Sourced from zgosalvez/github-actions-ensure-sha-pinned-actions's releases.

v4.0.0

What's Changed

• Bump @​vercel/ncc from 0.38.3 to 0.38.4 by @​dependabot[bot] in zgosalvez/github-actions-ensure-sha-pinned-actions#257
• Bump actions/checkout from 4.2.2 to 5.0.0 by @​dependabot[bot] in zgosalvez/github-actions-ensure-sha-pinned-actions#253
• Bump eslint from 9.26.0 to 9.36.0 by @​dependabot[bot] in zgosalvez/github-actions-ensure-sha-pinned-actions#256
• Bump jest from 29.7.0 to 30.1.3 by @​dependabot[bot] in zgosalvez/github-actions-ensure-sha-pinned-actions#255
• Bump actions/cache from 4.2.3 to 4.2.4 by @​dependabot[bot] in zgosalvez/github-actions-ensure-sha-pinned-actions#252
• Bump zgosalvez/github-actions-get-action-runs-using-version from 2.0.22 to 2.0.24 by @​dependabot[bot] in zgosalvez/github-actions-ensure-sha-pinned-actions#234
• Bump stefanzweifel/git-auto-commit-action from 5.2.0 to 6.0.1 by @​dependabot[bot] in zgosalvez/github-actions-ensure-sha-pinned-actions#242
• Bump yaml from 2.7.1 to 2.8.1 by @​dependabot[bot] in zgosalvez/github-actions-ensure-sha-pinned-actions#248
• Bump brace-expansion from 1.1.11 to 1.1.12 by @​dependabot[bot] in zgosalvez/github-actions-ensure-sha-pinned-actions#258
• fix #116: support composite actions by @​atchertchian in zgosalvez/github-actions-ensure-sha-pinned-actions#239

New Contributors

• @​atchertchian made their first contribution in zgosalvez/github-actions-ensure-sha-pinned-actions#239

Full Changelog: https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/compare/v3...v4.0.0

• 9e9574e fix #116: support composite actions (#239)
• 574bec8 Bump brace-expansion from 1.1.11 to 1.1.12 (#258)
• bdf825c Bump yaml from 2.7.1 to 2.8.1 (#248)
• 12cd4d2 Bump stefanzweifel/git-auto-commit-action from 5.2.0 to 6.0.1 (#242)
• 2783169 Bump zgosalvez/github-actions-get-action-runs-using-version (#234)
• d952774 Bump actions/cache from 4.2.3 to 4.2.4 (#252)
• e839297 Bump jest from 29.7.0 to 30.1.3 (#255)
• f1328f7 Bump eslint from 9.26.0 to 9.36.0 (#256)
• 74db6f0 Bump actions/checkout from 4.2.2 to 5.0.0 (#253)
• cae7e06 Bump @​vercel/ncc from 0.38.3 to 0.38.4 (#257)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)