From ffe20927ac0e7097918122c323fea8210710fcb2 Mon Sep 17 00:00:00 2001 From: Lorenz Vanthillo Date: Sat, 22 Mar 2025 20:31:46 +0100 Subject: [PATCH 01/22] feat(pfd): integrate with github automations --- .github/dependabot.yml | 32 +++++++++++ .github/workflows/auto-merge-dependabot.yml | 62 +++++++++++++++++++++ 2 files changed, 94 insertions(+) create mode 100644 .github/dependabot.yml create mode 100644 .github/workflows/auto-merge-dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 00000000..f51aac16 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,32 @@ +version: 2 +updates: + # Enable version updates for Python/pip + - package-ecosystem: "pip" + directory: "/" + schedule: + interval: "weekly" + open-pull-requests-limit: 10 + # Apply specific labels to pull requests + labels: + - "dependencies" + - "python" + + # Enable version updates for Docker + - package-ecosystem: "docker" + directory: "/" + schedule: + interval: "weekly" + open-pull-requests-limit: 10 + labels: + - "dependencies" + - "docker" + + # Keep GitHub Actions up to date + - package-ecosystem: "github-actions" + directory: "/" + schedule: + interval: "weekly" + open-pull-requests-limit: 10 + labels: + - "dependencies" + - "github-actions" \ No newline at end of file diff --git a/.github/workflows/auto-merge-dependabot.yml b/.github/workflows/auto-merge-dependabot.yml new file mode 100644 index 00000000..1225b2b6 --- /dev/null +++ b/.github/workflows/auto-merge-dependabot.yml @@ -0,0 +1,62 @@ +name: Auto-merge Dependabot PRs and Build Docker Image + +on: + pull_request: + branches: [ master ] + pull_request_target: + branches: [ master ] + +jobs: + auto-merge: + runs-on: ubuntu-latest + if: github.actor == 'dependabot[bot]' + permissions: + pull-requests: write + contents: write + steps: + - name: Checkout code + uses: actions/checkout@v4 + + - name: Dependabot metadata + id: metadata + uses: dependabot/fetch-metadata@v2 + with: + github-token: "${{ secrets.GITHUB_TOKEN }}" + + - name: Auto-merge minor and patch updates + if: steps.metadata.outputs.update-type == 'version-update:semver-minor' || steps.metadata.outputs.update-type == 'version-update:semver-patch' + run: gh pr merge --auto --merge "$PR_URL" + env: + PR_URL: ${{github.event.pull_request.html_url}} + GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} + + build-and-push: + needs: auto-merge + runs-on: ubuntu-latest + if: github.event.pull_request.merged == true && github.actor == 'dependabot[bot]' + + steps: + - name: Checkout code + uses: actions/checkout@v4 + with: + ref: main + + - name: Set up Docker Buildx + uses: docker/setup-buildx-action@v3 + + - name: Login to DockerHub + uses: docker/login-action@v3 + with: + username: ${{ secrets.DOCKERHUB_USERNAME }} + password: ${{ secrets.DOCKERHUB_TOKEN }} + + - name: Build and push Docker image + uses: docker/build-push-action@v5 + with: + push: true + context: . + tags: | + lvthillo/python-flask-docker:latest + lvthillo/python-flask-docker:${{ github.sha }} + cache-from: type=gha + cache-to: type=gha,mode=max \ No newline at end of file From 4c6abc5a0c3be1f1e39238276aae7088a9af756c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 22 Mar 2025 19:34:04 +0000 Subject: [PATCH 02/22] Bump python from 3.11-alpine to 3.13-alpine Bumps python from 3.11-alpine to 3.13-alpine. --- updated-dependencies: - dependency-name: python dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Dockerfile b/Dockerfile index 56ca36f6..f1753bad 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM python:3.11-alpine +FROM python:3.13-alpine LABEL maintainer="lorenz.vanthillo@gmail.com" COPY . /app WORKDIR /app From dd666032eb8476168b7e8ec423bb8a4a722269c3 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 22 Mar 2025 19:34:11 +0000 Subject: [PATCH 03/22] Bump flask from 2.3.2 to 3.1.0 Bumps [flask](https://github.com/pallets/flask) from 2.3.2 to 3.1.0. - [Release notes](https://github.com/pallets/flask/releases) - [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/flask/compare/2.3.2...3.1.0) --- updated-dependencies: - dependency-name: flask dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 19acec61..174be8ee 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1 +1 @@ -flask==2.3.2 \ No newline at end of file +flask==3.1.0 \ No newline at end of file From 686ec9a49777edd26d23b1744a8c3d2a2438a454 Mon Sep 17 00:00:00 2001 From: Lorenz Vanthillo Date: Sat, 22 Mar 2025 20:38:02 +0100 Subject: [PATCH 04/22] fix(pfd): master is main branch --- .github/workflows/auto-merge-dependabot.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/auto-merge-dependabot.yml b/.github/workflows/auto-merge-dependabot.yml index 1225b2b6..5a9cd556 100644 --- a/.github/workflows/auto-merge-dependabot.yml +++ b/.github/workflows/auto-merge-dependabot.yml @@ -39,7 +39,7 @@ jobs: - name: Checkout code uses: actions/checkout@v4 with: - ref: main + ref: master - name: Set up Docker Buildx uses: docker/setup-buildx-action@v3 From 3e31cbabfd1039adaf030b8306828a8ea1485bfa Mon Sep 17 00:00:00 2001 From: Lorenz Vanthillo Date: Sat, 22 Mar 2025 20:43:05 +0100 Subject: [PATCH 05/22] feat(pfd): switch to two workflows --- .github/workflows/auto-merge-dependabot.yml | 38 ++------------------- .github/workflows/build-docker-image.yml | 35 +++++++++++++++++++ 2 files changed, 38 insertions(+), 35 deletions(-) create mode 100644 .github/workflows/build-docker-image.yml diff --git a/.github/workflows/auto-merge-dependabot.yml b/.github/workflows/auto-merge-dependabot.yml index 5a9cd556..cd2226df 100644 --- a/.github/workflows/auto-merge-dependabot.yml +++ b/.github/workflows/auto-merge-dependabot.yml @@ -1,10 +1,9 @@ -name: Auto-merge Dependabot PRs and Build Docker Image +name: Auto-merge Dependabot PRs on: - pull_request: - branches: [ master ] pull_request_target: branches: [ master ] + types: [opened, synchronize] jobs: auto-merge: @@ -28,35 +27,4 @@ jobs: run: gh pr merge --auto --merge "$PR_URL" env: PR_URL: ${{github.event.pull_request.html_url}} - GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} - - build-and-push: - needs: auto-merge - runs-on: ubuntu-latest - if: github.event.pull_request.merged == true && github.actor == 'dependabot[bot]' - - steps: - - name: Checkout code - uses: actions/checkout@v4 - with: - ref: master - - - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v3 - - - name: Login to DockerHub - uses: docker/login-action@v3 - with: - username: ${{ secrets.DOCKERHUB_USERNAME }} - password: ${{ secrets.DOCKERHUB_TOKEN }} - - - name: Build and push Docker image - uses: docker/build-push-action@v5 - with: - push: true - context: . - tags: | - lvthillo/python-flask-docker:latest - lvthillo/python-flask-docker:${{ github.sha }} - cache-from: type=gha - cache-to: type=gha,mode=max \ No newline at end of file + GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} \ No newline at end of file diff --git a/.github/workflows/build-docker-image.yml b/.github/workflows/build-docker-image.yml new file mode 100644 index 00000000..478548f7 --- /dev/null +++ b/.github/workflows/build-docker-image.yml @@ -0,0 +1,35 @@ +name: Build and Push Docker Image + +on: + pull_request: + branches: [ master ] + types: [closed] + +jobs: + build-and-push: + runs-on: ubuntu-latest + if: github.event.pull_request.merged == true && github.event.pull_request.user.login == 'dependabot[bot]' + + steps: + - name: Checkout code + uses: actions/checkout@v4 + + - name: Set up Docker Buildx + uses: docker/setup-buildx-action@v3 + + - name: Login to DockerHub + uses: docker/login-action@v3 + with: + username: ${{ secrets.DOCKERHUB_USERNAME }} + password: ${{ secrets.DOCKERHUB_TOKEN }} + + - name: Build and push Docker image + uses: docker/build-push-action@v5 + with: + push: true + context: . + tags: | + lvthillo/python-flask-docker:latest + lvthillo/python-flask-docker:${{ github.sha }} + cache-from: type=gha + cache-to: type=gha,mode=max \ No newline at end of file From 2d11818984392c0ff5e0e9c097bdafe9285f8009 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 22 Mar 2025 19:43:56 +0000 Subject: [PATCH 06/22] Bump docker/build-push-action from 5 to 6 Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 5 to 6. - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](https://github.com/docker/build-push-action/compare/v5...v6) --- updated-dependencies: - dependency-name: docker/build-push-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/build-docker-image.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/build-docker-image.yml b/.github/workflows/build-docker-image.yml index 478548f7..37f8b698 100644 --- a/.github/workflows/build-docker-image.yml +++ b/.github/workflows/build-docker-image.yml @@ -24,7 +24,7 @@ jobs: password: ${{ secrets.DOCKERHUB_TOKEN }} - name: Build and push Docker image - uses: docker/build-push-action@v5 + uses: docker/build-push-action@v6 with: push: true context: . From 14246dba7c00d9c13a5a40d87d8dc79062f336fe Mon Sep 17 00:00:00 2001 From: Lorenz Vanthillo Date: Sat, 22 Mar 2025 20:48:51 +0100 Subject: [PATCH 07/22] style(pfd): run black --- src/app.py | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/src/app.py b/src/app.py index 12cd6ba5..c59abfc5 100644 --- a/src/app.py +++ b/src/app.py @@ -1,17 +1,18 @@ -from flask import Flask,render_template +from flask import Flask, render_template import socket app = Flask(__name__) + @app.route("/") def index(): try: host_name = socket.gethostname() host_ip = socket.gethostbyname(host_name) - return render_template('index.html', hostname=host_name, ip=host_ip) + return render_template("index.html", hostname=host_name, ip=host_ip) except: - return render_template('error.html') + return render_template("error.html") if __name__ == "__main__": - app.run(host='0.0.0.0', port=8080) + app.run(host="0.0.0.0", port=8080) From a0ea822ab040f4a8532f7bd10a59bee8ee1cb050 Mon Sep 17 00:00:00 2001 From: Lorenz Vanthillo Date: Sat, 22 Mar 2025 20:50:42 +0100 Subject: [PATCH 08/22] fix(pfd): trigger on master --- .github/workflows/build-docker-image.yml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/.github/workflows/build-docker-image.yml b/.github/workflows/build-docker-image.yml index 37f8b698..1d0f0a5d 100644 --- a/.github/workflows/build-docker-image.yml +++ b/.github/workflows/build-docker-image.yml @@ -1,9 +1,8 @@ name: Build and Push Docker Image on: - pull_request: + push: branches: [ master ] - types: [closed] jobs: build-and-push: From ccf9b093d096d323d7fc942c052de5e315e4d994 Mon Sep 17 00:00:00 2001 From: Lorenz Vanthillo Date: Sat, 22 Mar 2025 20:52:10 +0100 Subject: [PATCH 09/22] fix(pfd): trigger on master --- .github/workflows/build-docker-image.yml | 1 - 1 file changed, 1 deletion(-) diff --git a/.github/workflows/build-docker-image.yml b/.github/workflows/build-docker-image.yml index 1d0f0a5d..77dbd352 100644 --- a/.github/workflows/build-docker-image.yml +++ b/.github/workflows/build-docker-image.yml @@ -7,7 +7,6 @@ on: jobs: build-and-push: runs-on: ubuntu-latest - if: github.event.pull_request.merged == true && github.event.pull_request.user.login == 'dependabot[bot]' steps: - name: Checkout code From 54cf8e27bbcc942ef9eb0162712bab00bfed4b1e Mon Sep 17 00:00:00 2001 From: Lorenz Vanthillo Date: Sat, 22 Mar 2025 20:54:23 +0100 Subject: [PATCH 10/22] feat(pfd): support arm64 --- .github/workflows/build-docker-image.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/build-docker-image.yml b/.github/workflows/build-docker-image.yml index 77dbd352..6067f9ae 100644 --- a/.github/workflows/build-docker-image.yml +++ b/.github/workflows/build-docker-image.yml @@ -12,6 +12,9 @@ jobs: - name: Checkout code uses: actions/checkout@v4 + - name: Set up QEMU + uses: docker/setup-qemu-action@v3 + - name: Set up Docker Buildx uses: docker/setup-buildx-action@v3 @@ -26,6 +29,7 @@ jobs: with: push: true context: . + platforms: linux/amd64,linux/arm64 tags: | lvthillo/python-flask-docker:latest lvthillo/python-flask-docker:${{ github.sha }} From 89616cf25036cc456ac5abd11103ed4793c51078 Mon Sep 17 00:00:00 2001 From: Lorenz Vanthillo Date: Sat, 22 Mar 2025 20:59:45 +0100 Subject: [PATCH 11/22] refactor(pfd): add dockerignore --- .dockerignore | 10 ++++++++++ 1 file changed, 10 insertions(+) create mode 100644 .dockerignore diff --git a/.dockerignore b/.dockerignore new file mode 100644 index 00000000..d51ed1ec --- /dev/null +++ b/.dockerignore @@ -0,0 +1,10 @@ +# Git +.git +.gitignore + +# GitHub actions +.github/ + +# Documentation +LICENSE +README.md From d898f5389c7717baec2eae19219f38f780b47bf2 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 13 May 2025 20:41:11 +0000 Subject: [PATCH 12/22] build(deps): bump flask from 3.1.0 to 3.1.1 Bumps [flask](https://github.com/pallets/flask) from 3.1.0 to 3.1.1. - [Release notes](https://github.com/pallets/flask/releases) - [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/flask/compare/3.1.0...3.1.1) --- updated-dependencies: - dependency-name: flask dependency-version: 3.1.1 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 174be8ee..97b3cabb 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1 +1 @@ -flask==3.1.0 \ No newline at end of file +flask==3.1.1 \ No newline at end of file From dc7702d4b38fa4db056e4bf5af1fe6e40edf99eb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 12 Aug 2025 05:46:23 +0000 Subject: [PATCH 13/22] build(deps): bump actions/checkout from 4 to 5 Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 5. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v4...v5) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/auto-merge-dependabot.yml | 2 +- .github/workflows/build-docker-image.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/auto-merge-dependabot.yml b/.github/workflows/auto-merge-dependabot.yml index cd2226df..80dfdc96 100644 --- a/.github/workflows/auto-merge-dependabot.yml +++ b/.github/workflows/auto-merge-dependabot.yml @@ -14,7 +14,7 @@ jobs: contents: write steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Dependabot metadata id: metadata diff --git a/.github/workflows/build-docker-image.yml b/.github/workflows/build-docker-image.yml index 6067f9ae..6118b374 100644 --- a/.github/workflows/build-docker-image.yml +++ b/.github/workflows/build-docker-image.yml @@ -10,7 +10,7 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v5 - name: Set up QEMU uses: docker/setup-qemu-action@v3 From 6b42c21ebc1212ea7718b409c5014de5f202ba50 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 26 Aug 2025 11:35:54 +0000 Subject: [PATCH 14/22] build(deps): bump flask from 3.1.1 to 3.1.2 Bumps [flask](https://github.com/pallets/flask) from 3.1.1 to 3.1.2. - [Release notes](https://github.com/pallets/flask/releases) - [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/flask/compare/3.1.1...3.1.2) --- updated-dependencies: - dependency-name: flask dependency-version: 3.1.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 97b3cabb..0fb37ff0 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1 +1 @@ -flask==3.1.1 \ No newline at end of file +flask==3.1.2 \ No newline at end of file From 8e9edae7e6689c2e8d5fc116a39eae167259a9f3 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 13 Oct 2025 21:20:28 +0000 Subject: [PATCH 15/22] build(deps): bump python from 3.13-alpine to 3.14-alpine Bumps python from 3.13-alpine to 3.14-alpine. --- updated-dependencies: - dependency-name: python dependency-version: 3.14-alpine dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Dockerfile b/Dockerfile index f1753bad..00627b0d 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM python:3.13-alpine +FROM python:3.14-alpine LABEL maintainer="lorenz.vanthillo@gmail.com" COPY . /app WORKDIR /app From 758f728ef1402173ba7c94848a84d8a81f0c3b1c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Nov 2025 21:29:07 +0000 Subject: [PATCH 16/22] build(deps): bump actions/checkout from 5 to 6 Bumps [actions/checkout](https://github.com/actions/checkout) from 5 to 6. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v5...v6) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/auto-merge-dependabot.yml | 2 +- .github/workflows/build-docker-image.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/auto-merge-dependabot.yml b/.github/workflows/auto-merge-dependabot.yml index 80dfdc96..1b4b8dbc 100644 --- a/.github/workflows/auto-merge-dependabot.yml +++ b/.github/workflows/auto-merge-dependabot.yml @@ -14,7 +14,7 @@ jobs: contents: write steps: - name: Checkout code - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: Dependabot metadata id: metadata diff --git a/.github/workflows/build-docker-image.yml b/.github/workflows/build-docker-image.yml index 6118b374..00aa81ad 100644 --- a/.github/workflows/build-docker-image.yml +++ b/.github/workflows/build-docker-image.yml @@ -10,7 +10,7 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@v5 + uses: actions/checkout@v6 - name: Set up QEMU uses: docker/setup-qemu-action@v3 From 3e7a49d2f1f667ed4f6adfe89855df17ef73edea Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Feb 2026 23:04:45 +0000 Subject: [PATCH 17/22] build(deps): bump flask from 3.1.2 to 3.1.3 Bumps [flask](https://github.com/pallets/flask) from 3.1.2 to 3.1.3. - [Release notes](https://github.com/pallets/flask/releases) - [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/flask/compare/3.1.2...3.1.3) --- updated-dependencies: - dependency-name: flask dependency-version: 3.1.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 0fb37ff0..79d75936 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1 +1 @@ -flask==3.1.2 \ No newline at end of file +flask==3.1.3 \ No newline at end of file From 838ef8d98d9fdab98fa88296c87235697d16a028 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 9 Mar 2026 22:31:46 +0000 Subject: [PATCH 18/22] build(deps): bump docker/setup-buildx-action from 3 to 4 Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3 to 4. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](https://github.com/docker/setup-buildx-action/compare/v3...v4) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/build-docker-image.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/build-docker-image.yml b/.github/workflows/build-docker-image.yml index 00aa81ad..91f49211 100644 --- a/.github/workflows/build-docker-image.yml +++ b/.github/workflows/build-docker-image.yml @@ -16,7 +16,7 @@ jobs: uses: docker/setup-qemu-action@v3 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v3 + uses: docker/setup-buildx-action@v4 - name: Login to DockerHub uses: docker/login-action@v3 From 7eaad28436f46a20c9a524c7a3f6d0773746d08d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 9 Mar 2026 22:31:49 +0000 Subject: [PATCH 19/22] build(deps): bump docker/login-action from 3 to 4 Bumps [docker/login-action](https://github.com/docker/login-action) from 3 to 4. - [Release notes](https://github.com/docker/login-action/releases) - [Commits](https://github.com/docker/login-action/compare/v3...v4) --- updated-dependencies: - dependency-name: docker/login-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/build-docker-image.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/build-docker-image.yml b/.github/workflows/build-docker-image.yml index 00aa81ad..ed039c2b 100644 --- a/.github/workflows/build-docker-image.yml +++ b/.github/workflows/build-docker-image.yml @@ -19,7 +19,7 @@ jobs: uses: docker/setup-buildx-action@v3 - name: Login to DockerHub - uses: docker/login-action@v3 + uses: docker/login-action@v4 with: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKERHUB_TOKEN }} From 21cb08de085ee61318e7f16b2df952bfb22b7b44 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 9 Mar 2026 22:31:52 +0000 Subject: [PATCH 20/22] build(deps): bump docker/setup-qemu-action from 3 to 4 Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 3 to 4. - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](https://github.com/docker/setup-qemu-action/compare/v3...v4) --- updated-dependencies: - dependency-name: docker/setup-qemu-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/build-docker-image.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/build-docker-image.yml b/.github/workflows/build-docker-image.yml index 00aa81ad..4dd55fe2 100644 --- a/.github/workflows/build-docker-image.yml +++ b/.github/workflows/build-docker-image.yml @@ -13,7 +13,7 @@ jobs: uses: actions/checkout@v6 - name: Set up QEMU - uses: docker/setup-qemu-action@v3 + uses: docker/setup-qemu-action@v4 - name: Set up Docker Buildx uses: docker/setup-buildx-action@v3 From c9bde19a55a39cca18b11aa7b738abba85de328a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 9 Mar 2026 22:31:55 +0000 Subject: [PATCH 21/22] build(deps): bump docker/build-push-action from 6 to 7 Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 6 to 7. - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](https://github.com/docker/build-push-action/compare/v6...v7) --- updated-dependencies: - dependency-name: docker/build-push-action dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/build-docker-image.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/build-docker-image.yml b/.github/workflows/build-docker-image.yml index 00aa81ad..c2a95be6 100644 --- a/.github/workflows/build-docker-image.yml +++ b/.github/workflows/build-docker-image.yml @@ -25,7 +25,7 @@ jobs: password: ${{ secrets.DOCKERHUB_TOKEN }} - name: Build and push Docker image - uses: docker/build-push-action@v6 + uses: docker/build-push-action@v7 with: push: true context: . From ac1b8bffa1f0b210788b413e6cec81a7922c0d3e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 13 Apr 2026 22:27:24 +0000 Subject: [PATCH 22/22] build(deps): bump dependabot/fetch-metadata from 2 to 3 Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2 to 3. - [Release notes](https://github.com/dependabot/fetch-metadata/releases) - [Commits](https://github.com/dependabot/fetch-metadata/compare/v2...v3) --- updated-dependencies: - dependency-name: dependabot/fetch-metadata dependency-version: '3' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/auto-merge-dependabot.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/auto-merge-dependabot.yml b/.github/workflows/auto-merge-dependabot.yml index 1b4b8dbc..93d9ee11 100644 --- a/.github/workflows/auto-merge-dependabot.yml +++ b/.github/workflows/auto-merge-dependabot.yml @@ -18,7 +18,7 @@ jobs: - name: Dependabot metadata id: metadata - uses: dependabot/fetch-metadata@v2 + uses: dependabot/fetch-metadata@v3 with: github-token: "${{ secrets.GITHUB_TOKEN }}"