Skip to content

chore(deps): bump the github-actions group across 1 directory with 6 updates#1497

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/github-actions-5cb9553554
Open

chore(deps): bump the github-actions group across 1 directory with 6 updates#1497
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/github-actions-5cb9553554

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 6, 2026

Bumps the github-actions group with 6 updates in the / directory:

Package From To
actions-rust-lang/setup-rust-toolchain 1.15.4 1.16.0
clechasseur/rs-cargo 5.0.3 5.0.4
cross-platform-actions/action 0.32.0 1.0.0
taiki-e/install-action 2.75.15 2.75.26
julia-actions/setup-julia 2.7.0 3.0.1
peter-evans/create-pull-request 8.1.0 8.1.1

Updates actions-rust-lang/setup-rust-toolchain from 1.15.4 to 1.16.0

Release notes

Sourced from actions-rust-lang/setup-rust-toolchain's releases.

v1.16.0

What's Changed

New Contributors

Full Changelog: actions-rust-lang/setup-rust-toolchain@v1.15.4...v1.16.0

Changelog

Sourced from actions-rust-lang/setup-rust-toolchain's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[Unreleased]

[1.16.0] - 2026-04-13

  • Add new parameter cache-save-if that is propagated to Swatinem/rust-cache as save-if (#90 by @​ChanTsune)

[1.15.4] - 2026-03-15

  • Bump Swatinem/rust-cache from 2.8.2 to 2.9.1 (#87 by @​hyperfinitism) This gets rid of the warnings about Node.js 20.

[1.15.3] - 2026-03-01

  • Bump Swatinem/rust-cache from 2.8.1 to 2.8.2

[1.15.2] - 2025-10-04

  • Fix: Run the version detection steps in the selected rust-src-dir directory. This should enable the version selection even without a default toolchain installed. Fixes #74.

[1.15.1] - 2025-09-23

  • Update Swatinem/rust-cache to v2.8.1

[1.15.0] - 2025-09-14

  • Add support for non-root source directory. Accept source code and rust-toolchain.toml file in subdirectories of the repository. Adds a new parameter rust-src-dir that controls the lookup for toolchain files and sets a default value for the cache-workspace input. (#69 by @​Kubaryt)

[1.14.1] - 2025-08-28

[1.14.0] - 2025-08-23

  • Add new parameters cache-all-crates and cache-workspace-crates that are propagated to Swatinem/rust-cache as cache-all-crates and cache-workspace-crates

[1.13.0] - 2025-06-16

  • Add new parameter cache-provider that is propagated to Swatinem/rust-cache as cache-provider (#65 by @​mindrunner)

... (truncated)

Commits
  • 2b1f5e9 Update CHANGELOG for version 1.16.0
  • 9030f3d Merge pull request #90 from ChanTsune/feat/cache-save-if
  • 186b99e feat: add cache-save-if input to propagate save-if to Swatinem/rust-cache
  • d197c15 Merge pull request #88 from ryuapp/chore/update-chekcout-v6-on-readme
  • fa057b4 Update actions/checkout to v6 on README
  • See full diff in compare view

Updates clechasseur/rs-cargo from 5.0.3 to 5.0.4

Release notes

Sourced from clechasseur/rs-cargo's releases.

v5.0.4

Fix version with updated dependencies, including security fixes.

What's Changed

Full Changelog: clechasseur/rs-cargo@v5.0.3...v5.0.4

Commits
  • 2ece93e Merge pull request #398 from clechasseur/fix/deps-updates
  • 01d1bbd fix: bump version to v5.0.4
  • 2245d2a fix: update @clechasseur/rs-actions-core to v8
  • 734ce59 chore(deps): update dependency typescript to v6 (#382)
  • 9925586 fix: run npm update, regenerate dist (#397)
  • 3759c16 chore(deps): update dependency oxlint to ^1.61.0 (#390)
  • fc6fa52 chore(deps): update dependency rollup to ^4.60.2 (#395)
  • 9ed3918 chore(deps): bump fast-xml-parser (#396)
  • e848ed9 chore(deps): update actions/upload-artifact action to v7.0.1 (#391)
  • 20ee7ca chore(deps): update dependency prettier to ^3.8.3 (#392)
  • Additional commits viewable in compare view

Updates cross-platform-actions/action from 0.32.0 to 1.0.0

Release notes

Sourced from cross-platform-actions/action's releases.

Cross Platform Action 1.0.0

Fixed

  • Fix #108: Fix file ownership on Haiku after rsync, resolving git safe.directory errors

Changed

  • Breaking: Update the requirement of Node for running this action from version 20 to 24.

Removed

  • Breaking: Remove support for running on macOS runners. Only Linux runners (e.g. ubuntu-latest) are now supported. This was deprecated in v0.25.0.
  • Breaking: Remove the Xhyve hypervisor and the hypervisor input parameter. QEMU is now the only supported hypervisor. These were deprecated in v0.25.0.
Changelog

Sourced from cross-platform-actions/action's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[Unreleased]

Added

  • Add support for DragonFly BSD (#19)
  • Add support for MidnightBSD (#102)
  • Add support for FreeBSD 14.4 (#122)
  • Add support for OmniOS r151058

Security

  • Bump builders to releases that use immutable releases, providing integrity verification for downloaded artifacts (#140)

[1.0.0] - 2026-04-12

Fixed

  • Fix #108: Fix file ownership on Haiku after rsync, resolving git safe.directory errors

Changed

  • Breaking: Update the requirement of Node for running this action from version 20 to 24.

Removed

  • Breaking: Remove support for running on macOS runners. Only Linux runners (e.g. ubuntu-latest) are now supported. This was deprecated in v0.25.0.
  • Breaking: Remove the Xhyve hypervisor and the hypervisor input parameter. QEMU is now the only supported hypervisor. These were deprecated in v0.25.0.

[0.32.0] - 2025-12-21

Added

  • Add support for OmniOS

[0.31.0] - 2025-12-15

Added

  • Add support for FreeBSD 15.0 (#114)

Fixed

  • Fix empty hostname (#113)

[0.30.0] - 2025-11-04

Added

  • Document how to report a security vulnerability
  • Add support for OpenBSD 7.8 (#112)

... (truncated)

Commits
  • 2331563 Release 1.0.0
  • 1631483 Assert that the release script is running on master
  • 47af1ea Add release script
  • ca9a0a1 Add a check that the committed dist files match the source code
  • d5b5b85 Merge pull request #128 from cross-platform-actions/dependabot/npm_and_yarn/t...
  • 3d0f9f6 Fix error in the release CI workflow
  • a7e29cd Remove the hypervisor action parameter
  • cd600e1 Remove support for macOS
  • db3b320 Merge pull request #134 from mr-raj12/fix/108-haiku-file-ownership
  • 5292216 Add e2e test for Haiku file ownership after rsync
  • Additional commits viewable in compare view

Updates taiki-e/install-action from 2.75.15 to 2.75.26

Release notes

Sourced from taiki-e/install-action's releases.

2.75.26

  • Update wasm-bindgen@latest to 0.2.120.

  • Update mise@latest to 2026.4.25.

  • Update martin@latest to 1.8.0.

  • Update vacuum@latest to 0.26.4.

2.75.25

  • Update uv@latest to 0.11.8.

  • Update typos@latest to 1.45.2.

  • Update tombi@latest to 0.9.25.

  • Update mise@latest to 2026.4.24.

2.75.24

  • Update prek@latest to 0.3.11.

  • Update mise@latest to 2026.4.23.

  • Update vacuum@latest to 0.26.3.

2.75.23

  • Update vacuum@latest to 0.26.2.

  • Update tombi@latest to 0.9.24.

  • Update mise@latest to 2026.4.22.

  • Update martin@latest to 1.7.0.

  • Update git-cliff@latest to 2.13.1.

  • Update cargo-tarpaulin@latest to 0.35.4.

  • Update cargo-sort@latest to 2.1.4.

2.75.22

  • Update tombi@latest to 0.9.22.

  • Update biome@latest to 2.4.13.

2.75.21

  • Update mise@latest to 2026.4.19.

  • Update tombi@latest to 0.9.21.

... (truncated)

Changelog

Sourced from taiki-e/install-action's changelog.

Changelog

All notable changes to this project will be documented in this file.

This project adheres to Semantic Versioning.

[Unreleased]

  • Update prek@latest to 0.3.12.

  • Update tombi@latest to 0.10.4.

[2.77.1] - 2026-05-05

  • Support taiki-e/install-action@rust tag.

  • Update tombi@latest to 0.10.3.

  • Update martin@latest to 1.8.2.

[2.77.0] - 2026-05-05

  • Support rust. (#1779)

    This installs rust using rustup.

    If rustup is not yet installed, this action downloads rustup-init for the current platform using HTTPS with tlsv1.2+, verifies SHA256 checksum, and then installs rustup using it.

    This also supports installing additional components at the same time by +<additional> syntax:

    - uses: taiki-e/install-action@v2
  with:
    # Install rust stable with rustfmt component and wasm32-wasip1 target.
    tool: rust+rustfmt+wasm32-wasip1
    # When installing another rust version:
    # tool: rust@nightly + rustfmt + wasm32-wasip1

  • Fix issue where x86_64 binary will be installed on AArch64 Windows even when AArch64 Windows binary available.

  • Update mise@latest to 2026.5.0.

  • Diagnostic improvements.

[2.76.0] - 2026-05-04

... (truncated)

Commits

Updates julia-actions/setup-julia from 2.7.0 to 3.0.1

Release notes

Sourced from julia-actions/setup-julia's releases.

v3.0.1

What's Changed

This is a bugfix release that fixes an error seen when using min-minor or min-patch.

Full Changelog

Full Changelog: julia-actions/setup-julia@v3.0.0...v3.0.1

v3.0.0

⚠️ Breaking Changes, and Migration Guide for v2 ⟶ v3

  1. v3 requires Node 24 (compared to v2, which required Node 20).
  2. The behavior of version: min has changed between v2 and v3.
    • In v2, version: min would resolve to the minimum major/minor/patch, e.g. 1.10.0.
    • In v3, version: min resolves to the minimum major/minor but the latest patch, e.g. 1.10.11.
    • If you specifically want the minimum major/minor/patch under v3, you should specify version: min-patch. Note: v3 also adds the alias version: min-minor, which is equivalent to version: min.
  3. v3 will throw an error if x86_64 Julia binaries are requested on Apple Silicon macOS. (Under v2, this was a warning.) Under v3, if you specifically want to run x86_64 Julia binaries on Apple Silicon (under Rosetta 2), you must now opt-in by specifying the force-arch: true input.

Other Changes

We updated some dependencies, and we improved and updated the CI tooling on this repo.

Full Changelog

Full Changelog: julia-actions/setup-julia@v2.7.0...v3.0.0

Commits
  • f6f565d Bugfix: Fix an error seen when using min-minor or min-patch (#387)
  • 4a12c5f Breaking: Change min to return the latest patch (but still the minimum majo...
  • a8c65a2 Bump the all-github-actions group across 1 directory with 2 updates (#381)
  • 92d77f5 Bump picomatch from 2.3.1 to 2.3.2 (#379)
  • 679f144 Bump handlebars from 4.7.8 to 4.7.9 (#377)
  • 7c976c8 Add workflow to run make everything-from-scratch (#378)
  • 101e139 Breaking: Migrate from Node 20 to Node 24 (#374)
  • 44a615a Require opt-in via force-arch to run x86 on macOS arm (#352)
  • See full diff in compare view

Updates peter-evans/create-pull-request from 8.1.0 to 8.1.1

Release notes

Sourced from peter-evans/create-pull-request's releases.

Create Pull Request v8.1.1

What's Changed

Full Changelog: peter-evans/create-pull-request@v8.1.0...v8.1.1

Commits
  • 5f6978f fix: retry post-creation API calls on 422 eventual consistency errors (#4356)
  • d32e88d build(deps-dev): bump the npm group with 3 updates (#4349)
  • 8170bcc build(deps-dev): bump handlebars from 4.7.8 to 4.7.9 (#4344)
  • 0041819 build(deps): bump picomatch (#4339)
  • b993918 build(deps-dev): bump flatted from 3.3.1 to 3.4.2 (#4334)
  • 36d7c84 build(deps-dev): bump undici from 6.23.0 to 6.24.0 (#4328)
  • a45d1fb build(deps): bump @​tootallnate/once and jest-environment-jsdom (#4323)
  • 3499eb6 build(deps): bump the github-actions group with 2 updates (#4316)
  • 3f3b473 build(deps): bump minimatch (#4311)
  • 6699836 build(deps-dev): bump the npm group with 2 updates (#4305)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the github-actions group across 1 directory with 6 …
69866ea 
…updates

Bumps the github-actions group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions-rust-lang/setup-rust-toolchain](https://github.com/actions-rust-lang/setup-rust-toolchain) | `1.15.4` | `1.16.0` |
| [clechasseur/rs-cargo](https://github.com/clechasseur/rs-cargo) | `5.0.3` | `5.0.4` |
| [cross-platform-actions/action](https://github.com/cross-platform-actions/action) | `0.32.0` | `1.0.0` |
| [taiki-e/install-action](https://github.com/taiki-e/install-action) | `2.75.15` | `2.75.26` |
| [julia-actions/setup-julia](https://github.com/julia-actions/setup-julia) | `2.7.0` | `3.0.1` |
| [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) | `8.1.0` | `8.1.1` |



Updates `actions-rust-lang/setup-rust-toolchain` from 1.15.4 to 1.16.0
- [Release notes](https://github.com/actions-rust-lang/setup-rust-toolchain/releases)
- [Changelog](https://github.com/actions-rust-lang/setup-rust-toolchain/blob/main/CHANGELOG.md)
- [Commits](actions-rust-lang/setup-rust-toolchain@150fca8...2b1f5e9)

Updates `clechasseur/rs-cargo` from 5.0.3 to 5.0.4
- [Release notes](https://github.com/clechasseur/rs-cargo/releases)
- [Commits](clechasseur/rs-cargo@34806c2...2ece93e)

Updates `cross-platform-actions/action` from 0.32.0 to 1.0.0
- [Release notes](https://github.com/cross-platform-actions/action/releases)
- [Changelog](https://github.com/cross-platform-actions/action/blob/master/changelog.md)
- [Commits](cross-platform-actions/action@492b0c8...2331563)

Updates `taiki-e/install-action` from 2.75.15 to 2.75.26
- [Release notes](https://github.com/taiki-e/install-action/releases)
- [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md)
- [Commits](taiki-e/install-action@5939f33...b651345)

Updates `julia-actions/setup-julia` from 2.7.0 to 3.0.1
- [Release notes](https://github.com/julia-actions/setup-julia/releases)
- [Commits](julia-actions/setup-julia@4c0cb0f...f6f565d)

Updates `peter-evans/create-pull-request` from 8.1.0 to 8.1.1
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](peter-evans/create-pull-request@c0f553f...5f6978f)

---
updated-dependencies:
- dependency-name: actions-rust-lang/setup-rust-toolchain
  dependency-version: 1.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: clechasseur/rs-cargo
  dependency-version: 5.0.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: cross-platform-actions/action
  dependency-version: 1.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: taiki-e/install-action
  dependency-version: 2.75.26
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: julia-actions/setup-julia
  dependency-version: 3.0.1
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: peter-evans/create-pull-request
  dependency-version: 8.1.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels May 6, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants