Bump actions/setup-python from 5 to 6 by dependabot[bot] · Pull Request #3767 · codespell-project/codespell (original) (raw)
Bumps actions/setup-python from 5 to 6.
Release notes
Sourced from actions/setup-python's releases.
v6.0.0
What's Changed
Breaking Changes
- Upgrade to node 24 by @salmanmkc in actions/setup-python#1164
Make sure your runner is on version v2.327.1 or later to ensure compatibility with this release. See Release Notes
Enhancements:
- Add support for
pip-versionby @priyagupta108 in actions/setup-python#1129- Enhance reading from .python-version by @krystof-k in actions/setup-python#787
- Add version parsing from Pipfile by @aradkdj in actions/setup-python#1067
Bug fixes:
- Clarify pythonLocation behaviour for PyPy and GraalPy in environment variables by @aparnajyothi-y in actions/setup-python#1183
- Change missing cache directory error to warning by @aparnajyothi-y in actions/setup-python#1182
- Add Architecture-Specific PATH Management for Python with --user Flag on Windows by @aparnajyothi-y in actions/setup-python#1122
- Include python version in PyPy python-version output by @cdce8p in actions/setup-python#1110
- Update docs: clarification on pip authentication with setup-python by @priya-kinthali in actions/setup-python#1156
Dependency updates:
- Upgrade idna from 2.9 to 3.7 in /tests/data by @dependabot[bot] in actions/setup-python#843
- Upgrade form-data to fix critical vulnerabilities #182 & #183 by @aparnajyothi-y in actions/setup-python#1163
- Upgrade setuptools to 78.1.1 to fix path traversal vulnerability in PackageIndex.download by @aparnajyothi-y in actions/setup-python#1165
- Upgrade actions/checkout from 4 to 5 by @dependabot[bot] in actions/setup-python#1181
- Upgrade
@actions/tool-cachefrom 2.0.1 to 2.0.2 by @dependabot[bot] in actions/setup-python#1095New Contributors
- @krystof-k made their first contribution in actions/setup-python#787
- @cdce8p made their first contribution in actions/setup-python#1110
- @aradkdj made their first contribution in actions/setup-python#1067
Full Changelog: actions/setup-python@v5...v6.0.0
v5.6.0
What's Changed
- Workflow updates related to Ubuntu 20.04 by @aparnajyothi-y in actions/setup-python#1065
- Fix for Candidate Not Iterable Error by @aparnajyothi-y in actions/setup-python#1082
- Upgrade semver and
@types/semverby @dependabot in actions/setup-python#1091- Upgrade prettier from 2.8.8 to 3.5.3 by @dependabot in actions/setup-python#1046
- Upgrade ts-jest from 29.1.2 to 29.3.2 by @dependabot in actions/setup-python#1081
Full Changelog: actions/setup-python@v5...v5.6.0
v5.5.0
What's Changed
Enhancements:
- Support free threaded Python versions like '3.13t' by @colesbury in actions/setup-python#973
- Enhance Workflows: Include ubuntu-arm runners, Add e2e Testing for free threaded and Upgrade
@action/cachefrom 4.0.0 to 4.0.3 by @priya-kinthali in actions/setup-python#1056- Add support for .tool-versions file in setup-python by @mahabaleshwars in actions/setup-python#1043
Bug fixes:
- Fix architecture for pypy on Linux ARM64 by @mayeut in actions/setup-python#1011This update maps arm64 to aarch64 for Linux ARM64 PyPy installations.
... (truncated)
Commits
- e797f83 Upgrade to node 24 (#1164)
- 3d1e2d2 Revert "Enhance cache-dependency-path handling to support files outside the w...
- 65b0712 Clarify pythonLocation behavior for PyPy and GraalPy in environment variables...
- 5b668cf Bump actions/checkout from 4 to 5 (#1181)
- f62a0e2 Change missing cache directory error to warning (#1182)
- 9322b3c Upgrade setuptools to 78.1.1 to fix path traversal vulnerability in PackageIn...
- fbeb884 Bump form-data to fix critical vulnerabilities #182 & #183 (#1163)
- 03bb615 Bump idna from 2.9 to 3.7 in /tests/data (#843)
- 36da51d Add version parsing from Pipfile (#1067)
- 3c6f142 update documentation (#1156)
- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)