From d8e96061337925b755239d66ef395e90c55321ed Mon Sep 17 00:00:00 2001 From: updatecli Date: Fri, 9 Jan 2026 17:27:33 +0000 Subject: [PATCH 01/11] chore: deps(github): bump Action tag for actions/checkout from v4 to ... MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ... v6.0.1 Made with ❤️️ by updatecli --- .github/workflows/check-dist.yml | 10 +--------- 1 file changed, 1 insertion(+), 9 deletions(-) diff --git a/.github/workflows/check-dist.yml b/.github/workflows/check-dist.yml index 786ca036..6ad05666 100644 --- a/.github/workflows/check-dist.yml +++ b/.github/workflows/check-dist.yml @@ -4,7 +4,6 @@ # For our project, we generate this file through a build process from other source files. # We need to make sure the checked-in `index.js` actually matches what we expect it to be. name: Check dist/ - on: merge_group: branches: @@ -18,26 +17,20 @@ on: paths-ignore: - '**.md' workflow_dispatch: - jobs: check-dist: runs-on: ubuntu-latest - steps: - - uses: actions/checkout@v4 - + - uses: actions/checkout@v6.0.1 - name: Set Node.js 20.x uses: actions/setup-node@v4.4.0 with: node-version: 20 cache: npm - - name: Install dependencies run: npm ci - - name: Rebuild the dist/ directory run: npm run prepare - - name: Compare the expected and actual dist/ directories run: | if [ "$(git diff --ignore-space-at-eol dist/ | wc -l)" -gt "0" ]; then @@ -46,7 +39,6 @@ jobs: exit 1 fi id: diff - # If index.js was different than expected, upload the expected version as an artifact - uses: actions/upload-artifact@v4 if: ${{ failure() && steps.diff.conclusion == 'failure' }} From b79e2485b120355cdb5baffed263cb1a77ac9386 Mon Sep 17 00:00:00 2001 From: updatecli Date: Fri, 9 Jan 2026 17:28:28 +0000 Subject: [PATCH 02/11] chore: deps(github): bump Action tag for actions/setup-node from v4.4... MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ... .0 to v6.1.0 Made with ❤️️ by updatecli --- .github/workflows/check-dist.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/check-dist.yml b/.github/workflows/check-dist.yml index 6ad05666..160e61aa 100644 --- a/.github/workflows/check-dist.yml +++ b/.github/workflows/check-dist.yml @@ -23,7 +23,7 @@ jobs: steps: - uses: actions/checkout@v6.0.1 - name: Set Node.js 20.x - uses: actions/setup-node@v4.4.0 + uses: actions/setup-node@v6.1.0 with: node-version: 20 cache: npm From 203185d0e64225eae19cccf63d2a2c6aa717a718 Mon Sep 17 00:00:00 2001 From: updatecli Date: Fri, 9 Jan 2026 17:28:40 +0000 Subject: [PATCH 03/11] chore: deps(github): bump Action tag for actions/upload-artifact from... MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ... v4 to v6.0.0 Made with ❤️️ by updatecli --- .github/workflows/check-dist.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/check-dist.yml b/.github/workflows/check-dist.yml index 160e61aa..b33fa544 100644 --- a/.github/workflows/check-dist.yml +++ b/.github/workflows/check-dist.yml @@ -40,7 +40,7 @@ jobs: fi id: diff # If index.js was different than expected, upload the expected version as an artifact - - uses: actions/upload-artifact@v4 + - uses: actions/upload-artifact@v6.0.0 if: ${{ failure() && steps.diff.conclusion == 'failure' }} with: name: dist From f75aff5774acea75be6b86ff04edfe2ebde90abe Mon Sep 17 00:00:00 2001 From: updatecli Date: Fri, 9 Jan 2026 17:28:42 +0000 Subject: [PATCH 04/11] chore: deps(github): bump Action tag for actions/checkout from v4 to ... MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ... v6.0.1 Made with ❤️️ by updatecli --- .github/workflows/codeql-analysis.yml | 67 ++++++++++++--------------- 1 file changed, 29 insertions(+), 38 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 1c9a5f59..7240b118 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -10,19 +10,17 @@ # supported CodeQL languages. # name: "CodeQL" - on: merge_group: branches: - v2 push: - branches: [ main ] + branches: [main] pull_request: # The branches below must be a subset of the branches above - branches: [ main ] + branches: [main] schedule: - cron: '24 5 * * 6' - jobs: analyze: name: Analyze @@ -31,45 +29,38 @@ jobs: actions: read contents: read security-events: write - strategy: fail-fast: false matrix: - language: [ 'javascript' ] + language: ['javascript'] # CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python', 'ruby' ] # Learn more about CodeQL language support at https://git.io/codeql-language-support - steps: - - name: Checkout repository - uses: actions/checkout@v4 - - # Initializes the CodeQL tools for scanning. - - name: Initialize CodeQL - uses: github/codeql-action/init@v3 - with: - languages: ${{ matrix.language }} - config-file: ./.github/codeql/codeql-config.yml - # If you wish to specify custom queries, you can do so here or in a config file. - # By default, queries listed here will override any specified in a config file. - # Prefix the list here with "+" to use these queries and those in the config file. - # queries: ./path/to/local/query, your-org/your-repo/queries@main - - # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). - # If this step fails, then you should remove it and run the build manually (see below) - - name: Autobuild - uses: github/codeql-action/autobuild@v3 - - # ℹ️ Command-line programs to run using the OS shell. - # 📚 https://git.io/JvXDl - - # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines - # and modify them (or add more) to build your code if your project - # uses a compiled language - - #- run: | - # make bootstrap - # make release + - name: Checkout repository + uses: actions/checkout@v6.0.1 + # Initializes the CodeQL tools for scanning. + - name: Initialize CodeQL + uses: github/codeql-action/init@v3 + with: + languages: ${{ matrix.language }} + config-file: ./.github/codeql/codeql-config.yml + # If you wish to specify custom queries, you can do so here or in a config file. + # By default, queries listed here will override any specified in a config file. + # Prefix the list here with "+" to use these queries and those in the config file. + # queries: ./path/to/local/query, your-org/your-repo/queries@main + # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). + # If this step fails, then you should remove it and run the build manually (see below) + - name: Autobuild + uses: github/codeql-action/autobuild@v3 + # ℹ️ Command-line programs to run using the OS shell. + # 📚 https://git.io/JvXDl - - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3 + # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines + # and modify them (or add more) to build your code if your project + # uses a compiled language + #- run: | + # make bootstrap + # make release + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v3 From 87502ad035b9ebcc2e88b4f113fdcead27938fd4 Mon Sep 17 00:00:00 2001 From: updatecli Date: Fri, 9 Jan 2026 17:31:24 +0000 Subject: [PATCH 05/11] chore: deps(github): bump Action tag for github/codeql-action/init fr... MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ... om v3 to v4.31.9 Made with ❤️️ by updatecli --- .github/workflows/codeql-analysis.yml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 7240b118..fb144e38 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -40,7 +40,7 @@ jobs: uses: actions/checkout@v6.0.1 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v3 + uses: github/codeql-action/init@v4.31.9 with: languages: ${{ matrix.language }} config-file: ./.github/codeql/codeql-config.yml @@ -52,9 +52,6 @@ jobs: # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild uses: github/codeql-action/autobuild@v3 - # ℹ️ Command-line programs to run using the OS shell. - # 📚 https://git.io/JvXDl - # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines # and modify them (or add more) to build your code if your project # uses a compiled language @@ -63,4 +60,7 @@ jobs: # make bootstrap # make release - name: Perform CodeQL Analysis + # ℹ️ Command-line programs to run using the OS shell. + # 📚 https://git.io/JvXDl + uses: github/codeql-action/analyze@v3 From 8fc4bf6e5eb3333f096bf839efa08da2817dfbf5 Mon Sep 17 00:00:00 2001 From: updatecli Date: Fri, 9 Jan 2026 17:31:30 +0000 Subject: [PATCH 06/11] chore: deps(github): bump Action tag for github/codeql-action/autobui... MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ... ld from v3 to v4.31.9 Made with ❤️️ by updatecli --- .github/workflows/codeql-analysis.yml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index fb144e38..c944f060 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -51,11 +51,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@v3 - # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines - # and modify them (or add more) to build your code if your project - # uses a compiled language - + uses: github/codeql-action/autobuild@v4.31.9 #- run: | # make bootstrap # make release @@ -63,4 +59,8 @@ jobs: # ℹ️ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl + # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines + # and modify them (or add more) to build your code if your project + # uses a compiled language + uses: github/codeql-action/analyze@v3 From cadf4f647a644d34f5757d6c680fec6ac649fa97 Mon Sep 17 00:00:00 2001 From: updatecli Date: Fri, 9 Jan 2026 17:31:37 +0000 Subject: [PATCH 07/11] chore: deps(github): bump Action tag for github/codeql-action/analyze... MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ... from v3 to v4.31.9 Made with ❤️️ by updatecli --- .github/workflows/codeql-analysis.yml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index c944f060..f237f7a6 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -62,5 +62,4 @@ jobs: # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines # and modify them (or add more) to build your code if your project # uses a compiled language - - uses: github/codeql-action/analyze@v3 + uses: github/codeql-action/analyze@v4.31.9 From f830eb7589eb9d075bc9a7d8a6796aaddabae19d Mon Sep 17 00:00:00 2001 From: updatecli Date: Fri, 9 Jan 2026 17:31:53 +0000 Subject: [PATCH 08/11] chore: deps(github): bump Action tag for release-drafter/release-draf... MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ... ter from v6 to v6.1.0 Made with ❤️️ by updatecli --- .github/workflows/release-drafter.yml | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/.github/workflows/release-drafter.yml b/.github/workflows/release-drafter.yml index 3d878b1f..11740904 100644 --- a/.github/workflows/release-drafter.yml +++ b/.github/workflows/release-drafter.yml @@ -1,17 +1,15 @@ name: Release Drafter - on: workflow_dispatch: push: # branches to consider in the event; optional, defaults to all branches: - v2 - jobs: update_release_draft: runs-on: ubuntu-24.04 steps: - - uses: release-drafter/release-drafter@v6 + - uses: release-drafter/release-drafter@v6.1.0 with: config-name: release-drafter.yaml publish: startsWith(github.ref, "refs/tags") From 56b1cc88bfe1ea6f690bc241c613bb80040c9cd1 Mon Sep 17 00:00:00 2001 From: updatecli Date: Fri, 9 Jan 2026 17:31:54 +0000 Subject: [PATCH 09/11] chore: deps(github): bump Action tag for actions/checkout from v4 to ... MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ... v6.0.1 Made with ❤️️ by updatecli --- .github/workflows/test.yaml | 33 ++++++++++++--------------------- 1 file changed, 12 insertions(+), 21 deletions(-) diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml index 79297782..af5156eb 100644 --- a/.github/workflows/test.yaml +++ b/.github/workflows/test.yaml @@ -1,45 +1,36 @@ --- name: Test - on: merge_group: branches: - v2 workflow_dispatch: pull_request: - jobs: # unit tests units: name: Test Javascript runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 - - - name: Set Node.js 20.x - uses: actions/setup-node@v4.4.0 - with: - node-version: 20 - cache: npm - - - name: Install Dependencies - run: npm ci - - - name: Run Lint Test - run: npm run lint - - - name: Run tests - run: npm test - + - uses: actions/checkout@v6.0.1 + - name: Set Node.js 20.x + uses: actions/setup-node@v4.4.0 + with: + node-version: 20 + cache: npm + - name: Install Dependencies + run: npm ci + - name: Run Lint Test + run: npm run lint + - name: Run tests + run: npm test e2e: name: Test Updatecli Github Action runs-on: ubuntu-latest steps: - name: Git Checkout uses: actions/checkout@v4 - - name: Install Updatecli uses: ./ - - name: Test local action without install-only run: updatecli diff --config testdata/updatecli.d/test.yaml From 33d148a531fca29f4fd3f13570797178d7b9320f Mon Sep 17 00:00:00 2001 From: updatecli Date: Fri, 9 Jan 2026 17:32:02 +0000 Subject: [PATCH 10/11] chore: deps(github): bump Action release for actions/setup-node from ... MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ... v4.4.0 to v6.1.0 Made with ❤️️ by updatecli --- .github/workflows/test.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml index af5156eb..2571f683 100644 --- a/.github/workflows/test.yaml +++ b/.github/workflows/test.yaml @@ -14,7 +14,7 @@ jobs: steps: - uses: actions/checkout@v6.0.1 - name: Set Node.js 20.x - uses: actions/setup-node@v4.4.0 + uses: actions/setup-node@v6.1.0 with: node-version: 20 cache: npm From f05f80a885fb5ecb8a02af798131e8e2c8c73939 Mon Sep 17 00:00:00 2001 From: updatecli Date: Fri, 9 Jan 2026 17:32:04 +0000 Subject: [PATCH 11/11] chore: deps(github): bump Action tag for actions/checkout from v4 to ... MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ... v6.0.1 Made with ❤️️ by updatecli --- .github/workflows/test.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml index 2571f683..62f96450 100644 --- a/.github/workflows/test.yaml +++ b/.github/workflows/test.yaml @@ -29,7 +29,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Git Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v6.0.1 - name: Install Updatecli uses: ./ - name: Test local action without install-only