Merge pull request #136 from git-for-windows/dependabot/github_actions/actions/github-script-8

rimrul · web-flow · commit b0fe5fa45a0a · 2025-09-08T06:31:33.000+02:00
build(deps): bump actions/github-script from 7 to 8
diff --git a/.github/workflows/build-and-deploy.yml b/.github/workflows/build-and-deploy.yml
@@ -65,7 +65,7 @@ jobs:
 
       - name: Identify actor
         id: actor
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const githubApiRequest = require('./github-api-request')
diff --git a/.github/workflows/create-azure-self-hosted-runners.yml b/.github/workflows/create-azure-self-hosted-runners.yml
@@ -97,7 +97,7 @@ jobs:
     - uses: actions/checkout@v5
     - name: Obtain installation token
       id: setup
-      uses: actions/github-script@v7
+      uses: actions/github-script@v8
       with:
         script: |
           const appId = ${{ secrets.GH_APP_ID }}
diff --git a/.github/workflows/git-artifacts.yml b/.github/workflows/git-artifacts.yml
@@ -81,7 +81,7 @@ jobs:
           echo "GIT_REV=$(git rev-parse --verify "refs/tags/$EXISTING_GIT_TAG"^0)" >>$GITHUB_ENV
       - name: wait if workflow run has not finished yet
         if: env.TAG_GIT_WORKFLOW_RUN_ID != ''
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const { waitForWorkflowRunToFinish } = require('./workflow-runs')
@@ -93,7 +93,7 @@ jobs:
               process.env.TAG_GIT_WORKFLOW_RUN_ID
             )
       - name: Get bundle-artifacts download URL
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         if: env.TAG_GIT_WORKFLOW_RUN_ID != ''
         id: get-bundle-artifacts-url
         with:
@@ -189,7 +189,7 @@ jobs:
           flavor: build-installers
           architecture: ${{env.architecture}}
       - name: Create artifact build matrix
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         id: artifact-build-matrix
         with:
           script: |
@@ -484,7 +484,7 @@ jobs:
           repositories: ${{ env.REPO }}
       - name: Add a PR comment suggesting to validate the installer manually
         if: matrix.artifact.name == 'installer' && github.event.inputs.architecture == 'x86_64'
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           github-token: ${{ steps.pr-comment-token.outputs.token }}
           script: |
@@ -577,7 +577,7 @@ jobs:
     needs: ['pkg', 'artifacts']
     steps:
       - name: gather all SHA-256 checksums
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         env:
           SHA256SUMS: ${{ toJSON(needs.artifacts.outputs) }}
         with:
diff --git a/.github/workflows/open-pr.yml b/.github/workflows/open-pr.yml
@@ -55,7 +55,7 @@ jobs:
         # act as that App in repository secrets `GH_APP_ID`, `GH_APP_PRIVATE_KEY`.
       - name: Obtain installation token
         id: setup
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const appId = ${{ secrets.GH_APP_ID }}
@@ -89,7 +89,7 @@ jobs:
           git clone --depth 1 --single-branch -b main "https://github.com/$OWNER/$REPO" "/usr/src/$REPO"
       - name: Identify actor
         id: actor
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const githubApiRequest = require('./github-api-request')
@@ -165,7 +165,7 @@ jobs:
           git -c http.extraHeader="Authorization: Basic $auth" push --force origin HEAD:refs/heads/$PACKAGE_TO_UPGRADE-$UPGRADE_TO_VERSION
       - name: open PR
         if: steps.update.outputs.modified == 'true'
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           github-token: ${{ steps.setup.outputs.token }}
           script: |
diff --git a/.github/workflows/prepare-embargoed-branches.yml b/.github/workflows/prepare-embargoed-branches.yml
@@ -22,7 +22,7 @@ jobs:
       - uses: actions/checkout@v5
       - name: identify actor
         id: actor
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const githubApiRequest = require('./github-api-request')
@@ -45,7 +45,7 @@ jobs:
           git config --global credential.helper '' &&
           git config --global --add credential.helper cache
       - name: configure push token
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const { callGit, getPushAuthorizationHeader } = require('./repository-updates.js')
diff --git a/.github/workflows/release-git.yml b/.github/workflows/release-git.yml
@@ -37,7 +37,7 @@ jobs:
     steps:
       - uses: actions/checkout@v5
       - name: The `release` branch must be up to date
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const sha = await (async () => {
@@ -82,7 +82,7 @@ jobs:
             }
       - name: Get bundle-artifacts and sha256sums
         id: bundle-artifacts
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const { downloadBundleArtifacts } = require('./github-release')
@@ -119,7 +119,7 @@ jobs:
           path: bundle-artifacts/announce-*
       - name: Prepare a comment about the announcement email to the Pull Request
         id: announcement
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const gitSHA = ${{ toJson(steps.bundle-artifacts.outputs.git-rev) }}
diff --git a/.github/workflows/tag-git.yml b/.github/workflows/tag-git.yml
@@ -38,7 +38,7 @@ jobs:
     steps:
       - name: 'Determine tip commit'
         if: env.REV == 'main'
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             if (process.env.SNAPSHOT === '') throw new Error(`Non-snapshot build on the 'main' branch is not supported.`)
diff --git a/.github/workflows/updpkgsums.yml b/.github/workflows/updpkgsums.yml
@@ -37,7 +37,7 @@ jobs:
         # act as that App in repository secrets `GH_APP_ID`, `GH_APP_PRIVATE_KEY`.
       - name: Obtain installation token
         id: setup
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const appId = ${{ secrets.GH_APP_ID }}
@@ -78,7 +78,7 @@ jobs:
           echo "result=$(cygpath -aw "/usr/src/$REPO")" >>$GITHUB_OUTPUT
       - name: Determine modified packages
         id: determine-packages
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         env:
           WORKTREE_PATH: '${{ steps.clone.outputs.result }}'
         with:
@@ -104,7 +104,7 @@ jobs:
       - name: Identify actor
         if: steps.determine-packages.outputs.result != ''
         id: actor
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const githubApiRequest = require('./github-api-request')
@@ -175,7 +175,7 @@ jobs:
         # out where "there" is.
         if: steps.update.outputs.modified == 'true'
         id: determine-repository
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const githubApiRequest = require('./github-api-request')
diff --git a/.github/workflows/upload-snapshot.yml b/.github/workflows/upload-snapshot.yml
@@ -32,7 +32,7 @@ jobs:
       - uses: actions/checkout@v5
       - name: download `bundle-artifacts`
         id: bundle-artifacts
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const {
@@ -95,7 +95,7 @@ jobs:
           details-url: "https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id}}"
       - name: download remaining artifacts
         id: download-artifacts
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const {
@@ -148,7 +148,7 @@ jobs:
           append-text: 'Downloaded all artifacts'
       - name: validate
         id: validate
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const fs = require('fs')
@@ -175,7 +175,7 @@ jobs:
             }
       - name: configure token
         id: snapshots-token
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           result-encoding: string
           script: |
@@ -196,7 +196,7 @@ jobs:
             ]))
             return Buffer.from(header.replace(/^Authorization: Basic /, ''), 'base64').toString('utf-8').replace(/^PAT:/, '')
       - name: figure out if we need to push commits
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             // Since `git-snapshots` is a fork, and forks share the same object store, we can
@@ -249,7 +249,7 @@ jobs:
           path: gh-pages
           token: ${{ steps.snapshots-token.outputs.result }}
       - name: update index.html
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           script: |
             const urlPrefix = `${{ github.server_url }}/${{ env.OWNER }}/${{ env.SNAPSHOTS_REPO }}/releases/download/${{ steps.bundle-artifacts.outputs.ver }}/`
