Skip to content

Bump actions/attest-build-provenance from 4.1.0 to 4.1.1#1741

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions/attest-build-provenance-4.1.1
Closed

Bump actions/attest-build-provenance from 4.1.0 to 4.1.1#1741
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions/attest-build-provenance-4.1.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 3, 2026

Copy link
Copy Markdown
Contributor

Bumps actions/attest-build-provenance from 4.1.0 to 4.1.1.

Release notes

Sourced from actions/attest-build-provenance's releases.

v4.1.1

[!NOTE] As of version 4, actions/attest-build-provenance is simply a wrapper on top of actions/attest.

Existing applications may continue to use the attest-build-provenance action, but new implementations should use actions/attest instead.

What's Changed

Full Changelog: actions/attest-build-provenance@v4.1.0...v4.1.1

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jul 3, 2026
@dependabot dependabot Bot requested a review from a team as a code owner July 3, 2026 05:35
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jul 3, 2026
@waldekmastykarz

Copy link
Copy Markdown
Collaborator

@dependabot rebase

@dependabot @github

dependabot Bot commented on behalf of github Jul 3, 2026

Copy link
Copy Markdown
Contributor Author

Looks like this PR is already up-to-date with main! If you'd still like to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

@waldekmastykarz

Copy link
Copy Markdown
Collaborator

@copilot fix

Copilot AI commented Jul 3, 2026

Copy link
Copy Markdown
Contributor

@copilot fix

Fixed the CI failures by updating DevProxy/packages.lock.json and DevProxy.Plugins/packages.lock.json to reflect the Scriban 7.2.4 → 7.2.5 transitive dependency change from DevProxy.Abstractions. Commit: Update lock files for Scriban 7.2.5.

@waldekmastykarz

Copy link
Copy Markdown
Collaborator

@dependabot rebase

@dependabot @github

dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor Author

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

@waldekmastykarz

Copy link
Copy Markdown
Collaborator

@dependabot recreate

Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/actions/attest-build-provenance/releases)
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md)
- [Commits](actions/attest-build-provenance@v4.1.0...v4.1.1)

---
updated-dependencies:
- dependency-name: actions/attest-build-provenance
  dependency-version: 4.1.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/github_actions/actions/attest-build-provenance-4.1.1 branch from c2efe7d to bb06218 Compare July 6, 2026 06:31
@waldekmastykarz

Copy link
Copy Markdown
Collaborator

Closing to let dependabot create a fresh PR.

@waldekmastykarz waldekmastykarz deleted the dependabot/github_actions/actions/attest-build-provenance-4.1.1 branch July 6, 2026 06:47
@dependabot @github

dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor Author

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants