| commit | e66de800e245561108cef75a99214a38af18e872 | [log] [tgz] |
|---|---|---|
| author | dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> | Mon Oct 18 09:05:05 2021 -0700 |
| committer | Google Java Core Libraries <java-libraries-firehose+copybara@google.com> | Mon Oct 18 09:05:36 2021 -0700 |
| tree | 3e2cd15c59a51fb8b6d6f66aa5e8d17a8fbaebf5 | |
| parent | 80d19bd441187e3a9f7b65272d2f10b7858a3d7a [diff] |
Bump actions/checkout from 2.3.4 to 2.3.5 Bumps [actions/checkout](https://github.com/actions/checkout) from 2.3.4 to 2.3.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p> <blockquote> <h2>v2.3.5</h2> <p>Update dependencies</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/checkout/commit/1e204e9a9253d643386038d443f96446fa156a97"><code>1e204e9</code></a> update licensed check (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/606">#606</a>)</li> <li><a href="https://github.com/actions/checkout/commit/0299a0d2b67d48224ce047d03c69693b37fe77fe"><code>0299a0d</code></a> update dist (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/605">#605</a>)</li> <li><a href="https://github.com/actions/checkout/commit/be0f44845645e415725af198163a96fea9e54334"><code>be0f448</code></a> Bump ws from 5.2.2 to 5.2.3 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/604">#604</a>)</li> <li><a href="https://github.com/actions/checkout/commit/56c00a7b1f53d3094df328ad4c2cd2b2d385c569"><code>56c00a7</code></a> Bump tmpl from 1.0.4 to 1.0.5 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/588">#588</a>)</li> <li><a href="https://github.com/actions/checkout/commit/85e47d1a2bef5be8023f6dce02e0e8451938924f"><code>85e47d1</code></a> Bump path-parse from 1.0.6 to 1.0.7 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/568">#568</a>)</li> <li><a href="https://github.com/actions/checkout/commit/3fc17f8645e9648158a6d23b033ab5f62df29f3c"><code>3fc17f8</code></a> Bump hosted-git-info from 2.8.5 to 2.8.9 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/500">#500</a>)</li> <li><a href="https://github.com/actions/checkout/commit/e3bc06d98631ce7e0e3db6bd158fafe028709e9f"><code>e3bc06d</code></a> Bump lodash from 4.17.15 to 4.17.21 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/499">#499</a>)</li> <li><a href="https://github.com/actions/checkout/commit/442567ba5761652b13c5c842a2f959ac9da6be57"><code>442567b</code></a> Bump handlebars from 4.5.3 to 4.7.7 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/497">#497</a>)</li> <li><a href="https://github.com/actions/checkout/commit/7f00b66d06eed909da8e56729955e53d186d95ed"><code>7f00b66</code></a> Bump y18n from 4.0.0 to 4.0.1 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/469">#469</a>)</li> <li><a href="https://github.com/actions/checkout/commit/eccf386318b560bdd401913a9fe3cca56dc369d6"><code>eccf386</code></a> Bump <code>@​actions/core</code> from 1.1.3 to 1.2.6 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/361">#361</a>)</li> <li>Additional commits viewable in <a href="https://github.com/actions/checkout/compare/v2.3.4...v2.3.5">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Fixes #1180 COPYBARA_INTEGRATE_REVIEW=https://github.com/google/auto/pull/1180 from google:dependabot/github_actions/actions/checkout-2.3.5 dfbbde575a17db800e0a9e1c6119628e7586fe62 PiperOrigin-RevId: 403975324
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 11c5e86..12fddc4 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml
@@ -22,7 +22,7 @@ with: access_token: ${{ github.token }} - name: 'Check out repository' - uses: actions/checkout@v2.3.4 + uses: actions/checkout@v2.3.5 - name: 'Cache local Maven repository' uses: actions/cache@v2.1.6 with: @@ -49,7 +49,7 @@ runs-on: ubuntu-latest steps: - name: 'Check out repository' - uses: actions/checkout@v2.3.4 + uses: actions/checkout@v2.3.5 - name: 'Cache local Maven repository' uses: actions/cache@v2.1.6 with: @@ -78,7 +78,7 @@ runs-on: ubuntu-latest steps: - name: 'Check out repository' - uses: actions/checkout@v2.3.4 + uses: actions/checkout@v2.3.5 - name: 'Cache local Maven repository' uses: actions/cache@v2.1.6 with: