Skip to content

chore(deps): bump the dev-dependencies group across 1 directory with 2 updates #5907

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

chore(deps): bump the dev-dependencies group across 1 directory with 2 updates #5907

wants to merge 1 commit into from
+2 −2

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 16, 2025
edited
Loading

Bumps the dev-dependencies group with 2 updates in the / directory: renovatebot/github-action and GrantBirki/json-yaml-validate.

Updates renovatebot/github-action from 43.0.16 to 43.0.17

Release notes

Sourced from renovatebot/github-action's releases.

v43.0.17

43.0.17 (2025-10-13)

Documentation

  • update references to ghcr.io/renovatebot/renovate to v41.146.0 (c09eb68)
  • update references to renovatebot/github-action to v43.0.16 (5c2fa05)

Miscellaneous Chores

  • deps: update dependency @​eslint/js to v9.37.0 (41fa2d1)
  • deps: update dependency @​types/node to v20.19.19 (4c2fc9f)
  • deps: update dependency eslint to v9.37.0 (47f25d4)
  • deps: update pnpm to v10.18.0 (0d543e1)
  • deps: update pnpm/action-setup action to v4.2.0 (eed03e6)

Build System

  • deps: lock file maintenance (ad483fe)

Continuous Integration

  • deps: update renovate docker tag to v41.140.2 (431333b)
  • deps: update renovate docker tag to v41.141.0 (fac14a3)
  • deps: update renovate docker tag to v41.143.0 (e60cb8a)
  • deps: update renovate docker tag to v41.143.1 (e52eaea)
  • deps: update renovate docker tag to v41.143.2 (a501d79)
  • deps: update renovate docker tag to v41.144.0 (05b47e0)
  • deps: update renovate docker tag to v41.144.1 (92c7780)
  • deps: update renovate docker tag to v41.144.3 (ffd99f1)
  • deps: update renovate docker tag to v41.144.4 (7f6135c)
  • deps: update renovate docker tag to v41.145.1 (05877d4)
  • deps: update renovate docker tag to v41.145.3 (493080f)
  • deps: update renovate docker tag to v41.146.0 (61cdd8b)
Commits
  • 70ea19f chore(release): 43.0.17 [skip ci]
  • cf88602 skip: merge (ad483fece9fb8e2c768181408532751024bfb8b6) [skip release]
  • 1fad2db skip: merge (c09eb685c107292b9a6a25c7eba177ca23d26e28) [skip release]
  • ad483fe build(deps): lock file maintenance
  • 5b36d9f skip: merge (5c2fa0522acb0c8eb961012f4f209c6dbad9e821) [skip release]
  • c09eb68 docs: update references to ghcr.io/renovatebot/renovate to v41.146.0
  • 5c2fa05 docs: update references to renovatebot/github-action to v43.0.16
  • 44efc83 skip: merge (61cdd8b41aeac4d04060479a4f3af0a7f1892a2d) [skip release]
  • 61cdd8b ci(deps): update renovate docker tag to v41.146.0
  • 02607ef skip: merge (493080fa6b4a42abf1d9046e951d208630e05f3d) [skip release]
  • Additional commits viewable in compare view

Updates GrantBirki/json-yaml-validate from 3.3.1 to 4.0.0

Release notes

Sourced from GrantBirki/json-yaml-validate's releases.

v4.0.0

What's Changed

🚨 Breaking change notice: The vast majority of users should be able to seamlessly upgrade to v4 without needing to make any changes at all. This is mainly just a major version release due to the fact that this Action is moving to a default runtime of node24 which requires up-to-date Actions runner versions.

Full Changelog: GrantBirki/json-yaml-validate@v3.3.2...v4.0.0

v3.3.2

What's Changed

New Contributors

Full Changelog: GrantBirki/json-yaml-validate@v3.3.1...v3.3.2

Commits
  • 9bbaa84 Merge pull request #95 from GrantBirki/repo-updates
  • 95b5e1c upgrade actions/setup-node from v4 to v6 in workflow files and bump upload ar...
  • 6023349 upgrade actions/checkout from v4 to v5 across workflow files and README
  • 3de07f3 add a dependabot config
  • 38f2011 Merge pull request #94 from GrantBirki/node24
  • d6d7a6e upgrade to node24
  • e1bd53e Merge pull request #93 from GrantBirki/npm-updates
  • bd408c3 use picomatch with withGlobFunction()
  • aff2b85 update all internal node deps and bundle
  • 35c97c6 Merge pull request #92 from GrantBirki/dependabot/npm_and_yarn/npm_and_yarn-6...
  • Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
GrantBirki/json-yaml-validate [>= 3.3.a, < 3.4]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Note: Dependabot was ignoring updates to this dependency, but since you've updated it yourself we've started tracking it for you again. 🤖

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Oct 16, 2025
@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign ivankatliarchuk for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. labels Oct 16, 2025
@k8s-ci-robot
Copy link
Contributor

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@k8s-ci-robot k8s-ci-robot added the size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. label Oct 16, 2025
@coveralls
Copy link

coveralls commented Oct 16, 2025
edited
Loading

Pull Request Test Coverage Report for Build 18704063713

Details

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • No unchanged relevant lines lost coverage.
  • Overall coverage remained the same at 78.666%
Totals Coverage Status
Change from base Build 18674696388: 0.0%
Covered Lines: 15863
Relevant Lines: 20165
💛 - Coveralls

@dependabot dependabot bot force-pushed the dependabot/github_actions/dev-dependencies-d626b368e0 branch 2 times, most recently from f636dc8 to b5511d4 Compare October 21, 2025 03:05
@dependabot
chore(deps): bump the dev-dependencies group across 1 directory with …
e17da85 
…2 updates

Bumps the dev-dependencies group with 2 updates in the / directory: [renovatebot/github-action](https://github.com/renovatebot/github-action) and [GrantBirki/json-yaml-validate](https://github.com/grantbirki/json-yaml-validate).


Updates `renovatebot/github-action` from 43.0.16 to 43.0.17
- [Release notes](https://github.com/renovatebot/github-action/releases)
- [Changelog](https://github.com/renovatebot/github-action/blob/main/CHANGELOG.md)
- [Commits](renovatebot/github-action@v43.0.16...v43.0.17)

Updates `GrantBirki/json-yaml-validate` from 3.3.1 to 4.0.0
- [Release notes](https://github.com/grantbirki/json-yaml-validate/releases)
- [Commits](GrantBirki/json-yaml-validate@v3.3.1...v4.0.0)

---
updated-dependencies:
- dependency-name: renovatebot/github-action
  dependency-version: 43.0.17
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: GrantBirki/json-yaml-validate
  dependency-version: 4.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dev-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/github_actions/dev-dependencies-d626b368e0 branch from b5511d4 to e17da85 Compare October 22, 2025 03:06
@szuecs
Copy link
Contributor

szuecs commented Oct 24, 2025

/ok-to-test

@k8s-ci-robot k8s-ci-robot added ok-to-test Indicates a non-member PR verified by an org member that is safe to test. and removed needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. labels Oct 24, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mloiseleur mloiseleur Awaiting requested review from mloiseleur

@szuecs szuecs Awaiting requested review from szuecs

Assignees

No one assigned

Labels

cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code ok-to-test Indicates a non-member PR verified by an org member that is safe to test. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@k8s-ci-robot @coveralls @szuecs