chore(deps): bump the github-actions group across 1 directory with 9 updates by dependabot[bot] · Pull Request #435 · grafana/augurs

dependabot · 2026-02-16T06:09:35Z

Bumps the github-actions group with 9 updates in the / directory:

Package	From	To
actions/checkout	`6.0.1`	`6.0.2`
taiki-e/install-action	`2.66.1`	`2.67.30`
dtolnay/rust-toolchain	`f7ccc83f9ed1e5b9c81d8a67d7ad1a747e22a561`	`efa25f7f19611383d5b0ccf2d1c8914531636bf9`
actions/setup-node	`6.1.0`	`6.2.0`
astral-sh/setup-uv	`7.2.0`	`7.3.0`
actions/setup-python	`6.1.0`	`6.2.0`
PyO3/maturin-action	`1.49.4`	`1.50.0`
actions/attest-build-provenance	`3.1.0`	`3.2.0`
release-plz/action	`0.5.120`	`0.5.126`

Updates actions/checkout from 6.0.1 to 6.0.2

Release notes

Sourced from actions/checkout's releases.

v6.0.2

What's Changed

Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set by @TingluoHuang in actions/checkout#2355

Fix tag handling: preserve annotations and explicit fetch-tags by @ericsciple in actions/checkout#2356

Full Changelog: actions/checkout@v6.0.1...v6.0.2

Changelog

Sourced from actions/checkout's changelog.

Changelog

v6.0.2

Fix tag handling: preserve annotations and explicit fetch-tags by @ericsciple in actions/checkout#2356

v6.0.1

Add worktree support for persist-credentials includeIf by @ericsciple in actions/checkout#2327

v6.0.0

Persist creds to a separate file by @ericsciple in actions/checkout#2286

Update README to include Node.js 24 support details and requirements by @salmanmkc in actions/checkout#2248

v5.0.1

Port v6 cleanup to v5 by @ericsciple in actions/checkout#2301

v5.0.0

Update actions checkout to use node 24 by @salmanmkc in actions/checkout#2226

v4.3.1

Port v6 cleanup to v4 by @ericsciple in actions/checkout#2305

v4.3.0

docs: update README.md by @motss in actions/checkout#1971

Add internal repos for checking out multiple repositories by @mouismail in actions/checkout#1977

Documentation update - add recommended permissions to Readme by @benwells in actions/checkout#2043

Adjust positioning of user email note and permissions heading by @joshmgross in actions/checkout#2044

Update README.md by @nebuk89 in actions/checkout#2194

Update CODEOWNERS for actions by @TingluoHuang in actions/checkout#2224

Update package dependencies by @salmanmkc in actions/checkout#2236

v4.2.2

url-helper.ts now leverages well-known environment variables by @jww3 in actions/checkout#1941

Expand unit test coverage for isGhes by @jww3 in actions/checkout#1946

v4.2.1

Check out other refs/* by commit if provided, fall back to ref by @orhantoy in actions/checkout#1924

v4.2.0

Add Ref and Commit outputs by @lucacome in actions/checkout#1180

Dependency updates by @dependabot- actions/checkout#1777, actions/checkout#1872

v4.1.7

Bump the minor-npm-dependencies group across 1 directory with 4 updates by @dependabot in actions/checkout#1739

Bump actions/checkout from 3 to 4 by @dependabot in actions/checkout#1697

Check out other refs/* by commit by @orhantoy in actions/checkout#1774

Pin actions/checkout's own workflows to a known, good, stable version. by @jww3 in actions/checkout#1776

v4.1.6

Check platform to set archive extension appropriately by @cory-miller in actions/checkout#1732

... (truncated)

Commits

de0fac2 Fix tag handling: preserve annotations and explicit fetch-tags (#2356)
064fe7f Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...
See full diff in compare view

Updates taiki-e/install-action from 2.66.1 to 2.67.30

Release notes

Sourced from taiki-e/install-action's releases.

2.67.30

Update cargo-nextest@latest to 0.9.127.

2.67.29

Update mise@latest to 2026.2.11.

Update cargo-no-dev-deps@latest to 0.2.21.

Update cargo-minimal-versions@latest to 0.1.36.

Update cargo-hack@latest to 0.6.43.

Update cargo-binstall@latest to 1.17.5.

Update osv-scanner@latest to 2.3.3.

Update martin@latest to 1.3.1.

Update parse-dockerfile@latest to 0.1.4.

2.67.28

Update uv@latest to 0.10.2.

Update syft@latest to 1.42.0.

Update mise@latest to 2026.2.9.

Update cyclonedx@latest to 0.30.0.

2.67.27

Update sccache@latest to 0.14.0.

Update typos@latest to 1.43.4.

Update mise@latest to 2026.2.8.

2.67.26

Update tombi@latest to 0.7.28.

Update mise@latest to 2026.2.7.

2.67.25

Update cargo-hack@latest to 0.6.42.

2.67.24

Update cargo-llvm-cov@latest to 0.8.4.

Update typos@latest to 1.43.3.

Update vacuum@latest to 0.23.8.

... (truncated)

Changelog

Sourced from taiki-e/install-action's changelog.

Changelog

All notable changes to this project will be documented in this file.

This project adheres to Semantic Versioning.

[Unreleased]

Update prek@latest to 0.3.3.

Update mise@latest to 2026.2.13.

[2.67.30] - 2026-02-13

Update cargo-nextest@latest to 0.9.127.

[2.67.29] - 2026-02-13

Update mise@latest to 2026.2.11.

Update cargo-no-dev-deps@latest to 0.2.21.

Update cargo-minimal-versions@latest to 0.1.36.

Update cargo-hack@latest to 0.6.43.

Update cargo-binstall@latest to 1.17.5.

Update osv-scanner@latest to 2.3.3.

Update martin@latest to 1.3.1.

Update parse-dockerfile@latest to 0.1.4.

[2.67.28] - 2026-02-11

Update uv@latest to 0.10.2.

Update syft@latest to 1.42.0.

Update mise@latest to 2026.2.9.

Update cyclonedx@latest to 0.30.0.

[2.67.27] - 2026-02-09

... (truncated)

Commits

288875d Release 2.67.30
ff61ba7 Update cargo-nextest@latest to 0.9.127
443c943 docs: Add note about tools installed by this action's side
44ad71d codegen: Update toml requirement from 0.9 to 1 (#1512)
541dbe1 Release 2.67.29
3f8c36b ci: Temporarily disable cygwin test
8c4bfde Update mise@latest to 2026.2.11
5516699 Update cargo-no-dev-deps@latest to 0.2.21
26d534b Update cargo-minimal-versions@latest to 0.1.36
21162aa Update cargo-hack@latest to 0.6.43
Additional commits viewable in compare view

Updates dtolnay/rust-toolchain from f7ccc83f9ed1e5b9c81d8a67d7ad1a747e22a561 to efa25f7f19611383d5b0ccf2d1c8914531636bf9

Commits

efa25f7 Add 1.93.1 patch release
See full diff in compare view

Updates actions/setup-node from 6.1.0 to 6.2.0

Release notes

Sourced from actions/setup-node's releases.

v6.2.0

What's Changed

Documentation

Documentation update related to absence of Lockfile by @mahabaleshwars in actions/setup-node#1454

Correct mirror option typos by @MikeMcC399 in actions/setup-node#1442

Readme update on checkout version v6 by @deining in actions/setup-node#1446

Readme typo fixes @munyari in actions/setup-node#1226

Advanced document update on checkout version v6 by @aparnajyothi-y in actions/setup-node#1468

Dependency updates:

Upgrade @actions/cache to v5.0.1 by @salmanmkc in actions/setup-node#1449

New Contributors

@mahabaleshwars made their first contribution in actions/setup-node#1454

@MikeMcC399 made their first contribution in actions/setup-node#1442

@deining made their first contribution in actions/setup-node#1446

@munyari made their first contribution in actions/setup-node#1226

Full Changelog: actions/setup-node@v6...v6.2.0

Commits

6044e13 Docs: bump actions/checkout from v5 to v6 (#1468)
8e49463 Fix README typo (#1226)
621ac41 README.md: bump to latest released checkout version v6 (#1446)
2951748 Bump @actions/cache to v5.0.1 (#1449)
21ddc7b Correct mirror option typos (#1442)
65d868f Update Documentation for Lockfile (#1454)
See full diff in compare view

Updates astral-sh/setup-uv from 7.2.0 to 7.3.0

Release notes

Sourced from astral-sh/setup-uv's releases.

v7.3.0 🌈 New features and bug fixes for activate-environment

Changes

This release contains a few bug fixes and a new feature for the activate-environment functionality.

🐛 Bug fixes

fix: warn instead of error when no python to cache @eifinger (#762)

fix: use --clear to create venv @eifinger (#761)

🚀 Enhancements

feat: add venv-path input for activate-environment @eifinger (#746)

🧰 Maintenance

chore: update known checksums for 0.10.0 @github-actions[bot] (#759)

refactor: tilde-expansion tests as unittests and no self-hosted tests @eifinger (#760)

chore: update known checksums for 0.9.30 @github-actions[bot] (#756)

chore: update known checksums for 0.9.29 @github-actions[bot] (#748)

📚 Documentation

Fix punctuation @pm-dev563 (#747)

⬆️ Dependency updates

Bump typesafegithub/github-actions-typing from 2.2.1 to 2.2.2 @dependabot[bot] (#753)

Bump peter-evans/create-pull-request from 8.0.0 to 8.1.0 @dependabot[bot] (#751)

Bump actions/checkout from 6.0.1 to 6.0.2 @dependabot[bot] (#740)

Bump release-drafter/release-drafter from 6.1.0 to 6.2.0 @dependabot[bot] (#743)

Bump eifinger/actionlint-action from 1.9.3 to 1.10.0 @dependabot[bot] (#731)

Bump actions/setup-node from 6.1.0 to 6.2.0 @dependabot[bot] (#738)

Commits

eac588a Bump typesafegithub/github-actions-typing from 2.2.1 to 2.2.2 (#753)
a97c6cb Bump peter-evans/create-pull-request from 8.0.0 to 8.1.0 (#751)
02182fa fix: warn instead of error when no python to cache (#762)
a3b3eae chore: update known checksums for 0.10.0 (#759)
78cebec fix: use --clear to create venv (#761)
b6b8e2c refactor: tilde-expansion tests as unittests and no self-hosted tests (#760)
e31bec8 chore: update known checksums for 0.9.30 (#756)
db2b65e Bump actions/checkout from 6.0.1 to 6.0.2 (#740)
3511ff7 feat: add venv-path input for activate-environment (#746)
99b0f04 Fix punctuation (#747)
Additional commits viewable in compare view

Updates actions/setup-python from 6.1.0 to 6.2.0

Release notes

Sourced from actions/setup-python's releases.

v6.2.0

What's Changed

Dependency Upgrades

Upgrade dependencies to Node 24 compatible versions by @salmanmkc in actions/setup-python#1259

Upgrade urllib3 from 2.5.0 to 2.6.3 in /__tests__/data by @dependabot in actions/setup-python#1253 and actions/setup-python#1264

Full Changelog: actions/setup-python@v6...v6.2.0

Commits

a309ff8 Bump urllib3 from 2.6.0 to 2.6.3 in /tests/data (#1264)
bfe8cc5 Upgrade @actions dependencies to Node 24 compatible versions (#1259)
4f41a90 Bump urllib3 from 2.5.0 to 2.6.0 in /tests/data (#1253)
See full diff in compare view

Updates PyO3/maturin-action from 1.49.4 to 1.50.0

Release notes

Sourced from PyO3/maturin-action's releases.

v1.50.0

What's Changed

ci: address lint findings, add zizmor workflow by @woodruffw in PyO3/maturin-action#373

ci: pin dbhi/qus/action to a specific commit by @woodruffw in PyO3/maturin-action#374

Add write permissions for contents by @davidhewitt in PyO3/maturin-action#376

place tool cache versions on path in order from oldest to newest by @davidhewitt in PyO3/maturin-action#381

Add alias for riscv on manylinux by @boosterl in PyO3/maturin-action#399

Document how to harden release pipelines by @konstin in PyO3/maturin-action#400

Update dependencies to latest versions with ESM and Node 24 by @messense in PyO3/maturin-action#409

New Contributors

@woodruffw made their first contribution in PyO3/maturin-action#373

@davidhewitt made their first contribution in PyO3/maturin-action#376

@boosterl made their first contribution in PyO3/maturin-action#399

@konstin made their first contribution in PyO3/maturin-action#400

Full Changelog: PyO3/maturin-action@v1.49.4...v1.50.0

Commits

b1bd829 Update dependencies to latest versions with ESM and Node 24 (#409)
e8dfe2d Bump peter-evans/create-pull-request from 8.0.0 to 8.1.0 (#407)
a7a0737 Bump actions/setup-python from 6.1.0 to 6.2.0 (#406)
0177072 Bump actions/setup-node from 6.1.0 to 6.2.0 (#405)
0584c36 Bump zizmorcore/zizmor-action from 0.3.0 to 0.4.1 (#404)
06e22d5 Bump actions/checkout from 6.0.1 to 6.0.2 (#403)
f8fa3c6 Allow build loongarch64 and riscv64 for musllinux (#408)
1511a23 Document how to harden release pipelines (#400)
47fbb7a Add alias for riscv on manylinux (#399)
9fc14be Update versions-manifest.json (#398)
Additional commits viewable in compare view

Updates actions/attest-build-provenance from 3.1.0 to 3.2.0

Release notes

Sourced from actions/attest-build-provenance's releases.

v3.2.0

What's Changed

Bump @actions/core from 1.11.1 to 2.0.1 by @dependabot[bot] in actions/attest-build-provenance#776

Add more documentation on Artifact Metadata Storage Records by @malancas in actions/attest-build-provenance#797

Update actions/attest to latest version v3.2.0 by @malancas in actions/attest-build-provenance#812

Full Changelog: actions/attest-build-provenance@v3.1.0...v3.2.0

Commits

96278af Update actions/attest to latest version v3.2.0 (#812)
6865550 Add more documentation on Artifact Metadata Storage Records (#797)
98f3aa9 Bump @actions/core from 1.11.1 to 2.0.1 (#776)
63e6444 Bump github/codeql-action in the actions-minor group (#782)
3bc61af Bump the npm-development group with 2 updates (#795)
405d0ea Bump the npm-development group with 3 updates (#783)
See full diff in compare view

Updates release-plz/action from 0.5.120 to 0.5.126

Release notes

Sourced from release-plz/action's releases.

v0.5.126

What's Changed

Update to 0.3.155 by @marcoieni in release-plz/action#260

Full Changelog: release-plz/action@v0.5...v0.5.126

v0.5.125

What's Changed

Update documentation link in README.md by @marcoieni in release-plz/action#257

Update to 0.3.154 by @marcoieni in release-plz/action#259

Full Changelog: release-plz/action@v0.5...v0.5.125

v0.5.124

What's Changed

install cargo-semver-checks with install-action by @marcoieni in release-plz/action#251

Update to 0.3.153 by @marcoieni in release-plz/action#252

Full Changelog: release-plz/action@v0.5...v0.5.124

v0.5.123

What's Changed

pin binstall version by @marcoieni in release-plz/action#249

Full Changelog: release-plz/action@v0.5...v0.5.123

v0.5.122

What's Changed

Bump cargo-semver-checks to v0.46 by @marcoieni in release-plz/action#238

use cargo-binstall to install binaries by @marcoieni in release-plz/action#239

chore: add renovatebot with helpers:pinGitHubActionDigests by @Boshen in release-plz/action#223

chore(deps): pin actions/checkout action to 8e8c483 by @renovate[bot] in release-plz/action#240

chore(deps): update rust crate semver to v1.0.27 by @renovate[bot] in release-plz/action#241

add more rules to renovate by @marcoieni in release-plz/action#242

Update to 0.3.152 by @marcoieni in release-plz/action#244

New Contributors

@Boshen made their first contribution in release-plz/action#223

@renovate[bot] made their first contribution in release-plz/action#240

Full Changelog: release-plz/action@v0.5...v0.5.122

v0.5.121

What's Changed

Update to 0.3.151 by @marcoieni in release-plz/action#235

... (truncated)

Commits

52440b5 Update to 0.3.155 (#260)
20b2393 Update to 0.3.154 (#259)
595eff6 Update documentation link in README.md (#257)
e592230 Update to 0.3.153 (#252)
20a6fc9 install cargo-semver-checks with install-action (#251)
a8c9cdc pin binstall version (#249)
adcc790 Update to 0.3.152 (#244)
40801ef add more rules to renovate (#242)
f662c89 chore(deps): update rust crate semver to v1.0.27 (#241)
eff0703 chore(deps): pin actions/checkout action to 8e8c483 (#240)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…updates Bumps the github-actions group with 9 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `6.0.1` | `6.0.2` | | [taiki-e/install-action](https://github.com/taiki-e/install-action) | `2.66.1` | `2.67.30` | | [dtolnay/rust-toolchain](https://github.com/dtolnay/rust-toolchain) | `f7ccc83f9ed1e5b9c81d8a67d7ad1a747e22a561` | `efa25f7f19611383d5b0ccf2d1c8914531636bf9` | | [actions/setup-node](https://github.com/actions/setup-node) | `6.1.0` | `6.2.0` | | [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv) | `7.2.0` | `7.3.0` | | [actions/setup-python](https://github.com/actions/setup-python) | `6.1.0` | `6.2.0` | | [PyO3/maturin-action](https://github.com/pyo3/maturin-action) | `1.49.4` | `1.50.0` | | [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance) | `3.1.0` | `3.2.0` | | [release-plz/action](https://github.com/release-plz/action) | `0.5.120` | `0.5.126` | Updates `actions/checkout` from 6.0.1 to 6.0.2 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@8e8c483...de0fac2) Updates `taiki-e/install-action` from 2.66.1 to 2.67.30 - [Release notes](https://github.com/taiki-e/install-action/releases) - [Changelog](https://github.com/taiki-e/install-action/blob/main/CHANGELOG.md) - [Commits](taiki-e/install-action@3522286...288875d) Updates `dtolnay/rust-toolchain` from f7ccc83f9ed1e5b9c81d8a67d7ad1a747e22a561 to efa25f7f19611383d5b0ccf2d1c8914531636bf9 - [Release notes](https://github.com/dtolnay/rust-toolchain/releases) - [Commits](dtolnay/rust-toolchain@f7ccc83...efa25f7) Updates `actions/setup-node` from 6.1.0 to 6.2.0 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](actions/setup-node@395ad32...6044e13) Updates `astral-sh/setup-uv` from 7.2.0 to 7.3.0 - [Release notes](https://github.com/astral-sh/setup-uv/releases) - [Commits](astral-sh/setup-uv@61cb8a9...eac588a) Updates `actions/setup-python` from 6.1.0 to 6.2.0 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](actions/setup-python@83679a8...a309ff8) Updates `PyO3/maturin-action` from 1.49.4 to 1.50.0 - [Release notes](https://github.com/pyo3/maturin-action/releases) - [Commits](PyO3/maturin-action@86b9d13...b1bd829) Updates `actions/attest-build-provenance` from 3.1.0 to 3.2.0 - [Release notes](https://github.com/actions/attest-build-provenance/releases) - [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md) - [Commits](actions/attest-build-provenance@00014ed...96278af) Updates `release-plz/action` from 0.5.120 to 0.5.126 - [Release notes](https://github.com/release-plz/action/releases) - [Commits](release-plz/action@487eb7b...52440b5) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: taiki-e/install-action dependency-version: 2.67.30 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: dtolnay/rust-toolchain dependency-version: efa25f7f19611383d5b0ccf2d1c8914531636bf9 dependency-type: direct:production dependency-group: github-actions - dependency-name: actions/setup-node dependency-version: 6.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: astral-sh/setup-uv dependency-version: 7.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: actions/setup-python dependency-version: 6.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: PyO3/maturin-action dependency-version: 1.50.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: actions/attest-build-provenance dependency-version: 3.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: release-plz/action dependency-version: 0.5.126 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Feb 16, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the github-actions group across 1 directory with 9 updates#435

chore(deps): bump the github-actions group across 1 directory with 9 updates#435
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/github-actions-9c0a09e572

dependabot bot commented on behalf of github Feb 16, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Comments

Conversation

dependabot bot commented on behalf of github Feb 16, 2026

v6.0.2

What's Changed

Changelog

v6.0.2

v6.0.1

v6.0.0

v5.0.1

v5.0.0

v4.3.1

v4.3.0

v4.2.2

v4.2.1

v4.2.0

v4.1.7

v4.1.6

2.67.30

2.67.29

2.67.28

2.67.27

2.67.26

2.67.25

2.67.24

Changelog

[Unreleased]

[2.67.30] - 2026-02-13

[2.67.29] - 2026-02-13

[2.67.28] - 2026-02-11

[2.67.27] - 2026-02-09

v6.2.0

What's Changed

Documentation

Dependency updates:

New Contributors

v7.3.0 🌈 New features and bug fixes for activate-environment

Changes

🐛 Bug fixes

🚀 Enhancements

🧰 Maintenance

📚 Documentation

⬆️ Dependency updates

v6.2.0

What's Changed

Dependency Upgrades

v1.50.0

What's Changed

New Contributors

v3.2.0

What's Changed

v0.5.126

What's Changed

v0.5.125

What's Changed

v0.5.124

What's Changed

v0.5.123

What's Changed

v0.5.122

What's Changed

New Contributors

v0.5.121

What's Changed

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Comments