Skip to content

chore(deps): bump the github-actions group with 3 updates#1253

Open
dependabot[bot] wants to merge 1 commit into
devfrom
dependabot/github_actions/dev/github-actions-ba2d812619
Open

chore(deps): bump the github-actions group with 3 updates#1253
dependabot[bot] wants to merge 1 commit into
devfrom
dependabot/github_actions/dev/github-actions-ba2d812619

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 17, 2026

Copy link
Copy Markdown
Contributor

Bumps the github-actions group with 3 updates: actions/upload-artifact, dependabot/fetch-metadata and tailscale/github-action.

Updates actions/upload-artifact from 4 to 7

Release notes

Sourced from actions/upload-artifact's releases.

v7.0.0

v7 What's new

Direct Uploads

Adds support for uploading single files directly (unzipped). Callers can set the new archive parameter to false to skip zipping the file during upload. Right now, we only support single files. The action will fail if the glob passed resolves to multiple files. The name parameter is also ignored with this setting. Instead, the name of the artifact will be the name of the uploaded file.

ESM

To support new versions of the @actions/* packages, we've upgraded the package to ESM.

What's Changed

New Contributors

Full Changelog: actions/upload-artifact@v6...v7.0.0

v6.0.0

v6 - What's new

[!IMPORTANT] actions/upload-artifact@v6 now runs on Node.js 24 (runs.using: node24) and requires a minimum Actions Runner version of 2.327.1. If you are using self-hosted runners, ensure they are updated before upgrading.

Node.js 24

This release updates the runtime to Node.js 24. v5 had preliminary support for Node.js 24, however this action was by default still running on Node.js 20. Now this action by default will run on Node.js 24.

What's Changed

Full Changelog: actions/upload-artifact@v5.0.0...v6.0.0

v5.0.0

What's Changed

BREAKING CHANGE: this update supports Node v24.x. This is not a breaking change per-se but we're treating it as such.

... (truncated)

Commits
  • 043fb46 Merge pull request #797 from actions/yacaovsnc/update-dependency
  • 634250c Include changes in typespec/ts-http-runtime 0.3.5
  • e454baa Readme: bump all the example versions to v7 (#796)
  • 74fad66 Update the readme with direct upload details (#795)
  • bbbca2d Support direct file uploads (#764)
  • 589182c Upgrade the module to ESM and bump dependencies (#762)
  • 47309c9 Merge pull request #754 from actions/Link-/add-proxy-integration-tests
  • 02a8460 Add proxy integration test
  • b7c566a Merge pull request #745 from actions/upload-artifact-v6-release
  • e516bc8 docs: correct description of Node.js 24 support in README
  • Additional commits viewable in compare view

Updates dependabot/fetch-metadata from 2.5.0 to 3.1.0

Release notes

Sourced from dependabot/fetch-metadata's releases.

v3.1.0

What's Changed

New Contributors

Full Changelog: dependabot/fetch-metadata@v3...v3.1.0

v3.0.0

The breaking change is requiring Node.js version v24 as the Actions runtime.

What's Changed

... (truncated)

Commits
  • 25dd0e3 v3.1.0 (#692)
  • e073f50 Merge pull request #705 from dependabot/dependabot/npm_and_yarn/hono-4.12.14
  • 0670e16 build(deps-dev): bump hono from 4.12.12 to 4.12.14
  • 7a7fe10 Merge pull request #702 from dependabot/dependabot/npm_and_yarn/dependencies-...
  • 5168191 Updating dist build
  • 23882e1 build(deps): bump @​actions/github in the dependencies group
  • 1072469 Merge pull request #701 from dependabot/dependabot/github_actions/actions/cre...
  • 43f8a00 build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1
  • b4d904a Merge pull request #703 from dependabot/dependabot/npm_and_yarn/globals-17.5.0
  • c8046bb build(deps-dev): bump globals from 17.4.0 to 17.5.0
  • Additional commits viewable in compare view

Updates tailscale/github-action from 2 to 4

Release notes

Sourced from tailscale/github-action's releases.

v4.0.0

With this release, the action is now implemented in JavaScript and requires runners that are capable of installing Node.js 24.

Notable changes:

  • New: Now supports a ping parameter to verify connectivity to tailnet devices.
  • New: Now logs out the Tailscale ephemeral node at the end of the CI run, removing it from the tailnet immediately.
  • Changed: Caching of Tailscale binaries is enabled by default.
  • Fixed: DNS resolvers are properly set on macOS. Previously, attempting to reach devices using their full domain of the form my-node.my-tailnet.ts.net would fail due to incorrect DNS settings.

Full Changelog: tailscale/github-action@v3...v4.0.0

v3.2.3

Fix an issue preventing the action from running on Windows based runners that do not have a graphical desktop environment (such as the windows-11-arm label).

What's Changed

Full Changelog: tailscale/github-action@v3.2.2...v3.2.3

v3.2.2

Add a retry mechanism for tailscale up.

What's Changed

New Contributors

Full Changelog: tailscale/github-action@v3.2.1...v3.2.2

v3.2.1

Fixed a regression where temporary files would incorrectly persist after the action completed.

What's Changed

Full Changelog: tailscale/github-action@v3...v3.2.1

v3.2.0

The action now supports running on Windows and macOS runners (generally available)

The action now supports an optional use-cache input which caches Tailscale binaries when set to 'true'

What's Changed

... (truncated)

Commits
  • 306e68a Bump @​actions/cache from 5.0.1 to 5.0.2
  • 989d9be Bump @​actions/tool-cache from 2.0.2 to 3.0.0
  • 69584d7 Bump @​actions/github from 6.0.1 to 7.0.0
  • cda17d5 Bump @​actions/core from 2.0.1 to 2.0.2
  • 81231eb Bump actions/setup-node from 6.2.0 to 6.3.0
  • 48c6d03 action,dist,src: bump default version to 1.94.2
  • cfed5b8 store tailscale.tgz and tailscaled.pid in XDG cache/runtime dirs instead of t...
  • 31d93e6 .github/workflows: run integration test if event is a push
  • 564fe38 chore: run make build to resolve linter error
  • 127dade fix: add missing parentheses to core.isDebug()
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the github-actions group with 3 updates
54e1bfe 
Bumps the github-actions group with 3 updates: [actions/upload-artifact](https://github.com/actions/upload-artifact), [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) and [tailscale/github-action](https://github.com/tailscale/github-action).


Updates `actions/upload-artifact` from 4 to 7
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@v4...v7)

Updates `dependabot/fetch-metadata` from 2.5.0 to 3.1.0
- [Release notes](https://github.com/dependabot/fetch-metadata/releases)
- [Commits](dependabot/fetch-metadata@21025c7...25dd0e3)

Updates `tailscale/github-action` from 2 to 4
- [Release notes](https://github.com/tailscale/github-action/releases)
- [Commits](tailscale/github-action@4e4c49a...306e68a)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: '7'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: dependabot/fetch-metadata
  dependency-version: 3.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: tailscale/github-action
  dependency-version: '4'
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency label Jun 17, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jun 17, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: github-actions. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot Bot requested a review from AndriiPasternak31 as a code owner June 17, 2026 15:05
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency label Jun 17, 2026
This was referenced Jun 17, 2026
Closed
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AndriiPasternak31 AndriiPasternak31 Awaiting requested review from AndriiPasternak31 AndriiPasternak31 is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants