Merge pull request #210 from dependabot/v1.3.1-release-notes

v1.3.1 Release Notes
2026-03-12 18:07:12 -04:00 · 2022-04-20 12:33:51 +01:00
parent 58f09fc679 80173ff966
commit bfac3fa29c
4 changed files with 9 additions and 9 deletions
--- a/README.md
+++ b/README.md
@@ -10,7 +10,7 @@ Extract information about the dependencies being updated by a Dependabot-generat

 ## Usage instructions

-Create a workflow file that contains a step that uses: `dependabot/fetch-metadata@v1.3.0`, e.g.
+Create a workflow file that contains a step that uses: `dependabot/fetch-metadata@v1.3.1`, e.g.

 ```yaml
 -- .github/workflows/dependabot-prs.yml
@@ -22,7 +22,7 @@ jobs:
    steps:
    - name: Fetch Dependabot metadata
      id: dependabot-metadata
-      uses: dependabot/fetch-metadata@v1.3.0
+      uses: dependabot/fetch-metadata@v1.3.1
      with:
        alert-lookup: true
        compat-lookup: true
@@ -95,7 +95,7 @@ jobs:
    steps:
      - name: Dependabot metadata
        id: dependabot-metadata
-        uses: dependabot/fetch-metadata@v1.3.0
+        uses: dependabot/fetch-metadata@v1.3.1
      - uses: actions/checkout@v3
      - name: Approve a PR if not already approved
        run: |
@@ -129,7 +129,7 @@ jobs:
    steps:
      - name: Dependabot metadata
        id: dependabot-metadata
-        uses: dependabot/fetch-metadata@v1.3.0
+        uses: dependabot/fetch-metadata@v1.3.1
      - name: Enable auto-merge for Dependabot PRs
        if: ${{contains(steps.dependabot-metadata.outputs.dependency-names, 'rails') && steps.dependabot-metadata.outputs.update-type == 'version-update:semver-patch'}}
        run: gh pr merge --auto --merge "$PR_URL"
@@ -158,7 +158,7 @@ jobs:
    steps:
      - name: Dependabot metadata
        id: dependabot-metadata
-        uses: dependabot/fetch-metadata@v1.3.0
+        uses: dependabot/fetch-metadata@v1.3.1
      - name: Add a label for all production dependencies
        if: ${{ steps.dependabot-metadata.outputs.dependency-type == 'direct:production' }}
        run: gh pr edit "$PR_URL" --add-label "production"
--- a/bin/bump-version
+++ b/bin/bump-version
@@ -22,7 +22,7 @@ fi

 new_version=$(npm version "${patch_level}" --no-git-tag-version)
 git checkout -b "${new_version}"-release-notes
-sed -i.bak "s|dependabot/fetch-metadata@v[0-9.]*|dependabot/fetch-metadata@v${new_version}|g" "README.md"
+sed -i.bak "s|dependabot/fetch-metadata@v[0-9.]*|dependabot/fetch-metadata@${new_version}|g" "README.md"
 rm README.md.bak
 git add package.json package-lock.json README.md
 git commit -m "${new_version}"
--- a/package-lock.json
+++ b/package-lock.json
@@ -1,12 +1,12 @@
 {
  "name": "dependabot-pull-request-action",
-  "version": "1.3.0",
+  "version": "1.3.1",
  "lockfileVersion": 2,
  "requires": true,
  "packages": {
    "": {
      "name": "dependabot-pull-request-action",
-      "version": "1.3.0",
+      "version": "1.3.1",
      "license": "MIT",
      "dependencies": {
        "@actions/core": "^1.6.0",
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
  "name": "dependabot-pull-request-action",
-  "version": "1.3.0",
+  "version": "1.3.1",
  "description": "Parse Dependabot commit metadata to automate PR handling",
  "main": "dist/index.js",
  "scripts": {