Add set-safe-directory input to allow customers to take control. (#770) #776

TingluoHuang · 2022-04-21T13:36:02Z

Add set-safe-directory input to allow customers to take control.

* Add set-safe-directory input to allow customers to take control.

thboop

lgtm

Bumps actions/checkout from 2 to 3. Release notes Sourced from actions/checkout's releases. v3.0.0 Updated to the node16 runtime by default This requires a minimum Actions Runner version of v2.285.0 to run, which is by default available in GHES 3.4 or later. v2.4.2 What's Changed Add set-safe-directory input to allow customers to take control. (#770) by @TingluoHuang in actions/checkout#776 Prepare changelog for v2.4.2. by @TingluoHuang in actions/checkout#778 Full Changelog: actions/checkout@v2...v2.4.2 v2.4.1 Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory v2.4.0 Convert SSH URLs like org-<ORG_ID>@github.com: to https://github.com/ - pr v2.3.5 Update dependencies v2.3.4 Add missing awaits Swap to Environment Files v2.3.3 Remove Unneeded commit information from build logs Add Licensed to verify third party dependencies v2.3.2 Add Third Party License Information to Dist Files v2.3.1 Fix default branch resolution for .wiki and when using SSH v2.3.0 Fallback to the default branch v2.2.0 Fetch all history for all tags and branches when fetch-depth=0 v2.1.1 Changes to support GHES (here and here) v2.1.0 Group output Changes to support GHES alpha release Persist core.sshCommand for submodules Add support ssh Convert submodule SSH URL to HTTPS, when not using SSH ... (truncated) Changelog Sourced from actions/checkout's changelog. Changelog v3.0.2 Add input set-safe-directory v3.0.1 Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory Bumped various npm package versions v3.0.0 Update to node 16 v2.3.1 Fix default branch resolution for .wiki and when using SSH v2.3.0 Fallback to the default branch v2.2.0 Fetch all history for all tags and branches when fetch-depth=0 v2.1.1 Changes to support GHES (here and here) v2.1.0 Group output Changes to support GHES alpha release Persist core.sshCommand for submodules Add support ssh Convert submodule SSH URL to HTTPS, when not using SSH Add submodule support Follow proxy settings Fix ref for pr closed event when a pr is merged Fix issue checking detached when git less than 2.22 v2.0.0 Do not pass cred on command line Add input persist-credentials Fallback to REST API to download repo Commits 2541b12 Prepare changelog for v3.0.2. (#777) 0ffe6f9 Add set-safe-directory input to allow customers to take control. (#770) dcd71f6 Enforce safe directory (#762) add3486 Patch to fix the dependbot alert. (#744) 5126516 Bump minimist from 1.2.5 to 1.2.6 (#741) d50f8ea Add v3.0 release information to changelog (#740) 2d1c119 update test workflows to checkout v3 (#709) a12a394 update readme for v3 (#708) 8f9e05e Update to node 16 (#689) See full diff in compare view Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase. Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: @dependabot rebase will rebase this PR @dependabot recreate will recreate this PR, overwriting any edits that have been made to it @dependabot merge will merge this PR after your CI passes on it @dependabot squash and merge will squash and merge this PR after your CI passes on it @dependabot cancel merge will cancel a previously requested merge and block automerging @dependabot reopen will reopen this PR if it is closed @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps actions/checkout from 2 to 3. Release notes Sourced from actions/checkout's releases. v3.0.0 Updated to the node16 runtime by default This requires a minimum Actions Runner version of v2.285.0 to run, which is by default available in GHES 3.4 or later. v2.4.2 What's Changed Add set-safe-directory input to allow customers to take control. (#770) by @TingluoHuang in actions/checkout#776 Prepare changelog for v2.4.2. by @TingluoHuang in actions/checkout#778 Full Changelog: actions/checkout@v2...v2.4.2 v2.4.1 Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory v2.4.0 Convert SSH URLs like org-<ORG_ID>@github.com: to https://github.com/ - pr v2.3.5 Update dependencies v2.3.4 Add missing awaits Swap to Environment Files v2.3.3 Remove Unneeded commit information from build logs Add Licensed to verify third party dependencies v2.3.2 Add Third Party License Information to Dist Files v2.3.1 Fix default branch resolution for .wiki and when using SSH v2.3.0 Fallback to the default branch v2.2.0 Fetch all history for all tags and branches when fetch-depth=0 v2.1.1 Changes to support GHES (here and here) v2.1.0 Group output Changes to support GHES alpha release Persist core.sshCommand for submodules Add support ssh Convert submodule SSH URL to HTTPS, when not using SSH ... (truncated) Changelog Sourced from actions/checkout's changelog. Changelog v3.0.2 Add input set-safe-directory v3.0.1 Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory Bumped various npm package versions v3.0.0 Update to node 16 v2.3.1 Fix default branch resolution for .wiki and when using SSH v2.3.0 Fallback to the default branch v2.2.0 Fetch all history for all tags and branches when fetch-depth=0 v2.1.1 Changes to support GHES (here and here) v2.1.0 Group output Changes to support GHES alpha release Persist core.sshCommand for submodules Add support ssh Convert submodule SSH URL to HTTPS, when not using SSH Add submodule support Follow proxy settings Fix ref for pr closed event when a pr is merged Fix issue checking detached when git less than 2.22 v2.0.0 Do not pass cred on command line Add input persist-credentials Fallback to REST API to download repo v2 (beta) Improved fetch performance ... (truncated) Commits 2541b12 Prepare changelog for v3.0.2. (#777) 0ffe6f9 Add set-safe-directory input to allow customers to take control. (#770) dcd71f6 Enforce safe directory (#762) add3486 Patch to fix the dependbot alert. (#744) 5126516 Bump minimist from 1.2.5 to 1.2.6 (#741) d50f8ea Add v3.0 release information to changelog (#740) 2d1c119 update test workflows to checkout v3 (#709) a12a394 update readme for v3 (#708) 8f9e05e Update to node 16 (#689) See full diff in compare view Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase. Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: @dependabot rebase will rebase this PR @dependabot recreate will recreate this PR, overwriting any edits that have been made to it @dependabot merge will merge this PR after your CI passes on it @dependabot squash and merge will squash and merge this PR after your CI passes on it @dependabot cancel merge will cancel a previously requested merge and block automerging @dependabot reopen will reopen this PR if it is closed @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps actions/checkout from 2 to 3. Release notes Sourced from actions/checkout's releases. v3.0.0 Updated to the node16 runtime by default This requires a minimum Actions Runner version of v2.285.0 to run, which is by default available in GHES 3.4 or later. v2.7.0 What's Changed Add new public key for known_hosts (#1237) by @TingluoHuang in actions/checkout#1238 Full Changelog: actions/checkout@v2.6.0...v2.7.0 v2.6.0 What's Changed Add backports to v2 branch by @cory-miller in actions/checkout#1040 Includes backports from the following changes: actions/checkout#964, actions/checkout#1002, actions/checkout#1029 Upgraded the licensed version to match what is used in v3. Full Changelog: actions/checkout@v2.5.0...v2.6.0 v2.5.0 What's Changed Update @actions/core to 1.10.0 by @rentziass in actions/checkout#962 Full Changelog: actions/checkout@v2...v2.5.0 v2.4.2 What's Changed Add set-safe-directory input to allow customers to take control. (#770) by @TingluoHuang in actions/checkout#776 Prepare changelog for v2.4.2. by @TingluoHuang in actions/checkout#778 Full Changelog: actions/checkout@v2...v2.4.2 v2.4.1 Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory v2.4.0 Convert SSH URLs like org-<ORG_ID>@github.com: to https://github.com/ - pr v2.3.5 Update dependencies v2.3.4 Add missing awaits Swap to Environment Files v2.3.3 Remove Unneeded commit information from build logs Add Licensed to verify third party dependencies ... (truncated) Changelog Sourced from actions/checkout's changelog. Changelog v3.6.0 Fix: Mark test scripts with Bash'isms to be run via Bash Add option to fetch tags even if fetch-depth > 0 v3.5.3 Fix: Checkout fail in self-hosted runners when faulty submodule are checked-in Fix typos found by codespell Add support for sparse checkouts v3.5.2 Fix api endpoint for GHES v3.5.1 Fix slow checkout on Windows v3.5.0 Add new public key for known_hosts v3.4.0 Upgrade codeql actions to v2 Upgrade dependencies Upgrade @actions/io v3.3.0 Implement branch list using callbacks from exec function Add in explicit reference to private checkout options [Fix comment typos (that got added in #770)](actions/checkout#1057) v3.2.0 Add GitHub Action to perform release Fix status badge Replace datadog/squid with ubuntu/squid Docker image Wrap pipeline commands for submoduleForeach in quotes Update @actions/io to 1.1.2 Upgrading version to 3.2.0 v3.1.0 Use @actions/core saveState and getState Add github-server-url input v3.0.2 Add input set-safe-directory v3.0.1 Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory Bumped various npm package versions v3.0.0 ... (truncated) Commits f43a0e5 Release 3.6.0 (#1437) 7739b9b Add option to fetch tags even if fetch-depth > 0 (#579) 96f5310 Mark test scripts with Bash'isms to be run via Bash (#1377) c85c95e Release v3.5.3 (#1376) d106d46 Add support for sparse checkouts (#1369) f095bcc Fix typos found by codespell (#1287) 47fbe2d Fix: Checkout fail in self-hosted runners when faulty submodule are checked-i... 8e5e7e5 Release v3.5.2 (#1291) eb35239 Fix: convert baseUrl to serverApiUrl 'formatted' (#1289) 83b7061 Release v3.5.1 (#1284) Additional commits viewable in compare view Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase. Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: @dependabot rebase will rebase this PR @dependabot recreate will recreate this PR, overwriting any edits that have been made to it @dependabot merge will merge this PR after your CI passes on it @dependabot squash and merge will squash and merge this PR after your CI passes on it @dependabot cancel merge will cancel a previously requested merge and block automerging @dependabot reopen will reopen this PR if it is closed @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com) This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [actions/checkout](https://togithub.com/actions/checkout) | action | minor | `v2.4.0` -> `v2.7.0` | --- ### Release Notes <details> <summary>actions/checkout (actions/checkout)</summary> ### [`v2.7.0`](https://togithub.com/actions/checkout/releases/tag/v2.7.0) [Compare Source](https://togithub.com/actions/checkout/compare/v2.6.0...v2.7.0) ##### What's Changed - Add new public key for known_hosts ([#1237](https://togithub.com/actions/checkout/issues/1237)) by [@TingluoHuang](https://togithub.com/TingluoHuang) in [actions/checkout#1238 **Full Changelog**: actions/checkout@v2.6.0...v2.7.0 ### [`v2.6.0`](https://togithub.com/actions/checkout/releases/tag/v2.6.0) [Compare Source](https://togithub.com/actions/checkout/compare/v2.5.0...v2.6.0) #### What's Changed - Add backports to v2 branch by [@cory-miller](https://togithub.com/cory-miller) in [actions/checkout#1040 - Includes backports from the following changes: [actions/checkout#964, [actions/checkout#1002, [actions/checkout#1029 - Upgraded the licensed version to match what is used in v3. **Full Changelog**: actions/checkout@v2.5.0...v2.6.0 ### [`v2.5.0`](https://togithub.com/actions/checkout/releases/tag/v2.5.0) [Compare Source](https://togithub.com/actions/checkout/compare/v2.4.2...v2.5.0) ##### What's Changed - Update [@actions/core](https://togithub.com/actions/core) to 1.10.0 by [@rentziass](https://togithub.com/rentziass) in [actions/checkout#962 **Full Changelog**: actions/checkout@v2...v2.5.0 ### [`v2.4.2`](https://togithub.com/actions/checkout/releases/tag/v2.4.2) [Compare Source](https://togithub.com/actions/checkout/compare/v2.4.1...v2.4.2) ##### What's Changed - Add set-safe-directory input to allow customers to take control. ([#770](https://togithub.com/actions/checkout/issues/770)) by [@TingluoHuang](https://togithub.com/TingluoHuang) in [actions/checkout#776 - Prepare changelog for v2.4.2. by [@TingluoHuang](https://togithub.com/TingluoHuang) in [actions/checkout#778 **Full Changelog**: actions/checkout@v2...v2.4.2 ### [`v2.4.1`](https://togithub.com/actions/checkout/releases/tag/v2.4.1) [Compare Source](https://togithub.com/actions/checkout/compare/v2.4.0...v2.4.1) - Fixed an issue where checkout failed to run in container jobs due to the new git setting `safe.directory` </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://developer.mend.io/github/solid-design-system/solid).  Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

Add set-safe-directory input to allow customers to take control. (#770)

771ba60

* Add set-safe-directory input to allow customers to take control.

thboop approved these changes Apr 21, 2022

View reviewed changes

TingluoHuang merged commit f67ee5d into releases/v2 Apr 21, 2022

TingluoHuang deleted the users/tihuang/cp branch April 21, 2022 14:12

minddocbot mentioned this pull request Apr 21, 2022

chore(workflows): pin actions/checkout action vv2.7.0 minddocdev/accesscontrol#111

Open

1 task

sdwilsh mentioned this pull request Jun 1, 2022

Bump actions/checkout from 2 to 3 sdwilsh/aiobrultech-serial#45

Merged

AnthonyPorthouse mentioned this pull request Sep 25, 2022

Bump actions/checkout from 2 to 3 AnthonyPorthouse/react-airsonic#27

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add set-safe-directory input to allow customers to take control. (#770) #776

Add set-safe-directory input to allow customers to take control. (#770) #776

TingluoHuang commented Apr 21, 2022

thboop left a comment

Add set-safe-directory input to allow customers to take control. (#770) #776

Add set-safe-directory input to allow customers to take control. (#770) #776

Conversation

TingluoHuang commented Apr 21, 2022

thboop left a comment

Choose a reason for hiding this comment