Thanks to visit codestin.com
Credit goes to github.com

Skip to content

chore: consolidated dependency and action updates #279

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
copybara-service merged 20 commits into from
Dec 18, 2025
Merged

chore: consolidated dependency and action updates #279

copybara-service merged 20 commits into from
Dec 18, 2025
+17 −17

Conversation

@jdbcode
Copy link
Member

@jdbcode jdbcode commented Dec 18, 2025

This PR bundles 10 separate Dependabot updates into a single PR to reduce CI noise and simplify review.

Included Updates:

GitHub Actions:

  • download-artifact v6
  • upload-artifact v5
  • setup-python v6
  • google-github-actions/auth v3
  • checkout v5

Python Dependencies:

  • myst-nb 1.3.0
  • sphinx-rtd-theme 3.0.2
  • myst-parser 3.0.1
  • jinja2 3.1.6
  • scipy 1.13.1

dependabot bot and others added 20 commits June 12, 2025 15:15
@dependabot
Bump scipy from 1.10.1 to 1.13.1
b665a4d 
Bumps [scipy](https://github.com/scipy/scipy) from 1.10.1 to 1.13.1.
- [Release notes](https://github.com/scipy/scipy/releases)
- [Commits](scipy/scipy@v1.10.1...v1.13.1)

---
updated-dependencies:
- dependency-name: scipy
  dependency-version: 1.13.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump jinja2 from 3.1.5 to 3.1.6
49cbae4 
Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.5 to 3.1.6.
- [Release notes](https://github.com/pallets/jinja/releases)
- [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst)
- [Commits](pallets/jinja@3.1.5...3.1.6)

---
updated-dependencies:
- dependency-name: jinja2
  dependency-version: 3.1.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump myst-parser from 0.18.1 to 3.0.1
17176c7 
Bumps [myst-parser](https://github.com/executablebooks/MyST-Parser) from 0.18.1 to 3.0.1.
- [Release notes](https://github.com/executablebooks/MyST-Parser/releases)
- [Changelog](https://github.com/executablebooks/MyST-Parser/blob/master/CHANGELOG.md)
- [Commits](executablebooks/MyST-Parser@v0.18.1...v3.0.1)

---
updated-dependencies:
- dependency-name: myst-parser
  dependency-version: 3.0.1
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump sphinx-rtd-theme from 1.2.1 to 3.0.2
697d717 
Bumps [sphinx-rtd-theme](https://github.com/readthedocs/sphinx_rtd_theme) from 1.2.1 to 3.0.2.
- [Changelog](https://github.com/readthedocs/sphinx_rtd_theme/blob/master/docs/changelog.rst)
- [Commits](readthedocs/sphinx_rtd_theme@1.2.1...3.0.2)

---
updated-dependencies:
- dependency-name: sphinx-rtd-theme
  dependency-version: 3.0.2
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump myst-nb from 0.17.2 to 1.3.0
30e2efb 
Bumps [myst-nb](https://github.com/executablebooks/myst-nb) from 0.17.2 to 1.3.0.
- [Release notes](https://github.com/executablebooks/myst-nb/releases)
- [Changelog](https://github.com/executablebooks/MyST-NB/blob/main/CHANGELOG.md)
- [Commits](executablebooks/MyST-NB@v0.17.2...v1.3.0)

---
updated-dependencies:
- dependency-name: myst-nb
  dependency-version: 1.3.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump actions/checkout from 4 to 5
8838e8b 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 5.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@v4...v5)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump google-github-actions/auth from 2 to 3
7ef4784 
Bumps [google-github-actions/auth](https://github.com/google-github-actions/auth) from 2 to 3.
- [Release notes](https://github.com/google-github-actions/auth/releases)
- [Changelog](https://github.com/google-github-actions/auth/blob/main/CHANGELOG.md)
- [Commits](google-github-actions/auth@v2...v3)

---
updated-dependencies:
- dependency-name: google-github-actions/auth
  dependency-version: '3'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump actions/setup-python from 4 to 6
4b4e00e 
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4 to 6.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](actions/setup-python@v4...v6)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump actions/upload-artifact from 4 to 5
bc654e7 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4 to 5.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@v4...v5)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump actions/download-artifact from 4 to 6
ac663b2 
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4 to 6.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](actions/download-artifact@v4...v6)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@jdbcode
Merge remote-tracking branch 'origin/dependabot/github_actions/action…
fe4e7fb 
…s/download-artifact-6' into bundle-dependencies-update
@jdbcode
Merge remote-tracking branch 'origin/dependabot/github_actions/action…
fa185a6 
…s/upload-artifact-5' into bundle-dependencies-update
@jdbcode
Merge remote-tracking branch 'origin/dependabot/github_actions/action…
31e2360 
…s/setup-python-6' into bundle-dependencies-update
@jdbcode
Merge remote-tracking branch 'origin/dependabot/github_actions/google…
64974e7 
…-github-actions/auth-3' into bundle-dependencies-update
@jdbcode
Merge remote-tracking branch 'origin/dependabot/github_actions/action…
dbb3789 
…s/checkout-5' into bundle-dependencies-update
@jdbcode
Merge remote-tracking branch 'origin/dependabot/pip/myst-nb-1.3.0' in…
dc0473d 
…to bundle-dependencies-update
@jdbcode
Merge remote-tracking branch 'origin/dependabot/pip/sphinx-rtd-theme-…
ea8c603 
…3.0.2' into bundle-dependencies-update
@jdbcode
chore: bundle myst-nb and myst-parser updates
c100b83
@jdbcode
chore: bundle myst-nb and myst-parser updates
263f8de
@jdbcode
Merge remote-tracking branch 'origin/dependabot/pip/scipy-1.13.1' int…
35f4205 
…o bundle-dependencies-update
This was referenced Dec 18, 2025
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Closed
@jdbcode jdbcode requested a review from schwehr December 18, 2025 18:36
@jdbcode
Copy link
Member Author

jdbcode commented Dec 18, 2025

After approved, add pull ready label.

@copybara-service copybara-service bot merged commit d8dab2f into main Dec 18, 2025
6 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@schwehr schwehr schwehr approved these changes

Assignees

No one assigned

Labels

pull ready

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@jdbcode @schwehr