Skip to content

chore(deps): bump uuid and @actions/cache#135

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/multi-93317368f8
Open

chore(deps): bump uuid and @actions/cache#135
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/multi-93317368f8

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 23, 2026
edited
Loading

Removes uuid. It's no longer used after updating ancestor dependency @actions/cache. These dependencies need to be updated together.

Removes uuid

Updates @actions/cache from 4.1.0 to 6.0.0

Changelog

Sourced from @​actions/cache's changelog.

6.0.0

  • Breaking change: Package is now ESM-only
    • CommonJS consumers must use dynamic import() instead of require()

5.0.5

  • Bump @actions/glob to 0.5.1

5.0.4

  • Bump @actions/http-client to 3.0.2

5.0.3

Prevent retries for rate limited cache operations 2243.

5.0.1

  • Fix Node.js 24 punycode deprecation warning by updating @azure/storage-blob from ^12.13.0 to ^12.29.1 #2213
  • Newer storage-blob uses @azure/core-rest-pipeline instead of deprecated @azure/core-http, which eliminates the transitive dependency on node-fetch@2whatwg-url@5tr46@0.0.3 that used the deprecated punycode module

5.0.0

  • Remove @azure/ms-rest-js dependency #2197
    • The TransferProgressEvent type is now imported from @azure/core-rest-pipeline instead of @azure/ms-rest-js
  • Bump @actions/core from ^1.11.1 to ^2.0.0 #2198
  • Bump @actions/exec from ^1.0.1 to ^2.0.0 #2198
  • Bump @actions/glob from ^0.1.0 to ^0.5.0 #2198
  • Bump @actions/http-client from ^2.1.1 to ^3.0.0 #2198
  • Bump @actions/io from ^1.0.1 to ^2.0.0 #2198
  • Add support for Node.js 24 #2110
  • Add node-fetch override to resolve audit vulnerabilities #2110
Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​actions/cache since your current version.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Apr 23, 2026
@dependabot dependabot Bot requested a review from a team as a code owner April 23, 2026 02:16
@dependabot dependabot Bot added the javascript Pull requests that update javascript code label Apr 23, 2026
@dependabot
chore(deps): bump uuid and @actions/cache
27ddc31 
Removes [uuid](https://github.com/uuidjs/uuid). It's no longer used after updating ancestor dependency [@actions/cache](https://github.com/actions/toolkit/tree/HEAD/packages/cache). These dependencies need to be updated together.


Removes `uuid`

Updates `@actions/cache` from 4.1.0 to 6.0.0
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/cache/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/cache)

---
updated-dependencies:
- dependency-name: "@actions/cache"
  dependency-version: 6.0.0
  dependency-type: direct:production
- dependency-name: uuid
  dependency-version: 
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/multi-93317368f8 branch from 4935197 to 27ddc31 Compare May 1, 2026 23:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants