From 836fe2fdbd64160d0e2a3d62621e2c7004753297 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 31 Oct 2024 13:02:28 +0000 Subject: [PATCH 1/3] build(deps): Bump hynek/build-and-inspect-python-package Bumps [hynek/build-and-inspect-python-package](https://github.com/hynek/build-and-inspect-python-package) from 2.9.0 to 2.10.0. - [Release notes](https://github.com/hynek/build-and-inspect-python-package/releases) - [Changelog](https://github.com/hynek/build-and-inspect-python-package/blob/main/CHANGELOG.md) - [Commits](https://github.com/hynek/build-and-inspect-python-package/compare/73aea398b9c8de9ea9e4464c6b13cb8b1f3d6294...f01e4d047aadcc0c054c95ec9900da3ec3fc7a0f) --- updated-dependencies: - dependency-name: hynek/build-and-inspect-python-package dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/pypi.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/pypi.yaml b/.github/workflows/pypi.yaml index 627588b3..2b8f85ca 100644 --- a/.github/workflows/pypi.yaml +++ b/.github/workflows/pypi.yaml @@ -48,7 +48,7 @@ jobs: fetch-depth: 0 - name: "Build and Inspect" - uses: hynek/build-and-inspect-python-package@73aea398b9c8de9ea9e4464c6b13cb8b1f3d6294 # v2.9.0 + uses: hynek/build-and-inspect-python-package@f01e4d047aadcc0c054c95ec9900da3ec3fc7a0f # v2.10.0 # push to Test PyPI on # - a new GitHub release is published From a6602f99f5fe30bfd34dc9ce7cf03db924b2d38d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 31 Oct 2024 13:02:32 +0000 Subject: [PATCH 2/3] build(deps): Bump machulav/ec2-github-runner from 2.3.6 to 2.3.7 Bumps [machulav/ec2-github-runner](https://github.com/machulav/ec2-github-runner) from 2.3.6 to 2.3.7. - [Release notes](https://github.com/machulav/ec2-github-runner/releases) - [Commits](https://github.com/machulav/ec2-github-runner/compare/fcfb31a5760dad1314a64a0e172b78ec6fc8a17e...1827d6ca7544d7044ddbd2e9360564651b463da2) --- updated-dependencies: - dependency-name: machulav/ec2-github-runner dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- .github/workflows/e2e-nvidia-l4-x1.yml | 4 ++-- .github/workflows/e2e-nvidia-l40s-x4.yml | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/e2e-nvidia-l4-x1.yml b/.github/workflows/e2e-nvidia-l4-x1.yml index fc701989..16574190 100644 --- a/.github/workflows/e2e-nvidia-l4-x1.yml +++ b/.github/workflows/e2e-nvidia-l4-x1.yml @@ -50,7 +50,7 @@ jobs: - name: Start EC2 runner id: start-ec2-runner - uses: machulav/ec2-github-runner@fcfb31a5760dad1314a64a0e172b78ec6fc8a17e # v2.3.6 + uses: machulav/ec2-github-runner@1827d6ca7544d7044ddbd2e9360564651b463da2 # v2.3.7 with: mode: start github-token: ${{ secrets.GH_PERSONAL_ACCESS_TOKEN }} @@ -158,7 +158,7 @@ jobs: aws-region: ${{ secrets.AWS_REGION }} - name: Stop EC2 runner - uses: machulav/ec2-github-runner@fcfb31a5760dad1314a64a0e172b78ec6fc8a17e # v2.3.6 + uses: machulav/ec2-github-runner@1827d6ca7544d7044ddbd2e9360564651b463da2 # v2.3.7 with: mode: stop github-token: ${{ secrets.GH_PERSONAL_ACCESS_TOKEN }} diff --git a/.github/workflows/e2e-nvidia-l40s-x4.yml b/.github/workflows/e2e-nvidia-l40s-x4.yml index c1f8a7f9..27290c30 100644 --- a/.github/workflows/e2e-nvidia-l40s-x4.yml +++ b/.github/workflows/e2e-nvidia-l40s-x4.yml @@ -28,7 +28,7 @@ jobs: - name: Start EC2 runner id: start-ec2-runner - uses: machulav/ec2-github-runner@fcfb31a5760dad1314a64a0e172b78ec6fc8a17e # v2.3.6 + uses: machulav/ec2-github-runner@1827d6ca7544d7044ddbd2e9360564651b463da2 # v2.3.7 with: mode: start github-token: ${{ secrets.GH_PERSONAL_ACCESS_TOKEN }} @@ -229,7 +229,7 @@ jobs: aws-region: ${{ secrets.AWS_REGION }} - name: Stop EC2 runner - uses: machulav/ec2-github-runner@fcfb31a5760dad1314a64a0e172b78ec6fc8a17e # v2.3.6 + uses: machulav/ec2-github-runner@1827d6ca7544d7044ddbd2e9360564651b463da2 # v2.3.7 with: mode: stop github-token: ${{ secrets.GH_PERSONAL_ACCESS_TOKEN }} From 8147095108674ec2ebe9864b98165fa1f83cdd4b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 4 Nov 2024 12:30:43 +0000 Subject: [PATCH 3/3] build(deps): Bump rhysd/actionlint in /.github/workflows Bumps rhysd/actionlint from 1.7.3 to 1.7.4. --- updated-dependencies: - dependency-name: rhysd/actionlint dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- .github/workflows/actionlint.dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/actionlint.dockerfile b/.github/workflows/actionlint.dockerfile index 6f171d53..9de2e84a 100644 --- a/.github/workflows/actionlint.dockerfile +++ b/.github/workflows/actionlint.dockerfile @@ -1,3 +1,3 @@ # Since dependabot cannot update workflows using docker, # we use this indirection since dependabot can update this file. -FROM rhysd/actionlint:1.7.3@sha256:7617f05bd698cd2f1c3aedc05bc733ccec92cca0738f3e8722c32c5b42c70ae6 +FROM rhysd/actionlint:1.7.4@sha256:82244e1db1c60d82c7792180a48dd0bcb838370bb589d53ff132503fc9485868