Bump eskatos/gradle-command-action from 1 to 2.1.5 #30

dependabot · 2022-03-30T07:10:23Z

Bumps eskatos/gradle-command-action from 1 to 2.1.5.

Release notes

Sourced from eskatos/gradle-command-action's releases.

v2.1.5

This release addresses a potential security issue by upgrading minimist, and fixes a bug with very large cache entries by upgrading @actions/cache. No other changes are included.

What's Changed

[FIX] - Upgrade minimist from 1.2.5 -> 1.2.6

[FIX] - Support cache entries > 2Gb via library upgrade to @actions/cache from 1.0.10 -> 2.0.0.

Full changelog: gradle/gradle-build-action@v2.1.4...v2.1.5

v2.1.4

What's Changed

Updated dependency versions: d700906a155ae3ddc36d15f41d1ac83e8623287c.

Log stack trace for cache errors that are reported as warnings.

Full Changelog: gradle/gradle-build-action@v2.1.3...v2.1.4

v2.1.3

This patch release fixes an issue that prevented the Gradle User Home from being restored from cache on macos-latest runners. #155

What's Changed

Fix detection of Gradle User Home on macOS runners by @bigdaz in gradle/gradle-build-action#156

Full Changelog: gradle/gradle-build-action@v2.1.2...v2.1.3

v2.1.2

This patch release fixes a minor bug and updates some NPM dependencies, including one dependency with a reported security advisory.

What's Changed

Fixed #147: existing gradle.properties is no longer overwritten by action initialization

Updated all NPM dependencies to the latest version

This included updating node-fetch to a version that isn't impacted by GHSA-r683-j2x4-v87g. Note that this CVE has been determined not to impact the action.

Full Changelog: gradle/gradle-build-action@v2.1.1...v2.1.2

v2.1.1

This release improves logging and fixes a number of minor issues.

Fix misleading error message when gradlew script is not executable #76

Differentiate between build scan links generated for different steps in the same Job #124

Avoid overwriting existing Gradle User Home #138

Capture build scan links even when cache is disabled #139

In addition, 2 experimental configuration parameters have been added:

gradle-home-cache-strict-match: Only reuse cache entries generated by previous invocations for the same job

cache-write-only: Do not restore cache entries but save on Job completion

Full Changelog: gradle/gradle-build-action@v2.1.0...v2.1.1

v2.1.0

... (truncated)

Commits

fec4a42 Update changelog for v2.1.5
50d833a Dependency upgrades
df274d4 Merge pull request #217 from gradle/dependabot/npm_and_yarn/typescript-eslint...
0241d94 Bump @typescript-eslint/parser from 5.15.0 to 5.17.0
e9f450e Merge pull request #218 from gradle/dd/dependency-upgrades
ba0737b Build outputs
09f46b2 Update to @actions/cache v2.0.0
d7b4f42 Bump typescript from 4.6.2 to 4.6.3
be330a1 Bump @typescript-eslint/parser from 5.15.0 to 5.16.0
32663c1 Bump eslint-plugin-jest from 26.1.1 to 26.1.3
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [eskatos/gradle-command-action](https://github.com/eskatos/gradle-command-action) from 1 to 2.1.5. - [Release notes](https://github.com/eskatos/gradle-command-action/releases) - [Commits](gradle/gradle-build-action@v1...v2.1.5) --- updated-dependencies: - dependency-name: eskatos/gradle-command-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2022-08-17T07:08:43Z

Superseded by #41.

dependabot bot added the dependencies Pull requests that update a dependency file label Mar 30, 2022

dependabot bot mentioned this pull request Mar 30, 2022

Bump eskatos/gradle-command-action from 1 to 2.1.4 #28

Closed

dependabot bot closed this Aug 17, 2022

dependabot bot deleted the dependabot/github_actions/eskatos/gradle-command-action-2.1.5 branch August 17, 2022 07:08

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump eskatos/gradle-command-action from 1 to 2.1.5 #30

Bump eskatos/gradle-command-action from 1 to 2.1.5 #30

Uh oh!

dependabot bot commented on behalf of github Mar 30, 2022

Uh oh!

dependabot bot commented on behalf of github Aug 17, 2022

Uh oh!

Uh oh!

Bump eskatos/gradle-command-action from 1 to 2.1.5 #30

Bump eskatos/gradle-command-action from 1 to 2.1.5 #30

Uh oh!

Conversation

dependabot bot commented on behalf of github Mar 30, 2022

v2.1.5

What's Changed

v2.1.4

What's Changed

v2.1.3

What's Changed

v2.1.2

What's Changed

v2.1.1

v2.1.0

Uh oh!

dependabot bot commented on behalf of github Aug 17, 2022

Uh oh!

Uh oh!