{"database": "github", "table": "issues", "is_view": false, "human_description_en": "where repo = 13221727 and user = 49699333 sorted by updated_at descending", "rows": [[2242781767, "PR_kwDOAMm_X85soOln", 8943, "Bump codecov/codecov-action from 4.2.0 to 4.3.0 in the actions group", 49699333, "closed", 0, null, null, 0, "2024-04-15T06:04:28Z", "2024-04-15T19:16:38Z", "2024-04-15T19:16:38Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/8943", "Bumps the actions group with 1 update: [codecov/codecov-action](https://github.com/codecov/codecov-action).\n\nUpdates `codecov/codecov-action` from 4.2.0 to 4.3.0\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

v4.3.0

\n

What's Changed

\n\n

Full Changelog: https://github.com/codecov/codecov-action/compare/v4.2.0...v4.3.0

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=4.2.0&new-version=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/8943/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [2230357492, "PR_kwDOAMm_X85r9wiV", 8918, "Bump codecov/codecov-action from 4.1.1 to 4.2.0 in the actions group", 49699333, "closed", 0, null, null, 0, "2024-04-08T06:21:47Z", "2024-04-08T16:31:12Z", "2024-04-08T16:31:11Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/8918", "Bumps the actions group with 1 update: [codecov/codecov-action](https://github.com/codecov/codecov-action).\n\nUpdates `codecov/codecov-action` from 4.1.1 to 4.2.0\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

v4.2.0

\n

What's Changed

\n\n

Full Changelog: https://github.com/codecov/codecov-action/compare/v4.1.1...v4.2.0

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=4.1.1&new-version=4.2.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/8918/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [2217657228, "PR_kwDOAMm_X85rSLKy", 8896, "Bump the actions group with 1 update", 49699333, "closed", 0, null, null, 0, "2024-04-01T06:50:24Z", "2024-04-01T18:02:56Z", "2024-04-01T18:02:56Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/8896", "Bumps the actions group with 1 update: [codecov/codecov-action](https://github.com/codecov/codecov-action).\n\nUpdates `codecov/codecov-action` from 4.1.0 to 4.1.1\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

v4.1.1

\n

What's Changed

\n\n

New Contributors

\n\n

Full Changelog: https://github.com/codecov/codecov-action/compare/v4.1.0...v4.1.1

\n
\n
\n
\nChangelog\n

Sourced from codecov/codecov-action's changelog.

\n
\n

4.0.0-beta.2

\n

Fixes

\n\n

4.0.0-beta.1

\n

v4 represents a move from the universal uploader to the Codecov CLI. Although this will unlock new features for our users, the CLI is not yet at feature parity with the universal uploader.

\n

Breaking Changes

\n\n

3.1.4

\n

Fixes

\n\n

Dependencies

\n\n

3.1.3

\n

Fixes

\n\n

Dependencies

\n\n

3.1.2

\n

Fixes

\n\n

Dependencies

\n\n\n
\n

... (truncated)

\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=4.1.0&new-version=4.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/8896/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [2178320249, "PR_kwDOAMm_X85pMy5O", 8818, "Bump the actions group with 1 update", 49699333, "closed", 0, null, null, 0, "2024-03-11T06:21:39Z", "2024-03-11T07:00:10Z", "2024-03-11T07:00:10Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/8818", "Bumps the actions group with 1 update: [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish).\n\nUpdates `pypa/gh-action-pypi-publish` from 1.8.12 to 1.8.14\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.8.14

\n

\ud83d\udee0\ufe0f Internal Dependencies

\n

Nothing changed feature-wise. The only notable update is that the underlying container runtime now uses Python 3.12 and pip has been updated to v24.0 there.\nThis is should go unnoticed in terms of behavior. It's just a bit of maintenance burden to be done occasionally by @\u200bwebknjaz\ud83d\udcb0.\nEnjoy!

\n

\ud83e\ude9e Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.13...v1.8.14

\n

\ud83e\uddd4\u200d\u2642\ufe0f Release Manager: @\u200bwebknjaz \ud83c\uddfa\ud83c\udde6

\n

v1.8.13

\n

\ud83d\udc1b What's Fixed

\n

This action is now able to consume and publish distribution packages with Metadata-Version: 2.3 embedded.

\n

\ud83d\udee0\ufe0f Internal Dependencies

\n

@\u200bSigureMo\ud83d\udcb0 sent us a bump of pkginfo version to version 1.10.0 in #219. It's a transitive dependency for us and is not an API-level change but upgrading it has a side effect of letting Twine recognize distribution packages declaring Metadata-Version: 2.3. In particular, it is known to affect distributions built with Maturin >= 1.5.0.

\n

Following that, @\u200bwebknjaz\ud83d\udcb0 upgraded other transitive and direct dependency pins, including, among others, the following notable bumps:

\n\n

\ud83d\udcaa New Contributors

\n

@\u200bSigureMo made their first contribution in pypa/gh-action-pypi-publish#219

\n

\ud83e\ude9e Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.12...v1.8.13

\n

\ud83e\uddd4\u200d\u2642\ufe0f Release Manager: @\u200bwebknjaz \ud83c\uddfa\ud83c\udde6

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.8.12&new-version=1.8.14)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/8818/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [2166021058, "PR_kwDOAMm_X85oi7iB", 8804, "Bump the actions group with 2 updates", 49699333, "closed", 0, null, null, 0, "2024-03-04T06:14:58Z", "2024-03-04T18:42:55Z", "2024-03-04T18:42:54Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/8804", "Bumps the actions group with 2 updates: [codecov/codecov-action](https://github.com/codecov/codecov-action) and [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish).\n\nUpdates `codecov/codecov-action` from 4.0.2 to 4.1.0\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

v4.1.0

\n

What's Changed

\n\n

Full Changelog: https://github.com/codecov/codecov-action/compare/v4.0.2...v4.1.0

\n
\n
\n
\nCommits\n\n
\n
\n\nUpdates `pypa/gh-action-pypi-publish` from 1.8.11 to 1.8.12\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.8.12

\n

\ud83d\udc85 Cosmetic Output Improvements

\n

@\u200bwoodruffw\ud83d\udcb0 replaced the notice annotations with simplified debug messages related to authentication methanism selection via #196. The also improved the error clarity during OIDC exchange on PRs from forks via #203.

\n

\ud83d\udcdd What's Documented

\n

@\u200bvirtuald\ud83d\udcb0 updated the docs and pointer messages were updated to mention that reusable workflows aren't supported right now in #186 and @\u200bxuanzhi33\ud83d\udcb0 later corrected the markdown syntax there via #216.

\n

\ud83d\udee0\ufe0f Internal Dependencies

\n\n

\u2699\ufe0f Secret Stuff

\n

@\u200bwoodruffw proactively updated the OIDC minting API endpoint used during the exchange via #206. Nothing you should be too concerned about, promise!

\n

\ud83d\udcaa New Contributors

\n\n

\ud83e\ude9e Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.11...v1.8.12

\n

:man_beard: Release Manager: @\u200bwebknjaz \ud83c\uddfa\ud83c\udde6

\n
\n
\n
\nCommits\n\n
\n
\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/8804/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [2153359481, "PR_kwDOAMm_X85n3yWP", 8785, "Bump the actions group with 2 updates", 49699333, "closed", 0, null, null, 0, "2024-02-26T06:29:23Z", "2024-02-26T07:00:03Z", "2024-02-26T07:00:02Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/8785", "Bumps the actions group with 2 updates: [codecov/codecov-action](https://github.com/codecov/codecov-action) and [scientific-python/upload-nightly-action](https://github.com/scientific-python/upload-nightly-action).\n\nUpdates `codecov/codecov-action` from 4.0.1 to 4.0.2\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

v4.0.2

\n

What's Changed

\n\n

New Contributors

\n\n

Full Changelog: https://github.com/codecov/codecov-action/compare/v4.0.1...v4.0.2

\n
\n
\n
\nCommits\n\n
\n
\n\nUpdates `scientific-python/upload-nightly-action` from 0.3.0 to 0.5.0\n
\nRelease notes\n

Sourced from scientific-python/upload-nightly-action's releases.

\n
\n

0.5.0

\n

0.5.0 has the same features as release 0.4.0 but achieves them with fewer dependencies by updating anaconda-client to v1.12.3 to take advantage of upstream fixes that release 0.4.0 provided locally in the GitHub Action. The version of CPython used is also updated to 3.12.

\n

What's Changed

\n\n

Full Changelog: https://github.com/scientific-python/upload-nightly-action/compare/0.4.0...0.5.0

\n

0.4.0

\n

0.4.0 adds an additional guard to ensure that projects that:

\n\n

won't remove the project from the index while trying to upload to it. This most commonly guards no arch wheels that don't include version control system information in the filename that are overriding the same wheel filename in place. c.f. Anaconda-Platform/anaconda-client#702 for more informaiton.

\n

No API changes are required to move from 0.3.0 to 0.4.0.

\n

What's Changed

\n\n

Full Changelog: https://github.com/scientific-python/upload-nightly-action/compare/0.3.0...0.4.0

\n
\n
\n
\nCommits\n\n
\n
\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/8785/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [2117749336, "PR_kwDOAMm_X85l-wKQ", 8706, "Bump the actions group with 1 update", 49699333, "closed", 0, null, null, 0, "2024-02-05T06:04:43Z", "2024-02-06T16:02:56Z", "2024-02-06T16:02:55Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/8706", "Bumps the actions group with 1 update: [codecov/codecov-action](https://github.com/codecov/codecov-action).\n\nUpdates `codecov/codecov-action` from 3.1.5 to 4.0.1\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

v4.0.1

\n

What's Changed

\n\n

Full Changelog: https://github.com/codecov/codecov-action/compare/v4.0.0...v4.0.1

\n

v4.0.0

\n

v4 of the Codecov Action uses the CLI as the underlying upload. The CLI has helped to power new features including local upload, the global upload token, and new upcoming features.

\n

Breaking Changes

\n\n

v3 versions and below will not have access to CLI features (e.g. global upload token, ATS).

\n

What's Changed

\n\n\n
\n

... (truncated)

\n
\n
\nChangelog\n

Sourced from codecov/codecov-action's changelog.

\n
\n

4.0.0-beta.2

\n

Fixes

\n\n

4.0.0-beta.1

\n

v4 represents a move from the universal uploader to the Codecov CLI. Although this will unlock new features for our users, the CLI is not yet at feature parity with the universal uploader.

\n

Breaking Changes

\n\n

3.1.4

\n

Fixes

\n\n

Dependencies

\n\n

3.1.3

\n

Fixes

\n\n

Dependencies

\n\n

3.1.2

\n

Fixes

\n\n

Dependencies

\n\n\n
\n

... (truncated)

\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=3.1.5&new-version=4.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/8706/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [2104759905, "PR_kwDOAMm_X85lSVfr", 8678, "Bump the actions group with 1 update", 49699333, "closed", 0, null, null, 0, "2024-01-29T06:37:28Z", "2024-01-29T19:27:12Z", "2024-01-29T19:27:11Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/8678", "Bumps the actions group with 1 update: [codecov/codecov-action](https://github.com/codecov/codecov-action).\n\nUpdates `codecov/codecov-action` from 3.1.4 to 3.1.5\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

v3.1.5

\n

What's Changed

\n\n

New Contributors

\n\n

Full Changelog: https://github.com/codecov/codecov-action/compare/v3.1.4...v3.1.5

\n
\n
\n
\nChangelog\n

Sourced from codecov/codecov-action's changelog.

\n
\n

4.0.0-beta.2

\n

Fixes

\n\n

4.0.0-beta.1

\n

v4 represents a move from the universal uploader to the Codecov CLI. Although this will unlock new features for our users, the CLI is not yet at feature parity with the universal uploader.

\n

Breaking Changes

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=3.1.4&new-version=3.1.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/8678/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [2045809742, "PR_kwDOAMm_X85iN_wD", 8557, "Bump actions/upload-artifact from 3 to 4", 49699333, "closed", 0, null, null, 10, "2023-12-18T06:08:49Z", "2024-01-04T22:40:26Z", "2024-01-04T22:40:25Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/8557", "Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3 to 4.\n
\nRelease notes\n

Sourced from actions/upload-artifact's releases.

\n
\n

v4.0.0

\n

What's Changed

\n

The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.

\n

For more information, see the @\u200bactions/artifact documentation.

\n

New Contributors

\n\n

Full Changelog: https://github.com/actions/upload-artifact/compare/v3...v4.0.0

\n

v3.1.3

\n

What's Changed

\n\n

Full Changelog: https://github.com/actions/upload-artifact/compare/v3...v3.1.3

\n

v3.1.2

\n\n

v3.1.1

\n\n

v3.1.0

\n

What's Changed

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=3&new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/8557/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [2045809680, "PR_kwDOAMm_X85iN_vQ", 8556, "Bump actions/download-artifact from 3 to 4", 49699333, "closed", 0, null, null, 3, "2023-12-18T06:08:46Z", "2024-01-03T21:57:18Z", "2024-01-03T21:57:17Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/8556", "Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 3 to 4.\n
\nRelease notes\n

Sourced from actions/download-artifact's releases.

\n
\n

v4.0.0

\n

What's Changed

\n

The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.

\n

For more information, see the @\u200bactions/artifact documentation.

\n

New Contributors

\n\n

Full Changelog: https://github.com/actions/download-artifact/compare/v3...v4.0.0

\n

v3.0.2

\n\n

v3.0.1

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/download-artifact&package-manager=github_actions&previous-version=3&new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/8556/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [2034952754, "PR_kwDOAMm_X85hpKYs", 8540, "Bump actions/setup-python from 4 to 5", 49699333, "closed", 0, null, null, 0, "2023-12-11T06:50:24Z", "2023-12-11T07:56:07Z", "2023-12-11T07:56:06Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/8540", "Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4 to 5.\n
\nRelease notes\n

Sourced from actions/setup-python's releases.

\n
\n

v5.0.0

\n

What's Changed

\n

In scope of this release, we update node version runtime from node16 to node20 (actions/setup-python#772). Besides, we update dependencies to the latest versions.

\n

Full Changelog: https://github.com/actions/setup-python/compare/v4.8.0...v5.0.0

\n

v4.8.0

\n

What's Changed

\n

In scope of this release we added support for GraalPy (actions/setup-python#694). You can use this snippet to set up GraalPy:

\n
steps:\n- uses: actions/checkout@v4\n- uses: actions/setup-python@v4 \n  with:\n    python-version: 'graalpy-22.3' \n- run: python my_script.py\n
\n

Besides, the release contains such changes as:

\n\n

New Contributors

\n\n

Full Changelog: https://github.com/actions/setup-python/compare/v4...v4.8.0

\n

v4.7.1

\n

What's Changed

\n\n

Full Changelog: https://github.com/actions/setup-python/compare/v4...v4.7.1

\n

v4.7.0

\n

In scope of this release, the support for reading python version from pyproject.toml was added (actions/setup-python#669).

\n
      - name: Setup Python\n        uses: actions/setup-python@v4\n</tr></table> \n
\n
\n

... (truncated)

\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-python&package-manager=github_actions&previous-version=4&new-version=5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/8540/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [2023108220, "PR_kwDOAMm_X85hA5hU", 8514, "Bump pypa/gh-action-pypi-publish from 1.8.10 to 1.8.11", 49699333, "closed", 0, null, null, 0, "2023-12-04T06:14:27Z", "2023-12-04T21:10:15Z", "2023-12-04T21:10:14Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/8514", "Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.10 to 1.8.11.\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.8.11

\n

:nail_care: Cosmetic output improvements

\n

@\u200bwoodruffw added a nudge suggesting the users storing passwords in a GitHub Actions repository secrets to switch to using secretless publishing in pypa/gh-action-pypi-publish#190. This also reminds people that PyPI will start mandating two-factor authentication to perform uploads in 2024.

\n

:memo: What's Documented

\n

@\u200bdi linked the configuration docs for Trusted Publishing in README via pypa/gh-action-pypi-publish#179.

\n

:hammer_and_wrench: Internal dependencies

\n\n

:muscle: New Contributors

\n\n

:mirror: Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.10...v1.8.11

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.8.10&new-version=1.8.11)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/8514/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1889750338, "PR_kwDOAMm_X85Z-5dO", 8169, "Bump actions/checkout from 3 to 4", 49699333, "closed", 0, null, null, 0, "2023-09-11T06:19:29Z", "2023-09-11T12:32:05Z", "2023-09-11T12:32:04Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/8169", "Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4.\n
\nRelease notes\n

Sourced from actions/checkout's releases.

\n
\n

v4.0.0

\n

What's Changed

\n\n

New Contributors

\n\n

Full Changelog: https://github.com/actions/checkout/compare/v3...v4.0.0

\n

v3.6.0

\n

What's Changed

\n\n

New Contributors

\n\n

Full Changelog: https://github.com/actions/checkout/compare/v3.5.3...v3.6.0

\n

v3.5.3

\n

What's Changed

\n\n

New Contributors

\n\n

Full Changelog: https://github.com/actions/checkout/compare/v3...v3.5.3

\n

v3.5.2

\n

What's Changed

\n\n

Full Changelog: https://github.com/actions/checkout/compare/v3.5.1...v3.5.2

\n

v3.5.1

\n

What's Changed

\n\n

New Contributors

\n\n\n
\n

... (truncated)

\n
\n
\nChangelog\n

Sourced from actions/checkout's changelog.

\n
\n

Changelog

\n

v4.0.0

\n\n

v3.6.0

\n\n

v3.5.3

\n\n

v3.5.2

\n\n

v3.5.1

\n\n

v3.5.0

\n\n

v3.4.0

\n\n

v3.3.0

\n\n

v3.2.0

\n\n

v3.1.0

\n\n

v3.0.2

\n\n

v3.0.1

\n\n
\n

... (truncated)

\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/checkout&package-manager=github_actions&previous-version=3&new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/8169/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1849099655, "PR_kwDOAMm_X85X2KV7", 8068, "Bump pypa/gh-action-pypi-publish from 1.8.8 to 1.8.10", 49699333, "closed", 0, null, null, 0, "2023-08-14T06:36:51Z", "2023-08-17T10:32:20Z", "2023-08-17T10:32:19Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/8068", "Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.8 to 1.8.10.\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.8.10

\n

:bug: What's Fixed

\n

@\u200bwoodruffw fixed decoding OIDC claims in debug output on failure by applying correct padding to the encoded payload via pypa/gh-action-pypi-publish#177.

\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.9...v1.8.10

\n

v1.8.9

\n

:nail_care: Cosmetic output improvements

\n\n

:hammer_and_wrench: Internal dependencies

\n\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.8...v1.8.9

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.8.8&new-version=1.8.10)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/8068/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1807049424, "PR_kwDOAMm_X85VoeLa", 7994, "Bump pypa/gh-action-pypi-publish from 1.8.7 to 1.8.8", 49699333, "closed", 0, null, null, 0, "2023-07-17T06:07:36Z", "2023-07-17T13:27:28Z", "2023-07-17T13:27:27Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7994", "Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.7 to 1.8.8.\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.8.8

\n

:nail_care: Cosmetic output improvements

\n\n

:hammer_and_wrench: Internal dependencies

\n\n

:muscle: New Contributors

\n\n

:mirror: Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.7...v1.8.8

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.8.7&new-version=1.8.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7994/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1785405563, "PR_kwDOAMm_X85UfCul", 7956, "Bump pypa/gh-action-pypi-publish from 1.8.6 to 1.8.7", 49699333, "closed", 0, null, null, 0, "2023-07-03T06:07:52Z", "2023-07-03T15:43:38Z", "2023-07-03T15:43:37Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7956", "Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.6 to 1.8.7.\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.8.7

\n

:nail_care: Cosmetic output impovements

\n\n

:hammer_and_wrench: Internal dependencies

\n\n

:muscle: New Contributors

\n\n

:mirror: Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.6...v1.8.7

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.8.6&new-version=1.8.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7956/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1730190019, "PR_kwDOAMm_X85Rk3y9", 7877, "Bump mamba-org/provision-with-micromamba from 15 to 16", 49699333, "closed", 0, null, null, 1, "2023-05-29T06:57:09Z", "2023-06-01T16:22:07Z", "2023-06-01T16:21:57Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7877", "Bumps [mamba-org/provision-with-micromamba](https://github.com/mamba-org/provision-with-micromamba) from 15 to 16.\n
\nRelease notes\n

Sourced from mamba-org/provision-with-micromamba's releases.

\n
\n

v16

\n

\u26d4\ufe0f With this release, we are deprecating this project.

\n

Please use the mamba-org/setup-micromamba action instead.

\n

See the migration guide for instructions how to migrate from provision-with-micromamba to setup-micromamba.

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=mamba-org/provision-with-micromamba&package-manager=github_actions&previous-version=15&new-version=16)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7877/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1719022727, "PR_kwDOAMm_X85Q-26-", 7859, "Bump codecov/codecov-action from 3.1.3 to 3.1.4", 49699333, "closed", 0, null, null, 0, "2023-05-22T06:57:15Z", "2023-05-22T19:49:21Z", "2023-05-22T19:49:20Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7859", "Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.3 to 3.1.4.\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

3.1.4

\n

What's Changed

\n\n

New Contributors

\n\n

Full Changelog: https://github.com/codecov/codecov-action/compare/v3.1.3...v3.1.4

\n
\n
\n
\nChangelog\n

Sourced from codecov/codecov-action's changelog.

\n
\n

3.1.4

\n

Fixes

\n\n

Dependencies

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=3.1.3&new-version=3.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7859/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1699649294, "PR_kwDOAMm_X85P99OH", 7826, "Bump pypa/gh-action-pypi-publish from 1.8.5 to 1.8.6", 49699333, "closed", 0, null, null, 0, "2023-05-08T06:56:59Z", "2023-05-08T21:24:30Z", "2023-05-08T21:24:29Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7826", "Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.5 to 1.8.6.\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.8.6

\n

What's Updated

\n\n

New Contributors

\n\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.5...v1.8.6

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.8.5&new-version=1.8.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7826/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1680579545, "PR_kwDOAMm_X85O93j-", 7781, "Bump codecov/codecov-action from 3.1.2 to 3.1.3", 49699333, "closed", 0, null, null, 0, "2023-04-24T06:57:05Z", "2023-04-24T10:16:54Z", "2023-04-24T10:16:52Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7781", "Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.2 to 3.1.3.\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

3.1.3

\n

What's Changed

\n\n

Full Changelog: https://github.com/codecov/codecov-action/compare/v3.1.2...v3.1.3

\n
\n
\n
\nChangelog\n

Sourced from codecov/codecov-action's changelog.

\n
\n

3.1.3

\n

Fixes

\n\n

Dependencies

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=3.1.2&new-version=3.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7781/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1670537301, "PR_kwDOAMm_X85OcZKY", 7760, "Bump codecov/codecov-action from 3.1.1 to 3.1.2", 49699333, "closed", 0, null, null, 0, "2023-04-17T06:57:09Z", "2023-04-17T10:22:42Z", "2023-04-17T10:22:40Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7760", "Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.1 to 3.1.2.\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

3.1.2

\n

What's Changed

\n\n

New Contributors

\n\n

Full Changelog: https://github.com/codecov/codecov-action/compare/v3.1.1...v3.1.2

\n
\n
\n
\nChangelog\n

Sourced from codecov/codecov-action's changelog.

\n
\n

3.1.2

\n

Fixes

\n\n

Dependencies

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=3.1.1&new-version=3.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7760/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1660336993, "PR_kwDOAMm_X85N6TPB", 7743, "Bump pypa/gh-action-pypi-publish from 1.8.4 to 1.8.5", 49699333, "closed", 0, null, null, 0, "2023-04-10T06:56:58Z", "2023-04-10T14:40:29Z", "2023-04-10T14:40:28Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7743", "Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.4 to 1.8.5.\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.8.5

\n

What's Improved

\n

@\u200bwoodruffw improved the user-facing documentation and logging to make use of the Trusted Publishing flow terminology cohesive with PyPI in pypa/gh-action-pypi-publish#143. Trusted Publishing used to be referred to as OpenID Connect (OIDC) \u2014 the underlying technology that is being used to make it work. He also made the action display the cause of the Trusted Publishing flow being selected by the action via pypa/gh-action-pypi-publish#142.

\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.4...v1.8.5

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.8.4&new-version=1.8.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7743/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1651454408, "PR_kwDOAMm_X85NdS1C", 7709, "Bump pypa/gh-action-pypi-publish from 1.8.3 to 1.8.4", 49699333, "closed", 0, null, null, 0, "2023-04-03T06:56:57Z", "2023-04-03T18:08:17Z", "2023-04-03T18:08:16Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7709", "Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.3 to 1.8.4.\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.8.4

\n

What's Improved

\n\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.3...v1.8.4

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.8.3&new-version=1.8.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7709/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1641499432, "PR_kwDOAMm_X85M8MQ-", 7682, "Bump pypa/gh-action-pypi-publish from 1.8.1 to 1.8.3", 49699333, "closed", 0, null, null, 0, "2023-03-27T06:57:15Z", "2023-03-27T07:48:25Z", "2023-03-27T07:48:23Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7682", "Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.1 to 1.8.3.\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.8.3

\n

What's New

\n

This release improves the logging detalization of which authentication mode is selected when the action runs. It surfaces this detail to the workflow run summary page as annotations. The change was contributed by @\u200bwoodruffw in pypa/gh-action-pypi-publish#136.

\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.2...v1.8.3

\n

v1.8.2

\n

What's Changed

\n

This release started printing out full OIDC error messages to console, instead of just one line -- by @\u200bwoodruffw in pypa/gh-action-pypi-publish#134.

\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.1...v1.8.2

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.8.1&new-version=1.8.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7682/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1631503428, "PR_kwDOAMm_X85Ma0Cr", 7648, "Bump pypa/gh-action-pypi-publish from 1.7.1 to 1.8.1", 49699333, "closed", 0, null, null, 0, "2023-03-20T06:57:22Z", "2023-03-20T15:57:22Z", "2023-03-20T15:57:20Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7648", "Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.7.1 to 1.8.1.\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.8.1

\n

\ud83d\udc1b What's Fixed

\n

\ud83d\udc94 Unfortunately, a tiny mistake in v1.8.0 caused a far-reaching regression for the most used code path.\n\u2757 But don't worry, it's fixed now thanks to @\u200bnjzjz who promptly spotted it and @\u200bzhongjiajie who sent a bugfix.

\n

\ud83d\ude4c New Contributors

\n\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.0...v1.8.1

\n

v1.8.0

\n

The Coolest Release Ever!

\n

In this release, @\u200bwoodruffw implemented support for secretless OIDC-based publishing to PyPI-like package indexes. The OIDC flow is activated when neither username nor password action inputs are set.

\n

The OIDC \u201ctoken exchange\u201d, is an authentication technique that PyPI (and TestPyPI, and hopefully some future others) supports as an alternative to long-lived username/password combinations or long-lived API tokens.

\n
\n

IMPORTANT: The PyPI-side configuration is only available to participants of the private beta test. Please, only try out the zero-config mode if you are a beta test participant having followed the PyPI configuration instructions.

\n
\n

Setup prerequisites: https://github.com/marketplace/actions/pypi-publish#publishing-with-openid-connect\nPyPI's documentation: https://pypi.org/help/#openid-connect\nBeta test enrollment: pypi/warehouse#12965

\n

New Contributors

\n\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.7.1...v1.8.0

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.7.1&new-version=1.8.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7648/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1620861791, "PR_kwDOAMm_X85L3HDg", 7618, "Bump pypa/gh-action-pypi-publish from 1.6.4 to 1.7.1", 49699333, "closed", 0, null, null, 0, "2023-03-13T06:57:02Z", "2023-03-14T03:13:57Z", "2023-03-14T03:13:55Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7618", "Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.6.4 to 1.7.1.\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.7.1

\n

Regression?

\n

There was a small setback with v1.7.0 \u2014 the snake_case fallbacks didn't work because the check for the kebab-case env vars with default values set was always truthy. This bugfix release promptly fixes that.

\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.7.0...v1.7.1

\n

v1.7.0

\n

What should I care about?

\n

TL;DR The action input names have been converted to use kebab-case and marked deprecated. But the old names still work.

\n

This is made to align the public API with the de-facto conventions in the ecosystem. We've used snake_case names, which the maintainer considers a historical mistake. New kebab-case inputs will make the end-users' workflows look more consistent and and visually distinguishable from other identifiers one may encounter in YAML.

\n

There is no timeline for removing the old names, but it will happen in v3 or later versions of the action. If the maintainer doesn't forget to do this, that is.

\n

The patch is here: pypa/gh-action-pypi-publish#125.

\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.5...v1.7.0

\n

v1.6.5

\n

What's Changed

\n\n

New Contributors

\n\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.4...v1.6.5

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.6.4&new-version=1.7.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7618/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1552559345, "PR_kwDOAMm_X85ITHT-", 7466, "Bump mamba-org/provision-with-micromamba from 14 to 15", 49699333, "closed", 0, null, null, 0, "2023-01-23T06:01:09Z", "2023-01-23T11:26:03Z", "2023-01-23T11:26:02Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7466", "Bumps [mamba-org/provision-with-micromamba](https://github.com/mamba-org/provision-with-micromamba) from 14 to 15.\n
\nRelease notes\n

Sourced from mamba-org/provision-with-micromamba's releases.

\n
\n

v15

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=mamba-org/provision-with-micromamba&package-manager=github_actions&previous-version=14&new-version=15)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7466/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1491047976, "PR_kwDOAMm_X85FJZX2", 7375, "Bump pypa/gh-action-pypi-publish from 1.5.1 to 1.6.4", 49699333, "closed", 0, null, null, 0, "2022-12-12T06:01:07Z", "2022-12-12T11:01:12Z", "2022-12-12T11:01:11Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7375", "Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.5.1 to 1.6.4.\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.6.4

\n

oh, boi! again?

\n

This is the last one tonight, promise! It fixes this embarrassing bug that was actually caught by the CI but got overlooked due to the lack of sleep.\nTL;DR GH passed $HOME from the external env into the container and that tricked the Python's site module to think that the home directory is elsewhere, adding non-existent paths to the env vars. See #115.

\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.3...v1.6.4

\n

v1.6.3

\n

Another Release!? Why?

\n

In pypa/gh-action-pypi-publish#112, it was discovered that passing a $PATH variable even breaks the shebang. So this version adds more safeguards to make sure it keeps working with a fully broken $PATH.

\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.2...v1.6.3

\n

v1.6.2

\n

What's Fixed

\n\n

Internal Maintenance Improvements

\n\n

New Contributors

\n\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.1...v1.6.2

\n

v1.6.1

\n

What's happened?!

\n

There was a sneaky bug in v1.6.0 which caused Twine to be outside the import path in the Python runtime. It is fixed in v1.6.1 by updating $PYTHONPATH to point to a correct location of the user-global site-packages/ directory.

\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.0...v1.6.1

\n

v1.6.0

\n

Anything's changed?

\n

The only update is that the Python runtime has been upgraded from 3.9 to 3.11. There are no functional changes in this release.

\n

Full Changelog: https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.2...v1.6.0

\n

v1.5.2

\n

What's Improved

\n\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.1...v1.5.2

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.5.1&new-version=1.6.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7375/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1475751357, "PR_kwDOAMm_X85ETIqu", 7357, "Bump pypa/gh-action-pypi-publish from 1.5.1 to 1.6.1", 49699333, "closed", 0, null, null, 1, "2022-12-05T06:01:28Z", "2022-12-12T06:01:14Z", "2022-12-12T06:01:12Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7357", "Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.5.1 to 1.6.1.\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.6.1

\n

What's happened?!

\n

There was a sneaky bug in v1.6.0 which caused Twine to be outside the import path in the Python runtime. It is fixed in v1.6.1 by updating $PYTHONPATH to point to a correct location of the user-global site-packages/ directory.

\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.0...v1.6.1

\n

v1.6.0

\n

Anything's changed?

\n

The only update is that the Python runtime has been upgraded from 3.9 to 3.11. There are no functional changes in this release.

\n

Full Changelog: https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.2...v1.6.0

\n

v1.5.2

\n

What's Improved

\n\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.1...v1.5.2

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.5.1&new-version=1.6.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7357/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1429306020, "PR_kwDOAMm_X85B2xZR", 7241, "Bump mamba-org/provision-with-micromamba from 12 to 14", 49699333, "closed", 0, null, null, 4, "2022-10-31T06:05:14Z", "2022-10-31T20:29:05Z", "2022-10-31T15:46:14Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7241", "Bumps [mamba-org/provision-with-micromamba](https://github.com/mamba-org/provision-with-micromamba) from 12 to 14.\n
\nRelease notes\n

Sourced from mamba-org/provision-with-micromamba's releases.

\n
\n

v14

\n

What's Changed

\n\n

New Contributors

\n\n

Full Changelog: https://github.com/mamba-org/provision-with-micromamba/compare/v13...v14

\n

v13

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=mamba-org/provision-with-micromamba&package-manager=github_actions&previous-version=12&new-version=14)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7241/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1429305958, "PR_kwDOAMm_X85B2xYV", 7240, "Bump xarray-contrib/issue-from-pytest-log from 0.1 to 1.1", 49699333, "closed", 0, null, null, 0, "2022-10-31T06:05:10Z", "2022-10-31T09:58:28Z", "2022-10-31T09:58:27Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7240", "Bumps [xarray-contrib/issue-from-pytest-log](https://github.com/xarray-contrib/issue-from-pytest-log) from 0.1 to 1.1.\n
\nRelease notes\n

Sourced from xarray-contrib/issue-from-pytest-log's releases.

\n
\n

v1.0

\n

Initial release.

\n

This is the same release as v0.1, but using the version v1.0 allows creating a moving tag named v1.

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=xarray-contrib/issue-from-pytest-log&package-manager=github_actions&previous-version=0.1&new-version=1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7240/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1362048785, "PR_kwDOAMm_X84-X_Se", 6991, "Bump mamba-org/provision-with-micromamba from 12 to 13", 49699333, "closed", 0, null, null, 9, "2022-09-05T14:08:41Z", "2022-10-31T06:05:21Z", "2022-10-31T06:05:19Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/6991", "Bumps [mamba-org/provision-with-micromamba](https://github.com/mamba-org/provision-with-micromamba) from 12 to 13.\n
\nRelease notes\n

Sourced from mamba-org/provision-with-micromamba's releases.

\n
\n

v13

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=mamba-org/provision-with-micromamba&package-manager=github_actions&previous-version=12&new-version=13)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once CI passes on it, as requested by @andersy005.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/6991/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1385474758, "PR_kwDOAMm_X84_k5g7", 7081, "Bump codecov/codecov-action from 3.1.0 to 3.1.1", 49699333, "closed", 0, null, null, 2, "2022-09-26T06:04:53Z", "2022-09-26T18:54:02Z", "2022-09-26T18:54:01Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/7081", "Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.0 to 3.1.1.\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

3.1.1

\n

What's Changed

\n\n

New Contributors

\n\n

Full Changelog: https://github.com/codecov/codecov-action/compare/v3.1.0...v3.1.1

\n
\n
\n
\nChangelog\n

Sourced from codecov/codecov-action's changelog.

\n
\n

3.1.1

\n

Fixes

\n\n

Dependencies

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=3.1.0&new-version=3.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/7081/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1323874145, "PR_kwDOAMm_X848ZvvG", 6855, "Bump pypa/gh-action-pypi-publish from 1.5.0 to 1.5.1", 49699333, "closed", 0, null, null, 1, "2022-08-01T06:06:02Z", "2022-08-01T06:35:33Z", "2022-08-01T06:35:32Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/6855", "Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.5.0 to 1.5.1.\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.5.1

\n

What's Changed

\n\n

Full Changelog: https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.0...v1.5.1

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.5.0&new-version=1.5.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/6855/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1300248774, "PR_kwDOAMm_X847K2Cr", 6770, "Bump EnricoMi/publish-unit-test-result-action from 1 to 2", 49699333, "closed", 0, null, null, 0, "2022-07-11T06:05:29Z", "2022-07-11T06:38:55Z", "2022-07-11T06:38:55Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/6770", "Bumps [EnricoMi/publish-unit-test-result-action](https://github.com/EnricoMi/publish-unit-test-result-action) from 1 to 2.\n
\nRelease notes\n

Sourced from EnricoMi/publish-unit-test-result-action's releases.

\n
\n

v2.0.0-beta.2

\n

Adds the following features:

\n\n

v2.0.0-beta

\n

Adds the following features:

\n\n

v2.0.0-alpha

\n

Adds the following features:

\n\n

This release contains the following breaking changes:

\n\n

This release deprecates the following features:

\n\n

See README.md for further details on moving to version 2.

\n

v1.39

\n

Adds the following features:

\n\n

v1.38

\n

Adds the following features:

\n\n

v1.37

\n

Adds the following features:

\n\n\n
\n

... (truncated)

\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=EnricoMi/publish-unit-test-result-action&package-manager=github_actions&previous-version=1&new-version=2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/6770/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1285290840, "PR_kwDOAMm_X846Y75E", 6729, "Bump mamba-org/provision-with-micromamba from de032af7fb3675649f3d4bbdda85178ba412ee41 to 12", 49699333, "closed", 0, null, null, 0, "2022-06-27T06:05:47Z", "2022-06-27T07:55:26Z", "2022-06-27T07:55:25Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/6729", "Bumps [mamba-org/provision-with-micromamba](https://github.com/mamba-org/provision-with-micromamba) from de032af7fb3675649f3d4bbdda85178ba412ee41 to 12. This release includes the previously tagged commit.\n
\nRelease notes\n

Sourced from mamba-org/provision-with-micromamba's releases.

\n
\n

v12

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/6729/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1268949702, "PR_kwDOAMm_X845iWAe", 6692, "Bump actions/setup-python from 3 to 4", 49699333, "closed", 0, null, null, 0, "2022-06-13T06:08:01Z", "2022-06-13T06:41:19Z", "2022-06-13T06:41:18Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/6692", "Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3 to 4.\n
\nRelease notes\n

Sourced from actions/setup-python's releases.

\n
\n

v4.0.0

\n

What's Changed

\n\n

Example of usage:

\n
- uses: actions/setup-python@v4\n  with:\n    python-version-file: '.python-version' # Read python version from a file\n- run: python my_script.py\n
\n

There is no default python version for this setup-python major version, the action requires to specify either python-version input or python-version-file input. If the python-version input is not specified the action will try to read required version from file from python-version-file input.

\n\n

Example of usage:

\n
- uses: actions/setup-python@v4\n  with:\n    python-version: 'pypy3.9' # pypy-X.Y kept for backward compatibility\n- run: python my_script.py\n
\n\n

Update actions/cache version to 2.0.2

\n

In scope of this release we updated actions/cache package as the new version contains fixes related to GHES 3.5 (actions/setup-python#382)

\n

Add "cache-hit" output and fix "python-version" output for PyPy

\n

This release introduces new output cache-hit (actions/setup-python#373) and fix python-version output for PyPy (actions/setup-python#365)

\n

The cache-hit output contains boolean value indicating that an exact match was found for the key. It shows that the action uses already existing cache or not. The output is available only if cache is enabled.

\n\n
\n

... (truncated)

\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-python&package-manager=github_actions&previous-version=3&new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/6692/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1214014255, "PR_kwDOAMm_X842s5dd", 6509, "Bump codecov/codecov-action from 3.0.0 to 3.1.0", 49699333, "closed", 0, null, null, 0, "2022-04-25T06:05:21Z", "2022-04-25T15:09:45Z", "2022-04-25T15:09:45Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/6509", "Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.0.0 to 3.1.0.\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

v3.1.0

\n

3.1.0

\n

Features

\n\n

Dependencies

\n\n
\n
\n
\nChangelog\n

Sourced from codecov/codecov-action's changelog.

\n
\n

3.1.0

\n

Features

\n\n

Dependencies

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=3.0.0&new-version=3.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/6509/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1199438404, "PR_kwDOAMm_X841-cKc", 6468, "Bump actions/upload-artifact from 2 to 3", 49699333, "closed", 0, null, null, 0, "2022-04-11T06:06:08Z", "2022-04-11T14:42:24Z", "2022-04-11T14:42:23Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/6468", "Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2 to 3.\n
\nRelease notes\n

Sourced from actions/upload-artifact's releases.

\n
\n

v3.0.0

\n

What's Changed

\n\n

Breaking Changes

\n

With the update to Node 16, all scripts will now be run with Node 16 rather than Node 12.

\n

v2.3.1

\n

Fix for empty fails on Windows failing on upload #281

\n

v2.3.0 Upload Artifact

\n\n

v2.2.4

\n\n

v2.2.3

\n\n

v2.2.2

\n\n

v2.2.1

\n\n

v2.2.0

\n\n

v2.1.4

\n\n

v2.1.3

\n\n

v2.1.2

\n\n

v2.1.1

\n\n

v2.1.0

\n\n\n
\n

... (truncated)

\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=2&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/6468/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1199438489, "PR_kwDOAMm_X841-cLq", 6470, "Bump codecov/codecov-action from 2.1.0 to 3.0.0", 49699333, "closed", 0, null, null, 0, "2022-04-11T06:06:12Z", "2022-04-11T14:42:15Z", "2022-04-11T14:42:14Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/6470", "Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 2.1.0 to 3.0.0.\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

v3.0.0

\n

Breaking Changes

\n\n

Features

\n\n

Dependencies

\n\n
\n
\n
\nChangelog\n

Sourced from codecov/codecov-action's changelog.

\n
\n

3.0.0

\n

Breaking Changes

\n\n

Features

\n\n

Dependencies

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=2.1.0&new-version=3.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/6470/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1199438428, "PR_kwDOAMm_X841-cKw", 6469, "Bump actions/download-artifact from 2 to 3", 49699333, "closed", 0, null, null, 0, "2022-04-11T06:06:09Z", "2022-04-11T14:41:52Z", "2022-04-11T14:41:51Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/6469", "Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 2 to 3.\n
\nRelease notes\n

Sourced from actions/download-artifact's releases.

\n
\n

v3.0.0

\n

What's Changed

\n\n

Breaking Changes

\n

With the update to Node 16, all scripts will now be run with Node 16 rather than Node 12.

\n

v2.1.0 Download Artifact

\n\n

v2.0.10

\n\n

v2.0.9

\n\n

v2.0.8

\n\n

v2.0.7 download-artifact

\n\n

v2.0.6

\n

Update actions/core NPM package that is used internally

\n

v2.0.5

\n\n

v2.0.4

\n\n

v2.0.3

\n\n

v2.0.2

\n\n

v2.0.1

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/download-artifact&package-manager=github_actions&previous-version=2&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/6469/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1182937375, "PR_kwDOAMm_X841IVBX", 6417, "Bump actions/cache from 2 to 3", 49699333, "closed", 0, null, null, 1, "2022-03-28T06:05:22Z", "2022-03-31T09:25:22Z", "2022-03-31T09:25:21Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/6417", "Bumps [actions/cache](https://github.com/actions/cache) from 2 to 3.\n
\nRelease notes\n

Sourced from actions/cache's releases.

\n
\n

v3.0.0

\n\n

v2.1.7

\n

Support 10GB cache upload using the latest version 1.0.8 of @actions/cache

\n

v2.1.6

\n\n

v2.1.5

\n\n

v2.1.4

\n\n

v2.1.3

\n\n

v2.1.2

\n\n

v2.1.1

\n\n

v2.1.0

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/cache&package-manager=github_actions&previous-version=2&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/6417/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1160948233, "PR_kwDOAMm_X840BOUc", 6338, "Bump actions/setup-python from 2 to 3", 49699333, "closed", 0, null, null, 2, "2022-03-07T06:05:42Z", "2022-03-08T14:58:08Z", "2022-03-08T14:58:07Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/6338", "Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2 to 3.\n
\nRelease notes\n

Sourced from actions/setup-python's releases.

\n
\n

v3.0.0

\n

What's Changed

\n\n

Breaking Changes

\n

With the update to Node 16, all scripts will now be run with Node 16 rather than Node 12.

\n

This new major release removes support of legacy pypy2 and pypy3 keywords. Please use more specific and flexible syntax to specify a PyPy version:

\n
jobs:\n  build:\n    runs-on: ubuntu-latest\n    strategy:\n      matrix:\n        python-version:\n        - 'pypy-2.7' # the latest available version of PyPy that supports Python 2.7\n        - 'pypy-3.8' # the latest available version of PyPy that supports Python 3.8\n        - 'pypy-3.8-v7.3.8' # Python 3.8 and PyPy 7.3.8\n    steps:\n    - uses: actions/checkout@v2\n    - uses: actions/setup-python@v3\n      with:\n        python-version: ${{ matrix.python-version }}\n
\n

See more usage examples in the documentation

\n

Update primary and restore keys for pip

\n

In scope of this release we include a version of python in restore and primary cache keys for pip. Besides, we add temporary fix for Windows caching issue, that the pip cache dir command returns non zero exit code or writes to stderr. Moreover we updated node-fetch dependency.

\n

Update\u00a0actions/cache\u00a0version to 1.0.8

\n

We have updated\u00a0actions/cache\u00a0dependency version to 1.0.8 to support 10GB cache upload

\n

Support caching dependencies

\n

This release introduces dependency caching support (actions/setup-python#266)

\n

Caching dependencies.

\n

The action has a built-in functionality for caching and restoring pip/pipenv dependencies. The cache input is optional, and caching is turned off by default.

\n

Besides, this release introduces dependency caching support for mono repos and repositories with complex structure.

\n

By default, the action searches for the dependency file (requirements.txt for pip or Pipfile.lock for pipenv) in the whole repository. Use the cache-dependency-path input for cases when you want to override current behaviour and use different file for hash generation (for example requirements-dev.txt). This input supports wildcards or a list of file names for caching multiple dependencies.

\n

Caching pip dependencies:

\n
steps:\n- uses: actions/checkout@v2\n- uses: actions/setup-python@v2\n  with:\n    python-version: '3.9'\n</tr></table> \n
\n
\n

... (truncated)

\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-python&package-manager=github_actions&previous-version=2&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once CI passes on it, as requested by @andersy005.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/6338/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1160948208, "PR_kwDOAMm_X840BOUH", 6337, "Bump actions/checkout from 2 to 3", 49699333, "closed", 0, null, null, 1, "2022-03-07T06:05:40Z", "2022-03-08T14:28:16Z", "2022-03-08T14:28:15Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/6337", "Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.\n
\nRelease notes\n

Sourced from actions/checkout's releases.

\n
\n

v3.0.0

\n\n

v2.4.0

\n\n

v2.3.5

\n

Update dependencies

\n

v2.3.4

\n\n

v2.3.3

\n\n

v2.3.2

\n

Add Third Party License Information to Dist Files

\n

v2.3.1

\n

Fix default branch resolution for .wiki and when using SSH

\n

v2.3.0

\n

Fallback to the default branch

\n

v2.2.0

\n

Fetch all history for all tags and branches when fetch-depth=0

\n

v2.1.1

\n

Changes to support GHES (here and here)

\n

v2.1.0

\n\n
\n
\n
\nChangelog\n

Sourced from actions/checkout's changelog.

\n
\n

Changelog

\n

v2.3.1

\n\n

v2.3.0

\n\n

v2.2.0

\n\n

v2.1.1

\n\n

v2.1.0

\n\n

v2.0.0

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/checkout&package-manager=github_actions&previous-version=2&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once CI passes on it, as requested by @andersy005.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/6337/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1136815628, "PR_kwDOAMm_X84ywrBP", 6273, "Bump actions/github-script from 5 to 6", 49699333, "closed", 0, null, null, 0, "2022-02-14T06:04:33Z", "2022-02-14T09:05:42Z", "2022-02-14T09:05:41Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/6273", "Bumps [actions/github-script](https://github.com/actions/github-script) from 5 to 6.\n
\nRelease notes\n

Sourced from actions/github-script's releases.

\n
\n

v6.0.0

\n

What's Changed

\n\n

Breaking Changes

\n

With the update to Node 16 in #235, all scripts will now be run with Node 16 rather than Node 12.

\n

New Contributors

\n\n

Full Changelog: https://github.com/actions/github-script/compare/v5...v6.0.0

\n

v5.1.0

\n

What's Changed

\n\n

New Contributors

\n\n

Full Changelog: https://github.com/actions/github-script/compare/v5.0.0...v5.1.0

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/github-script&package-manager=github_actions&previous-version=5&new-version=6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/6273/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1097490618, "PR_kwDOAMm_X84wtobJ", 6147, "Bump pypa/gh-action-pypi-publish from 1.4.2 to 1.5.0", 49699333, "closed", 0, null, null, 0, "2022-01-10T06:04:45Z", "2022-01-10T08:07:23Z", "2022-01-10T08:07:12Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/6147", "Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.4.2 to 1.5.0.\n
\nRelease notes\n

Sourced from pypa/gh-action-pypi-publish's releases.

\n
\n

v1.5.0

\n

What's Changed

\n\n

New Contributors

\n\n

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.4.2...v1.5.0

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.4.2&new-version=1.5.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/6147/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1007733800, "PR_kwDOAMm_X84sSyt3", 5826, "Bump actions/github-script from 4.1 to 5", 49699333, "closed", 0, null, null, 2, "2021-09-27T06:05:00Z", "2021-11-01T17:12:14Z", "2021-11-01T17:12:12Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/5826", "Bumps [actions/github-script](https://github.com/actions/github-script) from 4.1 to 5.\n
\nRelease notes\n

Sourced from actions/github-script's releases.

\n
\n

v5.0.0

\n

What's Changed

\n\n

Full Changelog: https://github.com/actions/github-script/compare/v4.1.1...v5.0.0

\n

v4.1.1

\n

What's Changed

\n\n

Full Changelog: https://github.com/actions/github-script/compare/v4.1.0...v4.1.1

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/github-script&package-manager=github_actions&previous-version=4.1&new-version=5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/5826/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [1000601456, "PR_kwDOAMm_X84r8ft-", 5800, "Bump codecov/codecov-action from 2.0.3 to 2.1.0", 49699333, "closed", 0, null, null, 1, "2021-09-20T06:04:18Z", "2021-09-23T18:26:49Z", "2021-09-23T18:26:48Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/5800", "Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 2.0.3 to 2.1.0.\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

v2.1.0

\n

2.1.0

\n

Features

\n\n

Dependencies

\n\n
\n
\n
\nChangelog\n

Sourced from codecov/codecov-action's changelog.

\n
\n

2.1.0

\n

Features

\n\n

Dependencies

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=2.0.3&new-version=2.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/5800/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [982422703, "MDExOlB1bGxSZXF1ZXN0NzIyMTg4MzI3", 5747, "Bump codecov/codecov-action from 2.0.2 to 2.0.3", 49699333, "closed", 0, null, null, 1, "2021-08-30T06:04:14Z", "2021-08-30T07:57:54Z", "2021-08-30T07:32:37Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/5747", "Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 2.0.2 to 2.0.3.\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

v2.0.3

\n

2.0.3

\n

Fixes

\n\n

Dependencies

\n\n
\n
\n
\nChangelog\n

Sourced from codecov/codecov-action's changelog.

\n
\n

2.0.3

\n

Fixes

\n\n

Dependencies

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=2.0.2&new-version=2.0.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/5747/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [976663865, "MDExOlB1bGxSZXF1ZXN0NzE3NTI2NjM0", 5730, "Bump actions/github-script from 4.0.2 to 4.1", 49699333, "closed", 0, null, null, 1, "2021-08-23T06:04:14Z", "2021-08-23T19:42:21Z", "2021-08-23T19:16:21Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/5730", "Bumps [actions/github-script](https://github.com/actions/github-script) from 4.0.2 to 4.1.\n
\nRelease notes\n

Sourced from actions/github-script's releases.

\n
\n

v4.1.0

\n

What's Changed

\n\n

New Contributors

\n\n

Full Changelog: https://github.com/actions/github-script/compare/v4.0.2...v4.1.0

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/github-script&package-manager=github_actions&previous-version=4.0.2&new-version=4.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/5730/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [957781045, "MDExOlB1bGxSZXF1ZXN0NzAxMTUwNzM3", 5663, "Bump styfle/cancel-workflow-action from 0.9.0 to 0.9.1", 49699333, "closed", 0, null, null, 2, "2021-08-02T06:05:09Z", "2021-08-02T10:46:13Z", "2021-08-02T10:19:32Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/5663", "Bumps [styfle/cancel-workflow-action](https://github.com/styfle/cancel-workflow-action) from 0.9.0 to 0.9.1.\n
\nRelease notes\n

Sourced from styfle/cancel-workflow-action's releases.

\n
\n

0.9.1

\n

Patches

\n\n

Credits

\n

Huge thanks to @\u200bmikehardy, @\u200bMichaelDeBoey, @\u200bWarashi, @\u200badrienbernede, and @\u200bspaceface777 for helping!

\n
\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=styfle/cancel-workflow-action&package-manager=github_actions&previous-version=0.9.0&new-version=0.9.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/5663/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [952536671, "MDExOlB1bGxSZXF1ZXN0Njk2NzE1NjM1", 5633, "Bump codecov/codecov-action from 1 to 2.0.2", 49699333, "closed", 0, null, null, 1, "2021-07-26T06:05:38Z", "2021-07-26T07:01:58Z", "2021-07-26T06:42:26Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/5633", "Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 1 to 2.0.2.\n
\nRelease notes\n

Sourced from codecov/codecov-action's releases.

\n
\n

v2.0.2

\n

Fixes

\n\n

Dependencies

\n\n

v2.0.1

\n

Fixes

\n\n

v2.0.0

\n

On February 1, 2022, the v1 uploader will be full sunset and no longer function. This is due\nto the deprecation of the underlying bash uploader. This version uses the new uploader.

\n

The v2 Action downloads, verifies, and runs the Codecov binary.

\n

Breaking Changes

\n\n

Features

\n\n

v1.5.2

\n

1.5.2

\n

Fixes

\n\n

v1.5.1

\n

1.5.1

\n

Fixes

\n\n

Dependencies

\n\n
\n

... (truncated)

\n
\n
\nChangelog\n

Sourced from codecov/codecov-action's changelog.

\n
\n

2.0.2

\n

Fixes

\n\n

2.0.1

\n

Fixes

\n\n

2.0.0

\n

On February 1, 2022, the v1 uploader will be full sunset and no longer function. This is due\nto the deprecation of the underlying bash uploader. This version uses the new uploader.

\n

The v2 Action downloads, verifies, and runs the Codecov binary.

\n

Breaking Changes

\n\n

Features

\n\n

1.5.2

\n

Fixes

\n\n

1.5.1

\n

Fixes

\n\n

Dependencies

\n\n\n
\n

... (truncated)

\n
\n
\nCommits\n\n
\n
\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=1&new-version=2.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/5633/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [867404084, "MDExOlB1bGxSZXF1ZXN0NjIzMDgwNDM1", 5218, "Bump pre-commit/action from v2.0.2 to v2.0.3", 49699333, "closed", 0, null, null, 5, "2021-04-26T08:11:20Z", "2021-04-27T03:33:46Z", "2021-04-27T03:33:44Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/5218", "Bumps [pre-commit/action](https://github.com/pre-commit/action) from v2.0.2 to v2.0.3.\n
\nRelease notes\n

Sourced from pre-commit/action's releases.

\n
\n

pre-commit/action@v2.0.3

\n

Fixes

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once it's up-to-date and CI passes on it, as requested by @andersy005.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/5218/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [867403935, "MDExOlB1bGxSZXF1ZXN0NjIzMDgwMzAw", 5217, "Bump actions/github-script from v3 to v4.0.2", 49699333, "closed", 0, null, null, 3, "2021-04-26T08:11:12Z", "2021-04-27T02:57:37Z", "2021-04-27T02:57:36Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/5217", "Bumps [actions/github-script](https://github.com/actions/github-script) from v3 to v4.0.2.\n
\nRelease notes\n

Sourced from actions/github-script's releases.

\n
\n

Update @\u200bactions/core package

\n

This release updates the @actions/core package to 1.2.7 - actions/github-script#137

\n
\n
\n
\nCommits\n\n
\n
\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once CI passes on it, as requested by @andersy005.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/5217/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [857967048, "MDExOlB1bGxSZXF1ZXN0NjE1Mjk5NDEx", 5158, "Bump styfle/cancel-workflow-action from 0.8.0 to 0.9.0", 49699333, "closed", 0, null, null, 1, "2021-04-14T14:40:13Z", "2021-04-14T15:47:46Z", "2021-04-14T15:47:44Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/5158", "Bumps [styfle/cancel-workflow-action](https://github.com/styfle/cancel-workflow-action) from 0.8.0 to 0.9.0.\n
\nRelease notes\n

Sourced from styfle/cancel-workflow-action's releases.

\n
\n

0.9.0

\n

Minor Changes

\n\n

Credits

\n

Huge thanks to @\u200bthomwiggers for helping!

\n
\n
\n
\nCommits\n\n
\n
\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once CI passes on it, as requested by @andersy005.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/5158/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"], [857967009, "MDExOlB1bGxSZXF1ZXN0NjE1Mjk5Mzc3", 5157, "Bump pre-commit/action from v2.0.0 to v2.0.2", 49699333, "closed", 0, null, null, 1, "2021-04-14T14:40:11Z", "2021-04-14T15:25:27Z", "2021-04-14T15:25:25Z", "CONTRIBUTOR", null, 0, "pydata/xarray/pulls/5157", "Bumps [pre-commit/action](https://github.com/pre-commit/action) from v2.0.0 to v2.0.2.\n
\nRelease notes\n

Sourced from pre-commit/action's releases.

\n
\n

pre-commit/action@v2.0.2

\n

retag of 2.0.1 but on the proper branch

\n

pre-commit/action@v2.0.1

\n

Fixes

\n\n
\n
\n
\nCommits\n\n
\n
\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\nDependabot will merge this PR once CI passes on it, as requested by @andersy005.\n\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\nDependabot commands and options\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
", "{\"url\": \"https://api.github.com/repos/pydata/xarray/issues/5157/reactions\", \"total_count\": 0, \"+1\": 0, \"-1\": 0, \"laugh\": 0, \"hooray\": 0, \"confused\": 0, \"heart\": 0, \"rocket\": 0, \"eyes\": 0}", null, null, 13221727, "pull"]], "truncated": false, "filtered_table_rows_count": 56, "expanded_columns": [], "expandable_columns": [[{"column": "repo", "other_table": "repos", "other_column": "id"}, "name"], [{"column": "milestone", "other_table": "milestones", "other_column": "id"}, "title"], [{"column": "assignee", "other_table": "users", "other_column": "id"}, "login"], [{"column": "user", "other_table": "users", "other_column": "id"}, "login"]], "columns": ["id", "node_id", "number", "title", "user", "state", "locked", "assignee", "milestone", "comments", "created_at", "updated_at", "closed_at", "author_association", "active_lock_reason", "draft", "pull_request", "body", "reactions", "performed_via_github_app", "state_reason", "repo", "type"], "primary_keys": ["id"], "units": {}, "query": {"sql": "select id, node_id, number, title, user, state, locked, assignee, milestone, comments, created_at, updated_at, closed_at, author_association, active_lock_reason, draft, pull_request, body, reactions, performed_via_github_app, state_reason, repo, type from issues where \"repo\" = :p0 and \"user\" = :p1 order by updated_at desc limit 101", "params": {"p0": "13221727", "p1": "49699333"}}, "facet_results": {"state": {"name": "state", "type": "column", "hideable": false, "toggle_url": "/github/issues.json?repo=13221727&user=49699333", "results": [{"value": "closed", "label": "closed", "count": 56, "toggle_url": "http://xarray-datasette.fly.dev/github/issues.json?repo=13221727&user=49699333&state=closed", "selected": false}], "truncated": false}, "repo": {"name": "repo", "type": "column", "hideable": false, "toggle_url": "/github/issues.json?repo=13221727&user=49699333", "results": [{"value": 13221727, "label": "xarray", "count": 56, "toggle_url": "http://xarray-datasette.fly.dev/github/issues.json?user=49699333", "selected": true}], "truncated": false}, "type": {"name": "type", "type": "column", "hideable": false, "toggle_url": "/github/issues.json?repo=13221727&user=49699333", "results": [{"value": "pull", "label": "pull", "count": 56, "toggle_url": "http://xarray-datasette.fly.dev/github/issues.json?repo=13221727&user=49699333&type=pull", "selected": false}], "truncated": false}}, "suggested_facets": [{"name": "comments", "toggle_url": "http://xarray-datasette.fly.dev/github/issues.json?repo=13221727&user=49699333&_facet=comments"}, {"name": "created_at", "type": "date", "toggle_url": "http://xarray-datasette.fly.dev/github/issues.json?repo=13221727&user=49699333&_facet_date=created_at"}, {"name": "updated_at", "type": "date", "toggle_url": "http://xarray-datasette.fly.dev/github/issues.json?repo=13221727&user=49699333&_facet_date=updated_at"}, {"name": "closed_at", "type": "date", "toggle_url": "http://xarray-datasette.fly.dev/github/issues.json?repo=13221727&user=49699333&_facet_date=closed_at"}], "next": null, "next_url": null, "private": false, "allow_execute_sql": true, "query_ms": 414.9251659982838}