cicd/metadata-action
1
0
Fork 0
mirror of https://github.com/docker/metadata-action.git synced 2026-05-28 21:59:52 +03:00
Code Issues Packages Projects Releases Wiki Activity
815 Commits 6 Branches 70 Tags
f25e8d2521266d9949779554f9f8c66775ccd7d1
Commit Graph

815 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
CrazyMax f25e8d2521 Merge pull request #665 from docker/dependabot/npm_and_yarn/semver-7.8.0 
chore(deps): Bump semver from 7.7.4 to 7.8.1
 2026-05-28 11:35:07 +02:00
github-actions[bot] 8707af5b28 chore: update generated content 2026-05-28 08:44:56 +00:00
dependabot[bot] f5b5258ae1 chore(deps): Bump semver from 7.7.4 to 7.8.1 
Bumps [semver](https://github.com/npm/node-semver) from 7.7.4 to 7.8.1.
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md)
- [Commits](https://github.com/npm/node-semver/compare/v7.7.4...v7.8.1)

---
updated-dependencies:
- dependency-name: semver
  dependency-version: 7.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-28 08:43:59 +00:00
CrazyMax 83fa4edf37 Merge pull request #664 from docker/dependabot/npm_and_yarn/moment-timezone-0.6.2 
chore(deps): Bump moment-timezone from 0.6.1 to 0.6.2
 2026-05-28 10:41:57 +02:00
github-actions[bot] c57fc5591a chore: update generated content 2026-05-28 08:28:29 +00:00
dependabot[bot] 9c446bddcb chore(deps): Bump moment-timezone from 0.6.1 to 0.6.2 
Bumps [moment-timezone](https://github.com/moment/moment-timezone) from 0.6.1 to 0.6.2.
- [Release notes](https://github.com/moment/moment-timezone/releases)
- [Changelog](https://github.com/moment/moment-timezone/blob/develop/changelog.md)
- [Commits](https://github.com/moment/moment-timezone/compare/0.6.1...0.6.2)

---
updated-dependencies:
- dependency-name: moment-timezone
  dependency-version: 0.6.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-28 08:27:31 +00:00
CrazyMax 9da27ef7f4 Merge pull request #673 from docker/dependabot/npm_and_yarn/tmp-0.2.7 
chore(deps): Bump tmp from 0.2.5 to 0.2.7
 2026-05-28 10:24:48 +02:00
github-actions[bot] ba2f556688 chore: update generated content 2026-05-28 08:21:40 +00:00
dependabot[bot] 47ed4f4109 chore(deps): Bump tmp from 0.2.5 to 0.2.7 
Bumps [tmp](https://github.com/raszi/node-tmp) from 0.2.5 to 0.2.7.
- [Changelog](https://github.com/raszi/node-tmp/blob/master/CHANGELOG.md)
- [Commits](https://github.com/raszi/node-tmp/compare/v0.2.5...v0.2.7)

---
updated-dependencies:
- dependency-name: tmp
  dependency-version: 0.2.7
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-28 08:20:41 +00:00
CrazyMax e25b2146bd Merge pull request #674 from docker/dependabot/github_actions/crazy-max/ghaction-dump-context-3.1.0 
chore(deps): Bump crazy-max/ghaction-dump-context from 3.0.0 to 3.1.0
 2026-05-28 09:57:10 +02:00
dependabot[bot] a8639b7509 chore(deps): Bump crazy-max/ghaction-dump-context from 3.0.0 to 3.1.0 
Bumps [crazy-max/ghaction-dump-context](https://github.com/crazy-max/ghaction-dump-context) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/crazy-max/ghaction-dump-context/releases)
- [Commits](https://github.com/crazy-max/ghaction-dump-context/compare/5d2753e7076f4568c7729971e25231f32147e2d8...4d9eeaf15dd59aa4346919ea84a84ccf514b4db8)

---
updated-dependencies:
- dependency-name: crazy-max/ghaction-dump-context
  dependency-version: 3.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-28 07:55:44 +00:00
CrazyMax 4e03f56500 Merge pull request #671 from docker/sec-cli/ignore-scripts-fix-20260527-193116 
ci: add ignore-scripts to Node package manager config (20260527-193116)
 2026-05-28 09:53:58 +02:00
securityeng-bot[bot] 620026c7c4 ci: enforce ignore-scripts policy for Node package managers 2026-05-27 20:04:39 +00:00
CrazyMax 17e943b674 Merge pull request #667 from docker/dependabot/github_actions/docker/build-push-action-7.2.0 
chore(deps): Bump docker/build-push-action from 7.1.0 to 7.2.0
 2026-05-26 17:30:38 +02:00
CrazyMax da0e8cb6fa Merge pull request #669 from docker/dependabot/github_actions/docker/setup-buildx-action-4.1.0 
chore(deps): Bump docker/setup-buildx-action from 4.0.0 to 4.1.0
 2026-05-26 17:30:36 +02:00
CrazyMax 62878a8cd8 Merge pull request #670 from docker/dependabot/github_actions/github/codeql-action-4.36.0 
chore(deps): Bump github/codeql-action from 4.35.5 to 4.36.0
 2026-05-26 17:30:33 +02:00
dependabot[bot] 7fff4a866b chore(deps): Bump github/codeql-action from 4.35.5 to 4.36.0 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.35.5 to 4.36.0.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/9e0d7b8d25671d64c341c19c0152d693099fb5ba...7211b7c8077ea37d8641b6271f6a365a22a5fbfa)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.36.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-26 15:28:46 +00:00
dependabot[bot] 80c12fa72e chore(deps): Bump docker/build-push-action from 7.1.0 to 7.2.0 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 7.1.0 to 7.2.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/bcafcacb16a39f128d818304e6c9c0c18556b85f...f9f3042f7e2789586610d6e8b85c8f03e5195baf)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-version: 7.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-26 15:27:35 +00:00
dependabot[bot] cb88e1e24e chore(deps): Bump docker/setup-buildx-action from 4.0.0 to 4.1.0 
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd...d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-version: 4.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-26 15:27:27 +00:00
CrazyMax 8904ec6ac8 Merge pull request #668 from docker/dependabot/github_actions/docker/bake-action-7.2.0 
chore(deps): Bump docker/bake-action from 7.1.0 to 7.2.0
 2026-05-26 17:26:12 +02:00
dependabot[bot] 133aa67758 chore(deps): Bump docker/bake-action from 7.1.0 to 7.2.0 
Bumps [docker/bake-action](https://github.com/docker/bake-action) from 7.1.0 to 7.2.0.
- [Release notes](https://github.com/docker/bake-action/releases)
- [Commits](https://github.com/docker/bake-action/compare/a66e1c87e2eca0503c343edf1d208c716d54b8a8...6614cfa25eff9a0b2b2697efb0b6159e7680d584)

---
updated-dependencies:
- dependency-name: docker/bake-action
  dependency-version: 7.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-26 00:56:40 +00:00
CrazyMax 80c7e94dd9 Merge pull request #613 from docker/dependabot/npm_and_yarn/docker/actions-toolkit-0.80.0 
chore(deps): Bump @docker/actions-toolkit from 0.79.0 to 0.90.0
v6.1.0 v6 		2026-05-22 14:37:45 +02:00
github-actions[bot] 8e0ddab90c chore: update generated content 2026-05-22 12:36:07 +00:00
dependabot[bot] a8db14bd86 chore(deps): Bump @docker/actions-toolkit from 0.79.0 to 0.90.0 
Bumps [@docker/actions-toolkit](https://github.com/docker/actions-toolkit) from 0.79.0 to 0.90.0.
- [Release notes](https://github.com/docker/actions-toolkit/releases)
- [Commits](https://github.com/docker/actions-toolkit/compare/v0.79.0...v0.90.0)

---
updated-dependencies:
- dependency-name: "@docker/actions-toolkit"
  dependency-version: 0.80.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-22 12:35:07 +00:00
CrazyMax 63a7371ee0 Merge pull request #617 from docker/dependabot/npm_and_yarn/csv-parse-6.2.0 
chore(deps): Bump csv-parse from 6.1.0 to 6.2.1
 2026-05-22 14:32:06 +02:00
github-actions[bot] c6916a6cf8 chore: update generated content 2026-05-22 12:26:28 +00:00
dependabot[bot] aca9205632 chore(deps): Bump csv-parse from 6.1.0 to 6.2.1 
Bumps [csv-parse](https://github.com/adaltas/node-csv/tree/HEAD/packages/csv-parse) from 6.1.0 to 6.2.1.
- [Changelog](https://github.com/adaltas/node-csv/blob/master/packages/csv-parse/CHANGELOG.md)
- [Commits](https://github.com/adaltas/node-csv/commits/csv-parse@6.2.1/packages/csv-parse)

---
updated-dependencies:
- dependency-name: csv-parse
  dependency-version: 6.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-22 12:25:32 +00:00
CrazyMax 9dcfe60f10 Merge pull request #629 from docker/dependabot/npm_and_yarn/handlebars-4.7.9 
chore(deps): Bump handlebars from 4.7.8 to 4.7.9
 2026-05-22 14:23:33 +02:00
github-actions[bot] 43dea7677c chore: update generated content 2026-05-22 12:20:24 +00:00
dependabot[bot] 7a56f5af0a chore(deps): Bump handlebars from 4.7.8 to 4.7.9 
Bumps [handlebars](https://github.com/handlebars-lang/handlebars.js) from 4.7.8 to 4.7.9.
- [Release notes](https://github.com/handlebars-lang/handlebars.js/releases)
- [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/v4.7.9/release-notes.md)
- [Commits](https://github.com/handlebars-lang/handlebars.js/compare/v4.7.8...v4.7.9)

---
updated-dependencies:
- dependency-name: handlebars
  dependency-version: 4.7.9
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-22 12:19:23 +00:00
CrazyMax e49e0aa5de Merge pull request #658 from docker/dependabot/npm_and_yarn/brace-expansion-5.0.6 
chore(deps): Bump brace-expansion from 1.1.14 to 5.0.6
 2026-05-22 14:16:38 +02:00
github-actions[bot] 97ffca02cc chore: update generated content 2026-05-22 12:14:39 +00:00
dependabot[bot] 792ab493f0 chore(deps): Bump brace-expansion from 1.1.14 to 5.0.6 
Bumps [brace-expansion](https://github.com/juliangruber/brace-expansion) from 1.1.14 to 5.0.6.
- [Release notes](https://github.com/juliangruber/brace-expansion/releases)
- [Commits](https://github.com/juliangruber/brace-expansion/compare/v1.1.14...v5.0.6)

---
updated-dependencies:
- dependency-name: brace-expansion
  dependency-version: 5.0.6
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-22 12:13:43 +00:00
CrazyMax 47a52a8886 Merge pull request #657 from docker/dependabot/npm_and_yarn/tar-7.5.15 
chore(deps): Bump tar from 6.2.1 to 7.5.15
 2026-05-22 14:11:51 +02:00
CrazyMax 30e3a5c71b Merge pull request #620 from docker/dependabot/npm_and_yarn/fast-xml-parser-5.5.6 
chore(deps): Bump fast-xml-parser from 5.4.2 to 5.8.0
 2026-05-22 14:10:03 +02:00
github-actions[bot] 5677a062dd chore: update generated content 2026-05-22 12:07:22 +00:00
dependabot[bot] 27ad663c44 chore(deps): Bump fast-xml-parser from 5.4.2 to 5.8.0 
Bumps [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) from 5.4.2 to 5.8.0.
- [Release notes](https://github.com/NaturalIntelligence/fast-xml-parser/releases)
- [Changelog](https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md)
- [Commits](https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.4.2...v5.8.0)

---
updated-dependencies:
- dependency-name: fast-xml-parser
  dependency-version: 5.5.6
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-22 12:06:30 +00:00
CrazyMax b83758ab83 Merge pull request #614 from docker/dependabot/npm_and_yarn/undici-6.24.0 
chore(deps): Bump undici from 6.23.0 to 6.25.0
 2026-05-22 14:04:30 +02:00
github-actions[bot] b08aa41573 chore: update generated content 2026-05-22 12:01:11 +00:00
dependabot[bot] 1b54296ddb chore(deps): Bump undici from 6.23.0 to 6.25.0 
Bumps [undici](https://github.com/nodejs/undici) from 6.23.0 to 6.25.0.
- [Release notes](https://github.com/nodejs/undici/releases)
- [Commits](https://github.com/nodejs/undici/compare/v6.23.0...v6.25.0)

---
updated-dependencies:
- dependency-name: undici
  dependency-version: 6.24.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-22 12:00:16 +00:00
CrazyMax 73ea5d3910 Merge pull request #651 from docker/dependabot/github_actions/crazy-max-dot-github-a3893cf95f 
chore(deps): Bump the crazy-max-dot-github group across 1 directory with 2 updates
 2026-05-22 13:57:53 +02:00
CrazyMax cbf5ecfb6e Merge pull request #652 from docker/dependabot/github_actions/actions/setup-node-6.4.0 
chore(deps): Bump actions/setup-node from 6.3.0 to 6.4.0
 2026-05-22 13:57:34 +02:00
CrazyMax 7635ada344 Merge pull request #656 from docker/dependabot/github_actions/actions/create-github-app-token-3.2.0 
chore(deps): Bump actions/create-github-app-token from 3.1.1 to 3.2.0
 2026-05-22 13:57:13 +02:00
CrazyMax b97a91b21a Merge pull request #659 from docker/dependabot/github_actions/github/codeql-action-4.35.5 
chore(deps): Bump github/codeql-action from 4.35.2 to 4.35.5
 2026-05-22 13:56:50 +02:00
CrazyMax eb7e4a1a09 Merge pull request #660 from docker/dependabot/github_actions/codecov/codecov-action-6.0.1 
chore(deps): Bump codecov/codecov-action from 6.0.0 to 6.0.1
 2026-05-22 13:56:30 +02:00
dependabot[bot] 87b2898f8d chore(deps): Bump the crazy-max-dot-github group across 1 directory with 2 updates 
Bumps the crazy-max-dot-github group with 2 updates in the / directory: [crazy-max/.github/.github/workflows/pr-assign-author.yml](https://github.com/crazy-max/.github) and [crazy-max/.github/.github/workflows/zizmor.yml](https://github.com/crazy-max/.github).


Updates `crazy-max/.github/.github/workflows/pr-assign-author.yml` from 1.6.0 to 1.8.0
- [Release notes](https://github.com/crazy-max/.github/releases)
- [Commits](https://github.com/crazy-max/.github/compare/d89fe92d808a15e2b2ed5cdb62db7c172c31410d...9ba6e6f9450baf3b1237f8035c1fdc45932510bd)

Updates `crazy-max/.github/.github/workflows/zizmor.yml` from 1.6.0 to 1.8.0
- [Release notes](https://github.com/crazy-max/.github/releases)
- [Commits](https://github.com/crazy-max/.github/compare/d89fe92d808a15e2b2ed5cdb62db7c172c31410d...9ba6e6f9450baf3b1237f8035c1fdc45932510bd)

---
updated-dependencies:
- dependency-name: crazy-max/.github/.github/workflows/pr-assign-author.yml
  dependency-version: 1.7.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: crazy-max-dot-github
- dependency-name: crazy-max/.github/.github/workflows/zizmor.yml
  dependency-version: 1.7.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: crazy-max-dot-github
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-21 19:56:04 +00:00
CrazyMax 1b2e78b2f1 Merge pull request #661 from crazy-max/zizmor-fixes 
ci: restrict update-dist GitHub App token scope
 2026-05-21 14:57:49 +02:00
CrazyMax 0569d83a01 ci: restrict update-dist GitHub App token scope 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
 2026-05-21 14:26:18 +02:00
dependabot[bot] 2852e5544b chore(deps): Bump codecov/codecov-action from 6.0.0 to 6.0.1 
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 6.0.0 to 6.0.1.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/codecov/codecov-action/compare/57e3a136b779b570ffcdbf80b3bdc90e7fab3de2...e79a6962e0d4c0c17b229090214935d2e33f8354)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-version: 6.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-20 02:54:20 +00:00
dependabot[bot] b2d63e72ae chore(deps): Bump github/codeql-action from 4.35.2 to 4.35.5 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.35.2 to 4.35.5.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/95e58e9a2cdfd71adc6e0353d5c52f41a045d225...9e0d7b8d25671d64c341c19c0152d693099fb5ba)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.35.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-19 04:34:16 +00:00