gitea

mirror of https://github.com/go-gitea/gitea.git synced 2026-05-25 16:08:46 +09:00

Author	SHA1	Message	Date
Giteabot	c81eca9904	chore(deps): update action dependencies (#37603 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| \|---\|---\|---\|---\| \| [actions/labeler](https://redirect.github.com/actions/labeler) \| action \| minor \| `v6.0.1` → `v6.1.0` \| \| [aws-actions/configure-aws-credentials](https://redirect.github.com/aws-actions/configure-aws-credentials) \| action \| patch \| `v6.1.0` → `v6.1.1` \| \| [docker.elastic.co/elasticsearch/elasticsearch](https://www.elastic.co/products/elasticsearch) ([source](https://redirect.github.com/elastic/elasticsearch)) \| service \| patch \| `8.19.14` → `8.19.15` \| \| [renovatebot/github-action](https://redirect.github.com/renovatebot/github-action) \| action \| patch \| `v46.1.12` → `v46.1.13` \| --- ### Release Notes <details> <summary>actions/labeler (actions/labeler)</summary> ### [`v6.1.0`](https://redirect.github.com/actions/labeler/releases/tag/v6.1.0) [Compare Source](https://redirect.github.com/actions/labeler/compare/v6.0.1...v6.1.0) #### Enhancements - Add changed-files-labels-limit and max-files-changed configuration options to cap the number of labels added by [@bluca](https://redirect.github.com/bluca) in [#923](https://redirect.github.com/actions/labeler/pull/923) #### Bug Fixes - Improve Labeler Action documentation and permission error handling by [@chiranjib-swain](https://redirect.github.com/chiranjib-swain) in [#897](https://redirect.github.com/actions/labeler/pull/897) - Preserve manually added labels during workflow runs and refine label synchronization logic by [@chiranjib-swain](https://redirect.github.com/chiranjib-swain) in [#917](https://redirect.github.com/actions/labeler/pull/917) #### Dependency Updates - Upgrade brace-expansion from 1.1.11 to 1.1.12 and document breaking changes in v6 by [@dependabot](https://redirect.github.com/dependabot) in [#877](https://redirect.github.com/actions/labeler/pull/877) - Upgrade minimatch from 10.0.1 to 10.2.3 by [@dependabot](https://redirect.github.com/dependabot) in [#926](https://redirect.github.com/actions/labeler/pull/926) - Upgrade dependencies ([@actions/core](https://redirect.github.com/actions/core), [@actions/github](https://redirect.github.com/actions/github), js-yaml, minimatch, [@typescript-eslint](https://redirect.github.com/typescript-eslint)) by [@Copilot](https://redirect.github.com/Copilot) in [#934](https://redirect.github.com/actions/labeler/pull/934) #### New Contributors - [@chiranjib-swain](https://redirect.github.com/chiranjib-swain) made their first contribution in [#897](https://redirect.github.com/actions/labeler/pull/897) - [@bluca](https://redirect.github.com/bluca) made their first contribution in [#923](https://redirect.github.com/actions/labeler/pull/923) - [@Copilot](https://redirect.github.com/Copilot) made their first contribution in [#934](https://redirect.github.com/actions/labeler/pull/934) Full Changelog: <https://github.com/actions/labeler/compare/v6...v6.1.0> </details> <details> <summary>aws-actions/configure-aws-credentials (aws-actions/configure-aws-credentials)</summary> ### [`v6.1.1`](https://redirect.github.com/aws-actions/configure-aws-credentials/releases/tag/v6.1.1) [Compare Source](https://redirect.github.com/aws-actions/configure-aws-credentials/compare/v6.1.0...v6.1.1) ##### What's Changed - chore(deps-dev): bump esbuild from 0.27.4 to 0.28.0 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1722](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1722) - chore(deps-dev): bump [@types/node](https://redirect.github.com/types/node) from 25.5.0 to 25.5.2 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1723](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1723) - chore(deps-dev): bump [@smithy/property-provider](https://redirect.github.com/smithy/property-provider) from 4.2.12 to 4.2.13 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1724](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1724) - chore(deps): bump proxy-agent from 8.0.0 to 8.0.1 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1726](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1726) - chore(deps): bump [@smithy/node-http-handler](https://redirect.github.com/smithy/node-http-handler) from 4.5.1 to 4.5.2 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1725](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1725) - chore(deps): bump [@aws-sdk/client-sts](https://redirect.github.com/aws-sdk/client-sts) from 3.1020.0 to 3.1025.0 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1727](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1727) - chore(deps): bump basic-ftp from 5.2.0 to 5.2.1 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1728](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1728) - chore(deps): bump basic-ftp from 5.2.1 to 5.2.2 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1729](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1729) - chore(deps-dev): bump [@types/node](https://redirect.github.com/types/node) from 25.5.2 to 25.6.0 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1730](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1730) - chore(deps-dev): bump [@aws-sdk/credential-provider-env](https://redirect.github.com/aws-sdk/credential-provider-env) from 3.972.24 to 3.972.25 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1733](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1733) - chore(deps): bump [@aws-sdk/client-sts](https://redirect.github.com/aws-sdk/client-sts) from 3.1025.0 to 3.1030.0 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1732](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1732) - chore(deps-dev): bump [@biomejs/biome](https://redirect.github.com/biomejs/biome) from 2.4.10 to 2.4.11 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1734](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1734) - chore(deps): bump basic-ftp from 5.2.2 to 5.3.0 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1736](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1736) - chore(deps-dev): bump memfs from 4.57.1 to 4.57.2 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1737](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1737) - chore(deps-dev): bump typescript from 6.0.2 to 6.0.3 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1740](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1740) - chore(deps-dev): bump [@smithy/property-provider](https://redirect.github.com/smithy/property-provider) from 4.2.13 to 4.2.14 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1741](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1741) - chore(deps-dev): bump [@aws-sdk/credential-provider-env](https://redirect.github.com/aws-sdk/credential-provider-env) from 3.972.25 to 3.972.28 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1742](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1742) - chore(deps): bump [@aws-sdk/client-sts](https://redirect.github.com/aws-sdk/client-sts) from 3.1030.0 to 3.1033.0 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1743](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1743) - chore(deps-dev): bump [@biomejs/biome](https://redirect.github.com/biomejs/biome) from 2.4.11 to 2.4.12 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1739](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1739) - chore(deps-dev): bump [@biomejs/biome](https://redirect.github.com/biomejs/biome) from 2.4.12 to 2.4.13 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1747](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1747) - chore(deps): bump postcss from 8.5.6 to 8.5.12 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1752](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1752) - chore(deps): bump [@smithy/node-http-handler](https://redirect.github.com/smithy/node-http-handler) from 4.6.0 to 4.6.1 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1750](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1750) - chore(deps-dev): bump [@aws-sdk/credential-provider-env](https://redirect.github.com/aws-sdk/credential-provider-env) from 3.972.28 to 3.972.32 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1751](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1751) - chore(deps): bump [@aws-sdk/client-sts](https://redirect.github.com/aws-sdk/client-sts) from 3.1033.0 to 3.1038.0 by [@dependabot](https://redirect.github.com/dependabot)\[bot] in [#1749](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1749) - chore: release 6.1.1 by [@lehmanmj](https://redirect.github.com/lehmanmj) in [#1757](https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1757) Full Changelog: <https://github.com/aws-actions/configure-aws-credentials/compare/v6...v6.1.1> </details> <details> <summary>elastic/elasticsearch (docker.elastic.co/elasticsearch/elasticsearch)</summary> ### [`v8.19.15`](https://redirect.github.com/elastic/elasticsearch/releases/tag/v8.19.15): Elasticsearch 8.19.15 [Compare Source](https://redirect.github.com/elastic/elasticsearch/compare/v8.19.14...v8.19.15) Downloads: <https://elastic.co/downloads/elasticsearch> Release notes: <https://www.elastic.co/guide/en/elasticsearch/reference/8.19/release-notes-8.19.15.html> </details> <details> <summary>renovatebot/github-action (renovatebot/github-action)</summary> ### [`v46.1.13`](https://redirect.github.com/renovatebot/github-action/releases/tag/v46.1.13) [Compare Source](https://redirect.github.com/renovatebot/github-action/compare/v46.1.12...v46.1.13) ##### Documentation - update references to renovatebot/github-action to v46.1.12 ([a871d4d](`a871d4d546`)) ##### Miscellaneous Chores - deps: update dependency [@commitlint/cli](https://redirect.github.com/commitlint/cli) to v20.5.2 ([67a74d1](`67a74d123d`)) - deps: update pnpm to v10.33.1 ([5932d6c](`5932d6c4e6`)) - deps: update pnpm to v10.33.2 ([580c97f](`580c97f45b`)) ##### Build System - deps: lock file maintenance ([d044e7d](`d044e7df57`)) ##### Continuous Integration - deps: update ghcr.io/renovatebot/renovate docker tag to v43.159.1 ([a7db9c3](`a7db9c38fd`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.159.2 ([f9133ef](`f9133ef80d`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.160.0 ([212d525](`212d52574e`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.160.1 ([e3443ce](`e3443ceef9`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.160.2 ([833041b](`833041bb68`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.160.4 ([60cc865](`60cc8654e1`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.160.5 ([2c7567a](`2c7567a8f8`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.160.6 ([35caad2](`35caad2c6a`)) </details> --- This PR has been generated by [Mend Renovate](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xNDEuNSIsInVwZGF0ZWRJblZlciI6IjQzLjE0MS41IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJkZXBlbmRlbmNpZXMiXX0=--> Co-authored-by: Nicolas <bircni@icloud.com> Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>	2026-05-08 18:30:53 +00:00
silverwind	ebc058f682	ci: increase renovate frequency and fix RENOVATE_ALLOWED_POST_UPGRADE_COMMANDS (#37565 ) 1. Sync `RENOVATE_ALLOWED_POST_UPGRADE_COMMANDS` with the recent `renovate.json5` change (#37537) — the npm group now runs `make svg nolyfill`, but the workflow allowlist still only matched `^make (tidy\|svg)$`, so the post-upgrade task was being rejected. 2. Bump the cron from daily at 01:00 UTC to hourly at :23, matching the cadence of Mend's hosted Renovate App. Hourly gives sub-hour responsiveness to dependency-dashboard checkbox interactions and PR-close reactions; the `:23` offset avoids the GHA scheduler congestion at multiples of 15. Co-authored-by: Claude (Opus 4.7) <noreply@anthropic.com>	2026-05-06 18:37:09 +02:00
Giteabot	62300eab3b	chore(deps): update action dependencies (#37540 ) This PR contains the following updates: \| Package \| Type \| Update \| Change \| Pending \| \|---\|---\|---\|---\|---\| \| [bitnamilegacy/minio](https://redirect.github.com/bitnami/containers) ([source](https://redirect.github.com/bitnami/containers/tree/HEAD/bitnami/minio)) \| service \| minor \| `2021.3.17` → `2021.12.29` \| \| \| [bitnamilegacy/minio](https://redirect.github.com/bitnami/containers) ([source](https://redirect.github.com/bitnami/containers/tree/HEAD/bitnami/minio)) \| service \| minor \| `2023.8.31` → `2023.12.23` \| \| \| [bitnamilegacy/mysql](https://redirect.github.com/bitnami/containers) ([source](https://redirect.github.com/bitnami/containers/tree/HEAD/bitnami/mysql)) \| service \| minor \| `8.0` → `8.4` \| \| \| [renovatebot/github-action](https://redirect.github.com/renovatebot/github-action) \| action \| patch \| `v46.1.10` → `v46.1.12` \| `v46.1.13` \| --- ### Release Notes <details> <summary>renovatebot/github-action (renovatebot/github-action)</summary> ### [`v46.1.12`](https://redirect.github.com/renovatebot/github-action/releases/tag/v46.1.12) [Compare Source](https://redirect.github.com/renovatebot/github-action/compare/v46.1.11...v46.1.12) ##### Bug Fixes - deps: update dependency [@actions/core](https://redirect.github.com/actions/core) to v3.0.1 ([e8a6055](`e8a6055d6d`)) ##### Documentation - update references to renovatebot/github-action to v46.1.11 ([317011a](`317011a6ef`)) ##### Miscellaneous Chores - deps: update dependency typescript-eslint to v8.59.0 ([8e3560a](`8e3560ab95`)) ##### Continuous Integration - deps: update ghcr.io/renovatebot/renovate docker tag to v43.142.0 ([0fee00d](`0fee00dc59`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.142.1 ([c7cfc88](`c7cfc88250`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.144.0 ([39e7d09](`39e7d09c7b`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.145.0 ([0bbd415](`0bbd415a9c`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.146.0 ([889c739](`889c7399ca`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.147.0 ([7addce6](`7addce6f1e`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.150.0 ([804ce16](`804ce1618f`)) ### [`v46.1.11`](https://redirect.github.com/renovatebot/github-action/releases/tag/v46.1.11) [Compare Source](https://redirect.github.com/renovatebot/github-action/compare/v46.1.10...v46.1.11) ##### Documentation - update references to renovatebot/github-action to v46.1.10 ([0b264d2](`0b264d27f8`)) ##### Miscellaneous Chores - deps: update actions/setup-node action to v6.4.0 ([951a814](`951a81487a`)) - deps: update dependency prettier to v3.8.3 ([a763833](`a763833a7d`)) - deps: update dependency typescript-eslint to v8.58.2 ([119d68e](`119d68e8f6`)) ##### Build System - deps: lock file maintenance ([f82feed](`f82feedb56`)) ##### Continuous Integration - deps: update ghcr.io/renovatebot/renovate docker tag to v43.132.3 ([99cc805](`99cc805d75`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.133.0 ([a63d39b](`a63d39be1e`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.135.0 ([955b000](`955b0000ba`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.136.0 ([65167cd](`65167cdb3f`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.136.1 ([7b21b86](`7b21b86ced`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.136.3 ([28a2dc0](`28a2dc07b8`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.137.0 ([b0cf2a4](`b0cf2a4c91`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.138.0 ([3700882](`3700882c45`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.138.1 ([f516ce2](`f516ce2f92`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.138.3 ([3411548](`3411548d9c`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.139.0 ([5201886](`5201886b45`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.139.1 ([5856263](`5856263af8`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.139.4 ([999691d](`999691d7f3`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.139.5 ([f703a54](`f703a54130`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.139.6 ([3ba85c2](`3ba85c2979`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.139.7 ([96f2f09](`96f2f09b9d`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.139.8 ([5af45e5](`5af45e5b84`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.140.0 ([01e9139](`01e91393d3`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.141.0 ([814a2a4](`814a2a47c0`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.141.1 ([fb3abdf](`fb3abdf7fa`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.141.2 ([e3a9af5](`e3a9af55ac`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.141.5 ([4f14b2f](`4f14b2f81d`)) - deps: update ghcr.io/renovatebot/renovate docker tag to v43.141.6 ([2357784](`2357784955`)) </details> --- ### Configuration 📅 Schedule: (UTC) - Branch creation - Only on Monday (`* * * * 1`) - Automerge - At any time (no schedule defined) 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://redirect.github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xNDEuNSIsInVwZGF0ZWRJblZlciI6IjQzLjE0MS41IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJkZXBlbmRlbmNpZXMiXX0=-->	2026-05-04 23:06:00 +00:00
wxiaoguang	1721c235a7	Refactor CI workflows (#37487 ) 1. only trigger docker-dryrun arm64&riscv64 when dockerfile changes 2. de-duplicate "contents: read" permission for most workflows 3. merge various "lint-*" jobs into one job 4. add missing lint targets to the "lint" (all) target	2026-05-01 02:15:01 +08:00
silverwind	99cd4f6b22	Integrate renovate bot for all dependency updates (#37050 ) Replaces Dependabot with Renovate. The new setup: - One PR per ecosystem (GitHub Actions, Go modules + Makefile go-tool pins, npm, Python via uv, Nix flake), opened weekly on Mondays with a 5-day release-age cooldown. Vulnerability PRs ship next-day via daily cron + Renovate's `vulnerabilityAlerts` schedule bypass. - All `uses:` action refs SHA-pinned with patch-level version comments (same format as #36971, which this supersedes); `helpers:pinGitHubActionDigests` keeps future bumps in that format. - `renovatebot/github-action` runtime image pinned via the upstream-recommended `RENOVATE_VERSION` env + magic comment + `customManagers:githubActionsVersions` preset, so Renovate keeps the pin updated. - Custom regex manager tracks the `*_PACKAGE ?= <import-path>@<version>` lines in `Makefile` (golangci-lint, swagger, actionlint, etc.) and groups them into the same Go PR via `matchDatasources: ["go"]`. - Post-upgrade tasks regenerate `assets/go-licenses.json` (`make tidy`) and the SVG sprite (`make svg`), gated by an env-level command allowlist. - Replaces the standalone `cron-flake-updater` workflow — Renovate's nix manager tracks `flake.nix` inputs and produces the same `flake.lock` bump PRs on the regular weekly schedule. - npm and gomod-replace pins live in `renovate.json5` only; `updates@17.16.3` reads them from there too, so the standalone `updates.config.ts` is gone and one source of truth covers both tools. Fixes: https://github.com/go-gitea/gitea/issues/33386 Signed-off-by: silverwind <me@silverwind.io> Signed-off-by: TheFox0x7 <thefox0x7@gmail.com> Co-authored-by: Claude (Opus 4.6) <noreply@anthropic.com> Co-authored-by: TheFox0x7 <thefox0x7@gmail.com> Co-authored-by: Nicolas <bircni@icloud.com> Co-authored-by: Giteabot <teabot@gitea.io>	2026-04-26 14:25:22 +00:00

5 Commits