v1.2.0

Compare Source

What's Changed

• BUILD-8875: Migrate to standardized GitHub runner names by @​SonarTech in #​39
• chore(deps): update github actions by @​renovate[bot] in #​35
• chore(deps): update github actions (major) by @​renovate[bot] in #​38
• chore(deps): update dependency python to 3.14 by @​renovate[bot] in #​40
• chore(deps): update actions/checkout action to v6 by @​renovate[bot] in #​42
• chore(deps): update actions/cache action to v5 by @​renovate[bot] in #​44
• chore(deps): update github actions by @​renovate[bot] in #​41

New Contributors

• @​SonarTech made their first contribution in #​39

Full Changelog: SonarSource/gh-action_pre-commit@1.1.0...1.2.0

v3.1.1

Compare Source

What's Changed

• BUILD-8875: Migrate to standardized GitHub runner names by @​SonarTech in #​63
• chore(deps): update actions/checkout action to v5 by @​renovate[bot] in #​62
• chore(deps): update github actions by @​renovate[bot] in #​60
• PREQ-3809 Add jwtTtl parameter to control GitHub OIDC token lifetime by @​SamirM-BE in #​68
• PREQ-3809 Update jwtTtl default to 1h and replace RE team references by @​SamirM-BE in #​69

New Contributors

• @​SonarTech made their first contribution in #​63

Full Changelog: SonarSource/vault-action-wrapper@3.1.0...3.1.1

v3.2.0

Compare Source

What's Changed

• Bump @​actions/core from 1.11.1 to 2.0.1 by @​dependabot[bot] in #​776
• Add more documentation on Artifact Metadata Storage Records by @​malancas in #​797
• Update actions/attest to latest version v3.2.0 by @​malancas in #​812

Full Changelog: actions/attest-build-provenance@v3.1.0...v3.2.0

v3.1.0

Compare Source

What's Changed

• Prepare v3 release by @​bdehamer in #​697
• Bump js-yaml from 3.14.1 to 3.14.2 by @​dependabot[bot] in #​749
• Bump tar from 7.5.1 to 7.5.2 by @​dependabot[bot] in #​753
• Bump glob from 10.4.5 to 10.5.0 by @​dependabot[bot] in #​754
• Bump @​types/node from 24.10.1 to 25.0.2 by @​dependabot[bot] in #​774
• Bump @​actions/attest from 1.6.0 to 2.0.0 by @​dependabot[bot] in #​736
• Bump @​actions/attest from 2.0.0 to 2.1.0 by @​dependabot[bot] in #​775
• Add support for creating artifact metadata storage records by @​malancas in #​779

New Contributors

• @​malancas made their first contribution in #​779

Full Changelog: actions/attest-build-provenance@v3...v3.1.0

v5.0.1

Compare Source

What's Changed

• Port v6 cleanup to v5 by @​ericsciple in #​2301

Full Changelog: actions/checkout@v5...v5.0.1

v1.2.1

Compare Source

[v1.2.1] – Security: Dependency upgrades and lifecycle date extension

Description
This release focuses on security hardening by upgrading direct and transitive dependencies to their latest secure versions. It also extends the end of service and end of life dates to allow customers additional time to migrate to DigiCert Binary Signing. These updates resolve multiple critical and high severity vulnerabilities while maintaining full backward compatibility.

Upgrade steps

Update your workflows to replace your uses value with:
uses: digicert/[email protected]

Breaking changes

• None

New features

• None

Bug fixes

• Fixed multiple security vulnerabilities by updating dependencies to secure versions
• Resolved known vulnerabilities in transitive dependencies used by the GitHub Action

Performance improvements

• None

Other changes

• Extended the end of service and end of life dates to allow for migration to DigiCert Binary Signing
• Updated @digicert/ssm-client-tools-installer from v1.6.0 to v1.6.1
  • Includes critical security patches and dependency updates
• Upgraded security sensitive dependencies, including:
  • semantic-release from 19.x to 25.x
  • @semantic-release/github from 8.x to 12.x
  • Multiple @octokit packages updated to the latest secure versions
• Additional dependency updates to improve overall security posture

v1.2.0

Compare Source

[v1.2.0] - Improvement: Faster and more reliable tool downloads

Description
Updates the download source for ssm-client-tools-installer to use DigiCert’s CDN, resulting in faster and more reliable downloads of required tools during workflow execution.

Upgrade steps

• Recommended: Migrate to DigiCert Binary Signing, as Code signing with Software Trust Manager is planned for deprecation on May 1, 2026.
• Alternatively, update your workflow:
  From:
  uses: digicert/[email protected]
  To:
  uses: digicert/[email protected]

Breaking changes

• None

New features

• None

Bug fixes

• None

Performance improvements

• Improved reliability and consistency when downloading signing tools.

Other changes

• Updated dependencies to fetch tools from DigiCert’s CDN.

v3.6.1

Compare Source

What's Changed

• Revert "fix(cache): isolate cache keys per working_directory in monorepos" by @​jdx in #​364
• chore: release v3.6.1 by @​mise-en-dev in #​365

Full Changelog: jdx/mise-action@v3.6.0...v3.6.1

v3.6.0

Compare Source

What's Changed

• chore(deps): update dependency prettier to v3.7.1 by @​renovate[bot] in #​331
• chore(deps): update github/codeql-action digest to 497990d by @​renovate[bot] in #​324
• chore(deps): update dependency typescript-eslint to v8.48.1 by @​renovate[bot] in #​332
• chore(deps): update dependency @​types/handlebars to v4.1.0 by @​renovate[bot] in #​314
• chore(deps): update dependency @​eslint/eslintrc to v3.3.3 by @​renovate[bot] in #​333
• chore(deps): lock file maintenance by @​renovate[bot] in #​336
• chore(deps): lock file maintenance by @​renovate[bot] in #​338
• fix: use mise_dir input when specified by @​jdx in #​339
• feat: add option to disable shims in PATH by @​jdx in #​340
• fix: pass environment variables to mise commands by @​jdx in #​341
• chore(deps): lock file maintenance by @​renovate[bot] in #​344
• chore(deps): update github/codeql-action digest to 45c3735 by @​renovate[bot] in #​346
• chore(deps): lock file maintenance by @​renovate[bot] in #​348
• chore(deps): update actions/checkout action to v6 by @​renovate[bot] in #​350
• chore(deps): lock file maintenance by @​renovate[bot] in #​352
• docs: fix description for mise_toml input by @​quad in #​351
• fix: make mise self-update output visible in logs by @​nikobockerman in #​355
• chore(deps): update actions/setup-node action to v6 by @​renovate[bot] in #​356
• chore(deps): lock file maintenance by @​renovate[bot] in #​358
• chore(deps): update actions/setup-node digest to 6044e13 by @​renovate[bot] in #​361
• fix(cache): isolate cache keys per working_directory in monorepos by @​chadxz in #​360
• chore(deps): update github/codeql-action digest to 4bdb89f by @​renovate[bot] in #​362
• chore(deps): update dependency @​types/handlebars to v4.1.0 by @​renovate[bot] in #​349
• chore(deps): update actions/upload-artifact action to v6 by @​renovate[bot] in #​357
• chore: release v3.6.0 by @​mise-en-dev in #​342

New Contributors

• @​quad made their first contribution in #​351
• @​nikobockerman made their first contribution in #​355
• @​chadxz made their first contribution in #​360

Full Changelog: jdx/mise-action@v3.5.1...v3.6.0