Skip to content

chore: bump updatecli/updatecli-action from 2.99.0 to 2.100.0 in the all group#32

Merged
jamiezieziula merged 1 commit intomainfrom
dependabot/github_actions/all-b2126a9d8f
Mar 2, 2026
Merged

chore: bump updatecli/updatecli-action from 2.99.0 to 2.100.0 in the all group#32
jamiezieziula merged 1 commit intomainfrom
dependabot/github_actions/all-b2126a9d8f

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Mar 1, 2026

Bumps the all group with 1 update: updatecli/updatecli-action.

Updates updatecli/updatecli-action from 2.99.0 to 2.100.0

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore: bump updatecli/updatecli-action in the all group
fd3339c 
Bumps the all group with 1 update: [updatecli/updatecli-action](https://github.com/updatecli/updatecli-action).


Updates `updatecli/updatecli-action` from 2.99.0 to 2.100.0
- [Release notes](https://github.com/updatecli/updatecli-action/releases)
- [Commits](updatecli/updatecli-action@v2.99.0...v2.100.0)

---
updated-dependencies:
- dependency-name: updatecli/updatecli-action
  dependency-version: 2.100.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
@jamiezieziula
Copy link
Copy Markdown
Contributor

jamiezieziula commented Mar 2, 2026

Dependency Update Review: #32

Summary

Recommendation: ✅ APPROVE AND MERGE

This is a minor version bump of the updatecli-action from v2.99.0 to v2.100.0. The update is a maintenance release focused on dependency updates and workflow improvements with no breaking changes or significant risks.

Change Details

What's Being Updated

  • Package: updatecli/updatecli-action
  • Version Change: v2.99.0 → v2.100.0
  • Update Type: Minor version bump
  • Files Changed: 1 file (action.yaml)
  • Lines Changed: 1 addition, 1 deletion

What Changed in v2.100.0

The v2.100.0 release includes the following updates:

  1. Dependency Management Improvements

    • Removed .github/dependabot.yaml (migrating to updatecli for dependency management)
    • Bumped all GitHub Action dependencies
    • Updated @types/node to v25.3.0
    • Updated eslint-plugin-jest to v29.15.0

  2. Core Version Upgrade

    • Updated updatecli to v0.114.0, which includes:
      • Support for specifying depth for git clone operations
      • New lsremote parameter to skip git clone in gittag
      • Improved error messaging in resource execution
      • Bazel support in autodiscovery
      • Woodpecker CI plugin in autodiscovery
      • Pipeline filtering based on labels
      • Templating for file paths

  3. Automation Enhancements

    • Updated all updatecli policies to v0.7.0
    • Implemented daily scheduled runs for monitored pipelines
    • Fixed cron schedule syntax in updatecli workflow

Risk Assessment

Low Risk Indicators ✅

  • Maintenance Release: This is purely a maintenance and dependency update release
  • No Breaking Changes: Release notes indicate no breaking changes
  • CI Passing: All pre-commit checks passed successfully
  • Minor Version Bump: Semantic versioning indicates backward compatibility
  • Verified Commits: GitHub verified signatures on commits
  • Active Maintenance: Regular updates from active maintainers

Potential Concerns (None Critical)

  • New Core Version: updatecli upgraded to v0.114.0, but this is internal to the action
  • Dependency Management Change: Migrated from Dependabot to updatecli, but this is an internal change to the action itself, not affecting consumers

Issues Found

  • Only 1 open issue in the repository (#829): Feature request to align semver with updatecli version - not related to this release
  • No reported bugs or problems with v2.100.0 or v0.114.0

Testing & Validation

Pre-Merge Validation

  • ✅ CI checks passed (pre-commit checks: 25s)
  • ✅ No conflicts reported
  • ✅ Dependabot compatibility score available

Recommended Post-Merge Validation

  1. Monitor the next updatecli workflow run in this repository
  2. Verify updatecli operations complete successfully with the new version

References

Decision

APPROVE: This is a straightforward maintenance update with no breaking changes, passing CI, and no reported issues. The update brings improvements to the underlying updatecli tool and keeps dependencies current.

Reviewed: 2026-03-02
CI Status: ✅ Passing
Merge Recommendation: Approve and merge immediately

1 similar comment
@jamiezieziula
Copy link
Copy Markdown
Contributor

jamiezieziula commented Mar 2, 2026

Dependency Update Review: #32

Summary

Recommendation: ✅ APPROVE AND MERGE

This is a minor version bump of the updatecli-action from v2.99.0 to v2.100.0. The update is a maintenance release focused on dependency updates and workflow improvements with no breaking changes or significant risks.

Change Details

What's Being Updated

  • Package: updatecli/updatecli-action
  • Version Change: v2.99.0 → v2.100.0
  • Update Type: Minor version bump
  • Files Changed: 1 file (action.yaml)
  • Lines Changed: 1 addition, 1 deletion

What Changed in v2.100.0

The v2.100.0 release includes the following updates:

  1. Dependency Management Improvements

    • Removed .github/dependabot.yaml (migrating to updatecli for dependency management)
    • Bumped all GitHub Action dependencies
    • Updated @types/node to v25.3.0
    • Updated eslint-plugin-jest to v29.15.0

  2. Core Version Upgrade

    • Updated updatecli to v0.114.0, which includes:
      • Support for specifying depth for git clone operations
      • New lsremote parameter to skip git clone in gittag
      • Improved error messaging in resource execution
      • Bazel support in autodiscovery
      • Woodpecker CI plugin in autodiscovery
      • Pipeline filtering based on labels
      • Templating for file paths

  3. Automation Enhancements

    • Updated all updatecli policies to v0.7.0
    • Implemented daily scheduled runs for monitored pipelines
    • Fixed cron schedule syntax in updatecli workflow

Risk Assessment

Low Risk Indicators ✅

  • Maintenance Release: This is purely a maintenance and dependency update release
  • No Breaking Changes: Release notes indicate no breaking changes
  • CI Passing: All pre-commit checks passed successfully
  • Minor Version Bump: Semantic versioning indicates backward compatibility
  • Verified Commits: GitHub verified signatures on commits
  • Active Maintenance: Regular updates from active maintainers

Potential Concerns (None Critical)

  • New Core Version: updatecli upgraded to v0.114.0, but this is internal to the action
  • Dependency Management Change: Migrated from Dependabot to updatecli, but this is an internal change to the action itself, not affecting consumers

Issues Found

  • Only 1 open issue in the repository (#829): Feature request to align semver with updatecli version - not related to this release
  • No reported bugs or problems with v2.100.0 or v0.114.0

Testing & Validation

Pre-Merge Validation

  • ✅ CI checks passed (pre-commit checks: 25s)
  • ✅ No conflicts reported
  • ✅ Dependabot compatibility score available

Recommended Post-Merge Validation

  1. Monitor the next updatecli workflow run in this repository
  2. Verify updatecli operations complete successfully with the new version

References

Decision

APPROVE: This is a straightforward maintenance update with no breaking changes, passing CI, and no reported issues. The update brings improvements to the underlying updatecli tool and keeps dependencies current.

Reviewed: 2026-03-02
CI Status: ✅ Passing
Merge Recommendation: Approve and merge immediately

@jamiezieziula jamiezieziula merged commit 29b51f3 into main Mar 2, 2026
1 check passed
@jamiezieziula jamiezieziula deleted the dependabot/github_actions/all-b2126a9d8f branch March 2, 2026 17:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jamiezieziula jamiezieziula jamiezieziula approved these changes

Assignees

No one assigned

Labels

automated-dependency-updates

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@jamiezieziula