Bump dependabot-omnibus from 0.254.0 to 0.255.0
Bumps dependabot-omnibus from 0.254.0 to 0.255.0.
Release notes
Sourced from dependabot-omnibus's releases.
v0.255.0
What's Changed
- Bump composer/composer from 2.7.2 to 2.7.4 in /composer/helpers/v2 in the prod-dependencies group across 1 directory by
@dependabot
in dependabot/dependabot-core#9590- #5246:removing the leading underscore restriction in the package naming. by
@raj-meka
in dependabot/dependabot-core#9569- allow updating package without assemblies from
packages.config
by@brettfo
in dependabot/dependabot-core#9542- Bump library/rust from 1.75.0-bookworm to 1.77.2-bookworm in /cargo by
@dependabot
in dependabot/dependabot-core#9585- chore(python): target latest python versions 3.12.3, 3.11.9 by
@nimirium
in dependabot/dependabot-core#9526- Fix error thrown when updating dependencies in poetry non-package mode by
@ewilliamson-patreon
in dependabot/dependabot-core#9400- Update version_resolver to support yarn v4 by
@jpandersen87
in dependabot/dependabot-core#9405- #9508: Recreating and Handling "Name contains illegal characters" in package.json by
@thavaahariharangit
in dependabot/dependabot-core#9611- don't sent dotnet telemetry by
@brettfo
in dependabot/dependabot-core#9614- Add
simplecov
to track test coverage by@JamieMagee
in dependabot/dependabot-core#9595- Add scorecards analysis by
@JamieMagee
in dependabot/dependabot-core#9589- #9555:sorbet error fix by
@raj-meka
in dependabot/dependabot-core#9622- Bump plette from 0.4.4 to 2.0.2 in /python/helpers by
@dependabot
in dependabot/dependabot-core#9630- Bump the sorbet group across 1 directory with 2 updates by
@dependabot
in dependabot/dependabot-core#9632- Sign remaining images with cosign by
@JamieMagee
in dependabot/dependabot-core#9615- Enable Docker content trust by
@JamieMagee
in dependabot/dependabot-core#9620- Bump Ruby to 3.3.1 by
@jurre
in dependabot/dependabot-core#9597- Bump toml-rb from 2.2.0 to 3.0.1 by
@dependabot
in dependabot/dependabot-core#9580- Resolve some Sorbet errors in Terraform by
@JamieMagee
in dependabot/dependabot-core#9635- Strict type
Dependabot::NpmAndYarn::FileUpdater::NpmrcBuilder
by@JamieMagee
in dependabot/dependabot-core#9637- Specify patch levels for previous Rubies by
@landongrindheim
in dependabot/dependabot-core#9645- Add support for Cargo private registries by
@CodingAnarchy
in dependabot/dependabot-core#8719- Allow NuGet dependencies to exist with duplicate names but different dependency types by
@DavidBoike
in dependabot/dependabot-core#9642- Bump the pnpm-dependencies group in /npm_and_yarn/helpers with 2 updates by
@dependabot
in dependabot/dependabot-core#9562- Bump the pnpm-dependencies group across 1 directory with 2 updates by
@dependabot
in dependabot/dependabot-core#9651- Improve handling for hashing unknown packages by
@jurre
in dependabot/dependabot-core#9556- Enable YJIT for even-numbered update jobs by
@landongrindheim
in dependabot/dependabot-core#9663- log base commit for easier debugging by
@jakecoffman
in dependabot/dependabot-core#9654- v0.255.0 by
@dependabot-core-action-automation
in dependabot/dependabot-core#9649New Contributors
@nimirium
made their first contribution in dependabot/dependabot-core#9526@ewilliamson-patreon
made their first contribution in dependabot/dependabot-core#9400@jpandersen87
made their first contribution in dependabot/dependabot-core#9405@CodingAnarchy
made their first contribution in dependabot/dependabot-core#8719@DavidBoike
made their first contribution in dependabot/dependabot-core#9642Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.254.0...v0.255.0
Commits
-
4f58d77
Merge pull request #9649 from dependabot/bump-to-v0.255.0 -
f83bb41
v0.255.0 -
ad8047f
log base commit for easier debugging (#9654) -
a549c93
Merge pull request #9663 from dependabot/enable-yjit-for-even-numbered-update... -
f58c55b
Pacify Rubocop -
8a85dd8
Enable YJIT for even-numbered update jobs -
aee7bb9
Merge pull request #9556 from dependabot/jurre/hash-private-packages -
a9224af
Merge branch 'main' into jurre/hash-private-packages -
1c683ab
Merge pull request #9651 from dependabot/dependabot/npm_and_yarn/npm_and_yarn... -
6dbf291
Bump the pnpm-dependencies group across 1 directory with 2 updates - Additional commits viewable in compare view
Dependabot commands
You can trigger Dependabot actions by commenting on this MR
-
@dependabot-bot recreate
will recreate this MR rewriting all the manual changes and resolving conflicts