build(deps): bump codecov/codecov-action from 4.6.0 to 5.0.2 by dependabot[bot] · Pull Request #805 · microsoft/sbom-tool (original) (raw)

Bumps codecov/codecov-action from 4.6.0 to 5.0.2.

Release notes

Sourced from codecov/codecov-action's releases.

v5.0.2

What's Changed

Full Changelog: codecov/codecov-action@v5.0.1...v5.0.2

v5.0.1

What's Changed

Full Changelog: codecov/codecov-action@v5.0.0...v5.0.1

v5.0.0

v5 Release

v5 of the Codecov GitHub Action will use the Codecov Wrapper to encapsulate the CLI. This will help ensure that the Action gets updates quicker.

Migration Guide

The v5 release also coincides with the opt-out feature for tokens for public repositories. In the Global Upload Token section of the settings page of an organization in codecov.io, you can set the ability for Codecov to receive a coverage reports from any source. This will allow contributors or other members of a repository to upload without needing access to the Codecov token. For more details see how to upload without a token.

[!WARNING]
The following arguments have been changed

  • file (this has been deprecated in favor of files)
  • plugin (this has been deprecated in favor of plugins)

The following arguments have been added:

You can see their usage in the action.yml file.

What's Changed

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: