Skip to content

chore(deps): bump actions/setup-python from 5 to 6#45

Merged
jotoho merged 1 commit into
masterfrom
dependabot/github_actions/actions/setup-python-6
Sep 8, 2025
Merged

chore(deps): bump actions/setup-python from 5 to 6#45
jotoho merged 1 commit into
masterfrom
dependabot/github_actions/actions/setup-python-6

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Sep 8, 2025

Copy link
Copy Markdown
Contributor

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.


Bumps actions/setup-python from 5 to 6.

Release notes

Sourced from actions/setup-python's releases.

v6.0.0

What's Changed

Breaking Changes

Make sure your runner is on version v2.327.1 or later to ensure compatibility with this release. See Release Notes

Enhancements:

Bug fixes:

Dependency updates:

New Contributors

Full Changelog: actions/setup-python@v5...v6.0.0

v5.6.0

What's Changed

Full Changelog: actions/setup-python@v5...v5.6.0

v5.5.0

What's Changed

Enhancements:

Bug fixes:

... (truncated)

Commits
  • e797f83 Upgrade to node 24 (#1164)
  • 3d1e2d2 Revert "Enhance cache-dependency-path handling to support files outside the w...
  • 65b0712 Clarify pythonLocation behavior for PyPy and GraalPy in environment variables...
  • 5b668cf Bump actions/checkout from 4 to 5 (#1181)
  • f62a0e2 Change missing cache directory error to warning (#1182)
  • 9322b3c Upgrade setuptools to 78.1.1 to fix path traversal vulnerability in PackageIn...
  • fbeb884 Bump form-data to fix critical vulnerabilities #182 & #183 (#1163)
  • 03bb615 Bump idna from 2.9 to 3.7 in /tests/data (#843)
  • 36da51d Add version parsing from Pipfile (#1067)
  • 3c6f142 update documentation (#1156)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [actions/setup-python](https://github.com/actions/setup-python) from 5 to 6.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](actions/setup-python@v5...v6)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Sep 8, 2025
@dependabot dependabot Bot requested a review from jotoho as a code owner September 8, 2025 19:05
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Sep 8, 2025
@jotoho

jotoho commented Sep 8, 2025

Copy link
Copy Markdown
Owner

@dependabot recreate

@jotoho jotoho merged commit 1fdbd70 into master Sep 8, 2025
9 checks passed
@jotoho jotoho deleted the dependabot/github_actions/actions/setup-python-6 branch September 8, 2025 19:49
@jotoho

jotoho commented Sep 8, 2025

Copy link
Copy Markdown
Owner

Review approval was granted via the commit message of the merge commit:

$ git show 1fdbd70
commit 1fdbd70 (HEAD -> master, origin/master, origin/HEAD)
gpg: Signatur vom Mo 08 Sep 2025 21:49:10 CEST
gpg:                mittels ECDSA-Schlüssel 9E8574295BC7A2E10625237112C16B2BA1186A0F
gpg: Korrekte Signatur von "Jonas Tobias Hopusch (software signing key) <git@jotoho.de>" [vollständig]
gpg: Diese Signatur verfällt am Do 06 Sep 2035 21:49:10 CEST.
Merge: d7de7d4 6b97409
Author:     Jonas Tobias Hopusch <git@jotoho.de>
AuthorDate: 2025-09-08 21:47:36 +0200
Commit:     Jonas Tobias Hopusch <git@jotoho.de>
CommitDate: 2025-09-08 21:47:36 +0200

    Merge branch 'dependabot/github_actions/actions/setup-python-6' into master
    
    @dependabot was rebasing too slowly.
    
    Reviewed-on: https://github.com/jotoho/modfs/pull/45
    Approved-by: Jonas Tobias Hopusch <git@jotoho.de>
    Signed-off-by: Jonas Tobias Hopusch <git@jotoho.de>

@github-actions

github-actions Bot commented Oct 7, 2025

Copy link
Copy Markdown

As this non-open pull request has not had any activity in 4+ weeks,
it will now be automatically locked to limit the risk of necroposting or unrelated
comments.

If you wish to submit a similar contribution, report an issue with the merged code
or discuss a related matter, and no active issue/pr/discussion on it exists, please
create a new one.

Alternatively, collaborators may (at their discretion) make an exception and lift the lock.

@github-actions github-actions Bot locked as resolved and limited conversation to collaborators Oct 7, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant