Skip to content

Bump actions/setup-python from 2.2.2 to 4.6.1#473

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions/setup-python-4.6.1
Closed

Bump actions/setup-python from 2.2.2 to 4.6.1#473
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions/setup-python-4.6.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 1, 2023

Copy link
Copy Markdown
Contributor

Bumps actions/setup-python from 2.2.2 to 4.6.1.

Release notes

Sourced from actions/setup-python's releases.

v4.6.1

What's Changed

New Contributors

Full Changelog: actions/setup-python@v4...v4.6.1

Add allow-prereleases input

In scope of this release we added a new input (allow-prereleases) to allow falling back to pre-release versions of Python when a matching GA version of Python is not available

steps:
  - uses: actions/checkout@v3
  - uses: actions/setup-python@v4
    with:
      python-version: 3.12
      allow-prereleases: true

Besides, we added such changes as:

Fix cache issue for Poetry projects located in subfolders

In scope of this release we fixed cache issue for Poetry projects located in subfolders (actions/setup-python#446). Besides that we updated json5 version from 2.2.0 to 2.2.3 (actions/setup-python#579).

Add support to install multiple python versions

In scope of this release we added support to install multiple python versions. For this you can try to use this snippet:

    - uses: actions/setup-python@v4
      with:
        python-version: |
            3.8
            3.9
            3.10

Besides, we changed logic with throwing the error for GHES if cache is unavailable to warn (actions/setup-python#566).

Improve error handling and messages

... (truncated)

Commits
  • bd6b4b6 Add warning for python 2.7 (#673)
  • 0cbcb9a Merge pull request #668 from akv-platform/disallow-implicit-dependencies
  • 669664d Merge branch 'tool-config-auto-update' into disallow-implicit-dependencies
  • 9cbf792 Update configuration files
  • e732e40 Update licenses
  • a0d867b Change http-client dependency to one matching previous version
  • d99bed8 Update license
  • f71253f Change to @​action/http-client version to the one that was used in the most re...
  • b51c97f Add eslint rule for disallowing implicit dependencies
  • db9987b Fix a incorrect link advanced-usage.md (#657)
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2.2.2 to 4.6.1.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](actions/setup-python@v2.2.2...v4.6.1)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code labels Jun 1, 2023
@codecov

codecov Bot commented Jun 1, 2023

Copy link
Copy Markdown

Codecov Report

Merging #473 (9c99630) into main (487793d) will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##             main     #473   +/-   ##
=======================================
  Coverage   63.69%   63.69%           
=======================================
  Files          31       31           
  Lines       52609    52609           
  Branches     3841     3841           
=======================================
  Hits        33510    33510           
  Misses      19064    19064           
  Partials       35       35           
Flag Coverage Δ
unit 63.69% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

AndreyVMarkelov added a commit that referenced this pull request Jul 10, 2026
Bump the action versions in coverage.yml and spec_update.yml to match
the versions already standardized in ci.yml and pypiupload.yml, and to
current major releases:

- actions/checkout: v2/v3 -> v5
- actions/setup-python: v3.1.4/v4 -> v6
- codecov/codecov-action: v3.1.6 -> v5
- peter-evans/create-pull-request: v5.0.0 -> v7

This supersedes the stale dependabot PRs #422, #471, #473, and #478,
which targeted long-outdated versions and had merge conflicts.
@AndreyVMarkelov

Copy link
Copy Markdown
Contributor

Superseded by #534 (merged), which bumped actions/setup-python to v6. Closing as obsolete.

@dependabot @github

dependabot Bot commented on behalf of github Jul 10, 2026

Copy link
Copy Markdown
Contributor Author

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot Bot deleted the dependabot/github_actions/actions/setup-python-4.6.1 branch July 10, 2026 23:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant