Skip to content

chore(deps): bump codecov/codecov-action from 6.0.0 to 7.0.0#5967

Merged
cheyang merged 1 commit into
masterfrom
dependabot/github_actions/codecov/codecov-action-7.0.0
Jun 25, 2026
Merged

chore(deps): bump codecov/codecov-action from 6.0.0 to 7.0.0#5967
cheyang merged 1 commit into
masterfrom
dependabot/github_actions/codecov/codecov-action-7.0.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 8, 2026

Copy link
Copy Markdown
Contributor

Bumps codecov/codecov-action from 6.0.0 to 7.0.0.

Release notes

Sourced from codecov/codecov-action's releases.

v7.0.0

⚠️ Due to migration issues with keybase, we are unable to update our keys under the codecovsecurity account. We have deleted the account and are using codecovsecops with the original gpg key

What's Changed

Full Changelog: codecov/codecov-action@v6.0.1...v7.0.0

v6.0.2

This is a copy of the v7.0.0 release to make updates easier

What's Changed

Full Changelog: codecov/codecov-action@v6.0.1...v6.0.2

v6.0.1

What's Changed

Full Changelog: codecov/codecov-action@v6.0.0...v6.0.1

Changelog

Sourced from codecov/codecov-action's changelog.

v5.5.2

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2

v5.5.1

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1

v5.5.0

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0

v5.4.3

What's Changed

Full Changelog: https://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3

v5.4.2

... (truncated)

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jun 8, 2026
@fluid-e2e-bot

fluid-e2e-bot Bot commented Jun 8, 2026

Copy link
Copy Markdown

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a fluid-cloudnative member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@cheyang cheyang left a comment

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Reviewed the diff: only the SHA pin for codecov/codecov-action is updated (v6.0.0 -> v7.0.0) in project-check.yml. The workflow usage is minimal (just the token parameter), and CI confirms build/lint/unittest all pass. Major version bump, but the simple usage pattern is fully compatible. LGTM for merge once CI e2e flakes are resolved or confirmed unrelated.

@cheyang

cheyang commented Jun 14, 2026

Copy link
Copy Markdown
Collaborator

Straightforward dependabot bump of codecov/codecov-action from v6.0.0 to v7.0.0. Hash-pinned correctly. No breaking changes expected for this action's interface.

Verdict: ready-to-merge

@cheyang

cheyang commented Jun 17, 2026

Copy link
Copy Markdown
Collaborator

@dependabot rebase

Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 6.0.0 to 7.0.0.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](codecov/codecov-action@57e3a13...fb8b358)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-version: 7.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/github_actions/codecov/codecov-action-7.0.0 branch from d8eb767 to 5b5d155 Compare June 17, 2026 02:06
@fluid-e2e-bot

fluid-e2e-bot Bot commented Jun 17, 2026

Copy link
Copy Markdown

New changes are detected. LGTM label has been removed.

@fluid-e2e-bot fluid-e2e-bot Bot removed the lgtm label Jun 17, 2026
@cheyang cheyang added the lgtm label Jun 25, 2026

@cheyang cheyang left a comment

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

All CI checks passed and maintainer has approved. Auto-approving to satisfy branch protection.

@fluid-e2e-bot

fluid-e2e-bot Bot commented Jun 25, 2026

Copy link
Copy Markdown

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: cheyang

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@cheyang cheyang merged commit 0d15d73 into master Jun 25, 2026
22 checks passed
@dependabot dependabot Bot deleted the dependabot/github_actions/codecov/codecov-action-7.0.0 branch June 25, 2026 03:00
@sonarqubecloud

Copy link
Copy Markdown

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

approved dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code lgtm needs-ok-to-test

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant