Bump the github-actions group across 1 directory with 3 updates #310

dependabot · 2025-05-01T05:34:07Z

Bumps the github-actions group with 3 updates in the / directory: shivammathur/setup-php, ncipollo/release-action and actions/create-github-app-token.

Updates shivammathur/setup-php from 2.32.0 to 2.33.0

Release notes

Sourced from shivammathur/setup-php's releases.

2.33.0

Changelog

Added support for Arm Ubuntu runners ubuntu-24.04-arm and ubuntu-22.04-arm. (#848)
jobs:
  run:
    runs-on: ubuntu-24.04-arm # or ubuntu-22.04-arm
    steps:
    - name: Setup PHP
      uses: shivammathur/setup-php@v2
      with:
        php-version: '8.4'
Dropped support for Ubuntu 20.04 (ubuntu-20.04) for both GitHub hosted and self-hosted runners. Please migrate your workflows to ubuntu-22.04 or ubuntu-24.04. (#939) Ref: https://github.com/shivammathur/setup-php#github-hosted-runners

Improved support for installing PHPUnit around new releases. Now setup-php will fallback to the previous release till new release is available on the phpunit.de website after it is tagged. (#913, #938)
- name: Setup PHP
  uses: shivammathur/setup-php@v2
  with:
    php-version: '8.4'
    tools: phpunit
Switched to using https://ppa.launchpadcontent.net for launchpad PPAs instead of http://ppa.launchpad.net. (#927, #928)

Added a fallback to calling launchpad's API for getting PPA signatures to reduce reported failures on self-hosted runners. (#935)

Added support for specifying tools' directory using TOOLS_DIR env. (#937)
- name: Setup PHP
  uses: shivammathur/setup-php@v2
  with:
    php-version: '8.4'
  env:
    TOOLS_DIR: '/tmp/tools'
Fixed cache support for openswoole. (#917, shivammathur/cache-extensions#47)

Fixed the version of composer-normalize in the logs. (#899)
- name: Setup PHP
</tr></table> 

... (truncated)

Commits

cf4cade Drop support for ubuntu-20.04 [skip ci]
316da6e Fix phalcon and zephir_parser support on Windows
34061fa Fix relay support on macOS
b7bd9e4 Bump version to 2.33.0
78e1c95 feat: set this via an environment variable instead
310e481 feat: allow tools path directory to be set
42a9487 Fix pdo_oci
f5d98d1 Improve support for phalcon5 and zephir_parser
1a94db5 Update dependencies
1489f57 Merge pull request #928 from jg-development/main
Additional commits viewable in compare view

Updates ncipollo/release-action from 1.15.0 to 1.16.0

Release notes

Sourced from ncipollo/release-action's releases.

v1.16.0

What's Changed

Bump @octokit/request-error from 5.0.1 to 5.1.1 by @dependabot in ncipollo/release-action#498

Update checkout action version in example by @Cycloctane in ncipollo/release-action#496

Bump undici from 5.28.4 to 5.28.5 by @dependabot in ncipollo/release-action#499

Bump glob from 11.0.0 to 11.0.1 by @dependabot in ncipollo/release-action#495

Bump @types/node from 22.10.3 to 22.13.4 by @dependabot in ncipollo/release-action#500

Regenerate release notes on release updates by @rantoniuk in ncipollo/release-action#497

New Contributors

@rantoniuk made their first contribution in ncipollo/release-action#497

Full Changelog: ncipollo/release-action@v1...v1.16.0

Commits

440c8c1 preparing release 1.16.0
e805702 preparing release 1.17.0
bd572a1 preparing release 1.17.0
706b28e Update tag scheme in sheepit
411ac01 preparing release 1.16.0
a8c5a7f Fixes #474 Regenerate release notes on release updates (#497)
62f16c0 Add sheepit config
00e83e3 Attempt #1 at fixing workflow file
906fc77 Add initial releases workflow
17b5598 Add biome and initial format rules
Additional commits viewable in compare view

Updates actions/create-github-app-token from 1 to 2

Release notes

Sourced from actions/create-github-app-token's releases.

v2.0.0

2.0.0 (2025-04-03)

feat!: remove deprecated inputs (#213) (5cc811b)

BREAKING CHANGES

Removed deprecated inputs (app_id, private_key, skip_token_revoke) and made app-id and private-key required in the action configuration.

v1.12.0

1.12.0 (2025-03-27)

Features

permissions (#168) (0e0aa99)

v1.11.7

1.11.7 (2025-03-20)

Bug Fixes

deps: bump undici from 5.28.4 to 7.5.0 (#214) (a24b46a)

v1.11.6

1.11.6 (2025-03-03)

Bug Fixes

deps: bump the production-dependencies group with 2 updates (#210) (1ff1dea)

v1.11.5

1.11.5 (2025-02-15)

Bug Fixes

... (truncated)

Commits

3ff1caa build(release): 2.0.2 [skip ci]
eaef294 fix: improve log messages for token creation (#226)
86e2496 build(release): 2.0.1 [skip ci]
2411bfc fix(deps): bump the production-dependencies group across 1 directory with 2 u...
f17d09a build(deps-dev): bump the development-dependencies group with 3 updates (#225)
e250d17 ci(update-permission-inputs): add permissions (#230)
ed258b4 Rename workflow
5c652ca Update update-inputs.yml
60ee75d ci(update-inputs): create initial version (#229)
064492a build(release): 2.0.0 [skip ci]
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the github-actions group with 3 updates in the / directory: [shivammathur/setup-php](https://github.com/shivammathur/setup-php), [ncipollo/release-action](https://github.com/ncipollo/release-action) and [actions/create-github-app-token](https://github.com/actions/create-github-app-token). Updates `shivammathur/setup-php` from 2.32.0 to 2.33.0 - [Release notes](https://github.com/shivammathur/setup-php/releases) - [Commits](shivammathur/setup-php@2.32.0...2.33.0) Updates `ncipollo/release-action` from 1.15.0 to 1.16.0 - [Release notes](https://github.com/ncipollo/release-action/releases) - [Commits](ncipollo/release-action@v1.15.0...v1.16.0) Updates `actions/create-github-app-token` from 1 to 2 - [Release notes](https://github.com/actions/create-github-app-token/releases) - [Commits](actions/create-github-app-token@v1...v2) --- updated-dependencies: - dependency-name: shivammathur/setup-php dependency-version: 2.33.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: ncipollo/release-action dependency-version: 1.16.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: actions/create-github-app-token dependency-version: '2' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels May 1, 2025

dependabot bot requested a review from a team as a code owner May 1, 2025 05:34

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the github-actions group across 1 directory with 3 updates #310

Bump the github-actions group across 1 directory with 3 updates #310

Uh oh!

dependabot bot commented on behalf of github May 1, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Bump the github-actions group across 1 directory with 3 updates #310

Are you sure you want to change the base?

Bump the github-actions group across 1 directory with 3 updates #310

Uh oh!

Conversation

dependabot bot commented on behalf of github May 1, 2025

2.33.0

Changelog

v1.16.0

What's Changed

New Contributors

v2.0.0

2.0.0 (2025-04-03)

BREAKING CHANGES

v1.12.0

1.12.0 (2025-03-27)

Features

v1.11.7

1.11.7 (2025-03-20)

Bug Fixes

v1.11.6

1.11.6 (2025-03-03)

Bug Fixes

v1.11.5

1.11.5 (2025-02-15)

Bug Fixes

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants