Skip to content

chore(deps): bump azure/setup-helm from 4 to 5#13

Open
dependabot[bot] wants to merge 5 commits into
mainfrom
dependabot/github_actions/azure/setup-helm-5
Open

chore(deps): bump azure/setup-helm from 4 to 5#13
dependabot[bot] wants to merge 5 commits into
mainfrom
dependabot/github_actions/azure/setup-helm-5

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 23, 2026

Copy link
Copy Markdown
Contributor

Bumps azure/setup-helm from 4 to 5.

Release notes

Sourced from azure/setup-helm's releases.

v5.0.0

Changed

v4.3.1

Changed

Added

v4.3.0

  • #152 feat: log when restoring from cache
  • #157 Dependencies Update
  • #137 Add dependabot

v4.2.0

  • #124 Fix OS detection and download OS-native archive extension

v4.1.0

  • #130 switches to use Helm published file to read latest version instead of using GitHub releases
Changelog

Sourced from azure/setup-helm's changelog.

[4.3.0] - 2025-02-15

  • #152 feat: log when restoring from cache
  • #157 Dependencies Update
  • #137 Add dependabot

[4.2.0] - 2024-04-15

  • #124 Fix OS detection and download OS-native archive extension

[4.1.0] - 2024-03-01

  • #130 switches to use Helm published file to read latest version instead of using GitHub releases

[4.0.0] - 2024-02-12

  • #121 update to node20 as node16 is deprecated
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jun 23, 2026
spidy and others added 5 commits June 28, 2026 12:54
- Shared: RunCommandResponse fields for truncated/timed_out/duration_ms
- Agent: bounded capture with PGID tracking and output limit
- Server: RunCommand-based API exec with output collection
bump server: sanitize command string before writing to audit log.
Strip control characters, truncate to 512 chars to prevent log injection.
Require explicit trusted-proxy configuration, remove the example administrator login, and build the Kubernetes agent from the committed workspace lock. Helm now refuses implicit default service accounts and drops unused ConfigMap privileges. Update component pointers and prune vulnerable or unmaintained dependency paths.
Use the default GitHub token for public recursive submodules so Dependabot pull requests can run without repository secrets. Include the server workspace member in the Kubernetes agent image checkout and trigger paths because its manifest is required by the hardened Docker build.
Bumps [azure/setup-helm](https://github.com/azure/setup-helm) from 4 to 5.
- [Release notes](https://github.com/azure/setup-helm/releases)
- [Changelog](https://github.com/Azure/setup-helm/blob/main/CHANGELOG.md)
- [Commits](Azure/setup-helm@v4...v5)

---
updated-dependencies:
- dependency-name: azure/setup-helm
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@sppidy sppidy force-pushed the dependabot/github_actions/azure/setup-helm-5 branch from 446727c to 9aaba8c Compare June 30, 2026 23:44
@sppidy sppidy force-pushed the main branch 2 times, most recently from 5c59612 to ef35864 Compare July 3, 2026 18:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant