Skip to content

Address dependabot PRs #222

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

Address dependabot PRs #222

wants to merge 3 commits into from

Conversation

@edif2008
Copy link
Member

@edif2008 edif2008 commented Nov 3, 2025
edited
Loading

Summary

This PR addresses the dependabot PRs that currently fail due to Dependabot not being properly configured when opening PRs. Specifically, it doesn't have access to the necessary secrets for running the example snippets.

As a stop-gap solution, I've opened this PR that will address and close the following PRs:

Thought process

There are two pieces of this PR:

  • Update GitHub actions dependencies:
    • I checked for each action that we use the latest version and update to that one.
    • golangci/golangci-lint-action hasn't been updated as part of this PR as the update will upgrade to the golangci-lint version 2, which has breaking changes. This will be handled in a separate PR.
    • For the kv109/action-ready-for-review the commit SHA matches the latest version of the action (release here).
  • Update Go dependencies
    • I first updated to Go version 1.24, which is the supported Go version just below the latest one (1.25 as of this PR).
    • All dependencies have been updated with go get -u ./...

@edif2008
Bump versions for github actions
110eedc 
The action skipped is the `golangci/golangci-lint-action` since upgrading that one will also upgrade the golangci-lint version to v2, which has some breaking changes.
@edif2008
Bump versions for github actions
4e34f0a 
The action skipped is the `golangci/golangci-lint-action` since upgrading that one will also upgrade the golangci-lint version to v2, which has some breaking changes.
@edif2008 edif2008 requested a review from AndyTitu November 3, 2025 14:36
@edif2008
Update Go dependencies
076e19f 
Also update to Go `1.24`, which is the version currently supported just before the latest one (`1.25`).
@edif2008 edif2008 force-pushed the eddy/address-dependabot-prs branch from 33d944b to 076e19f Compare November 3, 2025 14:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AndyTitu AndyTitu Awaiting requested review from AndyTitu

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@edif2008