You are viewing a plain text version of this content. The canonical link for it is here.

Posted to github@arrow.apache.org by "dependabot[bot] (via GitHub)" <gi...@apache.org> on 2023/02/26 20:00:21 UTC

[GitHub] [arrow-datafusion-python] dependabot[bot] opened a new pull request, #243: build(deps): bump actions/download-artifact from 2 to 3

dependabot[bot] opened a new pull request, #243:
URL: https://github.com/apache/arrow-datafusion-python/pull/243

   Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 2 to 3.
   <details>
   <summary>Release notes</summary>
   <p><em>Sourced from <a href="https://github.com/actions/download-artifact/releases">actions/download-artifact's releases</a>.</em></p>
   <blockquote>
   <h2>v3.0.0</h2>
   <h2>What's Changed</h2>
   <ul>
   <li>Update default runtime to node16 (<a href="https://github-redirect.dependabot.com/actions/download-artifact/pull/134">actions/download-artifact#134</a>)</li>
   <li>Update package-lock.json file version to 2 (<a href="https://github-redirect.dependabot.com/actions/download-artifact/pull/136">actions/download-artifact#136</a>)</li>
   </ul>
   <h3>Breaking Changes</h3>
   <p>With the update to Node 16, all scripts will now be run with Node 16 rather than Node 12.</p>
   <h2>v2.1.0 Download Artifact</h2>
   <ul>
   <li>Improved output &amp; logging</li>
   <li>Fixed issue where downloading all artifacts could cause display percentages to be over 100%</li>
   <li>Various small bug fixes &amp; improvements</li>
   </ul>
   <h2>v2.0.10</h2>
   <ul>
   <li>Retry on HTTP 500 responses from the service</li>
   </ul>
   <h2>v2.0.9</h2>
   <ul>
   <li>Fixes to proxy related issues</li>
   </ul>
   <h2>v2.0.8</h2>
   <ul>
   <li>Improvements to retryability if an error is encountered during artifact download</li>
   </ul>
   <h2>v2.0.7 download-artifact</h2>
   <ul>
   <li>Improved download retry-ability if a partial download is encountered</li>
   </ul>
   <h2>v2.0.6</h2>
   <p>Update actions/core NPM package that is used internally</p>
   <h2>v2.0.5</h2>
   <ul>
   <li>Add Third Party License Information</li>
   </ul>
   <h2>v2.0.4</h2>
   <ul>
   <li>Use the latest version of the <code>@actions/artifact</code> NPM package</li>
   </ul>
   <h2>v2.0.3</h2>
   <ul>
   <li>Misc improvements</li>
   </ul>
   <h2>v2.0.2</h2>
   <ul>
   <li>Support for tilde expansion</li>
   </ul>
   <h2>v2.0.1</h2>
   <ul>
   <li>Download path output</li>
   <li>Improved logging</li>
   </ul>
   </blockquote>
   </details>
   <details>
   <summary>Commits</summary>
   <ul>
   <li><a href="https://github.com/actions/download-artifact/commit/9bc31d5ccc31df68ecc42ccf4149144866c47d8a"><code>9bc31d5</code></a> Update to latest actions/artifact NPM package (<a href="https://github-redirect.dependabot.com/actions/download-artifact/issues/195">#195</a>)</li>
   <li><a href="https://github.com/actions/download-artifact/commit/d2278a10efbd646909370fd49fb454cb04e368e3"><code>d2278a1</code></a> Update release-new-action-version.yml (<a href="https://github-redirect.dependabot.com/actions/download-artifact/issues/196">#196</a>)</li>
   <li><a href="https://github.com/actions/download-artifact/commit/c1a6d8f06a2e68a3b8f869512742db4750e492bd"><code>c1a6d8f</code></a> Update codeql-analysis.yml (<a href="https://github-redirect.dependabot.com/actions/download-artifact/issues/197">#197</a>)</li>
   <li><a href="https://github.com/actions/download-artifact/commit/9782bd6a9848b53b110e712e20e42d89988822b7"><code>9782bd6</code></a> Update <code>@actions/core</code> to 1.10.0 (<a href="https://github-redirect.dependabot.com/actions/download-artifact/issues/178">#178</a>)</li>
   <li><a href="https://github.com/actions/download-artifact/commit/076f0f7dd036d87e8e04f5f00d614e790308961b"><code>076f0f7</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/actions/download-artifact/issues/156">#156</a> from actions/dependabot/npm_and_yarn/ansi-regex-4.1.1</li>
   <li><a href="https://github.com/actions/download-artifact/commit/7151be32215ef355cb7fe2aea5a54c10fd02172d"><code>7151be3</code></a> Bump ansi-regex from 4.1.0 to 4.1.1</li>
   <li><a href="https://github.com/actions/download-artifact/commit/51cbdc41c19b18c53d3d78c72b50536e5abb89ce"><code>51cbdc4</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/actions/download-artifact/issues/152">#152</a> from actions/dependabot/npm_and_yarn/minimist-1.2.6</li>
   <li><a href="https://github.com/actions/download-artifact/commit/e89a529079d575da1409e3cd6ff98eb88d707721"><code>e89a529</code></a> Bump minimist from 1.2.5 to 1.2.6</li>
   <li><a href="https://github.com/actions/download-artifact/commit/fb598a63ae348fa914e94cd0ff38f362e927b741"><code>fb598a6</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/actions/download-artifact/issues/136">#136</a> from actions/jtamsut/update-lockfile-version</li>
   <li><a href="https://github.com/actions/download-artifact/commit/a4a09c5d7eb5932e0e6c4e77a434738189a24f1b"><code>a4a09c5</code></a> regenerate index.js</li>
   <li>Additional commits viewable in <a href="https://github.com/actions/download-artifact/compare/v2...v3">compare view</a></li>
   </ul>
   </details>
   <br />
   
   
   [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/download-artifact&package-manager=github_actions&previous-version=2&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
   
   Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
   
   [//]: # (dependabot-automerge-start)
   [//]: # (dependabot-automerge-end)
   
   ---
   
   <details>
   <summary>Dependabot commands and options</summary>
   <br />
   
   You can trigger Dependabot actions by commenting on this PR:
   - `@dependabot rebase` will rebase this PR
   - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
   - `@dependabot merge` will merge this PR after your CI passes on it
   - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
   - `@dependabot cancel merge` will cancel a previously requested merge and block automerging
   - `@dependabot reopen` will reopen this PR if it is closed
   - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
   - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
   - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
   - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
   
   
   </details>


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: github-unsubscribe@arrow.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [arrow-datafusion-python] andygrove merged pull request #243: build(deps): bump actions/download-artifact from 2 to 3

Posted by "andygrove (via GitHub)" <gi...@apache.org>.

andygrove merged PR #243:
URL: https://github.com/apache/arrow-datafusion-python/pull/243


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: github-unsubscribe@arrow.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org