Bump the minor group with 6 updates (#798)

Bumps the minor group with 6 updates: | Package | From | To | | --- | --- | --- | | [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) | `3.1.2` | `3.1.4` | | [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator) | `1.9.0` | `1.10.0` | | [awalsh128/cache-apt-pkgs-action](https://github.com/awalsh128/cache-apt-pkgs-action) | `1.4.1` | `1.4.2` | | [cardinalby/js-eval-action](https://github.com/cardinalby/js-eval-action) | `1.0.7` | `1.0.9` | | [cardinalby/webext-buildtools-firefox-sign-xpi-action](https://github.com/cardinalby/webext-buildtools-firefox-sign-xpi-action) | `1.0.6` | `1.0.7` | | [cardinalby/webext-buildtools-firefox-addons-action](https://github.com/cardinalby/webext-buildtools-firefox-addons-action) | `1.0.9` | `1.0.10` | Updates `dawidd6/action-download-artifact` from 3.1.2 to 3.1.4 - [Release notes](https://github.com/dawidd6/action-download-artifact/releases) - [Commits](https://github.com/dawidd6/action-download-artifact/compare/71072fbb1229e1317f1a8de6b04206afb461bd67...09f2f74827fd3a8607589e5ad7f9398816f540fe) Updates `slsa-framework/slsa-github-generator` from 1.9.0 to 1.10.0 - [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases) - [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md) - [Commits](https://github.com/slsa-framework/slsa-github-generator/compare/v1.9.0...v1.10.0) Updates `awalsh128/cache-apt-pkgs-action` from 1.4.1 to 1.4.2 - [Release notes](https://github.com/awalsh128/cache-apt-pkgs-action/releases) - [Commits](https://github.com/awalsh128/cache-apt-pkgs-action/compare/2555a377dfb0ca4763693499998da808e8d5afa0...a6c3917cc929dd0345bfb2d3feaf9101823370ad) Updates `cardinalby/js-eval-action` from 1.0.7 to 1.0.9 - [Release notes](https://github.com/cardinalby/js-eval-action/releases) - [Commits](https://github.com/cardinalby/js-eval-action/compare/b34865f1d9cfdf35356013627474857cfe0d5091...e905fd3681d757e992c976f61c2784dcb4060e13) Updates `cardinalby/webext-buildtools-firefox-sign-xpi-action` from 1.0.6 to 1.0.7 - [Release notes](https://github.com/cardinalby/webext-buildtools-firefox-sign-xpi-action/releases) - [Commits](https://github.com/cardinalby/webext-buildtools-firefox-sign-xpi-action/compare/94a2e58141e33c4306a72a93f191e8540189df92...ed44ff06ca9eae47ac45dd34b12833379b683c78) Updates `cardinalby/webext-buildtools-firefox-addons-action` from 1.0.9 to 1.0.10 - [Release notes](https://github.com/cardinalby/webext-buildtools-firefox-addons-action/releases) - [Commits](https://github.com/cardinalby/webext-buildtools-firefox-addons-action/compare/924ad87df7e4af50a654c164ad9e498dce260ffa...987e338100095280ec8daf942e5640aeb55d3647) --- updated-dependencies: - dependency-name: dawidd6/action-download-artifact dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor - dependency-name: slsa-framework/slsa-github-generator dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minor - dependency-name: awalsh128/cache-apt-pkgs-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor - dependency-name: cardinalby/js-eval-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor - dependency-name: cardinalby/webext-buildtools-firefox-sign-xpi-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor - dependency-name: cardinalby/webext-buildtools-firefox-addons-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: James Maa <jmaa@berkeley.edu>
author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> 2024-04-18 16:35:05 +0000
committer: GitHub <noreply@github.com> 2024-04-18 16:35:05 +0000
commit: 297f089d6fe2b555cc2a2c0482c0b69a25f05b87 (patch)
tree: f36f86022f1c621d2277cdf6d8985a0efc81ea61
parent: 8f258c032ea06f61b5845fda06df47570ddd6044 (diff)
8 files changed, 11 insertions, 11 deletions
diff --git a/.github/workflows/auto-approve-run.yml b/.github/workflows/auto-approve-run.yml
index 1eecfb88..bc9b1742 100644
--- a/.github/workflows/auto-approve-run.yml
+++ b/.github/workflows/auto-approve-run.yml
@@ -14,7 +14,7 @@ jobs:
     if: github.actor == 'djahandarie'
     steps:
       - name: Download workflow artifact
-        uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 # v3.1.2
+        uses: dawidd6/action-download-artifact@09f2f74827fd3a8607589e5ad7f9398816f540fe # v3.1.4
         with:
             github_token: ${{ secrets.GITHUB_TOKEN }}
             workflow: auto-approve.yml
diff --git a/.github/workflows/create-prerelease-on-tag.yml b/.github/workflows/create-prerelease-on-tag.yml
index 884d7902..c33eba29 100644
--- a/.github/workflows/create-prerelease-on-tag.yml
+++ b/.github/workflows/create-prerelease-on-tag.yml
@@ -67,7 +67,7 @@ jobs:
       actions: read # To read the workflow path.
       id-token: write # To sign the provenance.
       contents: write # To add assets to a release.
-    uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v1.9.0
+    uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v1.10.0
     with:
       base64-subjects: "${{ needs.build.outputs.hashes }}"
       upload-assets: true
diff --git a/.github/workflows/playwright.yml b/.github/workflows/playwright.yml
index fa0ec62a..b5c56626 100644
--- a/.github/workflows/playwright.yml
+++ b/.github/workflows/playwright.yml
@@ -16,7 +16,7 @@ jobs:
       - uses: actions/checkout@v4
 
       - name: Install CJK fonts
-        uses: awalsh128/cache-apt-pkgs-action@2555a377dfb0ca4763693499998da808e8d5afa0 # v1.4.1
+        uses: awalsh128/cache-apt-pkgs-action@a6c3917cc929dd0345bfb2d3feaf9101823370ad # v1.4.2
         with:
           packages: fonts-ipafont-mincho
           execute_install_scripts: true
@@ -52,7 +52,7 @@ jobs:
           path: dictionaries
 
       - name: Grab latest screenshots from master branch
-        uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 # pin@v2
+        uses: dawidd6/action-download-artifact@09f2f74827fd3a8607589e5ad7f9398816f540fe # pin@v2
         continue-on-error: true
         id: master-screenshots
         with:
diff --git a/.github/workflows/playwright_comment.yml b/.github/workflows/playwright_comment.yml
index a2354d98..b519b1a1 100644
--- a/.github/workflows/playwright_comment.yml
+++ b/.github/workflows/playwright_comment.yml
@@ -16,7 +16,7 @@ jobs:
       github.event.workflow_run.conclusion == 'success'
     steps:
       - name: Grab playwright-output from PR run
-        uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 # pin@v2
+        uses: dawidd6/action-download-artifact@09f2f74827fd3a8607589e5ad7f9398816f540fe # pin@v2
         continue-on-error: true
         with:
           github_token: ${{ secrets.GITHUB_TOKEN }}
@@ -24,7 +24,7 @@ jobs:
           name: playwright-output
 
       - name: Grab master-screenshots-outcome from PR run
-        uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 # pin@v2
+        uses: dawidd6/action-download-artifact@09f2f74827fd3a8607589e5ad7f9398816f540fe # pin@v2
         continue-on-error: true
         with:
           github_token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/publish-chrome-development.yml b/.github/workflows/publish-chrome-development.yml
index 84c71ec6..e47df1cb 100644
--- a/.github/workflows/publish-chrome-development.yml
+++ b/.github/workflows/publish-chrome-development.yml
@@ -24,7 +24,7 @@ jobs:
     steps:
       - name: Get the next attempt number
         id: getNextAttemptNumber
-        uses: cardinalby/js-eval-action@b34865f1d9cfdf35356013627474857cfe0d5091 # pin@v1.0.7
+        uses: cardinalby/js-eval-action@e905fd3681d757e992c976f61c2784dcb4060e13 # pin@v1.0.9
         env:
           attemptNumber: ${{ github.event.inputs.attemptNumber }}
           maxAttempts: ${{ github.event.inputs.maxAttempts }}
diff --git a/.github/workflows/publish-chrome.yml b/.github/workflows/publish-chrome.yml
index cf4627b7..51732a51 100644
--- a/.github/workflows/publish-chrome.yml
+++ b/.github/workflows/publish-chrome.yml
@@ -24,7 +24,7 @@ jobs:
     steps:
       - name: Get the next attempt number
         id: getNextAttemptNumber
-        uses: cardinalby/js-eval-action@b34865f1d9cfdf35356013627474857cfe0d5091 # pin@v1.0.7
+        uses: cardinalby/js-eval-action@e905fd3681d757e992c976f61c2784dcb4060e13 # pin@v1.0.9
         env:
           attemptNumber: ${{ github.event.inputs.attemptNumber }}
           maxAttempts: ${{ github.event.inputs.maxAttempts }}
diff --git a/.github/workflows/publish-firefox-development.yml b/.github/workflows/publish-firefox-development.yml
index c92b9d24..ad62d747 100644
--- a/.github/workflows/publish-firefox-development.yml
+++ b/.github/workflows/publish-firefox-development.yml
@@ -28,7 +28,7 @@ jobs:
       - name: Sign Firefox xpi for offline distribution
         id: ffSignXpi
         continue-on-error: true
-        uses: cardinalby/webext-buildtools-firefox-sign-xpi-action@94a2e58141e33c4306a72a93f191e8540189df92 # pin@v1.0.6
+        uses: cardinalby/webext-buildtools-firefox-sign-xpi-action@ed44ff06ca9eae47ac45dd34b12833379b683c78 # pin@v1.0.7
         with:
           timeoutMs: 1200000
           extensionId: ${{ secrets.FF_OFFLINE_EXT_ID }}
@@ -101,7 +101,7 @@ jobs:
       actions: read # To read the workflow path.
       id-token: write # To sign the provenance.
       contents: write # To add assets to a release.
-    uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v1.9.0
+    uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v1.10.0
     with:
       base64-subjects: "${{ needs.build.outputs.hashes }}"
       upload-assets: true
diff --git a/.github/workflows/publish-firefox.yml b/.github/workflows/publish-firefox.yml
index f6499d01..a86301f0 100644
--- a/.github/workflows/publish-firefox.yml
+++ b/.github/workflows/publish-firefox.yml
@@ -15,7 +15,7 @@ jobs:
 
       - name: Deploy to Firefox Addons
         id: addonsDeploy
-        uses: cardinalby/webext-buildtools-firefox-addons-action@924ad87df7e4af50a654c164ad9e498dce260ffa # pin@v1.0.9
+        uses: cardinalby/webext-buildtools-firefox-addons-action@987e338100095280ec8daf942e5640aeb55d3647 # pin@v1.0.10
         continue-on-error: true
         with:
           zipFilePath: yomitan-firefox.zip
author	dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-04-18 16:35:05 +0000
committer	GitHub <noreply@github.com>	2024-04-18 16:35:05 +0000
commit	297f089d6fe2b555cc2a2c0482c0b69a25f05b87 (patch)
tree	f36f86022f1c621d2277cdf6d8985a0efc81ea61
parent	8f258c032ea06f61b5845fda06df47570ddd6044 (diff)