Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Bump gradle/wrapper-validation-action from 1 to 3 (#213)
Bumps [gradle/wrapper-validation-action](https://github.com/gradle/wrapper-validation-action) from 1 to 3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/gradle/wrapper-validation-action/releases">gradle/wrapper-validation-action's releases</a>.</em></p> <blockquote> <h2>v2.1.3</h2> <h2>What's Changed</h2> <ul> <li>Update various NPM dependencies</li> <li>Update wrapper checksums to include Gradle 8.7</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/gradle/wrapper-validation-action/compare/v2.1.2...v2.1.3">https://github.com/gradle/wrapper-validation-action/compare/v2.1.2...v2.1.3</a></p> <h2>v2.1.2</h2> <h2>What's Changed</h2> <ul> <li>Update various NPM dependencies</li> <li>Update wrapper checksums</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/gradle/wrapper-validation-action/compare/v2.1.1...v2.1.2">https://github.com/gradle/wrapper-validation-action/compare/v2.1.1...v2.1.2</a></p> <h2>v2.1.1</h2> <h2>Changelog</h2> <ul> <li>[FIX] Add hardcoded checksum for Gradle 7.6.4</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/gradle/wrapper-validation-action/compare/v2...v2.1.1">https://github.com/gradle/wrapper-validation-action/compare/v2...v2.1.1</a></p> <h2>v2.1.0</h2> <p>This release should vastly reduce the number of network requests made by the <code>wrapper-validation-action</code>, by hardcoding the checksums of all known Gradle wrapper jars at time of release. With this improvement, a number of long-standing issues should be addressed (<a href="https://redirect.github.com/gradle/wrapper-validation-action/issues/164">#164</a>, <a href="https://redirect.github.com/gradle/wrapper-validation-action/issues/162">#162</a>, <a href="https://redirect.github.com/gradle/wrapper-validation-action/issues/57">#57</a>).</p> <p>The action should now only make network requests to validate the checksums of an unknown <code>gradle-wrapper.jar</code>. This can happen if:</p> <ul> <li>The Gradle version was published after this action was released</li> <li>The <code>gradle-wrapper.jar</code> is truly invalid</li> </ul> <h2>Changelog</h2> <ul> <li>[NEW] Hardcode list of known checksums to avoid network requests in most cases (<a href="https://redirect.github.com/gradle/wrapper-validation-action/issues/161">#161</a>)</li> </ul> <p>Huge thanks to <a href="https://github.com/Marcono1234"><code>@Marcono1234</code></a> for contributing this long-awaited improvement.</p> <h2>v2.0.1</h2> <p>This patch release fixes error reporting when failing to retrieve the checksums from services.gradle.org</p> <ul> <li>[FIX] After migration from v1 to v2 silently fails (<a href="https://redirect.github.com/gradle/wrapper-validation-action/issues/174">#174</a>)</li> </ul> <h2>v2.0.0</h2> <h2>What's Changed</h2> <p>The version of the Node.js runtime was updated to 20, and the majority of dependencies were updated to the latest versions. From now on, the <code>wrapper-validation-action</code> will require a Node.js 20 runtime environment.</p> <p>There are no functional changes in this release. This release is tagged with the <code>v2</code> version label.</p> <ul> <li>[NEW] Update Node.js runtime to version 20 (<a href="https://redirect.github.com/gradle/wrapper-validation-action/issues/170">#170</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/gradle/wrapper-validation-action/commit/f9c9c575b8b21b6485636a91ffecd10e558c62f6"><code>f9c9c57</code></a> Bump to v3.5.0</li> <li><a href="https://github.com/gradle/wrapper-validation-action/commit/88425854a36845f9c881450d9660b5fd46bee142"><code>8842585</code></a> Bump to v3.4.2</li> <li><a href="https://github.com/gradle/wrapper-validation-action/commit/9ba54b687bf0f59b62abbf91e0d60de082e8ebc4"><code>9ba54b6</code></a> Bump to v3.4.1</li> <li><a href="https://github.com/gradle/wrapper-validation-action/commit/26ffd686eccbbcbf168186b5363c8ee8edbe39f6"><code>26ffd68</code></a> Bump to v3.4.0</li> <li><a href="https://github.com/gradle/wrapper-validation-action/commit/216d1ad2b3710bf005dc39237337b9673fd8fcd5"><code>216d1ad</code></a> Bump to v3.3.2</li> <li><a href="https://github.com/gradle/wrapper-validation-action/commit/5188e9b5527a0a094cee21e2fe9a8ca44b4629af"><code>5188e9b</code></a> Bump to use v3.3.1</li> <li><a href="https://github.com/gradle/wrapper-validation-action/commit/460a3ca55fc5d559238a0efc7fa9f7465df8585d"><code>460a3ca</code></a> Delegate to 'gradle/actions/wrapper-validation' (<a href="https://redirect.github.com/gradle/wrapper-validation-action/issues/200">#200</a>)</li> <li><a href="https://github.com/gradle/wrapper-validation-action/commit/b5418f5a58f5fd2eb486dd7efb368fe7be7eae45"><code>b5418f5</code></a> Build dist</li> <li><a href="https://github.com/gradle/wrapper-validation-action/commit/6613b81c19b202da951a7772af4b16aa572ef2ba"><code>6613b81</code></a> Bump the npm-dependencies group with 2 updates</li> <li><a href="https://github.com/gradle/wrapper-validation-action/commit/35bb22488208462bb5b670889a01ec99cbf59a39"><code>35bb224</code></a> Bump undici from 5.28.3 to 5.28.4</li> <li>Additional commits viewable in <a href="https://github.com/gradle/wrapper-validation-action/compare/v1...v3">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gradle/wrapper-validation-action&package-manager=github_actions&previous-version=1&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
- Loading branch information