build(deps): bump the github-actions group across 1 directory with 5 updates by dependabot[bot] · Pull Request #185 · Th0rgal/SafeLens

dependabot · 2026-03-16T05:28:59Z

Bumps the github-actions group with 5 updates in the / directory:

Package	From	To
oven-sh/setup-bun	`2.1.2`	`2.2.0`
Swatinem/rust-cache	`2.8.2`	`2.9.1`
tauri-apps/tauri-action	`0.6.1`	`0.6.2`
actions/download-artifact	`8.0.0`	`8.0.1`
softprops/action-gh-release	`2.5.0`	`2.6.1`

Updates oven-sh/setup-bun from 2.1.2 to 2.2.0

Release notes

Sourced from oven-sh/setup-bun's releases.

v2.2.0

oven-sh/setup-bun is the github action for setting up Bun.

What's Changed

build: update action runtime to Node.js 24 by @adam0white in oven-sh/setup-bun#176

ci: use actions/checkout@v6.0.2 in the test workflow by @tcely in oven-sh/setup-bun#173

ci: update actions for the autofix.ci workflow by @tcely in oven-sh/setup-bun#174

ci: update actions for the Release new action version workflow by @tcely in oven-sh/setup-bun#175

release: v2.2.0 by @xhyrom in oven-sh/setup-bun#177

New Contributors

@adam0white made their first contribution in oven-sh/setup-bun#176

@tcely made their first contribution in oven-sh/setup-bun#173

Full Changelog: oven-sh/setup-bun@v2...v2.2.0

v2.1.3

oven-sh/setup-bun is the github action for setting up Bun.

What's Changed

perf: avoid unnecessary api calls by @xhyrom in oven-sh/setup-bun#161

feat: add bun- prefix to cache keys by @maschwenk in oven-sh/setup-bun#160

fix: use native Windows ARM64 binary for Bun >= 1.3.10 by @oddrationale in oven-sh/setup-bun#165

feat: add AVX2 support detection for x64 Linux systems by @GoForceX in oven-sh/setup-bun#167

fix: validate cached binary version matches requested version (#146) by @wyMinLwin in oven-sh/setup-bun#169

release: v2.1.3 by @xhyrom in oven-sh/setup-bun#170

New Contributors

@oddrationale made their first contribution in oven-sh/setup-bun#165

@GoForceX made their first contribution in oven-sh/setup-bun#167

@wyMinLwin made their first contribution in oven-sh/setup-bun#169

Full Changelog: oven-sh/setup-bun@v2...v2.1.3

Commits

0c5077e release: v2.2.0 (#177)
1255e43 ci: update actions for the Release new action version workflow (#175)
61861d1 ci: update actions for the autofix.ci workflow (#174)
6f5bd06 ci: use actions/checkout@v6.0.2 in the test workflow (#173)
e391475 build: update action runtime to Node.js 24 (#176)
ecf28dd release: v2.1.3 (#170)
95edc15 fix: validate cached binary version matches requested version (#146) (#169)
4c32875 feat: add AVX2 support detection for x64 Linux systems (#167)
0ff83bf fix: use native Windows ARM64 binary for Bun >= 1.3.10 (#165)
ab8cb4e feat: add bun- prefix to cache keys (#160)
Additional commits viewable in compare view

Updates Swatinem/rust-cache from 2.8.2 to 2.9.1

Release notes

Sourced from Swatinem/rust-cache's releases.

v2.9.1

Fix regression in hash calculation

Full Changelog: Swatinem/rust-cache@v2.9.0...v2.9.1

v2.9.0

What's Changed

Add support for running rust-cache commands from within a Nix shell by @marc0246 in Swatinem/rust-cache#290

Bump taiki-e/install-action from 2.62.57 to 2.62.60 in the actions group by @dependabot[bot] in Swatinem/rust-cache#291

Bump the actions group across 1 directory with 5 updates by @dependabot[bot] in Swatinem/rust-cache#296

Bump the prd-major group with 3 updates by @dependabot[bot] in Swatinem/rust-cache#294

Bump @types/node from 24.10.1 to 25.0.2 in the dev-major group by @dependabot[bot] in Swatinem/rust-cache#295

Consider all installed toolchains in cache key by @tamird in Swatinem/rust-cache#293

Compare case-insenitively for full cache key match by @kbriggs in Swatinem/rust-cache#303

Migrate to node24 runner by @rhysd in Swatinem/rust-cache#314

Bump the actions group across 1 directory with 7 updates by @dependabot[bot] in Swatinem/rust-cache#312

Bump the prd-minor group across 1 directory with 2 updates by @dependabot[bot] in Swatinem/rust-cache#307

Bump @types/node from 25.0.2 to 25.2.2 in the dev-minor group by @dependabot[bot] in Swatinem/rust-cache#309

New Contributors

@marc0246 made their first contribution in Swatinem/rust-cache#290

@tamird made their first contribution in Swatinem/rust-cache#293

@kbriggs made their first contribution in Swatinem/rust-cache#303

Full Changelog: Swatinem/rust-cache@v2.8.2...v2.9.0

Changelog

Sourced from Swatinem/rust-cache's changelog.

Changelog

2.9.1

Fix regression in hash calculation

2.9.0

Update to node24

Support running from within a nix shell

Consider all installed toolchains for cache key

Use case-insensitive comparison to determine exact cache hit

2.8.2

Don't overwrite env for cargo-metadata call

2.8.1

Set empty CARGO_ENCODED_RUSTFLAGS when retrieving metadata

Various dependency updates

2.8.0

Add support for warpbuild cache provider

Add new cache-workspace-crates feature

2.7.8

Include CPU arch in the cache key

2.7.7

Also cache cargo install metadata

2.7.6

Allow opting out of caching $CARGO_HOME/bin

Add runner OS in cache key

Adds an option to do lookup-only of the cache

2.7.5

Support Cargo.lock format cargo-lock v4

Only run macOsWorkaround() on macOS

2.7.3

Work around upstream problem that causes cache saving to hang for minutes.

... (truncated)

Commits

c193711 2.9.1
781e8d9 try reverting pipeline change
3d1fa46 add changelog
c676846 2.9.0
bf71d02 bump dependencies and rebuild
8a02ed5 Bump @types/node from 25.0.2 to 25.2.2 in the dev-minor group (#309)
390157d Bump the prd-minor group across 1 directory with 2 updates (#307)
68500c1 Bump the actions group across 1 directory with 7 updates (#312)
1a83841 Migrate to node24 runner (#314)
11da852 Compare case-insenitively for full cache key match (#303)
Additional commits viewable in compare view

Updates tauri-apps/tauri-action from 0.6.1 to 0.6.2

Release notes

Sourced from tauri-apps/tauri-action's releases.

action v0.6.2

[0.6.2]

73e111f (#1288) The action can now detect the workspace root correctly if the tauri project is configured as the cargo workspace root.

Commits

84b9d35 Apply Version Updates From Current Changes (#1291)
73e111f fix: check if tauri project is workspace root first (#1288)
See full diff in compare view

Updates actions/download-artifact from 8.0.0 to 8.0.1

Release notes

Sourced from actions/download-artifact's releases.

v8.0.1

What's Changed

Support for CJK characters in the artifact name by @danwkennedy in actions/download-artifact#471

Add a regression test for artifact name + content-type mismatches by @danwkennedy in actions/download-artifact#472

Full Changelog: actions/download-artifact@v8...v8.0.1

Commits

3e5f45b Add regression tests for CJK characters (#471)
e6d03f6 Add a regression test for artifact name + content-type mismatches (#472)
See full diff in compare view

Updates softprops/action-gh-release from 2.5.0 to 2.6.1

Release notes

Sourced from softprops/action-gh-release's releases.

v2.6.1

2.6.1 is a patch release focused on restoring linked discussion thread creation when discussion_category_name is set. It fixes [#764](https://github.com/softprops/action-gh-release/issues/764), where the draft-first publish flow stopped carrying the discussion category through the final publish step.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

Bug fixes 🐛

fix: preserve discussion category on publish by @chenrui333 in softprops/action-gh-release#765

v2.6.0

2.6.0 is a minor release centered on previous_tag support for generate_release_notes, which lets workflows pin GitHub's comparison base explicitly instead of relying on the default range. It also includes the recent concurrent asset upload recovery fix, a working_directory docs sync, a checked-bundle freshness guard for maintainers, and clearer immutable-prerelease guidance where GitHub platform behavior imposes constraints on how prerelease asset uploads can be published.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

Exciting New Features 🎉

feat: support previous_tag for generate_release_notes by @pocesar in softprops/action-gh-release#372

Bug fixes 🐛

fix: recover concurrent asset metadata 404s by @chenrui333 in softprops/action-gh-release#760

Other Changes 🔄

docs: clarify reused draft release behavior by @chenrui333 in softprops/action-gh-release#759

docs: clarify working_directory input by @chenrui333 in softprops/action-gh-release#761

ci: verify dist bundle freshness by @chenrui333 in softprops/action-gh-release#762

fix: clarify immutable prerelease uploads by @chenrui333 in softprops/action-gh-release#763

v2.5.3

2.5.3 is a patch release focused on the remaining path-handling and release-selection bugs uncovered after 2.5.2. It fixes [#639](https://github.com/softprops/action-gh-release/issues/639), [#571](https://github.com/softprops/action-gh-release/issues/571), [#280](https://github.com/softprops/action-gh-release/issues/280), [#614](https://github.com/softprops/action-gh-release/issues/614), [#311](https://github.com/softprops/action-gh-release/issues/311), [#403](https://github.com/softprops/action-gh-release/issues/403), and [#368](https://github.com/softprops/action-gh-release/issues/368). It also adds documentation clarifications for [#541](https://github.com/softprops/action-gh-release/issues/541), [#645](https://github.com/softprops/action-gh-release/issues/645), [#542](https://github.com/softprops/action-gh-release/issues/542), [#393](https://github.com/softprops/action-gh-release/issues/393), and [#411](https://github.com/softprops/action-gh-release/issues/411), where the current behavior is either usage-sensitive or constrained by GitHub platform limits rather than an action-side runtime bug.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

... (truncated)

Changelog

Sourced from softprops/action-gh-release's changelog.

2.6.1

2.6.1 is a patch release focused on restoring linked discussion thread creation when discussion_category_name is set. It fixes [#764](https://github.com/softprops/action-gh-release/issues/764), where the draft-first publish flow stopped carrying the discussion category through the final publish step.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

Bug fixes 🐛

fix: preserve discussion category on publish by @chenrui333 in softprops/action-gh-release#765

2.6.0

2.6.0 is a minor release centered on previous_tag support for generate_release_notes, which lets workflows pin GitHub's comparison base explicitly instead of relying on the default range. It also includes the recent concurrent asset upload recovery fix, a working_directory docs sync, a checked-bundle freshness guard for maintainers, and clearer immutable-prerelease guidance where GitHub platform behavior imposes constraints on how prerelease asset uploads can be published.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

Exciting New Features 🎉

feat: support previous_tag for generate_release_notes by @pocesar in softprops/action-gh-release#372

Bug fixes 🐛

fix: recover concurrent asset metadata 404s by @chenrui333 in softprops/action-gh-release#760

Other Changes 🔄

docs: clarify reused draft release behavior by @chenrui333 in softprops/action-gh-release#759

docs: clarify working_directory input by @chenrui333 in softprops/action-gh-release#761

ci: verify dist bundle freshness by @chenrui333 in softprops/action-gh-release#762

fix: clarify immutable prerelease uploads by @chenrui333 in softprops/action-gh-release#763

2.5.3

2.5.3 is a patch release focused on the remaining path-handling and release-selection bugs uncovered after 2.5.2. It fixes [#639](https://github.com/softprops/action-gh-release/issues/639), [#571](https://github.com/softprops/action-gh-release/issues/571), [#280](https://github.com/softprops/action-gh-release/issues/280), [#614](https://github.com/softprops/action-gh-release/issues/614), [#311](https://github.com/softprops/action-gh-release/issues/311), [#403](https://github.com/softprops/action-gh-release/issues/403), and [#368](https://github.com/softprops/action-gh-release/issues/368). It also adds documentation clarifications for [#541](https://github.com/softprops/action-gh-release/issues/541), [#645](https://github.com/softprops/action-gh-release/issues/645), [#542](https://github.com/softprops/action-gh-release/issues/542), [#393](https://github.com/softprops/action-gh-release/issues/393), and [#411](https://github.com/softprops/action-gh-release/issues/411), where the current behavior is either usage-sensitive or constrained by GitHub platform limits rather than an action-side runtime bug.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

... (truncated)

Commits

153bb8e release 2.6.1
569deb8 fix: preserve discussion category when publishing releases (#765)
26e8ad2 release 2.6.0
b959f31 fix: clarify immutable prerelease uploads (#763)
8a8510e ci: verify dist bundle freshness (#762)
438c15d docs: clarify working_directory input (#761)
6ca3b5d fix: recover concurrent asset metadata 404s (#760)
11f9176 chore: add RELEASE.md
1f3f350 feat: add AGENTS.md
37819cb docs: clarify reused draft release behavior (#759)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…updates Bumps the github-actions group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [oven-sh/setup-bun](https://github.com/oven-sh/setup-bun) | `2.1.2` | `2.2.0` | | [Swatinem/rust-cache](https://github.com/swatinem/rust-cache) | `2.8.2` | `2.9.1` | | [tauri-apps/tauri-action](https://github.com/tauri-apps/tauri-action) | `0.6.1` | `0.6.2` | | [actions/download-artifact](https://github.com/actions/download-artifact) | `8.0.0` | `8.0.1` | | [softprops/action-gh-release](https://github.com/softprops/action-gh-release) | `2.5.0` | `2.6.1` | Updates `oven-sh/setup-bun` from 2.1.2 to 2.2.0 - [Release notes](https://github.com/oven-sh/setup-bun/releases) - [Commits](oven-sh/setup-bun@3d26778...0c5077e) Updates `Swatinem/rust-cache` from 2.8.2 to 2.9.1 - [Release notes](https://github.com/swatinem/rust-cache/releases) - [Changelog](https://github.com/Swatinem/rust-cache/blob/master/CHANGELOG.md) - [Commits](Swatinem/rust-cache@779680d...c193711) Updates `tauri-apps/tauri-action` from 0.6.1 to 0.6.2 - [Release notes](https://github.com/tauri-apps/tauri-action/releases) - [Changelog](https://github.com/tauri-apps/tauri-action/blob/dev/CHANGELOG.md) - [Commits](tauri-apps/tauri-action@73fb865...84b9d35) Updates `actions/download-artifact` from 8.0.0 to 8.0.1 - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@70fc10c...3e5f45b) Updates `softprops/action-gh-release` from 2.5.0 to 2.6.1 - [Release notes](https://github.com/softprops/action-gh-release/releases) - [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md) - [Commits](softprops/action-gh-release@a06a81a...153bb8e) --- updated-dependencies: - dependency-name: oven-sh/setup-bun dependency-version: 2.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: Swatinem/rust-cache dependency-version: 2.9.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: tauri-apps/tauri-action dependency-version: 0.6.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: actions/download-artifact dependency-version: 8.0.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: softprops/action-gh-release dependency-version: 2.6.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2026-03-16T05:29:00Z

Labels

The following labels could not be found: dependencies, github-actions. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

vercel · 2026-03-16T05:29:02Z

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
safe-lens-generator	Ready	Preview, Comment	Mar 16, 2026 5:29am

vercel bot deployed to Preview March 16, 2026 05:29 View deployment

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the github-actions group across 1 directory with 5 updates#185

build(deps): bump the github-actions group across 1 directory with 5 updates#185
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/github-actions-e105f020e4

dependabot bot commented on behalf of github Mar 16, 2026

Uh oh!

dependabot bot commented on behalf of github Mar 16, 2026

Uh oh!

vercel bot commented Mar 16, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Mar 16, 2026

v2.2.0

What's Changed

New Contributors

v2.1.3

What's Changed

New Contributors

v2.9.1

v2.9.0

What's Changed

New Contributors

Changelog

2.9.1

2.9.0

2.8.2

2.8.1

2.8.0

2.7.8

2.7.7

2.7.6

2.7.5

2.7.3

action v0.6.2

[0.6.2]

v8.0.1

What's Changed

v2.6.1

What's Changed

Bug fixes 🐛

v2.6.0

What's Changed

Exciting New Features 🎉

Bug fixes 🐛

Other Changes 🔄

v2.5.3

What's Changed

2.6.1

What's Changed

Bug fixes 🐛

2.6.0

What's Changed

Exciting New Features 🎉

Bug fixes 🐛

Other Changes 🔄

2.5.3

Uh oh!

dependabot bot commented on behalf of github Mar 16, 2026

Labels

Uh oh!

vercel bot commented Mar 16, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

vercel bot commented Mar 16, 2026 •

edited

Loading