Skip to content

Consolidate dependency updates#150

Merged
thejchap merged 1 commit into
mainfrom
codex/consolidate-dependency-updates
Jul 4, 2026
Merged

Consolidate dependency updates#150
thejchap merged 1 commit into
mainfrom
codex/consolidate-dependency-updates

Conversation

@thejchap

@thejchap thejchap commented Jul 4, 2026

Copy link
Copy Markdown
Owner

Context

Consolidates the open Dependabot updates from #141, #142, #143, #144, #145, #146, and #147.

Changes

  • Update actions/checkout from v6 to v7.
  • Update cloudflare/wrangler-action from v3 to v4.
  • Update insta to 1.48.0, anyhow to 1.0.103, env_logger to 0.11.11, chrono to 0.4.45, and serde_json to 1.0.150.

Test plan

  • uvx prek run -a
  • uv run cargo nextest run --workspace --all-features (671 passed)

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR consolidates multiple Dependabot updates by bumping GitHub Actions used in CI/release workflows and refreshing the Rust dependency lockfile to newer crate versions.

Changes:

  • Updated actions/checkout usage across workflows from v6 to v7.
  • Updated the playground deployment workflow to use cloudflare/wrangler-action@v4.
  • Updated Rust dependency resolutions in Cargo.lock (e.g., insta, anyhow, env_logger, chrono, serde_json), including new transitive deps like strip-ansi-escapes.

Reviewed changes

Copilot reviewed 5 out of 6 changed files in this pull request and generated no comments.

Show a summary per file
File Description
Cargo.lock Updates locked Rust crate versions and transitive dependencies.
.github/workflows/release.yml Bumps actions/checkout to v7 for release jobs.
.github/workflows/playground.yml Bumps actions/checkout to v7 and wrangler-action to v4 for Pages deploy.
.github/workflows/labels.yml Bumps actions/checkout to v7 for label sync workflow.
.github/workflows/docs.yml Bumps actions/checkout to v7 for docs workflow.
.github/workflows/ci.yml Bumps actions/checkout to v7 across CI jobs.
Comments suppressed due to low confidence (1)

.github/workflows/playground.yml:42

  • cloudflare/wrangler-action@v4 installs Wrangler v4 by default when wranglerVersion is not provided, which can make deployments change behavior unexpectedly as Wrangler v4 minor versions are released. Consider pinning the Wrangler major (or an exact version) explicitly via the action input so the deployed toolchain is intentional and reproducible.
      - name: Deploy to Cloudflare Pages
        uses: cloudflare/wrangler-action@v4
        with:
          apiToken: ${{ secrets.CLOUDFLARE_API_TOKEN }}
          accountId: ${{ secrets.CLOUDFLARE_ACCOUNT_ID }}
          command: pages deploy playground/dist --project-name=tryke-playground


💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@thejchap thejchap force-pushed the codex/consolidate-dependency-updates branch from 5733e55 to 8e54cc7 Compare July 4, 2026 16:47
@thejchap thejchap merged commit c2bb16d into main Jul 4, 2026
25 checks passed
@thejchap thejchap deleted the codex/consolidate-dependency-updates branch July 4, 2026 16:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code rust Pull requests that update rust code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants