Skip to content

chore(deps): bump netcracker/qubership-workflow-hub from 2.3.0 to 2.4.0 in /workflow-templates#411

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/workflow-templates/netcracker/qubership-workflow-hub-2.4.0
Open

chore(deps): bump netcracker/qubership-workflow-hub from 2.3.0 to 2.4.0 in /workflow-templates#411
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/workflow-templates/netcracker/qubership-workflow-hub-2.4.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 15, 2026

Copy link
Copy Markdown
Contributor

Bumps netcracker/qubership-workflow-hub from 2.3.0 to 2.4.0.

Release notes

Sourced from netcracker/qubership-workflow-hub's releases.

2.4.0

🚀 Release

What's Changed

  • (#818) chore(deps-dev): bump the npm_and_yarn group across 5 directories with 1 update by @dependabot[bot]
  • (#805) chore(deps): bump js-yaml from 4.1.1 to 4.2.0 in /actions/pr-assigner by @dependabot[bot]
  • (#804) chore(deps): bump semver from 7.8.1 to 7.8.2 in /actions/metadata-action by @dependabot[bot]
  • (#803) chore(deps): bump js-yaml from 4.1.1 to 4.2.0 in /actions/metadata-action by @dependabot[bot]
  • (#802) chore(deps): bump js-yaml from 4.1.1 to 4.2.0 in /actions/container-package-cleanup by @dependabot[bot]
  • (#801) chore(deps): bump js-yaml from 4.1.1 to 4.2.0 in /actions/assets-action by @dependabot[bot]
  • (#808) chore(deps): bump aws-actions/configure-aws-credentials from 6.1.1 to 6.2.0 in /.github/workflows by @dependabot[bot]
  • (#810) chore(deps): bump actions/checkout from 6.0.0 to 6.0.3 in /.github/workflows by @dependabot[bot]
  • (#812) chore(deps): bump actions/checkout from 6.0.2 to 6.0.3 in /actions/chart-version by @dependabot[bot]
  • (#813) chore(deps): bump actions/checkout from 6.0.2 to 6.0.3 in /actions/docker-action by @dependabot[bot]
  • (#815) chore(deps): bump actions/checkout from 6.0.2 to 6.0.3 in /actions/pr-add-messages by @dependabot[bot]
  • (#817) chore(deps): bump actions/checkout from 6.0.2 to 6.0.3 in /actions/verify-json by @dependabot[bot]
  • (#806) chore(deps): bump github/codeql-action from 4.36.0 to 4.36.2 in /.github/workflows by @dependabot[bot]
  • (#807) chore(deps): bump IEvangelist/profanity-filter from 13.3.0 to 13.4.0 in /.github/workflows by @dependabot[bot]
  • (#809) chore(deps): bump actions/setup-node from 6.3.0 to 6.4.0 in /.github/workflows by @dependabot[bot]
  • (#811) chore(deps): bump actions/checkout from 6.0.2 to 6.0.3 in /actions/cdxgen by @dependabot[bot]
  • (#814) chore(deps): bump actions/checkout from 6.0.2 to 6.0.3 in /actions/maven-release by @dependabot[bot]
  • (#816) chore(deps): bump actions/checkout from 6.0.2 to 6.0.3 in /actions/tag-action by @dependabot[bot]
  • (#785) chore: update release-drafter.yml by @​borislavr
  • (#772) ci(.github/workflows): replace deprecated commit-and-push action with inline git steps by @​borislavr
  • (#776) chore(deps): bump Netcracker/qubership-workflow-hub from 1.0.7 to 2.3.0 in /.github/workflows by @dependabot[bot]
  • (#779) chore(deps): bump netcracker/qubership-workflow-hub/.github/workflows/release-drafter.yml from 2.2.2 to 2.3.0 in /.github/workflows by @dependabot[bot]
  • (#778) chore(deps): bump github/codeql-action from 4.35.5 to 4.36.0 in /.github/workflows by @dependabot[bot]
  • (#774) chore(deps): bump semver from 7.8.0 to 7.8.1 in /actions/metadata-action by @dependabot[bot]
  • (#777) chore(deps): bump netcracker/qubership-workflow-hub/.github/workflows/re-security-scan.yml from 2.2.2 to 2.3.0 in /.github/workflows by @dependabot[bot]
  • (#780) chore(deps): bump docker/login-action from 4.1.0 to 4.2.0 in /actions/docker-action by @dependabot[bot]
  • (#775) chore(deps): bump docker/login-action from 4.1.0 to 4.2.0 in /.github/workflows by @dependabot[bot]
  • (#770) chore(deps): bump docker/build-push-action from 7.1.0 to 7.2.0 in /actions/docker-action by @dependabot[bot]
  • (#768) chore(deps): bump github/codeql-action from 4.35.4 to 4.35.5 in /.github/workflows by @dependabot[bot]
  • (#766) chore(deps): bump archiver from 7.0.1 to 8.0.0 in /actions/assets-action by @dependabot[bot]
  • (#767) chore(deps): bump semver from 7.7.4 to 7.8.0 in /actions/metadata-action by @dependabot[bot]

💡 New Features

  • (#800) feat(zizmor): enhance template-injection and excessive-permissions rules by @​borislavr
  • (#799) feat(actions/apm-packages-update): refine APM target resolution, add explicit target diagnostics by @​nookyo
  • (#786) feat(actions/apm-packages-update): add composite action for per-repo APM package updates by @​nookyo
  • (#773) feat(actions/maven-monorepo-release): add Maven monorepo release action by @​borislavr
  • (#784) feat(agent-packages): add email-action guide and update APM skills to v2.3.0 by @​nookyo
  • (#782) feat(actions/email-action): add composite email notification action by @​nookyo
  • (#771) feat(agent-packages): add qubership-workflow-hub-usage APM package by @​nookyo

🐞 Bug Fixes

  • (#799) feat(actions/apm-packages-update): refine APM target resolution by @​nookyo
  • (#783) fix: add id-token permission to npm-build-publish job by @​borislavr

... (truncated)

Commits
  • 8c6dbeb Update references to the new version
  • 7489a6f chore(deps-dev): bump the npm_and_yarn group across 5 directories with 1 upda...
  • 5e778a5 chore(deps): bump js-yaml from 4.1.1 to 4.2.0 in /actions/pr-assigner (#805)
  • bc45148 chore(deps): bump semver from 7.8.1 to 7.8.2 in /actions/metadata-action (#804)
  • fbeb11e chore(deps): bump js-yaml in /actions/metadata-action (#803)
  • f24c3dd chore(deps): bump js-yaml in /actions/container-package-cleanup (#802)
  • d60886a chore(deps): bump js-yaml from 4.1.1 to 4.2.0 in /actions/assets-action (#801)
  • 2c08017 chore(deps): bump aws-actions/configure-aws-credentials (#808)
  • f36eed5 chore(deps): bump actions/checkout in /.github/workflows (#810)
  • 9b8e226 chore(deps): bump actions/checkout in /actions/chart-version (#812)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump netcracker/qubership-workflow-hub
5a4d897 
Bumps [netcracker/qubership-workflow-hub](https://github.com/netcracker/qubership-workflow-hub) from 2.3.0 to 2.4.0.
- [Release notes](https://github.com/netcracker/qubership-workflow-hub/releases)
- [Commits](Netcracker/qubership-workflow-hub@v2.3.0...v2.4.0)

---
updated-dependencies:
- dependency-name: netcracker/qubership-workflow-hub
  dependency-version: 2.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jun 15, 2026
@dependabot dependabot Bot requested review from borislavr and nookyo as code owners June 15, 2026 21:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@nookyo nookyo Awaiting requested review from nookyo nookyo is a code owner

@borislavr borislavr Awaiting requested review from borislavr borislavr is a code owner

Assignees

@nookyo nookyo

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@nookyo