Skip to content

Bump the actions group across 1 directory with 2 updates #3138

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Sep 23, 2025
Merged

Bump the actions group across 1 directory with 2 updates #3138

merged 2 commits into from
Sep 23, 2025
+5 −5

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 23, 2025

Bumps the actions group with 2 updates in the / directory: ruby/setup-ruby and actions/create-github-app-token.

Updates ruby/setup-ruby from 1.257.0 to 1.263.0

Release notes

Sourced from ruby/setup-ruby's releases.

v1.263.0

What's Changed

New Contributors

Full Changelog: ruby/setup-ruby@v1.262.0...v1.263.0

v1.262.0

Full Changelog: ruby/setup-ruby@v1.261.0...v1.262.0

v1.261.0

What's Changed

Full Changelog: ruby/setup-ruby@v1.260.0...v1.261.0

v1.260.0

What's Changed

New Contributors

Full Changelog: ruby/setup-ruby@v1.259.0...v1.260.0

v1.259.0

What's Changed

Full Changelog: ruby/setup-ruby@v1.258.0...v1.259.0

v1.258.0

What's Changed

Full Changelog: ruby/setup-ruby@v1.257.0...v1.258.0

Commits
  • 0481980 Print lockfile contents earlier
  • cf7216d Use new releases of ruby-builder per engine-version
  • 1c58d16 Update CRuby releases on Windows
  • 1dc7956 Test on JRuby 9.4 as well as 10.0
  • b8714f7 Revert "Skip test failing on JRuby on Windows"
  • d3e13b3 Revert "feat: upgrade to node 24"
  • 4df093a Revert "chore: add setup-node for lint job"
  • 866b91c chore: add setup-node for lint job
  • c4cd38d feat: upgrade to node 24
  • 3fee676 Add truffleruby-25.0.0,truffleruby+graalvm-25.0.0
  • Additional commits viewable in compare view

Updates actions/create-github-app-token from 2.1.1 to 2.1.4

Release notes

Sourced from actions/create-github-app-token's releases.

v2.1.4

2.1.4 (2025-09-13)

Bug Fixes

  • deps: bump @​octokit/auth-app from 7.2.1 to 8.0.1 (#257) (bef1eaf)

v2.1.3

2.1.3 (2025-09-13)

Bug Fixes

  • deps: bump undici from 7.8.0 to 7.10.0 in the production-dependencies group (#254) (f3d5ec2)

v2.1.2

2.1.2 (2025-09-12)

Bug Fixes

  • deps: bump @​octokit/request from 9.2.3 to 10.0.2 (#256) (5d7307b)
Commits
  • 6701853 build(release): 2.1.4 [skip ci]
  • bef1eaf fix(deps): bump @​octokit/auth-app from 7.2.1 to 8.0.1 (#257)
  • 1526738 build(release): 2.1.3 [skip ci]
  • f3d5ec2 fix(deps): bump undici from 7.8.0 to 7.10.0 in the production-dependencies gr...
  • def152b build(release): 2.1.2 [skip ci]
  • 5d7307b fix(deps): bump @​octokit/request from 9.2.3 to 10.0.2 (#256)
  • 525760a build(deps): bump stefanzweifel/git-auto-commit-action from 5.2.0 to 6.0.1 (#...
  • 8ab05a8 Add beta branch support for releases (#282)
  • d00315e build(deps): bump actions/checkout from 4 to 5 (#279)
  • fcc6c28 build(deps-dev): bump dotenv from 16.5.0 to 17.2.1 (#269)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the actions group across 1 directory with 2 updates
1ba789f 
Bumps the actions group with 2 updates in the / directory: [ruby/setup-ruby](https://github.com/ruby/setup-ruby) and [actions/create-github-app-token](https://github.com/actions/create-github-app-token).


Updates `ruby/setup-ruby` from 1.257.0 to 1.263.0
- [Release notes](https://github.com/ruby/setup-ruby/releases)
- [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb)
- [Commits](ruby/setup-ruby@4451173...0481980)

Updates `actions/create-github-app-token` from 2.1.1 to 2.1.4
- [Release notes](https://github.com/actions/create-github-app-token/releases)
- [Commits](actions/create-github-app-token@v2.1.1...v2.1.4)

---
updated-dependencies:
- dependency-name: ruby/setup-ruby
  dependency-version: 1.263.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: actions/create-github-app-token
  dependency-version: 2.1.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Sep 23, 2025
@dependabot dependabot bot requested a review from a team as a code owner September 23, 2025 12:52
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Sep 23, 2025
@henrymercer henrymercer added the Rebuild Re-transpile JS & re-generate workflows label Sep 23, 2025
@github-actions github-actions bot removed the Rebuild Re-transpile JS & re-generate workflows label Sep 23, 2025
@github-actions GitHub Actions
Copy link
Contributor

Pushed a commit to rebuild the Action. Please mark the PR as ready for review to trigger PR checks.

@github-actions github-actions bot marked this pull request as draft September 23, 2025 12:54
@henrymercer henrymercer marked this pull request as ready for review September 23, 2025 12:55
@Copilot Copilot AI review requested due to automatic review settings September 23, 2025 12:55
Copilot
Copilot AI reviewed Sep 23, 2025
View reviewed changes
Copy link
Contributor

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR updates two GitHub Actions dependencies in the actions group: ruby/setup-ruby from v1.257.0 to v1.263.0 and actions/create-github-app-token from v2.1.1 to v2.1.4.

  • Updates Ruby setup action to include lockfile printing improvements and CRuby release updates
  • Updates GitHub App token creation action with dependency bumps for security and compatibility
  • Maintains consistent versioning across workflow files and PR check templates

Reviewed Changes

Copilot reviewed 5 out of 5 changed files in this pull request and generated no comments.

Show a summary per file
File Description
pr-checks/checks/rubocop-multi-language.yml Updates ruby/setup-ruby action version in PR check template
.github/workflows/update-release-branch.yml Updates actions/create-github-app-token version in release workflow
.github/workflows/rollback-release.yml Updates actions/create-github-app-token version in rollback workflow
.github/workflows/post-release-mergeback.yml Updates actions/create-github-app-token version in mergeback workflow
.github/workflows/__rubocop-multi-language.yml Updates ruby/setup-ruby action version in generated workflow file

@henrymercer henrymercer merged commit d92eef9 into main Sep 23, 2025
295 checks passed
@henrymercer henrymercer deleted the dependabot/github_actions/actions-a14fb9fd22 branch September 23, 2025 13:11
@github-actions github-actions bot mentioned this pull request Sep 25, 2025
Merged
8 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

Copilot code review Copilot Copilot left review comments

@henrymercer henrymercer henrymercer approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@henrymercer