Commit eb9083f
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?v=4&size=40){kind=avatar}
build(deps): bump getsentry/craft from 2.26.6 to 2.26.8 (#6514)
Bumps [getsentry/craft](https://github.com/getsentry/craft) from 2.26.6
to 2.26.8.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/getsentry/craft/releases">getsentry/craft's
releases</a>.</em></p>
<blockquote>
<h2>2.26.8</h2>
<h3>New Features ✨</h3>
<ul>
<li>(pypi) Support TWINE_VERBOSE env var to pass --verbose to twine
upload by <a
href="https://github.com/sentry-junior"><code>@sentry-junior</code></a>
in <a
href="https://redirect.github.com/getsentry/craft/pull/829">#829</a></li>
</ul>
<h3>Bug Fixes 🐛</h3>
<ul>
<li>Avoid test timeout in extractZipArchive by batching writes by <a
href="https://github.com/BYK"><code>@BYK</code></a> in <a
href="https://redirect.github.com/getsentry/craft/pull/830">#830</a></li>
</ul>
<h2>2.26.7</h2>
<h3>Bug Fixes 🐛</h3>
<ul>
<li>(nuget) Use unique suffix for global.json backup by <a
href="https://github.com/jamescrosswell"><code>@jamescrosswell</code></a>
in <a
href="https://redirect.github.com/getsentry/craft/pull/823">#823</a></li>
<li>(security) Upgrade vitest to ^4.1.0 and tmp to ^0.2.6 by <a
href="https://github.com/BYK"><code>@BYK</code></a> in <a
href="https://redirect.github.com/getsentry/craft/pull/828">#828</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/getsentry/craft/blob/master/CHANGELOG.md">getsentry/craft's
changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<h2>2.26.8</h2>
<h3>New Features ✨</h3>
<ul>
<li>(pypi) Support TWINE_VERBOSE env var to pass --verbose to twine
upload by <a
href="https://github.com/sentry-junior"><code>@sentry-junior</code></a>
in <a
href="https://redirect.github.com/getsentry/craft/pull/829">#829</a></li>
</ul>
<h3>Bug Fixes 🐛</h3>
<ul>
<li>Avoid test timeout in extractZipArchive by batching writes by <a
href="https://github.com/BYK"><code>@BYK</code></a> in <a
href="https://redirect.github.com/getsentry/craft/pull/830">#830</a></li>
</ul>
<h2>2.26.7</h2>
<h3>Bug Fixes 🐛</h3>
<ul>
<li>(nuget) Use unique suffix for global.json backup by <a
href="https://github.com/jamescrosswell"><code>@jamescrosswell</code></a>
in <a
href="https://redirect.github.com/getsentry/craft/pull/823">#823</a></li>
<li>(security) Upgrade vitest to ^4.1.0 and tmp to ^0.2.6 by <a
href="https://github.com/BYK"><code>@BYK</code></a> in <a
href="https://redirect.github.com/getsentry/craft/pull/828">#828</a></li>
</ul>
<h2>2.26.6</h2>
<h3>Bug Fixes 🐛</h3>
<ul>
<li>(nuget) Move global.json aside during <code>dotnet setversion</code>
by <a
href="https://github.com/jamescrosswell"><code>@jamescrosswell</code></a>
in <a
href="https://redirect.github.com/getsentry/craft/pull/820">#820</a></li>
<li>(security) Override <code>@tootallnate/once</code> to ^2.0.1
(CVE-2026-3449) by <a
href="https://github.com/BYK"><code>@BYK</code></a> in <a
href="https://redirect.github.com/getsentry/craft/pull/822">#822</a></li>
<li>Improve partial publishing recovery for CocoaPods and GitHub targets
by <a href="https://github.com/BYK"><code>@BYK</code></a> in <a
href="https://redirect.github.com/getsentry/craft/pull/821">#821</a></li>
</ul>
<h2>2.26.5</h2>
<h3>Bug Fixes 🐛</h3>
<ul>
<li>(security) Bump devalue override to ^5.8.1 (CVE-2026-42570) by <a
href="https://github.com/BYK"><code>@BYK</code></a> in <a
href="https://redirect.github.com/getsentry/craft/pull/818">#818</a></li>
</ul>
<h2>2.26.4</h2>
<h3>Bug Fixes 🐛</h3>
<ul>
<li>(security) Prevent script injection in changelog-preview workflow by
<a
href="https://github.com/fix-it-felix-sentry"><code>@fix-it-felix-sentry</code></a>
in <a
href="https://redirect.github.com/getsentry/craft/pull/813">#813</a></li>
<li>Resolve open dependabot security alerts by <a
href="https://github.com/BYK"><code>@BYK</code></a> in <a
href="https://redirect.github.com/getsentry/craft/pull/816">#816</a></li>
</ul>
<h3>Internal Changes 🔧</h3>
<ul>
<li>(deps-dev) Bump simple-git from 3.33.0 to 3.36.0 by <a
href="https://github.com/dependabot"><code>@dependabot</code></a> in <a
href="https://redirect.github.com/getsentry/craft/pull/814">#814</a></li>
</ul>
<h2>2.26.3</h2>
<h3>Bug Fixes 🐛</h3>
<ul>
<li>Prevent shell injection vulnerabilities in GitHub Actions workflows
by <a
href="https://github.com/fix-it-felix-sentry"><code>@fix-it-felix-sentry</code></a>
in <a
href="https://redirect.github.com/getsentry/craft/pull/811">#811</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/getsentry/craft/commit/4468eb9e399655a61c770534dacc03139d98aa18"><code>4468eb9</code></a>
release: 2.26.8</li>
<li><a
href="https://github.com/getsentry/craft/commit/811aeb46ec7c1fbc3396376f87e57859ef857795"><code>811aeb4</code></a>
meta: Bump new development version</li>
<li><a
href="https://github.com/getsentry/craft/commit/c12e6a1efdd24c3ee9a2a82ecc02e2d56548e3cc"><code>c12e6a1</code></a>
Merge branch 'release/2.26.7'</li>
<li><a
href="https://github.com/getsentry/craft/commit/e6ef5dc2341308985b129bb14dff3434a8ddac8e"><code>e6ef5dc</code></a>
fix: avoid test timeout in extractZipArchive by batching writes (<a
href="https://redirect.github.com/getsentry/craft/issues/830">#830</a>)</li>
<li><a
href="https://github.com/getsentry/craft/commit/2d91188a567c27575be26f7f06a4701ecd4d94ce"><code>2d91188</code></a>
release: 2.26.7</li>
<li><a
href="https://github.com/getsentry/craft/commit/4333a7898e4dd4062a8417852867df1eb67e9cb9"><code>4333a78</code></a>
feat(pypi): support TWINE_VERBOSE env var to pass --verbose to twine
upload (...</li>
<li><a
href="https://github.com/getsentry/craft/commit/fa28b715b297c571eaf10e617def1bd068c0928a"><code>fa28b71</code></a>
fix(security): upgrade vitest to ^4.1.0 and tmp to ^0.2.6 (<a
href="https://redirect.github.com/getsentry/craft/issues/828">#828</a>)</li>
<li><a
href="https://github.com/getsentry/craft/commit/ded21127c8417509afc8396faf6019fa8ca52068"><code>ded2112</code></a>
fix(nuget): use unique suffix for global.json backup (<a
href="https://redirect.github.com/getsentry/craft/issues/823">#823</a>)</li>
<li><a
href="https://github.com/getsentry/craft/commit/a4e09a4a6729260c5067688601105de2765eac9e"><code>a4e09a4</code></a>
meta: Bump new development version</li>
<li><a
href="https://github.com/getsentry/craft/commit/51bc1d629dd9480d947d7e8ec1fc1ebc580aa59b"><code>51bc1d6</code></a>
Merge branch 'release/2.26.6'</li>
<li>See full diff in <a
href="https://github.com/getsentry/craft/compare/3e6a0f477702864bb5854384b390a0db3325428e...4468eb9e399655a61c770534dacc03139d98aa18">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Ivana Kellyer <ivana.kellyer@sentry.io>1 parent 74549ed commit eb9083f
1 file changed
Lines changed: 1 addition & 1 deletion
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
31 | 31 | | |
32 | 32 | | |
33 | 33 | | |
34 | | - | |
| 34 | + | |
35 | 35 | | |
36 | 36 | | |
37 | 37 | | |
| |||
0 commit comments