Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NHSDigital/eps-devcontainers
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: 12e73aa
Choose a base ref
...
head repository: NHSDigital/eps-devcontainers
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: 0468d86
Choose a head ref
  • 13 commits
  • 28 files changed
  • 2 contributors

Commits on Mar 10, 2026

  1. Chore: [AEA-0000] - upgrade to latest trivy (#49) 

    ## Summary

- Routine Change

### Details

- upgrade to latest trivy
    @anthony-nhs
    anthony-nhs authored Mar 10, 2026
    Configuration menu
    Copy the full SHA
    59f3f0e View commit details
    Browse the repository at this point in the history

  2. Upgrade: [dependabot] - bump endersonmenezes/free-disk-space from 3.1… 

    ….0 to 3.2.2 (#47)

Bumps
[endersonmenezes/free-disk-space](https://github.com/endersonmenezes/free-disk-space)
from 3.1.0 to 3.2.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/endersonmenezes/free-disk-space/releases">endersonmenezes/free-disk-space's
releases</a>.</em></p>
<blockquote>
<h2>v3.2.2</h2>
<p><strong>Changed:</strong></p>
<ul>
<li>🤖 Enhance release-manager skill with terminal gotchas, tag-first
workflow, CHANGELOG-based release notes, and updated agent
DO/DON'Ts</li>
</ul>
<h2>v3.2.1</h2>
<p><strong>Added:</strong></p>
<ul>
<li>🤖 Add Release Manager skill for managing semantic version releases
and updating major version alias</li>
</ul>
<p><strong>Changed:</strong></p>
<ul>
<li>📝 Update CHANGELOG.md and README.md with recent changes and
performance improvements</li>
</ul>
<h2>v3.2.0</h2>
<p><strong>Added:</strong></p>
<ul>
<li>🧪 Add support for Ubuntu 22.04 in workflow templates and update
README with compatibility badges</li>
<li>📝 Create CHANGELOG.md and update README to link to it</li>
<li>🤖 Add Copilot instructions and agent documentation</li>
<li>🤖 Add Changelog Maintainer skill to automate CHANGELOG.md
updates</li>
</ul>
<p><strong>Changed:</strong></p>
<ul>
<li>📊 Distinguish total free space from recovered space in output —
fixes <a
href="https://redirect.github.com/endersonmenezes/free-disk-space/issues/22">#22</a></li>
<li>🛠️ Update GitHub Actions extension identifier in devcontainer
configuration</li>
<li>🔧 Update workflow templates and improve cleanup validation</li>
<li>🔧 Update disk-space-engineer agent tools for enhanced
functionality</li>
<li>🔄 Pre-commit autoupdate</li>
</ul>
<p><strong>Fixed:</strong></p>
<ul>
<li>🐛 Replace <code>bc</code> alias with variable path to prevent
breakage when <code>bc</code> is relocated during cleanup</li>
<li>🐛 Replace Docker-based shellcheck with Python-based alternative in
DevContainer</li>
</ul>
<p><strong>CI/CD Improvements:</strong></p>
<ul>
<li>🧹 Remove user-reported full cleanup test from workflow jobs</li>
<li>🧪 Expand folder removal list in package removal tests for improved
cleanup</li>
</ul>
<p><strong>Special Thanks:</strong></p>
<ul>
<li><a href="https://github.com/cuiyf5516">cuiyf5516</a> for fixing the
<code>bc</code> path issue on Ubuntu 22.04 (<a
href="https://redirect.github.com/endersonmenezes/free-disk-space/pull/27">#27</a>)
— first contribution! 🎉</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/endersonmenezes/free-disk-space/blob/main/CHANGELOG.md">endersonmenezes/free-disk-space's
changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<p>All notable changes to <strong>Free Disk Space Action</strong> are
documented here.</p>
<p>Format follows <a href="https://keepachangelog.com/en/1.0.0/">Keep a
Changelog</a>.<br />
Versioning follows <a
href="https://semver.org/spec/v2.0.0.html">Semantic Versioning</a>.</p>
<hr />
<h2>[Unreleased]</h2>
<hr />
<h2>[v3.2.2] — 2026-03-03 — Commit: <code>5eabf23</code></h2>
<p><strong>Changed:</strong></p>
<ul>
<li>🤖 Enhance release-manager skill with terminal gotchas, tag-first
workflow, CHANGELOG-based release notes, and updated agent DO/DON'Ts
(<code>5eabf23</code>)</li>
</ul>
<hr />
<h2>[v3.2.1] — 2026-03-03 — Commit: <code>9cf1114</code></h2>
<p><strong>Added:</strong></p>
<ul>
<li>🤖 Add Release Manager skill for managing semantic version releases
and updating major version alias (<code>9cf1114</code>)</li>
</ul>
<p><strong>Changed:</strong></p>
<ul>
<li>📝 Update CHANGELOG.md and README.md with recent changes and
performance improvements (<code>dcf58cd</code>)</li>
</ul>
<hr />
<h2>[v3.2.0] — 2026-03-03 — Commit: <code>f63fea6</code></h2>
<p><strong>Added:</strong></p>
<ul>
<li>🧪 Add support for Ubuntu 22.04 in workflow templates and update
README with compatibility badges (<code>2c1f01a</code>)</li>
<li>📝 Create CHANGELOG.md and update README to link to it
(<code>19c7ae6</code>)</li>
<li>🤖 Add Copilot instructions and agent documentation
(<code>403e664</code>)</li>
<li>🤖 Add Changelog Maintainer skill to automate CHANGELOG.md updates
(<code>c7496bb</code>)</li>
</ul>
<p><strong>Changed:</strong></p>
<ul>
<li>📊 Distinguish total free space from recovered space in output —
fixes <a
href="https://redirect.github.com/endersonmenezes/free-disk-space/issues/22">#22</a>
(<code>a89b4e5</code>)</li>
<li>🛠️ Update GitHub Actions extension identifier in devcontainer
configuration (<code>a9a4807</code>)</li>
<li>🔧 Update workflow templates and improve cleanup validation
(<code>225faab</code>)</li>
<li>🔧 Update disk-space-engineer agent tools for enhanced functionality
(<code>4ef9f03</code>)</li>
<li>🔄 Pre-commit autoupdate (<code>17f6375</code>)</li>
</ul>
<p><strong>Fixed:</strong></p>
<ul>
<li>🐛 Replace <code>bc</code> alias with variable path to prevent
breakage when <code>bc</code> is relocated during cleanup
(<code>0d73123</code>)</li>
<li>🐛 Replace Docker-based shellcheck with Python-based alternative in
DevContainer (<code>eebb38f</code>)</li>
</ul>
<p><strong>CI/CD Improvements:</strong></p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/endersonmenezes/free-disk-space/commit/7901478139cff6e9d44df5972fd8ab8fcade4db1"><code>7901478</code></a>
docs: update CHANGELOG.md with v3.2.2 entry</li>
<li><a
href="https://github.com/endersonmenezes/free-disk-space/commit/5eabf23116ebc049661e024e5c877c95c5e4932a"><code>5eabf23</code></a>
feat: enhance terminal command guidelines and git usage instructions in
SKILL.md</li>
<li><a
href="https://github.com/endersonmenezes/free-disk-space/commit/e7b3f000b90fc78393d5583d7bbaca582e9aca79"><code>e7b3f00</code></a>
docs: update CHANGELOG.md with v3.2.1 entry</li>
<li><a
href="https://github.com/endersonmenezes/free-disk-space/commit/9cf1114a742e30bc9e58d155a206662a46070af3"><code>9cf1114</code></a>
feat: add release-manager skill for managing semantic version releases
and up...</li>
<li><a
href="https://github.com/endersonmenezes/free-disk-space/commit/dcf58cd3a6c8e10bfe22956fecaf3aaffc73fa22"><code>dcf58cd</code></a>
feat: update CHANGELOG.md and README.md with recent changes and
performance i...</li>
<li><a
href="https://github.com/endersonmenezes/free-disk-space/commit/f63fea6f87e289a84e198c31eada98c53c09b30f"><code>f63fea6</code></a>
feat: expand folder removal list in package removal tests for improved
cleanup</li>
<li><a
href="https://github.com/endersonmenezes/free-disk-space/commit/4ef9f03845fa070611b2ea5656b112bf8df28963"><code>4ef9f03</code></a>
feat: update disk-space-engineer agent tools for enhanced functionality
and V...</li>
<li><a
href="https://github.com/endersonmenezes/free-disk-space/commit/2c1f01a4778f2d34ddedb29a7b6639e0f8459de3"><code>2c1f01a</code></a>
feat: add support for Ubuntu 22.04 in workflow templates and update
README wi...</li>
<li><a
href="https://github.com/endersonmenezes/free-disk-space/commit/225faab0b333d003d92fc13ed7e55f2a80d99177"><code>225faab</code></a>
feat: update workflow templates and improve cleanup validation</li>
<li><a
href="https://github.com/endersonmenezes/free-disk-space/commit/c7496bba5a7495439633063f5b770f9803f20af9"><code>c7496bb</code></a>
feat: add Changelog Maintainer skill to automate CHANGELOG.md
updates</li>
<li>Additional commits viewable in <a
href="https://github.com/endersonmenezes/free-disk-space/compare/e6ed9b02e683a3b55ed0252f1ee469ce3b39a885...7901478139cff6e9d44df5972fd8ab8fcade4db1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=endersonmenezes/free-disk-space&package-manager=github_actions&previous-version=3.1.0&new-version=3.2.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Mar 10, 2026
    Configuration menu
    Copy the full SHA
    662342b View commit details
    Browse the repository at this point in the history

  3. Upgrade: [dependabot] - bump NHSDigital/eps-common-workflows/.github/… 

    …workflows/dependabot-auto-approve-and-merge.yml from 5.5.3 to 5.6.3 (#44)

Bumps
[NHSDigital/eps-common-workflows/.github/workflows/dependabot-auto-approve-and-merge.yml](https://github.com/nhsdigital/eps-common-workflows)
from 5.5.3 to 5.6.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/nhsdigital/eps-common-workflows/releases">NHSDigital/eps-common-workflows/.github/workflows/dependabot-auto-approve-and-merge.yml's
releases</a>.</em></p>
<blockquote>
<h2>v5.6.3</h2>
<h2><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.2...v5.6.3">5.6.3</a>
(2026-03-06)</h2>
<h3>Chore</h3>
<ul>
<li>[AEA-5986] - Allow semantic release to handle python build (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/83">#83</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/141907b215220e95e3ed3811d0fe8fa18675dbed">141907b</a>)</li>
</ul>
<h2>Info</h2>
<p><a
href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22773044980">Release
workflow run</a> - Workflow ID: 22773044980</p>
<p>It was initialized by <a
href="https://github.com/originalphil">originalphil</a></p>
<h2>v5.6.2</h2>
<h2><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.1...v5.6.2">5.6.2</a>
(2026-03-05)</h2>
<h3>Upgrade</h3>
<ul>
<li>[dependabot] - bump conventional-changelog-eslint from 6.0.0 to
6.1.0 (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/82">#82</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/91d5906640395bcda81360fb4b78adaf2f09fd2e">91d5906</a>)</li>
</ul>
<h2>Info</h2>
<p><a
href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22730971742">Release
workflow run</a> - Workflow ID: 22730971742</p>
<p>It was initialized by <a
href="https://github.com/apps/eps-autoapprove-dependabot">eps-autoapprove-dependabot[bot]</a></p>
<h2>v5.6.1</h2>
<h2><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.0...v5.6.1">5.6.1</a>
(2026-03-05)</h2>
<h3>Fix</h3>
<ul>
<li>[AEA-0000] - Always run valid trivy scans even if a previous scan
failed, so that all vulnerabilities are identified at once. Shorten
feedback cycle for vulnerabilities across multiple scans. (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/78">#78</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/d116ba935f2a9544c7bcc6dc37ea997fada6e780">d116ba9</a>)</li>
</ul>
<h2>Info</h2>
<p><a
href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22727356777">Release
workflow run</a> - Workflow ID: 22727356777</p>
<p>It was initialized by <a
href="https://github.com/connoravo-nhs">connoravo-nhs</a></p>
<h2>v5.6.0</h2>
<h1><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.5.3...v5.6.0">5.6.0</a>
(2026-03-05)</h1>
<h3>Fix</h3>
<ul>
<li>[AEA-5986] - Fix publish fame library (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/77">#77</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/aac5b797ee198b8bd260d618cf7cbdf723860033">aac5b79</a>)</li>
</ul>
<h3>New</h3>
<ul>
<li>[AEA-5986] - Publish to PyPI (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/76">#76</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/de2118390681f2e1701dddcaa463dcea743a6e92">de21183</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/141907b215220e95e3ed3811d0fe8fa18675dbed"><code>141907b</code></a>
Chore: [AEA-5986] - Allow semantic release to handle python build (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/83">#83</a>)</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/91d5906640395bcda81360fb4b78adaf2f09fd2e"><code>91d5906</code></a>
Upgrade: [dependabot] - bump conventional-changelog-eslint from 6.0.0 to
6.1....</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/d116ba935f2a9544c7bcc6dc37ea997fada6e780"><code>d116ba9</code></a>
Fix: [AEA-0000] - Always run valid trivy scans even if a previous scan
failed...</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/aac5b797ee198b8bd260d618cf7cbdf723860033"><code>aac5b79</code></a>
Fix: [AEA-5986] - Fix publish fame library (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/77">#77</a>)</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/d5222938de3b91e0fe94db73d61eb9e0f781b1ed"><code>d522293</code></a>
Upgrade: [dependabot] - bump aquasecurity/trivy-action from 0.34.0 to
0.34.1 ...</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/de2118390681f2e1701dddcaa463dcea743a6e92"><code>de21183</code></a>
New: [AEA-5986] - Publish to PyPI (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/76">#76</a>)</li>
<li>See full diff in <a
href="https://github.com/nhsdigital/eps-common-workflows/compare/8404cf6e3a61ac8de4d1644e175e288aa4965815...141907b215220e95e3ed3811d0fe8fa18675dbed">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=NHSDigital/eps-common-workflows/.github/workflows/dependabot-auto-approve-and-merge.yml&package-manager=github_actions&previous-version=5.5.3&new-version=5.6.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Mar 10, 2026
    Configuration menu
    Copy the full SHA
    f3610f9 View commit details
    Browse the repository at this point in the history

  4. Upgrade: [dependabot] - bump NHSDigital/eps-common-workflows/.github/… 

    …workflows/tag-release.yml from 5.5.3 to 5.6.3 (#45)

Bumps
[NHSDigital/eps-common-workflows/.github/workflows/tag-release.yml](https://github.com/nhsdigital/eps-common-workflows)
from 5.5.3 to 5.6.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/nhsdigital/eps-common-workflows/releases">NHSDigital/eps-common-workflows/.github/workflows/tag-release.yml's
releases</a>.</em></p>
<blockquote>
<h2>v5.6.3</h2>
<h2><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.2...v5.6.3">5.6.3</a>
(2026-03-06)</h2>
<h3>Chore</h3>
<ul>
<li>[AEA-5986] - Allow semantic release to handle python build (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/83">#83</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/141907b215220e95e3ed3811d0fe8fa18675dbed">141907b</a>)</li>
</ul>
<h2>Info</h2>
<p><a
href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22773044980">Release
workflow run</a> - Workflow ID: 22773044980</p>
<p>It was initialized by <a
href="https://github.com/originalphil">originalphil</a></p>
<h2>v5.6.2</h2>
<h2><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.1...v5.6.2">5.6.2</a>
(2026-03-05)</h2>
<h3>Upgrade</h3>
<ul>
<li>[dependabot] - bump conventional-changelog-eslint from 6.0.0 to
6.1.0 (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/82">#82</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/91d5906640395bcda81360fb4b78adaf2f09fd2e">91d5906</a>)</li>
</ul>
<h2>Info</h2>
<p><a
href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22730971742">Release
workflow run</a> - Workflow ID: 22730971742</p>
<p>It was initialized by <a
href="https://github.com/apps/eps-autoapprove-dependabot">eps-autoapprove-dependabot[bot]</a></p>
<h2>v5.6.1</h2>
<h2><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.0...v5.6.1">5.6.1</a>
(2026-03-05)</h2>
<h3>Fix</h3>
<ul>
<li>[AEA-0000] - Always run valid trivy scans even if a previous scan
failed, so that all vulnerabilities are identified at once. Shorten
feedback cycle for vulnerabilities across multiple scans. (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/78">#78</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/d116ba935f2a9544c7bcc6dc37ea997fada6e780">d116ba9</a>)</li>
</ul>
<h2>Info</h2>
<p><a
href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22727356777">Release
workflow run</a> - Workflow ID: 22727356777</p>
<p>It was initialized by <a
href="https://github.com/connoravo-nhs">connoravo-nhs</a></p>
<h2>v5.6.0</h2>
<h1><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.5.3...v5.6.0">5.6.0</a>
(2026-03-05)</h1>
<h3>Fix</h3>
<ul>
<li>[AEA-5986] - Fix publish fame library (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/77">#77</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/aac5b797ee198b8bd260d618cf7cbdf723860033">aac5b79</a>)</li>
</ul>
<h3>New</h3>
<ul>
<li>[AEA-5986] - Publish to PyPI (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/76">#76</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/de2118390681f2e1701dddcaa463dcea743a6e92">de21183</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/141907b215220e95e3ed3811d0fe8fa18675dbed"><code>141907b</code></a>
Chore: [AEA-5986] - Allow semantic release to handle python build (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/83">#83</a>)</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/91d5906640395bcda81360fb4b78adaf2f09fd2e"><code>91d5906</code></a>
Upgrade: [dependabot] - bump conventional-changelog-eslint from 6.0.0 to
6.1....</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/d116ba935f2a9544c7bcc6dc37ea997fada6e780"><code>d116ba9</code></a>
Fix: [AEA-0000] - Always run valid trivy scans even if a previous scan
failed...</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/aac5b797ee198b8bd260d618cf7cbdf723860033"><code>aac5b79</code></a>
Fix: [AEA-5986] - Fix publish fame library (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/77">#77</a>)</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/d5222938de3b91e0fe94db73d61eb9e0f781b1ed"><code>d522293</code></a>
Upgrade: [dependabot] - bump aquasecurity/trivy-action from 0.34.0 to
0.34.1 ...</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/de2118390681f2e1701dddcaa463dcea743a6e92"><code>de21183</code></a>
New: [AEA-5986] - Publish to PyPI (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/76">#76</a>)</li>
<li>See full diff in <a
href="https://github.com/nhsdigital/eps-common-workflows/compare/8404cf6e3a61ac8de4d1644e175e288aa4965815...141907b215220e95e3ed3811d0fe8fa18675dbed">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=NHSDigital/eps-common-workflows/.github/workflows/tag-release.yml&package-manager=github_actions&previous-version=5.5.3&new-version=5.6.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Mar 10, 2026
    Configuration menu
    Copy the full SHA
    96cc53a View commit details
    Browse the repository at this point in the history

Commits on Mar 11, 2026

  1. Chore: [AEA-0000] - create java image (#50) 

    ## Summary

- Routine Change

### Details

- create a java image
    @anthony-nhs
    anthony-nhs authored Mar 11, 2026
    Configuration menu
    Copy the full SHA
    c82b426 View commit details
    Browse the repository at this point in the history

  2. Chore: [AEA-0000] - setup golang (#51) 

    ## Summary

- Routine Change

### Details

- setup golang
    @anthony-nhs
    anthony-nhs authored Mar 11, 2026
    Configuration menu
    Copy the full SHA
    21e865b View commit details
    Browse the repository at this point in the history

  3. Upgrade: [dependabot] - bump docker/login-action from 3.7.0 to 4.0.0 (#… 

    …48)

Bumps [docker/login-action](https://github.com/docker/login-action) from
3.7.0 to 4.0.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/login-action/releases">docker/login-action's
releases</a>.</em></p>
<blockquote>
<h2>v4.0.0</h2>
<ul>
<li>Node 24 as default runtime (requires <a
href="https://github.com/actions/runner/releases/tag/v2.327.1">Actions
Runner v2.327.1</a> or later) by <a
href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a
href="https://redirect.github.com/docker/login-action/pull/929">docker/login-action#929</a></li>
<li>Switch to ESM and update config/test wiring by <a
href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a
href="https://redirect.github.com/docker/login-action/pull/927">docker/login-action#927</a></li>
<li>Bump <code>@​actions/core</code> from 1.11.1 to 3.0.0 in <a
href="https://redirect.github.com/docker/login-action/pull/919">docker/login-action#919</a></li>
<li>Bump <code>@​aws-sdk/client-ecr</code> from 3.890.0 to 3.1000.0 in
<a
href="https://redirect.github.com/docker/login-action/pull/909">docker/login-action#909</a>
<a
href="https://redirect.github.com/docker/login-action/pull/920">docker/login-action#920</a></li>
<li>Bump <code>@​aws-sdk/client-ecr-public</code> from 3.890.0 to
3.1000.0 in <a
href="https://redirect.github.com/docker/login-action/pull/909">docker/login-action#909</a>
<a
href="https://redirect.github.com/docker/login-action/pull/920">docker/login-action#920</a></li>
<li>Bump <code>@​docker/actions-toolkit</code> from 0.63.0 to 0.77.0 in
<a
href="https://redirect.github.com/docker/login-action/pull/910">docker/login-action#910</a>
<a
href="https://redirect.github.com/docker/login-action/pull/928">docker/login-action#928</a></li>
<li>Bump <code>@​isaacs/brace-expansion</code> from 5.0.0 to 5.0.1 in <a
href="https://redirect.github.com/docker/login-action/pull/921">docker/login-action#921</a></li>
<li>Bump js-yaml from 4.1.0 to 4.1.1 in <a
href="https://redirect.github.com/docker/login-action/pull/901">docker/login-action#901</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/docker/login-action/compare/v3.7.0...v4.0.0">https://github.com/docker/login-action/compare/v3.7.0...v4.0.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/docker/login-action/commit/b45d80f862d83dbcd57f89517bcf500b2ab88fb2"><code>b45d80f</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/929">#929</a>
from crazy-max/node24</li>
<li><a
href="https://github.com/docker/login-action/commit/176cb9c12abea98dfe844071c0999ff6ee9688a7"><code>176cb9c</code></a>
node 24 as default runtime</li>
<li><a
href="https://github.com/docker/login-action/commit/cad89843109a11cb6f69f52fe695c42cf69d57d3"><code>cad8984</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/920">#920</a>
from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...</li>
<li><a
href="https://github.com/docker/login-action/commit/92cbcb231ed341e7dc71693351b21f5ba65f8349"><code>92cbcb2</code></a>
chore: update generated content</li>
<li><a
href="https://github.com/docker/login-action/commit/5a2d6a71bd3e0cb4abb6faae33f3dde61ece8e5b"><code>5a2d6a7</code></a>
build(deps): bump the aws-sdk-dependencies group with 2 updates</li>
<li><a
href="https://github.com/docker/login-action/commit/44512b6b2e08b878e82b107b394fcd1af5748e63"><code>44512b6</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/928">#928</a>
from docker/dependabot/npm_and_yarn/docker/actions-to...</li>
<li><a
href="https://github.com/docker/login-action/commit/28737a5e46bc0c62910ef429b2e55f9cabbbd5df"><code>28737a5</code></a>
chore: update generated content</li>
<li><a
href="https://github.com/docker/login-action/commit/dac079354afbd8db4c3b58b8cc6946573479b2a6"><code>dac0793</code></a>
build(deps): bump <code>@​docker/actions-toolkit</code> from 0.76.0 to
0.77.0</li>
<li><a
href="https://github.com/docker/login-action/commit/62029f315d6d05c8646343320e4a1552e5f1c77a"><code>62029f3</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/919">#919</a>
from docker/dependabot/npm_and_yarn/actions/core-3.0.0</li>
<li><a
href="https://github.com/docker/login-action/commit/08c8f064bf22a1c55918ee608a81d87b13cc4461"><code>08c8f06</code></a>
chore: update generated content</li>
<li>Additional commits viewable in <a
href="https://github.com/docker/login-action/compare/c94ce9fb468520275223c153574b00df6fe4bcc9...b45d80f862d83dbcd57f89517bcf500b2ab88fb2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/login-action&package-manager=github_actions&previous-version=3.7.0&new-version=4.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: anthony-nhs <121869075+anthony-nhs@users.noreply.github.com>
    @dependabot @anthony-nhs
    dependabot[bot] and anthony-nhs authored Mar 11, 2026
    Configuration menu
    Copy the full SHA
    9e19530 View commit details
    Browse the repository at this point in the history

  4. Upgrade: [dependabot] - bump NHSDigital/eps-common-workflows/.github/… 

    …workflows/quality-checks.yml from 5.5.3 to 5.6.3 (#46)

Bumps
[NHSDigital/eps-common-workflows/.github/workflows/quality-checks.yml](https://github.com/nhsdigital/eps-common-workflows)
from 5.5.3 to 5.6.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/nhsdigital/eps-common-workflows/releases">NHSDigital/eps-common-workflows/.github/workflows/quality-checks.yml's
releases</a>.</em></p>
<blockquote>
<h2>v5.6.3</h2>
<h2><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.2...v5.6.3">5.6.3</a>
(2026-03-06)</h2>
<h3>Chore</h3>
<ul>
<li>[AEA-5986] - Allow semantic release to handle python build (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/83">#83</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/141907b215220e95e3ed3811d0fe8fa18675dbed">141907b</a>)</li>
</ul>
<h2>Info</h2>
<p><a
href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22773044980">Release
workflow run</a> - Workflow ID: 22773044980</p>
<p>It was initialized by <a
href="https://github.com/originalphil">originalphil</a></p>
<h2>v5.6.2</h2>
<h2><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.1...v5.6.2">5.6.2</a>
(2026-03-05)</h2>
<h3>Upgrade</h3>
<ul>
<li>[dependabot] - bump conventional-changelog-eslint from 6.0.0 to
6.1.0 (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/82">#82</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/91d5906640395bcda81360fb4b78adaf2f09fd2e">91d5906</a>)</li>
</ul>
<h2>Info</h2>
<p><a
href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22730971742">Release
workflow run</a> - Workflow ID: 22730971742</p>
<p>It was initialized by <a
href="https://github.com/apps/eps-autoapprove-dependabot">eps-autoapprove-dependabot[bot]</a></p>
<h2>v5.6.1</h2>
<h2><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.0...v5.6.1">5.6.1</a>
(2026-03-05)</h2>
<h3>Fix</h3>
<ul>
<li>[AEA-0000] - Always run valid trivy scans even if a previous scan
failed, so that all vulnerabilities are identified at once. Shorten
feedback cycle for vulnerabilities across multiple scans. (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/78">#78</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/d116ba935f2a9544c7bcc6dc37ea997fada6e780">d116ba9</a>)</li>
</ul>
<h2>Info</h2>
<p><a
href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22727356777">Release
workflow run</a> - Workflow ID: 22727356777</p>
<p>It was initialized by <a
href="https://github.com/connoravo-nhs">connoravo-nhs</a></p>
<h2>v5.6.0</h2>
<h1><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.5.3...v5.6.0">5.6.0</a>
(2026-03-05)</h1>
<h3>Fix</h3>
<ul>
<li>[AEA-5986] - Fix publish fame library (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/77">#77</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/aac5b797ee198b8bd260d618cf7cbdf723860033">aac5b79</a>)</li>
</ul>
<h3>New</h3>
<ul>
<li>[AEA-5986] - Publish to PyPI (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/76">#76</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/de2118390681f2e1701dddcaa463dcea743a6e92">de21183</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/141907b215220e95e3ed3811d0fe8fa18675dbed"><code>141907b</code></a>
Chore: [AEA-5986] - Allow semantic release to handle python build (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/83">#83</a>)</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/91d5906640395bcda81360fb4b78adaf2f09fd2e"><code>91d5906</code></a>
Upgrade: [dependabot] - bump conventional-changelog-eslint from 6.0.0 to
6.1....</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/d116ba935f2a9544c7bcc6dc37ea997fada6e780"><code>d116ba9</code></a>
Fix: [AEA-0000] - Always run valid trivy scans even if a previous scan
failed...</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/aac5b797ee198b8bd260d618cf7cbdf723860033"><code>aac5b79</code></a>
Fix: [AEA-5986] - Fix publish fame library (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/77">#77</a>)</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/d5222938de3b91e0fe94db73d61eb9e0f781b1ed"><code>d522293</code></a>
Upgrade: [dependabot] - bump aquasecurity/trivy-action from 0.34.0 to
0.34.1 ...</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/de2118390681f2e1701dddcaa463dcea743a6e92"><code>de21183</code></a>
New: [AEA-5986] - Publish to PyPI (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/76">#76</a>)</li>
<li>See full diff in <a
href="https://github.com/nhsdigital/eps-common-workflows/compare/8404cf6e3a61ac8de4d1644e175e288aa4965815...141907b215220e95e3ed3811d0fe8fa18675dbed">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=NHSDigital/eps-common-workflows/.github/workflows/quality-checks.yml&package-manager=github_actions&previous-version=5.5.3&new-version=5.6.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Mar 11, 2026
    Configuration menu
    Copy the full SHA
    0f33a90 View commit details
    Browse the repository at this point in the history

  5. Upgrade: [dependabot] - bump NHSDigital/eps-common-workflows/.github/… 

    …workflows/pr_title_check.yml from 5.5.3 to 5.6.3 (#42)

Bumps
[NHSDigital/eps-common-workflows/.github/workflows/pr_title_check.yml](https://github.com/nhsdigital/eps-common-workflows)
from 5.5.3 to 5.6.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/nhsdigital/eps-common-workflows/releases">NHSDigital/eps-common-workflows/.github/workflows/pr_title_check.yml's
releases</a>.</em></p>
<blockquote>
<h2>v5.6.3</h2>
<h2><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.2...v5.6.3">5.6.3</a>
(2026-03-06)</h2>
<h3>Chore</h3>
<ul>
<li>[AEA-5986] - Allow semantic release to handle python build (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/83">#83</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/141907b215220e95e3ed3811d0fe8fa18675dbed">141907b</a>)</li>
</ul>
<h2>Info</h2>
<p><a
href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22773044980">Release
workflow run</a> - Workflow ID: 22773044980</p>
<p>It was initialized by <a
href="https://github.com/originalphil">originalphil</a></p>
<h2>v5.6.2</h2>
<h2><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.1...v5.6.2">5.6.2</a>
(2026-03-05)</h2>
<h3>Upgrade</h3>
<ul>
<li>[dependabot] - bump conventional-changelog-eslint from 6.0.0 to
6.1.0 (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/82">#82</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/91d5906640395bcda81360fb4b78adaf2f09fd2e">91d5906</a>)</li>
</ul>
<h2>Info</h2>
<p><a
href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22730971742">Release
workflow run</a> - Workflow ID: 22730971742</p>
<p>It was initialized by <a
href="https://github.com/apps/eps-autoapprove-dependabot">eps-autoapprove-dependabot[bot]</a></p>
<h2>v5.6.1</h2>
<h2><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.6.0...v5.6.1">5.6.1</a>
(2026-03-05)</h2>
<h3>Fix</h3>
<ul>
<li>[AEA-0000] - Always run valid trivy scans even if a previous scan
failed, so that all vulnerabilities are identified at once. Shorten
feedback cycle for vulnerabilities across multiple scans. (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/78">#78</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/d116ba935f2a9544c7bcc6dc37ea997fada6e780">d116ba9</a>)</li>
</ul>
<h2>Info</h2>
<p><a
href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/22727356777">Release
workflow run</a> - Workflow ID: 22727356777</p>
<p>It was initialized by <a
href="https://github.com/connoravo-nhs">connoravo-nhs</a></p>
<h2>v5.6.0</h2>
<h1><a
href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.5.3...v5.6.0">5.6.0</a>
(2026-03-05)</h1>
<h3>Fix</h3>
<ul>
<li>[AEA-5986] - Fix publish fame library (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/77">#77</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/aac5b797ee198b8bd260d618cf7cbdf723860033">aac5b79</a>)</li>
</ul>
<h3>New</h3>
<ul>
<li>[AEA-5986] - Publish to PyPI (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/76">#76</a>)
(<a
href="https://github.com/NHSDigital/eps-common-workflows/commit/de2118390681f2e1701dddcaa463dcea743a6e92">de21183</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/141907b215220e95e3ed3811d0fe8fa18675dbed"><code>141907b</code></a>
Chore: [AEA-5986] - Allow semantic release to handle python build (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/83">#83</a>)</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/91d5906640395bcda81360fb4b78adaf2f09fd2e"><code>91d5906</code></a>
Upgrade: [dependabot] - bump conventional-changelog-eslint from 6.0.0 to
6.1....</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/d116ba935f2a9544c7bcc6dc37ea997fada6e780"><code>d116ba9</code></a>
Fix: [AEA-0000] - Always run valid trivy scans even if a previous scan
failed...</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/aac5b797ee198b8bd260d618cf7cbdf723860033"><code>aac5b79</code></a>
Fix: [AEA-5986] - Fix publish fame library (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/77">#77</a>)</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/d5222938de3b91e0fe94db73d61eb9e0f781b1ed"><code>d522293</code></a>
Upgrade: [dependabot] - bump aquasecurity/trivy-action from 0.34.0 to
0.34.1 ...</li>
<li><a
href="https://github.com/NHSDigital/eps-common-workflows/commit/de2118390681f2e1701dddcaa463dcea743a6e92"><code>de21183</code></a>
New: [AEA-5986] - Publish to PyPI (<a
href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/76">#76</a>)</li>
<li>See full diff in <a
href="https://github.com/nhsdigital/eps-common-workflows/compare/8404cf6e3a61ac8de4d1644e175e288aa4965815...141907b215220e95e3ed3811d0fe8fa18675dbed">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=NHSDigital/eps-common-workflows/.github/workflows/pr_title_check.yml&package-manager=github_actions&previous-version=5.5.3&new-version=5.6.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Mar 11, 2026
    Configuration menu
    Copy the full SHA
    f10e508 View commit details
    Browse the repository at this point in the history

  6. Upgrade: [dependabot] - bump actions/setup-node from 6.2.0 to 6.3.0 (#43 

    )

Bumps [actions/setup-node](https://github.com/actions/setup-node) from
6.2.0 to 6.3.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/setup-node/releases">actions/setup-node's
releases</a>.</em></p>
<blockquote>
<h2>v6.3.0</h2>
<h2>What's Changed</h2>
<h3>Enhancements:</h3>
<ul>
<li>Support parsing <code>devEngines</code> field by <a
href="https://github.com/susnux"><code>@​susnux</code></a> in <a
href="https://redirect.github.com/actions/setup-node/pull/1283">actions/setup-node#1283</a></li>
</ul>
<blockquote>
<p>When using node-version-file: package.json, setup-node now
prefers devEngines.runtime over engines.node.</p>
</blockquote>
<h3>Dependency updates:</h3>
<ul>
<li>Fix npm audit issues by <a
href="https://github.com/gowridurgad"><code>@​gowridurgad</code></a> in
<a
href="https://redirect.github.com/actions/setup-node/pull/1491">actions/setup-node#1491</a></li>
<li>Replace uuid with crypto.randomUUID() by <a
href="https://github.com/trivikr"><code>@​trivikr</code></a> in <a
href="https://redirect.github.com/actions/setup-node/pull/1378">actions/setup-node#1378</a></li>
<li>Upgrade minimatch from 3.1.2 to 3.1.5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/setup-node/pull/1498">actions/setup-node#1498</a></li>
</ul>
<h3>Bug fixes:</h3>
<ul>
<li>Remove hardcoded bearer for mirror-url <a
href="https://github.com/marco-ippolito"><code>@​marco-ippolito</code></a>
in <a
href="https://redirect.github.com/actions/setup-node/pull/1467">actions/setup-node#1467</a></li>
<li>Scope test lockfiles by package manager and update cache tests by <a
href="https://github.com/gowridurgad"><code>@​gowridurgad</code></a> in
<a
href="https://redirect.github.com/actions/setup-node/pull/1495">actions/setup-node#1495</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/susnux"><code>@​susnux</code></a> made
their first contribution in <a
href="https://redirect.github.com/actions/setup-node/pull/1283">actions/setup-node#1283</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/setup-node/compare/v6...v6.3.0">https://github.com/actions/setup-node/compare/v6...v6.3.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/actions/setup-node/commit/53b83947a5a98c8d113130e565377fae1a50d02f"><code>53b8394</code></a>
Bump minimatch from 3.1.2 to 3.1.5 (<a
href="https://redirect.github.com/actions/setup-node/issues/1498">#1498</a>)</li>
<li><a
href="https://github.com/actions/setup-node/commit/54045abd5dcd3b0fee9ca02fa24c57545834c9cc"><code>54045ab</code></a>
Scope test lockfiles by package manager and update cache tests (<a
href="https://redirect.github.com/actions/setup-node/issues/1495">#1495</a>)</li>
<li><a
href="https://github.com/actions/setup-node/commit/c882bffdbd4df51ace6b940023952e8669c9932a"><code>c882bff</code></a>
Replace uuid with crypto.randomUUID() (<a
href="https://redirect.github.com/actions/setup-node/issues/1378">#1378</a>)</li>
<li><a
href="https://github.com/actions/setup-node/commit/774c1d62961e73038a114d59c8847023c003194d"><code>774c1d6</code></a>
feat(node-version-file): support parsing <code>devEngines</code> field
(<a
href="https://redirect.github.com/actions/setup-node/issues/1283">#1283</a>)</li>
<li><a
href="https://github.com/actions/setup-node/commit/efcb663fc60e97218a2b2d6d827f7830f164739e"><code>efcb663</code></a>
fix: remove hardcoded bearer (<a
href="https://redirect.github.com/actions/setup-node/issues/1467">#1467</a>)</li>
<li><a
href="https://github.com/actions/setup-node/commit/d02c89dce7e1ba9ef629ce0680989b3a1cc72edb"><code>d02c89d</code></a>
Fix npm audit issues (<a
href="https://redirect.github.com/actions/setup-node/issues/1491">#1491</a>)</li>
<li>See full diff in <a
href="https://github.com/actions/setup-node/compare/6044e13b5dc448c55e2357c09f80417699197238...53b83947a5a98c8d113130e565377fae1a50d02f">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-node&package-manager=github_actions&previous-version=6.2.0&new-version=6.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Mar 11, 2026
    Configuration menu
    Copy the full SHA
    3b73f5d View commit details
    Browse the repository at this point in the history

  7. Upgrade: [dependabot] - bump actions/attest-build-provenance from 3.2… 

    ….0 to 4.1.0 (#36)

Bumps
[actions/attest-build-provenance](https://github.com/actions/attest-build-provenance)
from 3.2.0 to 4.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/attest-build-provenance/releases">actions/attest-build-provenance's
releases</a>.</em></p>
<blockquote>
<h2>v4.1.0</h2>
<blockquote>
<p>[!NOTE]
As of version 4, <code>actions/attest-build-provenance</code> is simply
a wrapper on top of <a
href="https://github.com/actions/attest"><code>actions/attest</code></a>.</p>
<p>Existing applications may continue to use the
<code>attest-build-provenance</code> action, but new implementations
should use <code>actions/attest</code> instead.</p>
</blockquote>
<h2>What's Changed</h2>
<ul>
<li>Update RELEASE.md docs by <a
href="https://github.com/bdehamer"><code>@​bdehamer</code></a> in <a
href="https://redirect.github.com/actions/attest-build-provenance/pull/836">actions/attest-build-provenance#836</a></li>
<li>Bump <code>actions/attest</code> from 4.0.0 to 4.1.0 by <a
href="https://github.com/bdehamer"><code>@​bdehamer</code></a> in <a
href="https://redirect.github.com/actions/attest-build-provenance/pull/838">actions/attest-build-provenance#838</a>
<ul>
<li>Bump <code>@actions/attest</code> from 3.0.0 to 3.1.0 by <a
href="https://github.com/bdehamer"><code>@​bdehamer</code></a> in <a
href="https://redirect.github.com/actions/attest/pull/362">actions/attest#362</a></li>
<li>Bump <code>@actions/attest</code> from 3.1.0 to 3.2.0 by <a
href="https://github.com/bdehamer"><code>@​bdehamer</code></a> in <a
href="https://redirect.github.com/actions/attest/pull/365">actions/attest#365</a></li>
<li>Add new <code>subject-version</code> input for inclusion in storage
record by <a
href="https://github.com/bdehamer"><code>@​bdehamer</code></a> in <a
href="https://redirect.github.com/actions/attest/pull/364">actions/attest#364</a></li>
<li>Add storage record content to README by <a
href="https://github.com/bdehamer"><code>@​bdehamer</code></a> in <a
href="https://redirect.github.com/actions/attest/pull/366">actions/attest#366</a></li>
</ul>
</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/attest-build-provenance/compare/v4.0.0...v4.1.0">https://github.com/actions/attest-build-provenance/compare/v4.0.0...v4.1.0</a></p>
<h2>v4.0.0</h2>
<blockquote>
<p>[!NOTE]
As of version 4, <code>actions/attest-build-provenance</code> is simply
a wrapper on top of <a
href="https://github.com/actions/attest"><code>actions/attest</code></a>.</p>
<p>Existing applications may continue to use the
<code>attest-build-provenance</code> action, but new implementations
should use <code>actions/attest</code> instead.</p>
</blockquote>
<h2>What's Changed</h2>
<ul>
<li>Prepare v4 release by <a
href="https://github.com/bdehamer"><code>@​bdehamer</code></a> in <a
href="https://redirect.github.com/actions/attest-build-provenance/pull/835">actions/attest-build-provenance#835</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/attest-build-provenance/compare/v3.2.0...v4.0.0">https://github.com/actions/attest-build-provenance/compare/v3.2.0...v4.0.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/actions/attest-build-provenance/commit/a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32"><code>a2bbfa2</code></a>
bump actions/attest from 4.0.0 to 4.1.0 (<a
href="https://redirect.github.com/actions/attest-build-provenance/issues/838">#838</a>)</li>
<li><a
href="https://github.com/actions/attest-build-provenance/commit/0856891a35570e4ac506b510f0358a4308f82385"><code>0856891</code></a>
update RELEASE.md docs (<a
href="https://redirect.github.com/actions/attest-build-provenance/issues/836">#836</a>)</li>
<li><a
href="https://github.com/actions/attest-build-provenance/commit/e4d4f7c39adfa4c260fb5c147f0622000aa14b99"><code>e4d4f7c</code></a>
prepare v4 release (<a
href="https://redirect.github.com/actions/attest-build-provenance/issues/835">#835</a>)</li>
<li><a
href="https://github.com/actions/attest-build-provenance/commit/02a49bdc410a809733602220c6f6275925d6b578"><code>02a49bd</code></a>
Bump github/codeql-action in the actions-minor group (<a
href="https://redirect.github.com/actions/attest-build-provenance/issues/824">#824</a>)</li>
<li><a
href="https://github.com/actions/attest-build-provenance/commit/7c757df4145fcd233331998e58b20b422c833a00"><code>7c757df</code></a>
Bump the npm-development group with 2 updates (<a
href="https://redirect.github.com/actions/attest-build-provenance/issues/825">#825</a>)</li>
<li><a
href="https://github.com/actions/attest-build-provenance/commit/c44148e5bf178192efd8947e07a0d439a356c60b"><code>c44148e</code></a>
Bump github/codeql-action in the actions-minor group (<a
href="https://redirect.github.com/actions/attest-build-provenance/issues/818">#818</a>)</li>
<li><a
href="https://github.com/actions/attest-build-provenance/commit/32343527f2ec94583cf7b31280de0f60dc9f0bf9"><code>3234352</code></a>
Bump <code>@​types/node</code> from 25.0.10 to 25.2.0 in the
npm-development group (<a
href="https://redirect.github.com/actions/attest-build-provenance/issues/819">#819</a>)</li>
<li><a
href="https://github.com/actions/attest-build-provenance/commit/18db12979d4cecda10c1cf295bcb159f3e59866d"><code>18db129</code></a>
Bump tar from 7.5.6 to 7.5.7 (<a
href="https://redirect.github.com/actions/attest-build-provenance/issues/816">#816</a>)</li>
<li><a
href="https://github.com/actions/attest-build-provenance/commit/90fadfae6ba2e2ef59f8d38e61ec3cf16443a18e"><code>90fadfa</code></a>
Bump <code>@​actions/core</code> from 2.0.1 to 2.0.2 in the
npm-production group (<a
href="https://redirect.github.com/actions/attest-build-provenance/issues/799">#799</a>)</li>
<li><a
href="https://github.com/actions/attest-build-provenance/commit/57db8ba356515a4c8608990f2aa27a6972235ccc"><code>57db8ba</code></a>
Bump the npm-development group across 1 directory with 3 updates (<a
href="https://redirect.github.com/actions/attest-build-provenance/issues/808">#808</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/actions/attest-build-provenance/compare/96278af6caaf10aea03fd8d33a09a777ca52d62f...a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/attest-build-provenance&package-manager=github_actions&previous-version=3.2.0&new-version=4.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Mar 11, 2026
    Configuration menu
    Copy the full SHA
    1146ea0 View commit details
    Browse the repository at this point in the history

  8. Upgrade: [dependabot] - bump actions/upload-artifact from 6.0.0 to 7.… 

    …0.0 (#39)

Bumps
[actions/upload-artifact](https://github.com/actions/upload-artifact)
from 6.0.0 to 7.0.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/upload-artifact/releases">actions/upload-artifact's
releases</a>.</em></p>
<blockquote>
<h2>v7.0.0</h2>
<h2>v7 What's new</h2>
<h3>Direct Uploads</h3>
<p>Adds support for uploading single files directly (unzipped). Callers
can set the new <code>archive</code> parameter to <code>false</code> to
skip zipping the file during upload. Right now, we only support single
files. The action will fail if the glob passed resolves to multiple
files. The <code>name</code> parameter is also ignored with this
setting. Instead, the name of the artifact will be the name of the
uploaded file.</p>
<h3>ESM</h3>
<p>To support new versions of the <code>@actions/*</code> packages,
we've upgraded the package to ESM.</p>
<h2>What's Changed</h2>
<ul>
<li>Add proxy integration test by <a
href="https://github.com/Link"><code>@​Link</code></a>- in <a
href="https://redirect.github.com/actions/upload-artifact/pull/754">actions/upload-artifact#754</a></li>
<li>Upgrade the module to ESM and bump dependencies by <a
href="https://github.com/danwkennedy"><code>@​danwkennedy</code></a> in
<a
href="https://redirect.github.com/actions/upload-artifact/pull/762">actions/upload-artifact#762</a></li>
<li>Support direct file uploads by <a
href="https://github.com/danwkennedy"><code>@​danwkennedy</code></a> in
<a
href="https://redirect.github.com/actions/upload-artifact/pull/764">actions/upload-artifact#764</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/Link"><code>@​Link</code></a>- made
their first contribution in <a
href="https://redirect.github.com/actions/upload-artifact/pull/754">actions/upload-artifact#754</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/upload-artifact/compare/v6...v7.0.0">https://github.com/actions/upload-artifact/compare/v6...v7.0.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/actions/upload-artifact/commit/bbbca2ddaa5d8feaa63e36b76fdaad77386f024f"><code>bbbca2d</code></a>
Support direct file uploads (<a
href="https://redirect.github.com/actions/upload-artifact/issues/764">#764</a>)</li>
<li><a
href="https://github.com/actions/upload-artifact/commit/589182c5a4cec8920b8c1bce3e2fab1c97a02296"><code>589182c</code></a>
Upgrade the module to ESM and bump dependencies (<a
href="https://redirect.github.com/actions/upload-artifact/issues/762">#762</a>)</li>
<li><a
href="https://github.com/actions/upload-artifact/commit/47309c993abb98030a35d55ef7ff34b7fa1074b5"><code>47309c9</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/upload-artifact/issues/754">#754</a>
from actions/Link-/add-proxy-integration-tests</li>
<li><a
href="https://github.com/actions/upload-artifact/commit/02a8460834e70dab0ce194c64360c59dc1475ef0"><code>02a8460</code></a>
Add proxy integration test</li>
<li>See full diff in <a
href="https://github.com/actions/upload-artifact/compare/b7c566a772e6b6bfb58ed0dc250532a479d7789f...bbbca2ddaa5d8feaa63e36b76fdaad77386f024f">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=6.0.0&new-version=7.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Mar 11, 2026
    Configuration menu
    Copy the full SHA
    cc85d5a View commit details
    Browse the repository at this point in the history

  9. Upgrade: [dependabot] - bump @devcontainers/cli from 0.83.2 to 0.84.0 ( 

    …#41)

Bumps [@devcontainers/cli](https://github.com/devcontainers/cli) from
0.83.2 to 0.84.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/devcontainers/cli/blob/main/CHANGELOG.md"><code>@​devcontainers/cli</code>'s
changelog</a>.</em></p>
<blockquote>
<h3>[0.84.0]</h3>
<ul>
<li>Dependencies update. (<a
href="https://redirect.github.com/devcontainers/cli/pull/1167">devcontainers/cli#1167</a>)</li>
</ul>
<h2>February 2026</h2>
<h3>[0.83.3]</h3>
<ul>
<li>Bump tar from 7.5.7 to 7.5.8. (<a
href="https://redirect.github.com/devcontainers/cli/pull/1160">devcontainers/cli#1160</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/devcontainers/cli/commit/9207699460457b79cfeb960982aa40692f648ea1"><code>9207699</code></a>
Cleanup</li>
<li><a
href="https://github.com/devcontainers/cli/commit/347262404a8ea376097cd92cbd506543fe9cc88f"><code>3472624</code></a>
Pin compose plugin</li>
<li><a
href="https://github.com/devcontainers/cli/commit/898e1423536868085f9f2c5236088399d4736eda"><code>898e142</code></a>
Adjust timeouts</li>
<li><a
href="https://github.com/devcontainers/cli/commit/c66bf6bc7973fcfdba1f3a623e53b3fcf9151e23"><code>c66bf6b</code></a>
Update version</li>
<li><a
href="https://github.com/devcontainers/cli/commit/a7ed090bbf5b3b634c65e553386d4d479dd1e64e"><code>a7ed090</code></a>
Update dependencies</li>
<li><a
href="https://github.com/devcontainers/cli/commit/d3b26ad8160dd72a438d0d7e51756c9a8f21fbbb"><code>d3b26ad</code></a>
Cleanup</li>
<li><a
href="https://github.com/devcontainers/cli/commit/84e70d9f17119ae0a5980262d3dce425b8a8af92"><code>84e70d9</code></a>
Update rimraf</li>
<li><a
href="https://github.com/devcontainers/cli/commit/a38a1ded91322774525e37e97d7808a4a6df1001"><code>a38a1de</code></a>
Update <code>@​stylistic/eslint-plugin</code></li>
<li><a
href="https://github.com/devcontainers/cli/commit/bdb0b674fbe527182f94855c85dac394195076e4"><code>bdb0b67</code></a>
Update ESLint</li>
<li><a
href="https://github.com/devcontainers/cli/commit/d4b7623b364b6c274ed82c7b0ca9776189e51974"><code>d4b7623</code></a>
Node.js 18 EOL</li>
<li>Additional commits viewable in <a
href="https://github.com/devcontainers/cli/compare/v0.83.2...v0.84.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@devcontainers/cli&package-manager=npm_and_yarn&previous-version=0.83.2&new-version=0.84.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: anthony-nhs <121869075+anthony-nhs@users.noreply.github.com>
    @dependabot @anthony-nhs
    dependabot[bot] and anthony-nhs authored Mar 11, 2026
    Configuration menu
    Copy the full SHA
    0468d86 View commit details
    Browse the repository at this point in the history
Loading