Bump the actions-dependency group with 8 updates

[dependabot]

Bumps the actions-dependency group with 8 updates:

Package	From	To
actions/setup-python	4.7.0	5.0.0
arduino/setup-task	1	2
azure/setup-helm	3	4
helm/kind-action	1.8.0	1.9.0
actions/download-artifact	3.0.2	4.1.4
actions/checkout	3.5.3	4.1.1
pre-commit/action	3.0.0	3.0.1
slackapi/slack-github-action	1.24.0	1.25.0

Updates actions/setup-python from 4.7.0 to 5.0.0

Release notes

Sourced from actions/setup-python's releases.

v5.0.0

What's Changed

In scope of this release, we update node version runtime from node16 to node20 (actions/setup-python#772). Besides, we update dependencies to the latest versions.

Full Changelog: actions/setup-python@v4.8.0...v5.0.0

v4.8.0

What's Changed

In scope of this release we added support for GraalPy (actions/setup-python#694). You can use this snippet to set up GraalPy:

steps:
- uses: actions/checkout@v4
- uses: actions/setup-python@v4 
  with:
    python-version: 'graalpy-22.3' 
- run: python my_script.py

Besides, the release contains such changes as:

• Trim python version when reading from file by @​FerranPares in actions/setup-python#628
• Use non-deprecated versions in examples by @​jeffwidman in actions/setup-python#724
• Change deprecation comment to past tense by @​jeffwidman in actions/setup-python#723
• Bump @​babel/traverse from 7.9.0 to 7.23.2 by @​dependabot in actions/setup-python#743
• advanced-usage.md: Encourage the use actions/checkout@v4 by @​cclauss in actions/setup-python#729
• Examples now use checkout@v4 by @​simonw in actions/setup-python#738
• Update actions/checkout to v4 by @​dmitry-shibanov in actions/setup-python#761

New Contributors

• @​FerranPares made their first contribution in actions/setup-python#628
• @​timfel made their first contribution in actions/setup-python#694
• @​jeffwidman made their first contribution in actions/setup-python#724

Full Changelog: actions/setup-python@v4...v4.8.0

v4.7.1

What's Changed

• Bump word-wrap from 1.2.3 to 1.2.4 by @​dependabot in actions/setup-python#702
• Add range validation for toml files by @​dmitry-shibanov in actions/setup-python#726

Full Changelog: actions/setup-python@v4...v4.7.1

Commits

• 0a5c615 Update action to node20 (#772)
• 0ae5836 Add example of GraalPy to docs (#773)
• b64ffca update actions/checkout to v4 (#761)
• 8d28961 Examples now use checkout@v4 (#738)
• 7bc6abb advanced-usage.md: Encourage the use actions/checkout@v4 (#729)
• e8111ce Bump @​babel/traverse from 7.9.0 to 7.23.2 (#743)
• a00ea43 add fix for graalpy ci (#741)
• 8635b1c Change deprecation comment to past tense (#723)
• f6cc428 Use non-deprecated versions in examples (#724)
• 5f2af21 Add GraalPy support (#694)
• Additional commits viewable in compare view

Updates arduino/setup-task from 1 to 2

Release notes

Sourced from arduino/setup-task's releases.

2.0.0

Migration Guide

The version of the Node.js runtime used to execute the action has been updated from 16 to 20. This could be a breaking change for certain GitHub Actions workflows.

If a workflow with dependency on the arduino/setup-task action uses only GitHub-hosted GitHub Actions runners, no changes are required.

If the workflow uses a self-hosted runner, the workflow run might fail after updating arduino/setup-task:

Error: System.ArgumentOutOfRangeException: Specified argument was out of the range of valid values. (Parameter ''using: node20' is not supported, use 'docker', 'node12' or 'node16' instead.')
   at GitHub.Runner.Worker.ActionManifestManager.ConvertRuns(IExecutionContext executionContext, TemplateContext templateContext, TemplateToken inputsToken, String fileRelativePath, MappingToken outputs)
   at GitHub.Runner.Worker.ActionManifestManager.Load(IExecutionContext executionContext, String manifestFile)
Error: Fail to load arduino/setup-task/v2/action.yml

This means an older runner version that does not provide Node.js 20.x is installed on the runner machine and you must update the runner version.

Changelog

Breaking

• Update Node.js runtime for action from 16 to 20 (#919)

Enhancement

• Various dependency updates

Full Changeset

arduino/setup-task@1.0.3...2.0.0

Contributors

• @​gdraynz

1.0.3

Changelog

Enhancement

• Add support for all Task build architectures (43e1bb8c37ce39c24e88b4622c2f66b6d7d9ebbd)

Full Changeset

arduino/setup-task@1.0.2...1.0.3

1.0.2

Release Notes

... (truncated)

Commits

• b91d5d2 update readme (#929)
• f2514b0 Bump node from 16 to 20 (#919)
• 2007903 Merge pull request #928 from arduino/dependabot/npm_and_yarn/prettier-3.2.5
• 3f2ef95 build(deps-dev): bump prettier from 3.2.2 to 3.2.5
• 88d658b Merge pull request #927 from arduino/dependabot/npm_and_yarn/types/node-16.18.79
• b79a1c3 build(deps-dev): bump @​types/node from 16.18.78 to 16.18.79
• 5abddba Merge pull request #926 from arduino/dependabot/npm_and_yarn/types/node-16.18.78
• b3e99c0 build(deps-dev): bump @​types/node from 16.18.76 to 16.18.78
• 4145542 Merge pull request #924 from arduino/dependabot/npm_and_yarn/typescript-eslin...
• 10406e6 build(deps-dev): bump @​typescript-eslint/parser from 6.19.1 to 6.20.0
• Additional commits viewable in compare view

Updates azure/setup-helm from 3 to 4

Release notes

Sourced from azure/setup-helm's releases.

v4

Latest v4 release

v4.0.0

• #121 update to node20 as node16 is deprecated

v3.5 release

Bump @​actions/core version to remove output warning.

v3.4 release

Improves the querying method to find the latest Helm release. Takes advantage of new GitHub api changes.

v3.3 release

Add token input. Needed for fetching latest

v3.1 release

Swap to GraphQL GitHub API

Changelog

Sourced from azure/setup-helm's changelog.

Change Log

[4.1.0] - 2024-03-01

• #130 switches to use Helm published file to read latest version instead of using GitHub releases

[4.0.0] - 2024-02-12

• #121 update to node20 as node16 is deprecated

Commits

• 29960d0 build
• 0788eb3 v4 release and required workflow updates (#125)
• 208de6b Upgrade action to use node20 (#121)
• 1f87a57 Bump @​babel/traverse from 7.18.6 to 7.23.2 (#118)
• d336b89 Add action input to set download base url (#113)
• ac5ee1f Update helm to v3.11.1 (#108)
• 638a523 Bump decode-uri-component from 0.2.0 to 0.2.2 (#105)
• 0a7ec47 Bump json5 from 2.2.1 to 2.2.3 (#107)
• 3419a8f Update README to reflect current default helm version (#106)
• f77071b minor nit , upgrade helm and GH action version updates (#102)
• Additional commits viewable in compare view

Updates helm/kind-action from 1.8.0 to 1.9.0

Release notes

Sourced from helm/kind-action's releases.

v1.9.0

What's Changed

• Bump actions/checkout from 3.3.0 to 3.5.3 by @​dependabot in helm/kind-action#90
• Bump actions/checkout from 3.5.3 to 3.6.0 by @​dependabot in helm/kind-action#96
• Bump actions/checkout from 3.6.0 to 4.0.0 by @​dependabot in helm/kind-action#97
• Bump actions/checkout from 4.0.0 to 4.1.0 by @​dependabot in helm/kind-action#98
• Bump actions/checkout from 4.1.0 to 4.1.1 by @​dependabot in helm/kind-action#99
• chore: Bump node version to node20 by @​sayboras in helm/kind-action#102
• Fix arch detection in non-Debian distros by @​musse in helm/kind-action#93
• docs: fix default version in action.yml by @​dunglas in helm/kind-action#91
• docs: bump outdated action version in README by @​dunglas in helm/kind-action#92

New Contributors

• @​musse made their first contribution in helm/kind-action#93
• @​dunglas made their first contribution in helm/kind-action#91

Full Changelog: helm/kind-action@v1.8.0...v1.9.0

Commits

• 99576bf docs: bump outdated action version in README (#92)
• 0ca85d0 docs: fix default version in action.yml (#91)
• fc8d4ed Fix arch detection in non-Debian distros (#93)
• 4be822c chore: Bump node version to node20 (#102)
• 100421e Bump actions/checkout from 4.1.0 to 4.1.1 (#99)
• 5adb538 Bump actions/checkout from 4.0.0 to 4.1.0 (#98)
• 49375a6 Bump actions/checkout from 3.6.0 to 4.0.0 (#97)
• 2d498b1 Bump actions/checkout from 3.5.3 to 3.6.0 (#96)
• 77db130 Bump actions/checkout from 3.3.0 to 3.5.3 (#90)
• See full diff in compare view

Updates actions/download-artifact from 3.0.2 to 4.1.4

Release notes

Sourced from actions/download-artifact's releases.

v4.1.4

What's Changed

• Update @​actions/artifact by @​bethanyj28 in actions/download-artifact#307

Full Changelog: actions/download-artifact@v4...v4.1.4

v4.1.3

What's Changed

• Update release-new-action-version.yml by @​konradpabjan in actions/download-artifact#292
• Update toolkit dependency with updated unzip logic by @​bethanyj28 in actions/download-artifact#299
• Update @​actions/artifact by @​bethanyj28 in actions/download-artifact#303

New Contributors

• @​bethanyj28 made their first contribution in actions/download-artifact#299

Full Changelog: actions/download-artifact@v4...v4.1.3

v4.1.2

• Bump @​actions/artifacts to latest version to include updated GHES host check

v4.1.1

• Fix transient request timeouts actions/download-artifact#249
• Bump @actions/artifacts to latest version

v4.1.0

What's Changed

• Some cleanup by @​robherley in actions/download-artifact#247
• Fix default for run-id by @​stchr in actions/download-artifact#252
• Support pattern matching to filter artifacts & merge to same directory by @​robherley in actions/download-artifact#259

New Contributors

• @​stchr made their first contribution in actions/download-artifact#252

Full Changelog: actions/download-artifact@v4...v4.1.0

v4.0.0

What's Changed

The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.

ℹ️ However, this is a major update that includes breaking changes. Artifacts created with versions v3 and below are not compatible with the v4 actions. Uploads and downloads must use the same major actions versions. There are also key differences from previous versions that may require updates to your workflows.

For more information, please see:

1. The changelog post.
2. The README.
3. The migration documentation.
4. As well as the underlying npm package, @​actions/artifact documentation.

New Contributors

... (truncated)

Commits

• c850b93 Merge pull request #307 from bethanyj28/main
• 6fd111f update @​actions/artifact
• 87c5514 Merge pull request #303 from bethanyj28/main
• 47f9ce6 update @​actions/artifact
• 127824d Merge pull request #299 from bethanyj28/main
• 6dd49bf licensed only artifact
• f71c0e3 Revert "licensed"
• 7c63dfd licensed
• 67d37cd Update toolkit
• 3487549 Update release-new-action-version.yml (#292)
• Additional commits viewable in compare view

Updates actions/checkout from 3.5.3 to 4.1.1

Release notes

Sourced from actions/checkout's releases.

v4.1.1

What's Changed

• Update CODEOWNERS to Launch team by @​joshmgross in actions/checkout#1510
• Correct link to GitHub Docs by @​peterbe in actions/checkout#1511
• Link to release page from what's new section by @​cory-miller in actions/checkout#1514

New Contributors

• @​joshmgross made their first contribution in actions/checkout#1510
• @​peterbe made their first contribution in actions/checkout#1511

Full Changelog: actions/checkout@v4.1.0...v4.1.1

v4.1.0

What's Changed

• Update README.md for V4 by @​sivapalan in actions/checkout#1452
• Add support for partial checkout filters by @​finleygn in actions/checkout#1396
• Prepare 4.1.0 release by @​cory-miller in actions/checkout#1496

New Contributors

• @​sivapalan made their first contribution in actions/checkout#1452
• @​finleygn made their first contribution in actions/checkout#1396

Full Changelog: actions/checkout@v4.0.0...v4.1.0

v4.0.0

What's Changed

• Update default runtime to node20 by @​takost in actions/checkout#1436
• Support fetching without the --progress option by @​simonbaird in actions/checkout#1067
• Release 4.0.0 by @​takost in actions/checkout#1447

New Contributors

• @​takost made their first contribution in actions/checkout#1436
• @​simonbaird made their first contribution in actions/checkout#1067

Full Changelog: actions/checkout@v3...v4.0.0

v3.6.0

What's Changed

• Mark test scripts with Bash'isms to be run via Bash by @​dscho in actions/checkout#1377
• Add option to fetch tags even if fetch-depth > 0 by @​RobertWieczoreck in actions/checkout#579
• Release 3.6.0 by @​luketomlinson in actions/checkout#1437

New Contributors

• @​RobertWieczoreck made their first contribution in actions/checkout#579
• @​luketomlinson made their first contribution in actions/checkout#1437

Full Changelog: actions/checkout@v3.5.3...v3.6.0

Changelog

Sourced from actions/checkout's changelog.

Changelog

v4.1.0

• Add support for partial checkout filters

v4.0.0

• Support fetching without the --progress option
• Update to node20

v3.6.0

• Fix: Mark test scripts with Bash'isms to be run via Bash
• Add option to fetch tags even if fetch-depth > 0

Commits

• b4ffde6 Link to release page from what's new section (#1514)
• 8530928 Correct link to GitHub Docs (#1511)
• 7cdaf2f Update CODEOWNERS to Launch team (#1510)
• 8ade135 Prepare 4.1.0 release (#1496)
• c533a0a Add support for partial checkout filters (#1396)
• 72f2cec Update README.md for V4 (#1452)
• 3df4ab1 Release 4.0.0 (#1447)
• 8b5e8b7 Support fetching without the --progress option (#1067)
• 97a652b Update default runtime to node20 (#1436)
• f43a0e5 Release 3.6.0 (#1437)
• Additional commits viewable in compare view

Updates pre-commit/action from 3.0.0 to 3.0.1

Release notes

Sourced from pre-commit/action's releases.

pre-commit/[email protected]

Misc

• Update actions/cache to v4
  • #190 PR by @​SukiCZ.
  • #189 issue by @​bakerkj.

Commits

• 2c7b380 v3.0.1
• 8e2deeb Merge pull request #190 from SukiCZ/upgrade-action/cache-v4
• 0dbc303 Upgrade action/cache to v4. Fixes: #189
• c7d159c Merge pull request #185 from pre-commit/asottile-patch-1
• 9dd4237 fix main badge
• 37faf8a Merge pull request #184 from pre-commit/pre-commit-ci-update-config
• 049686e [pre-commit.ci] pre-commit autoupdate
• 5f528da move back to maintenance-only
• efd3bcf Merge pull request #170 from pre-commit/pre-commit-ci-update-config
• df308c7 [pre-commit.ci] pre-commit autoupdate
• Additional commits viewable in compare view

Updates slackapi/slack-github-action from 1.24.0 to 1.25.0

Release notes

Sourced from slackapi/slack-github-action's releases.

Slack Send V1.25.0

What's Changed

• Update payload integration test to escape invalid characters by @​hello-ashleyintech in slackapi/slack-github-action#207
• #204: Handle proxies when using Slack WebClient by @​raihle in slackapi/slack-github-action#205
• README: clarify limitations to workflow builder approach by @​ryan-williams in slackapi/slack-github-action#228
• Add instructions for developing with a local version of the action by @​zimeg in slackapi/slack-github-action#250
• Pass secrets to approved workflow jobs by @​zimeg in slackapi/slack-github-action#258
• build(node): bump the runtime version to node 20 by @​zimeg in slackapi/slack-github-action#267
• ci(security): require access checks to pass before running unit tests by @​zimeg in slackapi/slack-github-action#279
• ci(security): check for pull_request_target events in the access check by @​zimeg in slackapi/slack-github-action#282

New Contributors

• @​raihle made their first contribution in slackapi/slack-github-action#205
• @​ryan-williams made their first contribution in slackapi/slack-github-action#228
• @​zimeg made their first contribution in slackapi/slack-github-action#250

Full Changelog: slackapi/slack-github-action@v1.24.0...v1.25.0

Commits

• 6c661ce Automatic compilation
• 2a8087d v1.25.0
• a678e58 ci(security): check for pull_request_target events in the access check (#282)
• 84a8f7d ci(security): require access checks to pass before running unit tests (#279)
• f6aff2f Bump eslint from 8.54.0 to 8.56.0 (#275)
• 372e934 Bump eslint-plugin-import from 2.29.0 to 2.29.1 (#274)
• bac28df Bump @​slack/web-api from 6.9.1 to 6.11.1 (#277)
• 0474a45 Unit tests in GitHub CI should test the PR/branch (#276)
• 34ae0b4 Bump @​actions/github from 5.1.1 to 6.0.0 (#265)
• e7f3840 Bump whatwg-url from 13.0.0 to 14.0.0 (#263)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions