build-push-action

Merge pull request #1533 from docker/dependabot/npm_and_yarn/tar-7.5.15

chore(deps): Bump tar from 6.2.1 to 7.5.15

CrazyMax · 2026-05-21 16:45:18 +02:00

d7cd9d7a35

Merge pull request #1534 from docker/dependabot/npm_and_yarn/brace-expansion-5.0.6

chore(deps): Bump brace-expansion from 2.0.2 to 5.0.6

CrazyMax · 2026-05-21 16:41:57 +02:00

157becc75e

Merge pull request #1531 from docker/dependabot/github_actions/crazy-max-dot-github-6667ecc476

chore(deps): Bump the crazy-max-dot-github group with 2 updates

CrazyMax · 2026-05-21 16:26:51 +02:00

5ae6a4a064

Merge pull request #1532 from docker/dependabot/github_actions/actions/create-github-app-token-3.2.0

chore(deps): Bump actions/create-github-app-token from 3.1.1 to 3.2.0

CrazyMax · 2026-05-21 16:26:28 +02:00

422287b25a

Merge pull request #1535 from docker/dependabot/github_actions/github/codeql-action-4.35.5

chore(deps): Bump github/codeql-action from 4.35.1 to 4.35.5

CrazyMax · 2026-05-21 16:25:59 +02:00

af6a07f739

Merge pull request #1536 from docker/dependabot/github_actions/codecov/codecov-action-6.0.1

chore(deps): Bump codecov/codecov-action from 6.0.0 to 6.0.1

CrazyMax · 2026-05-21 16:24:51 +02:00

3d01f53c7b

Merge pull request #1537 from crazy-max/zizmor-fixes

ci: restrict update-dist GitHub App token scope

CrazyMax · 2026-05-21 14:57:22 +02:00

e46f50c06e

ci: restrict update-dist GitHub App token scope

Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>

CrazyMax · 2026-05-21 14:23:33 +02:00

69b698e993

chore(deps): Bump codecov/codecov-action from 6.0.0 to 6.0.1

Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 6.0.0 to 6.0.1.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/codecov/codecov-action/compare/57e3a136b779b570ffcdbf80b3bdc90e7fab3de2...e79a6962e0d4c0c17b229090214935d2e33f8354)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-version: 6.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-05-20 17:44:10 +00:00

f8538d20fd

chore(deps): Bump github/codeql-action from 4.35.1 to 4.35.5

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.35.1 to 4.35.5.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/c10b8064de6f491fea524254123dbe5e09572f13...9e0d7b8d25671d64c341c19c0152d693099fb5ba)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.35.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-05-18 21:19:09 +00:00

c39566cf62

chore: update generated content

github-actions[bot] · 2026-05-18 16:49:19 +00:00

c707ca9135

chore(deps): Bump brace-expansion from 2.0.2 to 5.0.6

Bumps [brace-expansion](https://github.com/juliangruber/brace-expansion) from 2.0.2 to 5.0.6.
- [Release notes](https://github.com/juliangruber/brace-expansion/releases)
- [Commits](https://github.com/juliangruber/brace-expansion/compare/v2.0.2...v5.0.6)

---
updated-dependencies:
- dependency-name: brace-expansion
  dependency-version: 5.0.6
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-05-18 16:48:14 +00:00

ffa52ef3ea

chore(deps): Bump tar from 6.2.1 to 7.5.15

Bumps [tar](https://github.com/isaacs/node-tar) from 6.2.1 to 7.5.15.
- [Release notes](https://github.com/isaacs/node-tar/releases)
- [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md)
- [Commits](https://github.com/isaacs/node-tar/compare/v6.2.1...v7.5.15)

---
updated-dependencies:
- dependency-name: tar
  dependency-version: 7.5.15
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-05-15 00:39:31 +00:00

7a8bc15c71

chore(deps): Bump actions/create-github-app-token from 3.1.1 to 3.2.0

Bumps [actions/create-github-app-token](https://github.com/actions/create-github-app-token) from 3.1.1 to 3.2.0.
- [Release notes](https://github.com/actions/create-github-app-token/releases)
- [Changelog](https://github.com/actions/create-github-app-token/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/create-github-app-token/compare/1b10c78c7865c340bc4f6099eb2f838309f1e8c3...bcd2ba49218906704ab6c1aa796996da409d3eb1)

---
updated-dependencies:
- dependency-name: actions/create-github-app-token
  dependency-version: 3.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-05-14 11:52:51 +00:00

f66d2d71bf

chore(deps): Bump the crazy-max-dot-github group with 2 updates

Bumps the crazy-max-dot-github group with 2 updates: [crazy-max/.github/.github/workflows/pr-assign-author.yml](https://github.com/crazy-max/.github) and [crazy-max/.github/.github/workflows/zizmor.yml](https://github.com/crazy-max/.github).


Updates `crazy-max/.github/.github/workflows/pr-assign-author.yml` from 1.7.1 to 1.8.0
- [Release notes](https://github.com/crazy-max/.github/releases)
- [Commits](https://github.com/crazy-max/.github/compare/64a0bfaf6e6bb1c448d6e4c42b11034ee7094f16...9ba6e6f9450baf3b1237f8035c1fdc45932510bd)

Updates `crazy-max/.github/.github/workflows/zizmor.yml` from 1.7.1 to 1.8.0
- [Release notes](https://github.com/crazy-max/.github/releases)
- [Commits](https://github.com/crazy-max/.github/compare/64a0bfaf6e6bb1c448d6e4c42b11034ee7094f16...9ba6e6f9450baf3b1237f8035c1fdc45932510bd)

---
updated-dependencies:
- dependency-name: crazy-max/.github/.github/workflows/pr-assign-author.yml
  dependency-version: 1.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: crazy-max-dot-github
- dependency-name: crazy-max/.github/.github/workflows/zizmor.yml
  dependency-version: 1.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: crazy-max-dot-github
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-05-12 17:51:43 +00:00

eef0e2e2ee

Merge pull request #1524 from docker/dependabot/github_actions/crazy-max-dot-github-a3893cf95f

chore(deps): Bump the crazy-max-dot-github group with 2 updates

CrazyMax · 2026-04-27 09:36:37 +02:00

789f686580

chore(deps): Bump postcss from 8.5.6 to 8.5.10

Bumps [postcss](https://github.com/postcss/postcss) from 8.5.6 to 8.5.10.
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](https://github.com/postcss/postcss/compare/8.5.6...8.5.10)

---
updated-dependencies:
- dependency-name: postcss
  dependency-version: 8.5.10
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-04-24 17:40:31 +00:00

152d4297d0

Merge pull request #1523 from crazy-max/esbuild

replace ncc with esbuild for action bundling

Tõnis Tiigi · 2026-04-24 10:38:43 -07:00

21f7630a74

chore(deps): Bump the crazy-max-dot-github group with 2 updates

Bumps the crazy-max-dot-github group with 2 updates: [crazy-max/.github/.github/workflows/pr-assign-author.yml](https://github.com/crazy-max/.github) and [crazy-max/.github/.github/workflows/zizmor.yml](https://github.com/crazy-max/.github).


Updates `crazy-max/.github/.github/workflows/pr-assign-author.yml` from 1.7.0 to 1.7.1
- [Release notes](https://github.com/crazy-max/.github/releases)
- [Commits](https://github.com/crazy-max/.github/compare/4a17dbaa9ce13920fc5bb8824eb89c16301e5ab2...64a0bfaf6e6bb1c448d6e4c42b11034ee7094f16)

Updates `crazy-max/.github/.github/workflows/zizmor.yml` from 1.7.0 to 1.7.1
- [Release notes](https://github.com/crazy-max/.github/releases)
- [Commits](https://github.com/crazy-max/.github/compare/4a17dbaa9ce13920fc5bb8824eb89c16301e5ab2...64a0bfaf6e6bb1c448d6e4c42b11034ee7094f16)

---
updated-dependencies:
- dependency-name: crazy-max/.github/.github/workflows/pr-assign-author.yml
  dependency-version: 1.7.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: crazy-max-dot-github
- dependency-name: crazy-max/.github/.github/workflows/zizmor.yml
  dependency-version: 1.7.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: crazy-max-dot-github
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-04-24 11:52:30 +00:00

3ff27d3602

replace ncc with esbuild for action bundling

Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>

CrazyMax · 2026-04-24 11:09:46 +02:00

d70693f4ae

Merge pull request #1519 from docker/dependabot/github_actions/actions/setup-node-6.4.0

chore(deps): Bump actions/setup-node from 6.3.0 to 6.4.0

CrazyMax · 2026-04-24 09:48:12 +02:00

e0fea16cbf

Merge pull request #1520 from docker/dependabot/github_actions/crazy-max-dot-github-6f136b1f9e

chore(deps): Bump the crazy-max-dot-github group with 2 updates

CrazyMax · 2026-04-24 09:46:03 +02:00

f832d4c773

chore(deps): Bump the crazy-max-dot-github group with 2 updates

Bumps the crazy-max-dot-github group with 2 updates: [crazy-max/.github/.github/workflows/pr-assign-author.yml](https://github.com/crazy-max/.github) and [crazy-max/.github/.github/workflows/zizmor.yml](https://github.com/crazy-max/.github).


Updates `crazy-max/.github/.github/workflows/pr-assign-author.yml` from 1.6.0 to 1.7.0
- [Release notes](https://github.com/crazy-max/.github/releases)
- [Commits](https://github.com/crazy-max/.github/compare/d89fe92d808a15e2b2ed5cdb62db7c172c31410d...4a17dbaa9ce13920fc5bb8824eb89c16301e5ab2)

Updates `crazy-max/.github/.github/workflows/zizmor.yml` from 1.6.0 to 1.7.0
- [Release notes](https://github.com/crazy-max/.github/releases)
- [Commits](https://github.com/crazy-max/.github/compare/d89fe92d808a15e2b2ed5cdb62db7c172c31410d...4a17dbaa9ce13920fc5bb8824eb89c16301e5ab2)

---
updated-dependencies:
- dependency-name: crazy-max/.github/.github/workflows/pr-assign-author.yml
  dependency-version: 1.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: crazy-max-dot-github
- dependency-name: crazy-max/.github/.github/workflows/zizmor.yml
  dependency-version: 1.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: crazy-max-dot-github
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-04-22 11:52:24 +00:00

17a24e14ed

chore(deps): Bump actions/setup-node from 6.3.0 to 6.4.0

Bumps [actions/setup-node](https://github.com/actions/setup-node) from 6.3.0 to 6.4.0.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/53b83947a5a98c8d113130e565377fae1a50d02f...48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-version: 6.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-04-21 11:52:31 +00:00

ad938becb9

Merge pull request #1516 from crazy-max/fix-zizmor

ci(zizmor): update rules

Tõnis Tiigi · 2026-04-15 14:25:13 -07:00

c269a24fa2

ci(zizmor): update rules

Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>

CrazyMax · 2026-04-15 16:01:32 +02:00

64fda479ac

Merge pull request #1514 from docker/dependabot/github_actions/actions/create-github-app-token-3.1.1

chore(deps): Bump actions/create-github-app-token from 3.0.0 to 3.1.1

CrazyMax · 2026-04-15 14:48:56 +02:00

c1d0c0cc42

Merge pull request #1515 from docker/dependabot/github_actions/actions/cache-5.0.5

chore(deps): Bump actions/cache from 5.0.4 to 5.0.5

CrazyMax · 2026-04-15 14:48:40 +02:00

d5c8665698

chore(deps): Bump actions/cache from 5.0.4 to 5.0.5

Bumps [actions/cache](https://github.com/actions/cache) from 5.0.4 to 5.0.5.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/668228422ae6a00e4ad889ee87cd7109ec5666a7...27d5ce7f107fe9357f9df03efb73ab90386fccae)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-version: 5.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-04-15 11:54:10 +00:00

e4086eff94

Merge pull request #1513 from docker/dependabot/github_actions/docker/bake-action-7.1.0

chore(deps): Bump docker/bake-action from 7.0.0 to 7.1.0

CrazyMax · 2026-04-14 10:54:30 +02:00

e6ed27f63f

chore(deps): Bump actions/create-github-app-token from 3.0.0 to 3.1.1

Bumps [actions/create-github-app-token](https://github.com/actions/create-github-app-token) from 3.0.0 to 3.1.1.
- [Release notes](https://github.com/actions/create-github-app-token/releases)
- [Commits](https://github.com/actions/create-github-app-token/compare/f8d387b68d61c58ab83c6c016672934102569859...1b10c78c7865c340bc4f6099eb2f838309f1e8c3)

---
updated-dependencies:
- dependency-name: actions/create-github-app-token
  dependency-version: 3.1.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-04-13 12:35:24 +00:00

dba6f6cfd6

chore(deps): Bump docker/bake-action from 7.0.0 to 7.1.0

Bumps [docker/bake-action](https://github.com/docker/bake-action) from 7.0.0 to 7.1.0.
- [Release notes](https://github.com/docker/bake-action/releases)
- [Commits](https://github.com/docker/bake-action/compare/82490499d2e5613fcead7e128237ef0b0ea210f7...a66e1c87e2eca0503c343edf1d208c716d54b8a8)

---
updated-dependencies:
- dependency-name: docker/bake-action
  dependency-version: 7.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-04-13 12:34:56 +00:00

4fc600fc62

Merge pull request #1509 from docker/dependabot/npm_and_yarn/vite-7.3.2

chore(deps): Bump vite from 7.3.1 to 7.3.2

CrazyMax · 2026-04-09 19:49:37 +02:00

v7.1.0 bcafcacb16

Merge pull request #1510 from docker/dependabot/npm_and_yarn/lodash-4.18.1

chore(deps): Bump lodash from 4.17.23 to 4.18.1

CrazyMax · 2026-04-09 19:48:40 +02:00

18e62f1158

chore: update generated content

github-actions[bot] · 2026-04-09 17:44:17 +00:00

46580d2c9d

chore(deps): Bump lodash from 4.17.23 to 4.18.1

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.23 to 4.18.1.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.23...4.18.1)

---
updated-dependencies:
- dependency-name: lodash
  dependency-version: 4.18.1
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-04-09 17:43:05 +00:00

3f80b252ca

Merge pull request #1505 from crazy-max/refactor-git-context

refactor: use new gitContext for build context resolution

CrazyMax · 2026-04-09 19:38:17 +02:00

efeec9557c

Merge pull request #1511 from docker/dependabot/github_actions/crazy-max-dot-github-f0991e81fd

chore(deps): Bump the crazy-max-dot-github group with 2 updates

CrazyMax · 2026-04-09 10:21:34 +02:00

ddf04b08eb

chore(deps): Bump the crazy-max-dot-github group with 2 updates

Bumps the crazy-max-dot-github group with 2 updates: [crazy-max/.github/.github/workflows/pr-assign-author.yml](https://github.com/crazy-max/.github) and [crazy-max/.github/.github/workflows/zizmor.yml](https://github.com/crazy-max/.github).


Updates `crazy-max/.github/.github/workflows/pr-assign-author.yml` from 1.3.0 to 1.6.0
- [Release notes](https://github.com/crazy-max/.github/releases)
- [Commits](https://github.com/crazy-max/.github/compare/bb328ea508cd6a89d0865555ddbeb148e5724aed...d89fe92d808a15e2b2ed5cdb62db7c172c31410d)

Updates `crazy-max/.github/.github/workflows/zizmor.yml` from 1.3.0 to 1.6.0
- [Release notes](https://github.com/crazy-max/.github/releases)
- [Commits](https://github.com/crazy-max/.github/compare/bb328ea508cd6a89d0865555ddbeb148e5724aed...d89fe92d808a15e2b2ed5cdb62db7c172c31410d)

---
updated-dependencies:
- dependency-name: crazy-max/.github/.github/workflows/pr-assign-author.yml
  dependency-version: 1.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: crazy-max-dot-github
- dependency-name: crazy-max/.github/.github/workflows/zizmor.yml
  dependency-version: 1.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: crazy-max-dot-github
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-04-09 08:17:23 +00:00

db08d97a08

Merge pull request #1508 from docker/dependabot/github_actions/docker/login-action-4.1.0

chore(deps): Bump docker/login-action from 4.0.0 to 4.1.0

CrazyMax · 2026-04-08 12:55:35 +02:00

ef1fb9688f

chore: update generated content

Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>

CrazyMax · 2026-04-08 12:50:34 +02:00

2d8f2a1a37

fix test since secrets are not written to temp path anymore

Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>

CrazyMax · 2026-04-08 12:49:36 +02:00

919ac7bd7d

refactor: use new gitContext for build context resolution

Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>

CrazyMax · 2026-04-08 12:49:35 +02:00

c850e6994a

bump @docker/actions-toolkit from 0.79.0 to 0.87.0

Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>

CrazyMax · 2026-04-08 12:49:35 +02:00

56795cf70a

chore(deps): Bump vite from 7.3.1 to 7.3.2

Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 7.3.1 to 7.3.2.
- [Release notes](https://github.com/vitejs/vite/releases)
- [Changelog](https://github.com/vitejs/vite/blob/v7.3.2/packages/vite/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite/commits/v7.3.2/packages/vite)

---
updated-dependencies:
- dependency-name: vite
  dependency-version: 7.3.2
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-04-06 21:43:23 +00:00

c991b20ccb

chore(deps): Bump docker/login-action from 4.0.0 to 4.1.0

Bumps [docker/login-action](https://github.com/docker/login-action) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/b45d80f862d83dbcd57f89517bcf500b2ab88fb2...4907a6ddec9925e35a0a9e82d7399ccc52663121)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-version: 4.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot[bot] · 2026-04-06 11:53:15 +00:00

e2565a753f

Merge pull request #1496 from docker/dependabot/npm_and_yarn/picomatch-4.0.4

chore(deps): Bump picomatch from 4.0.3 to 4.0.4

CrazyMax · 2026-04-01 15:17:17 +02:00

83bfd93ab4

Merge pull request #1497 from docker/dependabot/npm_and_yarn/handlebars-4.7.9

chore(deps): Bump handlebars from 4.7.8 to 4.7.9

CrazyMax · 2026-04-01 15:17:00 +02:00

a7d4e2ac29

Merge pull request #1504 from crazy-max/fix-update-dist

ci: stop update-dist reruns after generated dist pushes

CrazyMax · 2026-04-01 15:07:55 +02:00

00c4e32030

chore: update generated content

github-actions[bot] · 2026-04-01 11:04:06 +00:00

7144aa40aa

1263 Commits