dependabot/fetch-metadata
2
0
Fork 0
mirror of https://github.com/dependabot/fetch-metadata.git synced 2026-03-12 18:07:12 -04:00
Code Issues Packages Projects Releases Wiki Activity
703 Commits 8 Branches 28 Tags
a4ea50fab51452402fb65b2eef52373d23ee13e1
Commit Graph

75 Commits

Author SHA1 Message Date
Thomas Ruggeri
300ce8ecb0 Upgrade actions core and actions github packages (#649) 
* Bump the dependencies group with 2 updates

Bumps the dependencies group with 2 updates: [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core) and [@actions/github](https://github.com/actions/toolkit/tree/HEAD/packages/github).

Updates `@actions/core` from 1.10.0 to 1.11.1
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/core/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/core)

Updates `@actions/github` from 5.1.1 to 6.0.0
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/github/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/github)

* bug: Use fetch request for mocked tests
 2026-01-05 10:40:16 -08:00
Thomas Ruggeri
35f9a4219a Merge branch 'main' into feat/multi-versions 2025-12-22 12:46:00 -08:00
Thomas Ruggeri
33c7a0bfc8 bug: Mock PR body in test 
* Mock body to get consistent testing
* Fix lint warnings
 2025-12-22 20:36:27 +00:00
Piotr P. Karwasz
b71ef72efc fix: Rebuild project 2025-07-01 21:25:54 +02:00
Piotr P. Karwasz
f575621dfd fix: build the action 2025-06-23 23:54:21 +02:00
Jeff Widman
37e6fcd735 add npm run build output 2025-05-16 19:33:20 +00:00
Jeff Widman
52024a6955 npm ci && npm run build 2025-03-21 19:47:15 +00:00
Jeff Widman
ed675a3d5f Make typescript compile to "es2022" (#609) 
Keeping back in `"es6"` is causing an issue over in a Dependabot PR where
another library wants to use newer Javascript features.

The reason `"es6"` was the previous target is because GitHub actions
used to use node 12, which didn't support some of the newer versions.
But now that GitHub Actions is on Node 20, which supports `"es2022"`,
it's safe to let Typescript compile using this much newer syntax.
 2025-03-21 12:27:38 -07:00
Jeff Widman
acbb0b07f3 try bumping to v5, I don't think it broke til v6 2025-03-21 06:05:01 +00:00
Jeff Widman
1f1b88b7d0 npm ci && npm run build 2025-03-20 20:46:52 +00:00
Stoyan Kolev
de52f60015 update build 2025-01-24 13:48:15 -05:00
Thomas Spencer
a44a9dfd95 Handle branch names containing hyphen separators 2024-04-24 11:56:55 +08:00
Jeff Widman
4e1067b348 run npm build 2024-03-21 03:22:26 +00:00
Landon Grindheim
ac2abcd83c Run 
> dependabot-pull-request-action@1.6.0 build
> ncc build src/main.ts

ncc: Version 0.36.1
ncc: Compiling file index.js into CJS
ncc: Using typescript@5.2.2 (local user-provided)
880kB  dist/index.js
880kB  [5564ms] - ncc 0.36.1 on dev dependencies
 2023-09-05 20:41:40 +00:00
Bryan Dragon
a5c13b47b4 Rebuild dist/ 2023-07-07 14:25:34 -06:00
Nish Sinha
11c0ea46b8 build 2023-06-26 14:42:38 -04:00
Kenichi Kamiya
64bd9b825f Fix library parser to trim trailing LF (#380) 
* Fix test fixture for update requirement pattern

* Fix to parse update fragment with considering "\n"

* `npm run build`
 2023-05-24 01:12:53 +00:00
Michael Waddell
32fd3a60da Added flag if "Maintainer changes" appears in the PR body (#174) 
Ideally this would get passed over in the commit message instead of being part of the (editable) PR body. For now though we can just use the PR body.
 2023-04-24 13:14:30 -07:00
Yeikel
6c2bf2fe33 feat: add option to skip internal verifications (#336) 
Add a `skip-verification` (boolean) option:
 
 - If `true`, the action will not validate the user or the commit verification status
 - Defaults to `false`

Allows for scenarios where users want to add or amend commits on the Dependabot PR, and those commits will not come from the :dependabot: user.

There's a fair bit of discussion on this use case and also why this isn't the default behavior, see:
* https://github.com/dependabot/fetch-metadata/pull/336
* https://github.com/dependabot/fetch-metadata/issues/332
 2023-04-17 12:44:22 -07:00
jonmcquillan
919f913865 Allow leading v on commit message versions (#338) 
Previously, a leading `v` on the version in the commit message (eg, `Bumps org/repo from v1.3.0 to v1.3.2.`) did not populate the `previous-version` and `new-version`, so was also unable to calculate the proper `update-type`.

This fixes that.

Fix #244
 2023-04-12 11:40:23 -07:00
Kenichi Kamiya
cf0e979712 Merge branch 'main' into fix-get-info-for-library 2023-01-18 12:15:22 +09:00
Jeff Widman
a00355d0b5 run npm ci && npm run build 2023-01-02 19:16:14 +00:00
Jeff Widman
aa1a97eee8 run npm ci to regenerate dist/ folder 2022-12-05 06:38:23 +00:00
github-actions
e670fb927e [dependabot skip] Update dist/ with build changes 2022-11-01 14:50:26 +00:00
github-actions
2c682a41d7 [dependabot skip] Update dist/ with build changes 2022-11-01 14:46:03 +00:00
Mattt
e99f596f42 npm run build 2022-11-01 06:31:23 -07:00
Barry Gordon
00ab600844 Manually bump dist/ 2022-09-22 11:23:04 +01:00
github-actions
e46234153b [dependabot skip] Update dist/ with build changes 2022-09-22 07:33:44 +00:00
github-actions
fbb3c16284 [dependabot skip] Update dist/ with build changes 2022-09-22 07:08:50 +00:00
Barry Gordon
6c87543e47 Bump dist/ 2022-06-30 14:43:46 +01:00
Kenichi Kamiya
f45919f08b npm run build 2022-06-30 10:00:44 +09:00
Barry Gordon
b1d2cf8266 Bump dist/ 2022-04-20 11:32:28 +01:00
github-actions
25d8fcd410 [dependabot skip] Update dist/ with build changes 2022-04-20 10:14:26 +00:00
Barry Gordon
7399a0b09a Bump dist/ 2022-04-19 17:37:24 +01:00
Salim Bensiali
aa4ffba345 Update dist 2022-03-30 05:12:13 +10:00
Michael Waddell
84741a1a63 If the update-type is missing for some reason, calculate it from the versions 2022-03-04 22:40:59 -06:00
Barry Gordon
0ca01a5553 Merge pull request #146 from pangaeatech/get_compat_score 
Return compatibility score
 2022-02-28 18:10:37 +00:00
Michael Waddell
4a8756595b Allow fetch-metadata to run on a PR even if it has additional commits, as long as the 0th one was added by dependabot and is verified. 2022-02-26 13:40:40 -06:00
Michael Waddell
ba0ddd7fd8 disabling by default 2022-02-21 19:36:02 -06:00
Michael Waddell
dd76591256 Merge branch 'flag-security-alerts' into get_compat_score 2022-02-21 19:27:14 -06:00
Michael Waddell
6d854e50fd Merge branch 'main' into get_compat_score 2022-02-21 19:22:05 -06:00
Michael Waddell
b7b7f7f8a3 rebuilding index.js 2022-02-21 19:19:19 -06:00
Michael Waddell
cfcd55c7b9 Make new "get-alerts" functionality off by default 2022-02-21 19:09:53 -06:00
Michael Waddell
582a0e6a5f Merge branch 'main' into flag-security-alerts 2022-02-21 17:41:40 -06:00
Barry Gordon
91c778d976 Fix new Typescript rules 2022-02-21 20:22:22 +00:00
github-actions[bot]
54c7e6cb13 Merge pull request #155 from dependabot/dependabot/npm_and_yarn/actions/core-1.6.0 
Bump @actions/core from 1.4.0 to 1.6.0
 2022-02-21 20:09:30 +00:00
Barry Gordon
b54d201a0f Bump dist/ files 2022-02-21 20:06:08 +00:00
Barry Gordon
2b32e7f6a1 Bump dist/ files 2022-02-21 18:03:21 +00:00
Barry Gordon
20dbdf78a4 Update dist 2022-02-21 17:09:09 +00:00
Michael Waddell
a686f32e84 updating dist/index.js 2022-02-20 22:35:08 -06:00