Bump the github-actions-deps group across 1 directory with 7 updates by dependabot[bot] · Pull Request #326 · ASFHyP3/actions

dependabot · 2026-03-30T13:16:39Z

Bumps the github-actions-deps group with 7 updates in the / directory:

Package	From	To
benc-uk/workflow-dispatch	`1.2`	`1.3`
docker/setup-buildx-action	`3`	`4`
aws-actions/configure-aws-credentials	`5`	`6`
docker/build-push-action	`6`	`7`
docker/login-action	`3`	`4`
mamba-org/setup-micromamba	`2`	`3`
trufflesecurity/trufflehog	`3.92.5`	`3.94.1`

Updates benc-uk/workflow-dispatch from 1.2 to 1.3

Release notes

Sourced from benc-uk/workflow-dispatch's releases.

v1.3.0 - It's been a long time coming...

What's Changed

After 6 years GitHub finally added a way to return the run-id from the workflow_dispatch API, this means I can return the run-id and link URLs from this action 😎

It also means the requested wait-for-completion option is now possible! 🥳 (with optional wait-timeout-seconds too)

Mucho internal modernization, switched to esbuild, packages updated and Node v24 is the new default 👀

Merges

2026 refresh by @benc-uk in benc-uk/workflow-dispatch#83

Full Changelog: benc-uk/workflow-dispatch@v1.2...v1.3.0

v1.2.4 - Summer 2024

What's Changed

Fix issue when a wrong workflowRef is used by @fffonion in benc-uk/workflow-dispatch#77 👍

Internal changes & chores: eslint updated to v9, linting, prettier etc 🥱

New Contributors

@fffonion made their first contribution in benc-uk/workflow-dispatch#77 🥳

Full Changelog: benc-uk/workflow-dispatch@v1.2.3...v1.2.4

v1.2.3 - 2024 refresh

Switched action to Node v20 it should stop those nags and warnings when using the action!

Package & dependency update

Removed zeit/ncc for vercel/nc

Full Changelog: benc-uk/workflow-dispatch@v1.2.2...v1.2.3

v1.2.2 - Fix ref regression

Fixes this issue benc-uk/workflow-dispatch#50

Commits

7a02764 Improvements: sync-status, error handling, CI test coverage & path filters (#84)
3162154 Use alternate ref default for PRs (#79)
4085c97 project chores
6fd6de2 Improve warning message formatting for workflow run timeout
a54f9d1 2026 refresh (#83)
See full diff in compare view

Updates docker/setup-buildx-action from 3 to 4

Release notes

Sourced from docker/setup-buildx-action's releases.

v4.0.0

Node 24 as default runtime (requires Actions Runner v2.327.1 or later) by @crazy-max in docker/setup-buildx-action#483

Remove deprecated inputs/outputs by @crazy-max in docker/setup-buildx-action#464

Switch to ESM and update config/test wiring by @crazy-max in docker/setup-buildx-action#481

Bump @actions/core from 1.11.1 to 3.0.0 in docker/setup-buildx-action#475

Bump @docker/actions-toolkit from 0.63.0 to 0.79.0 in docker/setup-buildx-action#482 docker/setup-buildx-action#485

Bump js-yaml from 4.1.0 to 4.1.1 in docker/setup-buildx-action#452

Bump lodash from 4.17.21 to 4.17.23 in docker/setup-buildx-action#472

Bump minimatch from 3.1.2 to 3.1.5 in docker/setup-buildx-action#480

Full Changelog: docker/setup-buildx-action@v3.12.0...v4.0.0

v3.12.0

Deprecate install input by @crazy-max in docker/setup-buildx-action#455

Bump @docker/actions-toolkit from 0.62.1 to 0.63.0 in docker/setup-buildx-action#434

Bump brace-expansion from 1.1.11 to 1.1.12 in docker/setup-buildx-action#436

Bump form-data from 2.5.1 to 2.5.5 in docker/setup-buildx-action#432

Bump undici from 5.28.4 to 5.29.0 in docker/setup-buildx-action#435

Full Changelog: docker/setup-buildx-action@v3.11.1...v3.12.0

v3.11.1

Fix keep-state not being respected by @crazy-max in docker/setup-buildx-action#429

Full Changelog: docker/setup-buildx-action@v3.11.0...v3.11.1

v3.11.0

Keep BuildKit state support by @crazy-max in docker/setup-buildx-action#427

Remove aliases created when installing by default by @hashhar in docker/setup-buildx-action#139

Bump @docker/actions-toolkit from 0.56.0 to 0.62.1 in docker/setup-buildx-action#422 docker/setup-buildx-action#425

Full Changelog: docker/setup-buildx-action@v3.10.0...v3.11.0

v3.10.0

Bump @docker/actions-toolkit from 0.54.0 to 0.56.0 in docker/setup-buildx-action#408

Full Changelog: docker/setup-buildx-action@v3.9.0...v3.10.0

v3.9.0

Bump @docker/actions-toolkit from 0.48.0 to 0.54.0 in docker/setup-buildx-action#402 docker/setup-buildx-action#404

Full Changelog: docker/setup-buildx-action@v3.8.0...v3.9.0

v3.8.0

Make cloud prefix optional to download buildx if driver is cloud by @crazy-max in docker/setup-buildx-action#390

Bump @actions/core from 1.10.1 to 1.11.1 in docker/setup-buildx-action#370

Bump @docker/actions-toolkit from 0.39.0 to 0.48.0 in docker/setup-buildx-action#389

Bump cross-spawn from 7.0.3 to 7.0.6 in docker/setup-buildx-action#382

Full Changelog: docker/setup-buildx-action@v3.7.1...v3.8.0

... (truncated)

Commits

4d04d5d Merge pull request #485 from docker/dependabot/npm_and_yarn/docker/actions-to...
cd74e05 chore: update generated content
eee38ec build(deps): bump @docker/actions-toolkit from 0.77.0 to 0.79.0
7a83f65 Merge pull request #484 from docker/dependabot/github_actions/docker/setup-qe...
a5aa967 Merge pull request #464 from crazy-max/rm-deprecated
e73d53f build(deps): bump docker/setup-qemu-action from 3 to 4
28a438e Merge pull request #483 from crazy-max/node24
034e9d3 chore: update generated content
b4664d8 remove deprecated inputs/outputs
a8257de node 24 as default runtime
Additional commits viewable in compare view

Updates aws-actions/configure-aws-credentials from 5 to 6

Release notes

Sourced from aws-actions/configure-aws-credentials's releases.

v6.0.0

6.0.0 (2026-02-04)

⚠ BREAKING CHANGES

Update action to use node24 Note this requires GitHub action runner version v2.327.1 or later (#1632) (a7a2c11)

Features

add support to define transitive tag keys (#1316) (232435c) (930ebd9)

Bug Fixes

properly output aws-account-id and authenticated-arn when using role-chaining (#1633) (7ceaf96)

v5.1.1

5.1.1 (2025-11-24)

Miscellaneous Chores

release 5.1.1 (56d6a58)

various dependency updates

v5.1.0

5.1.0 (2025-10-06)

Features

Add global timeout support (#1487) (1584b8b)

add no-proxy support (#1482) (dde9b22)

Improve debug logging in retry logic (#1485) (97ef425)

Bug Fixes

properly expose getProxyForUrl (introduced in #1482) (#1486) (cea4298)

Changelog

Sourced from aws-actions/configure-aws-credentials's changelog.

5.1.0 (2025-10-06)

Features

Add global timeout support (#1487) (1584b8b)

add no-proxy support (#1482) (dde9b22)

Improve debug logging in retry logic (#1485) (97ef425)

Bug Fixes

properly expose getProxyForUrl (introduced in #1482) (#1486) (cea4298)

5.0.0 (2025-09-03)

⚠ BREAKING CHANGES

Cleanup input handling. Changes invalid boolean input behavior (see #1445)

Features

add skip OIDC option (#1458) (8c45f6b)

Cleanup input handling. Changes invalid boolean input behavior (see #1445) (74b3e27)

support account id allowlist (#1456) (c4be498)

4.3.1 (2025-08-04)

Bug Fixes

update readme to 4.3.1 (#1424) (be2e7ad)

4.3.0 (2025-08-04)

Features

depenency update and feature cleanup (#1414) (59489ba), closes #1062 #1191

Optional environment variable output (c3b3ce6)

Bug Fixes

docs: readme samples versioning (5b3c895)

the wrong example region for China partition in README (37fe9a7)

properly set proxy environment variable (cbea708)

... (truncated)

Commits

8df5847 chore(deps): bump fast-xml-parser and @aws-sdk/xml-builder (#1640)
d22a0f8 chore(deps-dev): bump @types/node from 25.0.10 to 25.2.0 (#1635)
f7b8181 chore(main): release 6.0.0 (#1641)
c367a6a chore: integ tests manual option (#1639)
7ceaf96 fix: correct outputs for role chaining (#1633)
a7a2c11 feat!: update action to use node24 (#1632)
6e3375d chore: remove release-please release automation (#1631)
98abed7 chore: add workflow_dispatch trigger to release workflow (#1630)
bf3adbb chore: Update dist
db43b8b chore: re-run linter
Additional commits viewable in compare view

Updates docker/build-push-action from 6 to 7

Release notes

Sourced from docker/build-push-action's releases.

v7.0.0

Node 24 as default runtime (requires Actions Runner v2.327.1 or later) by @crazy-max in docker/build-push-action#1470

Remove deprecated DOCKER_BUILD_NO_SUMMARY and DOCKER_BUILD_EXPORT_RETENTION_DAYS envs by @crazy-max in docker/build-push-action#1473

Remove legacy export-build tool support for build summary by @crazy-max in docker/build-push-action#1474

Switch to ESM and update config/test wiring by @crazy-max in docker/build-push-action#1466

Bump @actions/core from 1.11.1 to 3.0.0 in docker/build-push-action#1454

Bump @docker/actions-toolkit from 0.62.1 to 0.79.0 in docker/build-push-action#1453 docker/build-push-action#1472 docker/build-push-action#1479

Bump minimatch from 3.1.2 to 3.1.5 in docker/build-push-action#1463

Full Changelog: docker/build-push-action@v6.19.2...v7.0.0

v6.19.2

Preserve port in GIT_AUTH_TOKEN host by @crazy-max in docker/build-push-action#1458

Full Changelog: docker/build-push-action@v6.19.1...v6.19.2

v6.19.1

Derive GIT_AUTH_TOKEN host from GitHub server URL by @crazy-max in docker/build-push-action#1456

Full Changelog: docker/build-push-action@v6.19.0...v6.19.1

v6.19.0

Scope default git auth token to github.com by @crazy-max in docker/build-push-action#1451

Bump brace-expansion from 1.1.11 to 1.1.12 in docker/build-push-action#1396

Bump form-data from 2.5.1 to 2.5.5 in docker/build-push-action#1391

Bump js-yaml from 3.14.1 to 3.14.2 in docker/build-push-action#1429

Bump lodash from 4.17.21 to 4.17.23 in docker/build-push-action#1446

Bump tmp from 0.2.3 to 0.2.4 in docker/build-push-action#1398

Bump undici from 5.28.4 to 5.29.0 in docker/build-push-action#1397

Full Changelog: docker/build-push-action@v6.18.0...v6.19.0

v6.18.0

Bump @docker/actions-toolkit from 0.61.0 to 0.62.1 in docker/build-push-action#1381

[!NOTE] Build summary is now supported with Docker Build Cloud.

Full Changelog: docker/build-push-action@v6.17.0...v6.18.0

v6.17.0

Bump @docker/actions-toolkit from 0.59.0 to 0.61.0 by @crazy-max in docker/build-push-action#1364

[!NOTE] Build record is now exported using the buildx history export command instead of the legacy export-build tool.

Full Changelog: docker/build-push-action@v6.16.0...v6.17.0

v6.16.0

Handle no default attestations env var by @crazy-max in docker/build-push-action#1343

... (truncated)

Commits

d08e5c3 Merge pull request #1479 from docker/dependabot/npm_and_yarn/docker/actions-t...
cbd2dff chore: update generated content
f76f51f chore(deps): Bump @docker/actions-toolkit from 0.78.0 to 0.79.0
7d03e66 Merge pull request #1473 from crazy-max/rm-deprecated-envs
98f853d chore: update generated content
cadccf6 remove deprecated envs
03fe877 Merge pull request #1478 from docker/dependabot/github_actions/docker/setup-b...
827e366 chore(deps): Bump docker/setup-buildx-action from 3 to 4
e25db87 Merge pull request #1474 from crazy-max/rm-export-build-tool
1ac2573 Merge pull request #1470 from crazy-max/node24
Additional commits viewable in compare view

Updates docker/login-action from 3 to 4

Release notes

Sourced from docker/login-action's releases.

v4.0.0

Node 24 as default runtime (requires Actions Runner v2.327.1 or later) by @crazy-max in docker/login-action#929

Switch to ESM and update config/test wiring by @crazy-max in docker/login-action#927

Bump @actions/core from 1.11.1 to 3.0.0 in docker/login-action#919

Bump @aws-sdk/client-ecr from 3.890.0 to 3.1000.0 in docker/login-action#909 docker/login-action#920

Bump @aws-sdk/client-ecr-public from 3.890.0 to 3.1000.0 in docker/login-action#909 docker/login-action#920

Bump @docker/actions-toolkit from 0.63.0 to 0.77.0 in docker/login-action#910 docker/login-action#928

Bump @isaacs/brace-expansion from 5.0.0 to 5.0.1 in docker/login-action#921

Bump js-yaml from 4.1.0 to 4.1.1 in docker/login-action#901

Full Changelog: docker/login-action@v3.7.0...v4.0.0

v3.7.0

Add scope input to set scopes for the authentication token by @crazy-max in docker/login-action#912

Add support for AWS European Sovereign Cloud ECR by @dphi in docker/login-action#914

Ensure passwords are redacted with registry-auth input by @crazy-max in docker/login-action#911

build(deps): bump lodash from 4.17.21 to 4.17.23 in docker/login-action#915

Full Changelog: docker/login-action@v3.6.0...v3.7.0

v3.6.0

Add registry-auth input for raw authentication to registries by @crazy-max in docker/login-action#887

Bump @aws-sdk/client-ecr to 3.890.0 in docker/login-action#882 docker/login-action#890

Bump @aws-sdk/client-ecr-public to 3.890.0 in docker/login-action#882 docker/login-action#890

Bump @docker/actions-toolkit from 0.62.1 to 0.63.0 in docker/login-action#883

Bump brace-expansion from 1.1.11 to 1.1.12 in docker/login-action#880

Bump undici from 5.28.4 to 5.29.0 in docker/login-action#879

Bump tmp from 0.2.3 to 0.2.4 in docker/login-action#881

Full Changelog: docker/login-action@v3.5.0...v3.6.0

v3.5.0

Support dual-stack endpoints for AWS ECR by @Spacefish @crazy-max in docker/login-action#874 docker/login-action#876

Bump @aws-sdk/client-ecr to 3.859.0 in docker/login-action#860 docker/login-action#878

Bump @aws-sdk/client-ecr-public to 3.859.0 in docker/login-action#860 docker/login-action#878

Bump @docker/actions-toolkit from 0.57.0 to 0.62.1 in docker/login-action#870

Bump form-data from 2.5.1 to 2.5.5 in docker/login-action#875

Full Changelog: docker/login-action@v3.4.0...v3.5.0

v3.4.0

Bump @actions/core from 1.10.1 to 1.11.1 in docker/login-action#791

Bump @aws-sdk/client-ecr to 3.766.0 in docker/login-action#789 docker/login-action#856

Bump @aws-sdk/client-ecr-public to 3.758.0 in docker/login-action#789 docker/login-action#856

Bump @docker/actions-toolkit from 0.35.0 to 0.57.0 in docker/login-action#801 docker/login-action#806 docker/login-action#858

Bump cross-spawn from 7.0.3 to 7.0.6 in docker/login-action#814

Bump https-proxy-agent from 7.0.5 to 7.0.6 in docker/login-action#823

Bump path-to-regexp from 6.2.2 to 6.3.0 in docker/login-action#777

Full Changelog: docker/login-action@v3.3.0...v3.4.0

... (truncated)

Commits

b45d80f Merge pull request #929 from crazy-max/node24
176cb9c node 24 as default runtime
cad8984 Merge pull request #920 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...
92cbcb2 chore: update generated content
5a2d6a7 build(deps): bump the aws-sdk-dependencies group with 2 updates
44512b6 Merge pull request #928 from docker/dependabot/npm_and_yarn/docker/actions-to...
28737a5 chore: update generated content
dac0793 build(deps): bump @docker/actions-toolkit from 0.76.0 to 0.77.0
62029f3 Merge pull request #919 from docker/dependabot/npm_and_yarn/actions/core-3.0.0
08c8f06 chore: update generated content
Additional commits viewable in compare view

Updates mamba-org/setup-micromamba from 2 to 3

Release notes

Sourced from mamba-org/setup-micromamba's releases.

v3.0.0

What's Changed

New features

Update Node.js version from 20 to 24 by @glass-ships in mamba-org/setup-micromamba#296

Hash bytes rather than encoded string by @bhperry in mamba-org/setup-micromamba#297

Dependency updates

Bump the node group with 9 updates by @dependabot[bot] in mamba-org/setup-micromamba#286

Bump the actions group with 2 updates by @dependabot[bot] in mamba-org/setup-micromamba#285

Bump the node group across 1 directory with 13 updates by @dependabot[bot] in mamba-org/setup-micromamba#292

Bump the actions group across 1 directory with 4 updates by @dependabot[bot] in mamba-org/setup-micromamba#289

Bump the node group across 1 directory with 14 updates by @dependabot[bot] in mamba-org/setup-micromamba#294

Other changes

Pin github actions by @pavelzw in mamba-org/setup-micromamba#298

New Contributors

@glass-ships made their first contribution in mamba-org/setup-micromamba#296

Full Changelog: mamba-org/setup-micromamba@v2...v3.0.0

v2.0.7

What's Changed

Bug fixes

Resolve bin hash promise by @bhperry in mamba-org/setup-micromamba#284

Full Changelog: mamba-org/setup-micromamba@v2.0.6...v2.0.7

v2.0.6

What's Changed

New features

v2.0.6 by @jjerphan in mamba-org/setup-micromamba#283

Dependency updates

Bump the node group with 9 updates by @dependabot[bot] in mamba-org/setup-micromamba#276

Bump softprops/action-gh-release from 2.2.2 to 2.3.2 in the actions group by @dependabot[bot] in mamba-org/setup-micromamba#277

Update dependencies and rebuild dist by @jjerphan in mamba-org/setup-micromamba#278

Bump actions/checkout from 4 to 5 in the actions group by @dependabot[bot] in mamba-org/setup-micromamba#281

Bump the node group across 1 directory with 10 updates by @dependabot[bot] in mamba-org/setup-micromamba#282

Full Changelog: mamba-org/setup-micromamba@v2.0.5...v2.0.6

v2.0.5

... (truncated)

Commits

d7c9bd8 Pin github actions (#298)
11aea49 Bump the node group across 1 directory with 14 updates (#294)
5f971b0 Hash bytes rather than encoded string (#297)
4807357 Update Node.js version from 20 to 24 (#296)
8a0111d Bump the actions group across 1 directory with 4 updates (#289)
6a5f054 Bump the node group across 1 directory with 13 updates (#292)
4d84239 Bump the actions group with 2 updates (#285)
8271e47 Bump the node group with 9 updates (#286)
See full diff in compare view

Updates trufflesecurity/trufflehog from 3.92.5 to 3.94.1

Release notes

Sourced from trufflesecurity/trufflehog's releases.

v3.94.1

What's Changed

use struct-based SourceMetadataFunc signature across git sources by @amanfcp in trufflesecurity/trufflehog#4813

Full Changelog: trufflesecurity/trufflehog@v3.94.0...v3.94.1

v3.94.0

What's Changed

Use trContext instead of context throughout Filesystem source by @camgunz in trufflesecurity/trufflehog#4804

Make naming more consistent in the Filesystem source by @camgunz in trufflesecurity/trufflehog#4805

Rearrange some method parameters in the Filesystem source by @camgunz in trufflesecurity/trufflehog#4806

[INS-254] Datadog detector verification fix and endpoint configuration by @MuneebUllahKhan222 in trufflesecurity/trufflehog#4616

[INS-241] Datadogapikey detector by @MuneebUllahKhan222 in trufflesecurity/trufflehog#4627

Analysis info now uses snake case by @MuneebUllahKhan222 in trufflesecurity/trufflehog#4765

Add anypoint oauth2 detector to defaults.go by @mustansir14 in trufflesecurity/trufflehog#4722

Update README formatting and CLI help output by @bryanbeverly in trufflesecurity/trufflehog#4758

Add test cases for escaped unicode by @casey-tran in trufflesecurity/trufflehog#4812

Confine symlink state handling to scanSymlink in Filesystem source by @camgunz in trufflesecurity/trufflehog#4807

Expand tilde manually in TUI by @mcastorina in trufflesecurity/trufflehog#4827

New Contributors

@bryanbeverly made their first contribution in trufflesecurity/trufflehog#4758

Full Changelog: trufflesecurity/trufflehog@v3.93.8...v3.94.0

v3.93.8

What's Changed

fix: make LDAP verification context-aware by @mariduv in trufflesecurity/trufflehog#4768

Stop growing filesystem resume data by @rosecodym in trufflesecurity/trufflehog#4797

Full Changelog: trufflesecurity/trufflehog@v3.93.7...v3.93.8

v3.93.7

What's Changed

[INS-331] Fix the issue causing the tests file system soruce tests to fail on windows by @MuneebUllahKhan222 in trufflesecurity/trufflehog#4743

Thread original chunk data through engine pipeline by @dustin-decker in trufflesecurity/trufflehog#4780

Added detector for JFrog Artifactory Reference Tokens by @shahzadhaider1 in trufflesecurity/trufflehog#4684

Fix JDBC detector regex truncating trailing non-alphanumeric password characters by @amanfcp in trufflesecurity/trufflehog#4755

Full Changelog: trufflesecurity/trufflehog@v3.93.6...v3.93.7

v3.93.6

What's Changed

GH_TOKEN needed for gh by @bill-rich in trufflesecurity/trufflehog#4772

Move verify flag into detectableChunk by @rosecodym in trufflesecurity/trufflehog#4558

... (truncated)

Commits

586f66d use struct-based SourceMetadataFunc signature across git sources (#4813)
6c64db9 Expand tilde manually in TUI (#4827)
afd5336 Confine symlink state handling to scanSymlink in Filesystem source (#4807)
d17df48 Add test cases for escaped unicode (#4812)
aeb1278 Update README formatting and CLI help output (#4758)
42b02ef Add anypoint oauth2 detector to defaults.go (#4722)
4860052 Analysis info now uses snake case (#4765)
f9d1850 [INS-241] Datadogapikey detector (#4627)
16d6dcf [INS-254] Datadog detector verification fix and endpoint configuration (#4616)
bc31aa9 Rearrange some method parameters in the Filesystem source (#4806)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the github-actions-deps group with 7 updates in the / directory: | Package | From | To | | --- | --- | --- | | [benc-uk/workflow-dispatch](https://github.com/benc-uk/workflow-dispatch) | `1.2` | `1.3` | | [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `3` | `4` | | [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials) | `5` | `6` | | [docker/build-push-action](https://github.com/docker/build-push-action) | `6` | `7` | | [docker/login-action](https://github.com/docker/login-action) | `3` | `4` | | [mamba-org/setup-micromamba](https://github.com/mamba-org/setup-micromamba) | `2` | `3` | | [trufflesecurity/trufflehog](https://github.com/trufflesecurity/trufflehog) | `3.92.5` | `3.94.1` | Updates `benc-uk/workflow-dispatch` from 1.2 to 1.3 - [Release notes](https://github.com/benc-uk/workflow-dispatch/releases) - [Commits](benc-uk/workflow-dispatch@v1.2...v1.3) Updates `docker/setup-buildx-action` from 3 to 4 - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](docker/setup-buildx-action@v3...v4) Updates `aws-actions/configure-aws-credentials` from 5 to 6 - [Release notes](https://github.com/aws-actions/configure-aws-credentials/releases) - [Changelog](https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md) - [Commits](aws-actions/configure-aws-credentials@v5...v6) Updates `docker/build-push-action` from 6 to 7 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v6...v7) Updates `docker/login-action` from 3 to 4 - [Release notes](https://github.com/docker/login-action/releases) - [Commits](docker/login-action@v3...v4) Updates `mamba-org/setup-micromamba` from 2 to 3 - [Release notes](https://github.com/mamba-org/setup-micromamba/releases) - [Commits](mamba-org/setup-micromamba@v2...v3) Updates `trufflesecurity/trufflehog` from 3.92.5 to 3.94.1 - [Release notes](https://github.com/trufflesecurity/trufflehog/releases) - [Commits](trufflesecurity/trufflehog@v3.92.5...v3.94.1) --- updated-dependencies: - dependency-name: benc-uk/workflow-dispatch dependency-version: '1.3' dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions-deps - dependency-name: docker/setup-buildx-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions-deps - dependency-name: aws-actions/configure-aws-credentials dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions-deps - dependency-name: docker/build-push-action dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions-deps - dependency-name: docker/login-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions-deps - dependency-name: mamba-org/setup-micromamba dependency-version: '3' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions-deps - dependency-name: trufflesecurity/trufflehog dependency-version: 3.94.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions-deps ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added bumpless Changes to documentation, CI/CD pipelines, etc that don't affect the project's version major Bump the major version number of this project labels Mar 30, 2026

dependabot bot requested review from a team as code owners March 30, 2026 13:16

dependabot bot added bumpless Changes to documentation, CI/CD pipelines, etc that don't affect the project's version major Bump the major version number of this project labels Mar 30, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the github-actions-deps group across 1 directory with 7 updates#326

Bump the github-actions-deps group across 1 directory with 7 updates#326
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot/github_actions/github-actions-deps-58a34b44b8

dependabot bot commented on behalf of github Mar 30, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Mar 30, 2026

v1.3.0 - It's been a long time coming...

What's Changed

Merges

v1.2.4 - Summer 2024

What's Changed

New Contributors

v1.2.3 - 2024 refresh

v1.2.2 - Fix ref regression

v4.0.0

v3.12.0

v3.11.1

v3.11.0

v3.10.0

v3.9.0

v3.8.0

v6.0.0

6.0.0 (2026-02-04)

⚠ BREAKING CHANGES

Features

Bug Fixes

v5.1.1

5.1.1 (2025-11-24)

Miscellaneous Chores

v5.1.0

5.1.0 (2025-10-06)

Features

Bug Fixes

5.1.0 (2025-10-06)

Features

Bug Fixes

5.0.0 (2025-09-03)

⚠ BREAKING CHANGES

Features

4.3.1 (2025-08-04)

Bug Fixes

4.3.0 (2025-08-04)

Features

Bug Fixes

v7.0.0

v6.19.2

v6.19.1

v6.19.0

v6.18.0

v6.17.0

v6.16.0

v4.0.0

v3.7.0

v3.6.0

v3.5.0

v3.4.0

v3.0.0

What's Changed

New features

Dependency updates

Other changes

New Contributors

v2.0.7

What's Changed

Bug fixes

v2.0.6

What's Changed

New features

Dependency updates

v2.0.5

v3.94.1

What's Changed

v3.94.0

What's Changed

New Contributors

v3.93.8

What's Changed

v3.93.7

What's Changed

v3.93.6

What's Changed

Uh oh!

Reviewers

Assignees