Skip to content

upgrade(ci): bump peter-murray/workflow-application-token-action from 2.1.0 to 5.1.0 in /.github/workflows#484

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/dot-github/workflows/main/peter-murray/workflow-application-token-action-5.1.0
Open

upgrade(ci): bump peter-murray/workflow-application-token-action from 2.1.0 to 5.1.0 in /.github/workflows#484
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/dot-github/workflows/main/peter-murray/workflow-application-token-action-5.1.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 30, 2026

Copy link
Copy Markdown

Bumps peter-murray/workflow-application-token-action from 2.1.0 to 5.1.0.

Release notes

Sourced from peter-murray/workflow-application-token-action's releases.

v5.1.0

What's Changed

Full Changelog: peter-murray/workflow-application-token-action@v5.0...v5.1.0

v5.0.0

  • Supports NodeJS 24
  • Minor package updates to address npm audit findings

v4.0.1

Updating dependencies to resolve security vulnerabilities

v4.0.0

What's Changed

Full Changelog: peter-murray/workflow-application-token-action@v3.0.1...v4.0.0

v3.0.1

  • Switches back to the legacy Node.js url.parse() for URL parsing as @​vercel/ncc appears to be messing up the call and resulting in a TypeError: a is not a constructor errors
  • Libraries incrementally updated

v3.0.0

What's Changed

  • Updated libraries to latest version
  • Introduced a new input parameter revoke_token that will utilize a post job step to revoke the token, defaults to false to prevserve backwards compatibility
  • Updated to Node.js 20 for the actions runtime

Full Changelog: peter-murray/workflow-application-token-action@v2.1.0...v3.0.0

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [peter-murray/workflow-application-token-action](https://github.com/peter-murray/workflow-application-token-action) from 2.1.0 to 5.1.0.
- [Release notes](https://github.com/peter-murray/workflow-application-token-action/releases)
- [Commits](peter-murray/workflow-application-token-action@8e1ba3b...cb731e0)

---
updated-dependencies:
- dependency-name: peter-murray/workflow-application-token-action
  dependency-version: 5.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github

dependabot Bot commented on behalf of github Jun 30, 2026

Copy link
Copy Markdown
Author

Labels

The following labels could not be found: source: 💚 github_actions, source: 🤖 bot. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@CLAassistant

Copy link
Copy Markdown

CLA assistant check
Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
You have signed the CLA already but the status is still pending? Let us recheck it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant