[PR #1635] [MERGED] Bump docker/build-push-action from 5.3.0 to 5.4.0 #1678

New issue

Closed

opened 2026-03-03 12:35:42 +03:00 by kerem · 0 comments

kerem commented

2026-03-03 12:35:42 +03:00

Owner

📋 Pull Request Information

Original PR: https://github.com/fsouza/fake-gcs-server/pull/1635
Author: @dependabot[bot]
Created: 6/10/2024
Status: ✅ Merged
Merged: 6/12/2024
Merged by: @fsouza

Base: main ← Head: dependabot/github_actions/docker/build-push-action-5.4.0

📝 Commits (1)

f9950ee Bump docker/build-push-action from 5.3.0 to 5.4.0

📊 Changes

2 files changed (+2 additions, -2 deletions)

View changed files

📝 .github/workflows/docker-push.yml (+1 -1)
📝 .github/workflows/docker-tests.yml (+1 -1)

📄 Description

Bumps docker/build-push-action from 5.3.0 to 5.4.0.

Release notes

Sourced from docker/build-push-action's releases.

v5.4.0

Show builder information before building by @crazy-max in docker/build-push-action#1128

Handle attestations correctly with provenance and sbom inputs by @crazy-max in docker/build-push-action#1086

Bump @docker/actions-toolkit from 0.19.0 to 0.24.0 in docker/build-push-action#1088 docker/build-push-action#1105 docker/build-push-action#1121 docker/build-push-action#1127

Bump undici from 5.28.3 to 5.28.4 in docker/build-push-action#1090

Full Changelog: https://github.com/docker/build-push-action/compare/v5.3.0...v5.4.0

Commits

ca052bb Merge pull request #1128 from crazy-max/builder-info
025c205 chore: update generated content
12076d2 show builder information before building
ef6cba3 Merge pull request #1127 from docker/dependabot/npm_and_yarn/docker/actions-t...
4c16cf9 chore: update generated content
a3118a8 fixes since moved types
c86eb8b chore(deps): Bump @docker/actions-toolkit from 0.23.0 to 0.24.0
2a53c6c Merge pull request #1122 from crazy-max/update-dev-deps
ccef1f2 chore: update generated content
79117b6 chore: update dev dependencies
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/fsouza/fake-gcs-server/pull/1635 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 6/10/2024 **Status:** ✅ Merged **Merged:** 6/12/2024 **Merged by:** [@fsouza](https://github.com/fsouza) **Base:** `main` ← **Head:** `dependabot/github_actions/docker/build-push-action-5.4.0` --- ### 📝 Commits (1) - [`f9950ee`](https://github.com/fsouza/fake-gcs-server/commit/f9950ee94ed1ce87c89e0c7a061bc2a4077b4448) Bump docker/build-push-action from 5.3.0 to 5.4.0 ### 📊 Changes **2 files changed** (+2 additions, -2 deletions) <details> <summary>View changed files</summary> 📝 `.github/workflows/docker-push.yml` (+1 -1) 📝 `.github/workflows/docker-tests.yml` (+1 -1) </details> ### 📄 Description Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 5.3.0 to 5.4.0. <details> <summary>Release notes</summary> Sourced from <a href="https://github.com/docker/build-push-action/releases">docker/build-push-action's releases</a>. <blockquote> <h2>v5.4.0</h2> <ul> <li>Show builder information before building by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/1128">docker/build-push-action#1128</a></li> <li>Handle attestations correctly with provenance and sbom inputs by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/docker/build-push-action/pull/1086">docker/build-push-action#1086</a></li> <li>Bump <code>@docker/actions-toolkit</code> from 0.19.0 to 0.24.0 in <a href="https://redirect.github.com/docker/build-push-action/pull/1088">docker/build-push-action#1088</a> <a href="https://redirect.github.com/docker/build-push-action/pull/1105">docker/build-push-action#1105</a> <a href="https://redirect.github.com/docker/build-push-action/pull/1121">docker/build-push-action#1121</a> <a href="https://redirect.github.com/docker/build-push-action/pull/1127">docker/build-push-action#1127</a></li> <li>Bump undici from 5.28.3 to 5.28.4 in <a href="https://redirect.github.com/docker/build-push-action/pull/1090">docker/build-push-action#1090</a></li> </ul> Full Changelog: <a href="https://github.com/docker/build-push-action/compare/v5.3.0...v5.4.0">https://github.com/docker/build-push-action/compare/v5.3.0...v5.4.0</a> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/docker/build-push-action/commit/ca052bb54ab0790a636c9b5f226502c73d547a25"><code>ca052bb</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1128">#1128</a> from crazy-max/builder-info</li> <li><a href="https://github.com/docker/build-push-action/commit/025c2051f357779d6be78f8fdffcc9ae0e345e3c"><code>025c205</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/build-push-action/commit/12076d2fb15a83ad948fcf164db081e9de7064fc"><code>12076d2</code></a> show builder information before building</li> <li><a href="https://github.com/docker/build-push-action/commit/ef6cba335306ace1da064b44f9f739dec9be9fa0"><code>ef6cba3</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1127">#1127</a> from docker/dependabot/npm_and_yarn/docker/actions-t...</li> <li><a href="https://github.com/docker/build-push-action/commit/4c16cf906a7af8d29be02479fdd3cb5408edd73a"><code>4c16cf9</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/build-push-action/commit/a3118a86c83324e3d04d83cb3ae321c9da2bda8c"><code>a3118a8</code></a> fixes since moved types</li> <li><a href="https://github.com/docker/build-push-action/commit/c86eb8b0f72023f5434b46dbf82995f169cdd8e8"><code>c86eb8b</code></a> chore(deps): Bump <code>@docker/actions-toolkit</code> from 0.23.0 to 0.24.0</li> <li><a href="https://github.com/docker/build-push-action/commit/2a53c6ccda456d31fb62eedc658aae06e238b7bd"><code>2a53c6c</code></a> Merge pull request <a href="https://redirect.github.com/docker/build-push-action/issues/1122">#1122</a> from crazy-max/update-dev-deps</li> <li><a href="https://github.com/docker/build-push-action/commit/ccef1f210db2126b52900f94dd47ba79cdace531"><code>ccef1f2</code></a> chore: update generated content</li> <li><a href="https://github.com/docker/build-push-action/commit/79117b6ea56ef284639bbbeeb8a2d4ddb7d97c37"><code>79117b6</code></a> chore: update dev dependencies</li> <li>Additional commits viewable in <a href="https://github.com/docker/build-push-action/compare/v5.3.0...v5.4.0">compare view</a></li> </ul> </details> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/build-push-action&package-manager=github_actions&previous-version=5.3.0&new-version=5.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --- 🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.