Skip to content

Bump the github-actions group across 1 directory with 3 updates#325

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/github_actions/github-actions-a72039dd03
Open

Bump the github-actions group across 1 directory with 3 updates#325
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/github_actions/github-actions-a72039dd03

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 15, 2026

Copy link
Copy Markdown
Contributor

Bumps the github-actions group with 3 updates in the / directory: actions/setup-node, ruby/setup-ruby and actions/setup-java.

Updates actions/setup-node from 6.4.0 to 7.0.0

Release notes

Sourced from actions/setup-node's releases.

v7.0.0

What's Changed

Enhancements:

Bug fixes:

Documentation updates:

Dependency update:

New Contributors

Full Changelog: actions/setup-node@v6...v7.0.0

v6.5.0

What's Changed

Full Changelog: actions/setup-node@v6.4.0...v6.5.0

Commits
  • 8207627 Migrate to ESM and upgrade dependencies (#1574)
  • 04be95c Add cache-primary-key and cache-matched-key as outputs (#1577)
  • 7c2c68d docs: Update caching recommendations to mitigate cache poisoning risks (#1567)
  • 6a61c03 Merge pull request #1569 from jasongin/update-actions-cache-5.1.0
  • 30eb73b Resolve high-severity audit issues
  • 4e1a87a Update dist
  • 360237f Strict equality
  • 4f8aac5 Bump @​actions/cache to 5.1.0, log cache write denied
  • f4a67bb Only use mirrorToken in getManifest if it's provided (#1548)
  • 0355742 Remove dummy NODE_AUTH_TOKEN export (#1558)
  • Additional commits viewable in compare view

Updates ruby/setup-ruby from 1.315.0 to 1.318.0

Release notes

Sourced from ruby/setup-ruby's releases.

v1.318.0

What's Changed

Full Changelog: ruby/setup-ruby@v1.317.0...v1.318.0

v1.317.0

What's Changed

Full Changelog: ruby/setup-ruby@v1.316.0...v1.317.0

v1.316.0

What's Changed

Full Changelog: ruby/setup-ruby@v1.315.0...v1.316.0

Commits

Updates actions/setup-java from 5.4.0 to 5.5.0

Release notes

Sourced from actions/setup-java's releases.

v5.5.0

What's Changed

New Contributors

Full Changelog: actions/setup-java@v5...v5.5.0

Commits
  • 0f481fc feat: Add distribution detection support to .sdkmanrc file (#975)
  • c4922bf docs: document problem matcher (and how to disable it), Maven Wrapper caching...
  • 6657b99 feat: Add set-default option (#1017)
  • a50fdcc dist: Support Tencent Kona JDK (#672)
  • 77ee41d fix: Maven Toolchains grows unexpectedly (#534)
  • 0765b15 chore(deps-dev): bump eslint-plugin-jest from 29.0.1 to 29.15.4 (#1074)
  • c712b2f Bump prettier from 3.6.2 to 3.9.1 (#1066)
  • 733efae feat: Disable interactiveMode in generated Maven settings.xml (#1052)
  • 6c4d4a5 feat: suppress Maven transfer progress via MAVEN_ARGS by default (add show-do...
  • 324b333 Fix arm64 e2e workflow tests mislabeled as x64 (#1073)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the github-actions group with 3 updates in the / directory: [actions/setup-node](https://github.com/actions/setup-node), [ruby/setup-ruby](https://github.com/ruby/setup-ruby) and [actions/setup-java](https://github.com/actions/setup-java).


Updates `actions/setup-node` from 6.4.0 to 7.0.0
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](actions/setup-node@48b55a0...8207627)

Updates `ruby/setup-ruby` from 1.315.0 to 1.318.0
- [Release notes](https://github.com/ruby/setup-ruby/releases)
- [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb)
- [Commits](ruby/setup-ruby@0dafeac...8e41b36)

Updates `actions/setup-java` from 5.4.0 to 5.5.0
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](actions/setup-java@1bcf9fb...0f481fc)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-version: 7.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: ruby/setup-ruby
  dependency-version: 1.318.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
- dependency-name: actions/setup-java
  dependency-version: 5.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github

dependabot Bot commented on behalf of github Jul 15, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: github-actions. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jul 15, 2026
@dependabot dependabot Bot requested a review from eviltester as a code owner July 15, 2026 03:54
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jul 15, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants