Bump the github-actions group across 1 directory with 7 updates

[dependabot]

Bumps the github-actions group with 7 updates in the / directory:

Package	From	To
actions/checkout	6.0.1	6.0.2
vmactions/freebsd-vm	1.3.7	1.3.8
vmactions/solaris-vm	1.2.6	1.2.8
jwlawson/actions-setup-cmake	2.0.2	2.1.1
release-drafter/release-drafter	6.1.1	6.2.0
rojopolis/spellcheck-github-actions	0.57.0	0.58.0
taiki-e/install-action	2.66.7	2.67.18

Updates actions/checkout from 6.0.1 to 6.0.2

Release notes

Sourced from actions/checkout's releases.

v6.0.2

What's Changed

• Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set by @​TingluoHuang in actions/checkout#2355
• Fix tag handling: preserve annotations and explicit fetch-tags by @​ericsciple in actions/checkout#2356

Full Changelog: actions/checkout@v6.0.1...v6.0.2

Changelog

Sourced from actions/checkout's changelog.

Changelog

v6.0.2

• Fix tag handling: preserve annotations and explicit fetch-tags by @​ericsciple in actions/checkout#2356

v6.0.1

• Add worktree support for persist-credentials includeIf by @​ericsciple in actions/checkout#2327

v6.0.0

• Persist creds to a separate file by @​ericsciple in actions/checkout#2286
• Update README to include Node.js 24 support details and requirements by @​salmanmkc in actions/checkout#2248

v5.0.1

• Port v6 cleanup to v5 by @​ericsciple in actions/checkout#2301

v5.0.0

• Update actions checkout to use node 24 by @​salmanmkc in actions/checkout#2226

v4.3.1

• Port v6 cleanup to v4 by @​ericsciple in actions/checkout#2305

v4.3.0

• docs: update README.md by @​motss in actions/checkout#1971
• Add internal repos for checking out multiple repositories by @​mouismail in actions/checkout#1977
• Documentation update - add recommended permissions to Readme by @​benwells in actions/checkout#2043
• Adjust positioning of user email note and permissions heading by @​joshmgross in actions/checkout#2044
• Update README.md by @​nebuk89 in actions/checkout#2194
• Update CODEOWNERS for actions by @​TingluoHuang in actions/checkout#2224
• Update package dependencies by @​salmanmkc in actions/checkout#2236

v4.2.2

• url-helper.ts now leverages well-known environment variables by @​jww3 in actions/checkout#1941
• Expand unit test coverage for isGhes by @​jww3 in actions/checkout#1946

v4.2.1

• Check out other refs/* by commit if provided, fall back to ref by @​orhantoy in actions/checkout#1924

v4.2.0

• Add Ref and Commit outputs by @​lucacome in actions/checkout#1180
• Dependency updates by @​dependabot- actions/checkout#1777, actions/checkout#1872

v4.1.7

• Bump the minor-npm-dependencies group across 1 directory with 4 updates by @​dependabot in actions/checkout#1739
• Bump actions/checkout from 3 to 4 by @​dependabot in actions/checkout#1697
• Check out other refs/* by commit by @​orhantoy in actions/checkout#1774
• Pin actions/checkout's own workflows to a known, good, stable version. by @​jww3 in actions/checkout#1776

v4.1.6

• Check platform to set archive extension appropriately by @​cory-miller in actions/checkout#1732

... (truncated)

Commits

• de0fac2 Fix tag handling: preserve annotations and explicit fetch-tags (#2356)
• 064fe7f Add orchestration_id to git user-agent when ACTIONS_ORCHESTRATION_ID is set (...
• See full diff in compare view

Updates vmactions/freebsd-vm from 1.3.7 to 1.3.8

Release notes

Sourced from vmactions/freebsd-vm's releases.

v1.3.8

support disable-cache

Commits

• ba6bede Update vmactions/freebsd-vm from base vm
• f90ab5e Generated from base-vm
• 2aa4283 Update version to v1.3.7
• 83c050b Update vmactions/freebsd-vm from base vm
• 3390f92 Generated from base-vm
• 688fa2d Update vmactions/freebsd-vm from base vm
• 1e619fc Generated from base-vm
• 9ca2c77 Sync from https://github.com/vmactions/base-vm
• 23d332d Update vmactions/freebsd-vm from base vm
• 93ac2d0 Generated from base-vm
• Additional commits viewable in compare view

Updates vmactions/solaris-vm from 1.2.6 to 1.2.8

Release notes

Sourced from vmactions/solaris-vm's releases.

v1.2.8

Support debug-on-error: true

Access the VM through a web vnc page to debug issues.

See more: https://github.com/vmactions/.github/wiki/debug%E2%80%90on%E2%80%90error

Full Changelog: vmactions/solaris-vm@v1.2.7...v1.2.8

v1.2.7

add disable-cache

Commits

• 6fcd81b Update vmactions/solaris-vm from base vm
• e2ae9ee Generated from base-vm
• 80489ac update
• eb93c02 Update vmactions/solaris-vm from base vm
• 69680b7 Generated from base-vm
• d489c06 Update vmactions/solaris-vm from base vm
• c0432b6 Generated from base-vm
• 7c623b8 Update vmactions/solaris-vm from base vm
• 15610f5 Generated from base-vm
• 1514578 Update version to v1.2.7
• Additional commits viewable in compare view

Updates jwlawson/actions-setup-cmake from 2.0.2 to 2.1.1

Release notes

Sourced from jwlawson/actions-setup-cmake's releases.

v2.1.1

What's Changed

• Bump js-yaml from 3.14.1 to 3.14.2 by @​dependabot[bot] in jwlawson/actions-setup-cmake#82
• Bump lodash from 4.17.21 to 4.17.23 by @​dependabot[bot] in jwlawson/actions-setup-cmake#85
• Bump undici from 5.28.4 to 5.29.0 by @​dependabot[bot] in jwlawson/actions-setup-cmake#77
• Bump form-data from 3.0.1 to 3.0.4 by @​dependabot[bot] in jwlawson/actions-setup-cmake#80
• Bump qs from 6.11.2 to 6.14.1 by @​dependabot[bot] in jwlawson/actions-setup-cmake#84

Full Changelog: jwlawson/actions-setup-cmake@v2.1...v2.1.1

v2.1.0

What's Changed

• Bump braces from 3.0.2 to 3.0.3 by @​dependabot[bot] in jwlawson/actions-setup-cmake#71
• Bump ws from 7.5.9 to 7.5.10 by @​dependabot[bot] in jwlawson/actions-setup-cmake#72
• Support for aarch64/arm64 ubuntu-24.04-arm runner by @​tomjakubowski in jwlawson/actions-setup-cmake#83

New Contributors

• @​tomjakubowski made their first contribution in jwlawson/actions-setup-cmake#83

Full Changelog: jwlawson/actions-setup-cmake@v2.0.2...v2.1.0

Commits

• 3a6cbe3 Bump qs from 6.11.2 to 6.14.1 (#84)
• 7fb8d24 Bump form-data from 3.0.1 to 3.0.4 (#80)
• 793d732 Bump undici from 5.28.4 to 5.29.0 (#77)
• 0ba40df Bump lodash from 4.17.21 to 4.17.23 (#85)
• b3445ac Bump js-yaml from 3.14.1 to 3.14.2 (#82)
• af5f669 Support for aarch64/arm64 ubuntu-24.04-arm runner (#83)
• 09fd9b0 Bump ws from 7.5.9 to 7.5.10 (#72)
• e6b5411 Bump braces from 3.0.2 to 3.0.3 (#71)
• See full diff in compare view

Updates release-drafter/release-drafter from 6.1.1 to 6.2.0

Release notes

Sourced from release-drafter/release-drafter's releases.

v6.2.0

What's Changed

New

• Add config option for history-limit (#1470) @​gjvoosten
• Add 'commits-since' configuration option for release drafts (#1451) @​slawekjaranowski

Maintenance

• build: support OIDC for npmjs publishing (#1480) @​cchanche

Documentation

• Update README.md (#1434) @​kunaljubce

Full Changelog: release-drafter/release-drafter@v6.1.1...v6.2.0

Commits

• 6db134d ci: add diff for debugging unstaged files
• a9305a6 chore: fix package.json and lockfile
• 309083b chore: bump to v6.2.0
• 923fffe Add config option for history-limit (#1470)
• fa20e47 docs: typo in README.md (#1434)
• 4178e5a feat: 'commits-since' configuration option (#1451)
• 686295d build: support OIDC for npmjs publishing (#1480)
• 9928b92 setup oidc release flow
• See full diff in compare view

Updates rojopolis/spellcheck-github-actions from 0.57.0 to 0.58.0

Release notes

Sourced from rojopolis/spellcheck-github-actions's releases.

0.58.0

What's Changed

• Security patch for dependency pymdown-extensions by @​jonasbn in rojopolis/spellcheck-github-actions#313
• Bump rojopolis/spellcheck-github-actions from 0.56.0 to 0.57.0 by @​dependabot[bot] in rojopolis/spellcheck-github-actions#315

Full Changelog: rojopolis/spellcheck-github-actions@0.57.0...0.58.0

Changelog

Sourced from rojopolis/spellcheck-github-actions's changelog.

Change Log for spellcheck-github-actions

0.58.0, 2026-01-20, security release, update not required

• A minor security issue in the dependency: pymdown-extensions, which is used by the core component PySpelling
  • GHSA-r6h4-mm7h-8pmq
  • Original issue: facelessuser/pymdown-extensions#2716

0.57.0, 2026-01-14, maintenance release, update not required

• Docker based image updated to Python 3.14.2 slim trixie via PR #310 from Dependabot. The version is the same, the image has had updates.

0.56.0, 2025-12-27, feature and maintenance release, update not required

• Support for Portuguese (Portugal and Brazil) for both Hunspell and Aspell, requested by: @​mdiazgoncalves via issue #298
• Docker image updated to Python 3.14.2 trixie slim Release notes for Python 3.14.2

0.55.0, 2025-11-27, maintenance release, update not required

• Via an issue #293 from @​shoverbj, an update to the core component PySpelling from version 2.12.0 to version 2.12.1 was made, this allows for use of large dictionaries with Aspell

0.54.0, 2025-11-05, feature release, update not required

• PySpelling the core component has been updated to version 2.12.0, which introduces support for maximum available cores. The feature is described in the release notes for PySpelling 2.12.0. See the documentation for PySpelling.

• The flag was introduced with release 2.10 of PySpelling, which was adopted in release 0.36.0 of this action.

0.53.0, 2025-10-25, maintenance release, update not required

• Docker image updated to Python 3.14.0 trixie slim Release notes for Python 3.14.0, this originated from the PR mentioned below, however updated to Trixie from Bookworm and as always the slim variant is used

• Bumped the requirement for cython to 3.0.11 or above, addressing a build issue with lxml, located when testing the PR : #274 from @​dependabot, the above update of Python

• In general the Docker build file had a few updates since the above changes required some tweaking of the Dockerfile

  • Order of installation of dependencies adjusted to ensure that lxml can build correctly
  • Installation of:
    • build-essential
    • pkg-config
    • libxml2-dev
    • libxslt1-dev
    • zlib1g-dev

0.52.0, 2025-09-10, feature release, update not required

• With version 2.11 of PySpelling a new command line option --skip-dict-compile is introduced to PySpelling and is adopted by this action. This will skip the dictionary compiling step if the dictionary already exists. Changes to a custom dictionary will be ignored., see the release notes for PySpelling. Do see the updated documentation for details.

  • The feature can be enabled by setting the input parameter skip_dict_compile to true, the default is false, meaning that the dictionary will be compiled on each run of the action.
  • This can save time if you have a large custom dictionary that does not change often.

• Docker image updated to Python 3.13.7 bookworm slim Release notes for Python 3.13.7

... (truncated)

Commits

• 0bf4b2f Bumped release date
• d2bf0b0 Bump rojopolis/spellcheck-github-actions from 0.56.0 to 0.57.0 (#315)
• 247484a Fixed some spelling, URLs should possibly be treated as code
• 8c73a77 Security patch for dependency pymdown-extensions (#313)
• See full diff in compare view

Updates taiki-e/install-action from 2.66.7 to 2.67.18

Release notes

Sourced from taiki-e/install-action's releases.

2.67.18

• Update prek@latest to 0.3.1.

• Update mise@latest to 2026.1.12.

• Update cargo-insta@latest to 1.46.2.

2.67.17

• Update rclone@latest to 1.73.0.

• Update mise@latest to 2026.1.11.

• Update vacuum@latest to 0.23.5.

• Update trivy@latest to 0.69.0.

2.67.16

• Update uv@latest to 0.9.28.

• Update syft@latest to 1.41.1.

• Update protoc@latest to 3.33.5.

• Update martin@latest to 1.3.0.

• Update mise@latest to 2026.1.9.

• Update editorconfig-checker@latest to 3.6.1.

• Update cargo-binstall@latest to 1.17.4.

2.67.15

• Update typos@latest to 1.42.3.

• Update cargo-zigbuild@latest to 0.21.4.

2.67.14

• Update syft@latest to 1.41.0.

• Update cargo-llvm-cov@latest to 0.8.2.

• Update mise@latest to 2026.1.8.

• Update wasmtime@latest to 41.0.1.

• Update uv@latest to 0.9.27.

2.67.13

• Update typos@latest to 1.42.2.

... (truncated)

Changelog

Sourced from taiki-e/install-action's changelog.

Changelog

All notable changes to this project will be documented in this file.

This project adheres to Semantic Versioning.

[Unreleased]

• Update mise@latest to 2026.2.0.

[2.67.18] - 2026-01-31

• Update prek@latest to 0.3.1.

• Update mise@latest to 2026.1.12.

• Update cargo-insta@latest to 1.46.2.

[2.67.17] - 2026-01-31

• Update rclone@latest to 1.73.0.

• Update mise@latest to 2026.1.11.

• Update vacuum@latest to 0.23.5.

• Update trivy@latest to 0.69.0.

[2.67.16] - 2026-01-30

• Update uv@latest to 0.9.28.

• Update syft@latest to 1.41.1.

• Update protoc@latest to 3.33.5.

• Update martin@latest to 1.3.0.

• Update mise@latest to 2026.1.9.

• Update editorconfig-checker@latest to 3.6.1.

• Update cargo-binstall@latest to 1.17.4.

[2.67.15] - 2026-01-28

... (truncated)

Commits

• 650c5ca Release 2.67.18
• 1e5407d Update prek@latest to 0.3.1
• 2284e12 Update mise@latest to 2026.1.12
• 3382d98 Update cargo-insta@latest to 1.46.2
• 29feb09 Release 2.67.17
• c955ca4 Update rclone@latest to 1.73.0
• 095a7a9 Update mise@latest to 2026.1.11
• f89f9e6 Update vacuum@latest to 0.23.5
• 20ccfe7 Update trivy@latest to 0.69.0
• a362280 Release 2.67.16
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
taiki-e/install-action	[< 2.63, > 2.62.12]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions