Bump the actions group across 1 directory with 2 updates

[dependabot]

Bumps the actions group with 2 updates in the / directory: anthropics/claude-code-action and dependabot/fetch-metadata.

Updates anthropics/claude-code-action from 0.0.63 to 1.0.133

Release notes

Sourced from anthropics/claude-code-action's releases.

v1.0.133

What's Changed

• Use workload identity federation for Claude auth in CI workflows by @​ashwin-ant in anthropics/claude-code-action#1344

Full Changelog: anthropics/claude-code-action@v1...v1.0.133

v1.0.132

Full Changelog: anthropics/claude-code-action@v1...v1.0.132

v1.0.131

Full Changelog: anthropics/claude-code-action@v1...v1.0.131

v1.0.130

What's Changed

• Add Workload Identity Federation (OIDC) authentication support by @​ashwin-ant in anthropics/claude-code-action#1338

Full Changelog: anthropics/claude-code-action@v1...v1.0.130

v1.0.129

Full Changelog: anthropics/claude-code-action@v1...v1.0.129

v1.0.128

Full Changelog: anthropics/claude-code-action@v1...v1.0.128

v1.0.127

What's Changed

• Refactor allowed_bots actor resolution by @​ashwin-ant in anthropics/claude-code-action#1330

Full Changelog: anthropics/claude-code-action@v1...v1.0.127

v1.0.126

Full Changelog: anthropics/claude-code-action@v1...v1.0.126

v1.0.125

What's Changed

• Simplify comment tool instructions in prompt by @​ashwin-ant in anthropics/claude-code-action#1328

Full Changelog: anthropics/claude-code-action@v1...v1.0.125

v1.0.124

What's Changed

• fix: add parentheses to fix operator precedence in co-author check by @​FuturizeRush in anthropics/claude-code-action#1199
• Strengthen simplified tag-mode prompt (USE_SIMPLE_PROMPT) by @​ashwin-ant in anthropics/claude-code-action#1313
• Fix prettier formatting in create-prompt by @​ashwin-ant in anthropics/claude-code-action#1325

New Contributors

... (truncated)

Commits

• 787c5a0 chore: bump Claude Code to 2.1.150 and Agent SDK to 0.3.150
• 4257c8e Use workload identity federation for Claude auth in CI workflows (#1344)
• bbfaf8e chore: bump Claude Code to 2.1.149 and Agent SDK to 0.3.149
• 4481e6d chore: bump Claude Code to 2.1.148 and Agent SDK to 0.3.148
• 661a6fe Add Workload Identity Federation (OIDC) authentication support (#1338)
• c9d66af chore: bump Claude Code to 2.1.147 and Agent SDK to 0.3.147
• 20c8abf chore: bump Claude Code to 2.1.146 and Agent SDK to 0.3.146
• 1dc994e Resolve actor account type before applying allowed_bots (#1330)
• ca89df3 chore: bump Claude Code to 2.1.145 and Agent SDK to 0.3.145
• fd1877d Simplify comment tool instructions in prompt (#1328)
• Additional commits viewable in compare view

Updates dependabot/fetch-metadata from 2.5.0 to 3.1.0

Release notes

Sourced from dependabot/fetch-metadata's releases.

v3.1.0

What's Changed

• Add permissions to all workflows by @​truggeri in dependabot/fetch-metadata#687
• build(deps-dev): bump globals from 16.0.0 to 17.4.0 by @​dependabot[bot] in dependabot/fetch-metadata#690
• build(deps-dev): bump esbuild from 0.27.4 to 0.28.0 by @​dependabot[bot] in dependabot/fetch-metadata#693
• build(deps-dev): bump @​hono/node-server from 1.19.10 to 1.19.13 by @​dependabot[bot] in dependabot/fetch-metadata#694
• build(deps-dev): bump hono from 4.12.7 to 4.12.12 by @​dependabot[bot] in dependabot/fetch-metadata#695
• Dynamically update the tracking tag in action by @​truggeri in dependabot/fetch-metadata#696
• fix: handle duplicate dependency names in parseMetadataLinks by @​devantler in dependabot/fetch-metadata#700
• fix: remove $ anchor from updateFragment regex to handle pip directory suffixes by @​devantler in dependabot/fetch-metadata#698
• Updates to README for permissions clarification by @​truggeri in dependabot/fetch-metadata#697
• fix: resolve update-type null for Python, Composer, and Terraform PRs by @​vitorsdcs in dependabot/fetch-metadata#704
• build(deps-dev): bump globals from 17.4.0 to 17.5.0 by @​dependabot[bot] in dependabot/fetch-metadata#703
• build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1 by @​dependabot[bot] in dependabot/fetch-metadata#701
• build(deps): bump @​actions/github from 9.0.0 to 9.1.0 in the dependencies group across 1 directory by @​dependabot[bot] in dependabot/fetch-metadata#702
• build(deps-dev): bump hono from 4.12.12 to 4.12.14 by @​dependabot[bot] in dependabot/fetch-metadata#705
• v3.1.0 by @​fetch-metadata-action-automation[bot] in dependabot/fetch-metadata#692

New Contributors

• @​devantler made their first contribution in dependabot/fetch-metadata#700
• @​vitorsdcs made their first contribution in dependabot/fetch-metadata#704

Full Changelog: dependabot/fetch-metadata@v3...v3.1.0

v3.0.0

The breaking change is requiring Node.js version v24 as the Actions runtime.

What's Changed

• feat: Parse versions from metadata links by @​ppkarwasz in dependabot/fetch-metadata#632
• Upgrade actions core and actions github packages by @​truggeri in dependabot/fetch-metadata#649
• docs: Add notes for using alert-lookup with App Token by @​sue445 in dependabot/fetch-metadata#656
• feat!: update Node.js version to v24 by @​sturman in dependabot/fetch-metadata#671
• Switch build tooling from ncc to esbuild by @​truggeri in dependabot/fetch-metadata#676
• Add --legal-comments=none to esbuild build commands by @​jeffwidman in dependabot/fetch-metadata#679
• Bump tsconfig target from es2022 to es2024 by @​jeffwidman in dependabot/fetch-metadata#680
• Remove vestigial outDir from tsconfig.json by @​jeffwidman in dependabot/fetch-metadata#681
• Switch tsconfig module resolution to bundler by @​jeffwidman in dependabot/fetch-metadata#682
• Remove skipLibCheck from tsconfig.json by @​jeffwidman in dependabot/fetch-metadata#683
• Add typecheck step to CI by @​jeffwidman in dependabot/fetch-metadata#685
• Enable noImplicitAny in tsconfig.json by @​jeffwidman in dependabot/fetch-metadata#684
• Upgrade @​actions/core to ^3.0.0 by @​truggeri in dependabot/fetch-metadata#677
• Upgrade @​actions/github to ^9.0.0 and @​octokit/request-error to ^7.1.0 by @​truggeri in dependabot/fetch-metadata#678
• Bump qs from 6.14.0 to 6.14.1 by @​dependabot[bot] in dependabot/fetch-metadata#651
• Bump hono from 4.11.1 to 4.11.4 by @​dependabot[bot] in dependabot/fetch-metadata#652
• Bump hono from 4.11.4 to 4.11.7 by @​dependabot[bot] in dependabot/fetch-metadata#653
• Bump hono from 4.11.7 to 4.12.0 by @​dependabot[bot] in dependabot/fetch-metadata#657
• Bump qs from 6.14.1 to 6.14.2 by @​dependabot[bot] in dependabot/fetch-metadata#655
• Bump @​modelcontextprotocol/sdk from 1.25.1 to 1.26.0 by @​dependabot[bot] in dependabot/fetch-metadata#654
• Bump @​hono/node-server from 1.19.9 to 1.19.10 by @​dependabot[bot] in dependabot/fetch-metadata#665
• Bump hono from 4.12.2 to 4.12.5 by @​dependabot[bot] in dependabot/fetch-metadata#664

... (truncated)

Commits

• 25dd0e3 v3.1.0 (#692)
• e073f50 Merge pull request #705 from dependabot/dependabot/npm_and_yarn/hono-4.12.14
• 0670e16 build(deps-dev): bump hono from 4.12.12 to 4.12.14
• 7a7fe10 Merge pull request #702 from dependabot/dependabot/npm_and_yarn/dependencies-...
• 5168191 Updating dist build
• 23882e1 build(deps): bump @​actions/github in the dependencies group
• 1072469 Merge pull request #701 from dependabot/dependabot/github_actions/actions/cre...
• 43f8a00 build(deps): bump actions/create-github-app-token from 3.0.0 to 3.1.1
• b4d904a Merge pull request #703 from dependabot/dependabot/npm_and_yarn/globals-17.5.0
• c8046bb build(deps-dev): bump globals from 17.4.0 to 17.5.0
• Additional commits viewable in compare view