[PR #670] [MERGED] chore(deps): update actions/dependency-review-action action to v4.8.0 #669

New issue

Closed

opened 2026-03-03 14:32:14 +03:00 by kerem · 0 comments

kerem commented

2026-03-03 14:32:14 +03:00

Owner

📋 Pull Request Information

Original PR: https://github.com/konstruktoid/hardening/pull/670
Author: @renovate[bot]
Created: 9/26/2025
Status: ✅ Merged
Merged: 9/28/2025
Merged by: @renovate[bot]

Base: master ← Head: renovate/actions-dependency-review-action-4.x

📝 Commits (1)

2b654d3 chore(deps): update actions/dependency-review-action action to v4.8.0

📊 Changes

1 file changed (+1 additions, -1 deletions)

View changed files

📝 .github/workflows/dependency-review.yml (+1 -1)

📄 Description

Coming soon: The Renovate bot (GitHub App) will be renamed to Mend. PRs from Renovate will soon appear from 'Mend'. Learn more here.

This PR contains the following updates:

Package	Type	Update	Change
actions/dependency-review-action	action	minor	`v4.7.3` -> `v4.8.0`

Release Notes

actions/dependency-review-action (actions/dependency-review-action)

`v4.8.0`

Compare Source

What's Changed

Make Ruby Code Scannable by @ljones140 in #978
Batch some contributions for release by @brrygrdn in #986
- Make license lists collapsable by @jasperkamerling
- feat: add large summary handling with artifact upload by @MattMencel

New Contributors

@ljones140 made their first contribution in #978
@jasperkamerling made their first contribution in #986
@MattMencel made their first contribution in #986

Full Changelog: https://github.com/actions/dependency-review-action/compare/v4...v4.8.0

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/konstruktoid/hardening/pull/670 **Author:** [@renovate[bot]](https://github.com/apps/renovate) **Created:** 9/26/2025 **Status:** ✅ Merged **Merged:** 9/28/2025 **Merged by:** [@renovate[bot]](https://github.com/apps/renovate) **Base:** `master` ← **Head:** `renovate/actions-dependency-review-action-4.x` --- ### 📝 Commits (1) - [`2b654d3`](https://github.com/konstruktoid/hardening/commit/2b654d393cb046809edc0bf69954f275e0bc5de5) chore(deps): update actions/dependency-review-action action to v4.8.0 ### 📊 Changes **1 file changed** (+1 additions, -1 deletions) <details> <summary>View changed files</summary> 📝 `.github/workflows/dependency-review.yml` (+1 -1) </details> ### 📄 Description Coming soon: The Renovate bot (GitHub App) will be renamed to Mend. PRs from Renovate will soon appear from 'Mend'. Learn more [here](https://redirect.github.com/renovatebot/renovate/discussions/37842). This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [actions/dependency-review-action](https://redirect.github.com/actions/dependency-review-action) | action | minor | `v4.7.3` -> `v4.8.0` | --- ### Release Notes <details> <summary>actions/dependency-review-action (actions/dependency-review-action)</summary> ### [`v4.8.0`](https://redirect.github.com/actions/dependency-review-action/releases/tag/v4.8.0) [Compare Source](https://redirect.github.com/actions/dependency-review-action/compare/v4.7.4...v4.8.0) #### What's Changed - Make Ruby Code Scannable by [@ljones140](https://redirect.github.com/ljones140) in [#978](https://redirect.github.com/actions/dependency-review-action/pull/978) - Batch some contributions for release by [@brrygrdn](https://redirect.github.com/brrygrdn) in [#986](https://redirect.github.com/actions/dependency-review-action/pull/986) - Make license lists collapsable by [@jasperkamerling](https://redirect.github.com/jasperkamerling) - feat: add large summary handling with artifact upload by [@MattMencel](https://redirect.github.com/MattMencel) #### New Contributors - [@ljones140](https://redirect.github.com/ljones140) made their first contribution in [#978](https://redirect.github.com/actions/dependency-review-action/pull/978) - [@jasperkamerling](https://redirect.github.com/jasperkamerling) made their first contribution in [#986](https://redirect.github.com/actions/dependency-review-action/pull/986) - [@MattMencel](https://redirect.github.com/MattMencel) made their first contribution in [#986](https://redirect.github.com/actions/dependency-review-action/pull/986) **Full Changelog**: <https://github.com/actions/dependency-review-action/compare/v4...v4.8.0> ### [`v4.7.4`](https://redirect.github.com/actions/dependency-review-action/compare/v4.7.3...v4.7.4) [Compare Source](https://redirect.github.com/actions/dependency-review-action/compare/v4.7.3...v4.7.4) </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/konstruktoid/hardening).  --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>