[GitHub] [libcloud] dependabot[bot] opened a new pull request, #1708: Bump actions/setup-dotnet from 1 to 2

GitBox Sat, 04 Jun 2022 15:06:52 -0700


dependabot[bot] opened a new pull request, #1708:
URL: https://github.com/apache/libcloud/pull/1708


   Bumps [actions/setup-dotnet](https://github.com/actions/setup-dotnet) from 1 
to 2.
   <details>
   <summary>Release notes</summary>
   <p><em>Sourced from <a 
href="https://github.com/actions/setup-dotnet/releases";>actions/setup-dotnet's 
releases</a>.</em></p>
   <blockquote>
   <h2>v2.0.0</h2>
   <p>In scope of this release we changed version of the runtime Node.js for 
the setup-dotnet action and updated package-lock.json file to v2.</p>
   <p><strong>Breaking Changes</strong>
   With the update to Node 16 in <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/271";>#271</a>
 all scripts will now be run with Node 16 rather than Node 12.</p>
   <h2>Installer scripts updates</h2>
   <p>Update dotnet-install scripts to the latest versions: <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/270";>#270</a></p>
   <h2>Support for installation of multiple versions, warnings for deprecated 
versions</h2>
   <p>This release includes the following PRs:</p>
   <ul>
   <li>Adding support to install multiple .NET versions in single action 
invocation: <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/240";>#240</a>
   example:</li>
   </ul>
   <pre lang="yaml"><code>- uses: actions/setup-dotnet@v1
     with:
       dotnet-version: | 
         3.1.x
         5.0.x
   </code></pre>
   <p>The latest installed .NET version is default, according <a 
href="https://docs.microsoft.com/en-us/dotnet/core/versions/selection#the-sdk-uses-the-latest-installed-version";>.NET
 documentation</a>.</p>
   <ul>
   <li>Adding the build warnings if the deprecated .NET versions are installed 
by action: <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/245";>#245</a></li>
   </ul>
   <h2>Package Updates, Improvement for global.json handling</h2>
   <ul>
   <li>Bump path-parse from 1.0.6 to 1.0.7 <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/222";>#222</a></li>
   <li>Update installer scripts <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/226";>#226</a></li>
   <li>Support <code>rollForward</code> option for <code>global.json</code> <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/224";>#224</a></li>
   </ul>
   <h2>Update packages</h2>
   <ul>
   <li>Bump ws from 7.3.1 to 7.5.0 <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/212";>#212</a></li>
   <li>Bump hosted-git-info from 2.8.8 to 2.8.9 <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/198";>#198</a></li>
   <li>Bump lodash from 4.17.20 to 4.17.21 <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/197";>#197</a></li>
   <li>Bump node-notifier from 8.0.0 to 8.0.1 <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/158";>#158</a></li>
   <li>Update installers scripts <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/204";>#204</a></li>
   </ul>
   <h2>Support of preview versions, input validation improvements and other bug 
fixes</h2>
   <p>This release includes the following PRs:</p>
   <ul>
   <li>Add include-prerelease input to be able to match latest prerelease 
versions <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/pull/110";>actions/setup-dotnet#110</a></li>
   <li>Support various nuget.config name formats <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/pull/188";>actions/setup-dotnet#188</a></li>
   <li>Add workaround to fix BOM-related error during parsing global.json  <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/pull/192";>actions/setup-dotnet#192</a></li>
   <li>Improve key names validation from user' nuget config  <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/pull/187";>actions/setup-dotnet#187</a></li>
   <li>Fix for 5.x notation  <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/pull/175";>actions/setup-dotnet#175</a></li>
   </ul>
   <h2>Package Updates</h2>
   <p>Update <code>@actions/core</code> Version and move towards uses 
environment file</p>
   <h2>Side-by-Side Installation</h2>
   <p>Bug fixes for DOTNET_ROOT and generic dotnet versions</p>
   <!-- raw HTML omitted -->
   </blockquote>
   <p>... (truncated)</p>
   </details>
   <details>
   <summary>Commits</summary>
   <ul>
   <li><a 
href="https://github.com/actions/setup-dotnet/commit/c0d4ad69d8bd405d234f1c9166d383b7a4f69ed8";><code>c0d4ad6</code></a>
 Don't need C# analysis for CodeQL</li>
   <li><a 
href="https://github.com/actions/setup-dotnet/commit/afe2daba1f353ea34154d94de6d77ba16e6c9d8c";><code>afe2dab</code></a>
 Create codeql-analysis.yml</li>
   <li><a 
href="https://github.com/actions/setup-dotnet/commit/5cc895510be2329ef2ae1ca36597b17079bb7590";><code>5cc8955</code></a>
 Update <code>@zeit/ncc</code> to <code>@vercel/ncc</code> (<a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/290";>#290</a>)</li>
   <li><a 
href="https://github.com/actions/setup-dotnet/commit/158737d5b11a3f1a3147103b6b07753457e961af";><code>158737d</code></a>
 Merge pull request <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/289";>#289</a>
 from vsafonkin/v-vsafonkin/update-wget-package</li>
   <li><a 
href="https://github.com/actions/setup-dotnet/commit/fcf565ec50289eff1296e0287042e594ed2d5334";><code>fcf565e</code></a>
 Update vulnerable packages</li>
   <li><a 
href="https://github.com/actions/setup-dotnet/commit/f078482971ee996a7da79a0b59e838f5049eb263";><code>f078482</code></a>
 add global-json-file input (<a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/276";>#276</a>)</li>
   <li><a 
href="https://github.com/actions/setup-dotnet/commit/0fb87b12d27b5857749f4238abc80e6588c7b896";><code>0fb87b1</code></a>
 Merge pull request <a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/285";>#285</a>
 from vsafonkin/v-vsafonkin/add-code-of-conduct</li>
   <li><a 
href="https://github.com/actions/setup-dotnet/commit/4fe7a196b5c8ba09d5630683bb848759e93f0294";><code>4fe7a19</code></a>
 Add code of conduct</li>
   <li><a 
href="https://github.com/actions/setup-dotnet/commit/9283a8cf7a0b3ea259fff5036aeff4c674f29f88";><code>9283a8c</code></a>
 switch side by side testing example to single setup step (<a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/283";>#283</a>)</li>
   <li><a 
href="https://github.com/actions/setup-dotnet/commit/53d632b5c07d57a5b86f3214975e5cbdcd883660";><code>53d632b</code></a>
 Update docs to v2 (<a 
href="https://github-redirect.dependabot.com/actions/setup-dotnet/issues/278";>#278</a>)</li>
   <li>Additional commits viewable in <a 
href="https://github.com/actions/setup-dotnet/compare/v1...v2";>compare 
view</a></li>
   </ul>
   </details>
   <br />
   
   
   [![Dependabot compatibility 
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-dotnet&package-manager=github_actions&previous-version=1&new-version=2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
   
   Dependabot will resolve any conflicts with this PR as long as you don't 
alter it yourself. You can also trigger a rebase manually by commenting 
`@dependabot rebase`.
   
   [//]: # (dependabot-automerge-start)
   [//]: # (dependabot-automerge-end)
   
   ---
   
   <details>
   <summary>Dependabot commands and options</summary>
   <br />
   
   You can trigger Dependabot actions by commenting on this PR:
   - `@dependabot rebase` will rebase this PR
   - `@dependabot recreate` will recreate this PR, overwriting any edits that 
have been made to it
   - `@dependabot merge` will merge this PR after your CI passes on it
   - `@dependabot squash and merge` will squash and merge this PR after your CI 
passes on it
   - `@dependabot cancel merge` will cancel a previously requested merge and 
block automerging
   - `@dependabot reopen` will reopen this PR if it is closed
   - `@dependabot close` will close this PR and stop Dependabot recreating it. 
You can achieve the same result by closing it manually
   - `@dependabot ignore this major version` will close this PR and stop 
Dependabot creating any more for this major version (unless you reopen the PR 
or upgrade to it yourself)
   - `@dependabot ignore this minor version` will close this PR and stop 
Dependabot creating any more for this minor version (unless you reopen the PR 
or upgrade to it yourself)
   - `@dependabot ignore this dependency` will close this PR and stop 
Dependabot creating any more for this dependency (unless you reopen the PR or 
upgrade to it yourself)
   
   
   </details>


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscr...@libcloud.apache.org

For queries about this service, please contact Infrastructure at:
us...@infra.apache.org

[GitHub] [libcloud] dependabot[bot] opened a new pull request, #1708: Bump actions/setup-dotnet from 1 to 2

Reply via email to