Skip to content

⬆ Bump the github-actions group across 1 directory with 4 updates#298

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/github-actions-fb137773a2
Open

⬆ Bump the github-actions group across 1 directory with 4 updates#298
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/github-actions-fb137773a2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 13, 2026

Copy link
Copy Markdown
Contributor

Bumps the github-actions group with 4 updates in the / directory: actions/setup-python, astral-sh/setup-uv, actions/labeler and zizmorcore/zizmor-action.

Updates actions/setup-python from 6.2.0 to 6.3.0

Release notes

Sourced from actions/setup-python's releases.

v6.3.0

What's Changed

Enhancement

Dependency update

Documentation

New Contributors

Full Changelog: actions/setup-python@v6.2.0...v6.3.0

Commits

Updates astral-sh/setup-uv from 8.2.0 to 8.3.0

Commits
  • d31148d Strip environment markers from detected uv dependency pins (#938)
  • 17c3989 Fix cache keys for Python version ranges (#937)
  • 3cc3c11 chore(deps): roll up Dependabot updates (#936)
  • 9225f84 chore(deps): bump release-drafter/release-drafter from 7.3.1 to 7.4.0 (#924)
  • fc16fa3 chore(deps): bump actions/checkout from 6.0.2 to 7.0.0 (#926)
  • a1a7345 ci: call docs update workflow from release (#933)
  • a5e9cbf docs: update version references to v8.2.0 (#932)
  • c5680ec chore: update known checksums for 0.11.26 (#930)
  • c86fe4e Add a threat model for setup-uv (#923)
  • 224c887 chore: update known checksums for 0.11.25 (#929)
  • Additional commits viewable in compare view

Updates actions/labeler from 6.1.0 to 6.2.0

Release notes

Sourced from actions/labeler's releases.

v6.2.0

What's Changed

Bug Fix

Dependency Updates

Full Changelog: actions/labeler@v6.1.0...v6.2.0

Commits
  • b8dd2d9 Bump @​typescript-eslint/eslint-plugin from 8.59.1 to 8.61.1 (#942)
  • 53affe8 Bump js-yaml to 4.2.0, apply npm audit fix, and add undici override for 0 vul...
  • f612d9a Fix: Improve PR number validation and warning messages in input handling (#939)
  • See full diff in compare view

Updates zizmorcore/zizmor-action from 0.5.6 to 0.5.7

Release notes

Sourced from zizmorcore/zizmor-action's releases.

v0.5.7

1.26.1 is now available via the action 1.26.1 is now the default version of zizmor used by the action

Commits
  • 192e21d Sync zizmor versions (#127)
  • 2720f26 Update README.md with new actions/checkout version (#126)
  • 40b41b8 chore(deps): bump the github-actions group with 2 updates (#123)
  • a687b25 chore(deps): bump github/codeql-action from 4.35.5 to 4.36.0 in the github-ac...
  • 64a6900 add note to explain that the default value for online-checks is different t...
  • 14050ab chore(deps): bump the github-actions group with 2 updates (#118)
  • ee9b419 chore(deps): bump github/codeql-action in the github-actions group (#116)
  • fddf2b4 Bump pins in README (#115)
  • See full diff in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code internal Internal changes labels Jul 13, 2026
Bumps the github-actions group with 4 updates in the / directory: [actions/setup-python](https://github.com/actions/setup-python), [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv), [actions/labeler](https://github.com/actions/labeler) and [zizmorcore/zizmor-action](https://github.com/zizmorcore/zizmor-action).


Updates `actions/setup-python` from 6.2.0 to 6.3.0
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](actions/setup-python@a309ff8...ece7cb0)

Updates `astral-sh/setup-uv` from 8.2.0 to 8.3.0
- [Release notes](https://github.com/astral-sh/setup-uv/releases)
- [Commits](astral-sh/setup-uv@fac544c...d31148d)

Updates `actions/labeler` from 6.1.0 to 6.2.0
- [Release notes](https://github.com/actions/labeler/releases)
- [Commits](actions/labeler@f27b608...b8dd2d9)

Updates `zizmorcore/zizmor-action` from 0.5.6 to 0.5.7
- [Release notes](https://github.com/zizmorcore/zizmor-action/releases)
- [Commits](zizmorcore/zizmor-action@5f14fd0...192e21d)

---
updated-dependencies:
- dependency-name: actions/labeler
  dependency-version: 6.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: actions/setup-python
  dependency-version: 6.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: astral-sh/setup-uv
  dependency-version: 8.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: zizmorcore/zizmor-action
  dependency-version: 0.5.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/github_actions/github-actions-fb137773a2 branch from 3942fc9 to 53ff132 Compare July 13, 2026 09:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code internal Internal changes

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants