chore(deps): Bump the minor-and-patch group across 1 directory with 3 updates by dependabot[bot] · Pull Request #1143 · anchore/vunnel

dependabot · 2026-04-20T22:58:02Z

Bumps the minor-and-patch group with 3 updates in the /.github/workflows directory: runs-on/action, actions/checkout and zizmorcore/zizmor-action.

Updates runs-on/action from 2.0.3 to 2.1.0

Release notes

Sourced from runs-on/action's releases.

v2.1.0

What's Changed

Test magic cache in container by @crohr in runs-on/action#13

Cost api URL change by @crohr in runs-on/action#18

🔧 Add volumeID to outputs by @afreyermuth98 in runs-on/action#20

Auto-start CloudWatch agent if not running by @crohr in runs-on/action#26

update for node24 by @cfsnate in runs-on/action#29

New Contributors

@afreyermuth98 made their first contribution in runs-on/action#20

@cfsnate made their first contribution in runs-on/action#29

Full Changelog: runs-on/action@v2.0.3...v2.1.0

Commits

742bf56 bump to v2.1.0
05a3cc7 update for node24
4bd75c6 Add test for stopped CloudWatch agent
32975ab dist: rebuild binaries
9506a40 Auto-start CloudWatch agent if not running
b1d0648 Revert "dist"
f8bcead Revert ":wrench: Add volumeID to outputs"
6e50b45 dist
edafe5d 🔧 Add volumeID to outputs
c0e79b0 fix
Additional commits viewable in compare view

Updates actions/checkout from 6.0.1 to 6.0.2

Release notes

Sourced from actions/checkout's releases.

v6.0.2

What's Changed

Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set by @TingluoHuang in actions/checkout#2355

Fix tag handling: preserve annotations and explicit fetch-tags by @ericsciple in actions/checkout#2356

Full Changelog: actions/checkout@v6.0.1...v6.0.2

Changelog

Sourced from actions/checkout's changelog.

Changelog

v6.0.2

Fix tag handling: preserve annotations and explicit fetch-tags by @ericsciple in actions/checkout#2356

v6.0.1

Add worktree support for persist-credentials includeIf by @ericsciple in actions/checkout#2327

v6.0.0

Persist creds to a separate file by @ericsciple in actions/checkout#2286

Update README to include Node.js 24 support details and requirements by @salmanmkc in actions/checkout#2248

v5.0.1

Port v6 cleanup to v5 by @ericsciple in actions/checkout#2301

v5.0.0

Update actions checkout to use node 24 by @salmanmkc in actions/checkout#2226

v4.3.1

Port v6 cleanup to v4 by @ericsciple in actions/checkout#2305

v4.3.0

docs: update README.md by @motss in actions/checkout#1971

Add internal repos for checking out multiple repositories by @mouismail in actions/checkout#1977

Documentation update - add recommended permissions to Readme by @benwells in actions/checkout#2043

Adjust positioning of user email note and permissions heading by @joshmgross in actions/checkout#2044

Update README.md by @nebuk89 in actions/checkout#2194

Update CODEOWNERS for actions by @TingluoHuang in actions/checkout#2224

Update package dependencies by @salmanmkc in actions/checkout#2236

v4.2.2

url-helper.ts now leverages well-known environment variables by @jww3 in actions/checkout#1941

Expand unit test coverage for isGhes by @jww3 in actions/checkout#1946

v4.2.1

Check out other refs/* by commit if provided, fall back to ref by @orhantoy in actions/checkout#1924

v4.2.0

Add Ref and Commit outputs by @lucacome in actions/checkout#1180

Dependency updates by @dependabot- actions/checkout#1777, actions/checkout#1872

v4.1.7

Bump the minor-npm-dependencies group across 1 directory with 4 updates by @dependabot in actions/checkout#1739

Bump actions/checkout from 3 to 4 by @dependabot in actions/checkout#1697

Check out other refs/* by commit by @orhantoy in actions/checkout#1774

Pin actions/checkout's own workflows to a known, good, stable version. by @jww3 in actions/checkout#1776

v4.1.6

Check platform to set archive extension appropriately by @cory-miller in actions/checkout#1732

... (truncated)

Commits

de0fac2 Fix tag handling: preserve annotations and explicit fetch-tags (#2356)
064fe7f Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...
See full diff in compare view

Updates zizmorcore/zizmor-action from 0.5.2 to 0.5.3

Release notes

Sourced from zizmorcore/zizmor-action's releases.

v0.5.3

What's Changed

1.24.0 and 1.24.1 are now available via the action

1.24.1 is now the default version of zizmor used by the action

Full Changelog: zizmorcore/zizmor-action@v0.5.2...v0.5.3

Commits

b1d7e1f Sync zizmor versions (#102)
a195b57 Sync zizmor versions (#100)
629d5d0 chore(deps): bump github/codeql-action in the github-actions group (#99)
453d591 chore(deps): bump the github-actions group with 2 updates (#98)
ea2c18b Bump pins (#97)
See full diff in compare view

… updates Bumps the minor-and-patch group with 3 updates in the /.github/workflows directory: [runs-on/action](https://github.com/runs-on/action), [actions/checkout](https://github.com/actions/checkout) and [zizmorcore/zizmor-action](https://github.com/zizmorcore/zizmor-action). Updates `runs-on/action` from 2.0.3 to 2.1.0 - [Release notes](https://github.com/runs-on/action/releases) - [Commits](runs-on/action@cd2b598...742bf56) Updates `actions/checkout` from 6.0.1 to 6.0.2 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v6.0.1...de0fac2) Updates `zizmorcore/zizmor-action` from 0.5.2 to 0.5.3 - [Release notes](https://github.com/zizmorcore/zizmor-action/releases) - [Commits](zizmorcore/zizmor-action@71321a2...b1d7e1f) --- updated-dependencies: - dependency-name: runs-on/action dependency-version: 2.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor-and-patch - dependency-name: actions/checkout dependency-version: 6.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch - dependency-name: zizmorcore/zizmor-action dependency-version: 0.5.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor-and-patch ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Apr 20, 2026

github-actions Bot approved these changes Apr 20, 2026

View reviewed changes

dependabot Bot force-pushed the dependabot/github_actions/dot-github/workflows/minor-and-patch-f067e47850 branch from ad8caed to 3c670c5 Compare April 21, 2026 21:24

github-actions Bot approved these changes Apr 21, 2026

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): Bump the minor-and-patch group across 1 directory with 3 updates#1143

chore(deps): Bump the minor-and-patch group across 1 directory with 3 updates#1143
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/dot-github/workflows/minor-and-patch-f067e47850

dependabot Bot commented on behalf of github Apr 20, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Apr 20, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v2.1.0

What's Changed

New Contributors

v6.0.2

What's Changed

Changelog

v6.0.2

v6.0.1

v6.0.0

v5.0.1

v5.0.0

v4.3.1

v4.3.0

v4.2.2

v4.2.1

v4.2.0

v4.1.7

v4.1.6

v0.5.3

What's Changed

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot Bot commented on behalf of github Apr 20, 2026 •

edited

Loading