Skip to content
This repository was archived by the owner on May 29, 2026. It is now read-only.

chore(deps): bump the all group across 1 directory with 3 updates#487

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/all-636aaf6288
Closed

chore(deps): bump the all group across 1 directory with 3 updates#487
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/all-636aaf6288

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 18, 2026
edited
Loading

Bumps the all group with 3 updates in the / directory: flox/install-flox-action, flox/activate-action and peter-evans/create-pull-request.

Updates flox/install-flox-action from 2.4.0 to 2.4.1

Release notes

Sourced from flox/install-flox-action's releases.

v2.4.1

Marketplace metadata refresh

Update the action's GitHub Marketplace metadata for publication:

  • Capitalize the Flox brand in name, description, and author (the lowercase flox is reserved for CLI invocation).
  • Rewrite the description in imperative voice with brand-consistent capitalization and no trailing period, per Marketplace description conventions.
  • Update the author: email from the outdated floxdev.com domain to flox.dev.

Also includes README hygiene: brand capitalization throughout, code samples pinned to the major-version tag (@v2), and indented step items in the example workflow.

This is a metadata-only release. The action's runtime behavior, inputs, and outputs are unchanged. Existing workflows using flox/install-flox-action@vN continue to work without modification.

Commits
  • 6e70b26 docs: capitalize Flox brand and use major-version pin
  • 4a527e6 chore: rename action to "Install Flox"
  • 1c148ba chore(deps): Update dist/
  • a979ad2 chore(deps-dev): Bump fast-xml-parser from 5.5.9 to 5.7.1
  • fe5af06 chore(deps-dev): Bump picomatch from 2.3.1 to 2.3.2
  • dc88015 chore: pin GitHub Actions to SHA
  • See full diff in compare view

Updates flox/activate-action from 6ab4a3d38cfd06f31910d0a5fe7e57ffa76ad750 to 7065dcbe5583b7b015f07a8ebd49d7266e3053e8

Commits
  • 7065dcb docs: fix README intro and update example workflow
  • 33a2d92 chore: rename action to "Flox Activate"
  • See full diff in compare view

Updates peter-evans/create-pull-request from 8.1.0 to 8.1.1

Release notes

Sourced from peter-evans/create-pull-request's releases.

Create Pull Request v8.1.1

What's Changed

Full Changelog: peter-evans/create-pull-request@v8.1.0...v8.1.1

Commits
  • 5f6978f fix: retry post-creation API calls on 422 eventual consistency errors (#4356)
  • d32e88d build(deps-dev): bump the npm group with 3 updates (#4349)
  • 8170bcc build(deps-dev): bump handlebars from 4.7.8 to 4.7.9 (#4344)
  • 0041819 build(deps): bump picomatch (#4339)
  • b993918 build(deps-dev): bump flatted from 3.3.1 to 3.4.2 (#4334)
  • 36d7c84 build(deps-dev): bump undici from 6.23.0 to 6.24.0 (#4328)
  • a45d1fb build(deps): bump @​tootallnate/once and jest-environment-jsdom (#4323)
  • 3499eb6 build(deps): bump the github-actions group with 2 updates (#4316)
  • 3f3b473 build(deps): bump minimatch (#4311)
  • 6699836 build(deps-dev): bump the npm group with 2 updates (#4305)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the all group across 1 directory with 3 updates
2924b6c 
Bumps the all group with 3 updates in the / directory: [flox/install-flox-action](https://github.com/flox/install-flox-action), [flox/activate-action](https://github.com/flox/activate-action) and [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request).


Updates `flox/install-flox-action` from 2.4.0 to 2.4.1
- [Release notes](https://github.com/flox/install-flox-action/releases)
- [Commits](flox/install-flox-action@c94e7e1...6e70b26)

Updates `flox/activate-action` from 6ab4a3d38cfd06f31910d0a5fe7e57ffa76ad750 to 7065dcbe5583b7b015f07a8ebd49d7266e3053e8
- [Release notes](https://github.com/flox/activate-action/releases)
- [Commits](flox/activate-action@6ab4a3d...7065dcb)

Updates `peter-evans/create-pull-request` from 8.1.0 to 8.1.1
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](peter-evans/create-pull-request@c0f553f...5f6978f)

---
updated-dependencies:
- dependency-name: flox/install-flox-action
  dependency-version: 2.4.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: flox/activate-action
  dependency-version: 7065dcbe5583b7b015f07a8ebd49d7266e3053e8
  dependency-type: direct:production
  dependency-group: all
- dependency-name: peter-evans/create-pull-request
  dependency-version: 8.1.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels May 18, 2026
@github-actions github-actions Bot added the documentation Improvements or additions to documentation label May 18, 2026
@mkenigs mkenigs closed this May 27, 2026
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github May 27, 2026

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

@dependabot dependabot Bot deleted the dependabot/github_actions/all-636aaf6288 branch May 27, 2026 19:45
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file documentation Improvements or additions to documentation github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mkenigs