Skip to content

chore(deps): bump @actions/io from 2.0.0 to 3.0.2#1064

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/actions/io-3.0.2
Closed

chore(deps): bump @actions/io from 2.0.0 to 3.0.2#1064
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/actions/io-3.0.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 29, 2026

Copy link
Copy Markdown
Contributor

Bumps @actions/io from 2.0.0 to 3.0.2.

Changelog

Sourced from @​actions/io's changelog.

3.0.2

  • Fix: update lock file version

3.0.1

  • Fix: export @actions/io/lib/io-util

3.0.0

  • Breaking change: Package is now ESM-only
    • CommonJS consumers must use dynamic import() instead of require()
Commits
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​actions/io since your current version.


@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jun 29, 2026
@dependabot dependabot Bot requested a review from a team as a code owner June 29, 2026 03:42
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Jun 29, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/actions/io-3.0.2 branch from 903a122 to 42471b9 Compare June 29, 2026 08:16
@dependabot dependabot Bot changed the title Bump @actions/io from 2.0.0 to 3.0.2 chore(deps): bump @actions/io from 2.0.0 to 3.0.2 Jul 6, 2026
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/actions/io-3.0.2 branch from 42471b9 to f7234c4 Compare July 6, 2026 17:37
Bumps [@actions/io](https://github.com/actions/toolkit/tree/HEAD/packages/io) from 2.0.0 to 3.0.2.
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/io/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/io)

---
updated-dependencies:
- dependency-name: "@actions/io"
  dependency-version: 3.0.2
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/actions/io-3.0.2 branch from f7234c4 to c1330f6 Compare July 6, 2026 17:47
@brunoborges brunoborges requested a review from Copilot July 6, 2026 18:51

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates the @actions/io dependency used by actions/setup-java from v2 to v3, aligning the action with newer releases of the Actions toolkit.

Changes:

  • Bump @actions/io from ^2.0.0 to ^3.0.2 in package.json.
  • Update package-lock.json to reflect the new resolved @actions/io version and dependency graph.
Show a summary per file
File Description
package.json Updates the declared @actions/io dependency version to ^3.0.2.
package-lock.json Updates lockfile entries to resolve @actions/io@3.0.2 (while keeping nested v2 copies for other deps).

Review details

Tip

Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

  • Files reviewed: 1/2 changed files
  • Comments generated: 2
  • Review effort level: Low

Comment thread package.json
"@actions/glob": "^0.5.1",
"@actions/http-client": "^3.0.2",
"@actions/io": "^2.0.0",
"@actions/io": "^3.0.2",
Comment thread package.json
"@actions/glob": "^0.5.1",
"@actions/http-client": "^3.0.2",
"@actions/io": "^2.0.0",
"@actions/io": "^3.0.2",
@brunoborges brunoborges closed this Jul 7, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jul 7, 2026

Copy link
Copy Markdown
Contributor Author

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/actions/io-3.0.2 branch July 7, 2026 01:03
@brunoborges brunoborges self-assigned this Jul 7, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants