build(deps): bump the actions group across 1 directory with 7 updates

[dependabot]

Bumps the actions group with 7 updates in the / directory:

Package	From	To
DeterminateSystems/nix-installer-action	16	19
actions/checkout	4.2.2	5.0.0
actions/upload-pages-artifact	3.0.1	4.0.0
actions/stale	9.1.0	10.0.0
actions/setup-go	5.4.0	6.0.0
docker/login-action	3.4.0	3.5.0
softprops/action-gh-release	2.2.1	2.3.2

Updates DeterminateSystems/nix-installer-action from 16 to 19

Release notes

Sourced from DeterminateSystems/nix-installer-action's releases.

v19

What's Changed

• Update detsys-ts: Await the request promise so we can cover it with the timout handler (#105) by @​detsys-pr-bot in DeterminateSystems/nix-installer-action#191

Full Changelog: DeterminateSystems/nix-installer-action@v18...v19

v18

What's Changed

• Correctly suppress empty summaries by @​gustavderdrache in DeterminateSystems/nix-installer-action#171
• Test penance by @​gustavderdrache in DeterminateSystems/nix-installer-action#172
• Add hash mismatches to summary by @​gustavderdrache in DeterminateSystems/nix-installer-action#173
• Fix an obscure error case where if the only log fails, the rendering is wack by @​grahamc in DeterminateSystems/nix-installer-action#177
• Ditch the docker shim in favor of a double fork by @​grahamc in DeterminateSystems/nix-installer-action#180
• Add a note about pinning by @​grahamc in DeterminateSystems/nix-installer-action#182

Full Changelog: DeterminateSystems/nix-installer-action@v17...v18

v17

What's Changed

• Annotate hash mismatches when Determinate features are enabled by @​gustavderdrache in DeterminateSystems/nix-installer-action#158
• Summarize the build timeline by @​grahamc in DeterminateSystems/nix-installer-action#165
• Don't blow the limits of summaries, by not printing logs if it blows the limit by @​grahamc in DeterminateSystems/nix-installer-action#168
• Show diagnostics for FlakeHub login issues by @​gustavderdrache in DeterminateSystems/nix-installer-action#169
• chore: detect existing nix installations by @​dpc in DeterminateSystems/nix-installer-action#139
• Check whether the current user has access to KVM before attempting to add udev rule by @​JTKBowers in DeterminateSystems/nix-installer-action#141

New Contributors

• @​gustavderdrache made their first contribution in DeterminateSystems/nix-installer-action#158
• @​dpc made their first contribution in DeterminateSystems/nix-installer-action#139
• @​JTKBowers made their first contribution in DeterminateSystems/nix-installer-action#141

Full Changelog: DeterminateSystems/nix-installer-action@v16...v17

Commits

• 90bb610 Update detsys-ts for: `Await the request promise so we can cover it with th...
• c723f3a Update detsys-ts for: Skip complicated rewrites, record groups. ([#104](https://github.com/determinatesystems/nix-installer-action/issues/104)) (`...
• 41e0dcf Merge pull request #188 from detsys-pr-bot/detsys-ts-update-5084fa8e3263a0bed...
• e455bc9 Update detsys-ts for: Remove FHC action since it's composite ([#103](https://github.com/determinatesystems/nix-installer-action/issues/103)) (`508...
• b336b21 Update detsys-ts for: `Merge pull request #101 from DeterminateSystems/gust...
• 999d616 Merge pull request #184 from detsys-pr-bot/detsys-ts-update-4bf247b1cb6b057ab...
• 2a6922c Update detsys-ts for: `Merge pull request #97 from DeterminateSystems/depen...
• 4a56213 Merge pull request #182 from DeterminateSystems/graham/fh-813-create-a-determ...
• b89da14 Remove unnecessary future tense
• a0000cd Remove redundant word
• Additional commits viewable in compare view

Updates actions/checkout from 4.2.2 to 5.0.0

Release notes

Sourced from actions/checkout's releases.

v5.0.0

What's Changed

• Update actions checkout to use node 24 by @​salmanmkc in actions/checkout#2226
• Prepare v5.0.0 release by @​salmanmkc in actions/checkout#2238

⚠️ Minimum Compatible Runner Version

v2.327.1
Release Notes

Make sure your runner is updated to this version or newer to use this release.

Full Changelog: actions/checkout@v4...v5.0.0

v4.3.0

What's Changed

• docs: update README.md by @​motss in actions/checkout#1971
• Add internal repos for checking out multiple repositories by @​mouismail in actions/checkout#1977
• Documentation update - add recommended permissions to Readme by @​benwells in actions/checkout#2043
• Adjust positioning of user email note and permissions heading by @​joshmgross in actions/checkout#2044
• Update README.md by @​nebuk89 in actions/checkout#2194
• Update CODEOWNERS for actions by @​TingluoHuang in actions/checkout#2224
• Update package dependencies by @​salmanmkc in actions/checkout#2236
• Prepare release v4.3.0 by @​salmanmkc in actions/checkout#2237

New Contributors

• @​motss made their first contribution in actions/checkout#1971
• @​mouismail made their first contribution in actions/checkout#1977
• @​benwells made their first contribution in actions/checkout#2043
• @​nebuk89 made their first contribution in actions/checkout#2194
• @​salmanmkc made their first contribution in actions/checkout#2236

Full Changelog: actions/checkout@v4...v4.3.0

Changelog

Sourced from actions/checkout's changelog.

Changelog

V5.0.0

• Update actions checkout to use node 24 by @​salmanmkc in actions/checkout#2226

V4.3.0

• docs: update README.md by @​motss in actions/checkout#1971
• Add internal repos for checking out multiple repositories by @​mouismail in actions/checkout#1977
• Documentation update - add recommended permissions to Readme by @​benwells in actions/checkout#2043
• Adjust positioning of user email note and permissions heading by @​joshmgross in actions/checkout#2044
• Update README.md by @​nebuk89 in actions/checkout#2194
• Update CODEOWNERS for actions by @​TingluoHuang in actions/checkout#2224
• Update package dependencies by @​salmanmkc in actions/checkout#2236

v4.2.2

• url-helper.ts now leverages well-known environment variables by @​jww3 in actions/checkout#1941
• Expand unit test coverage for isGhes by @​jww3 in actions/checkout#1946

v4.2.1

• Check out other refs/* by commit if provided, fall back to ref by @​orhantoy in actions/checkout#1924

v4.2.0

• Add Ref and Commit outputs by @​lucacome in actions/checkout#1180
• Dependency updates by @​dependabot- actions/checkout#1777, actions/checkout#1872

v4.1.7

• Bump the minor-npm-dependencies group across 1 directory with 4 updates by @​dependabot in actions/checkout#1739
• Bump actions/checkout from 3 to 4 by @​dependabot in actions/checkout#1697
• Check out other refs/* by commit by @​orhantoy in actions/checkout#1774
• Pin actions/checkout's own workflows to a known, good, stable version. by @​jww3 in actions/checkout#1776

v4.1.6

• Check platform to set archive extension appropriately by @​cory-miller in actions/checkout#1732

v4.1.5

• Update NPM dependencies by @​cory-miller in actions/checkout#1703
• Bump github/codeql-action from 2 to 3 by @​dependabot in actions/checkout#1694
• Bump actions/setup-node from 1 to 4 by @​dependabot in actions/checkout#1696
• Bump actions/upload-artifact from 2 to 4 by @​dependabot in actions/checkout#1695
• README: Suggest user.email to be 41898282+github-actions[bot]@users.noreply.github.com by @​cory-miller in actions/checkout#1707

v4.1.4

• Disable extensions.worktreeConfig when disabling sparse-checkout by @​jww3 in actions/checkout#1692
• Add dependabot config by @​cory-miller in actions/checkout#1688
• Bump the minor-actions-dependencies group with 2 updates by @​dependabot in actions/checkout#1693
• Bump word-wrap from 1.2.3 to 1.2.5 by @​dependabot in actions/checkout#1643

v4.1.3

... (truncated)

Commits

• 08c6903 Prepare v5.0.0 release (#2238)
• 9f26565 Update actions checkout to use node 24 (#2226)
• 08eba0b Prepare release v4.3.0 (#2237)
• 631c7dc Update package dependencies (#2236)
• 8edcb1b Update CODEOWNERS for actions (#2224)
• 09d2aca Update README.md (#2194)
• 85e6279 Adjust positioning of user email note and permissions heading (#2044)
• 009b9ae Documentation update - add recommended permissions to Readme (#2043)
• cbb7224 Update README.md (#1977)
• 3b9b8c8 docs: update README.md (#1971)
• See full diff in compare view

Updates actions/upload-pages-artifact from 3.0.1 to 4.0.0

Release notes

Sourced from actions/upload-pages-artifact's releases.

v4.0.0

What's Changed

• Potentially breaking change: hidden files (specifically dotfiles) will not be included in the artifact by @​tsusdere in actions/upload-pages-artifact#102 If you need to include dotfiles in your artifact: instead of using this action, create your own artifact according to these requirements https://github.com/actions/upload-pages-artifact?tab=readme-ov-file#artifact-validation
• Pin actions/upload-artifact to SHA by @​heavymachinery in actions/upload-pages-artifact#127

Full Changelog: actions/upload-pages-artifact@v3.0.1...v4.0.0

Commits

• 7b1f4a7 Merge pull request #127 from heavymachinery/pin-sha
• 4cc19c7 Pin actions/upload-artifact to SHA
• 2d163be Merge pull request #107 from KittyChiu/main
• c704843 fix: linted README
• 9605915 Merge pull request #106 from KittyChiu/kittychiu/update-readme-1
• e59cdfe Update README.md
• a2d6704 doc: updated usage section in readme
• 984864e Merge pull request #105 from actions/Jcambass-patch-1
• 45dc788 Add workflow file for publishing releases to immutable action package
• efaad07 Merge pull request #102 from actions/hidden-files
• Additional commits viewable in compare view

Updates actions/stale from 9.1.0 to 10.0.0

Release notes

Sourced from actions/stale's releases.

v10.0.0

What's Changed

Breaking Changes

• Upgrade to node 24 by @​salmanmkc in actions/stale#1279 Make sure your runner is on version v2.327.1 or later to ensure compatibility with this release. Release Notes

Enhancement

• Introducing sort-by option by @​suyashgaonkar in actions/stale#1254

Dependency Upgrades

• Upgrade actions/publish-immutable-action from 0.0.3 to 0.0.4 by @​dependabot[bot] in actions/stale#1186
• Upgrade undici from 5.28.4 to 5.28.5 by @​dependabot[bot] in actions/stale#1201
• Upgrade @​action/cache from 4.0.0 to 4.0.2 by @​aparnajyothi-y in actions/stale#1226
• Upgrade @​action/cache from 4.0.2 to 4.0.3 by @​suyashgaonkar in actions/stale#1233
• Upgrade undici from 5.28.5 to 5.29.0 by @​dependabot[bot] in actions/stale#1251
• Upgrade form-data to bring in fix for critical vulnerability by @​gowridurgad in actions/stale#1277

Documentation changes

• Changelog update for recent releases by @​suyashgaonkar in actions/stale#1224
• Permissions update in Readme by @​ghadimir in actions/stale#1248

New Contributors

• @​suyashgaonkar made their first contribution in actions/stale#1224
• @​GhadimiR made their first contribution in actions/stale#1248
• @​gowridurgad made their first contribution in actions/stale#1277
• @​salmanmkc made their first contribution in actions/stale#1279

Full Changelog: actions/stale@v9...v10.0.0

Commits

• 3a9db7e Upgrade to node 24 (#1279)
• 8f717f0 Bumps form-data (#1277)
• a92fd57 build(deps): bump undici from 5.28.5 to 5.29.0 (#1251)
• 128b2c8 Introducing sort-by option (#1254)
• f78de97 Update README.md (#1248)
• 816d9db Upgrade @​action/cache from 4.0.2 to 4.0.3 (#1233)
• ba23c1c upgrade actions/cache from 4.0.0 to 4.0.2 (#1226)
• a65e88a build(deps): bump undici from 5.28.4 to 5.28.5 (#1201)
• d4df79c Updates to CHANGELOG.MD for recent releases (#1224)
• ee7ef89 build(deps): bump actions/publish-immutable-action from 0.0.3 to 0.0.4 (#1186)
• See full diff in compare view

Updates actions/setup-go from 5.4.0 to 6.0.0

Release notes

Sourced from actions/setup-go's releases.

v6.0.0

What's Changed

Breaking Changes

• Improve toolchain handling to ensure more reliable and consistent toolchain selection and management by @​matthewhughes934 in actions/setup-go#460
• Upgrade Nodejs runtime from node20 to node 24 by @​salmanmkc in actions/setup-go#624

Make sure your runner is on version v2.327.1 or later to ensure compatibility with this release. See Release Notes

Dependency Upgrades

• Upgrade @​types/jest from 29.5.12 to 29.5.14 by @​dependabot[bot] in actions/setup-go#589
• Upgrade @​actions/tool-cache from 2.0.1 to 2.0.2 by @​dependabot[bot] in actions/setup-go#591
• Upgrade @​typescript-eslint/parser from 8.31.1 to 8.35.1 by @​dependabot[bot] in actions/setup-go#590
• Upgrade undici from 5.28.5 to 5.29.0 by @​dependabot[bot] in actions/setup-go#594
• Upgrade typescript from 5.4.2 to 5.8.3 by @​dependabot[bot] in actions/setup-go#538
• Upgrade eslint-plugin-jest from 28.11.0 to 29.0.1 by @​dependabot[bot] in actions/setup-go#603
• Upgrade form-data to bring in fix for critical vulnerability by @​matthewhughes934 in actions/setup-go#618
• Upgrade actions/checkout from 4 to 5 by @​dependabot[bot] in actions/setup-go#631

New Contributors

• @​matthewhughes934 made their first contribution in actions/setup-go#618
• @​salmanmkc made their first contribution in actions/setup-go#624

Full Changelog: actions/setup-go@v5...v6.0.0

v5.5.0

What's Changed

Bug fixes:

• Update self-hosted environment validation by @​priyagupta108 in actions/setup-go#556
• Add manifest validation and improve error handling by @​priyagupta108 in actions/setup-go#586
• Update template link by @​jsoref in actions/setup-go#527

Dependency updates:

• Upgrade @​action/cache from 4.0.2 to 4.0.3 by @​aparnajyothi-y in actions/setup-go#574
• Upgrade @​actions/glob from 0.4.0 to 0.5.0 by @​dependabot in actions/setup-go#573
• Upgrade ts-jest from 29.1.2 to 29.3.2 by @​dependabot in actions/setup-go#582
• Upgrade eslint-plugin-jest from 27.9.0 to 28.11.0 by @​dependabot in actions/setup-go#537

New Contributors

• @​jsoref made their first contribution in actions/setup-go#527

Full Changelog: actions/setup-go@v5...v5.5.0

Commits

• 4469467 Bump actions/checkout from 4 to 5 (#631)
• e093d1e Node 24 upgrade (#624)
• 1d76b95 Improve toolchain handling (#460)
• e75c3e8 Bump form-data to bring in fix for critical vulnerability (#618)
• 8e57b58 Bump eslint-plugin-jest from 28.11.0 to 29.0.1 (#603)
• 7c0b336 Bump typescript from 5.4.2 to 5.8.3 (#538)
• 6f26dcc Bump undici from 5.28.5 to 5.29.0 (#594)
• 8d4083a Bump @​typescript-eslint/parser from 5.62.0 to 8.32.0 (#590)
• fa96338 Bump @​actions/tool-cache from 2.0.1 to 2.0.2 (#591)
• 4de67c0 Bump @​types/jest from 29.5.12 to 29.5.14 (#589)
• Additional commits viewable in compare view

Updates docker/login-action from 3.4.0 to 3.5.0

Release notes

Sourced from docker/login-action's releases.

v3.5.0

• Support dual-stack endpoints for AWS ECR by @​Spacefish @​crazy-max in docker/login-action#874 docker/login-action#876
• Bump @​aws-sdk/client-ecr to 3.859.0 in docker/login-action#860 docker/login-action#878
• Bump @​aws-sdk/client-ecr-public to 3.859.0 in docker/login-action#860 docker/login-action#878
• Bump @​docker/actions-toolkit from 0.57.0 to 0.62.1 in docker/login-action#870
• Bump form-data from 2.5.1 to 2.5.5 in docker/login-action#875

Full Changelog: docker/login-action@v3.4.0...v3.5.0

Commits

• 184bdaa Merge pull request #878 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...
• 5c6bc94 chore: update generated content
• caf4058 build(deps): bump the aws-sdk-dependencies group with 2 updates
• ef38ec3 Merge pull request #860 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...
• d52e8ef chore: update generated content
• 9644ab7 build(deps): bump the aws-sdk-dependencies group with 2 updates
• 7abd1d5 Merge pull request #875 from docker/dependabot/npm_and_yarn/form-data-2.5.5
• 1a81202 Merge pull request #876 from crazy-max/aws-public-dual-stack
• d1ab30d chore: update generated content
• f25ff28 support dual-stack for aws public ecr
• Additional commits viewable in compare view

Updates softprops/action-gh-release from 2.2.1 to 2.3.2

Release notes

Sourced from softprops/action-gh-release's releases.

v2.3.2

• fix: revert fs readableWebStream change

v2.3.1

What's Changed

Bug fixes 🐛

• fix: fix file closing issue by @​WailGree in softprops/action-gh-release#629

New Contributors

• @​WailGree made their first contribution in softprops/action-gh-release#629

Full Changelog: softprops/action-gh-release@v2.3.0...v2.3.1

v2.3.0

• Migrate from jest to vitest
• Replace mime with mime-types
• Bump to use node 24
• Dependency updates

Full Changelog: softprops/action-gh-release@v2.2.2...v2.3.0

v2.2.2

What's Changed

Bug fixes 🐛

• fix: updating release draft status from true to false by @​galargh in softprops/action-gh-release#316

Other Changes 🔄

• chore: simplify ref_type test by @​steinybot in softprops/action-gh-release#598
• fix(docs): clarify the default for tag_name by @​muzimuzhi in softprops/action-gh-release#599
• test(release): add unit tests when searching for a release by @​rwaskiewicz in softprops/action-gh-release#603
• dependency updates

New Contributors

• @​steinybot made their first contribution in softprops/action-gh-release#598
• @​muzimuzhi made their first contribution in softprops/action-gh-release#599
• @​galargh made their first contribution in softprops/action-gh-release#316
• @​rwaskiewicz made their first contribution in softprops/action-gh-release#603

Full Changelog: softprops/action-gh-release@v2.2.1...v2.2.2

Changelog

Sourced from softprops/action-gh-release's changelog.

2.3.2

• fix: revert fs readableWebStream change

2.3.1

Bug fixes 🐛

• fix: fix file closing issue by @​WailGree in softprops/action-gh-release#629

2.3.0

• Migrate from jest to vitest
• Replace mime with mime-types
• Bump to use node 24
• Dependency updates

2.2.2

What's Changed

Bug fixes 🐛

• fix: updating release draft status from true to false by @​galargh in softprops/action-gh-release#316

Other Changes 🔄

• chore: simplify ref_type test by @​steinybot in softprops/action-gh-release#598
• fix(docs): clarify the default for tag_name by @​muzimuzhi in softprops/action-gh-release#599
• test(release): add unit tests when searching for a release by @​rwaskiewicz in softprops/action-gh-release#603
• dependency updates

2.2.1

What's Changed

Bug fixes 🐛

• fix: big file uploads by @​xen0n in softprops/action-gh-release#562

Other Changes 🔄

• chore(deps): bump @​types/node from 22.10.1 to 22.10.2 by @​dependabot in softprops/action-gh-release#559
• chore(deps): bump @​types/node from 22.10.2 to 22.10.5 by @​dependabot in softprops/action-gh-release#569
• chore: update error and warning messages for not matching files in files field by @​ytimocin in softprops/action-gh-release#568

2.2.0

What's Changed

Exciting New Features 🎉

... (truncated)

Commits

• 72f2c25 release 2.3.2
• 552dc55 fix: revert fs:readableWebStream change (#632)
• f3cad8b release 2.3.1
• 07a2257 fix: fix file closing issue (#629)
• d5382d3 release 2.3.0
• a0e2122 feat: migrate from jest to vitest (#626)
• 8836085 chore: replace mime with mime-types (#624)
• 8646335 chore: bump node to 20.19.2
• 46b2847 chore(deps): bump the npm group across 1 directory with 5 updates (#623)
• 37fd9d0 chore(deps): bump undici from 5.28.5 to 5.29.0 (#621)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.