From e0c128d89e18aeb0285bf4844acd9be1769ba0aa Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 20 Mar 2024 17:12:36 +0000
Subject: [PATCH 1/2] chore(deps): Bump actions/add-to-project from 0.6.0 to
0.6.1 (#11656)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [actions/add-to-project](https://github.com/actions/add-to-project) from 0.6.0 to 0.6.1.
Release notes
Sourced from actions/add-to-project's releases.
v0.6.1
What's Changed
New Contributors
Full Changelog: https://github.com/actions/add-to-project/compare/v0.6.0...v0.6.1
Commits
1b844f0 Merge pull request #526 from actions/dependabot/npm_and_yarn/typescript-5.4.24323c7c Build and package6a865c8 build(deps-dev): bump typescript from 5.2.2 to 5.4.29a27b43 Merge pull request #524 from actions/dependabot/npm_and_yarn/typescript-eslin...01559e7 build(deps-dev): bump @typescript-eslint/eslint-plugin47ef2f1 Merge pull request #525 from actions/dependabot/npm_and_yarn/eslint-plugin-je...78f1934 build(deps-dev): bump eslint-plugin-jest from 27.6.0 to 27.9.0ddd9152 Merge pull request #527 from actions/dependabot/npm_and_yarn/types/node-16.18.91aed80a1 Merge pull request #523 from actions/prepare-release4bc62d6 Update README.md- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
.github/workflows/add-to-project.yml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/.github/workflows/add-to-project.yml b/.github/workflows/add-to-project.yml
index ce82bc3d1d1..472bad92210 100644
--- a/.github/workflows/add-to-project.yml
+++ b/.github/workflows/add-to-project.yml
@@ -16,7 +16,7 @@ jobs:
name: Add issue to Dotcom project
runs-on: ubuntu-20.04
steps:
- - uses: actions/add-to-project@v0.6.0
+ - uses: actions/add-to-project@v0.6.1
with:
project-url: ${{ env.DOTCOM_PROJECT_URL }}
github-token: ${{ secrets.ADD_TO_PROJECT }}
From 48f8646f5b294bd9e2a1935976fa951767856840 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 20 Mar 2024 18:46:00 +0000
Subject: [PATCH 2/2] chore(deps): Bump geekyeggo/delete-artifact from 4 to 5
(#11651)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [geekyeggo/delete-artifact](https://github.com/geekyeggo/delete-artifact) from 4 to 5.
Release notes
Sourced from geekyeggo/delete-artifact's releases.
v5.0.0
v4.1.0
- Add default token.
- Fix over-arching
catch output; errors now correctly result in a failed run (@TheMrMilchmann).
Changelog
Sourced from geekyeggo/delete-artifact's changelog.
Change Log
v5.0
v4.1
- Add default token.
- Fix over-arching
catch output; errors now correctly result in a failed run (Leon Linhart) #18
v4.0
- Add support for artifacts uploaded with
actions/upload-artifact@v4.
- Add requirement of
token with read and write access to actions.
- Update requests to use GitHub REST API.
- Deprecate support for
actions/upload-artifact@v1, actions/upload-artifact@v2, and actions/upload-artifact@v3 (please use geekyeggo/delete-artifact@v2).
v2.0
- Add support for glob pattern matching via
useGlob.
v1.0
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
.github/workflows/e2e-tests-parallel.yml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/.github/workflows/e2e-tests-parallel.yml b/.github/workflows/e2e-tests-parallel.yml
index 3e606caefa3..9c3e1086626 100644
--- a/.github/workflows/e2e-tests-parallel.yml
+++ b/.github/workflows/e2e-tests-parallel.yml
@@ -64,7 +64,7 @@ jobs:
path: packages/web-components/storybook-static
- name: Clear remnant failure files
- uses: geekyeggo/delete-artifact@v4
+ uses: geekyeggo/delete-artifact@v5
with:
name: failure-wc.txt