Skip to content

chore(deps): bump the minor group across 1 directory with 6 updates#1336

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/minor-c1d1920479
Open

chore(deps): bump the minor group across 1 directory with 6 updates#1336
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/minor-c1d1920479

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 25, 2026

Bumps the minor group with 6 updates in the / directory:

Package From To
actions-rust-lang/setup-rust-toolchain 1.15.2 1.16.1
Swatinem/rust-cache 2.8.1 2.9.1
EmbarkStudios/cargo-deny-action 2.0.13 2.0.19
docker/login-action 4.1.0 4.2.0
kyverno/action-install-chainsaw 0.2.14 0.2.15
actions/create-github-app-token 3.0.0 3.2.0

Updates actions-rust-lang/setup-rust-toolchain from 1.15.2 to 1.16.1

Release notes

Sourced from actions-rust-lang/setup-rust-toolchain's releases.

v1.16.1

What's Changed

Full Changelog: actions-rust-lang/setup-rust-toolchain@v1.16.0...v1.16.1

v1.16.0

What's Changed

New Contributors

Full Changelog: actions-rust-lang/setup-rust-toolchain@v1.15.4...v1.16.0

v1.15.4

What's Changed

New Contributors

Full Changelog: actions-rust-lang/setup-rust-toolchain@v1.15.3...v1.15.4

v1.15.3

What's Changed

New Contributors

Full Changelog: actions-rust-lang/setup-rust-toolchain@v1.15.2...v1.15.3

Changelog

Sourced from actions-rust-lang/setup-rust-toolchain's changelog.

[1.16.1] - 2026-05-08

  • Renamed internally used variable to avoid clashes with globally existing variables. This fixes the interference of the TOOLCHAIN variable as reported in #91.

[1.16.0] - 2026-04-13

  • Add new parameter cache-save-if that is propagated to Swatinem/rust-cache as save-if (#90 by @​ChanTsune)

[1.15.4] - 2026-03-15

  • Bump Swatinem/rust-cache from 2.8.2 to 2.9.1 (#87 by @​hyperfinitism) This gets rid of the warnings about Node.js 20.

[1.15.3] - 2026-03-01

  • Bump Swatinem/rust-cache from 2.8.1 to 2.8.2

[1.15.2] - 2025-10-04

  • Fix: Run the version detection steps in the selected rust-src-dir directory. This should enable the version selection even without a default toolchain installed. Fixes #74.

[1.15.1] - 2025-09-23

  • Update Swatinem/rust-cache to v2.8.1

[1.15.0] - 2025-09-14

  • Add support for non-root source directory. Accept source code and rust-toolchain.toml file in subdirectories of the repository. Adds a new parameter rust-src-dir that controls the lookup for toolchain files and sets a default value for the cache-workspace input. (#69 by @​Kubaryt)

[1.14.1] - 2025-08-28

[1.14.0] - 2025-08-23

  • Add new parameters cache-all-crates and cache-workspace-crates that are propagated to Swatinem/rust-cache as cache-all-crates and cache-workspace-crates

[1.13.0] - 2025-06-16

  • Add new parameter cache-provider that is propagated to Swatinem/rust-cache as cache-provider (#65 by @​mindrunner)

[1.12.0] - 2025-04-23

  • Add support for installing rustup on Windows (#58 by @​maennchen) This adds support for using Rust on the GitHub provided Windows ARM runners.

... (truncated)

Commits
  • 46268bd Merge pull request #92 from actions-rust-lang/rename-local-variables
  • 826365c Update changelog
  • 4f937ac Rename local variables to avoid conflicts with global variables
  • 2b1f5e9 Update CHANGELOG for version 1.16.0
  • 9030f3d Merge pull request #90 from ChanTsune/feat/cache-save-if
  • 186b99e feat: add cache-save-if input to propagate save-if to Swatinem/rust-cache
  • d197c15 Merge pull request #88 from ryuapp/chore/update-chekcout-v6-on-readme
  • fa057b4 Update actions/checkout to v6 on README
  • 150fca8 Update CHANGELOG for version 1.15.4
  • aa63f57 Merge pull request #87 from hyperfinitism/deps/bump-rust-cache
  • Additional commits viewable in compare view

Updates Swatinem/rust-cache from 2.8.1 to 2.9.1

Release notes

Sourced from Swatinem/rust-cache's releases.

v2.9.1

Fix regression in hash calculation

Full Changelog: Swatinem/rust-cache@v2.9.0...v2.9.1

v2.9.0

What's Changed

New Contributors

Full Changelog: Swatinem/rust-cache@v2.8.2...v2.9.0

v2.8.2

What's Changed

New Contributors

Full Changelog: Swatinem/rust-cache@v2.8.1...v2.8.2

Changelog

Sourced from Swatinem/rust-cache's changelog.

2.9.1

  • Fix regression in hash calculation

2.9.0

  • Update to node24
  • Support running from within a nix shell
  • Consider all installed toolchains for cache key
  • Use case-insensitive comparison to determine exact cache hit

2.8.2

  • Don't overwrite env for cargo-metadata call

2.8.1

  • Set empty CARGO_ENCODED_RUSTFLAGS when retrieving metadata
  • Various dependency updates

2.8.0

  • Add support for warpbuild cache provider
  • Add new cache-workspace-crates feature

2.7.8

  • Include CPU arch in the cache key

2.7.7

  • Also cache cargo install metadata

2.7.6

  • Allow opting out of caching $CARGO_HOME/bin
  • Add runner OS in cache key
  • Adds an option to do lookup-only of the cache

2.7.5

  • Support Cargo.lock format cargo-lock v4
  • Only run macOsWorkaround() on macOS

2.7.3

  • Work around upstream problem that causes cache saving to hang for minutes.

2.7.2

... (truncated)

Commits

Updates EmbarkStudios/cargo-deny-action from 2.0.13 to 2.0.19

Commits

Updates docker/login-action from 4.1.0 to 4.2.0

Release notes

Sourced from docker/login-action's releases.

v4.2.0

Full Changelog: docker/login-action@v4.1.0...v4.2.0

Commits
  • 650006c Merge pull request #960 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...
  • 99df1a3 chore: update generated content
  • 3ab375f build(deps): bump the aws-sdk-dependencies group across 1 directory with 2 up...
  • 39d8580 Merge pull request #970 from docker/dependabot/npm_and_yarn/docker/actions-to...
  • 4eefcd3 chore: update generated content
  • 56d092c build(deps): bump @​docker/actions-toolkit from 0.86.0 to 0.90.0
  • e2e31ca Merge pull request #976 from docker/dependabot/npm_and_yarn/actions/core-3.0.1
  • 0bced94 chore: update generated content
  • 3e75a0f build(deps): bump @​actions/core from 3.0.0 to 3.0.1
  • 365bebd Merge pull request #984 from docker/dependabot/github_actions/aws-actions/con...
  • Additional commits viewable in compare view

Updates kyverno/action-install-chainsaw from 0.2.14 to 0.2.15

Release notes

Sourced from kyverno/action-install-chainsaw's releases.

v0.2.15

What's Changed

Full Changelog: kyverno/action-install-chainsaw@v0.2.14...v0.2.15

Commits
  • 1223ef7 chore: bump default version to v0.2.15 (#93)
  • 070bf1d chore(deps): Bump actions/checkout from 6.0.1 to 6.0.2 (#87)
  • e64c1d2 chore(deps): Bump sigstore/cosign-installer from 4.0.0 to 4.1.1 (#90)
  • 4d06435 chore(deps): Bump actions/setup-go from 6.1.0 to 6.4.0 (#91)
  • ba1960f fix: go version in ci (#92)
  • See full diff in compare view

Updates actions/create-github-app-token from 3.0.0 to 3.2.0

Release notes

Sourced from actions/create-github-app-token's releases.

v3.2.0

3.2.0 (2026-05-12)

Features

  • add support for enterprise-level GitHub Apps (#263) (952a2a7)
  • support full repository names in repositories input (#372) (85eb8dd)

Bug Fixes

  • deps: bump @​actions/core from 3.0.0 to 3.0.1 in the production-dependencies group (#364) (43e5c34)
  • validate private-key input (#376) (f24bbd8)

v3.1.1

3.1.1 (2026-04-11)

Bug Fixes

  • improve error message when app identifier is empty (#362) (07e2b76), closes #249

v3.1.0

3.1.0 (2026-04-11)

Bug Fixes

  • deps: bump p-retry from 7.1.1 to 8.0.0 (#357) (3bbe07d)

Features

Changelog

Sourced from actions/create-github-app-token's changelog.

3.2.0 (2026-05-12)

Features

  • add support for enterprise-level GitHub Apps (#263) (952a2a7)
  • support full repository names in repositories input (#372) (85eb8dd)

Bug Fixes

  • deps: bump @​actions/core from 3.0.0 to 3.0.1 in the production-dependencies group (#364) (43e5c34)
  • validate private-key input (#376) (f24bbd8)
Commits
  • bcd2ba4 chore(main): release 3.2.0 (#370)
  • f24bbd8 fix: validate private-key input (#376)
  • 363531b docs: capitalize Git as a proper noun in README (#374)
  • fd28011 docs: update procedure to configure Git (#287)
  • 85eb8dd feat: support full repository names in repositories input (#372)
  • c9aabb8 build(deps-dev): bump yaml from 2.8.3 to 2.8.4 in the development-dependencie...
  • e02e816 build(deps-dev): bump undici from 7.24.6 to 8.2.0 (#366)
  • 8d835bf build(deps-dev): bump esbuild from 0.27.4 to 0.28.0 in the development-depend...
  • 952a2a7 feat: add support for enterprise-level GitHub Apps (#263)
  • 43e5c34 fix(deps): bump @​actions/core from 3.0.0 to 3.0.1 in the production-dependenc...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the minor group across 1 directory with 6 updates
f415db6 
Bumps the minor group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions-rust-lang/setup-rust-toolchain](https://github.com/actions-rust-lang/setup-rust-toolchain) | `1.15.2` | `1.16.1` |
| [Swatinem/rust-cache](https://github.com/swatinem/rust-cache) | `2.8.1` | `2.9.1` |
| [EmbarkStudios/cargo-deny-action](https://github.com/embarkstudios/cargo-deny-action) | `2.0.13` | `2.0.19` |
| [docker/login-action](https://github.com/docker/login-action) | `4.1.0` | `4.2.0` |
| [kyverno/action-install-chainsaw](https://github.com/kyverno/action-install-chainsaw) | `0.2.14` | `0.2.15` |
| [actions/create-github-app-token](https://github.com/actions/create-github-app-token) | `3.0.0` | `3.2.0` |



Updates `actions-rust-lang/setup-rust-toolchain` from 1.15.2 to 1.16.1
- [Release notes](https://github.com/actions-rust-lang/setup-rust-toolchain/releases)
- [Changelog](https://github.com/actions-rust-lang/setup-rust-toolchain/blob/main/CHANGELOG.md)
- [Commits](actions-rust-lang/setup-rust-toolchain@v1.15.2...v1.16.1)

Updates `Swatinem/rust-cache` from 2.8.1 to 2.9.1
- [Release notes](https://github.com/swatinem/rust-cache/releases)
- [Changelog](https://github.com/Swatinem/rust-cache/blob/master/CHANGELOG.md)
- [Commits](Swatinem/rust-cache@v2.8.1...v2.9.1)

Updates `EmbarkStudios/cargo-deny-action` from 2.0.13 to 2.0.19
- [Release notes](https://github.com/embarkstudios/cargo-deny-action/releases)
- [Commits](EmbarkStudios/cargo-deny-action@v2.0.13...v2.0.19)

Updates `docker/login-action` from 4.1.0 to 4.2.0
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](docker/login-action@v4.1.0...v4.2.0)

Updates `kyverno/action-install-chainsaw` from 0.2.14 to 0.2.15
- [Release notes](https://github.com/kyverno/action-install-chainsaw/releases)
- [Commits](kyverno/action-install-chainsaw@v0.2.14...v0.2.15)

Updates `actions/create-github-app-token` from 3.0.0 to 3.2.0
- [Release notes](https://github.com/actions/create-github-app-token/releases)
- [Changelog](https://github.com/actions/create-github-app-token/blob/main/CHANGELOG.md)
- [Commits](actions/create-github-app-token@v3.0.0...v3.2.0)

---
updated-dependencies:
- dependency-name: actions-rust-lang/setup-rust-toolchain
  dependency-version: 1.16.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor
- dependency-name: Swatinem/rust-cache
  dependency-version: 2.9.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor
- dependency-name: EmbarkStudios/cargo-deny-action
  dependency-version: 2.0.19
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor
- dependency-name: docker/login-action
  dependency-version: 4.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor
- dependency-name: kyverno/action-install-chainsaw
  dependency-version: 0.2.15
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor
- dependency-name: actions/create-github-app-token
  dependency-version: 3.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels May 25, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants