build(deps): bump the actions group across 1 directory with 6 updates

[dependabot]

Bumps the actions group with 6 updates in the / directory:

Package	From	To
extractions/setup-just	3.1.0	4.0.0
astral-sh/setup-uv	7.3.1	8.0.0
jdx/mise-action	3.6.3	4.0.1
actions/upload-artifact	7.0.0	7.0.1
actions/download-artifact	8.0.0	8.0.1
aws-actions/configure-aws-credentials	6.0.0	6.1.0

Updates extractions/setup-just from 3.1.0 to 4.0.0

Commits

• 53165ef This is 4.0.0
• 3ed9feb Upgrade to latest setup-crate
• cf2bee9 Update setup-crate to Node 24 (#27)
• c261839 Bump actions/checkout from 5 to 6 (#25)
• See full diff in compare view

Updates astral-sh/setup-uv from 7.3.1 to 8.0.0

Release notes

Sourced from astral-sh/setup-uv's releases.

v8.0.0 🌈 Immutable releases and secure tags

This is the first immutable release of setup-uv 🥳

All future releases are also immutable, if you want to know more about what this means checkout the docs.

This release also has two breaking changes

New format for manifest-file

The previously deprecated way of defining a custom version manifest to control which uv versions are available and where to download them from got removed. The functionality is still there but you have to use the new format.

No more major and minor tags

To increase security even more we will stop publishing minor tags. You won't be able to use @v8 or @v8.0 any longer. We do this because pinning to major releases opens up users to supply chain attacks like what happened to tj-actions.

[!TIP] Use the immutable tag as a version astral-sh/setup-uv@v8.0.0 Or even better the githash astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57

🚨 Breaking changes

• Remove update-major-minor-tags workflow @​eifinger (#826)
• Remove deprecrated custom manifest @​eifinger (#813)

🧰 Maintenance

• Shortcircuit latest version from manifest @​eifinger (#828)
• Simplify inputs.ts @​eifinger (#827)
• Bump release-drafter to v7.1.1 @​eifinger (#825)
• Refactor inputs @​eifinger (#823)
• Replace inline compile args with tsconfig @​eifinger (#824)
• chore: update known checksums for 0.11.2 @github-actions[bot] (#821)
• chore: update known checksums for 0.11.1 @github-actions[bot] (#817)
• chore: update known checksums for 0.11.0 @github-actions[bot] (#815)
• Fix latest-version workflow check @​eifinger (#812)
• chore: update known checksums for 0.10.11/0.10.12 @github-actions[bot] (#811)

v7.6.0 🌈 Fetch uv from Astral's mirror by default

Changes

We now default to download uv from releases.astral.sh. This means by default we don't hit the GitHub API at all and shouldn't see any rate limits and timeouts any more.

🚀 Enhancements

• Fetch uv from Astral's mirror by default @​zsol (#809)

🧰 Maintenance

• Switch to ESM for source and test, use CommonJS for dist @​eifinger (#806)
• chore: update known checksums for 0.10.10 @github-actions[bot] (#804)

... (truncated)

Commits

• cec2083 Shortcircuit latest version from manifest (#828)
• 4dd8ab4 Simplify inputs.ts (#827)
• 7fdbe7c Remove update-major-minor-tags workflow (#826)
• 485abd0 Bump release-drafter to v7.1.1 (#825)
• f82eb19 Refactor inputs (#823)
• 868d1f7 Replace inline compile args with tsconfig (#824)
• 447e6d0 chore: update known checksums for 0.11.2 (#821)
• 5c62c59 chore: update known checksums for 0.11.1 (#817)
• e1a7373 chore: update known checksums for 0.11.0 (#815)
• 8970931 Remove deprecrated custom manifest (#813)
• Additional commits viewable in compare view

Updates jdx/mise-action from 3.6.3 to 4.0.1

Release notes

Sourced from jdx/mise-action's releases.

v4.0.1: Documentation and Internal Cleanup

A small maintenance release that updates the README documentation to reflect v4 and cleans up internal code. There are no functional changes to the action itself.

Changed

• Updated all README examples to reference jdx/mise-action@v4, actions/checkout@v6, and current tool versions by @​deining in #407 and #408
• Extracted getCwd() helper to deduplicate working directory resolution logic (internal refactor, no behavior change) by @​altendky in #403

New Contributors

• @​deining made their first contribution in #407

Full Changelog: jdx/mise-action@v4.0.0...v4.0.1

Changelog

Sourced from jdx/mise-action's changelog.

Changelog

---

4.0.1 - 2026-03-22

🐛 Bug Fixes

• run npm install in pre-commit hook before build (#410) by @​jdx in #410

🚜 Refactor

• extract getCwd() helper to deduplicate working directory resolution (#403) by @​altendky in #403

📚 Documentation

• bump versions listed im README.md (#407) by @​deining in #407
• bump more versions listed in README.md (#408) by @​deining in #408

⚙️ Miscellaneous Tasks

• add workflow to auto-close stale PRs (#409) by @​jdx in #409

New Contributors

• @​deining made their first contribution in #408

---

4.0.0 - 2026-03-13

🚀 Features

• breaking Update Node.js version from 20 to 24 (#395) by @​tumerorkun in #395

New Contributors

• @​tumerorkun made their first contribution in #395

---

3.6.3 - 2026-03-06

🐛 Bug Fixes

• pass cwd to all exec calls in exportMiseEnv() (#390) by @​andrewthauer in #390

New Contributors

• @​andrewthauer made their first contribution in #390

---

3.6.2 - 2026-03-02

... (truncated)

Commits

• 1648a78 chore: release v4.0.1 (#406)
• e2d499c ci: add workflow to auto-close stale PRs (#409)
• 0cc0f19 fix: run npm install in pre-commit hook before build (#410)
• 89c67a3 docs: bump more versions listed in README.md (#408)
• 0409dde docs: bump versions listed im README.md (#407)
• abadabd refactor: extract getCwd() helper to deduplicate working directory resolution...
• c5b2043 chore(deps): update github/codeql-action digest to 603b797 (#404)
• 71c0f0a chore(deps): lock file maintenance (#400)
• c1ecc8f chore: release v4.0.0 (#398)
• 1cbe8c5 chore(deps): update github/codeql-action digest to 820e316 (#397)
• Additional commits viewable in compare view

Updates actions/upload-artifact from 7.0.0 to 7.0.1

Release notes

Sourced from actions/upload-artifact's releases.

v7.0.1

What's Changed

• Update the readme with direct upload details by @​danwkennedy in actions/upload-artifact#795
• Readme: bump all the example versions to v7 by @​danwkennedy in actions/upload-artifact#796
• Include changes in typespec/ts-http-runtime 0.3.5 by @​yacaovsnc in actions/upload-artifact#797

Full Changelog: actions/upload-artifact@v7...v7.0.1

Commits

• 043fb46 Merge pull request #797 from actions/yacaovsnc/update-dependency
• 634250c Include changes in typespec/ts-http-runtime 0.3.5
• e454baa Readme: bump all the example versions to v7 (#796)
• 74fad66 Update the readme with direct upload details (#795)
• See full diff in compare view

Updates actions/download-artifact from 8.0.0 to 8.0.1

Release notes

Sourced from actions/download-artifact's releases.

v8.0.1

What's Changed

• Support for CJK characters in the artifact name by @​danwkennedy in actions/download-artifact#471
• Add a regression test for artifact name + content-type mismatches by @​danwkennedy in actions/download-artifact#472

Full Changelog: actions/download-artifact@v8...v8.0.1

Commits

• 3e5f45b Add regression tests for CJK characters (#471)
• e6d03f6 Add a regression test for artifact name + content-type mismatches (#472)
• See full diff in compare view

Updates aws-actions/configure-aws-credentials from 6.0.0 to 6.1.0

Release notes

Sourced from aws-actions/configure-aws-credentials's releases.

v6.1.0

6.1.0 (2026-04-06)

Features

• add skip cleanup option (#1716) (11b1c58), closes #1545
• Support usage of AWS Profiles (#1696) (a7f0c82)

Changelog

Sourced from aws-actions/configure-aws-credentials's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

6.1.0 (2026-04-06)

Features

• add skip cleanup option (#1716) (11b1c58), closes #1545
• Support usage of AWS Profiles (#1696) (a7f0c82)

6.0.0 (2026-02-04)

⚠ BREAKING CHANGES

• Update action to use node24 (#1632) (a7a2c11)

Features

• add support to define transitive tag keys (#1316) (232435c) (930ebd9)

Bug Fixes

• properly output aws-account-id and authenticated-arn when using role-chaining (#1633) (7ceaf96)

5.1.1 (2025-11-24)

Miscellaneous Chores

• release 5.1.1 (56d6a58)

5.1.0 (2025-10-06)

Features

• Add global timeout support (#1487) (1584b8b)
• add no-proxy support (#1482) (dde9b22)
• Improve debug logging in retry logic (#1485) (97ef425)

Bug Fixes

• properly expose getProxyForUrl (introduced in #1482) (#1486) (cea4298)

5.0.0 (2025-09-03)

... (truncated)

Commits

• ec61189 chore(main): release 6.1.0 (#1717)
• 81676eb chore(deps): bump vite from 7.1.11 to 7.3.2 (#1721)
• dc64d28 chore(deps-dev): bump lodash from 4.17.23 to 4.18.1 (#1720)
• bc0a50a chore: Update dist
• 9ea6412 chore(deps): bump proxy-agent from 6.5.0 to 7.0.0 (#1686)
• 0a87594 chore: Update dist
• a7f0c82 feat: Support usage of AWS Profiles (#1696)
• e6bb6e5 chore: add text to CONTRIBUTING.md (#1719)
• 11b1c58 feat: add skip cleanup option (#1716)
• 51635db chore: Update dist
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[netlify]

✅ Deploy Preview for ideas-offby1 ready!

Name	Link
🔨 Latest commit	62976b0
🔍 Latest deploy log	https://app.netlify.com/projects/ideas-offby1/deploys/69e3675bd9c9460008cc98e2
😎 Deploy Preview	https://deploy-preview-196--ideas-offby1.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.