7 Commits

Author	SHA1	Message	Date
dependabot[bot]	42d3f893d9	build(deps): bump undici and @actions/github ... Bumps [undici](https://github.com/nodejs/undici) to 6.27.0 and updates ancestor dependency [@actions/github](https://github.com/actions/toolkit/tree/HEAD/packages/github). These dependencies need to be updated together. Updates `undici` from 6.26.0 to 6.27.0 - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](https://github.com/nodejs/undici/compare/v6.26.0...v6.27.0) Updates `@actions/github` from 7.0.0 to 9.1.1 - [Changelog](https://github.com/actions/toolkit/blob/main/packages/github/RELEASES.md) - [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/github) --- updated-dependencies: - dependency-name: undici dependency-version: 6.27.0 dependency-type: indirect - dependency-name: "@actions/github" dependency-version: 9.1.1 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>	2026-06-23 22:15:01 +00:00
Joel Male	0aba98e44b	fix: resolve security vulnerabilities in dependencies ... - Upgraded @actions/core 1.x -> 2.x (removes bundled vulnerable undici) - Upgraded @actions/github 6.x -> 7.x (ESM-compatible with ncc) - Upgraded @actions/http-client to ^4.0.1 - Upgraded @typescript-eslint/parser to ^7.x (matches plugin version) - Upgraded uuid dev dep to ^11.1.1 - Added npm overrides and yarn resolutions to pin undici >= 6.26.0, braces >= 3.0.3, micromatch >= 4.0.8 - Rebuilt dist with updated dependencies Resolves: undici CVE-2026-1526, CVE-2026-2229, braces CVE-2024-4068, micromatch CVE-2024-4067	2026-06-02 09:42:18 +10:00
Joel Male	14b045decf	feat: finish updates & adding github event support	2024-03-28 13:00:21 +10:00
Joel Male	3af123dc1e	chore: fixing errors	2024-03-28 12:43:14 +10:00
Joel Male	34d5f1531a	chore: update actions	2024-03-28 12:37:39 +10:00
Joel Male	c54aaa0ec6	chore: updating deps	2024-03-28 12:25:32 +10:00
Joel Male	3cee2ba3f1	feat: updates & github event support	2024-03-28 12:00:41 +10:00