Skip to content
Dependabot Changesets

Bump dependabot/fetch-metadata from 2.2.0 to 2.4.0 #71

Sign in to view logs

Bump dependabot/fetch-metadata from 2.2.0 to 2.4.0

Bump dependabot/fetch-metadata from 2.2.0 to 2.4.0 #71

Workflow file for this run

.github/workflows/dependabot-changesets.yml at 6013d47
# Add changesets for Dependabot PRs
name: Dependabot Changesets
on:
pull_request: {}
permissions:
pull-requests: read
contents: write
jobs:
generate-changeset:
runs-on: ubuntu-latest
if: github.event.pull_request.user.login == 'dependabot[bot]' && github.repository == 'FortnoxAB/changesets-java'
steps:
- name: Harden the runner (Audit all outbound calls)
uses: step-security/harden-runner@95d9a5deda9de15063e7595e9719c11c38c90ae2 # v2.13.2
with:
egress-policy: audit
- uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1
- name: Set up JDK 17
uses: actions/setup-java@c5195efecf7bdfc987ee8bae7a71cb8b11521c00 # v4.7.1
with:
java-version: '17'
distribution: 'temurin'
cache: maven
- uses: FortnoxAB/changesets-java-dependabot-action@4084a9bd82d16ec639f15a28fe5eb30696ac571d # main
- name: Validate
shell: bash
run: |
ls -l .changeset
git status