Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the github-actions group across 1 directory with 3 updates #45

Closed

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 1, 2024

Bumps the github-actions group with 3 updates in the / directory: github/branch-deploy, azure/login and GrantBirki/comment.

Updates github/branch-deploy from 9.1.1 to 9.8.1

Release notes

Sourced from github/branch-deploy's releases.

v9.8.1

What's Changed

A follow-up to the v9.8.0 release to implement GraphQL pagination to make "latest deployment checks" more robust when using enforced deployment order.

Full Changelog: github/branch-deploy@v9.8.0...v9.8.1

v9.8.0

Enforced Deployment Order 🚀

Introducing a long requested feature, enforced deployment order...

Summary

This pull request does the following:

  • adds a new enforced_deployment_order input option that can be used to require deployments to take place "in order" and for each to pass before the next one can be triggered
  • adds a new needs_to_be_deployed output that maps to the environments that require successful deployments if a deployment attempt is rejected

Detailed

This feature is one that has been requested by folks internally and externally to GitHub for a long time (over a year). This pull request makes it so that users can now control the order in which deployments are made (if they choose to do so).

This feature is optional and can be enabled by setting, enforced_deployment_order: <env1>,<env2>,<env3>. The value for enforced_deployment_order is a string that is read from left->right with each value separated by commas. Each value in this comma separated list is an environment that you wish to use in an "enforced deployment order". Here is an example:

- uses: github/[email protected]
  id: branch-deploy
  with:
    environment_targets: development,staging,production
    enforced_deployment_order: development,staging,production

This means that your project has three environments in total (development,staging,production). The enforced_deployment_order input option specifies that your environments must now be deployed in the order in which they are written. So if you want to deploy to production, you must first have a successful (and active) deployment to development and staging before the branch-deploy Action will allow you to trigger a deployment to production.


For more details, please see the pull request that implemented these changes here or the official documentation.


What's Changed

... (truncated)

Commits
  • 368e17c Merge pull request #308 from github/node-updates
  • 11ee5ec run npm update
  • ef4f017 Merge pull request #307 from github/latest-deployments-pagination
  • e583b76 sprinkle in some debug statements
  • a6d2b24 add pagination logic to latestActiveDeployment() to make it more robust
  • d806f9d bundle
  • 4788222 rename method for clarity
  • 60d5a42 move comment for clarity
  • 409f6de Merge pull request #305 from github/node-updates
  • 0bc9873 update all node packages with npm update
  • Additional commits viewable in compare view

Updates azure/login from 2.0.0 to 2.2.0

Release notes

Sourced from azure/login's releases.

Azure Login Action v2.2.0

What's Changed

New Contributors

Full Changelog: Azure/login@v2.1.1...v2.2.0

v2.1.1

What's Changed

New Contributors

Full Changelog: Azure/login@v2.1.0...v2.1.1

Azure Login Action v2.1.0

What's Changed

Full Changelog: Azure/login@v2.0.0...v2.1.0

Commits

Updates GrantBirki/comment from 2.0.9 to 2.1.0

Release notes

Sourced from GrantBirki/comment's releases.

v2.1.0

What's Changed

Full Changelog: GrantBirki/comment@v2...v2.1.0

v2.0.10

What's Changed

Full Changelog: GrantBirki/comment@v2.0.9...v2.0.10

Commits
  • f524ee3 Merge pull request #26 from GrantBirki/issue-number-context
  • 8a5dda3 this node env doesn't support ?.
  • 7f657e1 fetch the issueNumber from the github.context if it is not defined in the...
  • ce03eec Merge pull request #25 from GrantBirki/node-package-updates
  • 5b51e4a npm update
  • ab68759 package cleanup
  • 3971a84 update prettier
  • d1c9a23 Merge pull request #24 from GrantBirki/dependabot/npm_and_yarn/npm_and_yarn-5...
  • 06d9f6f Bump braces in the npm_and_yarn group across 1 directory
  • 1e63d57 Merge pull request #23 from GrantBirki/updates
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the github-actions group with 3 updates in the / directory: [github/branch-deploy](https://github.com/github/branch-deploy), [azure/login](https://github.com/azure/login) and [GrantBirki/comment](https://github.com/grantbirki/comment).


Updates `github/branch-deploy` from 9.1.1 to 9.8.1
- [Release notes](https://github.com/github/branch-deploy/releases)
- [Commits](github/branch-deploy@v9.1.1...v9.8.1)

Updates `azure/login` from 2.0.0 to 2.2.0
- [Release notes](https://github.com/azure/login/releases)
- [Commits](Azure/login@8c334a1...a65d910)

Updates `GrantBirki/comment` from 2.0.9 to 2.1.0
- [Release notes](https://github.com/grantbirki/comment/releases)
- [Commits](GrantBirki/comment@v2.0.9...v2.1.0)

---
updated-dependencies:
- dependency-name: github/branch-deploy
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: azure/login
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: GrantBirki/comment
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from a team as a code owner October 1, 2024 22:05
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Oct 1, 2024
Copy link

github-actions bot commented Oct 1, 2024

👋 Thanks for opening a pull request!

If you are new, please check out the trimmed down summary of our deployment process below:

  1. 👀 Observe the CI jobs and tests to ensure they are passing

  2. ✔️ Obtain an approval/review on this pull request

  3. 🚀 Branch deploy your pull request to production

    Comment .deploy on this pull request to trigger a deploy. If anything goes wrong, rollback with .deploy main

  4. 🎉 Merge!

Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 1, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Nov 1, 2024
@dependabot dependabot bot deleted the dependabot/github_actions/github-actions-2848bb1b9b branch November 1, 2024 22:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants