Skip to content

chore(deps): bump actions/attest-build-provenance from 4.1.0 to 4.1.1 in the actions-minor-patch group across 1 directory#1542

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions-minor-patch-49d1d51d03
Open

chore(deps): bump actions/attest-build-provenance from 4.1.0 to 4.1.1 in the actions-minor-patch group across 1 directory#1542
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions-minor-patch-49d1d51d03

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 29, 2026

Copy link
Copy Markdown
Contributor

Bumps the actions-minor-patch group with 1 update in the / directory: actions/attest-build-provenance.

Updates actions/attest-build-provenance from 4.1.0 to 4.1.1

Release notes

Sourced from actions/attest-build-provenance's releases.

v4.1.1

[!NOTE] As of version 4, actions/attest-build-provenance is simply a wrapper on top of actions/attest.

Existing applications may continue to use the attest-build-provenance action, but new implementations should use actions/attest instead.

What's Changed

Full Changelog: actions/attest-build-provenance@v4.1.0...v4.1.1

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jun 29, 2026
@dependabot dependabot Bot requested a review from asheshgoplani as a code owner June 29, 2026 21:55
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jun 29, 2026

Copy link
Copy Markdown
Owner

🤖 autopilot: Cannot auto-merge — touches .github/workflows (workflow scope not available to autopilot token). Please merge this Dependabot bump manually after reviewing the actions/attest-build-provenance minor patch changes.


Generated by Claude Code

Copy link
Copy Markdown
Owner

🤖 autopilot: this PR touches .github/workflows/ — the autopilot token lacks workflow scope, so it cannot be auto-merged. Please merge manually.


Generated by Claude Code

Copy link
Copy Markdown
Owner

🤖 autopilot: this PR touches .github/workflows/ files. Autopilot policy never merges workflow-touching PRs — please review and merge manually.


Generated by Claude Code

Bumps the actions-minor-patch group with 1 update in the / directory: [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance).


Updates `actions/attest-build-provenance` from 4.1.0 to 4.1.1
- [Release notes](https://github.com/actions/attest-build-provenance/releases)
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md)
- [Commits](actions/attest-build-provenance@a2bbfa2...0f67c3f)

---
updated-dependencies:
- dependency-name: actions/attest-build-provenance
  dependency-version: 4.1.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title chore(deps): bump actions/attest-build-provenance from 4.1.0 to 4.1.1 in the actions-minor-patch group chore(deps): bump actions/attest-build-provenance from 4.1.0 to 4.1.1 in the actions-minor-patch group across 1 directory Jul 6, 2026
@dependabot dependabot Bot force-pushed the dependabot/github_actions/actions-minor-patch-49d1d51d03 branch from 5b3e8b4 to df56a4a Compare July 6, 2026 21:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant