Skip to content

chore(deps): update docker/login-action action to v4.4.0#53

Open
scality-renovate[bot] wants to merge 1 commit into
mainfrom
renovate/docker-login-action-4.x
Open

chore(deps): update docker/login-action action to v4.4.0#53
scality-renovate[bot] wants to merge 1 commit into
mainfrom
renovate/docker-login-action-4.x

Conversation

@scality-renovate

Copy link
Copy Markdown

This PR contains the following updates:

Package Type Update Change
docker/login-action action minor v4.2.0v4.4.0

Release Notes

docker/login-action (docker/login-action)

v4.4.0

Compare Source

Full Changelog: docker/login-action@v4.3.0...v4.4.0

v4.3.0

Compare Source

Full Changelog: docker/login-action@v4.2.0...v4.3.0


Configuration

📅 Schedule: (UTC)

  • Branch creation
    • "before 9am on monday"
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate.

@scality-renovate scality-renovate Bot added ci dependencies Pull requests that update a dependency file minor labels Jul 13, 2026
@scality-renovate scality-renovate Bot requested a review from a team as a code owner July 13, 2026 04:08
@scality-renovate scality-renovate Bot added dependencies Pull requests that update a dependency file ci minor labels Jul 13, 2026
@github-actions

Copy link
Copy Markdown

Dependency Bump Evaluation

Version change: docker/login-action v4.2.0 → v4.4.0 (minor)
Semver bump type: minor

Changes (v4.3.0):

  • Preserve names in esbuild bundle (build improvement)
  • Internal dependency bumps: AWS SDK, sigstore, undici, vite, js-yaml, http-proxy-agent

Changes (v4.4.0):

  • Skip empty registry-auth secret mask (bug fix for log redaction)
  • AWS SDK bump to 3.1077.0

Breaking changes: None

Security concerns: None — updates to sigstore and undici packages are routine maintenance. The secret mask fix improves log redaction behavior.

Impact on codebase: The action is used only in .github/workflows/build.yaml for GHCR login with standard inputs (registry, username, password). None of the changes affect this usage pattern.

CI status: Checks still in progress at time of evaluation.

Recommendation: SAFE TO MERGE (once CI is green)

Notes: Straightforward version pin bump of a GitHub Action. No API changes, no breaking changes, no impact on the build workflow.

— Claude Code

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

ci dependencies Pull requests that update a dependency file minor

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants