Bump docker/setup-buildx-action from 0f069ddc17b8eb78586b08a7fe335fd54649e2d3 to 6524bf65af31da8d45b59e8c27de4bd072b392f5#145
Conversation
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 0f069ddc17b8eb78586b08a7fe335fd54649e2d3 to 6524bf65af31da8d45b59e8c27de4bd072b392f5. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](docker/setup-buildx-action@0f069dd...6524bf6) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
added
dependencies
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
There was a problem hiding this comment.
Pull Request Overview
This PR updates the docker/setup-buildx-action in the GitHub Actions workflow by replacing the pinned SHA hash, likely to use a newer version of the action with potential bug fixes or improvements.
Key Changes
- Updated the SHA hash for
docker/setup-buildx-actionfrom0f069ddc17b8eb78586b08a7fe335fd54649e2d3to6524bf65af31da8d45b59e8c27de4bd072b392f5
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| # Workaround: https://github.com/docker/build-push-action/issues/461 | ||
| - name: Setup Docker buildx | ||
| uses: docker/setup-buildx-action@0f069ddc17b8eb78586b08a7fe335fd54649e2d3 | ||
| uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 |
There was a problem hiding this comment.
[nitpick] Consider adding a version comment (e.g., #v3.x.x) after the SHA hash for better maintainability and clarity, similar to how the cosign-installer action is documented on line 37. This makes it easier to track which version the SHA corresponds to.
| uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 | |
| uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 #v3.0.0 |
|
Bumps docker/setup-buildx-action from 0f069ddc17b8eb78586b08a7fe335fd54649e2d3 to 6524bf65af31da8d45b59e8c27de4bd072b392f5.
Commits
6524bf6Merge pull request #390 from crazy-max/buildx-cloud-latest8d5e074chore: update generated content7199e57make cloud prefix optional to download buildx if driver is clouddb63ceeMerge pull request #381 from docker/dependabot/github_actions/codecov/codecov...043ebe1Merge pull request #389 from docker/dependabot/npm_and_yarn/docker/actions-to...686da90chore: update generated contenta3d7487Merge pull request #382 from docker/dependabot/npm_and_yarn/cross-spawn-7.0.64dcdbcebuild(deps): bump@docker/actions-toolkitfrom 0.39.0 to 0.48.01a8ac74ci: fix deprecated input for codecov-actione827ebebuild(deps): bump cross-spawn from 7.0.3 to 7.0.6Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)