Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump r-lib/actions from 2.9.0 to 2.10.1 #1569

Merged
merged 1 commit into from
Sep 2, 2024
Merged

build(deps): bump r-lib/actions from 2.9.0 to 2.10.1 #1569

merged 1 commit into from
Sep 2, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 1, 2024

Bumps r-lib/actions from 2.9.0 to 2.10.1.

Changelog

Sourced from r-lib/actions's changelog.

v2.10.1 (2024-08-08)

  • [setup-r-dependencies] now pins quarto-dev/quarto-actions/setup version to a constant sha, to be compatible with organizations where this is a requirement (#901).

  • [setup-renv] now also caches R packages in renv/library, used when RENV_CONFIG_PAK_ENABLED: true (#900).

  • [setup-manifest]: new action to set up an R project with a Posit Connect manifest.json file (#880).

v2.10.0 (2024-08-02)

  • [setup-r]: on R 3.6.x we now use the P3M snapshot from 2024-06-01 by default. This is because many newer CRAN packages do not work on R 3.6.x any more. The default CRAN mirror is still added, so newer packages may be used if they are required, but setup-r-dependencies@v2 will prefer the binary packages from P3M.

    Note that this only happens if you opt in to use P3M with the use-public-rspm: true input parameter. This is the default in all example workflows.

    If the RSPM environment variable is already set, then it is used unchanged, on all R versions. To avoid using a P3M snapshot on R 3.6.x, set the RSPM_PIN_3_6 environment variable to false.

  • [setup-r] now installs the x86_64 build of R on arm64 macOS, if there is no arm64 build available for this R version (#883).

  • Example blogdown, bookdown, document, pr-commands and render-markdown workflows now correctly have write permission to repository contents (#874, @​remlapmot).

  • [check-r-package]: you can now setupload-snapshots to always, to upload snapshots even after failures (#871).

  • [setup-r-dependencies] now always sets the R_LIBS_USER GitHub environment variable, so it can be used without [setup-r] or without setting it manually (#881).

  • The example workflows now use their file names as workflow names. This is to make it easier to match worflow runs to workflow files. Most of the the check-* workflows use R-CMD-check.yaml, however, to anticipate the usethis package renaming them by default (#888).

  • [setup-renv]: you can now set bypass-cache to never, to save the cache even if the workflow fails (#873, @​jaradkohl-mfj).

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump r-lib/actions from 2.9.0 to 2.10.1
827d4dc 
Bumps [r-lib/actions](https://github.com/r-lib/actions) from 2.9.0 to 2.10.1.
- [Release notes](https://github.com/r-lib/actions/releases)
- [Changelog](https://github.com/r-lib/actions/blob/v2-branch/NEWS.md)
- [Commits](r-lib/actions@v2.9.0...v2.10.1)

---
updated-dependencies:
- dependency-name: r-lib/actions
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from jiayuasu as a code owner September 1, 2024 00:20
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Sep 1, 2024
@jiayuasu jiayuasu merged commit 9417abd into master Sep 2, 2024
16 checks passed
@jiayuasu jiayuasu deleted the dependabot/github_actions/r-lib/actions-2.10.1 branch September 2, 2024 05:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jiayuasu jiayuasu jiayuasu approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code github-actions
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@jiayuasu