Skip to content

SWI-9919: rebase onto upstream tj-actions/changed-files main#5

Merged
jgutierrezglez merged 211 commits intomainfrom
SWI-9919/rebase-upstream
Apr 13, 2026
Merged

SWI-9919: rebase onto upstream tj-actions/changed-files main#5
jgutierrezglez merged 211 commits intomainfrom
SWI-9919/rebase-upstream

Conversation

@jgutierrezglez
Copy link
Copy Markdown

@jgutierrezglez jgutierrezglez commented Apr 13, 2026

Summary

Test plan

  • Verify the 3 SWI-2827 Bandwidth-specific files are present after merge (.bandwidth/catalog-info.yaml, .github/CODEOWNERS, .bandwidth/component.yaml)
  • Confirm no conflicts were introduced during rebase

🤖 Generated with Claude Code

jackton1 and others added 30 commits March 19, 2025 19:13
@jackton1
docs: update versions (tj-actions#2488)
6482371
@allcontributors
docs: add RajendraP as a contributor for doc (tj-actions#2491)
678ecec 
Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com>
@github-actions
Updated README.md (tj-actions#2492)
f2f439b 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
@jackton1
fix: update log message when attempting to locate merge base (tj-acti…
a5cad85 
…ons#2493)
@jackton1
docs: Update update-readme.yml to use commit hashes in the docs (tj-a…
3a33fa9 
…ctions#2495)
@github-actions
Updated README.md (tj-actions#2496)
9cc867c 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
@jackton1 @actions-user
chore: update sync-release-version.yml to use commit hash for tags in…
a530a27 
… docs (tj-actions#2497)

Co-authored-by: GitHub Action <action@github.com>
@allcontributors
docs: add undefined-moe as a contributor for doc (tj-actions#2498)
26a3863 
Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com>
@github-actions
Updated README.md (tj-actions#2499)
9457878 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
@github-actions
Updated README.md (tj-actions#2501)
41e0de5 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
@github-actions @jackton1
Upgraded to v46.0.2 (tj-actions#2500)
401c722 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: Tonye Jack <jtonye@ymail.com>
@dependabot
chore(deps-dev): bump @types/node from 22.13.10 to 22.13.11 (tj-actio…
9468856 
…ns#2502)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@jackton1
chore: pin github actions (tj-actions#2503)
7a369a7
@jackton1
doc: remove warning (tj-actions#2504)
8132356
@dependabot
chore(deps): bump test/demo from 5dfac2e to c6bd3b3 (tj-actions#2505
823fceb 
)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@github-actions @jackton1
Upgraded to v46.0.3 (tj-actions#2506)
27ae6b3 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: Tonye Jack <jtonye@ymail.com>
@jackton1
docs: update readme (tj-actions#2508)
b74df86
@jackton1
fix: bug modified_keys and changed_key outputs not set when no change…
6cb76d0 
…s detected (tj-actions#2509)
@github-actions
Upgraded to v46.0.4 (tj-actions#2511)
6f67ee9 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump tj-actions/verify-changed-files from 20.0.1 to 20.0…
6abeaa5 
….4 (tj-actions#2523)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump tj-actions/branch-names from 8.0.1 to 8.1.0 (tj-act…
cf2e39e 
…ions#2521)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump github/codeql-action from 3.28.12 to 3.28.15 (tj-ac…
6802458 
…tions#2530)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump ts-jest from 29.2.6 to 29.3.1 (tj-actions#2518)
0bed1b1 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump eslint-plugin-prettier from 5.2.3 to 5.2.6 (tj-…
e2fda4e 
…actions#2519)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump @types/node from 22.13.11 to 22.14.0 (tj-action…
3d751f6 
…s#2517)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump typescript from 5.8.2 to 5.8.3 (tj-actions#2516)
a7bc14b 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump yaml from 2.7.0 to 2.7.1 (tj-actions#2520)
ed68ef8 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@github-actions
Upgraded to v46.0.5 (tj-actions#2531)
db731a1 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump eslint-config-prettier from 10.1.1 to 10.1.2 (t…
9934ab3 
…j-actions#2532)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump tj-actions/branch-names from 8.1.0 to 8.2.1 (tj-act…
9b4bb2b 
…ions#2535)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
dependabot bot and others added 20 commits February 28, 2026 16:16
@dependabot
chore(deps-dev): bump eslint-plugin-jest from 29.12.1 to 29.15.0 (tj-…
2180b0f 
…actions#2799)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump github/codeql-action from 4.32.2 to 4.32.4 (tj-acti…
37e96cc 
…ons#2806)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump prettier from 3.7.4 to 3.8.1 (tj-actions#2775)
de2962f 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump peter-evans/create-pull-request from 8.0.0 to 8.1.0 (
1cc5746 
…tj-actions#2774)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump lodash and @types/lodash (tj-actions#2807)
52ed872 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump eslint-plugin-prettier from 5.5.4 to 5.5.5 (tj-…
05f9457 
…actions#2764)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump github/codeql-action from 4.32.4 to 4.32.5 (tj-acti…
6c02e90 
…ons#2815)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump @types/node from 25.3.2 to 25.3.3 (tj-actions#2814
22103cc 
)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@github-actions @jackton1
Upgraded to v47.0.5 (tj-actions#2816)
4750530 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: Tonye Jack <jtonye@ymail.com>
@github-actions @jackton1
Updated README.md (tj-actions#2817)
c23d52b 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: Tonye Jack <jtonye@ymail.com>
@dependabot
chore(deps): bump actions/setup-node from 6.2.0 to 6.3.0 (tj-actions#…
e517d7a 
…2818)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump @types/node from 25.3.3 to 25.3.5 (tj-actions#2820
6118651 
)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump github/codeql-action from 4.32.5 to 4.32.6 (tj-acti…
4f892cd 
…ons#2819)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump @types/node from 25.3.5 to 25.5.0 (tj-actions#2825
445b0eb 
)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump actions/download-artifact from 8.0.0 to 8.0.1 (tj-a…
3d37a7f 
…ctions#2824)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump github/codeql-action from 4.32.6 to 4.35.1 (tj-acti…
2c3585e 
…ons#2834)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump eslint-plugin-jest from 29.15.0 to 29.15.1 (tj-…
726b41b 
…actions#2831)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump yaml from 2.8.2 to 2.8.3 (tj-actions#2830)
786e421 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump nrwl/nx-set-shas from 4.4.0 to 5.0.1 (tj-actions#2829)
cc98117 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump jest from 30.2.0 to 30.3.0 (tj-actions#2822)
2bb1357 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@bwappsec
Copy link
Copy Markdown

bwappsec commented Apr 13, 2026
edited
Loading

Snyk checks have passed. No issues have been found so far.

Status Scan Engine Critical High Medium Low Total (0)
Open Source Security 0 0 0 0 0 issues
Licenses 0 0 0 0 0 issues
Code Security 0 0 0 0 0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

@jgutierrezglez @claude
SWI-9919: merge upstream tj-actions/changed-files main
8aa0655 
Brings in all upstream changes from tj-actions/changed-files up to
commit 2bb1357 (jest bump tj-actions#2822).

Conflict resolution:
- README.md: took upstream version
- yarn.lock: took upstream version, then ran yarn install to honour
  Bandwidth's lodash ^4.18.1 and yaml ^2.8.3 security pins
  (auto-merged from Bandwidth snyk PRs #2 and #3)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@jgutierrezglez jgutierrezglez force-pushed the SWI-9919/rebase-upstream branch from 8e8c951 to 8aa0655 Compare April 13, 2026 11:02
jgutierrezglez and others added 4 commits April 13, 2026 13:11
@jgutierrezglez @claude
fix: resolve yarn all failures after upstream merge
b5dc9a3 
- Add .yarnrc.yml with nodeLinker: node-modules to fix native package
  build issues (unrs-resolver) under yarn berry
- Add eslint-plugin-import as explicit devDependency so ESLint can
  resolve it from the project root (was nested under eslint-plugin-github)
- Regenerate yarn.lock and dist/ after yarn install
- Add .yarn/install-state.gz to .gitignore

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@jgutierrezglez @claude
fix: add ES2022.Error to tsconfig lib to resolve ErrorOptions TS error
c32b3eb 
@octokit/request-error uses the ErrorOptions type from ES2022.
Without an explicit lib, TypeScript only includes types for the target
(ES2018), which doesn't include ErrorOptions.

Adding lib: ["ES2018", "ES2022.Error"] makes ErrorOptions available
without changing the compiled output target.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@jgutierrezglez @claude
fix: pin yarn 4.8.1 via packageManager and enable corepack in CI
92dcc10 
Without this, GitHub Actions falls back to yarn 1.x which cannot parse
the berry-format yarn.lock, resolves different package versions, and
produces a different dist/index.js — causing the "uncommitted changes"
check to fail.

- Add packageManager: "yarn@4.8.1" so setup-node/corepack provisions
  the correct yarn version
- Add `corepack enable` step in test.yml before yarn install

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@jgutierrezglez @claude
fix: enable corepack before setup-node to avoid yarn 1.x conflict
dd65bc0 
setup-node's cache: 'yarn' calls the system yarn (1.x) to locate the
cache folder before corepack shims are in place. yarn 1.x then sees
the packageManager field and errors out.

Fix: move corepack enable before setup-node and drop cache: 'yarn'.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@jgutierrezglez jgutierrezglez merged commit 5caceee into main Apr 13, 2026
149 checks passed
@jgutierrezglez jgutierrezglez deleted the SWI-9919/rebase-upstream branch April 13, 2026 12:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jwarnier jwarnier jwarnier approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@jgutierrezglez @bwappsec @jwarnier @jackton1 @Jellyfrog