Bump the github-actions group with 4 updates

[dependabot]

Bumps the github-actions group with 4 updates: actions/checkout, actions/setup-python, codecov/codecov-action and stefanzweifel/git-auto-commit-action.

Updates actions/checkout from 2 to 4

Release notes

Sourced from actions/checkout's releases.

v4.0.0

What's Changed

• Update default runtime to node20 by @​takost in actions/checkout#1436
• Support fetching without the --progress option by @​simonbaird in actions/checkout#1067
• Release 4.0.0 by @​takost in actions/checkout#1447

New Contributors

• @​takost made their first contribution in actions/checkout#1436
• @​simonbaird made their first contribution in actions/checkout#1067

Full Changelog: actions/checkout@v3...v4.0.0

v3.6.0

What's Changed

• Mark test scripts with Bash'isms to be run via Bash by @​dscho in actions/checkout#1377
• Add option to fetch tags even if fetch-depth > 0 by @​RobertWieczoreck in actions/checkout#579
• Release 3.6.0 by @​luketomlinson in actions/checkout#1437

New Contributors

• @​RobertWieczoreck made their first contribution in actions/checkout#579
• @​luketomlinson made their first contribution in actions/checkout#1437

Full Changelog: actions/checkout@v3.5.3...v3.6.0

v3.5.3

What's Changed

• Fix: Checkout Issue in self hosted runner due to faulty submodule check-ins by @​megamanics in actions/checkout#1196
• Fix typos found by codespell by @​DimitriPapadopoulos in actions/checkout#1287
• Add support for sparse checkouts by @​dscho and @​dfdez in actions/checkout#1369
• Release v3.5.3 by @​TingluoHuang in actions/checkout#1376

New Contributors

• @​megamanics made their first contribution in actions/checkout#1196
• @​DimitriPapadopoulos made their first contribution in actions/checkout#1287
• @​dfdez made their first contribution in actions/checkout#1369

Full Changelog: actions/checkout@v3...v3.5.3

v3.5.2

What's Changed

• Fix: Use correct API url / endpoint in GHES by @​fhammerl in actions/checkout#1289 based on #1286 by @​1newsr

Full Changelog: actions/checkout@v3.5.1...v3.5.2

v3.5.1

What's Changed

• Improve checkout performance on Windows runners by upgrading @​actions/github dependency by @​BrettDong in actions/checkout#1246

New Contributors

• @​BrettDong made their first contribution in actions/checkout#1246

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

Changelog

v4.1.0

• Add support for partial checkout filters

v4.0.0

• Support fetching without the --progress option
• Update to node20

v3.6.0

• Fix: Mark test scripts with Bash'isms to be run via Bash
• Add option to fetch tags even if fetch-depth > 0

v3.5.3

• Fix: Checkout fail in self-hosted runners when faulty submodule are checked-in
• Fix typos found by codespell
• Add support for sparse checkouts

v3.5.2

• Fix api endpoint for GHES

v3.5.1

• Fix slow checkout on Windows

v3.5.0

• Add new public key for known_hosts

v3.4.0

• Upgrade codeql actions to v2
• Upgrade dependencies
• Upgrade @​actions/io

v3.3.0

• Implement branch list using callbacks from exec function
• Add in explicit reference to private checkout options
• [Fix comment typos (that got added in #770)](actions/checkout#1057)

v3.2.0

• Add GitHub Action to perform release
• Fix status badge
• Replace datadog/squid with ubuntu/squid Docker image
• Wrap pipeline commands for submoduleForeach in quotes
• Update @​actions/io to 1.1.2
• Upgrading version to 3.2.0

v3.1.0

• Use @​actions/core saveState and getState
• Add github-server-url input

v3.0.2

... (truncated)

Commits

• b4ffde6 Link to release page from what's new section (#1514)
• 8530928 Correct link to GitHub Docs (#1511)
• 7cdaf2f Update CODEOWNERS to Launch team (#1510)
• 8ade135 Prepare 4.1.0 release (#1496)
• c533a0a Add support for partial checkout filters (#1396)
• 72f2cec Update README.md for V4 (#1452)
• 3df4ab1 Release 4.0.0 (#1447)
• 8b5e8b7 Support fetching without the --progress option (#1067)
• 97a652b Update default runtime to node20 (#1436)
• f43a0e5 Release 3.6.0 (#1437)
• Additional commits viewable in compare view

Updates actions/setup-python from 2 to 5

Release notes

Sourced from actions/setup-python's releases.

v5.0.0

What's Changed

In scope of this release, we update node version runtime from node16 to node20 (actions/setup-python#772). Besides, we update dependencies to the latest versions.

Full Changelog: actions/setup-python@v4.8.0...v5.0.0

v4.8.0

What's Changed

In scope of this release we added support for GraalPy (actions/setup-python#694). You can use this snippet to set up GraalPy:

steps:
- uses: actions/checkout@v4
- uses: actions/setup-python@v4 
  with:
    python-version: 'graalpy-22.3' 
- run: python my_script.py

Besides, the release contains such changes as:

• Trim python version when reading from file by @​FerranPares in actions/setup-python#628
• Use non-deprecated versions in examples by @​jeffwidman in actions/setup-python#724
• Change deprecation comment to past tense by @​jeffwidman in actions/setup-python#723
• Bump @​babel/traverse from 7.9.0 to 7.23.2 by @​dependabot in actions/setup-python#743
• advanced-usage.md: Encourage the use actions/checkout@v4 by @​cclauss in actions/setup-python#729
• Examples now use checkout@v4 by @​simonw in actions/setup-python#738
• Update actions/checkout to v4 by @​dmitry-shibanov in actions/setup-python#761

New Contributors

• @​FerranPares made their first contribution in actions/setup-python#628
• @​timfel made their first contribution in actions/setup-python#694
• @​jeffwidman made their first contribution in actions/setup-python#724

Full Changelog: actions/setup-python@v4...v4.8.0

v4.7.1

What's Changed

• Bump word-wrap from 1.2.3 to 1.2.4 by @​dependabot in actions/setup-python#702
• Add range validation for toml files by @​dmitry-shibanov in actions/setup-python#726

Full Changelog: actions/setup-python@v4...v4.7.1

v4.7.0

In scope of this release, the support for reading python version from pyproject.toml was added (actions/setup-python#669).

      - name: Setup Python
        uses: actions/setup-python@v4
</tr></table> 

... (truncated)

Commits

• 0a5c615 Update action to node20 (#772)
• 0ae5836 Add example of GraalPy to docs (#773)
• b64ffca update actions/checkout to v4 (#761)
• 8d28961 Examples now use checkout@v4 (#738)
• 7bc6abb advanced-usage.md: Encourage the use actions/checkout@v4 (#729)
• e8111ce Bump @​babel/traverse from 7.9.0 to 7.23.2 (#743)
• a00ea43 add fix for graalpy ci (#741)
• 8635b1c Change deprecation comment to past tense (#723)
• f6cc428 Use non-deprecated versions in examples (#724)
• 5f2af21 Add GraalPy support (#694)
• Additional commits viewable in compare view

Updates codecov/codecov-action from 2 to 3

Release notes

Sourced from codecov/codecov-action's releases.

v3.0.0

Breaking Changes

• #689 Bump to node16 and small fixes

Features

• #688 Incorporate gcov arguments for the Codecov uploader

Dependencies

• #548 build(deps-dev): bump jest-junit from 12.2.0 to 13.0.0
• #603 [Snyk] Upgrade @​actions/core from 1.5.0 to 1.6.0
• #628 build(deps): bump node-fetch from 2.6.1 to 3.1.1
• #634 build(deps): bump node-fetch from 3.1.1 to 3.2.0
• #636 build(deps): bump openpgp from 5.0.1 to 5.1.0
• #652 build(deps-dev): bump @​vercel/ncc from 0.30.0 to 0.33.3
• #653 build(deps-dev): bump @​types/node from 16.11.21 to 17.0.18
• #659 build(deps-dev): bump @​types/jest from 27.4.0 to 27.4.1
• #667 build(deps): bump actions/checkout from 2 to 3
• #673 build(deps): bump node-fetch from 3.2.0 to 3.2.3
• #683 build(deps): bump minimist from 1.2.5 to 1.2.6
• #685 build(deps): bump @​actions/github from 5.0.0 to 5.0.1
• #681 build(deps-dev): bump @​types/node from 17.0.18 to 17.0.23
• #682 build(deps-dev): bump typescript from 4.5.5 to 4.6.3
• #676 build(deps): bump @​actions/exec from 1.1.0 to 1.1.1
• #675 build(deps): bump openpgp from 5.1.0 to 5.2.1

v2.1.0

2.1.0

Features

• #515 Allow specifying version of Codecov uploader

Dependencies

• #499 build(deps-dev): bump @​vercel/ncc from 0.29.0 to 0.30.0
• #508 build(deps): bump openpgp from 5.0.0-5 to 5.0.0
• #514 build(deps-dev): bump @​types/node from 16.6.0 to 16.9.0

v2.0.3

2.0.3

Fixes

• #464 Fix wrong link in the readme
• #485 fix: Add override OS and linux default to platform

Dependencies

• #447 build(deps): bump openpgp from 5.0.0-4 to 5.0.0-5
• #458 build(deps-dev): bump eslint from 7.31.0 to 7.32.0
• #465 build(deps-dev): bump @​typescript-eslint/eslint-plugin from 4.28.4 to 4.29.1
• #466 build(deps-dev): bump @​typescript-eslint/parser from 4.28.4 to 4.29.1
• #468 build(deps-dev): bump @​types/jest from 26.0.24 to 27.0.0
• #470 build(deps-dev): bump @​types/node from 16.4.0 to 16.6.0
• #472 build(deps): bump path-parse from 1.0.6 to 1.0.7
• #473 build(deps-dev): bump @​types/jest from 27.0.0 to 27.0.1

... (truncated)

Changelog

Sourced from codecov/codecov-action's changelog.

4.0.0-beta.2

Fixes

• #1085 not adding -n if empty to do-upload command

4.0.0-beta.1

v4 represents a move from the universal uploader to the Codecov CLI. Although this will unlock new features for our users, the CLI is not yet at feature parity with the universal uploader.

Breaking Changes

• No current support for aarch64 and alpine architectures.
• Tokenless uploading is unsuported
• Various arguments to the Action have been removed

3.1.4

Fixes

• #967 Fix typo in README.md
• #971 fix: add back in working dir
• #969 fix: CLI option names for uploader

Dependencies

• #970 build(deps-dev): bump @​types/node from 18.15.12 to 18.16.3
• #979 build(deps-dev): bump @​types/node from 20.1.0 to 20.1.2
• #981 build(deps-dev): bump @​types/node from 20.1.2 to 20.1.4

3.1.3

Fixes

• #960 fix: allow for aarch64 build

Dependencies

• #957 build(deps-dev): bump jest-junit from 15.0.0 to 16.0.0
• #958 build(deps): bump openpgp from 5.7.0 to 5.8.0
• #959 build(deps-dev): bump @​types/node from 18.15.10 to 18.15.12

3.1.2

Fixes

• #718 Update README.md
• #851 Remove unsupported path_to_write_report argument
• #898 codeql-analysis.yml
• #901 Update README to contain correct information - inputs and negate feature
• #955 fix: add in all the extra arguments for uploader

Dependencies

• #819 build(deps): bump openpgp from 5.4.0 to 5.5.0
• #835 build(deps): bump node-fetch from 3.2.4 to 3.2.10
• #840 build(deps): bump ossf/scorecard-action from 1.1.1 to 2.0.4
• #841 build(deps): bump @​actions/core from 1.9.1 to 1.10.0
• #843 build(deps): bump @​actions/github from 5.0.3 to 5.1.1
• #869 build(deps): bump node-fetch from 3.2.10 to 3.3.0
• #872 build(deps-dev): bump jest-junit from 13.2.0 to 15.0.0
• #879 build(deps): bump decode-uri-component from 0.2.0 to 0.2.2

... (truncated)

Commits

• eaaf4be release: 3.1.4 (#983)
• c2ab9ab build(deps-dev): bump @​types/node from 20.1.2 to 20.1.4 (#981)
• 49c20db build(deps-dev): bump @​types/node from 20.1.0 to 20.1.2 (#979)
• cf8e3e4 build(deps-dev): bump @​types/node from 18.16.3 to 20.1.0 (#975)
• 1c34415 fix: CLI option names for uploader (#969)
• b4dfea7 fix: add back in working dir (#971)
• 5bf2504 Fix typo in README.md (#967)
• 1dd0ce3 build(deps-dev): bump @​types/node from 18.15.12 to 18.16.3 (#970)
• 894ff02 chore(release): bump to 3.1.3 (#961)
• f539f97 fix: allow for aarch64 build (#960)
• Additional commits viewable in compare view

Updates stefanzweifel/git-auto-commit-action from 4 to 5

Release notes

Sourced from stefanzweifel/git-auto-commit-action's releases.

v5.0.0

New major release that bumps the default runtime to Node 20. There are no other breaking changes.

Changed

• Update node version to node20 (#300) @​ryudaitakai
• Add _log and _set_github_output functions (#273) @​stefanzweifel

Fixed

• Seems like there is an extra space (#288) @​pedroamador
• Fix git-auto-commit.yml (#277) @​zcong1993

Dependency Updates

• Bump actions/checkout from 3 to 4 (#302) @​dependabot
• Bump bats from 1.9.0 to 1.10.0 (#293) @​dependabot
• Bump github/super-linter from 4 to 5 (#289) @​dependabot
• Bump bats from 1.8.2 to 1.9.0 (#282) @​dependabot

v4.16.0

Changed

• Don't commit files when only LF/CRLF changes (#265) @​ZeroRin
• Update default email address of github-actions[bot] (#264) @​Teko012

Fixed

• Fix link and text for workflow limitation (#263) @​Teko012

v4.15.4

Fixed

• Let Action fail if git binary can't be located (#261) @​stefanzweifel

Dependency Updates

• Bump github/super-linter from 3 to 4 (#258) @​dependabot
• Bump bats from 1.7.0 to 1.8.2 (#259) @​dependabot
• Bump actions/checkout from 2 to 3 (#257) @​dependabot

v4.15.3

Changed

• Use deprecated set-output syntax if GITHUB_OUTPUT environment is not available (#255) @​stefanzweifel

v4.15.2

Changed

• Replace set-output usage with GITHUB_OUTPUT (#252) @​amonshiz

... (truncated)

Changelog

Sourced from stefanzweifel/git-auto-commit-action's changelog.

v4.15.4 - 2022-11-05

Fixed

• Let Action fail if git binary can't be located (#261) @​stefanzweifel

Dependency Updates

• Bump github/super-linter from 3 to 4 (#258) @​dependabot
• Bump bats from 1.7.0 to 1.8.2 (#259) @​dependabot
• Bump actions/checkout from 2 to 3 (#257) @​dependabot

v4.15.3 - 2022-10-26

Changed

• Use deprecated set-output syntax if GITHUB_OUTPUT environment is not available (#255) @​stefanzweifel

v4.15.2 - 2022-10-22

Changed

• Replace set-output usage with GITHUB_OUTPUT (#252) @​amonshiz

v4.15.1 - 2022-10-10

Fixed

• Run Action on Node16 (#247) @​stefanzweifel

Commits

• 8756aa0 Update node version to node20 (#300)
• 17a44b0 Merge branch 'master' of github.com:stefanzweifel/git-auto-commit-action
• 43818d5 Fix Typo
• 1094465 Use actions/checkout v4 in examples
• 3d1b5e0 Bump actions/checkout from 3 to 4 (#302)
• 47a8ad5 Bump bats from 1.9.0 to 1.10.0 (#293)
• 77a7b3f Bump github/super-linter from 4 to 5 (#289)
• 9cc0a1f Seems like there is an extra space (#288)
• 0b5f8a5 Update Test
• 3a446b7 Merge branch 'master' of github.com:stefanzweifel/git-auto-commit-action
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions