Skip to content

Bump softprops/action-gh-release from 2 to 3#339

Open
dependabot[bot] wants to merge 27 commits into
mainfrom
dependabot/github_actions/softprops/action-gh-release-3
Open

Bump softprops/action-gh-release from 2 to 3#339
dependabot[bot] wants to merge 27 commits into
mainfrom
dependabot/github_actions/softprops/action-gh-release-3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 13, 2026

Copy link
Copy Markdown
Contributor

Bumps softprops/action-gh-release from 2 to 3.

Release notes

Sourced from softprops/action-gh-release's releases.

v3.0.0

3.0.0 is a major release that moves the action runtime from Node 20 to Node 24. Use v3 on GitHub-hosted runners and self-hosted fleets that already support the Node 24 Actions runtime. If you still need the last Node 20-compatible line, stay on v2.6.2.

What's Changed

Other Changes 🔄

  • Move the action runtime and bundle target to Node 24
  • Update @types/node to the Node 24 line and allow future Dependabot updates
  • Keep the floating major tag on v3; v2 remains pinned to the latest 2.x release

v2.6.2

What's Changed

Other Changes 🔄

Full Changelog: softprops/action-gh-release@v2...v2.6.2

v2.6.1

2.6.1 is a patch release focused on restoring linked discussion thread creation when discussion_category_name is set. It fixes [#764](https://github.com/softprops/action-gh-release/issues/764), where the draft-first publish flow stopped carrying the discussion category through the final publish step.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

Bug fixes 🐛

v2.6.0

2.6.0 is a minor release centered on previous_tag support for generate_release_notes, which lets workflows pin GitHub's comparison base explicitly instead of relying on the default range. It also includes the recent concurrent asset upload recovery fix, a working_directory docs sync, a checked-bundle freshness guard for maintainers, and clearer immutable-prerelease guidance where GitHub platform behavior imposes constraints on how prerelease asset uploads can be published.

If you still hit an issue after upgrading, please open a report with the bug template and include a minimal repro or sanitized workflow snippet where possible.

What's Changed

... (truncated)

Changelog

Sourced from softprops/action-gh-release's changelog.

0.1.13

  • fix issue with multiple runs concatenating release bodies #145
Commits

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

MichaelSims and others added 27 commits April 12, 2026 12:30
Push now calls installCommitIdHook() early in the flow, ensuring the
commit-msg hook is always present without requiring a separate manual
step. The install is idempotent — it skips the write when the hook is
already up-to-date. The stale warning suggesting users run
install-commit-id-hook manually is removed.

Closes git-jaspr-39h

commit-id: If2ec2508
Auto-merge now reuses a cached clone inside .git/jaspr/automerge/
instead of creating a fresh temp directory each time. On subsequent
runs it fetches instead of cloning, avoiding redundant network and
disk I/O. A file lock (.git/jaspr/automerge.lock) prevents concurrent
auto-merge processes from colliding.

Closes git-jaspr-9hl

commit-id: I128274c1
Show git clone/fetch progress on stderr during auto-merge setup via a
new showStderr toggle on CliGitClient, replacing the heartbeat
polling message. Pass the user's theme through to the status display
so the auto-merge polling loop renders in color.

Closes git-jaspr-290

commit-id: I28fec58d
Always pass --allow-empty / setAllowEmpty(true) in both CliGitClient
and JGitClient commit methods so empty commits are never rejected.
Add an `empty` property to the test DSL so tests can create empty
commits declaratively.

commit-id: Ia9144a37
CliGitClient: add --allow-empty to cherry-pick so it doesn't fail on
commits with no file changes.

JGitClient: detect when cherry-pick silently skips an empty commit
(HEAD doesn't advance despite Ok status) and create the commit
manually with allowEmpty. Use noVerify to prevent the commit-msg hook
from adding a duplicate commit-id footer.

Fixes git-jaspr-78b

commit-id: I2d842b88
When commits exist in multiple named stacks, jaspr now explains the
ambiguity instead of silently falling through. The status display
shows a warning with the conflicting stack names. The push prompt
includes the conflicting names as suggestions alongside commit-based
candidates so the user can pick an existing stack or create a new one.

suggestStackNames now returns a StackNameSuggestions type that carries
both candidates and any ambiguous stack names. The push error message
for missing stack names also distinguishes ambiguity from not-found.

Fixes git-jaspr-37l

commit-id: I2ed45ef5
Narrow the working directory clean check to only consider tracked file
changes (staged, modified, deleted, conflicting), ignoring untracked
files which are not affected by push's commit rewriting. Rename the
interface method to isWorkingDirectoryCleanIgnoringUntracked to make
the behavior explicit. Requested by Clark Perkins.

commit-id: Ib3cf569f
Always pass --autosquash to git rebase so fixup/squash commits are
automatically processed. On git >= 2.44 this works directly; on older
versions falls back to --interactive with GIT_SEQUENCE_EDITOR=true to
suppress the editor.

commit-id: I0cd0f7a8
Shorter name that doesn't expose implementation detail.

commit-id: Ia289b29f
NavState data class (sourceBranch, savedTip, divergePoint) persisted
as .git/jaspr/nav-state.json. Read/write/clear methods on GitJaspr
plus staleness detection (state exists but HEAD is not detached).

commit-id: Icd243b68
Navigate down N commits in the stack (toward the target branch) or
jump to the bottom. Detaches HEAD and records nav state so the session
can be resumed with future up/top commands. Subsequent down commands
within a session preserve the original source branch and saved tip.

commit-id: I9ceae3f9
Cherry-pick commits from the saved stack above HEAD to move back up.
jaspr up [N] replays N commits and stays in the nav session. jaspr top
replays all remaining commits, updates the source branch ref, checks
it out, and ends the session.

commit-id: I2d1954ad
Wipes navigation state file. No-op with a message if no state exists.
Stale state warnings were already integrated into down/bottom commands.

commit-id: I61423d6d
Interactively select a stack commit and create a fixup commit
targeting it. Uses fzf for fuzzy selection with numbered-list
fallback. Requires staged changes. The fixup is folded in on the
next jaspr rebase (which has --autosquash enabled).

commit-id: I018de68b
Detects whether a rebase or cherry-pick is in progress and runs the
appropriate --continue command. Prefers rebase over cherry-pick when
both are somehow in progress. Prints a message when nothing is active.

commit-id: Id56b27b2
When jaspr clean deletes remote branches, it now also removes local
branches whose upstream matched a deleted remote branch AND whose tip
equals the remote tracking ref. Skips the currently checked-out branch.
Local branches are identified before the remote push so tracking refs
are still available for comparison.

commit-id: I548f8215
installCommitIdHook now uses git rev-parse --git-common-dir to find
the hooks directory instead of assuming .git/hooks. This correctly
handles git worktrees where .git is a file pointing to the main repo.

commit-id: Icf9840f3
Expanded the rebase TODO header to cover all common operations
(reorder, drop, squash, edit) with concise instructions. Added
jaspr reorder as an alias for jaspr edit for discoverability.

commit-id: I2b0c1c6a
Filters the stack list to only show stacks authored by the current
user (matched by git user.name and user.email). Also shows the author
name on each stack when listing all stacks.

commit-id: I2b53ab13
jaspr stack delete now removes local branches that tracked the deleted
remote stack branch when their tip matches the remote tip. Skips the
current branch. Remaining tracking branches (divergent tip or current
branch) have their upstream unset as before.

commit-id: Iab29cac7
Rebases all local jaspr-managed branches onto the latest target branch.
Uses a temporary worktree for non-checked-out branches with topological
ordering (shallowest first) and commit mapping to avoid duplicating
shared commits across overlapping branches. The current branch is
rebased last, using cherry-pick when it shares commits with already-
rebased branches to maintain commit identity. Conflicts cause the
branch (and its dependents) to be skipped with a warning.

commit-id: Id0e44357
Replace the old NavState (headBeforeDetachSha + divergePoint bookends)
with a full stack of StackEntry(sha, commitId) and a cursorIndex. This
enables reconciliation between nav operations: detecting inserted
commits, removed commits (hard reset), and amended commits by comparing
Commit-Ids against the actual git state.

Nav down/bottom now build the initial stack on first call and reconcile
on subsequent calls. Nav up/top cherry-pick from the replay queue
(above cursor) and update SHAs immediately after each cherry-pick.

commit-id: I5916211d
Tests for the three key reconciliation scenarios:
- New commit during nav session: inserted into the stack
- Hard reset during nav session: removed commits move to replay queue
- Amend during nav session: SHA updated, amended version used on replay

commit-id: I52e5aac4
Drops the HEAD commit(s) from the stack. During a nav session, the
dropped commits are removed entirely from the tracked stack (unlike
a hard reset, which moves them to the replay queue). Without a nav
session, behaves like git reset --hard HEAD~n.

commit-id: If5d9dd83
Adding an interactive rebase while in detached HEAD with nav state
would corrupt the navigation. The guard checks for both conditions
and directs the user to jaspr top or jaspr nav clear first.

commit-id: I8920d803
RandomAccessFile construction, lock.release(), and lockFile.close()
in autoMerge were flagged as blocking calls in a non-blocking context.

commit-id: I5feedbfb
Bumps [softprops/action-gh-release](https://github.com/softprops/action-gh-release) from 2 to 3.
- [Release notes](https://github.com/softprops/action-gh-release/releases)
- [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md)
- [Commits](softprops/action-gh-release@v2...v3)

---
updated-dependencies:
- dependency-name: softprops/action-gh-release
  dependency-version: '3'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Apr 13, 2026
@dependabot dependabot Bot added the github_actions Pull requests that update GitHub Actions code label Apr 13, 2026
@github-actions

Copy link
Copy Markdown

Test Results

300 tests   300 ✅  1m 17s ⏱️
 10 suites    0 💤
 10 files      0 ❌

Results for commit 683cf52.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant