Skip to content

chore(deps): bump @actions/github from 8.0.1 to 9.1.1#1825

Closed
dependabot[bot] wants to merge 1 commit into
update-dependenciesfrom
dependabot/npm_and_yarn/update-dependencies/actions/github-9.1.1
Closed

chore(deps): bump @actions/github from 8.0.1 to 9.1.1#1825
dependabot[bot] wants to merge 1 commit into
update-dependenciesfrom
dependabot/npm_and_yarn/update-dependencies/actions/github-9.1.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 28, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps @actions/github from 8.0.1 to 9.1.1.

Changelog

Sourced from @​actions/github's changelog.

9.1.1

  • Bump undici from 6.23.0 to 6.24.0 #2346

9.1.0

  • Append actions_orchestration_id to user-agent when the ACTIONS_ORCHESTRATION_ID environment variable is set #2364

9.0.0

  • Breaking change: Package is now ESM-only
    • CommonJS consumers must use dynamic import() instead of require()
    • Example: const { getOctokit, context } = await import('@actions/github')
  • Fix TypeScript compilation by migrating to ESM, enabling proper imports from @octokit/core/types
Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels May 28, 2026
@dependabot dependabot Bot mentioned this pull request May 28, 2026
Closed
@socket-security

socket-security Bot commented May 28, 2026
edited
Loading

Copy link
Copy Markdown

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Added@​actions/​github@​9.1.19710010088100

View full report

@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/update-dependencies/actions/github-9.1.1 branch 3 times, most recently from 2c00a95 to 13fcfa8 Compare June 3, 2026 23:16
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/update-dependencies/actions/github-9.1.1 branch from 13fcfa8 to 66fde29 Compare June 16, 2026 07:59
@vio vio force-pushed the update-dependencies branch from a8b4c51 to 5c8faba Compare June 19, 2026 16:13
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/update-dependencies/actions/github-9.1.1 branch from 66fde29 to 6acf282 Compare June 19, 2026 16:15
Base automatically changed from update-dependencies to master June 22, 2026 20:36
@dependabot
chore(deps): bump @actions/github from 8.0.1 to 9.1.1
eb2dfac 
Bumps [@actions/github](https://github.com/actions/toolkit/tree/HEAD/packages/github) from 8.0.1 to 9.1.1.
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/github/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/github)

---
updated-dependencies:
- dependency-name: "@actions/github"
  dependency-version: 9.1.1
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the base branch from master to update-dependencies June 22, 2026 22:34
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/update-dependencies/actions/github-9.1.1 branch from 6acf282 to eb2dfac Compare June 22, 2026 22:34
@vio

vio commented Jun 26, 2026

Copy link
Copy Markdown
Member

@dependabot rebase

@vio vio closed this Jun 26, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jun 26, 2026

Copy link
Copy Markdown
Contributor Author

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot @github

dependabot Bot commented on behalf of github Jun 26, 2026

Copy link
Copy Markdown
Contributor Author

Looks like this PR is closed. If the branch still exists, you can re-open the PR and then use @dependabot rebase or @dependabot recreate. If the branch was deleted, Dependabot will create a new PR on the next scheduled run, or you can trigger an update from the Dependency graph page.

@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/update-dependencies/actions/github-9.1.1 branch June 26, 2026 17:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@vio