chore(deps): bump actions/setup-node from 4 to 6#9
Conversation
dependabot
Bot
added
dependencies
dependabot
Bot
changed the title
dependabot
Bot
force-pushed
the
dependabot/github_actions/actions/setup-node-6
branch
2 times, most recently
from
b1fa6cd to
730cfa1
Compare
…Rs (#16) claude-code-action@v1 currently crashes when invoked on a dependabot PR with the error: Internal error: directory mismatch for directory "/home/runner/work/_actions/anthropics/claude-code-action/v1/tsconfig.json", fd 4 Verified across #7, #8, #9 — three consecutive dependabot PRs, all FAILURE on `review / Claude Review`. The same action+version succeeds on human-authored PRs in the same repo, so the bug is specific to dependabot's restricted GITHUB_TOKEN scope. Even when the action does run on dep bumps, the value is low — diffs are upstream version metadata, not project logic. The risk classifier still labels them; humans still see the diff at merge time. Skipping Claude review here is signal, not loss. Implementation: a pre-check step posts a one-line "Skipped" PR comment when the PR author is dependabot[bot] or renovate[bot], sets a step output, and the claude-code-action step is gated on that output. The job remains green so branch rulesets that require `review / Claude Review` are satisfied. Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
|
Reopening to trigger fresh CI with updated claude-review.yml (#16 merged) |
|
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting If you change your mind, just re-open this PR and I'll resolve any conflicts on it. |
dependabot
Bot
force-pushed
the
dependabot/github_actions/actions/setup-node-6
branch
from
730cfa1 to
a02d65c
Compare
|
Skipped: bot-authored PR ( |
dependabot
Bot
force-pushed
the
dependabot/github_actions/actions/setup-node-6
branch
from
a02d65c to
2cfa38b
Compare
|
Skipped: bot-authored PR ( |
dependabot
Bot
force-pushed
the
dependabot/github_actions/actions/setup-node-6
branch
from
2cfa38b to
6d6b608
Compare
|
Skipped: bot-authored PR ( |
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 4 to 6. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](actions/setup-node@v4...v6) --- updated-dependencies: - dependency-name: actions/setup-node dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
force-pushed
the
dependabot/github_actions/actions/setup-node-6
branch
from
6d6b608 to
ebb0cb6
Compare
|
Skipped: bot-authored PR ( |
|
Coverage Floor — mode:
|
1 participant
Bumps actions/setup-node from 4 to 6.
Release notes
Sourced from actions/setup-node's releases.
... (truncated)
Commits
48b55a0Update Node.js versions in versions.yml and bump package to v6.4.0 (#1533)ab72c7eUpgrade@actionsdependencies (#1525)53b8394Bump minimatch from 3.1.2 to 3.1.5 (#1498)54045abScope test lockfiles by package manager and update cache tests (#1495)c882bffReplace uuid with crypto.randomUUID() (#1378)774c1d6feat(node-version-file): support parsingdevEnginesfield (#1283)efcb663fix: remove hardcoded bearer (#1467)d02c89dFix npm audit issues (#1491)6044e13Docs: bump actions/checkout from v5 to v6 (#1468)8e49463Fix README typo (#1226)