Skip to content

Bump the github-actions-dependencies group across 1 directory with 5 updates#833

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/github-actions-dependencies-1da8d09c0e
Open

Bump the github-actions-dependencies group across 1 directory with 5 updates#833
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/github-actions-dependencies-1da8d09c0e

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 25, 2026

Copy link
Copy Markdown
Contributor

Bumps the github-actions-dependencies group with 5 updates in the / directory:

Package From To
actions/checkout 6.0.2 7.0.0
actions/cache/restore 5.0.5 6.1.0
actions/cache/save 5.0.5 6.1.0
actions/cache 5.0.5 6.1.0
actions/setup-dotnet 5.2.0 5.4.0

Updates actions/checkout from 6.0.2 to 7.0.0

Release notes

Sourced from actions/checkout's releases.

v7.0.0

What's Changed

New Contributors

Full Changelog: actions/checkout@v6.0.3...v7.0.0

v6.0.3

What's Changed

New Contributors

Full Changelog: actions/checkout@v6...v6.0.3

Changelog

Sourced from actions/checkout's changelog.

Changelog

v7.0.0

v6.0.3

v6.0.2

v6.0.1

v6.0.0

v5.0.1

v5.0.0

v4.3.1

v4.3.0

v4.2.2

v4.2.1

... (truncated)

Commits

Updates actions/cache/restore from 5.0.5 to 6.1.0

Release notes

Sourced from actions/cache/restore's releases.

v6.1.0

What's Changed

Full Changelog: actions/cache@v6...v6.1.0

v6.0.0

What's Changed

Full Changelog: actions/cache@v5...v6.0.0

v5.1.0

What's Changed

Full Changelog: actions/cache@v5...v5.1.0

Changelog

Sourced from actions/cache/restore's changelog.

Releases

How to prepare a release

[!NOTE] Relevant for maintainers with write access only.

  1. Switch to a new branch from main.
  2. Run npm test to ensure all tests are passing.
  3. Update the version in https://github.com/actions/cache/blob/main/package.json.
  4. Run npm run build to update the compiled files.
  5. Update this https://github.com/actions/cache/blob/main/RELEASES.md with the new version and changes in the ## Changelog section.
  6. Run licensed cache to update the license report.
  7. Run licensed status and resolve any warnings by updating the https://github.com/actions/cache/blob/main/.licensed.yml file with the exceptions.
  8. Commit your changes and push your branch upstream.
  9. Open a pull request against main and get it reviewed and merged.
  10. Draft a new release https://github.com/actions/cache/releases use the same version number used in package.json
    1. Create a new tag with the version number.
    2. Auto generate release notes and update them to match the changes you made in RELEASES.md.
    3. Toggle the set as the latest release option.
    4. Publish the release.
  11. Navigate to https://github.com/actions/cache/actions/workflows/release-new-action-version.yml
    1. There should be a workflow run queued with the same version number.
    2. Approve the run to publish the new version and update the major tags for this action.

Changelog

6.1.0

6.0.0

  • Updated @actions/cache to ^6.0.1, @actions/core to ^3.0.1, @actions/exec to ^3.0.0, @actions/io to ^3.0.2
  • Migrated to ESM module system
  • Upgraded Jest to v30 and test infrastructure to be ESM compatible

5.0.4

  • Bump minimatch to v3.1.5 (fixes ReDoS via globstar patterns)
  • Bump undici to v6.24.1 (WebSocket decompression bomb protection, header validation fixes)
  • Bump fast-xml-parser to v5.5.6

5.0.3

5.0.2

... (truncated)

Commits
  • 55cc834 Merge pull request #1768 from jasongin/readonly-cache
  • d8cd72f Bump @​actions/cache to v6.1.0 - handle cache write error due to RO token
  • 2c8a9bd Merge pull request #1760 from actions/samirat/esm_migration_and_package_update
  • e9b91fd Prettier fixes
  • e4884b8 Rebuild dist
  • 10baf01 Fixed licenses
  • e39b386 Fix test mock return order
  • b692820 PR feedback
  • 6074912 Rebuild dist bundles as ESM to match type:module
  • 5a912e8 Fix lint and jest issues
  • Additional commits viewable in compare view

Updates actions/cache/save from 5.0.5 to 6.1.0

Release notes

Sourced from actions/cache/save's releases.

v6.1.0

What's Changed

Full Changelog: actions/cache@v6...v6.1.0

v6.0.0

What's Changed

Full Changelog: actions/cache@v5...v6.0.0

v5.1.0

What's Changed

Full Changelog: actions/cache@v5...v5.1.0

Changelog

Sourced from actions/cache/save's changelog.

Releases

How to prepare a release

[!NOTE] Relevant for maintainers with write access only.

  1. Switch to a new branch from main.
  2. Run npm test to ensure all tests are passing.
  3. Update the version in https://github.com/actions/cache/blob/main/package.json.
  4. Run npm run build to update the compiled files.
  5. Update this https://github.com/actions/cache/blob/main/RELEASES.md with the new version and changes in the ## Changelog section.
  6. Run licensed cache to update the license report.
  7. Run licensed status and resolve any warnings by updating the https://github.com/actions/cache/blob/main/.licensed.yml file with the exceptions.
  8. Commit your changes and push your branch upstream.
  9. Open a pull request against main and get it reviewed and merged.
  10. Draft a new release https://github.com/actions/cache/releases use the same version number used in package.json
    1. Create a new tag with the version number.
    2. Auto generate release notes and update them to match the changes you made in RELEASES.md.
    3. Toggle the set as the latest release option.
    4. Publish the release.
  11. Navigate to https://github.com/actions/cache/actions/workflows/release-new-action-version.yml
    1. There should be a workflow run queued with the same version number.
    2. Approve the run to publish the new version and update the major tags for this action.

Changelog

6.1.0

6.0.0

  • Updated @actions/cache to ^6.0.1, @actions/core to ^3.0.1, @actions/exec to ^3.0.0, @actions/io to ^3.0.2
  • Migrated to ESM module system
  • Upgraded Jest to v30 and test infrastructure to be ESM compatible

5.0.4

  • Bump minimatch to v3.1.5 (fixes ReDoS via globstar patterns)
  • Bump undici to v6.24.1 (WebSocket decompression bomb protection, header validation fixes)
  • Bump fast-xml-parser to v5.5.6

5.0.3

5.0.2

... (truncated)

Commits
  • 55cc834 Merge pull request #1768 from jasongin/readonly-cache
  • d8cd72f Bump @​actions/cache to v6.1.0 - handle cache write error due to RO token
  • 2c8a9bd Merge pull request #1760 from actions/samirat/esm_migration_and_package_update
  • e9b91fd Prettier fixes
  • e4884b8 Rebuild dist
  • 10baf01 Fixed licenses
  • e39b386 Fix test mock return order
  • b692820 PR feedback
  • 6074912 Rebuild dist bundles as ESM to match type:module
  • 5a912e8 Fix lint and jest issues
  • Additional commits viewable in compare view

Updates actions/cache from 5.0.5 to 6.1.0

Release notes

Sourced from actions/cache's releases.

v6.1.0

What's Changed

Full Changelog: actions/cache@v6...v6.1.0

v6.0.0

What's Changed

Full Changelog: actions/cache@v5...v6.0.0

v5.1.0

What's Changed

Full Changelog: actions/cache@v5...v5.1.0

Changelog

Sourced from actions/cache's changelog.

Releases

How to prepare a release

[!NOTE] Relevant for maintainers with write access only.

  1. Switch to a new branch from main.
  2. Run npm test to ensure all tests are passing.
  3. Update the version in https://github.com/actions/cache/blob/main/package.json.
  4. Run npm run build to update the compiled files.
  5. Update this https://github.com/actions/cache/blob/main/RELEASES.md with the new version and changes in the ## Changelog section.
  6. Run licensed cache to update the license report.
  7. Run licensed status and resolve any warnings by updating the https://github.com/actions/cache/blob/main/.licensed.yml file with the exceptions.
  8. Commit your changes and push your branch upstream.
  9. Open a pull request against main and get it reviewed and merged.
  10. Draft a new release https://github.com/actions/cache/releases use the same version number used in package.json
    1. Create a new tag with the version number.
    2. Auto generate release notes and update them to match the changes you made in RELEASES.md.
    3. Toggle the set as the latest release option.
    4. Publish the release.
  11. Navigate to https://github.com/actions/cache/actions/workflows/release-new-action-version.yml
    1. There should be a workflow run queued with the same version number.
    2. Approve the run to publish the new version and update the major tags for this action.

Changelog

6.1.0

6.0.0

  • Updated @actions/cache to ^6.0.1, @actions/core to ^3.0.1, @actions/exec to ^3.0.0, @actions/io to ^3.0.2
  • Migrated to ESM module system
  • Upgraded Jest to v30 and test infrastructure to be ESM compatible

5.0.4

  • Bump minimatch to v3.1.5 (fixes ReDoS via globstar patterns)
  • Bump undici to v6.24.1 (WebSocket decompression bomb protection, header validation fixes)
  • Bump fast-xml-parser to v5.5.6

5.0.3

5.0.2

... (truncated)

Commits
  • 55cc834 Merge pull request #1768 from jasongin/readonly-cache
  • d8cd72f Bump @​actions/cache to v6.1.0 - handle cache write error due to RO token
  • 2c8a9bd Merge pull request #1760 from actions/samirat/esm_migration_and_package_update
  • e9b91fd Prettier fixes
  • e4884b8 Rebuild dist
  • 10baf01 Fixed licenses
  • e39b386 Fix test mock return order
  • b692820 PR feedback
  • 6074912 Rebuild dist bundles as ESM to match type:module
  • 5a912e8 Fix lint and jest issues
  • Additional commits viewable in compare view

Updates actions/setup-dotnet from 5.2.0 to 5.4.0

Release notes

Sourced from actions/setup-dotnet's releases.

v5.4.0

What's Changed

Enhancements

Documentation

Bug Fixes

Dependency Updates

New Contributors

Full Changelog: actions/setup-dotnet@v5...v5.4.0

v5.3.0

What's Changed

Enhancements

Dependency Updates

Bug Fixes

New Contributors

... (truncated)

Commits
  • 26b0ec1 Expand the CSC problem matcher to light up more errors on GitHub. (#717)
  • da5e548 docs(action): explicitly mark all optional inputs with required: false (#737)
  • 9bd3b44 Improve readability of global.json creation command (#694)
  • 4406a63 Bump @​actions/cache to 5.1.0, log cache write denied (#746)
  • dc3262d pin actions to commit SHAs in workflows (#744)
  • 95a3f8b Validate global.json SDK version before rollForward optimization (#742)
  • 9a946fd Add rollForward note in README, improve proxy health check in e2e tests and b...
  • 98af08b Support global.json's rollForward latest* variants (#538)
  • 8404272 Update install scripts to v2026.05.19 (#736)
  • f1970f5 Don't download releases-index.json to resolve major version (#560)
  • Additional commits viewable in compare view

…updates

Bumps the github-actions-dependencies group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout) | `6.0.2` | `7.0.0` |
| [actions/cache/restore](https://github.com/actions/cache) | `5.0.5` | `6.0.0` |
| [actions/cache/save](https://github.com/actions/cache) | `5.0.5` | `6.0.0` |
| [actions/cache](https://github.com/actions/cache) | `5.0.5` | `6.0.0` |
| [actions/setup-dotnet](https://github.com/actions/setup-dotnet) | `5.2.0` | `5.3.0` |



Updates `actions/checkout` from 6.0.2 to 7.0.0
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@v6.0.2...9c091bb)

Updates `actions/cache/restore` from 5.0.5 to 6.0.0
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](actions/cache@27d5ce7...2c8a9bd)

Updates `actions/cache/save` from 5.0.5 to 6.0.0
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](actions/cache@27d5ce7...2c8a9bd)

Updates `actions/cache` from 5.0.5 to 6.0.0
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](actions/cache@27d5ce7...2c8a9bd)

Updates `actions/setup-dotnet` from 5.2.0 to 5.3.0
- [Release notes](https://github.com/actions/setup-dotnet/releases)
- [Commits](actions/setup-dotnet@c2fa09f...9a946fd)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 7.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions-dependencies
- dependency-name: actions/cache/restore
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions-dependencies
- dependency-name: actions/cache/save
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions-dependencies
- dependency-name: actions/cache
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions-dependencies
- dependency-name: actions/setup-dotnet
  dependency-version: 5.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-actions-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jun 25, 2026
@dependabot dependabot Bot requested a review from ViktorHofer as a code owner June 25, 2026 22:38
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jun 25, 2026
@dependabot dependabot Bot requested a review from JanKrivanek as a code owner June 25, 2026 22:38
@dependabot dependabot Bot added the github_actions Pull requests that update GitHub Actions code label Jun 25, 2026
@github-actions github-actions Bot added the pr-state/ready-for-eval PR is mergeable and awaiting evaluation label Jun 25, 2026
github-actions Bot added a commit that referenced this pull request Jun 25, 2026
@github-actions

Copy link
Copy Markdown
Contributor

Skill Validation Results

Skill Scenario Quality Skills Loaded Overfit Verdict
minimal-api-file-upload Implement secure file upload in ASP.NET Core 8 minimal API 3.0/5 → 5.0/5 🟢 ✅ minimal-api-file-upload; tools: report_intent, skill / ✅ minimal-api-file-upload; tools: skill ✅ 0.06
minimal-api-file-upload Upload multiple files with metadata in minimal API 3.0/5 → 5.0/5 🟢 ✅ minimal-api-file-upload; tools: report_intent, skill / ✅ minimal-api-file-upload; tools: skill ✅ 0.06
minimal-api-file-upload Stream very large file uploads without buffering 5.0/5 → 5.0/5 ✅ minimal-api-file-upload; tools: skill ✅ 0.06 [1]
configuring-opentelemetry-dotnet Set up OpenTelemetry tracing and metrics with custom spans in ASP.NET Core 4.0/5 → 5.0/5 🟢 ✅ configuring-opentelemetry-dotnet; tools: skill ✅ 0.15
configuring-opentelemetry-dotnet Configure all three OpenTelemetry signals with correct OTLP export 4.0/5 → 5.0/5 🟢 ✅ configuring-opentelemetry-dotnet; tools: report_intent, skill ✅ 0.15
configuring-opentelemetry-dotnet Propagate trace context across a message queue 5.0/5 → 5.0/5 ✅ configuring-opentelemetry-dotnet; tools: report_intent, skill / ✅ configuring-opentelemetry-dotnet; tools: skill ✅ 0.15 [2]
dotnet-webapi Create a CRUD Web API with minimal APIs, OpenAPI, and proper HTTP semantics 2.0/5 → 5.0/5 🟢 ✅ dotnet-webapi; tools: skill / ✅ dotnet-webapi; tools: skill, read_bash, stop_bash 🟡 0.30
dotnet-webapi Add error handling with ProblemDetails and IExceptionHandler 4.0/5 → 5.0/5 🟢 ✅ dotnet-webapi; tools: skill, report_intent, view, glob, bash, create, edit / ✅ dotnet-webapi; tools: report_intent, skill, view, glob 🟡 0.30
dotnet-webapi Add a new API endpoint to an existing controller-based project 3.0/5 → 5.0/5 🟢 ✅ dotnet-webapi; tools: skill, edit 🟡 0.30
convert-blazor-server-to-webapp Blazor Server app with CascadingAuthenticationState 4.0/5 → 5.0/5 🟢 ✅ convert-blazor-server-to-webapp; tools: skill / ✅ convert-blazor-server-to-webapp; tools: report_intent, skill ✅ 0.04
collect-user-input Event registration with custom validation 4.0/5 → 5.0/5 🟢 ✅ collect-user-input; tools: skill ✅ 0.14
collect-user-input Multi-step booking form with cross-field validation 3.0/5 → 4.0/5 🟢 ✅ collect-user-input; tools: skill ✅ 0.14
create-blazor-project University course catalog with enrollment form 2.0/5 → 5.0/5 🟢 ✅ create-blazor-project; tools: skill 🟡 0.26
create-blazor-project Recipe community with interactive ratings on static pages 5.0/5 → 5.0/5 ✅ create-blazor-project; tools: skill, glob / ✅ create-blazor-project; tools: skill 🟡 0.26
create-blazor-project Global logistics tracking for worldwide users 4.0/5 → 4.0/5 ✅ create-blazor-project; tools: skill, task, read_agent / ✅ create-blazor-project; tools: skill 🟡 0.26 [3]
fetch-and-send-data Recipe browser with resilient data loading 3.0/5 → 4.0/5 🟢 ✅ fetch-and-send-data; tools: skill ✅ 0.18
fetch-and-send-data Real-time shipment tracker with Auto interactivity 4.0/5 → 4.0/5 ✅ fetch-and-send-data; tools: skill ✅ 0.18
coordinate-components Warehouse dashboard with site selector and live stock alerts 4.0/5 → 5.0/5 🟢 ✅ coordinate-components; tools: skill 🟡 0.24 [4]
coordinate-components Multi-tenant notification hub with cross-component fan-out 2.0/5 → 5.0/5 🟢 ✅ coordinate-components; tools: skill 🟡 0.24
author-component Author a data-loading search component 3.0/5 → 4.0/5 🟢 ✅ author-component; tools: skill, view ✅ 0.19
author-component Author a multi-step wizard with async validation and shared state 4.0/5 → 4.0/5 ✅ author-component; tools: skill, view ✅ 0.19
author-component Author a generic data table component 4.0/5 → 5.0/5 🟢 ✅ author-component; tools: skill, bash ✅ 0.19
author-component Author a real-time notification badge component 3.0/5 → 4.0/5 🟢 ✅ author-component; tools: skill, view ✅ 0.19
author-component Author a sortable list with code-behind pattern 4.0/5 → 5.0/5 🟢 ✅ author-component; tools: skill, bash ✅ 0.19
support-prerendering Equipment inventory loaded once 4.0/5 → 5.0/5 🟢 ✅ support-prerendering; tools: skill, view, edit 🟡 0.22 [5]
support-prerendering Notifications page with live polling 3.0/5 → 3.0/5 ✅ support-prerendering; tools: skill 🟡 0.22
configure-auth Login and account management in a globally interactive app 5.0/5 → 5.0/5 ✅ configure-auth; tools: skill ✅ 0.08
configure-auth Multi-tier app with WebAssembly auth 3.0/5 → 5.0/5 🟢 ✅ configure-auth; tools: skill ✅ 0.08
plan-ui-change Project management Kanban board 2.0/5 → 4.0/5 🟢 ✅ plan-ui-change; tools: skill, edit ✅ 0.16
plan-ui-change E-commerce product catalog with filters and pagination 3.0/5 → 4.0/5 🟢 ✅ plan-ui-change; tools: skill / ✅ plan-ui-change; tools: skill, edit ✅ 0.16
plan-ui-change Multi-step job application wizard 2.0/5 → 4.0/5 🟢 ✅ plan-ui-change; tools: skill, edit ✅ 0.16
plan-ui-change Application settings page with nested tab panels 3.0/5 → 4.0/5 🟢 ✅ plan-ui-change; tools: skill ✅ 0.16
plan-ui-change Team chat interface with message threads 3.0/5 → 4.0/5 🟢 ✅ plan-ui-change; tools: skill, edit / ✅ plan-ui-change; tools: skill ✅ 0.16
use-js-interop Auto-saving notepad that survives page reloads 4.0/5 → 4.0/5 ✅ use-js-interop; tools: skill, edit / ✅ use-js-interop; tools: skill 🟡 0.21
use-js-interop User activity tracker that detects idle timeout 4.0/5 → 4.0/5 ✅ use-js-interop; tools: skill 🟡 0.21
use-js-interop Responsive layout that adapts to screen size 4.0/5 → 4.0/5 ✅ use-js-interop; tools: skill 🟡 0.21 [6]
use-js-interop Infinite scroll list using IntersectionObserver 4.0/5 → 4.0/5 ✅ use-js-interop; tools: skill 🟡 0.21

[1] (Plugin) Quality unchanged but weighted score is -7.9% due to: tokens (13363 → 29976), tool calls (0 → 1)
[2] (Plugin) Quality unchanged but weighted score is -8.2% due to: tokens (13262 → 30065), tool calls (0 → 1), time (16.5s → 21.2s)
[3] (Isolated) Quality unchanged but weighted score is -0.6% due to: tool calls (39 → 50)
[4] (Isolated) Quality improved but weighted score is -1.9% due to: tokens (172631 → 299232), time (88.4s → 114.5s)
[5] (Isolated) Quality improved but weighted score is -10.7% due to: quality, tokens (55573 → 219421), tool calls (6 → 16), time (39.8s → 75.2s)
[6] (Plugin) Quality unchanged but weighted score is -0.5% due to: tokens (84663 → 130040), time (37.0s → 44.4s)

Model: claude-opus-4.6 | Judge: claude-opus-4.6

🔍 Full Results - additional metrics and failure investigation steps

To investigate failures, paste this to your AI coding agent:

For PR 833 in dotnet/skills, download eval artifacts with gh run download 28205424418 --repo dotnet/skills --pattern "skill-validator-results-*" --dir ./eval-results, then fetch https://raw.githubusercontent.com/dotnet/skills/2e78ea73743dfe302ad37f9aa0a0e487a5106154/eng/skill-validator/src/docs/InvestigatingResults.md and follow it to analyze the results.json files. Diagnose each failure, suggest fixes to the eval.yaml and skill content, and tell me what to fix first.

▶ Sessions Visualisation -- interactive replay of all evaluation sessions
📊 Session Analytics (preview) -- aggregated metrics across evaluation sessions

@github-actions github-actions Bot added waiting-on-review PR state label and removed pr-state/ready-for-eval PR is mergeable and awaiting evaluation labels Jun 25, 2026
@github-actions

Copy link
Copy Markdown
Contributor

✅ Evaluation passed for 2e78ea7. cc @ViktorHofer @JanKrivanek — please review.

@github-actions

Copy link
Copy Markdown
Contributor

✅ Evaluation passed for 2e78ea7. cc @ViktorHofer @JanKrivanek — please review.

@github-actions

github-actions Bot commented Jul 4, 2026

Copy link
Copy Markdown
Contributor

✅ Evaluation passed for 2e78ea7. cc @ViktorHofer @JanKrivanek — please review.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code waiting-on-review PR state label

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants