Skip to content

chore(deps): update cloudposse/github-action-pre-commit action to v4.1.0#20

Open
renovate[bot] wants to merge 1 commit into
masterfrom
renovate/cloudposse-github-action-pre-commit-4.x
Open

chore(deps): update cloudposse/github-action-pre-commit action to v4.1.0#20
renovate[bot] wants to merge 1 commit into
masterfrom
renovate/cloudposse-github-action-pre-commit-4.x

Conversation

@renovate

@renovate renovate Bot commented Jun 22, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Type Update Change
cloudposse/github-action-pre-commit action minor v4.0.0v4.1.0

Release Notes

cloudposse/github-action-pre-commit (cloudposse/github-action-pre-commit)

v4.1.0

Compare Source

Add canonical README.yaml for CI-generated README.md @​[copilot-swe-agent[bot]](https://redirect.github.com/apps/copilot-swe-agent) (#​34) This PR introduces a canonical `README.yaml` so `README.md` can be generated in CI using the repository-standard Cloud Posse docs workflow. The content mirrors the current action behavior and usage while aligning format with sibling Cloud Posse action repos.

  • Canonical README source

    • Adds README.yaml at repo root as the single source of truth for generated documentation.
    • Defines standard metadata fields (name, tags, license, github_repo, badges, related, include, contributors).

  • Action-focused documentation content

    • Captures concise project description and introduction for github-action-pre-commit.
    • Adds usage examples for:
      • default action invocation
      • custom extra_args
      • private-repo push-back configuration (token, git author, commit message).

  • Cloud Posse README.yaml convention alignment

    • Uses the same structure and section model as referenced Cloud Posse action repositories.
    • Includes reusable workflow reference links and badge format consistent with the org pattern.
# README.yaml (excerpt)
name: github-action-pre-commit
github_repo: cloudposse/github-action-pre-commit

usage: |-
  ```yaml
  - uses: cloudposse/github-action-pre-commit@v4.0.0
    with:
      token: ${{ secrets.GITHUB_TOKEN }}
      git_user_name: pre-commit
      git_user_email: pre-commit@users.noreply.github.com
      git_commit_message: pre-commit fixes
</details>

<details>
  <summary>Bump the npm_and_yarn group across 1 directory with 4 updates @&#8203;[dependabot[bot]](https://redirect.github.com/apps/dependabot) (#&#8203;31)</summary>
Bumps the npm_and_yarn group with 3 updates in the / directory: [webpack](https://redirect.github.com/webpack/webpack), [@&#8203;octokit/plugin-paginate-rest](https://redirect.github.com/octokit/plugin-paginate-rest.js) and [@&#8203;octokit/request](https://redirect.github.com/octokit/request.js).

Updates `webpack` from 5.94.0 to 5.105.4
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://redirect.github.com/webpack/webpack/releases">webpack's releases</a>.</em></p>
<blockquote>
<h2>v5.105.4</h2>
<h3>Patch Changes</h3>
<ul>
<li>
<p>Add <code>Module.getSourceBasicTypes</code> to distinguish basic source types and clarify how modules with non-basic source types like <code>remote</code> still produce JavaScript output. (by <a href="https://redirect.github.com/xiaoxiaojx"><code>@&#8203;​xiaoxiaojx</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20546">#&#8203;20546</a>)</p>
</li>
<li>
<p>Handle <code>createRequire</code> in expressions. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20549">#&#8203;20549</a>)</p>
</li>
<li>
<p>Fixed types for multi stats. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20556">#&#8203;20556</a>)</p>
</li>
<li>
<p>Remove empty needless js output for normal css module. (by <a href="https://redirect.github.com/JSerFeng"><code>@&#8203;​JSerFeng</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20162">#&#8203;20162</a>)</p>
</li>
<li>
<p>Update <code>enhanced-resolve</code> to support new features for <code>tsconfig.json</code>. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20555">#&#8203;20555</a>)</p>
</li>
<li>
<p>Narrows export presence guard detection to explicit existence checks on namespace imports only, i.e. patterns like &quot;x&quot; in ns. (by <a href="https://redirect.github.com/hai-x"><code>@&#8203;​hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20561">#&#8203;20561</a>)</p>
</li>
</ul>
<h2>v5.105.3</h2>
<h3>Patch Changes</h3>
<ul>
<li>
<p>Context modules now handle rejections correctly. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20455">#&#8203;20455</a>)</p>
</li>
<li>
<p>Only mark asset modules as side-effect-free when <code>experimental.futureDefaults</code> is set to true, so asset-copying use cases (e.g. <code>import &quot;./x.png&quot;</code>) won’t break unless the option is enabled. (by <a href="https://redirect.github.com/hai-x"><code>@&#8203;​hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20535">#&#8203;20535</a>)</p>
</li>
<li>
<p>Add the missing <strong>webpack_exports</strong> declaration in certain cases when bundling a JS entry together with non-JS entries (e.g., CSS entry or asset module entry). (by <a href="https://redirect.github.com/hai-x"><code>@&#8203;​hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20463">#&#8203;20463</a>)</p>
</li>
<li>
<p>Fixed HMR failure for CSS modules with <a href="https://redirect.github.com/import"><code>@&#8203;​import</code></a> when exportType !== &quot;link&quot;. When exportType is not &quot;link&quot;, CSS modules now behave like JavaScript modules and don't require special HMR handling, allowing <a href="https://redirect.github.com/import"><code>@&#8203;​import</code></a> CSS to work correctly during hot module replacement. (by <a href="https://redirect.github.com/xiaoxiaojx"><code>@&#8203;​xiaoxiaojx</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20514">#&#8203;20514</a>)</p>
</li>
<li>
<p>Fixed an issue where empty JavaScript files were generated for CSS-only entry points. The code now correctly checks if entry modules have JavaScript source types before determining whether to generate a JS file. (by <a href="https://redirect.github.com/xiaoxiaojx"><code>@&#8203;​xiaoxiaojx</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20454">#&#8203;20454</a>)</p>
</li>
<li>
<p>Do not crash when a referenced chunk is not a runtime chunk. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20461">#&#8203;20461</a>)</p>
</li>
<li>
<p>Fix some types. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20412">#&#8203;20412</a>)</p>
</li>
<li>
<p>Ensure that missing module error are thrown after the interception handler (if present), allowing module interception to customize the module factory. (by <a href="https://redirect.github.com/hai-x"><code>@&#8203;​hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20510">#&#8203;20510</a>)</p>
</li>
<li>
<p>Added <code>createRequire</code> support for ECMA modules. (by <a href="https://redirect.github.com/stefanbinoj"><code>@&#8203;​stefanbinoj</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20497">#&#8203;20497</a>)</p>
</li>
<li>
<p>Added category for CJS reexport dependency to fix issues with ECMA modules. (by <a href="https://redirect.github.com/hai-x"><code>@&#8203;​hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20444">#&#8203;20444</a>)</p>
</li>
<li>
<p>Implement immutable bytes for <code>bytes</code> import attribute to match tc39 spec. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20481">#&#8203;20481</a>)</p>
</li>
<li>
<p>Fixed deterministic search for graph roots regardless of edge order. (by <a href="https://redirect.github.com/veeceey"><code>@&#8203;​veeceey</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20452">#&#8203;20452</a>)</p>
</li>
</ul>
<h2>v5.105.2</h2>
<h3>Patch Changes</h3>
<ul>
<li>Fixed <code>WebpackPluginInstance</code> type regression. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20440">#&#8203;20440</a>)</li>
</ul>
<h2>v5.105.1</h2>
<h3>Patch Changes</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://redirect.github.com/webpack/webpack/blob/main/CHANGELOG.md">webpack's changelog</a>.</em></p>
<blockquote>
<h2>5.105.4</h2>
<h3>Patch Changes</h3>
<ul>
<li>
<p>Add <code>Module.getSourceBasicTypes</code> to distinguish basic source types and clarify how modules with non-basic source types like <code>remote</code> still produce JavaScript output. (by <a href="https://redirect.github.com/xiaoxiaojx"><code>@&#8203;​xiaoxiaojx</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20546">#&#8203;20546</a>)</p>
</li>
<li>
<p>Handle <code>createRequire</code> in expressions. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20549">#&#8203;20549</a>)</p>
</li>
<li>
<p>Fixed types for multi stats. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20556">#&#8203;20556</a>)</p>
</li>
<li>
<p>Remove empty needless js output for normal css module. (by <a href="https://redirect.github.com/JSerFeng"><code>@&#8203;​JSerFeng</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20162">#&#8203;20162</a>)</p>
</li>
<li>
<p>Update <code>enhanced-resolve</code> to support new features for <code>tsconfig.json</code>. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20555">#&#8203;20555</a>)</p>
</li>
<li>
<p>Narrows export presence guard detection to explicit existence checks on namespace imports only, i.e. patterns like &quot;x&quot; in ns. (by <a href="https://redirect.github.com/hai-x"><code>@&#8203;​hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20561">#&#8203;20561</a>)</p>
</li>
</ul>
<h2>5.105.3</h2>
<h3>Patch Changes</h3>
<ul>
<li>
<p>Context modules now handle rejections correctly. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20455">#&#8203;20455</a>)</p>
</li>
<li>
<p>Only mark asset modules as side-effect-free when <code>experimental.futureDefaults</code> is set to true, so asset-copying use cases (e.g. <code>import &quot;./x.png&quot;</code>) won’t break unless the option is enabled. (by <a href="https://redirect.github.com/hai-x"><code>@&#8203;​hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20535">#&#8203;20535</a>)</p>
</li>
<li>
<p>Add the missing <strong>webpack_exports</strong> declaration in certain cases when bundling a JS entry together with non-JS entries (e.g., CSS entry or asset module entry). (by <a href="https://redirect.github.com/hai-x"><code>@&#8203;​hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20463">#&#8203;20463</a>)</p>
</li>
<li>
<p>Fixed HMR failure for CSS modules with <a href="https://redirect.github.com/import"><code>@&#8203;​import</code></a> when exportType !== &quot;link&quot;. When exportType is not &quot;link&quot;, CSS modules now behave like JavaScript modules and don't require special HMR handling, allowing <a href="https://redirect.github.com/import"><code>@&#8203;​import</code></a> CSS to work correctly during hot module replacement. (by <a href="https://redirect.github.com/xiaoxiaojx"><code>@&#8203;​xiaoxiaojx</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20514">#&#8203;20514</a>)</p>
</li>
<li>
<p>Fixed an issue where empty JavaScript files were generated for CSS-only entry points. The code now correctly checks if entry modules have JavaScript source types before determining whether to generate a JS file. (by <a href="https://redirect.github.com/xiaoxiaojx"><code>@&#8203;​xiaoxiaojx</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20454">#&#8203;20454</a>)</p>
</li>
<li>
<p>Do not crash when a referenced chunk is not a runtime chunk. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20461">#&#8203;20461</a>)</p>
</li>
<li>
<p>Fix some types. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20412">#&#8203;20412</a>)</p>
</li>
<li>
<p>Ensure that missing module error are thrown after the interception handler (if present), allowing module interception to customize the module factory. (by <a href="https://redirect.github.com/hai-x"><code>@&#8203;​hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20510">#&#8203;20510</a>)</p>
</li>
<li>
<p>Added <code>createRequire</code> support for ECMA modules. (by <a href="https://redirect.github.com/stefanbinoj"><code>@&#8203;​stefanbinoj</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20497">#&#8203;20497</a>)</p>
</li>
<li>
<p>Added category for CJS reexport dependency to fix issues with ECMA modules. (by <a href="https://redirect.github.com/hai-x"><code>@&#8203;​hai-x</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20444">#&#8203;20444</a>)</p>
</li>
<li>
<p>Implement immutable bytes for <code>bytes</code> import attribute to match tc39 spec. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20481">#&#8203;20481</a>)</p>
</li>
<li>
<p>Fixed deterministic search for graph roots regardless of edge order. (by <a href="https://redirect.github.com/veeceey"><code>@&#8203;​veeceey</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20452">#&#8203;20452</a>)</p>
</li>
</ul>
<h2>5.105.2</h2>
<h3>Patch Changes</h3>
<ul>
<li>Fixed <code>WebpackPluginInstance</code> type regression. (by <a href="https://redirect.github.com/alexander-akait"><code>@&#8203;​alexander-akait</code></a> in <a href="https://redirect.github.com/webpack/webpack/pull/20440">#&#8203;20440</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://redirect.github.com/webpack/webpack/commit/27c13b44c861908793f160f9f7413b32543c0522"><code>27c13b4</code></a> chore(release): new release (<a href="https://redirect.github.com/webpack/webpack/issues/20550">#&#8203;20550</a>)</li>
<li><a href="https://redirect.github.com/webpack/webpack/commit/9b2f41ee98e01a9265c430d2c52fa6a9db0e177a"><code>9b2f41e</code></a> chore: bump terser plugin (<a href="https://redirect.github.com/webpack/webpack/issues/20569">#&#8203;20569</a>)</li>
<li><a href="https://redirect.github.com/webpack/webpack/commit/eafe0605b018dd4e19a46d45fb5d72442772aff1"><code>eafe060</code></a> fix: narrow the export presence guard detection (<a href="https://redirect.github.com/webpack/webpack/issues/20561">#&#8203;20561</a>)</li>
<li><a href="https://redirect.github.com/webpack/webpack/commit/75d605cb57b23257ee88f99ada7938273ea3a1ff"><code>75d605c</code></a> refactor: add AppendOnlyStackedSet iteration support and tests (<a href="https://redirect.github.com/webpack/webpack/issues/20560">#&#8203;20560</a>)</li>
<li><a href="https://redirect.github.com/webpack/webpack/commit/afa607d0967f6b0259bfe9f62d99ef97db64bdac"><code>afa607d</code></a> refactor: remove unused code (<a href="https://redirect.github.com/webpack/webpack/issues/20562">#&#8203;20562</a>)</li>
<li><a href="https://redirect.github.com/webpack/webpack/commit/40989026fa542ceffa2821e5d25ae0d87c0bd09b"><code>4098902</code></a> test: add source files for web-webworker and web-webworker-auto-public-path (...</li>
<li><a href="https://redirect.github.com/webpack/webpack/commit/f97be67fdd3c59acff2c0da7dd9f04835b037e4c"><code>f97be67</code></a> refactor: fix duplicated word in Compilation JSDoc (<a href="https://redirect.github.com/webpack/webpack/issues/20547">#&#8203;20547</a>)</li>
<li><a href="https://redirect.github.com/webpack/webpack/commit/9d76fff9f645d194c293f12dadf029173e9ed1d1"><code>9d76fff</code></a> refactor: add Module.getSourceBasicTypes for basic JS type detection (<a href="https://redirect.github.com/webpack/webpack/issues/20546">#&#8203;20546</a>)</li>
<li><a href="https://redirect.github.com/webpack/webpack/commit/a3d7839376784b2e44987b77f7d6bcc2ed3a0bdc"><code>a3d7839</code></a> fix: types for multi stats (<a href="https://redirect.github.com/webpack/webpack/issues/20556">#&#8203;20556</a>)</li>
<li><a href="https://redirect.github.com/webpack/webpack/commit/b8e9b057bebccf6268d9b348bc23b056c66a067b"><code>b8e9b05</code></a> fix: update <code>enhanced-resolve</code> to support new features for <code>tsconfig.json</code> (#...</li>
<li>Additional commits viewable in <a href="https://redirect.github.com/webpack/webpack/compare/v5.94.0...v5.105.4">compare view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by [GitHub Actions](<a href="https://www.npmjs.com/~GitHub">https://www.npmjs.com/~GitHub</a> Actions), a new releaser for webpack since your current version.</p>
</details>
<br />

Updates `@octokit/plugin-paginate-rest` from 9.1.5 to 9.2.2
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/releases"><code>@&#8203;​octokit/plugin-paginate-rest</code>'s releases</a>.</em></p>
<blockquote>
<h2>v9.2.2</h2>
<h2><a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/compare/v9.2.1...v9.2.2">9.2.2</a> (2025-02-15)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>ReDos regex vulnerability, reported by <a href="https://redirect.github.com/DayShift"><code>@&#8203;​DayShift</code></a> (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/issues/660">#&#8203;660</a>) (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/commit/e1e44898cf1870f1496ae7f5b2a4476c71044e6b">e1e4489</a>)</li>
</ul>
<h2>v9.2.1</h2>
<h2><a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/compare/v9.2.0...v9.2.1">9.2.1</a> (2024-03-01)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>pkg:</strong> pin <code>@&#8203;octokit/core</code> peerDependency to v5 (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/issues/599">#&#8203;599</a>) (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/commit/5b84386830ebfe873f4ab7e106cc33eec6a2ace7">5b84386</a>)</li>
</ul>
<h2>v9.2.0</h2>
<h1><a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/compare/v9.1.5...v9.2.0">9.2.0</a> (2024-02-22)</h1>
<h3>Features</h3>
<ul>
<li>new <code>/orgs/{org}/organization-roles/{role_id}/teams</code> and <code>/orgs/{org}/organization-roles/{role_id}/users</code> endpoints (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/issues/594">#&#8203;594</a>) (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/commit/75aeaafae8b52afe744958075d95111f37343093">75aeaaf</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/commit/e1e44898cf1870f1496ae7f5b2a4476c71044e6b"><code>e1e4489</code></a> fix: ReDos regex vulnerability, reported by <a href="https://redirect.github.com/DayShift"><code>@&#8203;​DayShift</code></a> (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/issues/660">#&#8203;660</a>)</li>
<li><a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/commit/5b84386830ebfe873f4ab7e106cc33eec6a2ace7"><code>5b84386</code></a> fix(pkg): pin <code>@&#8203;octokit/core</code> peerDependency to v5 (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/issues/599">#&#8203;599</a>)</li>
<li><a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/commit/fa01f94c624b3b67f6ef687c80865773a1c99676"><code>fa01f94</code></a> ci(action): update actions/add-to-project action to v0.6.0 (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/issues/598">#&#8203;598</a>)</li>
<li><a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/commit/75aeaafae8b52afe744958075d95111f37343093"><code>75aeaaf</code></a> feat: new <code>/orgs/{org}/organization-roles/{role_id}/teams</code> and `/orgs/{org}/o...</li>
<li><a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/commit/54d6bcfef756e5b329d817ce5ad3f92885a00a7d"><code>54d6bcf</code></a> chore(deps): update dependency prettier to v3.2.5</li>
<li><a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/commit/1bfa2f8d338158db33af812168bbfad9d8af4f00"><code>1bfa2f8</code></a> chore(deps): update dependency npm-run-all2 to v6</li>
<li><a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/commit/eb4a8fe643a368ef3d68f8901d551638230581e1"><code>eb4a8fe</code></a> chore(deps): replace dependency npm-run-all with npm-run-all2 ^5.0.0</li>
<li><a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/commit/11ef7798c8519e8446a92605d4e4bd2008a42c07"><code>11ef779</code></a> chore(deps): update dependency esbuild to ^0.20.0</li>
<li><a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/commit/2b6cc98c51e0816a2873ea5d6e6b4edb01d2e9b9"><code>2b6cc98</code></a> ci(action): update peter-evans/create-or-update-comment action to v4</li>
<li><a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/commit/d7c9de5bb0366b61666c1270138ce93059c3402a"><code>d7c9de5</code></a> chore(deps): update dependency prettier to v3.2.4 (<a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/issues/588">#&#8203;588</a>)</li>
<li>Additional commits viewable in <a href="https://redirect.github.com/octokit/plugin-paginate-rest.js/compare/v9.1.5...v9.2.2">compare view</a></li>
</ul>
</details>
<br />

Updates `@octokit/request` from 8.1.6 to 8.4.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://redirect.github.com/octokit/request.js/releases"><code>@&#8203;​octokit/request</code>'s releases</a>.</em></p>
<blockquote>
<h2>v8.4.1</h2>
<h2><a href="https://redirect.github.com/octokit/request.js/compare/v8.4.0...v8.4.1">8.4.1</a> (2025-02-15)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>ReDos regex vulnerability, reported by <a href="https://redirect.github.com/DayShift"><code>@&#8203;​DayShift</code></a> (<a href="https://redirect.github.com/octokit/request.js/issues/741">#&#8203;741</a>) (<a href="https://redirect.github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2">356411e</a>)</li>
</ul>
<h2>v8.4.0</h2>
<h1><a href="https://redirect.github.com/octokit/request.js/compare/v8.3.1...v8.4.0">8.4.0</a> (2024-04-09)</h1>
<h3>Features</h3>
<ul>
<li>re-add <code>redirect</code> request option (<a href="https://redirect.github.com/octokit/request.js/issues/636">#&#8203;636</a>) (<a href="https://redirect.github.com/octokit/request.js/commit/abc4955217d7626200844b75321be3ac73ef95f6">abc4955</a>), closes <a href="https://redirect.github.com/octokit/request.js/issues/599">#&#8203;599</a></li>
</ul>
<h2>v8.3.1</h2>
<h2><a href="https://redirect.github.com/octokit/request.js/compare/v8.3.0...v8.3.1">8.3.1</a> (2024-04-05)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>upgrade <code>@&#8203;octokit/endpoint</code> (<a href="https://redirect.github.com/octokit/request.js/commit/4e7127cff05fbd091306168af341a9bb7d443045">4e7127c</a>)</li>
</ul>
<h2>v8.3.0</h2>
<h1><a href="https://redirect.github.com/octokit/request.js/compare/v8.2.0...v8.3.0">8.3.0</a> (2024-04-05)</h1>
<h3>Bug Fixes</h3>
<ul>
<li>upgrade <code>@&#8203;octokit/types</code> (<a href="https://redirect.github.com/octokit/request.js/commit/6822e8bbaa74bc177e14fabfa54e94e7f13edc68">6822e8b</a>)</li>
</ul>
<h3>Features</h3>
<ul>
<li><strong>security:</strong> Add provenance (<a href="https://redirect.github.com/octokit/request.js/issues/685">#&#8203;685</a>) (<a href="https://redirect.github.com/octokit/request.js/commit/2e6792585f64da58d735c0dda2811bf9cff0ac0e">2e67925</a>)</li>
</ul>
<h2>v8.2.0</h2>
<h1><a href="https://redirect.github.com/octokit/request.js/compare/v8.1.6...v8.2.0">8.2.0</a> (2024-02-09)</h1>
<h3>Features</h3>
<ul>
<li>add documentation link in error message (<a href="https://redirect.github.com/octokit/request.js/issues/667">#&#8203;667</a>) (<a href="https://redirect.github.com/octokit/request.js/commit/dbfeab2ff9d4e7b5eaf7d155b1c4cdd630928753">dbfeab2</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://redirect.github.com/octokit/request.js/commit/356411e3217019aa9fc8a68f4236af82490873c2"><code>356411e</code></a> fix: ReDos regex vulnerability, reported by <a href="https://redirect.github.com/DayShift"><code>@&#8203;​DayShift</code></a> (<a href="https://redirect.github.com/octokit/request.js/issues/741">#&#8203;741</a>)</li>
<li><a href="https://redirect.github.com/octokit/request.js/commit/abc4955217d7626200844b75321be3ac73ef95f6"><code>abc4955</code></a> feat: re-add <code>redirect</code> request option (<a href="https://redirect.github.com/octokit/request.js/issues/636">#&#8203;636</a>)</li>
<li><a href="https://redirect.github.com/octokit/request.js/commit/4e7127cff05fbd091306168af341a9bb7d443045"><code>4e7127c</code></a> fix: upgrade <code>@&#8203;octokit/endpoint</code></li>
<li><a href="https://redirect.github.com/octokit/request.js/commit/2e6792585f64da58d735c0dda2811bf9cff0ac0e"><code>2e67925</code></a> feat(security): Add provenance (<a href="https://redirect.github.com/octokit/request.js/issues/685">#&#8203;685</a>)</li>
<li><a href="https://redirect.github.com/octokit/request.js/commit/6822e8bbaa74bc177e14fabfa54e94e7f13edc68"><code>6822e8b</code></a> fix: upgrade <code>@&#8203;octokit/types</code></li>
<li><a href="https://redirect.github.com/octokit/request.js/commit/dbfeab2ff9d4e7b5eaf7d155b1c4cdd630928753"><code>dbfeab2</code></a> feat: add documentation link in error message (<a href="https://redirect.github.com/octokit/request.js/issues/667">#&#8203;667</a>)</li>
<li><a href="https://redirect.github.com/octokit/request.js/commit/c013de4e24a01e0776661e46ba60fcf0d4670389"><code>c013de4</code></a> docs: fix spelling errors (<a href="https://redirect.github.com/octokit/request.js/issues/671">#&#8203;671</a>)</li>
<li><a href="https://redirect.github.com/octokit/request.js/commit/3d22c38bc0ed14fa5ff4a732bb62bee9b62fb5e6"><code>3d22c38</code></a> chore(deps): update dependency prettier to v3.2.5</li>
<li><a href="https://redirect.github.com/octokit/request.js/commit/984ec173e6dda48c4c1cd39666b8e6e2e3abfa7e"><code>984ec17</code></a> chore(deps): update dependency esbuild to ^0.20.0</li>
<li><a href="https://redirect.github.com/octokit/request.js/commit/2a9cf786e8f3b2f900fbb06a4545d959b9fff318"><code>2a9cf78</code></a> ci(action): update peter-evans/create-or-update-comment action to v4</li>
<li>Additional commits viewable in <a href="https://redirect.github.com/octokit/request.js/compare/v8.1.6...v8.4.1">compare view</a></li>
</ul>
</details>
<br />

Updates `@octokit/request-error` from 5.0.1 to 5.1.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://redirect.github.com/octokit/request-error.js/releases"><code>@&#8203;​octokit/request-error</code>'s releases</a>.</em></p>
<blockquote>
<h2>v5.1.1</h2>
<h2><a href="https://redirect.github.com/octokit/request-error.js/compare/v5.1.0...v5.1.1">5.1.1</a> (2025-02-14)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>ReDos regex vulnerability, reported by <a href="https://redirect.github.com/dayshift"><code>@&#8203;​dayshift</code></a> (<a href="https://redirect.github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de">12a14f0</a>)</li>
</ul>
<h2>v5.1.0</h2>
<h1><a href="https://redirect.github.com/octokit/request-error.js/compare/v5.0.1...v5.1.0">5.1.0</a> (2024-04-05)</h1>
<h3>Bug Fixes</h3>
<ul>
<li>upgrade <code>@&#8203;octokit/types</code> to v13 (<a href="https://redirect.github.com/octokit/request-error.js/commit/3af20bd58fea6cc349bc191c725e78e9cc021da6">3af20bd</a>)</li>
</ul>
<h3>Features</h3>
<ul>
<li><strong>security:</strong> Add provenance (<a href="https://redirect.github.com/octokit/request-error.js/issues/416">#&#8203;416</a>) (<a href="https://redirect.github.com/octokit/request-error.js/commit/94147e8843898e0edd2664d0c46a4f42eb4adaa4">94147e8</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://redirect.github.com/octokit/request-error.js/commit/b51ed2766807a5ca59b5ba477762e84171ccca53"><code>b51ed27</code></a> test: ReDos regex vulnerability, reported by <a href="https://redirect.github.com/dayshift"><code>@&#8203;​dayshift</code></a></li>
<li><a href="https://redirect.github.com/octokit/request-error.js/commit/12a14f03dbfbbdc759c1c20a631b277892da09de"><code>12a14f0</code></a> fix: ReDos regex vulnerability, reported by <a href="https://redirect.github.com/dayshift"><code>@&#8203;​dayshift</code></a></li>
<li><a href="https://redirect.github.com/octokit/request-error.js/commit/3af20bd58fea6cc349bc191c725e78e9cc021da6"><code>3af20bd</code></a> fix: upgrade <code>@&#8203;octokit/types</code> to v13</li>
<li><a href="https://redirect.github.com/octokit/request-error.js/commit/94147e8843898e0edd2664d0c46a4f42eb4adaa4"><code>94147e8</code></a> feat(security): Add provenance (<a href="https://redirect.github.com/octokit/request-error.js/issues/416">#&#8203;416</a>)</li>
<li>See full diff in <a href="https://redirect.github.com/octokit/request-error.js/compare/v5.0.1...v5.1.1">compare view</a></li>
</ul>
</details>
<br />

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://redirect.github.com/cloudposse/github-action-pre-commit/network/alerts).

</details>
</details>

<details>
  <summary>feat: upgrade node runtime to node24 and automate future upgrades via Renovate @&#8203;[copilot-swe-agent[bot]](https://redirect.github.com/apps/copilot-swe-agent) (#&#8203;32)</summary>
Node 20 is approaching EOL; GitHub Actions supports `node24` as the latest runtime. This upgrades the action and adds Renovate automation to catch future major version bumps.

#### Changes

- **`action.yml`**: `using: 'node20'` → `using: 'node24'`
- **`.github/renovate.json`**: adds a custom regex manager targeting `action.yml` to track the `using: 'nodeXX'` field against the `node-version` datasource — Renovate will open PRs automatically when a new Node major becomes available

```json
{
  "customManagers": [
    {
      "customType": "regex",
      "fileMatch": ["^action\\.yml$"],
      "matchStrings": ["using: 'node(?<currentValue>\\d+)'"],
      "depNameTemplate": "node",
      "datasourceTemplate": "node-version",
      "versioningTemplate": "node"
    }
  ]
}
Original prompt

This section details on the original issue you should resolve

<issue_title>Upgrade node20 to latest node and expose input</issue_title>
<issue_description>Found a bug? Maybe our Slack Community can help.

Slack Community

Describe the Bug

Node 20 is going to be deprecated

Let's use a non deprecated version and find a way to keep this up to date</issue_description>

<agent_instructions>Resolve the issue. Use renovate to find a way to keep this version up to date. Use semantic commits. Use semantic PR title. Use PR template. Think deeply. Be surgical.</agent_instructions>

Comments on the Issue (you are @​copilot in this section)

💡 You can make Copilot smarter by setting up custom instructions, customizing its development environment and configuring Model Context Protocol (MCP) servers. Learn more Copilot coding agent tips in the docs.

Bump the npm_and_yarn group with 2 updates @​[dependabot[bot]](https://redirect.github.com/apps/dependabot) (#​26) Bumps the npm_and_yarn group with 2 updates: [webpack](https://redirect.github.com/webpack/webpack) and [undici](https://redirect.github.com/nodejs/undici).

Updates webpack from 5.90.1 to 5.94.0

Release notes

Sourced from webpack's releases.

v5.94.0

Bug Fixes

  • Added runtime condition for harmony reexport checked
  • Handle properly data/http/https protocols in source maps
  • Make bigint optimistic when browserslist not found
  • Move @​​types/eslint-scope to dev deps
  • Related in asset stats is now always an array when no related found
  • Handle ASI for export declarations
  • Mangle destruction incorrect with export named default properly
  • Fixed unexpected asi generation with sequence expression
  • Fixed a lot of types

New Features

  • Added new external type "module-import"
  • Support webpackIgnore for new URL() construction
  • [CSS] @​import pathinfo support

Security

  • Fixed DOM clobbering in auto public path

v5.93.0

Bug Fixes

  • Generate correct relative path to runtime chunks
  • Makes DefinePlugin quieter under default log level
  • Fixed mangle destructuring default in namespace import
  • Fixed consumption of eager shared modules for module federation
  • Strip slash for pretty regexp
  • Calculate correct contenthash for CSS generator options

New Features

  • Added the binary generator option for asset modules to explicitly keep source maps produced by loaders
  • Added the modern-module library value for tree shakable output
  • Added the overrideStrict option to override strict or non-strict mode for javascript modules

v5.92.1

Bug Fixes

  • Doesn't crash with an error when the css experiment is enabled and contenthash is used

v5.92.0

Bug Fixes

  • Correct tidle range's comutation for module federation
  • Consider runtime for pure expression dependency update hash
  • Return value in the subtractRuntime function for runtime logic

... (truncated)

Commits
  • eabf85d chore(release): 5.94.0
  • 955e057 security: fix DOM clobbering in auto public path
  • 9822387 test: fix
  • cbb86ed test: fix
  • 5ac3d7f fix: unexpected asi generation with sequence expression
  • 2411661 security: fix DOM clobbering in auto public path
  • b8c03d4 fix: unexpected asi generation with sequence expression
  • f46a03c revert: do not use heuristic fallback for "module-import"
  • 60f1898 fix: do not use heuristic fallback for "module-import"
  • 66306aa Revert "fix: module-import get fallback from externalsPresets"
  • Additional commits viewable in compare view

Updates undici from 5.28.3 to 5.28.4

Release notes

Sourced from undici's releases.

v5.28.4

⚠️ Security Release ⚠️

Full Changelog: https://github.com/nodejs/undici/compare/v5.28.3...v5.28.4

Commits

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

Use current versions in README @​npwolf (#​21) Upgrading to latest released versions of actions in README

what

  • Upgrade github action examples with latest versions

why

  • Keep up to date

references

🤖 Automatic Updates

Replace Makefile with atmos.yaml @​osterman (#​29)

what

  • Remove Makefile
  • Add atmos.yaml

why

  • Replace build-harness with atmos for readme genration

References

  • DEV-3229 Migrate from build-harness to atmos
Update .github/settings.yml @​osterman (#​27)

what

  • Update .github/settings.yml
  • Drop .github/auto-release.yml files

why

  • Re-apply .github/settings.yml from org level
  • Use organization level auto-release settings

references

  • DEV-1242 Add protected tags with Repository Rulesets on GitHub
Update release workflow @​osterman (#​25)

what

  • Update workflow (.github/workflows/release.yaml) to have permissions commenting PR

why

  • Add comments to PRs when it's changes are released
Use GitHub Action Workflows from `cloudposse/.github` Repo @​osterman (#​24)

what

  • Update workflows (.github/workflows/settings.yaml) to use shared workflows from .github repo

why

  • Reduce nested levels of reusable workflows
Use GitHub Action Workflows from `cloudposse/.github` Repo @​osterman (#​23)

what

  • Update workflows (.github/workflows/settings.yaml)

why

  • Support new readme generation workflow.
  • Generate banners

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants