chore(deps): bump actions/attest-build-provenance from 2 to 4 by dependabot[bot] · Pull Request #72 · StanMarek/ghost-complete

dependabot · 2026-04-19T13:02:45Z

Bumps actions/attest-build-provenance from 2 to 4.

Release notes

Sourced from actions/attest-build-provenance's releases.

v4.0.0

[!NOTE] As of version 4, actions/attest-build-provenance is simply a wrapper on top of actions/attest.

Existing applications may continue to use the attest-build-provenance action, but new implementations should use actions/attest instead.

What's Changed

Prepare v4 release by @bdehamer in actions/attest-build-provenance#835

Full Changelog: actions/attest-build-provenance@v3.2.0...v4.0.0

v3.2.0

What's Changed

Bump @actions/core from 1.11.1 to 2.0.1 by @dependabot[bot] in actions/attest-build-provenance#776

Add more documentation on Artifact Metadata Storage Records by @malancas in actions/attest-build-provenance#797

Update actions/attest to latest version v3.2.0 by @malancas in actions/attest-build-provenance#812

Full Changelog: actions/attest-build-provenance@v3.1.0...v3.2.0

v3.1.0

What's Changed

Prepare v3 release by @bdehamer in actions/attest-build-provenance#697

Bump js-yaml from 3.14.1 to 3.14.2 by @dependabot[bot] in actions/attest-build-provenance#749

Bump tar from 7.5.1 to 7.5.2 by @dependabot[bot] in actions/attest-build-provenance#753

Bump glob from 10.4.5 to 10.5.0 by @dependabot[bot] in actions/attest-build-provenance#754

Bump @types/node from 24.10.1 to 25.0.2 by @dependabot[bot] in actions/attest-build-provenance#774

Bump @actions/attest from 1.6.0 to 2.0.0 by @dependabot[bot] in actions/attest-build-provenance#736

Bump @actions/attest from 2.0.0 to 2.1.0 by @dependabot[bot] in actions/attest-build-provenance#775

Add support for creating artifact metadata storage records by @malancas in actions/attest-build-provenance#779

New Contributors

@malancas made their first contribution in actions/attest-build-provenance#779

Full Changelog: actions/attest-build-provenance@v3...v3.1.0

v3.0.0

What's Changed

Adjust node max-http-header-size setting by @bdehamer in actions/attest-build-provenance#687

Bump actions/attest from v2.4.0 to v3.0.0 by @bdehamer in actions/attest-build-provenance#691

Bump to node24 runtime

Improved checksum parsing

Bump attest-build-provenance/predicate to v2.0.0 by @bdehamer in actions/attest-build-provenance#693

Bump to node24 runtime by @bdehamer in actions/attest-build-provenance#692

⚠️ Minimum Compatible Runner Version

v2.327.1 Release Notes

Make sure your runner is updated to this version or newer to use this release.

... (truncated)

Commits

a2bbfa2 bump actions/attest from 4.0.0 to 4.1.0 (#838)
0856891 update RELEASE.md docs (#836)
e4d4f7c prepare v4 release (#835)
02a49bd Bump github/codeql-action in the actions-minor group (#824)
7c757df Bump the npm-development group with 2 updates (#825)
c44148e Bump github/codeql-action in the actions-minor group (#818)
3234352 Bump @types/node from 25.0.10 to 25.2.0 in the npm-development group (#819)
18db129 Bump tar from 7.5.6 to 7.5.7 (#816)
90fadfa Bump @actions/core from 2.0.1 to 2.0.2 in the npm-production group (#799)
57db8ba Bump the npm-development group across 1 directory with 3 updates (#808)
Additional commits viewable in compare view

Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance) from 2 to 4. - [Release notes](https://github.com/actions/attest-build-provenance/releases) - [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md) - [Commits](actions/attest-build-provenance@v2...v4) --- updated-dependencies: - dependency-name: actions/attest-build-provenance dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Apr 19, 2026

dependabot Bot requested a review from StanMarek as a code owner April 19, 2026 13:02

dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Apr 19, 2026

dependabot Bot force-pushed the dependabot/github_actions/actions/attest-build-provenance-4 branch 2 times, most recently from 5573fa0 to a243a16 Compare April 26, 2026 18:36

dependabot Bot force-pushed the dependabot/github_actions/actions/attest-build-provenance-4 branch from a243a16 to 4c52f67 Compare May 3, 2026 12:12

dependabot Bot force-pushed the dependabot/github_actions/actions/attest-build-provenance-4 branch from 4c52f67 to c713e92 Compare May 4, 2026 11:29

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump actions/attest-build-provenance from 2 to 4#72

chore(deps): bump actions/attest-build-provenance from 2 to 4#72
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/github_actions/actions/attest-build-provenance-4

dependabot Bot commented on behalf of github Apr 19, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Apr 19, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v4.0.0

What's Changed

v3.2.0

What's Changed

v3.1.0

What's Changed

New Contributors

v3.0.0

What's Changed

⚠️ Minimum Compatible Runner Version

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot Bot commented on behalf of github Apr 19, 2026 •

edited

Loading