Skip to content

Bump astral-sh/ruff-action from 1 to 3#85

Open
dependabot[bot] wants to merge 1 commit into
1.x.xfrom
dependabot/github_actions/astral-sh/ruff-action-3
Open

Bump astral-sh/ruff-action from 1 to 3#85
dependabot[bot] wants to merge 1 commit into
1.x.xfrom
dependabot/github_actions/astral-sh/ruff-action-3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 10, 2026

Copy link
Copy Markdown
Contributor

Bumps astral-sh/ruff-action from 1 to 3.

Release notes

Sourced from astral-sh/ruff-action's releases.

v3.6.0 🌈 search for pyproject.toml in parent dirs

Changes

This release brings some bug fixes like

  • support for hashes in requirement.txt files
  • ignoring environment markers in version specifiers like "ruff~=0.13 ; python_version >= '3.11'" to prevent them from breaking the version resolver. If you have a usecase for needing the environment markers to derive the correct ruff version this action should use please add your voice to astral-sh/ruff-action#256

In case no pyproject.toml is in the configured src this action now also walks up the directory tree to search for it, just like the "normal" ruff does. This is limited to the current workspace to prevent this action from trying to access private data outside the GitHub Actions runner.

EDIT: Oh I forgot to mention that the error matcher now properly detects invalid formatting and displays the correct line number etc in the GitHub UI.

🐛 Bug fixes

🚀 Enhancements

  • Update the ruff-format matcher to properly extract all info @​eifinger (#293)

🧰 Maintenance

... (truncated)

Commits
  • 4919ec5 fix: persist credentials for git push in update-major-minor-tags workflow (#312)
  • 1977806 ci: add zizmor security linting (#313)
  • aedff8d Bump dependencies and actions (#311)
  • 191187a Bump actions/checkout from 5.0.0 to 6.0.1 (#278)
  • ecac2cc Bump github/codeql-action from 3.30.5 to 4.31.10 (#294)
  • ddb8c29 Bump actions/setup-node from 6.0.0 to 6.2.0 (#296)
  • 5eee2a4 search in parent dir (#306)
  • 1d756c4 chore: update known checksums for 0.14.13/0.14.14 (#297)
  • fde82cb Fix CI: Pin ruff version to stable 0.13.x in test fixture (#305)
  • deb6320 ignore environment markers in dep specs (#295)
  • Additional commits viewable in compare view

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jun 10, 2026
Bumps [astral-sh/ruff-action](https://github.com/astral-sh/ruff-action) from 1 to 3.
- [Release notes](https://github.com/astral-sh/ruff-action/releases)
- [Commits](astral-sh/ruff-action@v1...v3)

---
updated-dependencies:
- dependency-name: astral-sh/ruff-action
  dependency-version: '3'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
dependabot Bot force-pushed the dependabot/github_actions/astral-sh/ruff-action-3 branch from 3bbaaf2 to 788d88c Compare July 2, 2026 02:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants