Sourced from thomaseizinger/create-pull-request's changelog.

1.3.0 - 2022-12-12

Added

• Support for adding team reviewers by setting team_reviewers
• Support for adding assignees by setting assignees

Changed

• Execute action using node16 instead of node12 which is now deprecated.

1.2.0 - 2021-07-26

Added

• Support for adding labels by setting labels
• Check for existing pull request and created action output

1.1.0 - 2021-06-16

Added

• Git hook to make sure we always run yarn build before committing any Typescript changes. This should prevent dist/index.js from getting out of date.
• Support for setting a proxy using the HTTPS_PROXY environment variable
• Support for GitHub Enterprise by reading process.env.GITHUB_REPOSITORY

Fixed

• action.yml suggested to use github-token as the input where as in reality, we are looking for an input github_token (note the underscore!)

1.0.0 - 2020-02-15

Added

• Initial release!

• e397221 Bump nodejs to 16
• 321712c Merge pull request #235 from thomaseizinger/dependabot/npm_and_yarn/minimatch...
• 030f6ac Update changelog
• 7cc0778 Rebuild action
• 41ea577 Bump minimatch from 3.0.4 to 3.1.2
• 335eb12 Merge pull request #223 from thomaseizinger/dependabot/npm_and_yarn/decode-ur...
• 32a080b Merge pull request #224 from thomaseizinger/dependabot/npm_and_yarn/qs-6.5.3
• 16cf612 Bump qs from 6.5.2 to 6.5.3
• 5f467bf Bump decode-uri-component from 0.2.0 to 0.2.2
• 08c462e Merge pull request #215 from thomaseizinger/dependabot/npm_and_yarn/actions/c...
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from github/codeql-action's changelog.

2.1.9 - 27 Apr 2022

• Add working-directory input to the autobuild action. #1024
• The analyze and upload-sarif actions will now wait up to 2 minutes for processing to complete after they have uploaded the results so they can report any processing errors that occurred. This behavior can be disabled by setting the wait-for-processing action input to "false". #1007
• Update default CodeQL bundle version to 2.9.0.
• Fix a bug where status reporting fails on Windows. #1042

2.1.8 - 08 Apr 2022

• Update default CodeQL bundle version to 2.8.5. #1014
• Fix error where the init action would fail due to a GitHub API request that was taking too long to complete #1025

2.1.7 - 05 Apr 2022

• A bug where additional queries specified in the workflow file would sometimes not be respected has been fixed. #1018

2.1.6 - 30 Mar 2022

• [v2+ only] The CodeQL Action now runs on Node.js v16. #1000
• Update default CodeQL bundle version to 2.8.4. #990
• Fix a bug where an invalid commit_oid was being sent to code scanning when a custom checkout path was being used. #956

• 3962f1b Bump glob from 7.1.7 to 8.0.1
• 9daf1de Update references to release branches
• bce749b Improve consistency of variable references in Bash
• fce4a01 Update the major version tag within the release process
• bac9320 Update description of "Tag release and merge back" workflow
• b3bf557 Merge branch 'main' into henrymercer/handle-merge-conflicts-in-releases
• f6312f1 Commit any conflicts during v1 backport to simplify release process
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from dangoslen/changelog-enforcer's releases.

Changelog Enforcer 3.0.0

:rocket: The 3.0.0 release of the Changelog Enforcer is here! This release relies soley on the GitHub API instead of local git commands from a cloned repository. This means, for example, that actions/checkout does not need to be run before running the enforcer.

Fixes

• Fixes issue #142

Dependencies

• Bumps @vercel/ncc from 0.28.6 to 0.31.1
• Bumps @actions/core from 1.4.0 to 1.6.0
• Bumps jest from 27.0.5 to 27.3.1
• Bumps actions/checkout from 2.3.4 to 2.4.0
• Bumps uglify-js from 3.13.9 to 3.14.3
• Bumps eslint from 7.28.0 to 8.2.0

Changelog Enforcer 2.3.1

Changed

• Only runs on pull_request and pull_request_target events. This is to address issue #140

Changelog Enforcer 2.3.0

Dependencies

• Bumps lodash from 4.17.19 to 4.17.21
• Bumps stefanzweifel/git-auto-commit-action from 4 to 4.11.0
• Bumps actions/checkout from 2 to 2.3.4
• Bumps actions/create-release from 1 to 1.1.4
• Bumps uglify-js from 3.13.3 to 3.13.9
• Bumps eslint from 7.25.0 to 7.28.0
• Bumps @vercel/ncc from 0.28.2 to 0.28.6
• Bumps @actions/github from 4.0.0 to 5.0.0
• Bumps dangoslen/dependabot-changelog-helper from 0.3.2 to 1
• Bumps @actions/exec from 1.0.4 to 1.1.0
• Bumps @actions/core from 1.2.7 to 1.4.0
• Bumps jest from 26.6.3 to 27.0.5
• Bumps ws from 7.4.0 to 7.5.3

Changelog Enforcer 2.2.0

Internal Changes

• The pull_request workflow now executes as a pull_request_target workflow to handle incoming pull requests from forked repos.
  • This is needed because Dependabot now works as a forked branch. The reasoning and ways to accomodate are listed in a GitHub Security article
  • The verified label is needed to allow the workflow to execute

Dependencies

• Bumps uglify-js from 3.13.2 to 3.13.3
• Bumps y18n from 4.0.1 to 5.0.8
• Bumps @vercel/ncc from 0.27.0 to 0.28.2
• Bumps @actions/core from 1.2.6 to 1.2.7
• Bumps eslint from 7.23.0 to 7.25.0

Changelog Enforcer 2.1.0

Deprecated

• The input versionPattern is now deprecated. Starting in v3.0.0 the Changelog Enforcer will only work with Keep a Changelog for verifying the latest expected version.

Dependencies

• Bumps eslint from 7.21.0 to 7.23.0
• Bumps uglify-js from 3.13.0 3.13.2

... (truncated)

Sourced from dangoslen/changelog-enforcer's changelog.

CHANGELOG

Inspired from Keep a Changelog

[v3.0.0]

:rocket: The 3.0.0 release of the Changelog Enforcer is here! This release relies soley on the GitHub API instead of local git commands from a cloned repository. This means, for example, that actions/checkout does not need to be run before running the enforcer.

Fixes

• Fixes issue #142

Dependencies

• Bumps @vercel/ncc from 0.28.6 to 0.31.1
• Bumps @actions/core from 1.4.0 to 1.6.0
• Bumps jest from 27.0.5 to 27.3.1
• Bumps actions/checkout from 2.3.4 to 2.4.0
• Bumps uglify-js from 3.13.9 to 3.14.3
• Bumps eslint from 7.28.0 to 8.2.0

[v2.3.1]

Changed

• Only runs on pull_request and pull_request_target events. This is to address issue #140

[v2.3.0]

Dependencies

• Bumps lodash from 4.17.19 to 4.17.21
• Bumps stefanzweifel/git-auto-commit-action from 4 to 4.11.0
• Bumps actions/checkout from 2 to 2.3.4
• Bumps actions/create-release from 1 to 1.1.4
• Bumps uglify-js from 3.13.3 to 3.13.9
• Bumps eslint from 7.25.0 to 7.28.0
• Bumps @vercel/ncc from 0.28.2 to 0.28.6
• Bumps @actions/github from 4.0.0 to 5.0.0
• Bumps dangoslen/dependabot-changelog-helper from 0.3.2 to 1
• Bumps @actions/exec from 1.0.4 to 1.1.0
• Bumps @actions/core from 1.2.7 to 1.4.0
• Bumps jest from 26.6.3 to 27.0.5
• Bumps ws from 7.4.0 to 7.5.3

[v2.2.0]

Changed

• The pull_request workflow now executes as a pull_request_target workflow to handle incoming pull requests from forked repos.
  • This is needed because Dependabot now works as a forked branch. The reasoning and ways to accommodate are listed in a GitHub Security article
  • The verified label is needed to allow the workflow to execute

Dependencies

• Bumps uglify-js from 3.13.2 to 3.13.3
• Bumps y18n from 4.0.1 to 5.0.8
• Bumps @vercel/ncc from 0.27.0 to 0.28.2
• Bumps @actions/core from 1.2.6 to 1.2.7
• Bumps eslint from 7.23.0 to 7.25.0
• Bumps hosted-git-info from 2.8.8 to 2.8.9

[v2.1.0]

Deprecated

... (truncated)

• ac0fdae Releases/v3.0 (#169)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• ed928d9 Merge pull request #174 from uluzox/master
• c12554b add input 'repository'
• 843eecc Merge pull request #164 from thomaseizinger/dependabot/npm_and_yarn/tar-4.4.19
• 96bcc57 Bump tar from 4.4.15 to 4.4.19
• 330dc75 Merge pull request #157 from thomaseizinger/dependabot/npm_and_yarn/path-pars...
• 6e35354 Bump path-parse from 1.0.6 to 1.0.7
• 133e95e Merge pull request #151 from thomaseizinger/dependabot/npm_and_yarn/node-fetc...
• 900803c Bump node-fetch from 2.6.0 to 2.6.1
• 56ebc60 Merge pull request #145 from thomaseizinger/remove-eslint
• 4a98166 Run build script
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from thomaseizinger/keep-a-changelog-new-release's releases.

1.3.0

Added

• New optional tag argument allowing v-prefixed versions

Changed

• The version argument is no longer required

Deprecated

• The version argument will be replaced in favor of the tag argument

Sourced from thomaseizinger/keep-a-changelog-new-release's changelog.

[1.3.0] - 2021-10-12

Added

• New optional tag argument allowing v-prefixed versions

Changed

• The version argument is no longer required

Deprecated

• The version argument will be replaced in favor of the tag argument

• 5bc2328 Merge pull request #11 from h4sh3d/add-tag-argument
• 7e9f6cc Document new tag argument
• 576342e New tag argument to control prefix of version
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from thomaseizinger/create-pull-request's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[Unreleased]

• 6039001 Use github.actor instead of hardcoded name
• f3b6912 Added labels to action.yml (#75)
• 8aa44c8 Update CHANGELOG.md
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)