pull_requests

Table actions

56 rows where user = 49699333

View and edit SQL

This data as json, CSV (advanced)

Suggested facets: created_at (date), updated_at (date), closed_at (date), merged_at (date)

id ▼ node_id number state locked title user body created_at updated_at closed_at merged_at merge_commit_sha assignee milestone draft head base author_association auto_merge repo url merged_by
615299377 MDExOlB1bGxSZXF1ZXN0NjE1Mjk5Mzc3 5157 closed 0 Bump pre-commit/action from v2.0.0 to v2.0.2 dependabot[bot] 49699333 Bumps [pre-commit/action](https://github.com/pre-commit/action) from v2.0.0 to v2.0.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pre-commit/action/releases">pre-commit/action's releases</a>.</em></p> <blockquote> <h2>pre-commit/action@v2.0.2</h2> <p>retag of 2.0.1 but on the proper branch</p> <h2>pre-commit/action@v2.0.1</h2> <h3>Fixes</h3> <ul> <li>Avoid failures if cache saving fails <ul> <li><a href="https://github-redirect.dependabot.com/pre-commit/action/issues/54">#54</a> PR by <a href="https://github.com/s-weigand"><code>@​s-weigand</code></a></li> <li><a href="https://github-redirect.dependabot.com/pre-commit/action/issues/53">#53</a> issue by <a href="https://github.com/s-weigand"><code>@​s-weigand</code></a></li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pre-commit/action/commit/9cf68dc1ace5504cd0e05b9f3df32e6a0822ad89"><code>9cf68dc</code></a> Deployed to github pages</li> <li><a href="https://github.com/pre-commit/action/commit/12c0cbaee9b37d569632139754759021b4dc2ed7"><code>12c0cba</code></a> Deployed to github pages</li> <li><a href="https://github.com/pre-commit/action/commit/686243b93a269e859b827b37c83af97ad125b407"><code>686243b</code></a> Deployed to github pages</li> <li><a href="https://github.com/pre-commit/action/commit/5b6c59a01a99def46b9fd96111c1533e8df334cf"><code>5b6c59a</code></a> Deployed to github pages</li> <li><a href="https://github.com/pre-commit/action/commit/23933a87f57b9d68d9841cef1ca481eac28c9458"><code>23933a8</code></a> Deployed to github pages</li> <li><a href="https://github.com/pre-commit/action/commit/ba03328ac18694cb521a8fcb053db2f07419862b"><code>ba03328</code></a> Deployed to github pages</li> <li><a href="https://github.com/pre-commit/action/commit/055fa4e7efbddb7cdc641d81a40c4497a3f4e39d"><code>055fa4e</code></a> Deployed to github pages</li> <li><a href="https://github.com/pre-commit/action/commit/2fcbdbb9ddd55fb1f15449c82b3e66ffb1320634"><cod… 2021-04-14T14:40:11Z 2021-04-14T15:25:27Z 2021-04-14T15:25:25Z 2021-04-14T15:25:25Z 8040a9acb2f6dbf368d34cd85308eeb1b799a00b     0 59e2e909e764ab8470349ead11aa2ae0015d5e9b 00d1028188f6d323ac87f68a826ca698bf861b56 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/5157  
615299411 MDExOlB1bGxSZXF1ZXN0NjE1Mjk5NDEx 5158 closed 0 Bump styfle/cancel-workflow-action from 0.8.0 to 0.9.0 dependabot[bot] 49699333 Bumps [styfle/cancel-workflow-action](https://github.com/styfle/cancel-workflow-action) from 0.8.0 to 0.9.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/styfle/cancel-workflow-action/releases">styfle/cancel-workflow-action's releases</a>.</em></p> <blockquote> <h2>0.9.0</h2> <h3>Minor Changes</h3> <ul> <li>Add <code>all_but_latest</code> flag - cancel all workflows but the latest: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/35">#35</a></li> <li>Cleanup <code>all_but_latest</code>: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/67">#67</a></li> </ul> <h3>Credits</h3> <p>Huge thanks to <a href="https://github.com/thomwiggers"><code>@​thomwiggers</code></a> for helping!</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/styfle/cancel-workflow-action/commit/89f242ee29e10c53a841bfe71cc0ce7b2f065abc"><code>89f242e</code></a> 0.9.0</li> <li><a href="https://github.com/styfle/cancel-workflow-action/commit/1f01010c62353732693b6d4b9317a5e1964efb5c"><code>1f01010</code></a> Cleanup all_but_latest (<a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/67">#67</a>)</li> <li><a href="https://github.com/styfle/cancel-workflow-action/commit/1adde81177c51394e6482cd911704cf9ba77faad"><code>1adde81</code></a> Optionally cancel all workflows but the latest (<a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/35">#35</a>)</li> <li>See full diff in <a href="https://github.com/styfle/cancel-workflow-action/compare/0.8.0...89f242ee29e10c53a841bfe71cc0ce7b2f065abc">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) Dependabot will merge this PR once CI passes on it, as requested by @andersy005. [//]: #… 2021-04-14T14:40:13Z 2021-04-14T15:47:46Z 2021-04-14T15:47:44Z 2021-04-14T15:47:44Z c796eb600d61f77db1754b25570945de12287bb8     0 b07d4483c278647ab8a406769f2baf12b26606de 00d1028188f6d323ac87f68a826ca698bf861b56 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/5158  
623080300 MDExOlB1bGxSZXF1ZXN0NjIzMDgwMzAw 5217 closed 0 Bump actions/github-script from v3 to v4.0.2 dependabot[bot] 49699333 Bumps [actions/github-script](https://github.com/actions/github-script) from v3 to v4.0.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/github-script/releases">actions/github-script's releases</a>.</em></p> <blockquote> <h2>Update <code>@​actions/core</code> package</h2> <p>This release updates the <code>@actions/core</code> package to 1.2.7 - <a href="https://github-redirect.dependabot.com/actions/github-script/pull/137">actions/github-script#137</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/github-script/commit/a3e7071a34d7e1f219a8a4de9a5e0a34d1ee1293"><code>a3e7071</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/actions/github-script/issues/137">#137</a> from actions/joshgross/update-actions-core</li> <li><a href="https://github.com/actions/github-script/commit/3858e71d11531a5b5bbcbc726fddadcba075b157"><code>3858e71</code></a> Update license for <code>@​actions/core</code></li> <li><a href="https://github.com/actions/github-script/commit/2b34a689ec86a68d8ab9478298f91d5401337b7d"><code>2b34a68</code></a> Update <code>@​actions/core</code> to 1.2.7</li> <li><a href="https://github.com/actions/github-script/commit/85e88a66eaa831097093a3d278536947f2984d20"><code>85e88a6</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/actions/github-script/issues/136">#136</a> from actions/search-cwd-first</li> <li><a href="https://github.com/actions/github-script/commit/5cbb702e24d65c8ebafd6aa4a1dff5a2e7c5a0d7"><code>5cbb702</code></a> v4.0.1</li> <li><a href="https://github.com/actions/github-script/commit/1ef7fd09cae454dd85632525cb815e8260f7517b"><code>1ef7fd0</code></a> Remove require search fallback</li> <li><a href="https://github.com/actions/github-script/commit/a49bf6b2cd2d19d7353cf281ec5f195f17a57cd6"><code>a49bf6b</code></a> Search the cwd first, then existing module paths</li> <li><a href="https://github.com/actions/github-script/commit/95fb… 2021-04-26T08:11:12Z 2021-04-27T02:57:37Z 2021-04-27T02:57:36Z 2021-04-27T02:57:35Z 293782b9713b79599ce940a581a4c7181cd78108     0 e2f96675e455ad5ac498550ba16004fdcfb1c69d 2d76d22a1bdb55f6461da55a228f1b3efd478a28 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/5217  
623080435 MDExOlB1bGxSZXF1ZXN0NjIzMDgwNDM1 5218 closed 0 Bump pre-commit/action from v2.0.2 to v2.0.3 dependabot[bot] 49699333 Bumps [pre-commit/action](https://github.com/pre-commit/action) from v2.0.2 to v2.0.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pre-commit/action/releases">pre-commit/action's releases</a>.</em></p> <blockquote> <h2>pre-commit/action@v2.0.3</h2> <h3>Fixes</h3> <ul> <li><code>push</code> compatibility with <code>actions/checkout@v2</code> which checks out the branch <ul> <li><a href="https://github-redirect.dependabot.com/pre-commit/action/issues/97">#97</a> PR by <a href="https://github.com/jackton1"><code>@​jackton1</code></a>.</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pre-commit/action/commit/9b88afc9cd57fd75b655d5c71bd38146d07135fe"><code>9b88afc</code></a> Deployed to github pages</li> <li>See full diff in <a href="https://github.com/pre-commit/action/compare/v2.0.2...9b88afc9cd57fd75b655d5c71bd38146d07135fe">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) Dependabot will merge this PR once it's up-to-date and CI passes on it, as requested by @andersy005. [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing i… 2021-04-26T08:11:20Z 2021-04-27T03:33:46Z 2021-04-27T03:33:44Z 2021-04-27T03:33:44Z 77b494b7b34f41d5ed60c5a8bba63ba799c7b18f     0 22754b1e26ae6742424b9351bcaadb9751fb1609 293782b9713b79599ce940a581a4c7181cd78108 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/5218  
696715635 MDExOlB1bGxSZXF1ZXN0Njk2NzE1NjM1 5633 closed 0 Bump codecov/codecov-action from 1 to 2.0.2 dependabot[bot] 49699333 Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 1 to 2.0.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v2.0.2</h2> <h3>Fixes</h3> <ul> <li>Underlying uploader fixes issues with tokens not being sent properly for users seeing <code>Error!: Error: Error uploading to https://codecov.io: Error: Error uploading to Codecov: Error: Not Found</code></li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/432">#432</a> fix: use import to destructure package.json</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/434">#434</a> fix: openpgp and asn1.js</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/440">#440</a> 2.0.2 token fixes</li> </ul> <h3>Dependencies</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/420">#420</a> Bump eslint from 7.30.0 to 7.31.0</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/433">#433</a> build(deps-dev): bump <code>@​types/node</code> from 16.3.3 to 16.4.0</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/425">#425</a> build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code> from 4.28.3 to 4.28.4</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/426">#426</a> build(deps-dev): bump <code>@​typescript-eslint/parser</code> from 4.28.3 to 4.28.4</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/438">#438</a> Set up Dependabot for github-actions dependencies</li> </ul> <h2>v2.0.1</h2> <h3>Fixes</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/424">#424</a> fix: Issue in building all deep dependencies</li> </ul> <h2>v2.0.0</h2> <p>On February 1, 2022, the <code>v1</code> uploader wi… 2021-07-26T06:05:38Z 2021-07-26T07:01:58Z 2021-07-26T06:42:26Z 2021-07-26T06:42:26Z da99a5664df4f5013c2f6b0e758394bec5e0bc80     0 042db2e384c76dccb8f19c6956d357c08dd2ff89 12810c2c264a004648fdb750262f2da4973a7ca5 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/5633  
701150737 MDExOlB1bGxSZXF1ZXN0NzAxMTUwNzM3 5663 closed 0 Bump styfle/cancel-workflow-action from 0.9.0 to 0.9.1 dependabot[bot] 49699333 Bumps [styfle/cancel-workflow-action](https://github.com/styfle/cancel-workflow-action) from 0.9.0 to 0.9.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/styfle/cancel-workflow-action/releases">styfle/cancel-workflow-action's releases</a>.</em></p> <blockquote> <h2>0.9.1</h2> <h3>Patches</h3> <ul> <li>Fix: cancelling jobs from different repos where two branches have the same name: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/105">#105</a></li> <li>Fix: use getBooleanInput instead of getInput: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/92">#92</a></li> <li>Chore: add permissions configuration in the README.md: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/96">#96</a></li> <li>Chore: add prettier config, format file, add lint workflow: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/63">#63</a></li> <li>Chore: create <code>dependabot.yml</code>: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/68">#68</a></li> <li>Bump typescript from 4.1.5 to 4.2.4: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/71">#71</a></li> <li>Bump actions/setup-node requirement to v2.1.5: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/69">#69</a></li> <li>Bump <code>@​vercel/ncc</code> to 0.28.3: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/73">#73</a></li> <li>Bump <code>@​actions/core</code> from 1.2.6 to 1.2.7: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/74">#74</a></li> <li>Bump <code>@​vercel/ncc</code> from 0.28.3 to 0.28.5: <a href="https://github-redirect.dependabot.com/styfle/cancel-workflow-action/issues/81">#81</a></li> <li>Bump <code>@​actions/core</code> from 1.2.7 to 1.3.0: <a href="https://github-redirect.dependabot.com/styfle/cancel-wo… 2021-08-02T06:05:09Z 2021-08-02T10:46:13Z 2021-08-02T10:19:32Z 2021-08-02T10:19:32Z 35d798a36912418e5c6b4bd7d6c3c6e39accf3d0     0 78ea4eb328e35d81db2ab84005e847131336fbb2 c44b816bf4a858af1bb621d96e1d3482db3976da CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/5663  
717526634 MDExOlB1bGxSZXF1ZXN0NzE3NTI2NjM0 5730 closed 0 Bump actions/github-script from 4.0.2 to 4.1 dependabot[bot] 49699333 Bumps [actions/github-script](https://github.com/actions/github-script) from 4.0.2 to 4.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/github-script/releases">actions/github-script's releases</a>.</em></p> <blockquote> <h2>v4.1.0</h2> <h2>What's Changed</h2> <ul> <li>Adding <code>@​actions/exec</code> to github-script by <a href="https://github.com/bhavanakonchada"><code>@​bhavanakonchada</code></a> in <a href="https://github-redirect.dependabot.com/actions/github-script/pull/178">actions/github-script#178</a></li> <li>Run npm audit and update dev dependencies by <a href="https://github.com/joshmgross"><code>@​joshmgross</code></a> in <a href="https://github-redirect.dependabot.com/actions/github-script/pull/181">actions/github-script#181</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/MichaelDeBoey"><code>@​MichaelDeBoey</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/actions/github-script/pull/145">actions/github-script#145</a></li> <li><a href="https://github.com/oscard0m"><code>@​oscard0m</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/actions/github-script/pull/174">actions/github-script#174</a></li> <li><a href="https://github.com/brcrista"><code>@​brcrista</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/actions/github-script/pull/177">actions/github-script#177</a></li> <li><a href="https://github.com/bhavanakonchada"><code>@​bhavanakonchada</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/actions/github-script/pull/178">actions/github-script#178</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/github-script/compare/v4.0.2...v4.1.0">https://github.com/actions/github-script/compare/v4.0.2...v4.1.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/githu… 2021-08-23T06:04:14Z 2021-08-23T19:42:21Z 2021-08-23T19:16:21Z 2021-08-23T19:16:21Z a6b44d72010c5311fad4f60194b527194e26094b     0 e42ad1f600527331047a75ff091aad075e2db63e 4f1e2d37b662079e830c9672400fabc19b44a376 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/5730  
722188327 MDExOlB1bGxSZXF1ZXN0NzIyMTg4MzI3 5747 closed 0 Bump codecov/codecov-action from 2.0.2 to 2.0.3 dependabot[bot] 49699333 Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 2.0.2 to 2.0.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v2.0.3</h2> <h2>2.0.3</h2> <h3>Fixes</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/464">#464</a> Fix wrong link in the readme</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/485">#485</a> fix: Add override OS and linux default to platform</li> </ul> <h3>Dependencies</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/447">#447</a> build(deps): bump openpgp from 5.0.0-4 to 5.0.0-5</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/458">#458</a> build(deps-dev): bump eslint from 7.31.0 to 7.32.0</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/465">#465</a> build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code> from 4.28.4 to 4.29.1</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/466">#466</a> build(deps-dev): bump <code>@​typescript-eslint/parser</code> from 4.28.4 to 4.29.1</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/468">#468</a> build(deps-dev): bump <code>@​types/jest</code> from 26.0.24 to 27.0.0</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/470">#470</a> build(deps-dev): bump <code>@​types/node</code> from 16.4.0 to 16.6.0</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/472">#472</a> build(deps): bump path-parse from 1.0.6 to 1.0.7</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/473">#473</a> build(deps-dev): bump <code>@​types/jest</code> from 27.0.0 to 27.0.1</li> <li><a href="https://github-redirect.dependabot.com/codeco… 2021-08-30T06:04:14Z 2021-08-30T07:57:54Z 2021-08-30T07:32:37Z 2021-08-30T07:32:37Z 8c9c0f6827a38d3833a4d6108a705feb717a3f73     0 8e7906487acaa8de7724403445691be23cba469c 588cc62a5dd82b61b835dbac0c247198e5253314 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/5747  
737278846 PR_kwDOAMm_X84r8ft- 5800 closed 0 Bump codecov/codecov-action from 2.0.3 to 2.1.0 dependabot[bot] 49699333 Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 2.0.3 to 2.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v2.1.0</h2> <h2>2.1.0</h2> <h3>Features</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/515">#515</a> Allow specifying version of Codecov uploader</li> </ul> <h3>Dependencies</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/499">#499</a> build(deps-dev): bump <code>@​vercel/ncc</code> from 0.29.0 to 0.30.0</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/508">#508</a> build(deps): bump openpgp from 5.0.0-5 to 5.0.0</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/514">#514</a> build(deps-dev): bump <code>@​types/node</code> from 16.6.0 to 16.9.0</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md">codecov/codecov-action's changelog</a>.</em></p> <blockquote> <h2>2.1.0</h2> <h3>Features</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/515">#515</a> Allow specifying version of Codecov uploader</li> </ul> <h3>Dependencies</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/499">#499</a> build(deps-dev): bump <code>@​vercel/ncc</code> from 0.29.0 to 0.30.0</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/508">#508</a> build(deps): bump openpgp from 5.0.0-5 to 5.0.0</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/514">#514</a> build(deps-dev): bump <code>@​types/node</code> from 16.6.0 to 16.9.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/co… 2021-09-20T06:04:18Z 2021-09-23T18:26:49Z 2021-09-23T18:26:48Z 2021-09-23T18:26:48Z 836d533f882b032c2812d07c84bd0c8565bf0938     0 3a6f0921c43979b043a1a74a02ec7b64b06e65c2 a1635d324753588e353e4e747f6058936fa8cf1e CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/5800  
743123831 PR_kwDOAMm_X84sSyt3 5826 closed 0 Bump actions/github-script from 4.1 to 5 dependabot[bot] 49699333 Bumps [actions/github-script](https://github.com/actions/github-script) from 4.1 to 5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/github-script/releases">actions/github-script's releases</a>.</em></p> <blockquote> <h2>v5.0.0</h2> <h2>What's Changed</h2> <ul> <li>Upgrade to the latest version of Octokit by <a href="https://github.com/joshmgross"><code>@​joshmgross</code></a> in <a href="https://github-redirect.dependabot.com/actions/github-script/pull/193">actions/github-script#193</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/github-script/compare/v4.1.1...v5.0.0">https://github.com/actions/github-script/compare/v4.1.1...v5.0.0</a></p> <h2>v4.1.1</h2> <h2>What's Changed</h2> <ul> <li>Update minor versions of dependencies by <a href="https://github.com/joshmgross"><code>@​joshmgross</code></a> in <a href="https://github-redirect.dependabot.com/actions/github-script/pull/192">actions/github-script#192</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/github-script/compare/v4.1.0...v4.1.1">https://github.com/actions/github-script/compare/v4.1.0...v4.1.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/github-script/commit/441359b1a30438de65712c2fbca0abe4816fa667"><code>441359b</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/actions/github-script/issues/193">#193</a> from actions/joshmgross/v5</li> <li><a href="https://github.com/actions/github-script/commit/4e1175c48335078132afc3f5dc1b7e27219c659a"><code>4e1175c</code></a> Update licenses</li> <li><a href="https://github.com/actions/github-script/commit/004e46f649b61c0e1d436150ee9868171180fbe8"><code>004e46f</code></a> Fix breaking change in workflow test</li> <li><a href="https://github.com/actions/github-script/commit/5e5d515dc7088569e3d5a2cfecfe542588a1efc6"><code>5e5d515</code></a> Upgrade to the latest version of Octokit</li> <li>See f… 2021-09-27T06:05:00Z 2021-11-01T17:12:14Z 2021-11-01T17:12:12Z 2021-11-01T17:12:12Z e3b689d7a2a36b9fc5e3f8033f6ee9547b1bf650     0 daf20b5909b26e23f5ccaa711cbbb4eec21d14fe 13a2695b47bf81390993c448d229446954290ffa CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/5826  
817268425 PR_kwDOAMm_X84wtobJ 6147 closed 0 Bump pypa/gh-action-pypi-publish from 1.4.2 to 1.5.0 dependabot[bot] 49699333 Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.4.2 to 1.5.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.5.0</h2> <h2>What's Changed</h2> <ul> <li>Added an action input <code>print_hash</code> for showing the hash values of files to be uploaded — by <a href="https://github.com/meowmeowmeowcat"><code>@​meowmeowmeowcat</code></a> in <a href="https://github-redirect.dependabot.com/pypa/gh-action-pypi-publish/pull/87">pypa/gh-action-pypi-publish#87</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/pllim"><code>@​pllim</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/pypa/gh-action-pypi-publish/pull/55">pypa/gh-action-pypi-publish#55</a></li> <li><a href="https://github.com/meowmeowmeowcat"><code>@​meowmeowmeowcat</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/pypa/gh-action-pypi-publish/pull/87">pypa/gh-action-pypi-publish#87</a></li> </ul> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.4.2...v1.5.0">https://github.com/pypa/gh-action-pypi-publish/compare/v1.4.2...v1.5.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/717ba43cfbb0387f6ce311b169a825772f54d295"><code>717ba43</code></a> Trim the trailing whitespaces in <code>print-hash.py</code></li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/4992a00fb2ce867ab24eb17e1fe76738cabcc160"><code>4992a00</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pypa/gh-action-pypi-publish/issues/87">#87</a> from meowmeowmeowcat/show-hash-values</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/977d0675615f6a62b2da99c5d6cd6da339b38bd5"><code>977d067</code></a>… 2022-01-10T06:04:45Z 2022-01-10T08:07:23Z 2022-01-10T08:07:12Z 2022-01-10T08:07:12Z 5b322c9ea18f560e35857edcb78efe4e4f323551     0 e377895a9c56d91350ee8f70ab8a5ecea6c50e22 e7285ebc33561360dffe9af4f2db21808529dd17 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/6147  
851619919 PR_kwDOAMm_X84ywrBP 6273 closed 0 Bump actions/github-script from 5 to 6 dependabot[bot] 49699333 Bumps [actions/github-script](https://github.com/actions/github-script) from 5 to 6. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/github-script/releases">actions/github-script's releases</a>.</em></p> <blockquote> <h2>v6.0.0</h2> <h2>What's Changed</h2> <ul> <li>Update default runtime to node16 by <a href="https://github.com/thboop"><code>@​thboop</code></a> in <a href="https://github-redirect.dependabot.com/actions/github-script/pull/235">actions/github-script#235</a></li> <li>Update <code>node-fetch</code> by <a href="https://github.com/joshmgross"><code>@​joshmgross</code></a> in <a href="https://github-redirect.dependabot.com/actions/github-script/pull/237">actions/github-script#237</a></li> <li>Update <code>@actions/core</code> to 1.6.0 by <a href="https://github.com/joshmgross"><code>@​joshmgross</code></a> in <a href="https://github-redirect.dependabot.com/actions/github-script/pull/238">actions/github-script#238</a></li> </ul> <h3>Breaking Changes</h3> <p>With the update to Node 16 in <a href="https://github-redirect.dependabot.com/actions/github-script/issues/235">#235</a>, all scripts will now be run with Node 16 rather than Node 12.</p> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/thboop"><code>@​thboop</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/actions/github-script/pull/235">actions/github-script#235</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/github-script/compare/v5...v6.0.0">https://github.com/actions/github-script/compare/v5...v6.0.0</a></p> <h2>v5.1.0</h2> <h2>What's Changed</h2> <ul> <li>Update to latest versions for dev dependencies by <a href="https://github.com/joshmgross"><code>@​joshmgross</code></a> in <a href="https://github-redirect.dependabot.com/actions/github-script/pull/204">actions/github-script#204</a></li> <li>update plugin dependencies by <a href="https://github.com/PeterNitscheMI"><code>@​PeterNitscheMI</code></a> in… 2022-02-14T06:04:33Z 2022-02-14T09:05:42Z 2022-02-14T09:05:41Z 2022-02-14T09:05:41Z 8c5c230881d616af32c5a42cca261eb11fce3916     0 270671bf82ffaa5b8a60f10c8118336cfecb4dde 472a16e5bcf5bcf375f23e215653631bd326b673 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/6273  
872736007 PR_kwDOAMm_X840BOUH 6337 closed 0 Bump actions/checkout from 2 to 3 dependabot[bot] 49699333 Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p> <blockquote> <h2>v3.0.0</h2> <ul> <li>Update default runtime to node16</li> </ul> <h2>v2.4.0</h2> <ul> <li>Convert SSH URLs like <code>org-&lt;ORG_ID&gt;@github.com:</code> to <code>https://github.com/</code> - <a href="https://github-redirect.dependabot.com/actions/checkout/pull/621">pr</a></li> </ul> <h2>v2.3.5</h2> <p>Update dependencies</p> <h2>v2.3.4</h2> <ul> <li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/379">Add missing <code>await</code>s</a></li> <li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/360">Swap to Environment Files</a></li> </ul> <h2>v2.3.3</h2> <ul> <li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/345">Remove Unneeded commit information from build logs</a></li> <li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/326">Add Licensed to verify third party dependencies</a></li> </ul> <h2>v2.3.2</h2> <p><a href="https://github-redirect.dependabot.com/actions/checkout/pull/320">Add Third Party License Information to Dist Files</a></p> <h2>v2.3.1</h2> <p><a href="https://github-redirect.dependabot.com/actions/checkout/pull/284">Fix default branch resolution for .wiki and when using SSH</a></p> <h2>v2.3.0</h2> <p><a href="https://github-redirect.dependabot.com/actions/checkout/pull/278">Fallback to the default branch</a></p> <h2>v2.2.0</h2> <p><a href="https://github-redirect.dependabot.com/actions/checkout/pull/258">Fetch all history for all tags and branches when fetch-depth=0</a></p> <h2>v2.1.1</h2> <p>Changes to support GHES (<a href="https://github-redirect.dependabot.com/actions/checkout/pull/236">here</a> and <a href="https://github-redirect.dependabot.com/actions/checkout/pull/248">here</a>)</p> <h2>v2.1.0</h2> <ul> <li><a href="https://github-redirect.dependabot.co… 2022-03-07T06:05:40Z 2022-03-08T14:28:16Z 2022-03-08T14:28:15Z 2022-03-08T14:28:15Z 265ec7b4b8f6ee46120f125875685569e4115634     0 8f1c0417736e32e07a7489475ac12e4015fe680e f42ac28629b7b2047f859f291e1d755c36f2e834 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/6337  
872736028 PR_kwDOAMm_X840BOUc 6338 closed 0 Bump actions/setup-python from 2 to 3 dependabot[bot] 49699333 Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2 to 3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/setup-python/releases">actions/setup-python's releases</a>.</em></p> <blockquote> <h2>v3.0.0</h2> <h2>What's Changed</h2> <ul> <li>Update default runtime to node16 (<a href="https://github-redirect.dependabot.com/actions/setup-python/pull/340">actions/setup-python#340</a>)</li> <li>Update <code>package-lock.json</code> file version to 2, <code>@types/node</code> to 16.11.25 and <code>typescript</code> to 4.2.3 (<a href="https://github-redirect.dependabot.com/actions/setup-python/pull/341">actions/setup-python#341</a>)</li> <li>Remove legacy <code>pypy2</code> and <code>pypy3</code> keywords (<a href="https://github-redirect.dependabot.com/actions/setup-python/pull/342">actions/setup-python#342</a>)</li> </ul> <h3>Breaking Changes</h3> <p>With the update to Node 16, all scripts will now be run with Node 16 rather than Node 12.</p> <p>This new major release removes support of legacy <code>pypy2</code> and <code>pypy3</code> keywords. Please use more specific and flexible syntax to specify a PyPy version:</p> <pre lang="yaml"><code>jobs: build: runs-on: ubuntu-latest strategy: matrix: python-version: - 'pypy-2.7' # the latest available version of PyPy that supports Python 2.7 - 'pypy-3.8' # the latest available version of PyPy that supports Python 3.8 - 'pypy-3.8-v7.3.8' # Python 3.8 and PyPy 7.3.8 steps: - uses: actions/checkout@v2 - uses: actions/setup-python@v3 with: python-version: ${{ matrix.python-version }} </code></pre> <p>See more usage examples in the <a href="https://github.com/actions/setup-python#specifying-a-pypy-version">documentation</a></p> <h2>Update primary and restore keys for pip</h2> <p>In scope of this release we <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/303">include a version of python in restore and primary c… 2022-03-07T06:05:42Z 2022-03-08T14:58:08Z 2022-03-08T14:58:07Z 2022-03-08T14:58:07Z d293f50f9590251ce09543319d1f0dc760466f1b     0 8cd8cba278ccb3f7ddd72eda23695dd2df872212 265ec7b4b8f6ee46120f125875685569e4115634 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/6338  
891375703 PR_kwDOAMm_X841IVBX 6417 closed 0 Bump actions/cache from 2 to 3 dependabot[bot] 49699333 Bumps [actions/cache](https://github.com/actions/cache) from 2 to 3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/cache/releases">actions/cache's releases</a>.</em></p> <blockquote> <h2>v3.0.0</h2> <ul> <li> <p>This change adds a minimum runner version(node12 -&gt; node16), which can break users using an out-of-date/fork of the runner. This would be most commonly affecting users on GHES 3.3 or before, as those runners do not support node16 actions and they can use actions from github.com via <a href="https://docs.github.com/en/enterprise-server@3.0/admin/github-actions/managing-access-to-actions-from-githubcom/enabling-automatic-access-to-githubcom-actions-using-github-connect">github connect</a> or manually copying the repo to their GHES instance.</p> </li> <li> <p>Few dependencies and cache action usage examples have also been updated.</p> </li> </ul> <h2>v2.1.7</h2> <p>Support 10GB cache upload using the latest version <code>1.0.8</code> of <a href="https://www.npmjs.com/package/@actions/cache"><code>@actions/cache</code> </a></p> <h2>v2.1.6</h2> <ul> <li>Catch unhandled &quot;bad file descriptor&quot; errors that sometimes occurs when the cache server returns non-successful response (<a href="https://github-redirect.dependabot.com/actions/cache/pull/596">actions/cache#596</a>)</li> </ul> <h2>v2.1.5</h2> <ul> <li>Fix permissions error seen when extracting caches with GNU tar that were previously created using BSD tar (<a href="https://github-redirect.dependabot.com/actions/cache/issues/527">actions/cache#527</a>)</li> </ul> <h2>v2.1.4</h2> <ul> <li>Make caching more verbose <a href="https://github-redirect.dependabot.com/actions/toolkit/pull/650">#650</a></li> <li>Use GNU tar on macOS if available <a href="https://github-redirect.dependabot.com/actions/toolkit/pull/701">#701</a></li> </ul> <h2>v2.1.3</h2> <ul> <li>Upgrades <code>@actions/core</code> to v1.2.6 for <a href="https://github.com/advisories/GHSA-mfwh-5m23-j46w">CVE-2020-15228</a>. This action was… 2022-03-28T06:05:22Z 2022-03-31T09:25:22Z 2022-03-31T09:25:21Z 2022-03-31T09:25:21Z 305533d585389f7240ae2383a323337d4761d33a     0 9a1d7f3e106f8fc218ef596c1a20ec96877050ff 728b648d5c7c3e22fe3704ba163012840408bf66 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/6417  
905560732 PR_kwDOAMm_X841-cKc 6468 closed 0 Bump actions/upload-artifact from 2 to 3 dependabot[bot] 49699333 Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2 to 3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/upload-artifact/releases">actions/upload-artifact's releases</a>.</em></p> <blockquote> <h2>v3.0.0</h2> <h2>What's Changed</h2> <ul> <li>Update default runtime to node16 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/293">#293</a>)</li> <li>Update package-lock.json file version to 2 (<a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/302">#302</a>)</li> </ul> <h3>Breaking Changes</h3> <p>With the update to Node 16, all scripts will now be run with Node 16 rather than Node 12.</p> <h2>v2.3.1</h2> <p>Fix for empty fails on Windows failing on upload <a href="https://github-redirect.dependabot.com/actions/upload-artifact/issues/281">#281</a></p> <h2>v2.3.0 Upload Artifact</h2> <ul> <li>Optimizations for faster uploads of larger files that are already compressed</li> <li>Significantly improved logging when there are chunked uploads</li> <li>Clarifications in logs around the upload size and prohibited characters that aren't allowed in the artifact name or any uploaded files</li> <li>Various other small bugfixes &amp; optimizations</li> </ul> <h2>v2.2.4</h2> <ul> <li>Retry on HTTP 500 responses from the service</li> </ul> <h2>v2.2.3</h2> <ul> <li>Fixes for proxy related issues</li> </ul> <h2>v2.2.2</h2> <ul> <li>Improved retryability and error handling</li> </ul> <h2>v2.2.1</h2> <ul> <li>Update used actions/core package to the latest version</li> </ul> <h2>v2.2.0</h2> <ul> <li>Support for artifact retention</li> </ul> <h2>v2.1.4</h2> <ul> <li>Add Third Party License Information</li> </ul> <h2>v2.1.3</h2> <ul> <li>Use updated version of the <code>@action/artifact</code> NPM package</li> </ul> <h2>v2.1.2</h2> <ul> <li>Increase upload chunk size from 4MB to 8MB</li> <li>Detect case insensitive file uploads</li> </ul> <h2>v2.1.1</h2> <ul> <li>Fix for certain symlinks not correctl… 2022-04-11T06:06:08Z 2022-04-11T14:42:24Z 2022-04-11T14:42:23Z 2022-04-11T14:42:23Z 2a6392b645029100de748fd2823f62e70d80f0c8     0 f6b705c79759eb90c7f15f940b0643bc5ccc23c1 79f9c7bcc2bbfdc492d24f690e85864e44f6115b CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/6468  
905560752 PR_kwDOAMm_X841-cKw 6469 closed 0 Bump actions/download-artifact from 2 to 3 dependabot[bot] 49699333 Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 2 to 3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/download-artifact/releases">actions/download-artifact's releases</a>.</em></p> <blockquote> <h2>v3.0.0</h2> <h2>What's Changed</h2> <ul> <li>Update default runtime to node16 (<a href="https://github-redirect.dependabot.com/actions/download-artifact/pull/134">actions/download-artifact#134</a>)</li> <li>Update package-lock.json file version to 2 (<a href="https://github-redirect.dependabot.com/actions/download-artifact/pull/136">actions/download-artifact#136</a>)</li> </ul> <h3>Breaking Changes</h3> <p>With the update to Node 16, all scripts will now be run with Node 16 rather than Node 12.</p> <h2>v2.1.0 Download Artifact</h2> <ul> <li>Improved output &amp; logging</li> <li>Fixed issue where downloading all artifacts could cause display percentages to be over 100%</li> <li>Various small bug fixes &amp; improvements</li> </ul> <h2>v2.0.10</h2> <ul> <li>Retry on HTTP 500 responses from the service</li> </ul> <h2>v2.0.9</h2> <ul> <li>Fixes to proxy related issues</li> </ul> <h2>v2.0.8</h2> <ul> <li>Improvements to retryability if an error is encountered during artifact download</li> </ul> <h2>v2.0.7 download-artifact</h2> <ul> <li>Improved download retry-ability if a partial download is encountered</li> </ul> <h2>v2.0.6</h2> <p>Update actions/core NPM package that is used internally</p> <h2>v2.0.5</h2> <ul> <li>Add Third Party License Information</li> </ul> <h2>v2.0.4</h2> <ul> <li>Use the latest version of the <code>@actions/artifact</code> NPM package</li> </ul> <h2>v2.0.3</h2> <ul> <li>Misc improvements</li> </ul> <h2>v2.0.2</h2> <ul> <li>Support for tilde expansion</li> </ul> <h2>v2.0.1</h2> <ul> <li>Download path output</li> <li>Improved logging</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/download-artifact/commit/fb598a63ae348fa914e94cd0ff38f362e927b7… 2022-04-11T06:06:09Z 2022-04-11T14:41:52Z 2022-04-11T14:41:51Z 2022-04-11T14:41:51Z 18039533d85a42939494505d5cf2ae96d3258d79     0 c20deb01e33379bdbcf29e06e03c926f45312a3f 79f9c7bcc2bbfdc492d24f690e85864e44f6115b CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/6469  
905560810 PR_kwDOAMm_X841-cLq 6470 closed 0 Bump codecov/codecov-action from 2.1.0 to 3.0.0 dependabot[bot] 49699333 Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 2.1.0 to 3.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v3.0.0</h2> <h3>Breaking Changes</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/689">#689</a> Bump to node16 and small fixes</li> </ul> <h3>Features</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/688">#688</a> Incorporate <code>gcov</code> arguments for the Codecov uploader</li> </ul> <h3>Dependencies</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/548">#548</a> build(deps-dev): bump jest-junit from 12.2.0 to 13.0.0</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/603">#603</a> [Snyk] Upgrade <code>@​actions/core</code> from 1.5.0 to 1.6.0</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/628">#628</a> build(deps): bump node-fetch from 2.6.1 to 3.1.1</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/634">#634</a> build(deps): bump node-fetch from 3.1.1 to 3.2.0</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/636">#636</a> build(deps): bump openpgp from 5.0.1 to 5.1.0</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/652">#652</a> build(deps-dev): bump <code>@​vercel/ncc</code> from 0.30.0 to 0.33.3</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/653">#653</a> build(deps-dev): bump <code>@​types/node</code> from 16.11.21 to 17.0.18</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/659">#659</a> build(deps-dev): bump <code>@​types/jest</code> from 27.4.0 to 27.4.1</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/iss… 2022-04-11T06:06:12Z 2022-04-11T14:42:15Z 2022-04-11T14:42:14Z 2022-04-11T14:42:14Z 36a5093bdae405b2550657913a1d1e0ffc92d3ca     0 971bc709fdf2d608cd9218d6d9dc582cf84e8121 79f9c7bcc2bbfdc492d24f690e85864e44f6115b CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/6470  
917739357 PR_kwDOAMm_X842s5dd 6509 closed 0 Bump codecov/codecov-action from 3.0.0 to 3.1.0 dependabot[bot] 49699333 Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.0.0 to 3.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v3.1.0</h2> <h2>3.1.0</h2> <h3>Features</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/699">#699</a> Incorporate <code>xcode</code> arguments for the Codecov uploader</li> </ul> <h3>Dependencies</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/694">#694</a> build(deps-dev): bump <code>@​vercel/ncc</code> from 0.33.3 to 0.33.4</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/696">#696</a> build(deps-dev): bump <code>@​types/node</code> from 17.0.23 to 17.0.25</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/698">#698</a> build(deps-dev): bump jest-junit from 13.0.0 to 13.2.0</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md">codecov/codecov-action's changelog</a>.</em></p> <blockquote> <h2>3.1.0</h2> <h3>Features</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/699">#699</a> Incorporate <code>xcode</code> arguments for the Codecov uploader</li> </ul> <h3>Dependencies</h3> <ul> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/694">#694</a> build(deps-dev): bump <code>@​vercel/ncc</code> from 0.33.3 to 0.33.4</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/696">#696</a> build(deps-dev): bump <code>@​types/node</code> from 17.0.23 to 17.0.25</li> <li><a href="https://github-redirect.dependabot.com/codecov/codecov-action/issues/698">#698</a> build(deps-dev): bump jest-junit from 13.0.0 to 13.2.0</li> </ul> </blockquote> </details> <details> <summa… 2022-04-25T06:05:21Z 2022-04-25T15:09:45Z 2022-04-25T15:09:45Z 2022-04-25T15:09:45Z f2d0eb49b06f216117f048287e0796c1b6fd0a1d     0 a762780633ed8d5506481fc2dda4f013bc26a67f 33cdabd261b5725ac357c2823bd0f33684d3a954 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/6509  
965304350 PR_kwDOAMm_X845iWAe 6692 closed 0 Bump actions/setup-python from 3 to 4 dependabot[bot] 49699333 Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3 to 4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/setup-python/releases">actions/setup-python's releases</a>.</em></p> <blockquote> <h2>v4.0.0</h2> <h3>What's Changed</h3> <ul> <li>Support for <code>python-version-file</code> input: <a href="https://github-redirect.dependabot.com/actions/setup-python/issues/336">#336</a></li> </ul> <p>Example of usage:</p> <pre lang="yaml"><code>- uses: actions/setup-python@v4 with: python-version-file: '.python-version' # Read python version from a file - run: python my_script.py </code></pre> <p>There is no default python version for this <code>setup-python</code> major version, the action requires to specify either <code>python-version</code> input or <code>python-version-file</code> input. If the <code>python-version</code> input is not specified the action will try to read required version from file from <code>python-version-file</code> input.</p> <ul> <li>Use pypyX.Y for PyPy <code>python-version</code> input: <a href="https://github-redirect.dependabot.com/actions/setup-python/issues/349">#349</a></li> </ul> <p>Example of usage:</p> <pre lang="yaml"><code>- uses: actions/setup-python@v4 with: python-version: 'pypy3.9' # pypy-X.Y kept for backward compatibility - run: python my_script.py </code></pre> <ul> <li> <p><code>RUNNER_TOOL_CACHE</code> environment variable is equal <code>AGENT_TOOLSDIRECTORY</code>: <a href="https://github-redirect.dependabot.com/actions/setup-python/issues/338">#338</a></p> </li> <li> <p>Bugfix: create missing <code>pypyX.Y</code> symlinks: <a href="https://github-redirect.dependabot.com/actions/setup-python/issues/347">#347</a></p> </li> <li> <p><code>PKG_CONFIG_PATH</code> environment variable: <a href="https://github-redirect.dependabot.com/actions/setup-python/issues/400">#400</a></p> </li> <li> <p>Added <code>python-path</code> output: <a href="https://github-redirect.dependabot.com/actions/setup-pyth… 2022-06-13T06:08:01Z 2022-06-13T06:41:19Z 2022-06-13T06:41:18Z 2022-06-13T06:41:18Z 8e9a9fb390f8f0d27a017a7affd8d308d2317959     0 ca3286ddf75d5c08fb0eb140fea1d476aa980532 3a320724100ab05531d8d18ca8cb279a8e4f5c7f CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/6692  
979615300 PR_kwDOAMm_X846Y75E 6729 closed 0 Bump mamba-org/provision-with-micromamba from de032af7fb3675649f3d4bbdda85178ba412ee41 to 12 dependabot[bot] 49699333 Bumps [mamba-org/provision-with-micromamba](https://github.com/mamba-org/provision-with-micromamba) from de032af7fb3675649f3d4bbdda85178ba412ee41 to 12. This release includes the previously tagged commit. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/mamba-org/provision-with-micromamba/releases">mamba-org/provision-with-micromamba's releases</a>.</em></p> <blockquote> <h2>v12</h2> <ul> <li>Add new options <code>channels</code>, <code>condarc-file</code>, <code>channel-priority</code>, <code>log-level</code>, <code>installer-url</code>, <code>condarc-options</code></li> <li>Add <a href="https://github.com/mamba-org/provision-with-micromamba#cache-downloads">download caching</a> and <a href="https://github.com/mamba-org/provision-with-micromamba#cache-env">environment caching</a></li> <li>Support <code>sel(...)</code> selectors in <code>extra-specs</code></li> <li>Add support for using inside Docker containers</li> <li>Allow <code>extra-specs</code> only with no <code>environment-file</code></li> <li>Fix Bash + Windows</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/mamba-org/provision-with-micromamba/commit/34071ca7df4983ccd272ed0d3625818b27b70dcc"><code>34071ca</code></a> Add autoactivate sanity check (<a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/issues/69">#69</a>)</li> <li><a href="https://github.com/mamba-org/provision-with-micromamba/commit/37cc0959d16bdc4aab0e6c97cf92fcfcbc829a70"><code>37cc095</code></a> More options (<a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/issues/63">#63</a>)</li> <li><a href="https://github.com/mamba-org/provision-with-micromamba/commit/d77ce728d731c821d9b20e8bcee5da94786a131d"><code>d77ce72</code></a> Add log-level option (<a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/issues/67">#67</a>)</li> <li><a href="https://github.com/mamba-org/provision-with-micromamba/comm… 2022-06-27T06:05:47Z 2022-06-27T07:55:26Z 2022-06-27T07:55:25Z 2022-06-27T07:55:25Z 787a96c15161c9025182291b672b3d3c5548a6c7     0 820e74a5f9a4aad7aebd09f6d885f820af8306b3 5fcb6f508f5ea2382279d9b369000511997304b9 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/6729  
992698539 PR_kwDOAMm_X847K2Cr 6770 closed 0 Bump EnricoMi/publish-unit-test-result-action from 1 to 2 dependabot[bot] 49699333 Bumps [EnricoMi/publish-unit-test-result-action](https://github.com/EnricoMi/publish-unit-test-result-action) from 1 to 2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/EnricoMi/publish-unit-test-result-action/releases">EnricoMi/publish-unit-test-result-action's releases</a>.</em></p> <blockquote> <h2>v2.0.0-beta.2</h2> <p>Adds the following features:</p> <ul> <li>Support large CDATA in JUnit XML files with ignore_runs</li> <li>Improved logging of parse errors and tracebacks (<a href="https://github-redirect.dependabot.com/EnricoMi/publish-unit-test-result-action/issues/322">#322</a>, <a href="https://github-redirect.dependabot.com/EnricoMi/publish-unit-test-result-action/issues/324">#324</a>)</li> <li>Fix state leakage with ignore_runs (<a href="https://github-redirect.dependabot.com/EnricoMi/publish-unit-test-result-action/issues/323">#323</a>)</li> </ul> <h2>v2.0.0-beta</h2> <p>Adds the following features:</p> <ul> <li>Minor improvements on warnings and logging.</li> </ul> <h2>v2.0.0-alpha</h2> <p>Adds the following features:</p> <ul> <li>Add support for TRX files (<a href="https://github-redirect.dependabot.com/EnricoMi/publish-unit-test-result-action/issues/287">#287</a>)</li> <li>Add support for NUnit and XUnit XML files (<a href="https://github-redirect.dependabot.com/EnricoMi/publish-unit-test-result-action/issues/288">#288</a> and <a href="https://github-redirect.dependabot.com/EnricoMi/publish-unit-test-result-action/issues/289">#289</a>)</li> <li>Move to lxml parsing library (<a href="https://github-redirect.dependabot.com/EnricoMi/publish-unit-test-result-action/issues/286">#286</a>)</li> <li>Upgrade junitparser to 2.7.0</li> </ul> <p>This release contains the following <strong>breaking changes</strong>:</p> <ul> <li>Default value for option <code>check_name</code> changed from <code>&quot;Unit Test Results&quot;</code> to <code>&quot;Test Results&quot;</code>. If <code>check_name</code> is set in your config, this change is not of your concern. Add <code>c… 2022-07-11T06:05:29Z 2022-07-11T06:38:55Z 2022-07-11T06:38:55Z 2022-07-11T06:38:54Z 6771b667baf7a55f01fc1a2a9b7ceb10720dc1db     0 82a17ea1af88e5dba8f12bae4ff7c2994e7419da ae2c3a74f1c2ca7dc41bbf34862b239b7e3c5651 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/6770  
1013382086 PR_kwDOAMm_X848ZvvG 6855 closed 0 Bump pypa/gh-action-pypi-publish from 1.5.0 to 1.5.1 dependabot[bot] 49699333 Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.5.0 to 1.5.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.5.1</h2> <h2>What's Changed</h2> <ul> <li>Fixed printing out the dist hashes when <code>packages_dir</code> is a wildcard value. — by <a href="https://github.com/meowmeowmeowcat"><code>@​meowmeowmeowcat</code></a> in <a href="https://github-redirect.dependabot.com/pypa/gh-action-pypi-publish/pull/91">pypa/gh-action-pypi-publish#91</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.0...v1.5.1">https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.0...v1.5.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/37f50c210e3d2f9450da2cd423303d6a14a6e29f"><code>37f50c2</code></a> Merge PR <a href="https://github-redirect.dependabot.com/pypa/gh-action-pypi-publish/issues/91">#91</a></li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/9f0421c6c63e6834c88c90d39708f1e317f4dc82"><code>9f0421c</code></a> Add #StandWithUkraine banner to README</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/c3fbd68c153b595e98c34c15ebfd0db1e144863d"><code>c3fbd68</code></a> Remove quotes</li> <li>See full diff in <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.0...v1.5.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pypa/gh-action-pypi-publish&package-manager=github_actions&previous-version=1.5.0&new-version=1.5.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as l… 2022-08-01T06:06:02Z 2022-08-01T06:35:33Z 2022-08-01T06:35:32Z 2022-08-01T06:35:32Z db634ea44f567dce678b8879cc66652fc7f7e70d     0 18055ef03ad1a9b01ff1f16e0f20ef5d6bda309c e07da06da34dba7f5529edfa6cc1b31cd1695779 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/6855  
1046475934 PR_kwDOAMm_X84-X_Se 6991 closed 0 Bump mamba-org/provision-with-micromamba from 12 to 13 dependabot[bot] 49699333 Bumps [mamba-org/provision-with-micromamba](https://github.com/mamba-org/provision-with-micromamba) from 12 to 13. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/mamba-org/provision-with-micromamba/releases">mamba-org/provision-with-micromamba's releases</a>.</em></p> <blockquote> <h2>v13</h2> <ul> <li>Fix <code>channels</code> and <code>channel-priority</code> settings</li> <li>Support linux-aarch64 and osx-arm64 runners</li> <li>Support <code>sel(unix)</code></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/mamba-org/provision-with-micromamba/commit/a319a818023c3a5a448a60bd72e0c633408fbccc"><code>a319a81</code></a> Readme updates (<a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/issues/88">#88</a>)</li> <li><a href="https://github.com/mamba-org/provision-with-micromamba/commit/28fa1058b29e6ecf42f276aab152f929dafefb7d"><code>28fa105</code></a> add unix for condaArch linux or osx (<a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/issues/85">#85</a>)</li> <li><a href="https://github.com/mamba-org/provision-with-micromamba/commit/bc8e4cc2f1ff923a42ae27a637c08d4623ebb31b"><code>bc8e4cc</code></a> Fix channel priority (<a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/issues/84">#84</a>)</li> <li><a href="https://github.com/mamba-org/provision-with-micromamba/commit/52dc9e6f05a3e489dd053f4e236f731c92452990"><code>52dc9e6</code></a> Delete dist/post.js directory (<a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/issues/83">#83</a>)</li> <li><a href="https://github.com/mamba-org/provision-with-micromamba/commit/87a13a65db0322a1cd04f8ef7bae69aec1a1f0be"><code>87a13a6</code></a> use &quot;channels&quot; and not extraChannels (<a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/issues/82">#82</a>)</li> <li><a href="https://github.com/mamba-org/provision… 2022-09-05T14:08:41Z 2022-10-31T06:05:21Z 2022-10-31T06:05:19Z   589f65195acde14cb7194809e047436a79863efa     0 9e019ef6e843d3d7287743c80b8da804f7db36dc bda0a2faac5b870b39251da6ab4a0113377e32f7 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/6991  
1066637371 PR_kwDOAMm_X84_k5g7 7081 closed 0 Bump codecov/codecov-action from 3.1.0 to 3.1.1 dependabot[bot] 49699333 Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.0 to 3.1.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>3.1.1</h2> <h2>What's Changed</h2> <ul> <li>Update deprecation warning by <a href="https://github.com/slifty"><code>@​slifty</code></a> in <a href="https://github-redirect.dependabot.com/codecov/codecov-action/pull/661">codecov/codecov-action#661</a></li> <li>Create codeql-analysis.yml by <a href="https://github.com/mitchell-codecov"><code>@​mitchell-codecov</code></a> in <a href="https://github-redirect.dependabot.com/codecov/codecov-action/pull/593">codecov/codecov-action#593</a></li> <li>build(deps): bump node-fetch from 3.2.3 to 3.2.4 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://github-redirect.dependabot.com/codecov/codecov-action/pull/714">codecov/codecov-action#714</a></li> <li>build(deps-dev): bump typescript from 4.6.3 to 4.6.4 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://github-redirect.dependabot.com/codecov/codecov-action/pull/713">codecov/codecov-action#713</a></li> <li>README: fix typo by <a href="https://github.com/Evalir"><code>@​Evalir</code></a> in <a href="https://github-redirect.dependabot.com/codecov/codecov-action/pull/712">codecov/codecov-action#712</a></li> <li>build(deps): bump github/codeql-action from 1 to 2 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://github-redirect.dependabot.com/codecov/codecov-action/pull/724">codecov/codecov-action#724</a></li> <li>build(deps-dev): bump <code>@​types/jest</code> from 27.4.1 to 27.5.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://github-redirect.dependabot.com/codecov/codecov-action/pull/717">codecov/codecov-action#717</a></li> <li>fix: Remove a blank row by <a href="https://github.… 2022-09-26T06:04:53Z 2022-09-26T18:54:02Z 2022-09-26T18:54:01Z 2022-09-26T18:54:01Z 3977bc2ab702085f383933f92c771a1e0d533872     0 9b88dcf7a3991ebb55e38d77a7780b0684211032 212a5d7909e8dd54446b08574a0683e2477f2b40 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7081  
1104877077 PR_kwDOAMm_X85B2xYV 7240 closed 0 Bump xarray-contrib/issue-from-pytest-log from 0.1 to 1.1 dependabot[bot] 49699333 Bumps [xarray-contrib/issue-from-pytest-log](https://github.com/xarray-contrib/issue-from-pytest-log) from 0.1 to 1.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/xarray-contrib/issue-from-pytest-log/releases">xarray-contrib/issue-from-pytest-log's releases</a>.</em></p> <blockquote> <h2>v1.0</h2> <p>Initial release.</p> <p>This is the same release as <code>v0.1</code>, but using the version <code>v1.0</code> allows creating a moving tag named <code>v1</code>.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/xarray-contrib/issue-from-pytest-log/commit/89ca5895ebd99c09f8222234a0976e7ff8b823a7"><code>89ca589</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/xarray-contrib/issue-from-pytest-log/issues/1">#1</a> from jrbourbeau/add-more-options</li> <li><a href="https://github.com/xarray-contrib/issue-from-pytest-log/commit/9460ec99ac27369344fd7199710054b3cbdd3f13"><code>9460ec9</code></a> Stringify</li> <li><a href="https://github.com/xarray-contrib/issue-from-pytest-log/commit/63bd7a46438f5c3e8dcec2855310ca6d62552aa4"><code>63bd7a4</code></a> Make issue title and label configurable</li> <li>See full diff in <a href="https://github.com/xarray-contrib/issue-from-pytest-log/compare/v0.1...v1.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=xarray-contrib/issue-from-pytest-log&package-manager=github_actions&previous-version=0.1&new-version=1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> … 2022-10-31T06:05:10Z 2022-10-31T09:58:28Z 2022-10-31T09:58:27Z 2022-10-31T09:58:27Z 8df5d220f7f441575cdb5943a21dba38a61815cb     0 0805dc32b42dcf19f49e97a7400fcc09a4a66689 2608c407d73551e0d6055d4b81060e321e905d95 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7240  
1104877137 PR_kwDOAMm_X85B2xZR 7241 closed 0 Bump mamba-org/provision-with-micromamba from 12 to 14 dependabot[bot] 49699333 Bumps [mamba-org/provision-with-micromamba](https://github.com/mamba-org/provision-with-micromamba) from 12 to 14. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/mamba-org/provision-with-micromamba/releases">mamba-org/provision-with-micromamba's releases</a>.</em></p> <blockquote> <h2>v14</h2> <h2>What's Changed</h2> <ul> <li>Add micromamba deinit in <code>post.js</code> by <a href="https://github.com/pavelzw"><code>@​pavelzw</code></a> in <a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/pull/89">mamba-org/provision-with-micromamba#89</a></li> <li>Fix duplicate options by <a href="https://github.com/jonashaag"><code>@​jonashaag</code></a> in <a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/pull/98">mamba-org/provision-with-micromamba#98</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/pavelzw"><code>@​pavelzw</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/pull/89">mamba-org/provision-with-micromamba#89</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/mamba-org/provision-with-micromamba/compare/v13...v14">https://github.com/mamba-org/provision-with-micromamba/compare/v13...v14</a></p> <h2>v13</h2> <ul> <li>Fix <code>channels</code> and <code>channel-priority</code> settings</li> <li>Support linux-aarch64 and osx-arm64 runners</li> <li>Support <code>sel(unix)</code></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/mamba-org/provision-with-micromamba/commit/f347426e5745fe3dfc13ec5baf20496990d0281f"><code>f347426</code></a> Remove unnecessary options (<a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/issues/98">#98</a>)</li> <li><a href="https://github.com/mamba-org/provision-with-micromamba/commit/e542c7a77b43dbb6919f9cc997a9881abcfe3ddb"><code>e542c7a</code></a> Update dep… 2022-10-31T06:05:14Z 2022-10-31T20:29:05Z 2022-10-31T15:46:14Z 2022-10-31T15:46:14Z 12ca0dc6f9a22d94c1732c87dddf4ec5bf9813ff     0 0737a6409013b5a60d94ea081b70909c254ffa1c 93d1eabca4392eeab6a7cbe34e583a7195520dc8 CONTRIBUTOR 
{
    "enabled_by": {
        "login": "keewis",
        "id": 14808389,
        "node_id": "MDQ6VXNlcjE0ODA4Mzg5",
        "avatar_url": "https://avatars.githubusercontent.com/u/14808389?v=4",
        "gravatar_id": "",
        "url": "https://api.github.com/users/keewis",
        "html_url": "https://github.com/keewis",
        "followers_url": "https://api.github.com/users/keewis/followers",
        "following_url": "https://api.github.com/users/keewis/following{/other_user}",
        "gists_url": "https://api.github.com/users/keewis/gists{/gist_id}",
        "starred_url": "https://api.github.com/users/keewis/starred{/owner}{/repo}",
        "subscriptions_url": "https://api.github.com/users/keewis/subscriptions",
        "organizations_url": "https://api.github.com/users/keewis/orgs",
        "repos_url": "https://api.github.com/users/keewis/repos",
        "events_url": "https://api.github.com/users/keewis/events{/privacy}",
        "received_events_url": "https://api.github.com/users/keewis/received_events",
        "type": "User",
        "site_admin": false
    },
    "merge_method": "squash",
    "commit_title": "Bump mamba-org/provision-with-micromamba from 12 to 14 (#7241)",
    "commit_message": "* Bump mamba-org/provision-with-micromamba from 12 to 14\r\n\r\nBumps [mamba-org/provision-with-micromamba](https://github.com/mamba-org/provision-with-micromamba) from 12 to 14.\r\n- [Release notes](https://github.com/mamba-org/provision-with-micromamba/releases)\r\n- [Commits](https://github.com/mamba-org/provision-with-micromamba/compare/v12...v14)\r\n\r\n---\r\nupdated-dependencies:\r\n- dependency-name: mamba-org/provision-with-micromamba\r\n  dependency-type: direct:production\r\n  update-type: version-update:semver-major\r\n...\r\n\r\nSigned-off-by: dependabot[bot] <support@github.com>\r\n\r\n* try installing `conda` explicitly\r\n\r\n* explicitly install `conda` everywhere else as well\r\n\r\nSigned-off-by: dependabot[bot] <support@github.com>\r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>\r\nCo-authored-by: Justus Magin <keewis@posteo.de>"
}
 xarray 13221727 https://github.com/pydata/xarray/pull/7241  
1145866926 PR_kwDOAMm_X85ETIqu 7357 closed 0 Bump pypa/gh-action-pypi-publish from 1.5.1 to 1.6.1 dependabot[bot] 49699333 Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.5.1 to 1.6.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.6.1</h2> <h2>What's happened?!</h2> <p>There was a sneaky bug in v1.6.0 which caused Twine to be outside the import path in the Python runtime. It is fixed in v1.6.1 by updating <code>$PYTHONPATH</code> to point to a correct location of the user-global <code>site-packages/</code> directory.</p> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.0...v1.6.1">https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.0...v1.6.1</a></p> <h2>v1.6.0</h2> <h2>Anything's changed?</h2> <p>The only update is that the Python runtime has been upgraded from 3.9 to 3.11. There are no functional changes in this release.</p> <p><strong>Full Changelog</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.2...v1.6.0">https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.2...v1.6.0</a></p> <h2>v1.5.2</h2> <h2>What's Improved</h2> <ul> <li>Implemented the Twine transitive dependency tree pinning using pip-tools-generated constraint files. See <a href="https://github-redirect.dependabot.com/pypa/gh-action-pypi-publish/issues/107">pypa/gh-action-pypi-publish#107</a> and <a href="https://github-redirect.dependabot.com/pypa/gh-action-pypi-publish/issues/101">pypa/gh-action-pypi-publish#101</a> for details.</li> </ul> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.1...v1.5.2">https://github.com/pypa/gh-action-pypi-publish/compare/v1.5.1...v1.5.2</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/5d1679fa6b895587c6eb10c3fe82205b440a580e"><code>5d1679f</code></a> Use py3.11 user-global site-packages in PYTHONPATH</li>… 2022-12-05T06:01:28Z 2022-12-12T06:01:14Z 2022-12-12T06:01:12Z   63350597755779fee3f86b90afd53fc447c9dbad     0 42ca2a303472468e82bef0721cce3b03970f83e4 ed60c6ccd3d6725cd91190b8796af4355f3085c2 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7357  
1160091126 PR_kwDOAMm_X85FJZX2 7375 closed 0 Bump pypa/gh-action-pypi-publish from 1.5.1 to 1.6.4 dependabot[bot] 49699333 Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.5.1 to 1.6.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.6.4</h2> <h2>oh, boi! again?</h2> <p>This is the last one tonight, promise! It fixes this embarrassing bug that was actually caught by the CI but got overlooked due to the lack of sleep. TL;DR GH passed <code>$HOME</code> from the external env into the container and that tricked the Python's <code>site</code> module to think that the home directory is elsewhere, adding non-existent paths to the env vars. See <a href="https://github-redirect.dependabot.com/pypa/gh-action-pypi-publish/issues/115">#115</a>.</p> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.3...v1.6.4">https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.3...v1.6.4</a></p> <h2>v1.6.3</h2> <h1>Another Release!? Why?</h1> <p>In <a href="https://github-redirect.dependabot.com/pypa/gh-action-pypi-publish/issues/112#issuecomment-1340133013">pypa/gh-action-pypi-publish#112</a>, it was discovered that passing a <code>$PATH</code> variable even breaks the shebang. So this version adds more safeguards to make sure it keeps working with a fully broken <code>$PATH</code>.</p> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.2...v1.6.3">https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.2...v1.6.3</a></p> <h2>v1.6.2</h2> <h2>What's Fixed</h2> <ul> <li>Made the <code>$PATH</code> and <code>$PYTHONPATH</code> environment variables resilient to broken values passed from the host runner environment, which previously allowed the users to accidentally break the container's internal runtime as reported in <a href="https://github-redirect.dependabot.com/pypa/gh-action-pypi-publish/issues/112">pypa/gh-action-pypi-publish#112</a></li> </ul> <h2>Interna… 2022-12-12T06:01:07Z 2022-12-12T11:01:12Z 2022-12-12T11:01:11Z 2022-12-12T11:01:11Z b610956e46873912e258488b6b1932cf27aeb6dc     0 eb59dcb1298990f83ebee67bd3dd54d776ddf3f2 3b6cd2a2e44e9777f865a2bc1be958ae313f66da CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7375  
1212970238 PR_kwDOAMm_X85ITHT- 7466 closed 0 Bump mamba-org/provision-with-micromamba from 14 to 15 dependabot[bot] 49699333 Bumps [mamba-org/provision-with-micromamba](https://github.com/mamba-org/provision-with-micromamba) from 14 to 15. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/mamba-org/provision-with-micromamba/releases">mamba-org/provision-with-micromamba's releases</a>.</em></p> <blockquote> <h2>v15</h2> <ul> <li>Fix <a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/issues/112">#112</a> (channels overridden even if empty)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/mamba-org/provision-with-micromamba/commit/e2b397b12d0a38069451664382b769c9456e3d6d"><code>e2b397b</code></a> Fix <a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/issues/112">#112</a> (<a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/issues/113">#113</a>)</li> <li><a href="https://github.com/mamba-org/provision-with-micromamba/commit/160ff6b6ef034a61d4459ed3bb69383a2f137ed6"><code>160ff6b</code></a> Bump checkout GHA version in readme example (<a href="https://github-redirect.dependabot.com/mamba-org/provision-with-micromamba/issues/105">#105</a>)</li> <li>See full diff in <a href="https://github.com/mamba-org/provision-with-micromamba/compare/v14...v15">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=mamba-org/provision-with-micromamba&package-manager=github_actions&previous-version=14&new-version=15)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /… 2023-01-23T06:01:09Z 2023-01-23T11:26:03Z 2023-01-23T11:26:02Z 2023-01-23T11:26:02Z 02e6933b33a750d62205abaeadc701de2d23dd63     0 63a5be2c865efd9f3df1e495163e3c67715f2f18 19838dce11faeea8dc629cea1607a646ee7be86e CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7466  
1272738016 PR_kwDOAMm_X85L3HDg 7618 closed 0 Bump pypa/gh-action-pypi-publish from 1.6.4 to 1.7.1 dependabot[bot] 49699333 Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.6.4 to 1.7.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.7.1</h2> <h2>Regression?</h2> <p>There was a small setback with v1.7.0 — the snake_case fallbacks didn't work because the check for the kebab-case env vars with default values set was always truthy. This bugfix release promptly fixes that.</p> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.7.0...v1.7.1">https://github.com/pypa/gh-action-pypi-publish/compare/v1.7.0...v1.7.1</a></p> <h2>v1.7.0</h2> <h2>What should I care about?</h2> <p>TL;DR The action input names have been converted to use kebab-case and marked deprecated. But the old names still work.</p> <p>This is made to align the public API with the de-facto conventions in the ecosystem. We've used snake_case names, which the maintainer considers a historical mistake. New kebab-case inputs will make the end-users' workflows look more consistent and and visually distinguishable from other identifiers one may encounter in YAML.</p> <p>There is no timeline for removing the old names, but it will happen in v3 or later versions of the action. <em>If the maintainer doesn't forget to do this, that is.</em></p> <p>The patch is here: <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/125">pypa/gh-action-pypi-publish#125</a>.</p> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.5...v1.7.0">https://github.com/pypa/gh-action-pypi-publish/compare/v1.6.5...v1.7.0</a></p> <h2>v1.6.5</h2> <h2>What's Changed</h2> <ul> <li>Added an explicit warning when the password passed into the action is empty — thanks <a href="https://github.com/colindean"><code>@​colindean</code></a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/colindean">… 2023-03-13T06:57:02Z 2023-03-14T03:13:57Z 2023-03-14T03:13:55Z 2023-03-14T03:13:55Z 5043223ca7942c6eb582798aafa843d2efc0895b     0 098a7628886df078e23cbe6668818d2bbfdba796 485f801d4bbfc8b2b8c20a390a859ae6cd71ba16 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7618  
1282097323 PR_kwDOAMm_X85Ma0Cr 7648 closed 0 Bump pypa/gh-action-pypi-publish from 1.7.1 to 1.8.1 dependabot[bot] 49699333 Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.7.1 to 1.8.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.8.1</h2> <h2>🐛 What's Fixed</h2> <p>💔 Unfortunately, a tiny mistake in v1.8.0 caused a far-reaching regression for the most used code path. ❗ But don't worry, it's fixed now thanks to <a href="https://github.com/njzjz"><code>@​njzjz</code></a> who promptly spotted it and <a href="https://github.com/zhongjiajie"><code>@​zhongjiajie</code></a> who sent a bugfix.</p> <h2>🙌 New Contributors</h2> <ul> <li><a href="https://github.com/zhongjiajie"><code>@​zhongjiajie</code></a> made their first contribution in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/131">pypa/gh-action-pypi-publish#131</a></li> </ul> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.0...v1.8.1">https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.0...v1.8.1</a></p> <h2>v1.8.0</h2> <h2>The Coolest Release Ever!</h2> <p>In this release, <a href="https://github.com/woodruffw"><code>@​woodruffw</code></a> implemented support for secretless OIDC-based publishing to PyPI-like package indexes. The OIDC flow is activated when neither username nor password action inputs are set.</p> <p>The OIDC “token exchange”, is an authentication technique that PyPI (and TestPyPI, and hopefully some future others) supports as an alternative to long-lived username/password combinations or long-lived API tokens.</p> <blockquote> <p><strong>IMPORTANT:</strong> The PyPI-side configuration is only available to participants of the private beta test. Please, only try out the zero-config mode if you are a beta test participant having followed the PyPI configuration instructions.</p> </blockquote> <p>Setup prerequisites: <a href="https://github.com/marketplace/actions/pypi-publish#publishing-with-o… 2023-03-20T06:57:22Z 2023-03-20T15:57:22Z 2023-03-20T15:57:20Z 2023-03-20T15:57:20Z 85af8aadf1eda84f1b2eee41d3fb896a37dc27dc     0 533ac3a42cd5c50f7fabe0d897ddbd6db16fcf8e d07362244026597ea9983699c912b7d6309b6d6a CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7648  
1290847294 PR_kwDOAMm_X85M8MQ- 7682 closed 0 Bump pypa/gh-action-pypi-publish from 1.8.1 to 1.8.3 dependabot[bot] 49699333 Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.1 to 1.8.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.8.3</h2> <h2>What's New</h2> <p>This release improves the logging detalization of which authentication mode is selected when the action runs. It surfaces this detail to the workflow run summary page as annotations. The change was contributed by <a href="https://github.com/woodruffw"><code>@​woodruffw</code></a> in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/136">pypa/gh-action-pypi-publish#136</a>.</p> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.2...v1.8.3">https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.2...v1.8.3</a></p> <h2>v1.8.2</h2> <h2>What's Changed</h2> <p>This release started printing out full OIDC error messages to console, instead of just one line -- by <a href="https://github.com/woodruffw"><code>@​woodruffw</code></a> in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/134">pypa/gh-action-pypi-publish#134</a>.</p> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.1...v1.8.2">https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.1...v1.8.2</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/48b317d84d5f59668bb13be49d1697e36b3ad009"><code>48b317d</code></a> Merge PR <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/136">#136</a> into unstable/v1</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/ae295504b3468d3952767fa0d25a4a2996a5578f"><code>ae29550</code></a> twine-upload: increase detail on console notices</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/f3ce18f69986f83a044b6e… 2023-03-27T06:57:15Z 2023-03-27T07:48:25Z 2023-03-27T07:48:23Z 2023-03-27T07:48:23Z 39caafae4452f5327a7cd671b18d4bb3eb3785ba     0 3bbc655cc1176f7c57a89099db415faf5e6faa89 86f3f21ab3d0dff6fdb4a0bccd27c62f9e4a3238 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7682  
1299524930 PR_kwDOAMm_X85NdS1C 7709 closed 0 Bump pypa/gh-action-pypi-publish from 1.8.3 to 1.8.4 dependabot[bot] 49699333 Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.3 to 1.8.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.8.4</h2> <h2>What's Improved</h2> <ul> <li><a href="https://github.com/hugovk"><code>@​hugovk</code></a> cleaned up the double whitespaces in the OIDC flow logging in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/140">pypa/gh-action-pypi-publish#140</a></li> <li><a href="https://github.com/woodruffw"><code>@​woodruffw</code></a> added a title and a docs link to the OIDC error output in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/139">pypa/gh-action-pypi-publish#139</a></li> </ul> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.3...v1.8.4">https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.3...v1.8.4</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/29930c9cf57955dc1b98162d0d8bc3ec80d9e75c"><code>29930c9</code></a> Merge pull request <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/139">#139</a> from trail-of-forks/tob-improve-errors</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/9c859e9a775e2122ff3da8f3f5bdfc6ca175f996"><code>9c859e9</code></a> Merge pull request <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/140">#140</a> from hugovk/oidc-whitespace</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/65bf8a81decf5c0966c65c2a2e4400e507008232"><code>65bf8a8</code></a> Remove double spaces</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/486ec8dd234caaf3824a0662ee75bc66a778cab7"><code>486ec8d</code></a> oidc-exchange: improve errors</li> <li>See full diff in <a href="https://github.com/pypa/gh-action-… 2023-04-03T06:56:57Z 2023-04-03T18:08:17Z 2023-04-03T18:08:16Z 2023-04-03T18:08:15Z cd692a6ca2f8755ea8766b8ab9ce854a14f0f55c     0 d362100c3a8719f56a1f7204022b8d5ec2078159 84607c3b1d61e3bc2d4b07b4f12f41a40b027f6f CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7709  
1307128769 PR_kwDOAMm_X85N6TPB 7743 closed 0 Bump pypa/gh-action-pypi-publish from 1.8.4 to 1.8.5 dependabot[bot] 49699333 Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.4 to 1.8.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.8.5</h2> <h2>What's Improved</h2> <p><a href="https://github.com/woodruffw"><code>@​woodruffw</code></a> improved the user-facing documentation and logging to make use of the Trusted Publishing flow terminology cohesive with PyPI in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/143">pypa/gh-action-pypi-publish#143</a>. Trusted Publishing used to be referred to as OpenID Connect (OIDC) — the underlying technology that is being used to make it work. He also made the action display the cause of the Trusted Publishing flow being selected by the action via <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/142">pypa/gh-action-pypi-publish#142</a>.</p> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.4...v1.8.5">https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.4...v1.8.5</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/0bf742be3ebe032c25dd15117957dc15d0cfc38d"><code>0bf742b</code></a> Merge pull request <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/143">#143</a> from trail-of-forks/tob-rewrite-oidc-refs</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/30c382209e2edb18e26e0cd15ea4ddbb62e4d249"><code>30c3822</code></a> oidc-exchange: another link</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/89ddbeae048cf21191cb26cde13abd949438b484"><code>89ddbea</code></a> README: retitle, add note</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/a0f29a5690c3e59076bbc8d1349b7f872249ac83"><code>a0f29a5</code></a> Apply suggestions from code revie… 2023-04-10T06:56:58Z 2023-04-10T14:40:29Z 2023-04-10T14:40:28Z 2023-04-10T14:40:28Z c94e2dae6dee12761232ca7c299cbcef440c0c0f     0 f00fd7faefaaab4c99fa038d2704f52eedf23816 8e899adcd72295a138228056643a78cac6e2de57 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7743  
1316065944 PR_kwDOAMm_X85OcZKY 7760 closed 0 Bump codecov/codecov-action from 3.1.1 to 3.1.2 dependabot[bot] 49699333 Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.1 to 3.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>3.1.2</h2> <h2>What's Changed</h2> <ul> <li>build(deps): bump node-fetch from 3.2.4 to 3.2.10 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/835">codecov/codecov-action#835</a></li> <li>build(deps-dev): bump <code>@​types/node</code> from 16.11.40 to 18.13.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/911">codecov/codecov-action#911</a></li> <li>build(deps-dev): bump <code>@​vercel/ncc</code> from 0.34.0 to 0.36.1 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/900">codecov/codecov-action#900</a></li> <li>build(deps-dev): bump typescript from 4.7.4 to 4.9.5 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/905">codecov/codecov-action#905</a></li> <li>Update README.md by <a href="https://github.com/stefanomunarini"><code>@​stefanomunarini</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/718">codecov/codecov-action#718</a></li> <li>build(deps): bump openpgp from 5.4.0 to 5.5.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/819">codecov/codecov-action#819</a></li> <li>build(deps): bump ossf/scorecard-action from 1.1.1 to 2.0.4 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/840">codecov/codecov-action#840</a></li> <li>build(deps): bump <code>@​actions/core<… 2023-04-17T06:57:09Z 2023-04-17T10:22:42Z 2023-04-17T10:22:40Z 2023-04-17T10:22:40Z 68bae08874d05e448eb5c9f522afb62e39146f33     0 c6c628906ef15c428014652a65d744aee593a1f3 6b7515c20efb9a280370eb755d2410958e893a96 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7760  
1324841214 PR_kwDOAMm_X85O93j- 7781 closed 0 Bump codecov/codecov-action from 3.1.2 to 3.1.3 dependabot[bot] 49699333 Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.2 to 3.1.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>3.1.3</h2> <h2>What's Changed</h2> <ul> <li>build(deps-dev): bump jest-junit from 15.0.0 to 16.0.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/957">codecov/codecov-action#957</a></li> <li>build(deps): bump openpgp from 5.7.0 to 5.8.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/958">codecov/codecov-action#958</a></li> <li>build(deps-dev): bump <code>@​types/node</code> from 18.15.10 to 18.15.12 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/959">codecov/codecov-action#959</a></li> <li>fix: allow for aarch64 build by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/960">codecov/codecov-action#960</a></li> <li>chore(release): bump to 3.1.3 by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/961">codecov/codecov-action#961</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v3.1.2...v3.1.3">https://github.com/codecov/codecov-action/compare/v3.1.2...v3.1.3</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md">codecov/codecov-action's changelog</a>.</em></p> <blockquote> <h2>3.1.3</h2> <h3>Fixes</h3> <ul> <li><a href="https://redirect.github.com/codecov/codecov-action/issues/9… 2023-04-24T06:57:05Z 2023-04-24T10:16:54Z 2023-04-24T10:16:52Z 2023-04-24T10:16:52Z 2657787f76fffe4395288702403a68212e69234b     0 8c4beb511278959f28e2a3bafbf5df53f96eef99 a54d5b3fe2dac8a77a4952a33d443e09e77587bf CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7781  
1341641607 PR_kwDOAMm_X85P99OH 7826 closed 0 Bump pypa/gh-action-pypi-publish from 1.8.5 to 1.8.6 dependabot[bot] 49699333 Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.5 to 1.8.6. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.8.6</h2> <h2>What's Updated</h2> <ul> <li><a href="https://github.com/sponsors/woodruffw"><code>@​woodruffw</code></a> dropped the references to a “private beta” from the project docs and runtime in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/147">pypa/gh-action-pypi-publish#147</a>. He also clarified that the API tokens are still more secure than passwords in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/150">pypa/gh-action-pypi-publish#150</a>.</li> <li><a href="https://github.com/sponsors/asherf"><code>@​asherf</code></a> noticed that the action metadata incorrectly marked the <code>password</code> field as required and contributed a correction in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/151">pypa/gh-action-pypi-publish#151</a></li> <li><a href="https://github.com/sponsors/webknjaz"><code>@​webknjaz</code></a> moved the Trusted Publishing example to the top of the README in hopes that new users would default to using it via <a href="https://github.com/pypa/gh-action-pypi-publish/commit/f47b34707fd264d5ddb1ef322ca74cf8e4cf351b">https://github.com/pypa/gh-action-pypi-publish/commit/f47b34707fd264d5ddb1ef322ca74cf8e4cf351b</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/sponsors/asherf"><code>@​asherf</code></a> made their first contribution in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/151">pypa/gh-action-pypi-publish#151</a></li> </ul> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.5...v1.8.6">https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.5...v1.8.6</a></p> </blockquote> </details> <details> <summary>Commits</s… 2023-05-08T06:56:59Z 2023-05-08T21:24:30Z 2023-05-08T21:24:29Z 2023-05-08T21:24:29Z 306310050f6278f4d8107159c9c3649fbd6b5dea     0 6abfa81bc39df65d267eccd15715e6fedda757f6 2cce9f6539a02a7bdc37a722b6965a51be29a8dd CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7826  
1358655166 PR_kwDOAMm_X85Q-26- 7859 closed 0 Bump codecov/codecov-action from 3.1.3 to 3.1.4 dependabot[bot] 49699333 Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.3 to 3.1.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>3.1.4</h2> <h2>What's Changed</h2> <ul> <li>build(deps-dev): bump <code>@​types/node</code> from 18.15.12 to 18.16.3 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/970">codecov/codecov-action#970</a></li> <li>Fix typo in README.md by <a href="https://github.com/hisaac"><code>@​hisaac</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/967">codecov/codecov-action#967</a></li> <li>fix: add back in working dir by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/971">codecov/codecov-action#971</a></li> <li>fix: CLI option names for uploader by <a href="https://github.com/kleisauke"><code>@​kleisauke</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/969">codecov/codecov-action#969</a></li> <li>build(deps-dev): bump <code>@​types/node</code> from 18.16.3 to 20.1.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/975">codecov/codecov-action#975</a></li> <li>build(deps-dev): bump <code>@​types/node</code> from 20.1.0 to 20.1.2 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/979">codecov/codecov-action#979</a></li> <li>build(deps-dev): bump <code>@​types/node</code> from 20.1.2 to 20.1.4 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/981">codecov/codecov-action#981</a></li> <li>release: 3.1.4 by <a href="https://git… 2023-05-22T06:57:15Z 2023-05-22T19:49:21Z 2023-05-22T19:49:20Z 2023-05-22T19:49:19Z b9456f371bdae38fe9726a80159740d36eece90f     0 415491611e3f117aec6ba5dc9d135d585dba646a d8ec3a3f6b02a8b941b484b3d254537af84b5fde CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7859  
1368620221 PR_kwDOAMm_X85Rk3y9 7877 closed 0 Bump mamba-org/provision-with-micromamba from 15 to 16 dependabot[bot] 49699333 Bumps [mamba-org/provision-with-micromamba](https://github.com/mamba-org/provision-with-micromamba) from 15 to 16. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/mamba-org/provision-with-micromamba/releases">mamba-org/provision-with-micromamba's releases</a>.</em></p> <blockquote> <h2>v16</h2> <p>⛔️ With this release, we are deprecating this project.</p> <p>Please use the <a href="https://github.com/mamba-org/setup-micromamba">mamba-org/setup-micromamba</a> action instead.</p> <p>See the <a href="https://github.com/mamba-org/provision-with-micromamba#migration-to-setup-micromamba">migration guide</a> for instructions how to migrate from <code>provision-with-micromamba</code> to <code>setup-micromamba</code>.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/mamba-org/provision-with-micromamba/commit/3c96c0c27676490c63c18bc81f5c51895ac3e0e6"><code>3c96c0c</code></a> Add deprecation warning (<a href="https://redirect.github.com/mamba-org/provision-with-micromamba/issues/122">#122</a>)</li> <li>See full diff in <a href="https://github.com/mamba-org/provision-with-micromamba/compare/v15...v16">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=mamba-org/provision-with-micromamba&package-manager=github_actions&previous-version=15&new-version=16)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` … 2023-05-29T06:57:09Z 2023-06-01T16:22:07Z 2023-06-01T16:21:57Z   f121e5e39bb131b7e478617da46d7c9a832903e2     0 55293fa6ecc61c9d3e0cf9efee1d8d264e88142c b319d8671b178407927b5878ed878ffab22b6352 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7877  
1417423781 PR_kwDOAMm_X85UfCul 7956 closed 0 Bump pypa/gh-action-pypi-publish from 1.8.6 to 1.8.7 dependabot[bot] 49699333 Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.6 to 1.8.7. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.8.7</h2> <h2>:nail_care: Cosmetic output impovements</h2> <ul> <li><a href="https://github.com/woodruffw"><code>@​woodruffw</code></a> fixed OIDC the multiline annotations by escaping LF through urlencoding it in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/156">pypa/gh-action-pypi-publish#156</a>.</li> <li><a href="https://github.com/jaap3"><code>@​jaap3</code></a> noticed and promptly removed extraneous <code>}</code> from a non-OIDC log annotation in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/161">pypa/gh-action-pypi-publish#161</a>.</li> <li><a href="https://github.com/hugovk"><code>@​hugovk</code></a> made pip ignore that it runs under the root user and suppress its warning output in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/159">pypa/gh-action-pypi-publish#159</a>.</li> </ul> <h2>:hammer_and_wrench: Internal dependencies</h2> <ul> <li>Cryptography was bumped from 39.0.1 to 41.0.0 @ <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/160">pypa/gh-action-pypi-publish#160</a></li> <li>Requests was bumped from 2.28.1 to 2.31.0 @ <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/157">pypa/gh-action-pypi-publish#157</a></li> </ul> <h2>:muscle: New Contributors</h2> <ul> <li><a href="https://github.com/jaap3"><code>@​jaap3</code></a> made their first contribution in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/161">pypa/gh-action-pypi-publish#161</a></li> </ul> <p><strong>:mirror: Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.6...v1.8.7">https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.6...v1.8.7</a></p> </blockquote> <… 2023-07-03T06:07:52Z 2023-07-03T15:43:38Z 2023-07-03T15:43:37Z 2023-07-03T15:43:37Z 77e2db5aa1d8828bc7310062680ad9fe15a65d8a     0 52fbb17d7f3f809d0d09f154047e775f5801c2dc 4b544211b42a66744893a80c3ddc45dd9f9479de CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7956  
1436672730 PR_kwDOAMm_X85VoeLa 7994 closed 0 Bump pypa/gh-action-pypi-publish from 1.8.7 to 1.8.8 dependabot[bot] 49699333 Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.7 to 1.8.8. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.8.8</h2> <h2>:nail_care: Cosmetic output improvements</h2> <ul> <li> <p>In <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/167">pypa/gh-action-pypi-publish#167</a>, <a href="https://github.com/woodruffw"><code>@​woodruffw</code></a> introduced a nudge-warning encouraging people to start using secretless publishing to PyPI, as suggested by <a href="https://github.com/sponsors/sethmlarson"><code>@​sethmlarson</code></a> in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/164">pypa/gh-action-pypi-publish#164</a>, collaborating with <a href="https://github.com/di"><code>@​di</code></a>.</p> <p><em>:bulb: Tip:</em> The OIDC-based trusted publishing integration details can be found in the action README at <a href="https://github.com/marketplace/actions/pypi-publish#trusted-publishing">https://github.com/marketplace/actions/pypi-publish#trusted-publishing</a> and on the PyPI docs page at <a href="https://docs.pypi.org/trusted-publishers/">https://docs.pypi.org/trusted-publishers/</a>. It's gone GA on April 20, 2023, during PyCon: <a href="https://blog.pypi.org/posts/2023-04-20-introducing-trusted-publishers/">https://blog.pypi.org/posts/2023-04-20-introducing-trusted-publishers/</a>. And the Trail Of Bits blog post has some deeper explanation here: <a href="https://blog.trailofbits.com/2023/05/23/trusted-publishing-a-new-benchmark-for-packaging-security/">https://blog.trailofbits.com/2023/05/23/trusted-publishing-a-new-benchmark-for-packaging-security/</a>.</p> </li> </ul> <h2>:hammer_and_wrench: Internal dependencies</h2> <ul> <li><a href="https://github.com/sponsors/pquentin"><code>@​pquentin</code></a> bumped the runtime dependency pins to the recent versions @ <a href="h… 2023-07-17T06:07:36Z 2023-07-17T13:27:28Z 2023-07-17T13:27:27Z 2023-07-17T13:27:27Z 3cdf40daefda2533905f6dda4a27395d051e37e1     0 a437197401dec4412982afdec2bc900a119c63f3 69236b8cfae9cf38682d79b766e92d6eba215c3c CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/7994  
1473815931 PR_kwDOAMm_X85X2KV7 8068 closed 0 Bump pypa/gh-action-pypi-publish from 1.8.8 to 1.8.10 dependabot[bot] 49699333 Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.8 to 1.8.10. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.8.10</h2> <h2>:bug: What's Fixed</h2> <p><a href="https://github.com/woodruffw"><code>@​woodruffw</code></a> fixed decoding OIDC claims in debug output on failure by applying correct padding to the encoded payload via <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/177">pypa/gh-action-pypi-publish#177</a>.</p> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.9...v1.8.10">https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.9...v1.8.10</a></p> <h2>v1.8.9</h2> <h2>:nail_care: Cosmetic output improvements</h2> <ul> <li><a href="https://github.com/woodruffw"><code>@​woodruffw</code></a> added debug output to the trusted publishing OIDC exchange on failures in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/174">pypa/gh-action-pypi-publish#174</a></li> <li><a href="https://github.com/woodruffw"><code>@​woodruffw</code></a> implemented Markdown semantic callouts in README via <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/175">pypa/gh-action-pypi-publish#175</a></li> </ul> <h2>:hammer_and_wrench: Internal dependencies</h2> <ul> <li>Certifi was bumped from 2023.5.7 to 2023.7.22 @ <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/171">pypa/gh-action-pypi-publish#171</a></li> <li>Cryptography was bumped from 41.0.2 to 41.0.3 @ <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/172">pypa/gh-action-pypi-publish#172</a></li> </ul> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.8...v1.8.9">https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.8...v1.8.9</a></p> </blockquote> </details> <details> <summary>… 2023-08-14T06:36:51Z 2023-08-17T10:32:20Z 2023-08-17T10:32:19Z 2023-08-17T10:32:18Z 67835eea3a1763a3241ca67cf3338536021bb949     0 9b9465b944b10b64e7d25fb293a1627ebd9b0ee2 eceec5f7bbbe93b2f24f49af6361a135ae72e2e4 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/8068  
1509660494 PR_kwDOAMm_X85Z-5dO 8169 closed 0 Bump actions/checkout from 3 to 4 dependabot[bot] 49699333 Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p> <blockquote> <h2>v4.0.0</h2> <h2>What's Changed</h2> <ul> <li>Update default runtime to node20 by <a href="https://github.com/takost"><code>@​takost</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1436">actions/checkout#1436</a></li> <li>Support fetching without the --progress option by <a href="https://github.com/simonbaird"><code>@​simonbaird</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1067">actions/checkout#1067</a></li> <li>Release 4.0.0 by <a href="https://github.com/takost"><code>@​takost</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1447">actions/checkout#1447</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/takost"><code>@​takost</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1436">actions/checkout#1436</a></li> <li><a href="https://github.com/simonbaird"><code>@​simonbaird</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1067">actions/checkout#1067</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v3...v4.0.0">https://github.com/actions/checkout/compare/v3...v4.0.0</a></p> <h2>v3.6.0</h2> <h2>What's Changed</h2> <ul> <li>Mark test scripts with Bash'isms to be run via Bash by <a href="https://github.com/dscho"><code>@​dscho</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1377">actions/checkout#1377</a></li> <li>Add option to fetch tags even if fetch-depth &gt; 0 by <a href="https://github.com/RobertWieczoreck"><code>@​RobertWieczoreck</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/579">actions/checkout#579</a></li> <li>Release 3.6.0 by <a href="https://git… 2023-09-11T06:19:29Z 2023-09-11T12:32:05Z 2023-09-11T12:32:04Z 2023-09-11T12:32:04Z cd6ba930a64a5129439606e7aae5f9c819f6c88c     0 1843f7a9c5bbefd7e84b1bc35c6fc931a39cf915 2951ce0215f14a8a79ecd0b5fc73a02a34b9b86b CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/8169  
1627625556 PR_kwDOAMm_X85hA5hU 8514 closed 0 Bump pypa/gh-action-pypi-publish from 1.8.10 to 1.8.11 dependabot[bot] 49699333 Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.10 to 1.8.11. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.8.11</h2> <h2>:nail_care: Cosmetic output improvements</h2> <p><a href="https://github.com/woodruffw"><code>@​woodruffw</code></a> added a nudge suggesting the users storing passwords in a GitHub Actions repository secrets to switch to using secretless publishing in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/190">pypa/gh-action-pypi-publish#190</a>. This also reminds people that PyPI will start mandating two-factor authentication to perform uploads in 2024.</p> <h2>:memo: What's Documented</h2> <p><a href="https://github.com/di"><code>@​di</code></a> linked the configuration docs for Trusted Publishing in README via <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/179">pypa/gh-action-pypi-publish#179</a>.</p> <h2>:hammer_and_wrench: Internal dependencies</h2> <ul> <li>Cryptography was bumped from 41.0.3 to 41.0.6 @ <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/194">pypa/gh-action-pypi-publish#194</a></li> <li>Pip was bumped from 22.3.1 to 23.3 @ <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/189">pypa/gh-action-pypi-publish#189</a></li> <li>pre-commit linters got autoupdated @ <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/184">pypa/gh-action-pypi-publish#184</a></li> <li>Urllib3 was bumped from 2.0.3 to 2.0.7 @ <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/183">pypa/gh-action-pypi-publish#183</a> and <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/185">pypa/gh-action-pypi-publish#185</a></li> </ul> <h2>:muscle: New Contributors</h2> <ul> <li><a href="https://github.com/di"><code>@​di</code></a> made their first contribution in <a href="https://redi… 2023-12-04T06:14:27Z 2023-12-04T21:10:15Z 2023-12-04T21:10:14Z 2023-12-04T21:10:14Z 704de5506cc0dba25692bafa36b6ca421fbab031     0 c5672b7918cdf91985562aa4d2f8172a484de711 62a4d0f45a4d275c32387522051bbe493414e090 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/8514  
1638180396 PR_kwDOAMm_X85hpKYs 8540 closed 0 Bump actions/setup-python from 4 to 5 dependabot[bot] 49699333 Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4 to 5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/setup-python/releases">actions/setup-python's releases</a>.</em></p> <blockquote> <h2>v5.0.0</h2> <h2>What's Changed</h2> <p>In scope of this release, we update node version runtime from node16 to node20 (<a href="https://redirect.github.com/actions/setup-python/pull/772">actions/setup-python#772</a>). Besides, we update dependencies to the latest versions.</p> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/setup-python/compare/v4.8.0...v5.0.0">https://github.com/actions/setup-python/compare/v4.8.0...v5.0.0</a></p> <h2>v4.8.0</h2> <h2>What's Changed</h2> <p>In scope of this release we added support for GraalPy (<a href="https://redirect.github.com/actions/setup-python/pull/694">actions/setup-python#694</a>). You can use this snippet to set up GraalPy:</p> <pre lang="yaml"><code>steps: - uses: actions/checkout@v4 - uses: actions/setup-python@v4 with: python-version: 'graalpy-22.3' - run: python my_script.py </code></pre> <p>Besides, the release contains such changes as:</p> <ul> <li>Trim python version when reading from file by <a href="https://github.com/FerranPares"><code>@​FerranPares</code></a> in <a href="https://redirect.github.com/actions/setup-python/pull/628">actions/setup-python#628</a></li> <li>Use non-deprecated versions in examples by <a href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a href="https://redirect.github.com/actions/setup-python/pull/724">actions/setup-python#724</a></li> <li>Change deprecation comment to past tense by <a href="https://github.com/jeffwidman"><code>@​jeffwidman</code></a> in <a href="https://redirect.github.com/actions/setup-python/pull/723">actions/setup-python#723</a></li> <li>Bump <code>@​babel/traverse</code> from 7.9.0 to 7.23.2 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github… 2023-12-11T06:50:24Z 2023-12-11T07:56:07Z 2023-12-11T07:56:06Z 2023-12-11T07:56:06Z 967ef91c4b983e5a99980fbe118a9323d3b1792d     0 288543df719025eb2e8f0f51561b89d3bce45a71 8d168db533715767042676d0dfd1b4563ed0fb61 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/8540  
1647836112 PR_kwDOAMm_X85iN_vQ 8556 closed 0 Bump actions/download-artifact from 3 to 4 dependabot[bot] 49699333 Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 3 to 4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/download-artifact/releases">actions/download-artifact's releases</a>.</em></p> <blockquote> <h2>v4.0.0</h2> <h2>What's Changed</h2> <p>The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.</p> <p>For more information, see the <a href="https://github.com/actions/toolkit/tree/main/packages/artifact"><code>@​actions/artifact</code></a> documentation.</p> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/bflad"><code>@​bflad</code></a> made their first contribution in <a href="https://redirect.github.com/actions/download-artifact/pull/194">actions/download-artifact#194</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/download-artifact/compare/v3...v4.0.0">https://github.com/actions/download-artifact/compare/v3...v4.0.0</a></p> <h2>v3.0.2</h2> <ul> <li>Bump <code>@actions/artifact</code> to v1.1.1 - <a href="https://redirect.github.com/actions/download-artifact/pull/195">actions/download-artifact#195</a></li> <li>Fixed a bug in Node16 where if an HTTP download finished too quickly (&lt;1ms, e.g. when it's mocked) we attempt to delete a temp file that has not been created yet <a href="hhttps://redirect.github.com/actions/toolkit/pull/1278">actions/toolkit#1278</a></li> </ul> <h2>v3.0.1</h2> <ul> <li><a href="https://redirect.github.com/actions/download-artifact/pull/178">Bump <code>@​actions/core</code> to 1.10.0</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/download-artifact/commit/7a1cd3216ca9260cd8022db641d960b1db4d1be4"><code>7a1cd32</code></a> Merge pull request <a href="https://redirect.github.com/actions/download-artifact/issues/246">#246</a> from actions/v4-beta</li> <li><a h… 2023-12-18T06:08:46Z 2024-01-03T21:57:18Z 2024-01-03T21:57:17Z 2024-01-03T21:57:17Z 1ebd3dd0bbc692fa4b1182d2ad3219cc5428806a     0 3646d2b130f8912acdfe9d68c68a1634a697ce6a 41d33f52f709a765fb0dbfb5b9b4f5ea55173053 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/8556  
1647836163 PR_kwDOAMm_X85iN_wD 8557 closed 0 Bump actions/upload-artifact from 3 to 4 dependabot[bot] 49699333 Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3 to 4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/upload-artifact/releases">actions/upload-artifact's releases</a>.</em></p> <blockquote> <h2>v4.0.0</h2> <h2>What's Changed</h2> <p>The release of upload-artifact@v4 and download-artifact@v4 are major changes to the backend architecture of Artifacts. They have numerous performance and behavioral improvements.</p> <p>For more information, see the <a href="https://github.com/actions/toolkit/tree/main/packages/artifact"><code>@​actions/artifact</code></a> documentation.</p> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/vmjoseph"><code>@​vmjoseph</code></a> made their first contribution in <a href="https://redirect.github.com/actions/upload-artifact/pull/464">actions/upload-artifact#464</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/upload-artifact/compare/v3...v4.0.0">https://github.com/actions/upload-artifact/compare/v3...v4.0.0</a></p> <h2>v3.1.3</h2> <h2>What's Changed</h2> <ul> <li>chore(github): remove trailing whitespaces by <a href="https://github.com/ljmf00"><code>@​ljmf00</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/313">actions/upload-artifact#313</a></li> <li>Bump <code>@​actions/artifact</code> version to v1.1.2 by <a href="https://github.com/bethanyj28"><code>@​bethanyj28</code></a> in <a href="https://redirect.github.com/actions/upload-artifact/pull/436">actions/upload-artifact#436</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/upload-artifact/compare/v3...v3.1.3">https://github.com/actions/upload-artifact/compare/v3...v3.1.3</a></p> <h2>v3.1.2</h2> <ul> <li>Update all <code>@actions/*</code> NPM packages to their latest versions- <a href="https://redirect.github.com/actions/upload-artifact/issues/374">#374</a></li> <li>Update all dev dependencies to their most recent versions - <a href="h… 2023-12-18T06:08:49Z 2024-01-04T22:40:26Z 2024-01-04T22:40:25Z 2024-01-04T22:40:25Z 4336b2eacbc9f8060ac86a57e4087709aec11bd5     0 bca5cdf20d5ee886fd5bacaf463ff7543e44dd0b 5f1f78fc3f3348dc1b85a6fff3c9ff3c25d5fa25 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/8557  
1699305451 PR_kwDOAMm_X85lSVfr 8678 closed 0 Bump the actions group with 1 update dependabot[bot] 49699333 Bumps the actions group with 1 update: [codecov/codecov-action](https://github.com/codecov/codecov-action). Updates `codecov/codecov-action` from 3.1.4 to 3.1.5 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v3.1.5</h2> <h2>What's Changed</h2> <ul> <li>action.yml: Update to Node.js 20 by <a href="https://github.com/hallabro"><code>@​hallabro</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1228">codecov/codecov-action#1228</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/hallabro"><code>@​hallabro</code></a> made their first contribution in <a href="https://redirect.github.com/codecov/codecov-action/pull/1228">codecov/codecov-action#1228</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v3.1.4...v3.1.5">https://github.com/codecov/codecov-action/compare/v3.1.4...v3.1.5</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md">codecov/codecov-action's changelog</a>.</em></p> <blockquote> <h2>4.0.0-beta.2</h2> <h3>Fixes</h3> <ul> <li><a href="https://redirect.github.com/codecov/codecov-action/issues/1085">#1085</a> not adding -n if empty to do-upload command</li> </ul> <h2>4.0.0-beta.1</h2> <p><code>v4</code> represents a move from the <a href="https://github.com/codecov/uploader">universal uploader</a> to the <a href="https://github.com/codecov/codecov-cli">Codecov CLI</a>. Although this will unlock new features for our users, the CLI is not yet at feature parity with the universal uploader.</p> <h3>Breaking Changes</h3> <ul> <li>No current support for <code>aarch64</code> and <code>alpine</code> architectures.</li> <li>Tokenless uploading is unsuported</li> <li>Various arguments to the Action have been removed</li> </ul> </blockquote> </details> <det… 2024-01-29T06:37:28Z 2024-01-29T19:27:12Z 2024-01-29T19:27:11Z 2024-01-29T19:27:11Z ee68a940d9e72e98aa118d3db3a82e139217ec6c     0 ad75fe18565158692954a71dccc0a15275b3daee e22b47511f4188e2203c5753de4a0a36094c2e83 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/8678  
1710949008 PR_kwDOAMm_X85l-wKQ 8706 closed 0 Bump the actions group with 1 update dependabot[bot] 49699333 Bumps the actions group with 1 update: [codecov/codecov-action](https://github.com/codecov/codecov-action). Updates `codecov/codecov-action` from 3.1.5 to 4.0.1 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v4.0.1</h2> <h2>What's Changed</h2> <ul> <li>Update README.md by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1243">codecov/codecov-action#1243</a></li> <li>Add all args by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1245">codecov/codecov-action#1245</a></li> <li>fix: show both token uses in readme by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1250">codecov/codecov-action#1250</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v4.0.0...v4.0.1">https://github.com/codecov/codecov-action/compare/v4.0.0...v4.0.1</a></p> <h2>v4.0.0</h2> <p>v4 of the Codecov Action uses the <a href="https://docs.codecov.com/docs/the-codecov-cli">CLI</a> as the underlying upload. The CLI has helped to power new features including local upload, the global upload token, and new upcoming features.</p> <h2>Breaking Changes</h2> <ul> <li>The Codecov Action runs as a <code>node20</code> action due to <code>node16</code> deprecation. See <a href="https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/">this post from GitHub</a> on how to migrate.</li> <li>Tokenless uploading is unsupported. However, PRs made from forks to the upstream public repos will support tokenless (e.g. contributors to OS projects do not need the upstream repo's Codecov token). This <a href="htt… 2024-02-05T06:04:43Z 2024-02-06T16:02:56Z 2024-02-06T16:02:55Z 2024-02-06T16:02:55Z f33a632bf87ec29dd9346f9b01ad4eec2194f72a     0 b37982b404d83f31599c7ee53a51363158388813 618015293f6b58eabc586da02a69de846fcbafd5 CONTRIBUTOR 
{
    "enabled_by": {
        "login": "max-sixty",
        "id": 5635139,
        "node_id": "MDQ6VXNlcjU2MzUxMzk=",
        "avatar_url": "https://avatars.githubusercontent.com/u/5635139?v=4",
        "gravatar_id": "",
        "url": "https://api.github.com/users/max-sixty",
        "html_url": "https://github.com/max-sixty",
        "followers_url": "https://api.github.com/users/max-sixty/followers",
        "following_url": "https://api.github.com/users/max-sixty/following{/other_user}",
        "gists_url": "https://api.github.com/users/max-sixty/gists{/gist_id}",
        "starred_url": "https://api.github.com/users/max-sixty/starred{/owner}{/repo}",
        "subscriptions_url": "https://api.github.com/users/max-sixty/subscriptions",
        "organizations_url": "https://api.github.com/users/max-sixty/orgs",
        "repos_url": "https://api.github.com/users/max-sixty/repos",
        "events_url": "https://api.github.com/users/max-sixty/events{/privacy}",
        "received_events_url": "https://api.github.com/users/max-sixty/received_events",
        "type": "User",
        "site_admin": false
    },
    "merge_method": "squash",
    "commit_title": "Bump the actions group with 1 update (#8706)",
    "commit_message": "Bumps the actions group with 1 update: [codecov/codecov-action](https://github.com/codecov/codecov-action).\r\n\r\n\r\nUpdates `codecov/codecov-action` from 3.1.5 to 4.0.1\r\n- [Release notes](https://github.com/codecov/codecov-action/releases)\r\n- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)\r\n- [Commits](https://github.com/codecov/codecov-action/compare/v3.1.5...v4.0.1)\r\n\r\n---\r\nupdated-dependencies:\r\n- dependency-name: codecov/codecov-action\r\n  dependency-type: direct:production\r\n  update-type: version-update:semver-major\r\n  dependency-group: actions\r\n...\r\n\r\nSigned-off-by: dependabot[bot] <support@github.com>\r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>"
}
 xarray 13221727 https://github.com/pydata/xarray/pull/8706  
1742677391 PR_kwDOAMm_X85n3yWP 8785 closed 0 Bump the actions group with 2 updates dependabot[bot] 49699333 Bumps the actions group with 2 updates: [codecov/codecov-action](https://github.com/codecov/codecov-action) and [scientific-python/upload-nightly-action](https://github.com/scientific-python/upload-nightly-action). Updates `codecov/codecov-action` from 4.0.1 to 4.0.2 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v4.0.2</h2> <h2>What's Changed</h2> <ul> <li>Update README.md by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1251">codecov/codecov-action#1251</a></li> <li>build(deps-dev): bump <code>@​types/jest</code> from 29.5.11 to 29.5.12 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1257">codecov/codecov-action#1257</a></li> <li>build(deps): bump github/codeql-action from 3.23.2 to 3.24.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1266">codecov/codecov-action#1266</a></li> <li>Escape pipes in table of arguments by <a href="https://github.com/jwodder"><code>@​jwodder</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1265">codecov/codecov-action#1265</a></li> <li>Add link to docs on Dependabot secrets by <a href="https://github.com/ianlewis"><code>@​ianlewis</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1260">codecov/codecov-action#1260</a></li> <li>fix: working-directory input for all stages by <a href="https://github.com/Bo98"><code>@​Bo98</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1272">codecov/codecov-action#1272</a></li> <li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from 6.20.0 to 6.21.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code… 2024-02-26T06:29:23Z 2024-02-26T07:00:03Z 2024-02-26T07:00:02Z 2024-02-26T07:00:02Z 0ec19123dffb4e4fbd83be21de9bbc57159e2d55     0 91fcb26ed25c64748f51b84a3578c6e46104300e f63ec87476db065a58d423670b8829abc8d1e746 CONTRIBUTOR 
{
    "enabled_by": {
        "login": "max-sixty",
        "id": 5635139,
        "node_id": "MDQ6VXNlcjU2MzUxMzk=",
        "avatar_url": "https://avatars.githubusercontent.com/u/5635139?v=4",
        "gravatar_id": "",
        "url": "https://api.github.com/users/max-sixty",
        "html_url": "https://github.com/max-sixty",
        "followers_url": "https://api.github.com/users/max-sixty/followers",
        "following_url": "https://api.github.com/users/max-sixty/following{/other_user}",
        "gists_url": "https://api.github.com/users/max-sixty/gists{/gist_id}",
        "starred_url": "https://api.github.com/users/max-sixty/starred{/owner}{/repo}",
        "subscriptions_url": "https://api.github.com/users/max-sixty/subscriptions",
        "organizations_url": "https://api.github.com/users/max-sixty/orgs",
        "repos_url": "https://api.github.com/users/max-sixty/repos",
        "events_url": "https://api.github.com/users/max-sixty/events{/privacy}",
        "received_events_url": "https://api.github.com/users/max-sixty/received_events",
        "type": "User",
        "site_admin": false
    },
    "merge_method": "squash",
    "commit_title": "Bump the actions group with 2 updates (#8785)",
    "commit_message": "Bumps the actions group with 2 updates: [codecov/codecov-action](https://github.com/codecov/codecov-action) and [scientific-python/upload-nightly-action](https://github.com/scientific-python/upload-nightly-action).\r\n\r\n\r\nUpdates `codecov/codecov-action` from 4.0.1 to 4.0.2\r\n- [Release notes](https://github.com/codecov/codecov-action/releases)\r\n- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)\r\n- [Commits](https://github.com/codecov/codecov-action/compare/v4.0.1...v4.0.2)\r\n\r\nUpdates `scientific-python/upload-nightly-action` from 0.3.0 to 0.5.0\r\n- [Release notes](https://github.com/scientific-python/upload-nightly-action/releases)\r\n- [Commits](https://github.com/scientific-python/upload-nightly-action/compare/6e9304f7a3a5501c6f98351537493ec898728299...b67d7fcc0396e1128a474d1ab2b48aa94680f9fc)\r\n\r\n---\r\nupdated-dependencies:\r\n- dependency-name: codecov/codecov-action\r\n  dependency-type: direct:production\r\n  update-type: version-update:semver-patch\r\n  dependency-group: actions\r\n- dependency-name: scientific-python/upload-nightly-action\r\n  dependency-type: direct:production\r\n  update-type: version-update:semver-minor\r\n  dependency-group: actions\r\n...\r\n\r\nSigned-off-by: dependabot[bot] <support@github.com>\r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>"
}
 xarray 13221727 https://github.com/pydata/xarray/pull/8785  
1753987201 PR_kwDOAMm_X85oi7iB 8804 closed 0 Bump the actions group with 2 updates dependabot[bot] 49699333 Bumps the actions group with 2 updates: [codecov/codecov-action](https://github.com/codecov/codecov-action) and [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish). Updates `codecov/codecov-action` from 4.0.2 to 4.1.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v4.1.0</h2> <h2>What's Changed</h2> <ul> <li>fix: set safe directory by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1304">codecov/codecov-action#1304</a></li> <li>build(deps): bump github/codeql-action from 3.24.3 to 3.24.5 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1306">codecov/codecov-action#1306</a></li> <li>build(deps-dev): bump eslint from 8.56.0 to 8.57.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1305">codecov/codecov-action#1305</a></li> <li>chore(release): v4.1.0 by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1307">codecov/codecov-action#1307</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v4.0.2...v4.1.0">https://github.com/codecov/codecov-action/compare/v4.0.2...v4.1.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/codecov/codecov-action/commit/54bcd8715eee62d40e33596ef5e8f0f48dbbccab"><code>54bcd87</code></a> chore(release): v4.1.0 (<a href="https://redirect.github.com/codecov/codecov-action/issues/1307">#1307</a>)</li> <li><a href="https://github.com/codecov/codecov-action/commit/8ba77ef8d7b55bda0f69297c841058adf8459f89"><code>8ba77ef</co… 2024-03-04T06:14:58Z 2024-03-04T18:42:55Z 2024-03-04T18:42:54Z 2024-03-04T18:42:54Z 160fbf8e7752921301a30c3b54b18a5de46fcf6d     0 35b06af851b9ac188ff3aa68fb0eeb22246b3776 604bb6d08b942f774a3ba2a2900061959d2e091d CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/8804  
1764961870 PR_kwDOAMm_X85pMy5O 8818 closed 0 Bump the actions group with 1 update dependabot[bot] 49699333 Bumps the actions group with 1 update: [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish). Updates `pypa/gh-action-pypi-publish` from 1.8.12 to 1.8.14 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.8.14</h2> <h2>🛠️ Internal Dependencies</h2> <p>Nothing changed feature-wise. The only notable update is that the underlying container runtime now uses Python 3.12 and pip has been updated to v24.0 there. This is should go unnoticed in terms of behavior. It's just a bit of maintenance burden to be done occasionally by <a href="https://github.com/webknjaz"><code>@​webknjaz</code></a><a href="https://github.com/sponsors/webknjaz">💰</a>. <em>Enjoy!</em></p> <p><strong>🪞 Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.13...v1.8.14">https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.13...v1.8.14</a></p> <p><strong>🧔‍♂️ Release Manager:</strong> <a href="https://github.com/sponsors/webknjaz"><code>@​webknjaz 🇺🇦</code></a></p> <h2>v1.8.13</h2> <h2>🐛 What's Fixed</h2> <p>This action is now able to consume and publish distribution packages with <code>Metadata-Version: 2.3</code> embedded.</p> <h2>🛠️ Internal Dependencies</h2> <p><a href="https://github.com/SigureMo"><code>@​SigureMo</code></a><a href="https://github.com/sponsors/SigureMo">💰</a> sent us a bump of <code>pkginfo</code> version to version 1.10.0 in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/219">#219</a>. It's a transitive dependency for us and is not an API-level change but upgrading it has a side effect of letting Twine recognize distribution packages <a href="https://packaging.python.org/en/latest/specifications/core-metadata/">declaring <code>Metadata-Version: 2.3</code></a>. In particular, it is known to affect distributions built with <code>Maturin &gt;= 1.5.0</code>.</p> <p>Following that, <a href="htt… 2024-03-11T06:21:39Z 2024-03-11T07:00:10Z 2024-03-11T07:00:10Z 2024-03-11T07:00:09Z 90e00f0022c8d1871f441470d08c79bb3b03c164     0 b754a024e5f390f982cac8342a0e4f42d4cd3feb c919739fe6b2cdd46887dda90dcc50cb22996fe5 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/8818  
1799926450 PR_kwDOAMm_X85rSLKy 8896 closed 0 Bump the actions group with 1 update dependabot[bot] 49699333 Bumps the actions group with 1 update: [codecov/codecov-action](https://github.com/codecov/codecov-action). Updates `codecov/codecov-action` from 4.1.0 to 4.1.1 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v4.1.1</h2> <h2>What's Changed</h2> <ul> <li>build(deps): bump github/codeql-action from 3.24.5 to 3.24.6 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1315">codecov/codecov-action#1315</a></li> <li>build(deps-dev): bump typescript from 5.3.3 to 5.4.2 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1319">codecov/codecov-action#1319</a></li> <li>Removed mention of Mercurial by <a href="https://github.com/drazisil-codecov"><code>@​drazisil-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1325">codecov/codecov-action#1325</a></li> <li>build(deps): bump github/codeql-action from 3.24.6 to 3.24.7 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1332">codecov/codecov-action#1332</a></li> <li>build(deps): bump actions/checkout from 4.1.1 to 4.1.2 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1331">codecov/codecov-action#1331</a></li> <li>fix: force version by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1329">codecov/codecov-action#1329</a></li> <li>build(deps-dev): bump typescript from 5.4.2 to 5.4.3 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1334">codecov/codeco… 2024-04-01T06:50:24Z 2024-04-01T18:02:56Z 2024-04-01T18:02:56Z 2024-04-01T18:02:56Z 7e2415012226fe50ed8e1cdefbc073a78b592418     0 cfbb8905c58e424e7a4cf9e221e247ed3029c653 b80260781ee19bddee01ef09ac0da31ec12c5152 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/8896  
1811351701 PR_kwDOAMm_X85r9wiV 8918 closed 0 Bump codecov/codecov-action from 4.1.1 to 4.2.0 in the actions group dependabot[bot] 49699333 Bumps the actions group with 1 update: [codecov/codecov-action](https://github.com/codecov/codecov-action). Updates `codecov/codecov-action` from 4.1.1 to 4.2.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v4.2.0</h2> <h2>What's Changed</h2> <ul> <li>chore(deps): update deps by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1351">codecov/codecov-action#1351</a></li> <li>feat: allow for authentication via OIDC token by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1330">codecov/codecov-action#1330</a></li> <li>fix: use_oidc shoudl be required false by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1353">codecov/codecov-action#1353</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v4.1.1...v4.2.0">https://github.com/codecov/codecov-action/compare/v4.1.1...v4.2.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/codecov/codecov-action/commit/7afa10ed9b269c561c2336fd862446844e0cbf71"><code>7afa10e</code></a> fix: use_oidc shoudl be required false (<a href="https://redirect.github.com/codecov/codecov-action/issues/1353">#1353</a>)</li> <li><a href="https://github.com/codecov/codecov-action/commit/d820d60619df930d5a859db2d0d77ba93f9d1702"><code>d820d60</code></a> feat: allow for authentication via OIDC token (<a href="https://redirect.github.com/codecov/codecov-action/issues/1330">#1330</a>)</li> <li><a href="https://github.com/codecov/codecov-action/commit/3a20752bddc7bf9bbce2c747f45ff99d337b9690"><code>3a20752</code></a> chore(deps)… 2024-04-08T06:21:47Z 2024-04-08T16:31:12Z 2024-04-08T16:31:11Z 2024-04-08T16:31:11Z 07c7f969fe879af7a871374209957d5cd1ddb5aa     0 ab2fee99dad63bf36f24bef5630bda6e9cc394fc 3c98570d3c622bd0982f7f8915366fbbbc70ca83 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/8918  
1822484839 PR_kwDOAMm_X85soOln 8943 closed 0 Bump codecov/codecov-action from 4.2.0 to 4.3.0 in the actions group dependabot[bot] 49699333 Bumps the actions group with 1 update: [codecov/codecov-action](https://github.com/codecov/codecov-action). Updates `codecov/codecov-action` from 4.2.0 to 4.3.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v4.3.0</h2> <h2>What's Changed</h2> <ul> <li>fix: automatically detect if using GitHub enterprise by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1356">codecov/codecov-action#1356</a></li> <li>build(deps-dev): bump typescript from 5.4.3 to 5.4.4 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1355">codecov/codecov-action#1355</a></li> <li>build(deps): bump github/codeql-action from 3.24.9 to 3.24.10 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1360">codecov/codecov-action#1360</a></li> <li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code> from 7.5.0 to 7.6.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1364">codecov/codecov-action#1364</a></li> <li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from 7.5.0 to 7.6.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1363">codecov/codecov-action#1363</a></li> <li>feat: add network params by <a href="https://github.com/thomasrockhu-codecov"><code>@​thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1365">codecov/codecov-action#1365</a></li> <li>build(deps): bump undici from 5.28.3 to 5.28.4 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> … 2024-04-15T06:04:28Z 2024-04-15T19:16:38Z 2024-04-15T19:16:38Z 2024-04-15T19:16:38Z 2b2de81ba55a6b302fc4a5d174d7c2b2f05ca9d4     0 96d0a36d035dea086f1584edd7c7297c64c7f769 b004af5174a4b0e32519df792a4f625d5548a9f0 CONTRIBUTOR   xarray 13221727 https://github.com/pydata/xarray/pull/8943  

Advanced export

JSON shape: default, array, newline-delimited, object

CSV options: 

CREATE TABLE [pull_requests] (
   [id] INTEGER PRIMARY KEY,
   [node_id] TEXT,
   [number] INTEGER,
   [state] TEXT,
   [locked] INTEGER,
   [title] TEXT,
   [user] INTEGER REFERENCES [users]([id]),
   [body] TEXT,
   [created_at] TEXT,
   [updated_at] TEXT,
   [closed_at] TEXT,
   [merged_at] TEXT,
   [merge_commit_sha] TEXT,
   [assignee] INTEGER REFERENCES [users]([id]),
   [milestone] INTEGER REFERENCES [milestones]([id]),
   [draft] INTEGER,
   [head] TEXT,
   [base] TEXT,
   [author_association] TEXT,
   [auto_merge] TEXT,
   [repo] INTEGER REFERENCES [repos]([id]),
   [url] TEXT,
   [merged_by] INTEGER REFERENCES [users]([id])
);
CREATE INDEX [idx_pull_requests_merged_by]
    ON [pull_requests] ([merged_by]);
CREATE INDEX [idx_pull_requests_repo]
    ON [pull_requests] ([repo]);
CREATE INDEX [idx_pull_requests_milestone]
    ON [pull_requests] ([milestone]);
CREATE INDEX [idx_pull_requests_assignee]
    ON [pull_requests] ([assignee]);
CREATE INDEX [idx_pull_requests_user]
    ON [pull_requests] ([user]);