Skip to content

build: bump MishaKav/pytest-coverage-comment from 1.6.0 to 1.7.2 in the all-actions group#442

Merged
github-actions[bot] merged 1 commit into
dependabotchangesfrom
dependabot/github_actions/dependabotchanges/all-actions-1f5ed37e5e
Jun 2, 2026
Merged

build: bump MishaKav/pytest-coverage-comment from 1.6.0 to 1.7.2 in the all-actions group#442
github-actions[bot] merged 1 commit into
dependabotchangesfrom
dependabot/github_actions/dependabotchanges/all-actions-1f5ed37e5e

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Jun 1, 2026

Bumps the all-actions group with 1 update: MishaKav/pytest-coverage-comment.

Updates MishaKav/pytest-coverage-comment from 1.6.0 to 1.7.2

Release notes

Sourced from MishaKav/pytest-coverage-comment's releases.

v1.7.2

What's Changed

Full Changelog: MishaKav/pytest-coverage-comment@v1.7.1...v1.7.2

v1.7.1

What's Changed

  • fix 5 security vulnerabilities in undici (6.23.0 → 6.24.1) (#260)
  • bump dev dependencies

Full Changelog: MishaKav/pytest-coverage-comment@v1.7.0...v1.7.1

v1.7.0

What's Changed

  • enable immutable releases for supply chain security (#256)
  • bump flatted from 3.3.3 to 3.4.1 to fix security vulnerability

Note: No changes to action inputs, outputs, or behavior. This improves release security following GitHub's immutable releases feature.

Full Changelog: MishaKav/pytest-coverage-comment@v1.6.0...v1.7.0

Changelog

Sourced from MishaKav/pytest-coverage-comment's changelog.

Changelog of the Pytest Coverage Comment

Pytest Coverage Comment 1.7.2

Release Date: 2026-04-18

Changes

  • bump dev dependencies: typescript 6.0.3, vitest 4.1.4, eslint 10.2.1, typescript-eslint 8.58.2

Pytest Coverage Comment 1.7.1

Release Date: 2026-03-14

Changes

  • fix 5 security vulnerabilities in undici (6.23.0 → 6.24.1) (#260)
  • bump dev dependencies

Pytest Coverage Comment 1.7.0

Release Date: 2026-03-13

Changes

  • enable immutable releases for supply chain security (#256)
  • bump flatted from 3.3.3 to 3.4.1 to fix security vulnerability

Note: No changes to action inputs, outputs, or behavior. This improves release security following GitHub's immutable releases feature.

Pytest Coverage Comment 1.6.0

Release Date: 2026-03-06

Changes

  • migrate codebase from JavaScript to TypeScript
  • add unit tests (91 tests) using Vitest with V8 coverage

Note: This is an internal rewrite — no changes to action inputs, outputs, or behavior. Fully backward compatible.

Pytest Coverage Comment 1.5.0

Release Date: 2026-02-28

Changes

  • feat: add hide-emoji option to hide emoji shortcodes from the test summary table (#251)
  • docs: update README examples to use @v1 tag and latest action versions (checkout@v6, setup-python@v6)

... (truncated)

Commits
  • dd5b80b Bump dev dependencies and release v1.7.2 (#268)
  • 288802c Bump schneegans/dynamic-badges-action from 1.7.0 to 1.8.0 (#264)
  • 45d7be6 Bump picomatch from 4.0.3 to 4.0.4 (#263)
  • ef975f0 Bump flatted from 3.4.1 to 3.4.2 (#262)
  • 2872928 Remove publish-immutable-actions workflow, bump deps, fix vulnerabilities (#2...
  • 6b219ea Enable immutable releases for supply chain security (#256) (#258)
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build: bump MishaKav/pytest-coverage-comment in the all-actions group
060a183 
Bumps the all-actions group with 1 update: [MishaKav/pytest-coverage-comment](https://github.com/mishakav/pytest-coverage-comment).


Updates `MishaKav/pytest-coverage-comment` from 1.6.0 to 1.7.2
- [Release notes](https://github.com/mishakav/pytest-coverage-comment/releases)
- [Changelog](https://github.com/MishaKav/pytest-coverage-comment/blob/main/CHANGELOG.md)
- [Commits](MishaKav/pytest-coverage-comment@26f986d...dd5b80b)

---
updated-dependencies:
- dependency-name: MishaKav/pytest-coverage-comment
  dependency-version: 1.7.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jun 1, 2026
@dependabot dependabot Bot requested a review from Avijit-Microsoft as a code owner June 1, 2026 06:29
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jun 1, 2026
@dependabot dependabot Bot added the github_actions Pull requests that update GitHub Actions code label Jun 1, 2026
@github-actions github-actions Bot merged commit 4a7d4e8 into dependabotchanges Jun 2, 2026
2 checks passed
@dependabot dependabot Bot deleted the dependabot/github_actions/dependabotchanges/all-actions-1f5ed37e5e branch June 2, 2026 00:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Avijit-Microsoft Avijit-Microsoft Awaiting requested review from Avijit-Microsoft Avijit-Microsoft is a code owner

@Roopan-Microsoft Roopan-Microsoft Awaiting requested review from Roopan-Microsoft Roopan-Microsoft is a code owner

@Prajwal-Microsoft Prajwal-Microsoft Awaiting requested review from Prajwal-Microsoft Prajwal-Microsoft is a code owner

@aniaroramsft aniaroramsft Awaiting requested review from aniaroramsft aniaroramsft is a code owner

@marktayl1 marktayl1 Awaiting requested review from marktayl1 marktayl1 is a code owner

@Vinay-Microsoft Vinay-Microsoft Awaiting requested review from Vinay-Microsoft Vinay-Microsoft is a code owner

@toherman-msft toherman-msft Awaiting requested review from toherman-msft toherman-msft is a code owner

@nchandhi nchandhi Awaiting requested review from nchandhi nchandhi is a code owner

@dgp10801 dgp10801 Awaiting requested review from dgp10801 dgp10801 is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants