Skip to content

chore(deps): bump Hack23/riksdagsmonitor/.github/actions/news-resolve-inputs from a9014fb7edc152cbc6cad7b6cc6fc79f59dc80a4 to 7a181349124bc227614ee5a6e8feb00e09aacf63#3088

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/Hack23/riksdagsmonitor/dot-github/actions/news-resolve-inputs-7a181349124bc227614ee5a6e8feb00e09aacf63
Closed

chore(deps): bump Hack23/riksdagsmonitor/.github/actions/news-resolve-inputs from a9014fb7edc152cbc6cad7b6cc6fc79f59dc80a4 to 7a181349124bc227614ee5a6e8feb00e09aacf63#3088
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/Hack23/riksdagsmonitor/dot-github/actions/news-resolve-inputs-7a181349124bc227614ee5a6e8feb00e09aacf63

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 30, 2026

Copy link
Copy Markdown
Contributor

Bumps Hack23/riksdagsmonitor/.github/actions/news-resolve-inputs from a9014fb to 7a18134.

Changelog

Sourced from Hack23/riksdagsmonitor/.github/actions/news-resolve-inputs's changelog.

📋 Document Owner: CEO | 📄 Version: 1.0 | 📅 Last Updated: 2026-02-18 (UTC)
🔄 Review Cycle: Per release | 🏢 Owner: Hack23 AB (Org.nr 559534-7807) | 🏷️ Classification: 🟢 Public

This guide describes how to create releases for Riksdagsmonitor with full attestations and documentation-as-code.

Table of Contents

  1. Overview
  2. Release Workflow
  3. Triggering a Release
  4. Release Artifacts
  5. Documentation as Code
  6. Security & Attestations
  7. Deployment
  8. Verification
  9. Troubleshooting

Overview

Riksdagsmonitor follows a comprehensive release process that includes:

  • ✅ Automated testing (unit + E2E)
  • ✅ Documentation generation (API, coverage, E2E reports)
  • ✅ SLSA Build Provenance attestations
  • ✅ SBOM (Software Bill of Materials) generation
  • ✅ Dual deployment (S3/CloudFront + GitHub Pages)
  • ✅ npm package publishing with provenance
  • ✅ Automated release notes

Release Workflow

The release workflow consists of 3 jobs:

... (truncated)

Commits
  • 7a18134 Merge pull request #3087 from Hack23/copilot/update-dependencies-fix-security
  • 139602f Merge branch 'main' into copilot/update-dependencies-fix-security
  • 4c59569 Dependency refresh validation completed
  • 354f4b0 docs: update documentation for v1.0.25
  • 6b4fbe1 Validate dependency refresh and security remediation
  • 754b3a1 Refresh dependencies and pin secure transitive override
  • 219129c Refresh dependency versions
  • 096472e chore(release): bump version to v1.0.25
  • fc3aad9 Merge pull request #3082 from Hack23/dependabot/github_actions/cypress-io/git...
  • 836312d Merge pull request #3080 from Hack23/dependabot/npm_and_yarn/development-depe...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

…-inputs

Bumps [Hack23/riksdagsmonitor/.github/actions/news-resolve-inputs](https://github.com/hack23/riksdagsmonitor) from a9014fb to 7a18134.
- [Release notes](https://github.com/hack23/riksdagsmonitor/releases)
- [Changelog](https://github.com/Hack23/riksdagsmonitor/blob/main/RELEASE_PROCESS.md)
- [Commits](a9014fb...7a18134)

---
updated-dependencies:
- dependency-name: Hack23/riksdagsmonitor/.github/actions/news-resolve-inputs
  dependency-version: 7a18134
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Dependency updates github-actions labels Jun 30, 2026
Copilot AI review requested due to automatic review settings June 30, 2026 11:47
@dependabot dependabot Bot added dependencies Dependency updates github-actions labels Jun 30, 2026

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot can't review bot-authored pull requests automatically. A user with Copilot access can request a review manually.

@github-actions github-actions Bot added workflow GitHub Actions workflows ci-cd CI/CD pipeline changes news News articles and content generation agentic-workflow Agentic workflow changes size-m Medium change (50-250 lines) labels Jun 30, 2026
@github-actions

Copy link
Copy Markdown
Contributor

🏷️ Automatic Labeling Summary

This PR has been automatically labeled based on the files changed and PR metadata.

Applied Labels: dependencies,workflow,ci-cd,size-m,news,agentic-workflow,github-actions

Label Categories

  • 🗳️ Content: news, dashboard, visualization, intelligence
  • 💻 Technology: html-css, javascript, workflow, security
  • 📊 Data: cia-data, riksdag-data, data-pipeline, schema
  • 🌍 I18n: i18n, translation, rtl
  • 🔒 ISMS: isms, iso-27001, nist-csf, cis-controls
  • 🏗️ Infrastructure: ci-cd, deployment, performance, monitoring
  • 🔄 Quality: testing, accessibility, documentation, refactor
  • 🤖 AI: agent, skill, agentic-workflow

For more information, see .github/labeler.yml.

@pethers pethers closed this Jun 30, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jun 30, 2026

Copy link
Copy Markdown
Contributor Author

OK, I won't notify you again about this release, but will get in touch when a new version is available. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot Bot deleted the dependabot/github_actions/Hack23/riksdagsmonitor/dot-github/actions/news-resolve-inputs-7a181349124bc227614ee5a6e8feb00e09aacf63 branch June 30, 2026 11:48
@github-actions

Copy link
Copy Markdown
Contributor

🔍 Lighthouse Performance Audit

Category Score Status
Performance 85/100 🟡
Accessibility 95/100 🟢
Best Practices 90/100 🟢
SEO 95/100 🟢

📥 Download full Lighthouse report

Budget Compliance: Performance budgets enforced via budget.json

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

agentic-workflow Agentic workflow changes ci-cd CI/CD pipeline changes dependencies Dependency updates github-actions news News articles and content generation size-m Medium change (50-250 lines) workflow GitHub Actions workflows

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants