Skip to content

Bump lfreleng-actions/path-check-action from 0.2.0 to 0.2.1#29

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/github_actions/lfreleng-actions/path-check-action-0.2.1
Open

Bump lfreleng-actions/path-check-action from 0.2.0 to 0.2.1#29
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/github_actions/lfreleng-actions/path-check-action-0.2.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 22, 2026

Copy link
Copy Markdown
Contributor

Bumps lfreleng-actions/path-check-action from 0.2.0 to 0.2.1.

Release notes

Sourced from lfreleng-actions/path-check-action's releases.

v0.2.1

Downloads for this release

🐛 Bug Fixes 🐛

  • Fix: mitigate script injection via env: indirection for inputs @​askb (#106)

🔧 Maintenance 🔧

... (truncated)

Commits
  • b51f099 Merge pull request #107 from lfreleng-actions/pre-commit-ci-update-config
  • 4b5474a Chore: pre-commit autoupdate
  • 9aa685e Merge pull request #106 from lfreleng-actions/fix/security-script-injection
  • 2cfa083 Fix: mitigate script injection via env: indirection for inputs
  • be56994 Merge pull request #105 from modeseven-lfreleng-actions/chore/add-security-md
  • ebb3cfc Docs: Add SECURITY.md security policy
  • 11300c5 Merge pull request #100 from lfreleng-actions/fix/testing-path-filters
  • 4d92992 Merge pull request #104 from modeseven-lfreleng-actions/dependabot-cooldown
  • a1a0b00 CI(dependabot): Add 7-day update cooldown
  • 2a8881b Merge pull request #102 from modeseven-lfreleng-actions/chore/remove-redundan...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [lfreleng-actions/path-check-action](https://github.com/lfreleng-actions/path-check-action) from 0.2.0 to 0.2.1.
- [Release notes](https://github.com/lfreleng-actions/path-check-action/releases)
- [Commits](lfreleng-actions/path-check-action@9606e61...b51f099)

---
updated-dependencies:
- dependency-name: lfreleng-actions/path-check-action
  dependency-version: 0.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jun 22, 2026
@github-actions

Copy link
Copy Markdown

PR: #29
Mode: squash
Topic: GH-so-29
Change-Ids:
I48c418a412a1c1ff7ad2bc3b924f6d08afe57df7
Digest: 648b8ffa6cfc
GitHub-Hash: 6d4f3ce2b50e8a91

Note: This metadata is also included in the Gerrit commit message for reconciliation.

@github-actions

Copy link
Copy Markdown

Change raised in Gerrit by GitHub2Gerrit: https://gerrit.onap.org/r/c/so/+/145427

onap-github pushed a commit that referenced this pull request Jul 1, 2026
## Release notes

Sourced from lfreleng-actions/path-check-action's releases.

v0.2.1

CI: Migrate release-drafter to v7 split @​ModeSevenIndustrialSolutions (#74)

🐛 Bug Fixes 🐛

Fix: mitigate script injection via env: indirection for inputs @​askb (#106)

🔧 Maintenance 🔧

Chore: Bump actions/checkout from 5.0.0 to 6.0.0 @dependabot[bot] (#48)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#49)
Chore: Bump lfreleng-actions/draft-release-promote-action from 0.1.2 to 0.1.3 @dependabot[bot] (#50)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#51)
Chore: Bump actions/checkout from 6.0.0 to 6.0.1 @dependabot[bot] (#53)
Chore: Bump step-security/harden-runner from 2.13.3 to 2.14.0 @dependabot[bot] (#54)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#55)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#56)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#57)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#59)
Chore: Bump release-drafter/release-drafter from 6.1.0 to 6.2.0 @dependabot[bot] (#60)
Chore: Bump actions/checkout from 6.0.1 to 6.0.2 @dependabot[bot] (#61)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#62)
Chore: Bump step-security/harden-runner from 2.14.0 to 2.14.1 @dependabot[bot] (#63)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#65)
Chore: Bump step-security/harden-runner from 2.14.1 to 2.14.2 @dependabot[bot] (#64)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#66)
Chore: Bump step-security/harden-runner from 2.14.2 to 2.15.0 @dependabot[bot] (#68)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#67)
Chore: Bump release-drafter/release-drafter from 6.2.0 to 6.4.0 @dependabot[bot] (#69)
Chore: Bump step-security/harden-runner from 2.15.0 to 2.15.1 @dependabot[bot] (#70)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#71)
Chore: Bump release-drafter/release-drafter from 6.4.0 to 7.0.0 @dependabot[bot] (#72)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#73)
Chore: Bump release-drafter/release-drafter from 7.1.0 to 7.1.1 @dependabot[bot] (#76)
Chore: Bump step-security/harden-runner from 2.15.1 to 2.16.0 @dependabot[bot] (#75)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#77)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#78)
Chore: Bump step-security/harden-runner from 2.16.0 to 2.16.1 @dependabot[bot] (#79)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#80)
Chore: Bump step-security/harden-runner from 2.16.1 to 2.17.0 @dependabot[bot] (#81)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#83)
Chore: Bump release-drafter/release-drafter from 7.1.1 to 7.2.0 @dependabot[bot] (#82)
Chore: Bump step-security/harden-runner from 2.17.0 to 2.18.0 @dependabot[bot] (#85)
Chore: Bump lfreleng-actions/tag-validate-action from 1.0.1 to 1.0.2 @dependabot[bot] (#87)
Chore: pre-commit autoupdate @pre-commit-ci[bot] (#86)
Chore: Bump step-security/harden-runner from 2.18.0 to 2.19.0 @dependabot[bot] (#88)
Chore: Bump step-security/harden-runner from 2.19.0 to 2.19.1 @dependabot[bot] (#90)
Chore: Bump release-drafter/release-drafter from 7.2.0 to 7.2.1 @dependabot[bot] (#89)

... (truncated)

## Commits

b51f099 Merge pull request #107 from lfreleng-actions/pre-commit-ci-update-config
4b5474a Chore: pre-commit autoupdate
9aa685e Merge pull request #106 from lfreleng-actions/fix/security-script-injection
2cfa083 Fix: mitigate script injection via env: indirection for inputs
be56994 Merge pull request #105 from modeseven-lfreleng-actions/chore/add-security-md
ebb3cfc Docs: Add SECURITY.md security policy
11300c5 Merge pull request #100 from lfreleng-actions/fix/testing-path-filters
4d92992 Merge pull request #104 from modeseven-lfreleng-actions/dependabot-cooldown
a1a0b00 CI(dependabot): Add 7-day update cooldown
2a8881b Merge pull request #102 from modeseven-lfreleng-actions/chore/remove-redundan
Additional commits viewable in compare view

![Dependabot compatibility score](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Issue-ID: CIMAN-33
Signed-off-by: dependabot[bot] <support@github.com>
Change-Id: I48c418a412a1c1ff7ad2bc3b924f6d08afe57df7
GitHub-PR: #29
GitHub-Hash: 6d4f3ce2b50e8a91
Signed-off-by: onap.gh2gerrit <releng+onap-gh2gerrit@linuxfoundation.org>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Development

Successfully merging this pull request may close these issues.

0 participants