u003e default behavior by \u003ca href=\"https://github.com/joeflack4\"\u003e\u003ccode\u003e@​joeflack4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/3928\"\u003epeter-evans/create-pull-request#3928\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update to create-github-app-token v2 by \u003ca href=\"https://github.com/Goooler\"\u003e\u003ccode\u003e@​Goooler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4063\"\u003epeter-evans/create-pull-request#4063\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix compatibility with actions/checkout@v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4230\"\u003epeter-evans/create-pull-request#4230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/joeflack4\"\u003e\u003ccode\u003e@​joeflack4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/3928\"\u003epeter-evans/create-pull-request#3928\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Goooler\"\u003e\u003ccode\u003e@​Goooler\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4063\"\u003epeter-evans/create-pull-request#4063\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4230\"\u003epeter-evans/create-pull-request#4230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peter-evans/create-pull-request/commit/5f6978faf089d4d20b00c7766989d076bb2fc7f1\"\u003e\u003ccode\u003e5f6978f\u003c/code\u003e\u003c/a\u003e fix: retry post-creation API calls on 422 eventual consistency errors (\u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/issues/4356\"\u003e#4356\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peter-evans/create-pull-request/commit/d32e88dac789dcc7906e7d26f69f24116fa9c97d\"\u003e\u003ccode\u003ed32e88d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the npm group with 3 updates (\u003ca href=\"https://redi...\n\n_Description has been truncated_","html_url":"https://github.com/DataCore-VietNam/datacore-cli/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/DataCore-VietNam%2Fdatacore-cli/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"}},{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-05-29T22:39:06.000Z","version_change":"2 → 3","issue":{"uuid":"4552053877","node_id":"PR_kwDOSrwv9M7g0_bD","number":1,"state":"open","title":"chore(deps): Bump the actions group with 11 updates","user":"dependabot[bot]","labels":["ci"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-29T22:39:06.000Z","updated_at":"2026-05-29T22:40:49.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","group_name":"actions","update_count":11,"packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"},{"name":"actions/checkout","old_version":"4","new_version":"6","repository_url":"https://github.com/actions/checkout"},{"name":"actions/dependency-review-action","old_version":"4","new_version":"5","repository_url":"https://github.com/actions/dependency-review-action"},{"name":"actions/labeler","old_version":"5","new_version":"6","repository_url":"https://github.com/actions/labeler"},{"name":"actions/setup-python","old_version":"5","new_version":"6","repository_url":"https://github.com/actions/setup-python"},{"name":"peter-evans/create-pull-request","old_version":"6","new_version":"8","repository_url":"https://github.com/peter-evans/create-pull-request"},{"name":"googleapis/release-please-action","old_version":"4","new_version":"5","repository_url":"https://github.com/googleapis/release-please-action"},{"name":"ossf/scorecard-action","old_version":"2.4.0","new_version":"2.4.3","repository_url":"https://github.com/ossf/scorecard-action"},{"name":"actions/upload-artifact","old_version":"4","new_version":"7","repository_url":"https://github.com/actions/upload-artifact"},{"name":"github/codeql-action","old_version":"3","new_version":"4","repository_url":"https://github.com/github/codeql-action"},{"name":"actions/stale","old_version":"9","new_version":"10","repository_url":"https://github.com/actions/stale"}],"path":null,"ecosystem":"actions"},"body":"Bumps the actions group with 11 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) | `2` | `3` |\n| [actions/checkout](https://github.com/actions/checkout) | `4` | `6` |\n| [actions/dependency-review-action](https://github.com/actions/dependency-review-action) | `4` | `5` |\n| [actions/labeler](https://github.com/actions/labeler) | `5` | `6` |\n| [actions/setup-python](https://github.com/actions/setup-python) | `5` | `6` |\n| [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) | `6` | `8` |\n| [googleapis/release-please-action](https://github.com/googleapis/release-please-action) | `4` | `5` |\n| [ossf/scorecard-action](https://github.com/ossf/scorecard-action) | `2.4.0` | `2.4.3` |\n| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4` | `7` |\n| [github/codeql-action](https://github.com/github/codeql-action) | `3` | `4` |\n| [actions/stale](https://github.com/actions/stale) | `9` | `10` |\n\nUpdates `dependabot/fetch-metadata` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/checkout` from 4 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/releases\"\u003eactions/checkout's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev6-beta by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2298\"\u003eactions/checkout#2298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate readme/changelog for v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2311\"\u003eactions/checkout#2311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/checkout/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6-beta\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eUpdated persist-credentials to store the credentials under \u003ccode\u003e$RUNNER_TEMP\u003c/code\u003e instead of directly in the local git config.\u003c/p\u003e\n\u003cp\u003eThis requires a minimum Actions Runner version of \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.329.0\"\u003ev2.329.0\u003c/a\u003e to access the persisted credentials for \u003ca href=\"https://docs.github.com/en/actions/tutorials/use-containerized-services/create-a-docker-container-action\"\u003eDocker container action\u003c/a\u003e scenarios.\u003c/p\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5...v5.0.1\"\u003ehttps://github.com/actions/checkout/compare/v5...v5.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare v5.0.0 release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2238\"\u003eactions/checkout#2238\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v5.0.0\"\u003ehttps://github.com/actions/checkout/compare/v4...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v4.3.1\"\u003ehttps://github.com/actions/checkout/compare/v4...v4.3.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/blob/main/CHANGELOG.md\"\u003eactions/checkout's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev6.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix tag handling: preserve annotations and explicit fetch-tags by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2356\"\u003eactions/checkout#2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd worktree support for persist-credentials includeIf by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2327\"\u003eactions/checkout#2327\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdjust positioning of user email note and permissions heading by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2044\"\u003eactions/checkout#2044\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CODEOWNERS for actions by \u003ca href=\"https://github.com/TingluoHuang\"\u003e\u003ccode\u003e@​TingluoHuang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2224\"\u003eactions/checkout#2224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate package dependencies by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eurl-helper.ts\u003c/code\u003e now leverages well-known environment variables by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1941\"\u003eactions/checkout#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand unit test coverage for \u003ccode\u003eisGhes\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1946\"\u003eactions/checkout#1946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck out other refs/* by commit if provided, fall back to ref by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1924\"\u003eactions/checkout#1924\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ref and Commit outputs by \u003ca href=\"https://github.com/lucacome\"\u003e\u003ccode\u003e@​lucacome\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1180\"\u003eactions/checkout#1180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e- \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1777\"\u003eactions/checkout#1777\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1872\"\u003eactions/checkout#1872\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump the minor-npm-dependencies group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1739\"\u003eactions/checkout#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1697\"\u003eactions/checkout#1697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck out other refs/* by commit by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1774\"\u003eactions/checkout#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/checkout's own workflows to a known, good, stable version. by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1776\"\u003eactions/checkout#1776\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck platform to set archive extension appropriately by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1732\"\u003eactions/checkout#1732\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/de0fac2e4500dabe0009e67214ff5f5447ce83dd\"\u003e\u003ccode\u003ede0fac2\u003c/code\u003e\u003c/a\u003e Fix tag handling: preserve annotations and explicit fetch-tags (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2356\"\u003e#2356\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/064fe7f3312418007dea2b49a19844a9ee378f49\"\u003e\u003ccode\u003e064fe7f\u003c/code\u003e\u003c/a\u003e Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/8e8c483db84b4bee98b60c0593521ed34d9990e8\"\u003e\u003ccode\u003e8e8c483\u003c/code\u003e\u003c/a\u003e Clarify v6 README (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/033fa0dc0b82693d8986f1016a0ec2c5e7d9cbb1\"\u003e\u003ccode\u003e033fa0d\u003c/code\u003e\u003c/a\u003e Add worktree support for persist-credentials includeIf (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/c2d88d3ecc89a9ef08eebf45d9637801dcee7eb5\"\u003e\u003ccode\u003ec2d88d3\u003c/code\u003e\u003c/a\u003e Update all references from v5 and v4 to v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2314\"\u003e#2314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3\"\u003e\u003ccode\u003e1af3b93\u003c/code\u003e\u003c/a\u003e update readme/changelog for v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2311\"\u003e#2311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/71cf2267d89c5cb81562390fa70a37fa40b1305e\"\u003e\u003ccode\u003e71cf226\u003c/code\u003e\u003c/a\u003e v6-beta (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/069c6959146423d11cd0184e6accf28f9d45f06e\"\u003e\u003ccode\u003e069c695\u003c/code\u003e\u003c/a\u003e Persist creds to a separate file (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2286\"\u003e#2286\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493\"\u003e\u003ccode\u003eff7abcd\u003c/code\u003e\u003c/a\u003e Update README to include Node.js 24 support details and requirements (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2248\"\u003e#2248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/08c6903cd8c0fde910a37f88322edcfb5dd907a8\"\u003e\u003ccode\u003e08c6903\u003c/code\u003e\u003c/a\u003e Prepare v5.0.0 release (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/checkout/compare/v4...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/dependency-review-action` from 4 to 5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/dependency-review-action/releases\"\u003eactions/dependency-review-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e5.0.0\u003c/h2\u003e\n\u003cp\u003eThis is a new major version of the Dependency Review Action which updates the runtime to node24. This requires a minimum Actions Runner version \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003ev2.327.1\u003c/a\u003e to run.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd .github/copilot-instructions.md for Copilot coding agent by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1067\"\u003eactions/dependency-review-action#1067\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Node.js runtime from 20 to 24 by \u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump spdx-license-ids from 3.0.20 to 3.0.23 by \u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: bump actions/checkout from v4 to v6 in workflow examples by \u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: patched version display for advisories with non-strict semver ranges (e.g. Maven beta versions) by \u003ca href=\"https://github.com/tspascoal\"\u003e\u003ccode\u003e@​tspascoal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1076\"\u003eactions/dependency-review-action#1076\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eResolve security findings by \u003ca href=\"https://github.com/AshelyTC\"\u003e\u003ccode\u003e@​AshelyTC\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1094\"\u003eactions/dependency-review-action#1094\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5.0.0 release branch by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1098\"\u003eactions/dependency-review-action#1098\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/scottschreckengaust\"\u003e\u003ccode\u003e@​scottschreckengaust\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1084\"\u003eactions/dependency-review-action#1084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mongolyy\"\u003e\u003ccode\u003e@​mongolyy\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1091\"\u003eactions/dependency-review-action#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Marukome0743\"\u003e\u003ccode\u003e@​Marukome0743\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1077\"\u003eactions/dependency-review-action#1077\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.9.0...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eDependency Review Action 4.9.0\u003c/h2\u003e\n\u003cp\u003eThis feature release contains a couple of notable changes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThere is a new configuration option \u003ccode\u003eshow_patched_versions\u003c/code\u003e which will add a column to the output, showing the fix version of each vulnerable dependency. Thanks \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eRuns which do not display OpenSSF scorecards no longer fetch scorecard information; previously it was fetched regardless of whether or not it was displayed, causing unneccessary slowness. Great catch \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003cli\u003eThere are a couple of fixes to purl parsing which should improve match accuracy for \u003ccode\u003eallow-package-dependency\u003c/code\u003e lists, including case (in)sensitivity and url-encoded namespaces Thanks \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCompare normalized purls to account for encoding quirks by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1056\"\u003eactions/dependency-review-action#1056\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake purl comparisons case insensitive by \u003ca href=\"https://github.com/juxtin\"\u003e\u003ccode\u003e@​juxtin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1057\"\u003eactions/dependency-review-action#1057\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeat: Add \u003ccode\u003ePatched Version\u003c/code\u003e to \u003ccode\u003eVulnerabilities\u003c/code\u003e summary by \u003ca href=\"https://github.com/felickz\"\u003e\u003ccode\u003e@​felickz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1045\"\u003eactions/dependency-review-action#1045\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: only get scorecard levels if user wants to see the OpenSSF scorecard by \u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 10.1.0 to 10.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1058\"\u003eactions/dependency-review-action#1058\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1021\"\u003eactions/dependency-review-action#1021\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates for release 4.9.0 by \u003ca href=\"https://github.com/ahpook\"\u003e\u003ccode\u003e@​ahpook\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1064\"\u003eactions/dependency-review-action#1064\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jantiebot\"\u003e\u003ccode\u003e@​jantiebot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1060\"\u003eactions/dependency-review-action#1060\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\"\u003ehttps://github.com/actions/dependency-review-action/compare/v4.8.3...v4.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e4.8.3\u003c/h2\u003e\n\u003ch2\u003eDependency Review Action v4.8.3\u003c/h2\u003e\n\u003cp\u003eThis is a bugfix release that updates a number of upstream dependencies and includes a fix for the earlier feature that detected oversized summaries and upload them as artifacts, which could occasionally crash the action.\u003c/p\u003e\n\u003cp\u003eWe have also updated the release process to use a long-lived \u003ccode\u003ev4\u003c/code\u003e \u003cstrong\u003ebranch\u003c/strong\u003e for the action, instead of a force-pushed tag, which aligns better with git branching strategies; the change should be transparent to end users.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eGitHub Actions can't push to our protected main by \u003ca href=\"https://github.com/dangoor\"\u003e\u003ccode\u003e@​dangoor\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/1017\"\u003eactions/dependency-review-action#1017\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/stale from 9.1.0 to 10.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/pull/995\"\u003eactions/dependency-review-action#995\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a1d282b36b6f3519aa1f3fc636f609c47dddb294\"\u003e\u003ccode\u003ea1d282b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1098\"\u003e#1098\u003c/a\u003e from actions/ahpook/v5-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/eb6c199c5a85c7387f1f0b02b3ba5c6364740695\"\u003e\u003ccode\u003eeb6c199\u003c/code\u003e\u003c/a\u003e update examples to show \u003ca href=\"https://github.com/v5\"\u003e\u003ccode\u003e@​v5\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/3943c2c5beaaaf1806eb3758273c203dabcbf89c\"\u003e\u003ccode\u003e3943c2c\u003c/code\u003e\u003c/a\u003e v5.0.0 release branch\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/454943c880b147adbfe7de0cdd3ece1c00882033\"\u003e\u003ccode\u003e454943c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1094\"\u003e#1094\u003c/a\u003e from actions/ashelytc/security-findings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/6d92a1228e9e9db334f02c09f84fe9217d2b4463\"\u003e\u003ccode\u003e6d92a12\u003c/code\u003e\u003c/a\u003e revert \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/a8e5a7e93695b41abf6d1083cd220bee39a720f0\"\u003e\u003ccode\u003ea8e5a7e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1076\"\u003e#1076\u003c/a\u003e from tspascoal/fix-version-matching-for-non-string-s...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/b6b7079031ef4ed61656c221988f1f3bcbf35101\"\u003e\u003ccode\u003eb6b7079\u003c/code\u003e\u003c/a\u003e update \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e to 8.40.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/821a21dd691f162c4c5c2e9754a344accde9a208\"\u003e\u003ccode\u003e821a21d\u003c/code\u003e\u003c/a\u003e update more dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/05aaaae45cf4c420de012addf2a72e3435ddaa63\"\u003e\u003ccode\u003e05aaaae\u003c/code\u003e\u003c/a\u003e run npm audit fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/dependency-review-action/commit/55d3e754501fc13c84b95637ce51f135012d41ea\"\u003e\u003ccode\u003e55d3e75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/dependency-review-action/issues/1077\"\u003e#1077\u003c/a\u003e from Marukome0743/docs/checkout\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/dependency-review-action/compare/v4...v5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/labeler` from 5 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/labeler/releases\"\u003eactions/labeler's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd workflow file for publishing releases to immutable action package by \u003ca href=\"https://github.com/jcambass\"\u003e\u003ccode\u003e@​jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/802\"\u003eactions/labeler#802\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade Node.js version to 24 in action and dependencies \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/891\"\u003eactions/labeler#891\u003c/a\u003e\nMake sure your runner is on version v2.327.1 or later to ensure compatibility with this release. \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency Upgrades\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade eslint-config-prettier from 9.0.0 to 9.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/711\"\u003eactions/labeler#711\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint from 8.52.0 to 8.55.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/720\"\u003eactions/labeler#720\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​types/jest\u003c/code\u003e from 29.5.6 to 29.5.11 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/719\"\u003eactions/labeler#719\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​types/js-yaml\u003c/code\u003e from 4.0.8 to 4.0.9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/718\"\u003eactions/labeler#718\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e from 6.9.0 to 6.14.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/717\"\u003eactions/labeler#717\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 3.0.3 to 3.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/726\"\u003eactions/labeler#726\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint from 8.55.0 to 8.56.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/725\"\u003eactions/labeler#725\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e from 6.14.0 to 6.19.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/745\"\u003eactions/labeler#745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint-plugin-jest from 27.4.3 to 27.6.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/744\"\u003eactions/labeler#744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/eslint-plugin\u003c/code\u003e from 6.9.0 to 6.20.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/750\"\u003eactions/labeler#750\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 3.1.1 to 3.2.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/752\"\u003eactions/labeler#752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade undici from 5.26.5 to 5.28.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/757\"\u003eactions/labeler#757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade braces from 3.0.2 to 3.0.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/789\"\u003eactions/labeler#789\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade minimatch from 9.0.3 to 10.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/805\"\u003eactions/labeler#805\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e from 1.10.1 to 1.11.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/811\"\u003eactions/labeler#811\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade typescript from 5.4.3 to 5.7.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/819\"\u003eactions/labeler#819\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​typescript-eslint/parser\u003c/code\u003e from 7.3.1 to 8.17.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/824\"\u003eactions/labeler#824\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 3.2.5 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/825\"\u003eactions/labeler#825\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​types/jest\u003c/code\u003e from 29.5.12 to 29.5.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/827\"\u003eactions/labeler#827\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint-plugin-jest from 27.9.0 to 28.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/832\"\u003eactions/labeler#832\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade ts-jest from 29.1.2 to 29.2.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/831\"\u003eactions/labeler#831\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​vercel/ncc\u003c/code\u003e from 0.38.1 to 0.38.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/830\"\u003eactions/labeler#830\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade typescript from 5.7.2 to 5.7.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/835\"\u003eactions/labeler#835\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade eslint-plugin-jest from 28.9.0 to 28.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/839\"\u003eactions/labeler#839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade undici from 5.28.4 to 5.28.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/842\"\u003eactions/labeler#842\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​octokit/request-error\u003c/code\u003e from 5.0.1 to 5.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/846\"\u003eactions/labeler#846\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd note regarding \u003ccode\u003epull_request_target\u003c/code\u003e to README.md by \u003ca href=\"https://github.com/silverwind\"\u003e\u003ccode\u003e@​silverwind\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/669\"\u003eactions/labeler#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate readme with additional examples and important note about \u003ccode\u003epull_request_target\u003c/code\u003e event by \u003ca href=\"https://github.com/IvanZosimov\"\u003e\u003ccode\u003e@​IvanZosimov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/721\"\u003eactions/labeler#721\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument update - permission section  by \u003ca href=\"https://github.com/harithavattikuti\"\u003e\u003ccode\u003e@​harithavattikuti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/840\"\u003eactions/labeler#840\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprovement in documentation for pull_request_target event usage in README by \u003ca href=\"https://github.com/suyashgaonkar\"\u003e\u003ccode\u003e@​suyashgaonkar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/871\"\u003eactions/labeler#871\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix broken links in documentation by \u003ca href=\"https://github.com/suyashgaonkar\"\u003e\u003ccode\u003e@​suyashgaonkar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/822\"\u003eactions/labeler#822\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/silverwind\"\u003e\u003ccode\u003e@​silverwind\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/669\"\u003eactions/labeler#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/802\"\u003eactions/labeler#802\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/suyashgaonkar\"\u003e\u003ccode\u003e@​suyashgaonkar\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/822\"\u003eactions/labeler#822\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/HarithaVattikuti\"\u003e\u003ccode\u003e@​HarithaVattikuti\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/840\"\u003eactions/labeler#840\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/labeler/pull/891\"\u003eactions/labeler#891\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/f27b608878404679385c85cfa523b85ccb86e213\"\u003e\u003ccode\u003ef27b608\u003c/code\u003e\u003c/a\u003e chore: upgrade dependencies (\u003ccode\u003e@​actions/core\u003c/code\u003e, \u003ccode\u003e@​actions/github\u003c/code\u003e, js-yaml, minimat...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/c5dadc2a45784a4b6adfcd20fea3465da3a5f904\"\u003e\u003ccode\u003ec5dadc2\u003c/code\u003e\u003c/a\u003e Add 'changed-files-labels-limit' and 'max-files-changed' configs to allow cap...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/e52e4fb63ed5cd0e07abaad9826b2a893ccb921f\"\u003e\u003ccode\u003ee52e4fb\u003c/code\u003e\u003c/a\u003e Bump minimatch from 10.0.1 to 10.2.3 (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/926\"\u003e#926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/77a4082b841706ac431479b7e2bb11216ffef250\"\u003e\u003ccode\u003e77a4082\u003c/code\u003e\u003c/a\u003e Fix: Preserve manually added labels during workflow run and refine label sync...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/25abb3cad4f14b7ac27968a495c37798860a5a1a\"\u003e\u003ccode\u003e25abb3c\u003c/code\u003e\u003c/a\u003e Improve Labeler Action Documentation and Error Handling for Permissions (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/897\"\u003e#897\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/395c8cfdb1e1e691cc4bad0dd315820af8eb67fd\"\u003e\u003ccode\u003e395c8cf\u003c/code\u003e\u003c/a\u003e Bump brace-expansion from 1.1.11 to 1.1.12 and document breaking changes in v...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/634933edcd8ababfe52f92936142cc22ac488b1b\"\u003e\u003ccode\u003e634933e\u003c/code\u003e\u003c/a\u003e publish-action upgrade to 0.4.0 from 0.2.2 (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/901\"\u003e#901\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/f1a63e87db0c6baf19c5713083f8d00d789ca184\"\u003e\u003ccode\u003ef1a63e8\u003c/code\u003e\u003c/a\u003e Update Node.js version to 24 in action and dependencies (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/891\"\u003e#891\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/b0a1180683c9f17424de4d71c044bea4c7b9bc7c\"\u003e\u003ccode\u003eb0a1180\u003c/code\u003e\u003c/a\u003e Bump \u003ccode\u003e@​octokit/request-error\u003c/code\u003e from 5.0.1 to 5.1.1 (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/846\"\u003e#846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/labeler/commit/110d44140c9195b853f2f24044bbfed8f4968efb\"\u003e\u003ccode\u003e110d441\u003c/code\u003e\u003c/a\u003e Update README.md (\u003ca href=\"https://redirect.github.com/actions/labeler/issues/871\"\u003e#871\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/labeler/compare/v5...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/setup-python` from 5 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/setup-python/releases\"\u003eactions/setup-python's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade to node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1164\"\u003eactions/setup-python#1164\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eMake sure your runner is on version v2.327.1 or later to ensure compatibility with this release. \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eSee Release Notes\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eEnhancements:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for \u003ccode\u003epip-version\u003c/code\u003e  by \u003ca href=\"https://github.com/priyagupta108\"\u003e\u003ccode\u003e@​priyagupta108\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1129\"\u003eactions/setup-python#1129\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnhance reading from .python-version by \u003ca href=\"https://github.com/krystof-k\"\u003e\u003ccode\u003e@​krystof-k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/787\"\u003eactions/setup-python#787\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd version parsing from Pipfile by \u003ca href=\"https://github.com/aradkdj\"\u003e\u003ccode\u003e@​aradkdj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1067\"\u003eactions/setup-python#1067\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eClarify pythonLocation behaviour for PyPy and GraalPy in environment variables by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1183\"\u003eactions/setup-python#1183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eChange missing cache directory error to warning  by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1182\"\u003eactions/setup-python#1182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Architecture-Specific PATH Management for Python with --user Flag on Windows by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1122\"\u003eactions/setup-python#1122\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInclude python version in PyPy python-version output by \u003ca href=\"https://github.com/cdce8p\"\u003e\u003ccode\u003e@​cdce8p\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1110\"\u003eactions/setup-python#1110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate docs: clarification on pip authentication with setup-python by \u003ca href=\"https://github.com/priya-kinthali\"\u003e\u003ccode\u003e@​priya-kinthali\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1156\"\u003eactions/setup-python#1156\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency updates:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade idna from 2.9 to 3.7 in /\u003cstrong\u003etests\u003c/strong\u003e/data by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/843\"\u003eactions/setup-python#843\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade form-data to fix critical vulnerabilities \u003ca href=\"https://redirect.github.com/actions/setup-python/issues/182\"\u003e#182\u003c/a\u003e \u0026amp; \u003ca href=\"https://redirect.github.com/actions/setup-python/issues/183\"\u003e#183\u003c/a\u003e by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1163\"\u003eactions/setup-python#1163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade setuptools to 78.1.1 to fix path traversal vulnerability in PackageIndex.download by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1165\"\u003eactions/setup-python#1165\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1181\"\u003eactions/setup-python#1181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/tool-cache\u003c/code\u003e from 2.0.1 to 2.0.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1095\"\u003eactions/setup-python#1095\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/krystof-k\"\u003e\u003ccode\u003e@​krystof-k\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/787\"\u003eactions/setup-python#787\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cdce8p\"\u003e\u003ccode\u003e@​cdce8p\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1110\"\u003eactions/setup-python#1110\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aradkdj\"\u003e\u003ccode\u003e@​aradkdj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1067\"\u003eactions/setup-python#1067\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-python/compare/v5...v6.0.0\"\u003ehttps://github.com/actions/setup-python/compare/v5...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWorkflow updates related to Ubuntu 20.04 by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1065\"\u003eactions/setup-python#1065\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for Candidate Not Iterable Error by \u003ca href=\"https://github.com/aparnajyothi-y\"\u003e\u003ccode\u003e@​aparnajyothi-y\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1082\"\u003eactions/setup-python#1082\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade semver and \u003ccode\u003e@​types/semver\u003c/code\u003e by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1091\"\u003eactions/setup-python#1091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade prettier from 2.8.8 to 3.5.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1046\"\u003eactions/setup-python#1046\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade ts-jest from 29.1.2 to 29.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1081\"\u003eactions/setup-python#1081\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/setup-python/compare/v5...v5.6.0\"\u003ehttps://github.com/actions/setup-python/compare/v5...v5.6.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eEnhancements:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport free threaded Python versions like '3.13t' by \u003ca href=\"https://github.com/colesbury\"\u003e\u003ccode\u003e@​colesbury\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/973\"\u003eactions/setup-python#973\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnhance Workflows: Include ubuntu-arm runners, Add e2e Testing for free threaded and Upgrade \u003ccode\u003e@​action/cache\u003c/code\u003e from 4.0.0 to 4.0.3 by \u003ca href=\"https://github.com/priya-kinthali\"\u003e\u003ccode\u003e@​priya-kinthali\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1056\"\u003eactions/setup-python#1056\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for .tool-versions file in setup-python by \u003ca href=\"https://github.com/mahabaleshwars\"\u003e\u003ccode\u003e@​mahabaleshwars\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1043\"\u003eactions/setup-python#1043\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes:\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix architecture for pypy on Linux ARM64 by \u003ca href=\"https://github.com/mayeut\"\u003e\u003ccode\u003e@​mayeut\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/setup-python/pull/1011\"\u003eactions/setup-python#1011\u003c/a\u003e\nThis update maps arm64 to aarch64 for Linux ARM64 PyPy installations.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/a309ff8b426b58ec0e2a45f0f869d46889d02405\"\u003e\u003ccode\u003ea309ff8\u003c/code\u003e\u003c/a\u003e Bump urllib3 from 2.6.0 to 2.6.3 in /\u003cstrong\u003etests\u003c/strong\u003e/data (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1264\"\u003e#1264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/bfe8cc55a7890e3d6672eda6460ef37bfcc70755\"\u003e\u003ccode\u003ebfe8cc5\u003c/code\u003e\u003c/a\u003e Upgrade \u003ca href=\"https://github.com/actions\"\u003e\u003ccode\u003e@​actions\u003c/code\u003e\u003c/a\u003e dependencies to Node 24 compatible versions (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1259\"\u003e#1259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/4f41a90a1f38628c7ccc608d05fbafe701bc20ae\"\u003e\u003ccode\u003e4f41a90\u003c/code\u003e\u003c/a\u003e Bump urllib3 from 2.5.0 to 2.6.0 in /\u003cstrong\u003etests\u003c/strong\u003e/data (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1253\"\u003e#1253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/83679a892e2d95755f2dac6acb0bfd1e9ac5d548\"\u003e\u003ccode\u003e83679a8\u003c/code\u003e\u003c/a\u003e Bump \u003ccode\u003e@​types/node\u003c/code\u003e from 24.1.0 to 24.9.1 and update macos-13 to macos-15-intel ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/bfc4944b43a5d84377eca3cf6ab5b7992ba61923\"\u003e\u003ccode\u003ebfc4944\u003c/code\u003e\u003c/a\u003e Bump prettier from 3.5.3 to 3.6.2 (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1234\"\u003e#1234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/97aeb3efb8a852c559869050c7fb175b4efcc8cf\"\u003e\u003ccode\u003e97aeb3e\u003c/code\u003e\u003c/a\u003e Bump requests from 2.32.2 to 2.32.4 in /\u003cstrong\u003etests\u003c/strong\u003e/data (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1130\"\u003e#1130\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/443da59188462e2402e2942686db5aa6723f4bed\"\u003e\u003ccode\u003e443da59\u003c/code\u003e\u003c/a\u003e Bump actions/publish-action from 0.3.0 to 0.4.0 \u0026amp; Documentation update for pi...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/cfd55ca82492758d853442341ad4d8010466803a\"\u003e\u003ccode\u003ecfd55ca\u003c/code\u003e\u003c/a\u003e graalpy: add graalpy early-access and windows builds (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/880\"\u003e#880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/bba65e51ff35d50c6dbaaacd8a4681db13aa7cb4\"\u003e\u003ccode\u003ebba65e5\u003c/code\u003e\u003c/a\u003e Bump typescript from 5.4.2 to 5.9.3 and update docs/advanced-usage.md (\u003ca href=\"https://redirect.github.com/actions/setup-python/issues/1094\"\u003e#1094\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/setup-python/commit/18566f86b301499665bd3eb1a2247e0849c64fa5\"\u003e\u003ccode\u003e18566f8\u003c/code\u003e\u003c/a\u003e Improve wording and \u0026quot;fix example\u0026quot; (remove 3.13) on testing against pre-releas...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/setup-python/compare/v5...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `peter-evans/create-pull-request` from 6 to 8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/peter-evans/create-pull-request/releases\"\u003epeter-evans/create-pull-request's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCreate Pull Request v8.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's new in v8\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRequires \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eActions Runner v2.327.1\u003c/a\u003e or later if you are using a self-hosted runner for Node 24 support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Update checkout action version to v6 by \u003ca href=\"https://github.com/yonas\"\u003e\u003ccode\u003e@​yonas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4258\"\u003epeter-evans/create-pull-request#4258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate actions/checkout references to \u003ca href=\"https://github.com/v6\"\u003e\u003ccode\u003e@​v6\u003c/code\u003e\u003c/a\u003e in docs by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4259\"\u003epeter-evans/create-pull-request#4259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: v8 by \u003ca href=\"https://github.com/peter-evans\"\u003e\u003ccode\u003e@​peter-evans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4260\"\u003epeter-evans/create-pull-request#4260\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yonas\"\u003e\u003ccode\u003e@​yonas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4258\"\u003epeter-evans/create-pull-request#4258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4259\"\u003epeter-evans/create-pull-request#4259\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/peter-evans/create-pull-request/compare/v7.0.11...v8.0.0\"\u003ehttps://github.com/peter-evans/create-pull-request/compare/v7.0.11...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCreate Pull Request v7.0.11\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: restrict remote prune to self-hosted runners by \u003ca href=\"https://github.com/peter-evans\"\u003e\u003ccode\u003e@​peter-evans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4250\"\u003epeter-evans/create-pull-request#4250\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/peter-evans/create-pull-request/compare/v7.0.10...v7.0.11\"\u003ehttps://github.com/peter-evans/create-pull-request/compare/v7.0.10...v7.0.11\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCreate Pull Request v7.0.10\u003c/h2\u003e\n\u003cp\u003e⚙️ Fixes an issue where updating a pull request failed when targeting a forked repository with the same owner as its parent.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump the github-actions group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4235\"\u003epeter-evans/create-pull-request#4235\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump prettier from 3.6.2 to 3.7.3 in the npm group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4240\"\u003epeter-evans/create-pull-request#4240\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: provider list pulls fallback for multi fork same owner by \u003ca href=\"https://github.com/peter-evans\"\u003e\u003ccode\u003e@​peter-evans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4245\"\u003epeter-evans/create-pull-request#4245\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/obnyis\"\u003e\u003ccode\u003e@​obnyis\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4064\"\u003epeter-evans/create-pull-request#4064\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/peter-evans/create-pull-request/compare/v7.0.9...v7.0.10\"\u003ehttps://github.com/peter-evans/create-pull-request/compare/v7.0.9...v7.0.10\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCreate Pull Request v7.0.9\u003c/h2\u003e\n\u003cp\u003e⚙️ Fixes an \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/issues/4228\"\u003eincompatibility\u003c/a\u003e with the recently released \u003ccode\u003eactions/checkout@v6\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e~70 dependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: fix workaround description about \u003ccode\u003eready_for_review\u003c/code\u003e by \u003ca href=\"https://github.com/ybiquitous\"\u003e\u003ccode\u003e@​ybiquitous\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/3939\"\u003epeter-evans/create-pull-request#3939\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocs: \u003ccode\u003eadd-paths\u003c/code\u003e default behavior by \u003ca href=\"https://github.com/joeflack4\"\u003e\u003ccode\u003e@​joeflack4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/3928\"\u003epeter-evans/create-pull-request#3928\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update to create-github-app-token v2 by \u003ca href=\"https://github.com/Goooler\"\u003e\u003ccode\u003e@​Goooler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4063\"\u003epeter-evans/create-pull-request#4063\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix compatibility with actions/checkout@v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4230\"\u003epeter-evans/create-pull-request#4230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/joeflack4\"\u003e\u003ccode\u003e@​joeflack4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/3928\"\u003epeter-evans/create-pull-request#3928\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Goooler\"\u003e\u003ccode\u003e@​Goooler\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4063\"\u003epeter-evans/create-pull-request#4063\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/pull/4230\"\u003epeter-evans/create-pull-request#4230\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peter-evans/create-pull-request/commit/5f6978faf089d4d20b00c7766989d076bb2fc7f1\"\u003e\u003ccode\u003e5f6978f\u003c/code\u003e\u003c/a\u003e fix: retry post-creation API calls on 422 eventual consistency errors (\u003ca href=\"https://redirect.github.com/peter-evans/create-pull-request/issues/4356\"\u003e#4356\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peter-evans/create-pull-request/commit/d32e88dac789dcc7906e7d26f69f24116fa9c97d\"\u003e\u003ccode\u003ed32e88d\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump the npm group with 3 updates (\u003ca href=\"https://redirect.github.com/pet...\n\n_Description has been truncated_","html_url":"https://github.com/DataCore-VietNam/awesome-mcp-finance/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/DataCore-VietNam%2Fawesome-mcp-finance/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"}},{"old_version":"1.6.0","new_version":"3.1.0","update_type":"major","path":null,"pr_created_at":"2026-05-29T16:25:42.000Z","version_change":"1.6.0 → 3.1.0","issue":{"uuid":"4549991205","node_id":"PR_kwDOGsQe5c7guP5l","number":21,"state":"open","title":"Bump dependabot/fetch-metadata from 1.6.0 to 3.1.0","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-29T16:25:42.000Z","updated_at":"2026-05-29T16:25:43.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"dependabot/fetch-metadata","old_version":"1.6.0","new_version":"3.1.0","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.6.0 to 3.1.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd permissions to all workflows by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/687\"\u003edependabot/fetch-metadata#687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 16.0.0 to 17.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/690\"\u003edependabot/fetch-metadata#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump esbuild from 0.27.4 to 0.28.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/693\"\u003edependabot/fetch-metadata#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.10 to 1.19.13 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/694\"\u003edependabot/fetch-metadata#694\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.7 to 4.12.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/695\"\u003edependabot/fetch-metadata#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDynamically update the tracking tag in action by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/696\"\u003edependabot/fetch-metadata#696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: handle duplicate dependency names in parseMetadataLinks by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove $ anchor from updateFragment regex to handle pip directory suffixes by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/698\"\u003edependabot/fetch-metadata#698\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates to README for permissions clarification by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/697\"\u003edependabot/fetch-metadata#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: resolve update-type null for Python, Composer, and Terraform PRs by \u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 17.4.0 to 17.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/703\"\u003edependabot/fetch-metadata#703\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/701\"\u003edependabot/fetch-metadata#701\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e from 9.0.0 to 9.1.0 in the dependencies group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/702\"\u003edependabot/fetch-metadata#702\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.12 to 4.12.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/705\"\u003edependabot/fetch-metadata#705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev3.1.0 by \u003ca href=\"https://github.com/fetch-metadata-action-automation\"\u003e\u003ccode\u003e@​fetch-metadata-action-automation\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/692\"\u003edependabot/fetch-metadata#692\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v1.6.0...v3.1.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=1.6.0\u0026new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/appnave/nave-credito-iss/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/appnave%2Fnave-credito-iss/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"}},{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-05-28T23:06:41.000Z","version_change":"2 → 3","issue":{"uuid":"4544423138","node_id":"PR_kwDOSpuk5c7gb_X2","number":1,"state":"open","title":"ci(deps): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-28T23:06:41.000Z","updated_at":"2026-05-28T23:06:53.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"ci(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/ViktorsBaikers/DevRites/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ViktorsBaikers%2FDevRites/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"}},{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-05-28T08:48:50.000Z","version_change":"2 → 3","issue":{"uuid":"4539037344","node_id":"PR_kwDORZbJIs7gKSRy","number":20,"state":"closed","title":"build(deps): Bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":["dependencies","github_actions"],"assignees":[],"locked":true,"comments_count":2,"pull_request":true,"closed_at":"2026-05-31T15:26:19.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-28T08:48:50.000Z","updated_at":"2026-05-31T15:26:28.000Z","time_to_close":283049,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Wintersta7e/mz-scene-builder/pull/20","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Wintersta7e%2Fmz-scene-builder/issues/20","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/20/packages"}},{"old_version":"3.0.0","new_version":"3.1.0","update_type":"minor","path":null,"pr_created_at":"2026-05-28T05:08:26.000Z","version_change":"3.0.0 → 3.1.0","issue":{"uuid":"4537879154","node_id":"PR_kwDORqKQkc7gGjMu","number":36,"state":"closed","title":"chore(deps)(deps): bump the github-actions group with 13 updates","user":"dependabot[bot]","labels":["dependencies"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-28T05:13:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-28T05:08:26.000Z","updated_at":"2026-05-28T05:13:58.000Z","time_to_close":330,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)(deps): bump","group_name":"github-actions","update_count":13,"packages":[{"name":"actions/github-script","old_version":"7","new_version":"9","repository_url":"https://github.com/actions/github-script"},{"name":"actions/checkout","old_version":"4","new_version":"6","repository_url":"https://github.com/actions/checkout"},{"name":"dorny/paths-filter","old_version":"3","new_version":"4","repository_url":"https://github.com/dorny/paths-filter"},{"name":"actions/upload-artifact","old_version":"4","new_version":"7","repository_url":"https://github.com/actions/upload-artifact"},{"name":"actions/download-artifact","old_version":"4","new_version":"8","repository_url":"https://github.com/actions/download-artifact"},{"name":"dependabot/fetch-metadata","old_version":"3.0.0","new_version":"3.1.0","repository_url":"https://github.com/dependabot/fetch-metadata"},{"name":"docker/metadata-action","old_version":"5","new_version":"6","repository_url":"https://github.com/docker/metadata-action"},{"name":"docker/login-action","old_version":"3","new_version":"4","repository_url":"https://github.com/docker/login-action"},{"name":"docker/build-push-action","old_version":"6","new_version":"7","repository_url":"https://github.com/docker/build-push-action"},{"name":"actions/configure-pages","old_version":"5","new_version":"6","repository_url":"https://github.com/actions/configure-pages"},{"name":"actions/upload-pages-artifact","old_version":"3","new_version":"5","repository_url":"https://github.com/actions/upload-pages-artifact"},{"name":"actions/setup-node","old_version":"4","new_version":"6","repository_url":"https://github.com/actions/setup-node"},{"name":"peter-evans/create-issue-from-file","old_version":"5","new_version":"6","repository_url":"https://github.com/peter-evans/create-issue-from-file"}],"path":null,"ecosystem":"actions"},"body":"Bumps the github-actions group with 13 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [actions/github-script](https://github.com/actions/github-script) | `7` | `9` |\n| [actions/checkout](https://github.com/actions/checkout) | `4` | `6` |\n| [dorny/paths-filter](https://github.com/dorny/paths-filter) | `3` | `4` |\n| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4` | `7` |\n| [actions/download-artifact](https://github.com/actions/download-artifact) | `4` | `8` |\n| [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) | `3.0.0` | `3.1.0` |\n| [docker/metadata-action](https://github.com/docker/metadata-action) | `5` | `6` |\n| [docker/login-action](https://github.com/docker/login-action) | `3` | `4` |\n| [docker/build-push-action](https://github.com/docker/build-push-action) | `6` | `7` |\n| [actions/configure-pages](https://github.com/actions/configure-pages) | `5` | `6` |\n| [actions/upload-pages-artifact](https://github.com/actions/upload-pages-artifact) | `3` | `5` |\n| [actions/setup-node](https://github.com/actions/setup-node) | `4` | `6` |\n| [peter-evans/create-issue-from-file](https://github.com/peter-evans/create-issue-from-file) | `5` | `6` |\n\nUpdates `actions/github-script` from 7 to 9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/github-script/releases\"\u003eactions/github-script's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev9.0.0\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eNew features:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003egetOctokit\u003c/code\u003e factory function\u003c/strong\u003e — Available directly in the script context. Create additional authenticated Octokit clients with different tokens for multi-token workflows, GitHub App tokens, and cross-org access. See \u003ca href=\"https://github.com/actions/github-script#creating-additional-clients-with-getoctokit\"\u003eCreating additional clients with \u003ccode\u003egetOctokit\u003c/code\u003e\u003c/a\u003e for details and examples.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eOrchestration ID in user-agent\u003c/strong\u003e — The \u003ccode\u003eACTIONS_ORCHESTRATION_ID\u003c/code\u003e environment variable is automatically appended to the user-agent string for request tracing.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eBreaking changes:\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003erequire('@actions/github')\u003c/code\u003e no longer works in scripts.\u003c/strong\u003e The upgrade to \u003ccode\u003e@actions/github\u003c/code\u003e v9 (ESM-only) means \u003ccode\u003erequire('@actions/github')\u003c/code\u003e will fail at runtime. If you previously used patterns like \u003ccode\u003econst { getOctokit } = require('@actions/github')\u003c/code\u003e to create secondary clients, use the new injected \u003ccode\u003egetOctokit\u003c/code\u003e function instead — it's available directly in the script context with no imports needed.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egetOctokit\u003c/code\u003e is now an injected function parameter. Scripts that declare \u003ccode\u003econst getOctokit = ...\u003c/code\u003e or \u003ccode\u003elet getOctokit = ...\u003c/code\u003e will get a \u003ccode\u003eSyntaxError\u003c/code\u003e because JavaScript does not allow \u003ccode\u003econst\u003c/code\u003e/\u003ccode\u003elet\u003c/code\u003e redeclaration of function parameters. Use the injected \u003ccode\u003egetOctokit\u003c/code\u003e directly, or use \u003ccode\u003evar getOctokit = ...\u003c/code\u003e if you need to redeclare it.\u003c/li\u003e\n\u003cli\u003eIf your script accesses other \u003ccode\u003e@actions/github\u003c/code\u003e internals beyond the standard \u003ccode\u003egithub\u003c/code\u003e/\u003ccode\u003eoctokit\u003c/code\u003e client, you may need to update those references for v9 compatibility.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ACTIONS_ORCHESTRATION_ID to user-agent string by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/695\"\u003eactions/github-script#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: use deployment: false for integration test environments by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/712\"\u003eactions/github-script#712\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: add getOctokit to script context, upgrade \u003ccode\u003e@​actions/github\u003c/code\u003e v9, \u003ccode\u003e@​octokit/core\u003c/code\u003e v7, and related packages by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/700\"\u003eactions/github-script#700\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/695\"\u003eactions/github-script#695\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/github-script/compare/v8.0.0...v9.0.0\"\u003ehttps://github.com/actions/github-script/compare/v8.0.0...v9.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate Node.js version support to 24.x by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/637\"\u003eactions/github-script#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME for updating actions/github-script from v7 to v8 by \u003ca href=\"https://github.com/sneha-krip\"\u003e\u003ccode\u003e@​sneha-krip\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/653\"\u003eactions/github-script#653\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/637\"\u003eactions/github-script#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sneha-krip\"\u003e\u003ccode\u003e@​sneha-krip\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/653\"\u003eactions/github-script#653\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/github-script/compare/v7.1.0...v8.0.0\"\u003ehttps://github.com/actions/github-script/compare/v7.1.0...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpgrade husky to v9 by \u003ca href=\"https://github.com/benelan\"\u003e\u003ccode\u003e@​benelan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/482\"\u003eactions/github-script#482\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd workflow file for publishing releases to immutable action package by \u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/485\"\u003eactions/github-script#485\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade IA Publish by \u003ca href=\"https://github.com/Jcambass\"\u003e\u003ccode\u003e@​Jcambass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/486\"\u003eactions/github-script#486\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix workflow status badges by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/497\"\u003eactions/github-script#497\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate usage of \u003ccode\u003eactions/upload-artifact\u003c/code\u003e by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/512\"\u003eactions/github-script#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClear up package name confusion by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/514\"\u003eactions/github-script#514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies with \u003ccode\u003enpm audit fix\u003c/code\u003e by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/515\"\u003eactions/github-script#515\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSpecify that the used script is JavaScript by \u003ca href=\"https://github.com/timotk\"\u003e\u003ccode\u003e@​timotk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/478\"\u003eactions/github-script#478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: Add Dependabot for NPM and Actions by \u003ca href=\"https://github.com/nschonni\"\u003e\u003ccode\u003e@​nschonni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/github-script/pull/472\"\u003eactions/github-script#472\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/3a2844b7e9c422d3c10d287c895573f7108da1b3\"\u003e\u003ccode\u003e3a2844b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/github-script/issues/700\"\u003e#700\u003c/a\u003e from actions/salmanmkc/expose-getoctokit + prepare re...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/ca10bbdd1a7739de09e99a200c7a59f5d73a4079\"\u003e\u003ccode\u003eca10bbd\u003c/code\u003e\u003c/a\u003e fix: use \u003ccode\u003e@​octokit/core/\u003c/code\u003etypes import for v7 compatibility\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/86e48e20ac85c970ed1f96e718fd068173948b7b\"\u003e\u003ccode\u003e86e48e2\u003c/code\u003e\u003c/a\u003e merge: incorporate main branch changes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/c1084728b5b935ec4ddc1e4cee877b01797b3ff9\"\u003e\u003ccode\u003ec108472\u003c/code\u003e\u003c/a\u003e chore: rebuild dist for v9 upgrade and getOctokit factory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/afff112e4f8b57c718168af75b89ce00bc8d091d\"\u003e\u003ccode\u003eafff112\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/github-script/issues/712\"\u003e#712\u003c/a\u003e from actions/salmanmkc/deployment-false + fix user-ag...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/ff8117e5b78c415f814f39ad6998f424fee7b817\"\u003e\u003ccode\u003eff8117e\u003c/code\u003e\u003c/a\u003e ci: fix user-agent test to handle orchestration ID\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/81c6b7876079abe10ff715951c9fc7b3e1ab389d\"\u003e\u003ccode\u003e81c6b78\u003c/code\u003e\u003c/a\u003e ci: use deployment: false to suppress deployment noise from integration tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/3953caf8858d318f37b6cc53a9f5708859b5a7b7\"\u003e\u003ccode\u003e3953caf\u003c/code\u003e\u003c/a\u003e docs: update README examples from \u003ca href=\"https://github.com/v8\"\u003e\u003ccode\u003e@​v8\u003c/code\u003e\u003c/a\u003e to \u003ca href=\"https://github.com/v9\"\u003e\u003ccode\u003e@​v9\u003c/code\u003e\u003c/a\u003e, add getOctokit docs and v9 brea...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/c17d55b90dcdb3d554d0027a6c180a7adc2daf78\"\u003e\u003ccode\u003ec17d55b\u003c/code\u003e\u003c/a\u003e ci: add getOctokit integration test job\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/github-script/commit/a047196d9a02fe92098771cafbb98c2f1814e408\"\u003e\u003ccode\u003ea047196\u003c/code\u003e\u003c/a\u003e test: add getOctokit integration tests via callAsyncFunction\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/github-script/compare/v7...v9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/checkout` from 4 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/releases\"\u003eactions/checkout's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev6-beta by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2298\"\u003eactions/checkout#2298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate readme/changelog for v6 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2311\"\u003eactions/checkout#2311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/checkout/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6-beta\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eUpdated persist-credentials to store the credentials under \u003ccode\u003e$RUNNER_TEMP\u003c/code\u003e instead of directly in the local git config.\u003c/p\u003e\n\u003cp\u003eThis requires a minimum Actions Runner version of \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.329.0\"\u003ev2.329.0\u003c/a\u003e to access the persisted credentials for \u003ca href=\"https://docs.github.com/en/actions/tutorials/use-containerized-services/create-a-docker-container-action\"\u003eDocker container action\u003c/a\u003e scenarios.\u003c/p\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v5...v5.0.1\"\u003ehttps://github.com/actions/checkout/compare/v5...v5.0.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare v5.0.0 release by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2238\"\u003eactions/checkout#2238\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⚠️ Minimum Compatible Runner Version\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003ev2.327.1\u003c/strong\u003e\u003cbr /\u003e\n\u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eRelease Notes\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eMake sure your runner is updated to this version or newer to use this release.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v5.0.0\"\u003ehttps://github.com/actions/checkout/compare/v4...v5.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/checkout/compare/v4...v4.3.1\"\u003ehttps://github.com/actions/checkout/compare/v4...v4.3.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/checkout/blob/main/CHANGELOG.md\"\u003eactions/checkout's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev6.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix tag handling: preserve annotations and explicit fetch-tags by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2356\"\u003eactions/checkout#2356\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd worktree support for persist-credentials includeIf by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2327\"\u003eactions/checkout#2327\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePersist creds to a separate file by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2286\"\u003eactions/checkout#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README to include Node.js 24 support details and requirements by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2248\"\u003eactions/checkout#2248\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v5 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2301\"\u003eactions/checkout#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate actions checkout to use node 24 by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2226\"\u003eactions/checkout#2226\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePort v6 cleanup to v4 by \u003ca href=\"https://github.com/ericsciple\"\u003e\u003ccode\u003e@​ericsciple\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2305\"\u003eactions/checkout#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003edocs: update README.md by \u003ca href=\"https://github.com/motss\"\u003e\u003ccode\u003e@​motss\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1971\"\u003eactions/checkout#1971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd internal repos for checking out multiple repositories by \u003ca href=\"https://github.com/mouismail\"\u003e\u003ccode\u003e@​mouismail\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1977\"\u003eactions/checkout#1977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocumentation update - add recommended permissions to Readme by \u003ca href=\"https://github.com/benwells\"\u003e\u003ccode\u003e@​benwells\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2043\"\u003eactions/checkout#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdjust positioning of user email note and permissions heading by \u003ca href=\"https://github.com/joshmgross\"\u003e\u003ccode\u003e@​joshmgross\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2044\"\u003eactions/checkout#2044\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2194\"\u003eactions/checkout#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CODEOWNERS for actions by \u003ca href=\"https://github.com/TingluoHuang\"\u003e\u003ccode\u003e@​TingluoHuang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2224\"\u003eactions/checkout#2224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate package dependencies by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/2236\"\u003eactions/checkout#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eurl-helper.ts\u003c/code\u003e now leverages well-known environment variables by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1941\"\u003eactions/checkout#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand unit test coverage for \u003ccode\u003eisGhes\u003c/code\u003e by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1946\"\u003eactions/checkout#1946\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck out other refs/* by commit if provided, fall back to ref by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1924\"\u003eactions/checkout#1924\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.2.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd Ref and Commit outputs by \u003ca href=\"https://github.com/lucacome\"\u003e\u003ccode\u003e@​lucacome\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1180\"\u003eactions/checkout#1180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDependency updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e- \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1777\"\u003eactions/checkout#1777\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1872\"\u003eactions/checkout#1872\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.7\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump the minor-npm-dependencies group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1739\"\u003eactions/checkout#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1697\"\u003eactions/checkout#1697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck out other refs/* by commit by \u003ca href=\"https://github.com/orhantoy\"\u003e\u003ccode\u003e@​orhantoy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1774\"\u003eactions/checkout#1774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePin actions/checkout's own workflows to a known, good, stable version. by \u003ca href=\"https://github.com/jww3\"\u003e\u003ccode\u003e@​jww3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1776\"\u003eactions/checkout#1776\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev4.1.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCheck platform to set archive extension appropriately by \u003ca href=\"https://github.com/cory-miller\"\u003e\u003ccode\u003e@​cory-miller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/checkout/pull/1732\"\u003eactions/checkout#1732\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/de0fac2e4500dabe0009e67214ff5f5447ce83dd\"\u003e\u003ccode\u003ede0fac2\u003c/code\u003e\u003c/a\u003e Fix tag handling: preserve annotations and explicit fetch-tags (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2356\"\u003e#2356\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/064fe7f3312418007dea2b49a19844a9ee378f49\"\u003e\u003ccode\u003e064fe7f\u003c/code\u003e\u003c/a\u003e Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/8e8c483db84b4bee98b60c0593521ed34d9990e8\"\u003e\u003ccode\u003e8e8c483\u003c/code\u003e\u003c/a\u003e Clarify v6 README (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/033fa0dc0b82693d8986f1016a0ec2c5e7d9cbb1\"\u003e\u003ccode\u003e033fa0d\u003c/code\u003e\u003c/a\u003e Add worktree support for persist-credentials includeIf (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/c2d88d3ecc89a9ef08eebf45d9637801dcee7eb5\"\u003e\u003ccode\u003ec2d88d3\u003c/code\u003e\u003c/a\u003e Update all references from v5 and v4 to v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2314\"\u003e#2314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3\"\u003e\u003ccode\u003e1af3b93\u003c/code\u003e\u003c/a\u003e update readme/changelog for v6 (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2311\"\u003e#2311\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/71cf2267d89c5cb81562390fa70a37fa40b1305e\"\u003e\u003ccode\u003e71cf226\u003c/code\u003e\u003c/a\u003e v6-beta (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/069c6959146423d11cd0184e6accf28f9d45f06e\"\u003e\u003ccode\u003e069c695\u003c/code\u003e\u003c/a\u003e Persist creds to a separate file (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2286\"\u003e#2286\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493\"\u003e\u003ccode\u003eff7abcd\u003c/code\u003e\u003c/a\u003e Update README to include Node.js 24 support details and requirements (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2248\"\u003e#2248\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/checkout/commit/08c6903cd8c0fde910a37f88322edcfb5dd907a8\"\u003e\u003ccode\u003e08c6903\u003c/code\u003e\u003c/a\u003e Prepare v5.0.0 release (\u003ca href=\"https://redirect.github.com/actions/checkout/issues/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/checkout/compare/v4...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dorny/paths-filter` from 3 to 4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dorny/paths-filter/releases\"\u003edorny/paths-filter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: update action runtime to node24 by \u003ca href=\"https://github.com/saschabratton\"\u003e\u003ccode\u003e@​saschabratton\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/294\"\u003edorny/paths-filter#294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/saschabratton\"\u003e\u003ccode\u003e@​saschabratton\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/294\"\u003edorny/paths-filter#294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3.0.3...v4.0.0\"\u003ehttps://github.com/dorny/paths-filter/compare/v3.0.3...v4.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd missing predicate-quantifier by \u003ca href=\"https://github.com/wardpeet\"\u003e\u003ccode\u003e@​wardpeet\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/279\"\u003edorny/paths-filter#279\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wardpeet\"\u003e\u003ccode\u003e@​wardpeet\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/279\"\u003edorny/paths-filter#279\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v3.0.3\"\u003ehttps://github.com/dorny/paths-filter/compare/v3...v3.0.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add config parameter for predicate quantifier by \u003ca href=\"https://github.com/petermetz\"\u003e\u003ccode\u003e@​petermetz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/224\"\u003edorny/paths-filter#224\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/petermetz\"\u003e\u003ccode\u003e@​petermetz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/224\"\u003edorny/paths-filter#224\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v3.0.2\"\u003ehttps://github.com/dorny/paths-filter/compare/v3...v3.0.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCompare base and ref when token is empty by \u003ca href=\"https://github.com/frouioui\"\u003e\u003ccode\u003e@​frouioui\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/133\"\u003edorny/paths-filter#133\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/frouioui\"\u003e\u003ccode\u003e@​frouioui\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/133\"\u003edorny/paths-filter#133\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v3.0.1\"\u003ehttps://github.com/dorny/paths-filter/compare/v3...v3.0.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dorny/paths-filter/blob/master/CHANGELOG.md\"\u003edorny/paths-filter's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/294\"\u003eUpdate action runtime to node24\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/279\"\u003eAdd missing predicate-quantifier\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/224\"\u003eAdd config parameter for predicate quantifier\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/133\"\u003eCompare base and ref when token is empty\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/210\"\u003eUpdate to Node.js 20\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/215\"\u003eUpdate all dependencies\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.11.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/167\"\u003eUpdate @​actions/core to v1.10.0 - Fixes warning about deprecated set-output\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/168\"\u003eDocument need for pull-requests: read permission\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/164\"\u003eUpdating to actions/checkout@v3\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.11.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/157\"\u003eSet list-files input parameter as not required\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/161\"\u003eUpdate Node.js\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/162\"\u003eFix incorrect handling of Unicode characters in exec()\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/163\"\u003eUse Octokit pagination\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/160\"\u003eUpdates real world links\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.10.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/91\"\u003eFix getLocalRef() returns wrong ref\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.10.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/85\"\u003eImprove robustness of change detection\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/82\"\u003eAdd ref input parameter\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/83\"\u003eFix change detection in PR when pullRequest.changed_files is incorrect\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/78\"\u003eFix change detection when base is a tag\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/75\"\u003eFix fetching git history\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/dorny/paths-filter/pull/74\"\u003eFix fetching git history + fallback to unshallow repo\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.9.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/fbd0ab8f3e69293af611ebaee6363fc25e6d187d\"\u003e\u003ccode\u003efbd0ab8\u003c/code\u003e\u003c/a\u003e feat: add merge_group event support\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/efb1da7ce8d89bbc261191e5a2dc1453c3837339\"\u003e\u003ccode\u003eefb1da7\u003c/code\u003e\u003c/a\u003e feat: add dist/ freshness check to PR workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/d8f7b061b24c30a325ff314b76c37adb05b041ce\"\u003e\u003ccode\u003ed8f7b06\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dorny/paths-filter/issues/302\"\u003e#302\u003c/a\u003e from dorny/issue-299\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/addbc147a95845176e1bc013a012fbf1d366389a\"\u003e\u003ccode\u003eaddbc14\u003c/code\u003e\u003c/a\u003e Update README for v4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/9d7afb8d214ad99e78fbd4247752c4caed2b6e4c\"\u003e\u003ccode\u003e9d7afb8\u003c/code\u003e\u003c/a\u003e Update CHANGELOG for v4.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/782470c5d953cae2693d643172b14e01bacb71f3\"\u003e\u003ccode\u003e782470c\u003c/code\u003e\u003c/a\u003e Merge branch 'releases/v3'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/ce10459c8b92cd8901166c0a222fbb033ef39365\"\u003e\u003ccode\u003ece10459\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dorny/paths-filter/issues/294\"\u003e#294\u003c/a\u003e from saschabratton/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dorny/paths-filter/commit/5f40380c5482e806c81cec080f5192e7234d8fe9\"\u003e\u003ccode\u003e5f40380\u003c/code\u003e\u003c/a\u003e feat: update action runtime to node24\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/dorny/paths-filter/compare/v3...v4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/upload-artifact` from 4 to 7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/upload-artifact/releases\"\u003eactions/upload-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.0.0\u003c/h2\u003e\n\u003ch2\u003ev7 What's new\u003c/h2\u003e\n\u003ch3\u003eDirect Uploads\u003c/h3\u003e\n\u003cp\u003eAdds support for uploading single files directly (unzipped). Callers can set the new \u003ccode\u003earchive\u003c/code\u003e parameter to \u003ccode\u003efalse\u003c/code\u003e to skip zipping the file during upload. Right now, we only support single files. The action will fail if the glob passed resolves to multiple files. The \u003ccode\u003ename\u003c/code\u003e parameter is also ignored with this setting. Instead, the name of the artifact will be the name of the uploaded file.\u003c/p\u003e\n\u003ch3\u003eESM\u003c/h3\u003e\n\u003cp\u003eTo support new versions of the \u003ccode\u003e@actions/*\u003c/code\u003e packages, we've upgraded the package to ESM.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd proxy integration test by \u003ca href=\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/754\"\u003eactions/upload-artifact#754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade the module to ESM and bump dependencies by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/762\"\u003eactions/upload-artifact#762\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport direct file uploads by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/764\"\u003eactions/upload-artifact#764\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Link\"\u003e\u003ccode\u003e@​Link\u003c/code\u003e\u003c/a\u003e- made their first contribution in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/754\"\u003eactions/upload-artifact#754\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/upload-artifact/compare/v6...v7.0.0\"\u003ehttps://github.com/actions/upload-artifact/compare/v6...v7.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003ch2\u003ev6 - What's new\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nactions/upload-artifact@v6 now runs on Node.js 24 (\u003ccode\u003eruns.using: node24\u003c/code\u003e) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNode.js 24\u003c/h3\u003e\n\u003cp\u003eThis release updates the runtime to Node.js 24. v5 had preliminary support for Node.js 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpload Artifact Node 24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/719\"\u003eactions/upload-artifact#719\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update \u003ccode\u003e@​actions/artifact\u003c/code\u003e for Node.js 24 punycode deprecation by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/744\"\u003eactions/upload-artifact#744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare release v6.0.0 for Node.js 24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/745\"\u003eactions/upload-artifact#745\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/upload-artifact/compare/v5.0.0...v6.0.0\"\u003ehttps://github.com/actions/upload-artifact/compare/v5.0.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.0.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eBREAKING CHANGE:\u003c/strong\u003e this update supports Node \u003ccode\u003ev24.x\u003c/code\u003e. This is not a breaking change per-se but we're treating it as such.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/GhadimiR\"\u003e\u003ccode\u003e@​GhadimiR\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/681\"\u003eactions/upload-artifact#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/nebuk89\"\u003e\u003ccode\u003e@​nebuk89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/712\"\u003eactions/upload-artifact#712\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReadme: spell out the first use of GHES by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/727\"\u003eactions/upload-artifact#727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GHES guidance to include reference to Node 20 version by \u003ca href=\"https://github.com/patrikpolyak\"\u003e\u003ccode\u003e@​patrikpolyak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/725\"\u003eactions/upload-artifact#725\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@actions/artifact\u003c/code\u003e to \u003ccode\u003ev4.0.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003ePrepare \u003ccode\u003ev5.0.0\u003c/code\u003e by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/upload-artifact/pull/734\"\u003eactions/upload-artifact#734\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/043fb46d1a93c77aae656e7c1c64a875d1fc6a0a\"\u003e\u003ccode\u003e043fb46\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/797\"\u003e#797\u003c/a\u003e from actions/yacaovsnc/update-dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/634250c1388765ea7ed0f053e636f1f399000b94\"\u003e\u003ccode\u003e634250c\u003c/code\u003e\u003c/a\u003e Include changes in typespec/ts-http-runtime 0.3.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/e454baaac2be505c9450e11b8f3215c6fc023ce8\"\u003e\u003ccode\u003ee454baa\u003c/code\u003e\u003c/a\u003e Readme: bump all the example versions to v7 (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/796\"\u003e#796\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/74fad66b98a6d799dc004d3353ccd0e6f6b2530e\"\u003e\u003ccode\u003e74fad66\u003c/code\u003e\u003c/a\u003e Update the readme with direct upload details (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/795\"\u003e#795\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/bbbca2ddaa5d8feaa63e36b76fdaad77386f024f\"\u003e\u003ccode\u003ebbbca2d\u003c/code\u003e\u003c/a\u003e Support direct file uploads (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/764\"\u003e#764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/589182c5a4cec8920b8c1bce3e2fab1c97a02296\"\u003e\u003ccode\u003e589182c\u003c/code\u003e\u003c/a\u003e Upgrade the module to ESM and bump dependencies (\u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/762\"\u003e#762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/47309c993abb98030a35d55ef7ff34b7fa1074b5\"\u003e\u003ccode\u003e47309c9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/754\"\u003e#754\u003c/a\u003e from actions/Link-/add-proxy-integration-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/02a8460834e70dab0ce194c64360c59dc1475ef0\"\u003e\u003ccode\u003e02a8460\u003c/code\u003e\u003c/a\u003e Add proxy integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/b7c566a772e6b6bfb58ed0dc250532a479d7789f\"\u003e\u003ccode\u003eb7c566a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/upload-artifact/issues/745\"\u003e#745\u003c/a\u003e from actions/upload-artifact-v6-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/upload-artifact/commit/e516bc8500aaf3d07d591fcd4ae6ab5f9c391d5b\"\u003e\u003ccode\u003ee516bc8\u003c/code\u003e\u003c/a\u003e docs: correct description of Node.js 24 support in README\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/upload-artifact/compare/v4...v7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `actions/download-artifact` from 4 to 8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/actions/download-artifact/releases\"\u003eactions/download-artifact's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev8.0.0\u003c/h2\u003e\n\u003ch2\u003ev8 - What's new\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nactions/download-artifact@v8 has been migrated to an ESM module. This should be transparent to the caller but forks might need to make significant changes.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nHash mismatches will now error by default. Users can override this behavior with a setting change (see below).\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eDirect downloads\u003c/h3\u003e\n\u003cp\u003eTo support direct uploads in \u003ccode\u003eactions/upload-artifact\u003c/code\u003e, the action will no longer attempt to unzip all downloaded files. Instead, the action checks the \u003ccode\u003eContent-Type\u003c/code\u003e header ahead of unzipping and skips non-zipped files. Callers wishing to download a zipped file as-is can also set the new \u003ccode\u003eskip-decompress\u003c/code\u003e parameter to \u003ccode\u003etrue\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eEnforced checks (breaking)\u003c/h3\u003e\n\u003cp\u003eA previous release introduced digest checks on the download. If a download hash didn't match the expected hash from the server, the action would log a warning. Callers can now configure the behavior on mismatch with the \u003ccode\u003edigest-mismatch\u003c/code\u003e parameter. To be secure by default, we are now defaulting the behavior to \u003ccode\u003eerror\u003c/code\u003e which will fail the workflow run.\u003c/p\u003e\n\u003ch3\u003eESM\u003c/h3\u003e\n\u003cp\u003eTo support new versions of the @actions/* packages, we've upgraded the package to ESM.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDon't attempt to un-zip non-zipped downloads by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/460\"\u003eactions/download-artifact#460\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a setting to specify what to do on hash mismatch and default it to \u003ccode\u003eerror\u003c/code\u003e by \u003ca href=\"https://github.com/danwkennedy\"\u003e\u003ccode\u003e@​danwkennedy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/461\"\u003eactions/download-artifact#461\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/download-artifact/compare/v7...v8.0.0\"\u003ehttps://github.com/actions/download-artifact/compare/v7...v8.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev7.0.0\u003c/h2\u003e\n\u003ch2\u003ev7 - What's new\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nactions/download-artifact@v7 now runs on Node.js 24 (\u003ccode\u003eruns.using: node24\u003c/code\u003e) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNode.js 24\u003c/h3\u003e\n\u003cp\u003eThis release updates the runtime to Node.js 24. v6 had preliminary support for Node 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate GHES guidance to include reference to Node 20 version by \u003ca href=\"https://github.com/patrikpolyak\"\u003e\u003ccode\u003e@​patrikpolyak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/440\"\u003eactions/download-artifact#440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDownload Artifact Node24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/415\"\u003eactions/download-artifact#415\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update \u003ccode\u003e@​actions/artifact\u003c/code\u003e to fix Node.js 24 punycode deprecation by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/451\"\u003eactions/download-artifact#451\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare release v7.0.0 for Node.js 24 support by \u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/452\"\u003eactions/download-artifact#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/patrikpolyak\"\u003e\u003ccode\u003e@​patrikpolyak\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/440\"\u003eactions/download-artifact#440\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salmanmkc\"\u003e\u003ccode\u003e@​salmanmkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/actions/download-artifact/pull/415\"\u003eactions/download-artifact#415\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/actions/download-artifact/compare/v6.0.0...v7.0.0\"\u003ehttps://github.com/actions/download-artifact/compare/v6.0.0...v7.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c\"\u003e\u003ccode\u003e3e5f45b\u003c/code\u003e\u003c/a\u003e Add regression tests for CJK characters (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/471\"\u003e#471\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/e6d03f67377d4412c7aa56a8e2e4988e6ec479dd\"\u003e\u003ccode\u003ee6d03f6\u003c/code\u003e\u003c/a\u003e Add a regression test for artifact name + content-type mismatches (\u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/472\"\u003e#472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3\"\u003e\u003ccode\u003e70fc10c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/461\"\u003e#461\u003c/a\u003e from actions/danwkennedy/digest-mismatch-behavior\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/f258da9a506b755b84a09a531814700b86ccfc62\"\u003e\u003ccode\u003ef258da9\u003c/code\u003e\u003c/a\u003e Add change docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/ccc058e5fbb0bb2352213eaec3491e117cbc4a5c\"\u003e\u003ccode\u003eccc058e\u003c/code\u003e\u003c/a\u003e Fix linting issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/bd7976ba57ecea96e6f3df575eb922d11a12a9fd\"\u003e\u003ccode\u003ebd7976b\u003c/code\u003e\u003c/a\u003e Add a setting to specify what to do on hash mismatch and default it to \u003ccode\u003eerror\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/ac21fcf45e0aaee541c0f7030558bdad38d77d6c\"\u003e\u003ccode\u003eac21fcf\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/actions/download-artifact/issues/460\"\u003e#460\u003c/a\u003e from actions/danwkennedy/download-no-unzip\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/15999bff51058bc7c19b50ebbba518eaef7c26c0\"\u003e\u003ccode\u003e15999bf\u003c/code\u003e\u003c/a\u003e Add note about package bumps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/974686ed5098c7f9c9289ec946b9058e496a2561\"\u003e\u003ccode\u003e974686e\u003c/code\u003e\u003c/a\u003e Bump the version to \u003ccode\u003ev8\u003c/code\u003e and add release notes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/actions/download-artifact/commit/fbe48b1d2756394be4cd4358ed3bc1343b330e75\"\u003e\u003ccode\u003efbe48b1\u003c/code\u003e\u003c/a\u003e Update test names to make it clearer what they do\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/actions/download-artifact/compare/v4...v8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dependabot/fetch-metadata` from 3.0.0 to 3.1.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd permissions to all workflows by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/687\"\u003edependabot/fetch-metadata#687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 16.0.0 to 17.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/690\"\u003edependabot/fetch-metadata#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump esbuild from 0.27.4 to 0.28.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/693\"\u003edependabot/fetch-metadata#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.10 to 1.19.13 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/694\"\u003edependabot/fetch-metadata#694\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.7 to 4.12.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/695\"\u003edependabot/fetch-metadata#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDynamically update the tracking tag in action by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/696\"\u003edependabot/fetch-metadata#696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: handle duplicate dependency names in parseMetadataLinks by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove $ anchor from updateFragment regex to handle pip directory suffixes by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/698\"\u003edependabot/fetch-metadata#698\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates to README for permissions clarification by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/697\"\u003edependabot/fetch-metadata#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: resolve update-type null for Python, Composer, and Terraform PRs by \u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 17.4.0 to 17.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/703\"\u003edependabot/fetch-metadata#703\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/701\"\u003edependabot/fetch-metadata#701\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e from 9.0.0 to 9.1.0 in the dependencies group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/702\"\u003edependabot/fetch-metadata#702\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.12 to 4.12.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/705\"\u003edependabot/fetch-metadata#705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev3.1.0 by \u003ca href=\"https://github.com/fetch-metadata-action-automation\"\u003e\u003ccode\u003e@​fetch-metadata-action-automation\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/692\"\u003edependabot/fetch-metadata#692\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/ffa630c65fa7e0ecfa0625b5ceda64399aea1b36...25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `docker/metadata-action` from 5 to 6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/docker/metadata-action/releases\"\u003edocker/metadata-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNode 24 as default runtime (requires \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eActions Runner v2.327.1\u003c/a\u003e or later) by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/605\"\u003edocker/metadata-action#605\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eList inputs now preserve \u003ccode\u003e#\u003c/code\u003e inside values while still supporting full-line \u003ccode\u003e#\u003c/code\u003e comments by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/607\"\u003edocker/metadata-action#607\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch to ESM and update config/test wiring by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/602\"\u003edocker/metadata-action#602\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump lodash from 4.17.21 to 4.17.23 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/588\"\u003edocker/metadata-action#588\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​actions/core\u003c/code\u003e from 1.11.1 to 3.0.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/599\"\u003edocker/metadata-action#599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​actions/github\u003c/code\u003e from 6.0.1 to 9.0.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/597\"\u003edocker/metadata-action#597\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.68.0 to 0.79.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/604\"\u003edocker/metadata-action#604\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​isaacs/brace-expansion\u003c/code\u003e from 5.0.0 to 5.0.1 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/600\"\u003edocker/metadata-action#600\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump semver from 7.7.3 to 7.7.4 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/603\"\u003edocker/metadata-action#603\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/docker/metadata-action/compare/v5.10.0...v6.0.0\"\u003ehttps://github.com/docker/metadata-action/compare/v5.10.0...v6.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.10.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.66.0 to 0.68.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/559\"\u003edocker/metadata-action#559\u003c/a\u003e \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/569\"\u003edocker/metadata-action#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump js-yaml from 3.14.1 to 3.14.2 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/564\"\u003edocker/metadata-action#564\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/docker/metadata-action/compare/v5.9.0...v5.10.0\"\u003ehttps://github.com/docker/metadata-action/compare/v5.9.0...v5.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003etag-names\u003c/code\u003e output to return tag names without image base name by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/553\"\u003edocker/metadata-action#553\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​babel/runtime-corejs3\u003c/code\u003e from 7.14.7 to 7.28.2 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/539\"\u003edocker/metadata-action#539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.62.1 to 0.66.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/555\"\u003edocker/metadata-action#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump brace-expansion from 1.1.11 to 1.1.12 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/540\"\u003edocker/metadata-action#540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump csv-parse from 5.6.0 to 6.1.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/532\"\u003edocker/metadata-action#532\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump semver from 7.7.2 to 7.7.3 in in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/554\"\u003edocker/metadata-action#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tmp from 0.2.3 to 0.2.5 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/541\"\u003edocker/metadata-action#541\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/docker/metadata-action/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/docker/metadata-action/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew \u003ccode\u003eis_not_default_branch\u003c/code\u003e global expression by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/535\"\u003edocker/metadata-action#535\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow to match part of the git tag or value for semver/pep440 types by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/536\"\u003edocker/metadata-action#536\u003c/a\u003e \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/537\"\u003edocker/metadata-action#537\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​actions/github\u003c/code\u003e from 6.0.0 to 6.0.1 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/523\"\u003edocker/metadata-action#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.56.0 to 0.62.1 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/526\"\u003edocker/metadata-action#526\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump form-data from 2.5.1 to 2.5.5 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/533\"\u003edocker/metadata-action#533\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump moment-timezone from 0.5.47 to 0.6.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/525\"\u003edocker/metadata-action#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump semver from 7.7.1 to 7.7.2 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/524\"\u003edocker/metadata-action#524\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/docker/metadata-action/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/docker/metadata-action/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eGlobal expressions support for labels and annotations by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/489\"\u003edocker/metadata-action#489\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport disabling outputs as environment variables by \u003ca href=\"https://github.com/omus\"\u003e\u003ccode\u003e@​omus\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/497\"\u003edocker/metadata-action#497\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.44.0 to 0.56.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/507\"\u003edocker/metadata-action#507\u003c/a\u003e \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/509\"\u003edocker/metadata-action#509\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump csv-parse from 5.5.6 to 5.6.0 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/482\"\u003edocker/metadata-action#482\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump moment-timezone from 0.5.46 to 0.5.47 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/501\"\u003edocker/metadata-action#501\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump semver from 7.6.3 to 7.7.1 in \u003ca href=\"https://redirect.github.com/docker/metadata-action/pull/504\"\u003edocker/metadata-action#504\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/docker/metadata-action/compare/v5.6.1...v5.7.0\"\u003ehttps://github.com/docker/metadata-action/compare/v5.6.1...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/80c7e94dd9b9319bd5eb7a0e0fe9291e23a2a2e9\"\u003e\u003ccode\u003e80c7e94\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/metadata-action/issues/613\"\u003e#613\u003c/a\u003e from docker/dependabot/npm_and_yarn/docker/actions-to...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/8e0ddab90c29de6fff30c787e328563e48106fd0\"\u003e\u003ccode\u003e8e0ddab\u003c/code\u003e\u003c/a\u003e chore: update generated content\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/a8db14bd863c93be08c93c13e1cc816ec5b49b2e\"\u003e\u003ccode\u003ea8db14b\u003c/code\u003e\u003c/a\u003e chore(deps): Bump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.79.0 to 0.90.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/63a7371ee01888324f2c7b3e18be9ac13b9dbdbc\"\u003e\u003ccode\u003e63a7371\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/metadata-action/issues/617\"\u003e#617\u003c/a\u003e from docker/dependabot/npm_and_yarn/csv-parse-6.2.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/c6916a6cf86608c44ba936565d57f550835ecd45\"\u003e\u003ccode\u003ec6916a6\u003c/code\u003e\u003c/a\u003e chore: update generated content\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/aca9205632182712a2d859059cf12fdc9b2ca202\"\u003e\u003ccode\u003eaca9205\u003c/code\u003e\u003c/a\u003e chore(deps): Bump csv-parse from 6.1.0 to 6.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/9dcfe60f10ebea72e9e48bf8bf366d01629d045a\"\u003e\u003ccode\u003e9dcfe60\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/metadata-action/issues/629\"\u003e#629\u003c/a\u003e from docker/dependabot/npm_and_yarn/handlebars-4.7.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/43dea7677c80686dc31a7b16e61ba9d542081b59\"\u003e\u003ccode\u003e43dea76\u003c/code\u003e\u003c/a\u003e chore: update generated content\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/7a56f5af0aa2d36278ba725bb44091417def9f73\"\u003e\u003ccode\u003e7a56f5a\u003c/code\u003e\u003c/a\u003e chore(deps): Bump handlebars from 4.7.8 to 4.7.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/metadata-action/commit/e49e0aa5deac3d581afd6ce80464d84ef68f5ccc\"\u003e\u003ccode\u003ee49e0aa\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/metadata-action/issues/658\"\u003e#658\u003c/a\u003e from docker/dependabot/npm_and_yarn/brace-expansion-5...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/metadata-action/compare/v5...v6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `docker/login-action` from 3 to 4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/docker/login-action/releases\"\u003edocker/login-action's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.0.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNode 24 as default runtime (requires \u003ca href=\"https://github.com/actions/runner/releases/tag/v2.327.1\"\u003eActions Runner v2.327.1\u003c/a\u003e or later) by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/929\"\u003edocker/login-action#929\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch to ESM and update config/test wiring by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/927\"\u003edocker/login-action#927\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​actions/core\u003c/code\u003e from 1.11.1 to 3.0.0 in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/919\"\u003edocker/login-action#919\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​aws-sdk/client-ecr\u003c/code\u003e from 3.890.0 to 3.1000.0 in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/909\"\u003edocker/login-action#909\u003c/a\u003e \u003ca href=\"https://redirect.github.com/docker/login-action/pull/920\"\u003edocker/login-action#920\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​aws-sdk/client-ecr-public\u003c/code\u003e from 3.890.0 to 3.1000.0 in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/909\"\u003edocker/login-action#909\u003c/a\u003e \u003ca href=\"https://redirect.github.com/docker/login-action/pull/920\"\u003edocker/login-action#920\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​docker/actions-toolkit\u003c/code\u003e from 0.63.0 to 0.77.0 in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/910\"\u003edocker/login-action#910\u003c/a\u003e \u003ca href=\"https://redirect.github.com/docker/login-action/pull/928\"\u003edocker/login-action#928\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​isaacs/brace-expansion\u003c/code\u003e from 5.0.0 to 5.0.1 in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/921\"\u003edocker/login-action#921\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump js-yaml from 4.1.0 to 4.1.1 in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/901\"\u003edocker/login-action#901\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/docker/login-action/compare/v3.7.0...v4.0.0\"\u003ehttps://github.com/docker/login-action/compare/v3.7.0...v4.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.7.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003escope\u003c/code\u003e input to set scopes for the authentication token by \u003ca href=\"https://github.com/crazy-max\"\u003e\u003ccode\u003e@​crazy-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/docker/login-action/pull/912\"\u003edocker/login-action#912\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for AWS European Sovereign Cloud ECR by \u003ca href=\"https://github.com/dphi\"\u003e\u003ccode\u003e@​dphi\u003c/code\u003e\u003c/a\u003e in \u003ca hre...\n\n_Description has been truncated_","html_url":"https://github.com/acertainromance401/SentiVision/pull/36","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/acertainromance401%2FSentiVision/issues/36","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/36/packages"}},{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-05-26T23:51:58.000Z","version_change":"2 → 3","issue":{"uuid":"4528304100","node_id":"PR_kwDOSl5Tvc7fncAH","number":5,"state":"open","title":"ci(deps): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-26T23:51:58.000Z","updated_at":"2026-05-26T23:51:59.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"ci(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Altagen/Riced/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Altagen%2FRiced/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"}},{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-05-26T13:14:56.000Z","version_change":"2 → 3","issue":{"uuid":"4524389268","node_id":"PR_kwDOQXMM-c7fatWi","number":477,"state":"open","title":"chore(actions)(deps): bump the third-party-actions group with 2 updates","user":"dependabot[bot]","labels":["deps"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-26T13:14:56.000Z","updated_at":"2026-05-26T13:18:24.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(actions)(deps): bump","group_name":"third-party-actions","update_count":2,"packages":[{"name":"astral-sh/setup-uv","old_version":"4","new_version":"7","repository_url":"https://github.com/astral-sh/setup-uv"},{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps the third-party-actions group with 2 updates: [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv) and [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata).\n\nUpdates `astral-sh/setup-uv` from 4 to 7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/astral-sh/setup-uv/releases\"\u003eastral-sh/setup-uv's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev7.2.1 🌈 update known checksums up to 0.9.28\u003c/h2\u003e\n\u003ch2\u003eChanges\u003c/h2\u003e\n\u003ch2\u003e🧰 Maintenance\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: update known checksums for 0.9.28 @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/744\"\u003e#744\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: update known checksums for 0.9.27 @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/742\"\u003e#742\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: update known checksums for 0.9.26 @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/734\"\u003e#734\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: update known checksums for 0.9.25 @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/733\"\u003e#733\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: update known checksums for 0.9.24 @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/730\"\u003e#730\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📚 Documentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eClarify impact of using actions/setup-python \u003ca href=\"https://github.com/eifinger\"\u003e\u003ccode\u003e@​eifinger\u003c/code\u003e\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/732\"\u003e#732\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e⬆️ Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump zizmorcore/zizmor-action from 0.3.0 to 0.4.1 @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/741\"\u003e#741\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev7.0.0 🌈 node24 and a lot of bugfixes\u003c/h2\u003e\n\u003ch2\u003eChanges\u003c/h2\u003e\n\u003cp\u003eThis release comes with a load of bug fixes and a speed up. Because of switching from node20 to node24 it is also a breaking change. If you are running on GitHub hosted runners this will just work, if you are using self-hosted runners make sure, that your runners are up to date. If you followed the normal installation instructions your self-hosted runner will keep itself updated.\u003c/p\u003e\n\u003cp\u003eThis release also removes the deprecated input \u003ccode\u003eserver-url\u003c/code\u003e which was used to download uv releases from a different server.\nThe \u003ca href=\"https://github.com/astral-sh/setup-uv?tab=readme-ov-file#manifest-file\"\u003emanifest-file\u003c/a\u003e input supersedes that functionality by adding a flexible way to define available versions and where they should be downloaded from.\u003c/p\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe action now respects when the environment variable \u003ccode\u003eUV_CACHE_DIR\u003c/code\u003e is already set and does not overwrite it. It now also finds \u003ca href=\"https://docs.astral.sh/uv/reference/settings/#cache-dir\"\u003ecache-dir\u003c/a\u003e settings in config files if you set them.\u003c/li\u003e\n\u003cli\u003eSome users encountered problems that \u003ca href=\"https://github.com/astral-sh/setup-uv?tab=readme-ov-file#disable-cache-pruning\"\u003ecache pruning\u003c/a\u003e took forever because they had some \u003ccode\u003euv\u003c/code\u003e processes running in the background. Starting with uv version \u003ccode\u003e0.8.24\u003c/code\u003e this action uses \u003ccode\u003euv cache prune --ci --force\u003c/code\u003e to ignore the running processes\u003c/li\u003e\n\u003cli\u003eIf you just want to install uv but not have it available in path, this action now respects \u003ccode\u003eUV_NO_MODIFY_PATH\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eSome other actions also set the env var \u003ccode\u003eUV_CACHE_DIR\u003c/code\u003e. This action can now deal with that but as this could lead to unwanted behavior in some edgecases a warning is now displayed.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eImprovements\u003c/h3\u003e\n\u003cp\u003eIf you are using minimum version specifiers for the version of uv to install for example\u003c/p\u003e\n\u003cpre lang=\"toml\"\u003e\u003ccode\u003e[tool.uv]\r\nrequired-version = \u0026quot;\u0026gt;=0.8.17\u0026quot;\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis action now detects that and directly uses the latest version. Previously it would download all available releases from the uv repo\nto determine the highest matching candidate for the version specifier, which took much more time.\u003c/p\u003e\n\u003cp\u003eIf you are using other specifiers like \u003ccode\u003e0.8.x\u003c/code\u003e this action still needs to download all available releases because the specifier defines an upper bound (not 0.9.0 or later) and \u0026quot;latest\u0026quot; would possibly not satisfy that.\u003c/p\u003e\n\u003ch2\u003e🚨 Breaking changes\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/37802adc94f370d6bfd71619e3f0bf239e1f3b78\"\u003e\u003ccode\u003e37802ad\u003c/code\u003e\u003c/a\u003e Fetch uv from Astral's mirror by default (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/809\"\u003e#809\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/9f00d186ce05fb186322da2c89bac726cc9005f5\"\u003e\u003ccode\u003e9f00d18\u003c/code\u003e\u003c/a\u003e chore(deps): bump zizmorcore/zizmor-action from 0.5.0 to 0.5.2 (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/808\"\u003e#808\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/fd8f376b22c1219b8021404baf54539061a0339a\"\u003e\u003ccode\u003efd8f376\u003c/code\u003e\u003c/a\u003e Switch to ESM for source and test, use CommonJS for dist (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/806\"\u003e#806\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/f9070de1eac8816a02afc90f4a12cc6fe70d141c\"\u003e\u003ccode\u003ef9070de\u003c/code\u003e\u003c/a\u003e Bump deps (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/805\"\u003e#805\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/cadb67bdc9933e2f8795f82ab47acc5f41ed4d31\"\u003e\u003ccode\u003ecadb67b\u003c/code\u003e\u003c/a\u003e chore: update known checksums for 0.10.10 (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/804\"\u003e#804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/e06108dd0aef18192324c70427afc47652e63a82\"\u003e\u003ccode\u003ee06108d\u003c/code\u003e\u003c/a\u003e Use astral-sh/versions as primary version provider (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/802\"\u003e#802\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/0f6ec07aafe46cff7a322c837e5ba37d95c82b00\"\u003e\u003ccode\u003e0f6ec07\u003c/code\u003e\u003c/a\u003e docs: replace copilot instructions with AGENTS.md (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/794\"\u003e#794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/821e5c98158b218f7c8e97d0ea3862c6d6425e8b\"\u003e\u003ccode\u003e821e5c9\u003c/code\u003e\u003c/a\u003e docs: add cross-client dependabot rollup skill (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/793\"\u003e#793\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/6ee6290f1cbc4156c0bdd66691b2c144ef8df19a\"\u003e\u003ccode\u003e6ee6290\u003c/code\u003e\u003c/a\u003e chore(deps): bump versions (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/792\"\u003e#792\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/astral-sh/setup-uv/commit/9f332a133a60f39d23361d5262fa95793aa02590\"\u003e\u003ccode\u003e9f332a1\u003c/code\u003e\u003c/a\u003e Add riscv64 architecture support to platform detection (\u003ca href=\"https://redirect.github.com/astral-sh/setup-uv/issues/791\"\u003e#791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/astral-sh/setup-uv/compare/v4...v7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dependabot/fetch-metadata` from 2 to 3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/ariffazil/arifOS/pull/477","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ariffazil%2FarifOS/issues/477","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/477/packages"}},{"old_version":"2.3.0","new_version":"3.1.0","update_type":"major","path":null,"pr_created_at":"2026-05-26T05:47:12.000Z","version_change":"2.3.0 → 3.1.0","issue":{"uuid":"4521711088","node_id":"PR_kwDOF3BwCs7fR_tp","number":952,"state":"open","title":"chore(deps): bump dependabot/fetch-metadata from 2.3.0 to 3.1.0","user":"dependabot[bot]","labels":["dependencies","minor","major"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-26T05:47:12.000Z","updated_at":"2026-05-26T05:50:58.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2.3.0","new_version":"3.1.0","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2.3.0 to 3.1.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd permissions to all workflows by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/687\"\u003edependabot/fetch-metadata#687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 16.0.0 to 17.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/690\"\u003edependabot/fetch-metadata#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump esbuild from 0.27.4 to 0.28.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/693\"\u003edependabot/fetch-metadata#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.10 to 1.19.13 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/694\"\u003edependabot/fetch-metadata#694\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.7 to 4.12.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/695\"\u003edependabot/fetch-metadata#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDynamically update the tracking tag in action by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/696\"\u003edependabot/fetch-metadata#696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: handle duplicate dependency names in parseMetadataLinks by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove $ anchor from updateFragment regex to handle pip directory suffixes by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/698\"\u003edependabot/fetch-metadata#698\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates to README for permissions clarification by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/697\"\u003edependabot/fetch-metadata#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: resolve update-type null for Python, Composer, and Terraform PRs by \u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 17.4.0 to 17.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/703\"\u003edependabot/fetch-metadata#703\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/701\"\u003edependabot/fetch-metadata#701\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e from 9.0.0 to 9.1.0 in the dependencies group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/702\"\u003edependabot/fetch-metadata#702\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.12 to 4.12.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/705\"\u003edependabot/fetch-metadata#705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev3.1.0 by \u003ca href=\"https://github.com/fetch-metadata-action-automation\"\u003e\u003ccode\u003e@​fetch-metadata-action-automation\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/692\"\u003edependabot/fetch-metadata#692\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/d7267f607e9d3fb96fc2fbe83e0af444713e90b7...25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2.3.0\u0026new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/pixiv/charcoal/pull/952","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pixiv%2Fcharcoal/issues/952","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/952/packages"}},{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-05-26T03:20:09.000Z","version_change":"2 → 3","issue":{"uuid":"4521055933","node_id":"PR_kwDOScBj-s7fP4CL","number":21,"state":"open","title":"chore(deps): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":["dependencies"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-26T03:20:09.000Z","updated_at":"2026-05-26T03:20:19.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/HybridAIWorkforce/book_framework_analyzer/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/HybridAIWorkforce%2Fbook_framework_analyzer/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"}},{"old_version":"2.3.0","new_version":"3.1.0","update_type":"major","path":null,"pr_created_at":"2026-05-25T23:56:11.000Z","version_change":"2.3.0 → 3.1.0","issue":{"uuid":"4520204183","node_id":"PR_kwDOSnhNVM7fNGwG","number":16,"state":"open","title":"ci: Bump dependabot/fetch-metadata from 2.3.0 to 3.1.0","user":"dependabot[bot]","labels":["dependencies","ci","docs"],"assignees":[],"locked":false,"comments_count":6,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-25T23:56:11.000Z","updated_at":"2026-05-25T23:58:54.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"ci: Bump","packages":[{"name":"dependabot/fetch-metadata","old_version":"2.3.0","new_version":"3.1.0","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2.3.0 to 3.1.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd permissions to all workflows by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/687\"\u003edependabot/fetch-metadata#687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 16.0.0 to 17.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/690\"\u003edependabot/fetch-metadata#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump esbuild from 0.27.4 to 0.28.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/693\"\u003edependabot/fetch-metadata#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.10 to 1.19.13 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/694\"\u003edependabot/fetch-metadata#694\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.7 to 4.12.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/695\"\u003edependabot/fetch-metadata#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDynamically update the tracking tag in action by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/696\"\u003edependabot/fetch-metadata#696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: handle duplicate dependency names in parseMetadataLinks by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove $ anchor from updateFragment regex to handle pip directory suffixes by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/698\"\u003edependabot/fetch-metadata#698\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates to README for permissions clarification by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/697\"\u003edependabot/fetch-metadata#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: resolve update-type null for Python, Composer, and Terraform PRs by \u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 17.4.0 to 17.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/703\"\u003edependabot/fetch-metadata#703\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/701\"\u003edependabot/fetch-metadata#701\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e from 9.0.0 to 9.1.0 in the dependencies group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/702\"\u003edependabot/fetch-metadata#702\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.12 to 4.12.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/705\"\u003edependabot/fetch-metadata#705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev3.1.0 by \u003ca href=\"https://github.com/fetch-metadata-action-automation\"\u003e\u003ccode\u003e@​fetch-metadata-action-automation\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/692\"\u003edependabot/fetch-metadata#692\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/d7267f607e9d3fb96fc2fbe83e0af444713e90b7...25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2.3.0\u0026new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\n\u003c!-- This is an auto-generated comment: release notes by coderabbit.ai --\u003e\n\n## Summary by CodeRabbit\n\n* **Chores**\n  * Updated GitHub Actions workflow to use a newer version of the Dependabot metadata action.\n\n\u003c!-- review_stack_entry_start --\u003e\n\n[![Review Change Stack](https://storage.googleapis.com/coderabbit_public_assets/review-stack-in-coderabbit-ui.svg)](https://app.coderabbit.ai/change-stack/seathatflowsinourveins/ourveins/pull/16?utm_source=github_walkthrough\u0026utm_medium=github\u0026utm_campaign=change_stack)\n\n\u003c!-- review_stack_entry_end --\u003e\n\n\u003c!-- end of auto-generated comment: release notes by coderabbit.ai --\u003e","html_url":"https://github.com/seathatflowsinourveins/ourveins/pull/16","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/seathatflowsinourveins%2Fourveins/issues/16","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/16/packages"}},{"old_version":"2","new_version":"3","update_type":null,"path":null,"pr_created_at":"2026-05-25T23:39:46.000Z","version_change":"2 → 3","issue":{"uuid":"4520139202","node_id":"PR_kwDOSb-8ks7fM4-1","number":29,"state":"open","title":"chore(deps): bump dependabot/fetch-metadata from 2 to 3","user":"dependabot[bot]","labels":["dependencies"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-25T23:39:46.000Z","updated_at":"2026-05-25T23:39:56.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2","new_version":"3","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump minimatch from 3.1.2 to 3.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/667\"\u003edependabot/fetch-metadata#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.5 to 4.12.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/668\"\u003edependabot/fetch-metadata#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.2.1 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/669\"\u003edependabot/fetch-metadata#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump flatted from 3.3.3 to 3.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/670\"\u003edependabot/fetch-metadata#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump picomatch from 2.3.1 to 2.3.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/674\"\u003edependabot/fetch-metadata#674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v2...v3.0.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/publish-immutable-action from 0.0.3 to 0.0.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/628\"\u003edependabot/fetch-metadata#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the dev-dependencies group with 11 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/629\"\u003edependabot/fetch-metadata#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.0.6 to 2.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/635\"\u003edependabot/fetch-metadata#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.1 to 2.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/638\"\u003edependabot/fetch-metadata#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/636\"\u003edependabot/fetch-metadata#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/637\"\u003edependabot/fetch-metadata#637\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-node from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/639\"\u003edependabot/fetch-metadata#639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/create-github-app-token from 2.1.4 to 2.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/643\"\u003edependabot/fetch-metadata#643\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v2...v3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2\u0026new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/HybridAIWorkforce/ai_trend_hub/pull/29","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/HybridAIWorkforce%2Fai_trend_hub/issues/29","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/29/packages"}},{"old_version":"2.5.0","new_version":"3.1.0","update_type":"major","path":null,"pr_created_at":"2026-05-25T20:29:48.000Z","version_change":"2.5.0 → 3.1.0","issue":{"uuid":"4519374242","node_id":"PR_kwDORK_SKM7fKaQq","number":245,"state":"open","title":"chore(deps): bump dependabot/fetch-metadata from 2.5.0 to 3.1.0","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-25T20:29:48.000Z","updated_at":"2026-05-28T21:45:44.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"dependabot/fetch-metadata","old_version":"2.5.0","new_version":"3.1.0","repository_url":"https://github.com/dependabot/fetch-metadata"}],"path":null,"ecosystem":"actions"},"body":"Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2.5.0 to 3.1.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dependabot/fetch-metadata/releases\"\u003edependabot/fetch-metadata's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd permissions to all workflows by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/687\"\u003edependabot/fetch-metadata#687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 16.0.0 to 17.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/690\"\u003edependabot/fetch-metadata#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump esbuild from 0.27.4 to 0.28.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/693\"\u003edependabot/fetch-metadata#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.10 to 1.19.13 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/694\"\u003edependabot/fetch-metadata#694\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.7 to 4.12.12 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/695\"\u003edependabot/fetch-metadata#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDynamically update the tracking tag in action by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/696\"\u003edependabot/fetch-metadata#696\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: handle duplicate dependency names in parseMetadataLinks by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove $ anchor from updateFragment regex to handle pip directory suffixes by \u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/698\"\u003edependabot/fetch-metadata#698\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates to README for permissions clarification by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/697\"\u003edependabot/fetch-metadata#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: resolve update-type null for Python, Composer, and Terraform PRs by \u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump globals from 17.4.0 to 17.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/703\"\u003edependabot/fetch-metadata#703\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/701\"\u003edependabot/fetch-metadata#701\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e from 9.0.0 to 9.1.0 in the dependencies group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/702\"\u003edependabot/fetch-metadata#702\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps-dev): bump hono from 4.12.12 to 4.12.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/705\"\u003edependabot/fetch-metadata#705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev3.1.0 by \u003ca href=\"https://github.com/fetch-metadata-action-automation\"\u003e\u003ccode\u003e@​fetch-metadata-action-automation\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/692\"\u003edependabot/fetch-metadata#692\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/devantler\"\u003e\u003ccode\u003e@​devantler\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/700\"\u003edependabot/fetch-metadata#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vitorsdcs\"\u003e\u003ccode\u003e@​vitorsdcs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/704\"\u003edependabot/fetch-metadata#704\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\"\u003ehttps://github.com/dependabot/fetch-metadata/compare/v3...v3.1.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.0\u003c/h2\u003e\n\u003cp\u003eThe breaking change is requiring Node.js version v24 as the Actions runtime.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Parse versions from metadata links by \u003ca href=\"https://github.com/ppkarwasz\"\u003e\u003ccode\u003e@​ppkarwasz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/632\"\u003edependabot/fetch-metadata#632\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade actions core and actions github packages by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/649\"\u003edependabot/fetch-metadata#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: Add notes for using \u003ccode\u003ealert-lookup\u003c/code\u003e with App Token by \u003ca href=\"https://github.com/sue445\"\u003e\u003ccode\u003e@​sue445\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/656\"\u003edependabot/fetch-metadata#656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat!: update Node.js version to v24 by \u003ca href=\"https://github.com/sturman\"\u003e\u003ccode\u003e@​sturman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/671\"\u003edependabot/fetch-metadata#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch build tooling from ncc to esbuild by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/676\"\u003edependabot/fetch-metadata#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd --legal-comments=none to esbuild build commands by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/679\"\u003edependabot/fetch-metadata#679\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tsconfig target from es2022 to es2024 by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/680\"\u003edependabot/fetch-metadata#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove vestigial outDir from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/681\"\u003edependabot/fetch-metadata#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSwitch tsconfig module resolution to bundler by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/682\"\u003edependabot/fetch-metadata#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove skipLibCheck from tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/683\"\u003edependabot/fetch-metadata#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd typecheck step to CI by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/685\"\u003edependabot/fetch-metadata#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable noImplicitAny in tsconfig.json by \u003ca href=\"https://github.com/jeffwidman\"\u003e\u003ccode\u003e@​jeffwidman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/684\"\u003edependabot/fetch-metadata#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/core\u003c/code\u003e to ^3.0.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/677\"\u003edependabot/fetch-metadata#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade \u003ccode\u003e@​actions/github\u003c/code\u003e to ^9.0.0 and \u003ccode\u003e@​octokit/request-error\u003c/code\u003e to ^7.1.0 by \u003ca href=\"https://github.com/truggeri\"\u003e\u003ccode\u003e@​truggeri\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/678\"\u003edependabot/fetch-metadata#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.0 to 6.14.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/651\"\u003edependabot/fetch-metadata#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.1 to 4.11.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/652\"\u003edependabot/fetch-metadata#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.4 to 4.11.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/653\"\u003edependabot/fetch-metadata#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.11.7 to 4.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/657\"\u003edependabot/fetch-metadata#657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump qs from 6.14.1 to 6.14.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/655\"\u003edependabot/fetch-metadata#655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​modelcontextprotocol/sdk\u003c/code\u003e from 1.25.1 to 1.26.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/654\"\u003edependabot/fetch-metadata#654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003e@​hono/node-server\u003c/code\u003e from 1.19.9 to 1.19.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/665\"\u003edependabot/fetch-metadata#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump hono from 4.12.2 to 4.12.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/pull/664\"\u003edependabot/fetch-metadata#664\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003e\u003ccode\u003e25dd0e3\u003c/code\u003e\u003c/a\u003e v3.1.0 (\u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/692\"\u003e#692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/e073f50d732cb48d48fb80afedb4fa61361626e9\"\u003e\u003ccode\u003ee073f50\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/705\"\u003e#705\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/hono-4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/0670e167df1fbee1b0d07121de6a182ddebdd674\"\u003e\u003ccode\u003e0670e16\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump hono from 4.12.12 to 4.12.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/7a7fe10a42310e65df80af6c771e9aa5d59842d1\"\u003e\u003ccode\u003e7a7fe10\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/702\"\u003e#702\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/dependencies-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/5168191cea3d4daa635bff6c796b4f0faeba522d\"\u003e\u003ccode\u003e5168191\u003c/code\u003e\u003c/a\u003e Updating dist build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/23882e175b2f16bc495c89aa50940399c6a17504\"\u003e\u003ccode\u003e23882e1\u003c/code\u003e\u003c/a\u003e build(deps): bump \u003ccode\u003e@​actions/github\u003c/code\u003e in the dependencies group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/1072469591c13fda1d8dba1d1ac2e80187e247d7\"\u003e\u003ccode\u003e1072469\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/701\"\u003e#701\u003c/a\u003e from dependabot/dependabot/github_actions/actions/cre...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/43f8a0055c8e32587be67e097dff89a6823c9752\"\u003e\u003ccode\u003e43f8a00\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/b4d904a50935c8ebe744da148ea8a18a43fe72e1\"\u003e\u003ccode\u003eb4d904a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dependabot/fetch-metadata/issues/703\"\u003e#703\u003c/a\u003e from dependabot/dependabot/npm_and_yarn/globals-17.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot/fetch-metadata/commit/c8046bb877d9989cc848797de1b944bc3e93ef82\"\u003e\u003ccode\u003ec8046bb\u003c/code\u003e\u003c/a\u003e build(deps-dev): bump globals from 17.4.0 to 17.5.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dependabot/fetch-metadata/compare/21025c705c08248db411dc16f3619e6b5f9ea21a...25dd0e34f4fe68f24cc83900b1fe3fe149efef98\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata\u0026package-manager=github_actions\u0026previous-version=2.5.0\u0026new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/zircote/nsip/pull/245","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/zircote%2Fnsip/issues/245","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/245/packages"}}]}