mirror of
https://github.com/zhom/donutbrowser.git
synced 2026-05-28 02:52:24 +02:00
dependabot[bot]
7446f678d4
Bumps the github-actions group with 6 updates in the / directory: | Package | From | To | | --- | --- | --- | | [pnpm/action-setup](https://github.com/pnpm/action-setup) | `6.0.6` | `6.0.8` | | [google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml](https://github.com/google/osv-scanner-action) | `2.3.5` | `2.3.8` | | [anomalyco/opencode](https://github.com/anomalyco/opencode) | `1.14.41` | `1.15.3` | | [google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml](https://github.com/google/osv-scanner-action) | `2.3.5` | `2.3.8` | | [actions/ai-inference](https://github.com/actions/ai-inference) | `2.0.7` | `2.1.0` | | [crate-ci/typos](https://github.com/crate-ci/typos) | `1.46.1` | `1.46.2` | Updates `pnpm/action-setup` from 6.0.6 to 6.0.8 - [Release notes](https://github.com/pnpm/action-setup/releases) - [Commits](https://github.com/pnpm/action-setup/compare/91ab88e2619ed1f46221f0ba42d1492c02baf788...0e279bb959325dab635dd2c09392533439d90093) Updates `google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml` from 2.3.5 to 2.3.8 - [Release notes](https://github.com/google/osv-scanner-action/releases) - [Commits](https://github.com/google/osv-scanner-action/compare/c51854704019a247608d928f370c98740469d4b5...9a498708959aeaef5ef730655706c5a1df1edbc2) Updates `anomalyco/opencode` from 1.14.41 to 1.15.3 - [Release notes](https://github.com/anomalyco/opencode/releases) - [Commits](https://github.com/anomalyco/opencode/compare/8ba2a9171597262df9d19516c82a5e14f18f5c63...37f89b742907c43b20d38b68eabe65981a59690a) Updates `google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml` from 2.3.5 to 2.3.8 - [Release notes](https://github.com/google/osv-scanner-action/releases) - [Commits](https://github.com/google/osv-scanner-action/compare/c51854704019a247608d928f370c98740469d4b5...9a498708959aeaef5ef730655706c5a1df1edbc2) Updates `actions/ai-inference` from 2.0.7 to 2.1.0 - [Release notes](https://github.com/actions/ai-inference/releases) - [Commits](https://github.com/actions/ai-inference/compare/e09e65981758de8b2fdab13c2bfb7c7d5493b0b6...17ff458cb182449bbb2e43701fcd98f6af8f6570) Updates `crate-ci/typos` from 1.46.1 to 1.46.2 - [Release notes](https://github.com/crate-ci/typos/releases) - [Changelog](https://github.com/crate-ci/typos/blob/master/CHANGELOG.md) - [Commits](https://github.com/crate-ci/typos/compare/5374cbf686e897b15713110e233094e2874de7ef...aca895bf05aec0cb7dffa6f94495e923224d9f17) --- updated-dependencies: - dependency-name: pnpm/action-setup dependency-version: 6.0.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml dependency-version: 2.3.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: anomalyco/opencode dependency-version: 1.15.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml dependency-version: 2.3.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: actions/ai-inference dependency-version: 2.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: crate-ci/typos dependency-version: 1.46.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>
82 lines
2.5 KiB
YAML
82 lines
2.5 KiB
YAML
name: Dependabot Automerge
|
|
|
|
on:
|
|
pull_request_target:
|
|
types: [opened, synchronize, reopened]
|
|
|
|
permissions:
|
|
pull-requests: write
|
|
contents: write
|
|
checks: read
|
|
|
|
jobs:
|
|
security-scan:
|
|
name: Security Vulnerability Scan
|
|
if: github.repository == 'zhom/donutbrowser' && github.actor == 'dependabot[bot]'
|
|
uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@9a498708959aeaef5ef730655706c5a1df1edbc2" # v2.3.8
|
|
with:
|
|
scan-args: |-
|
|
-r
|
|
--skip-git
|
|
--lockfile=pnpm-lock.yaml
|
|
--lockfile=src-tauri/Cargo.lock
|
|
./
|
|
permissions:
|
|
security-events: write
|
|
contents: read
|
|
actions: read
|
|
|
|
lint-js:
|
|
name: Lint JavaScript/TypeScript
|
|
if: github.repository == 'zhom/donutbrowser' && github.actor == 'dependabot[bot]'
|
|
uses: ./.github/workflows/lint-js.yml
|
|
secrets: inherit
|
|
permissions:
|
|
contents: read
|
|
|
|
lint-rust:
|
|
name: Lint Rust
|
|
if: github.repository == 'zhom/donutbrowser' && github.actor == 'dependabot[bot]'
|
|
uses: ./.github/workflows/lint-rs.yml
|
|
secrets: inherit
|
|
permissions:
|
|
contents: read
|
|
|
|
codeql:
|
|
name: CodeQL
|
|
if: github.repository == 'zhom/donutbrowser' && github.actor == 'dependabot[bot]'
|
|
uses: ./.github/workflows/codeql.yml
|
|
secrets: inherit
|
|
permissions:
|
|
security-events: write
|
|
contents: read
|
|
packages: read
|
|
actions: read
|
|
|
|
spellcheck:
|
|
name: Spell Check
|
|
if: github.repository == 'zhom/donutbrowser' && github.actor == 'dependabot[bot]'
|
|
uses: ./.github/workflows/spellcheck.yml
|
|
secrets: inherit
|
|
permissions:
|
|
contents: read
|
|
|
|
dependabot-automerge:
|
|
name: Dependabot Automerge
|
|
if: github.repository == 'zhom/donutbrowser' && github.actor == 'dependabot[bot]'
|
|
needs: [security-scan, lint-js, lint-rust, codeql, spellcheck]
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Dependabot metadata
|
|
id: metadata
|
|
uses: dependabot/fetch-metadata@25dd0e34f4fe68f24cc83900b1fe3fe149efef98 #v3.1.0
|
|
with:
|
|
github-token: "${{ secrets.GITHUB_TOKEN }}"
|
|
- name: Enable auto-merge for minor and patch updates
|
|
if: ${{ steps.metadata.outputs.update-type == 'version-update:semver-minor' || steps.metadata.outputs.update-type == 'version-update:semver-patch' }}
|
|
run: gh pr merge --auto --squash "$PR_URL"
|
|
env:
|
|
PR_URL: ${{ github.event.pull_request.html_url }}
|
|
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
|
timeout-minutes: 10
|