Skip to content

[actions] Bump docker/login-action from 4.1.0 to 4.2.0#167

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/docker/login-action-4.2.0
Open

[actions] Bump docker/login-action from 4.1.0 to 4.2.0#167
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/docker/login-action-4.2.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 29, 2026

Copy link
Copy Markdown
Contributor

Bumps docker/login-action from 4.1.0 to 4.2.0.

Release notes

Sourced from docker/login-action's releases.

v4.2.0

Full Changelog: docker/login-action@v4.1.0...v4.2.0

Commits
  • 650006c Merge pull request #960 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...
  • 99df1a3 chore: update generated content
  • 3ab375f build(deps): bump the aws-sdk-dependencies group across 1 directory with 2 up...
  • 39d8580 Merge pull request #970 from docker/dependabot/npm_and_yarn/docker/actions-to...
  • 4eefcd3 chore: update generated content
  • 56d092c build(deps): bump @​docker/actions-toolkit from 0.86.0 to 0.90.0
  • e2e31ca Merge pull request #976 from docker/dependabot/npm_and_yarn/actions/core-3.0.1
  • 0bced94 chore: update generated content
  • 3e75a0f build(deps): bump @​actions/core from 3.0.0 to 3.0.1
  • 365bebd Merge pull request #984 from docker/dependabot/github_actions/aws-actions/con...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
[actions] Bump docker/login-action from 4.1.0 to 4.2.0
04e3b62 
Bumps [docker/login-action](https://github.com/docker/login-action) from 4.1.0 to 4.2.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](docker/login-action@4907a6d...650006c)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-version: 4.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels May 29, 2026
@github-actions

github-actions Bot commented May 29, 2026
edited
Loading

Copy link
Copy Markdown

Docker image tag(s) pushed:

ghcr.io/bretfisher/docker-build-workflow:gha-26613968773
ghcr.io/bretfisher/docker-build-workflow:pr-167

Labels added to images:

org.opencontainers.image.created=2026-05-29T02:17:15.746Z
org.opencontainers.image.description=A Reusable Workflow of the Docker GitHub Actions
org.opencontainers.image.licenses=Unlicense
org.opencontainers.image.revision=1b97bf2a1c34949c965edc3d47766b2921926c76
org.opencontainers.image.source=https://github.com/BretFisher/docker-build-workflow
org.opencontainers.image.title=docker-build-workflow
org.opencontainers.image.url=https://github.com/BretFisher/docker-build-workflow
org.opencontainers.image.version=gha-26613968773

@github-actions

github-actions Bot commented May 29, 2026

Copy link
Copy Markdown

Super-linter summary

Language Validation result
BIOME_FORMAT Pass ✅
BIOME_LINT Pass ✅
CHECKOV Pass ✅
GITHUB_ACTIONS Pass ✅
GITHUB_ACTIONS_ZIZMOR Fail ❌
GITLEAKS Pass ✅
GIT_MERGE_CONFLICT_MARKERS Pass ✅
SPELL_CODESPELL Pass ✅
YAML Pass ✅
YAML_PRETTIER Pass ✅

Super-linter detected linting errors

For more information, see the GitHub Actions workflow run

Powered by Super-linter

GITHUB_ACTIONS_ZIZMOR 
�[1m�[33mwarning[secrets-outside-env]�[0m�[1m: secrets referenced without a dedicated environment�[0m
   �[1m�[94m--> �[0m/github/workspace/.github/workflows/reusable-docker-build-native.yaml:154:25
    �[1m�[94m|�[0m
�[1m�[94m117�[0m �[1m�[94m|�[0m   build-image:
    �[1m�[94m|�[0m   �[1m�[94m-----------�[0m �[1m�[94mthis job�[0m
�[1m�[94m...�[0m
�[1m�[94m154�[0m �[1m�[94m|�[0m           username: ${{ secrets.dockerhub-username }}
    �[1m�[94m|�[0m                         �[1m�[33m^^^^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[33msecret is accessed outside of a dedicated environment�[0m
    �[1m�[94m|�[0m
    �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
    �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#secrets-outside-env�[39m

�[1m�[33mwarning[secrets-outside-env]�[0m�[1m: secrets referenced without a dedicated environment�[0m
   �[1m�[94m--> �[0m/github/workspace/.github/workflows/reusable-docker-build-native.yaml:155:25
    �[1m�[94m|�[0m
�[1m�[94m117�[0m �[1m�[94m|�[0m   build-image:
    �[1m�[94m|�[0m   �[1m�[94m-----------�[0m �[1m�[94mthis job�[0m
�[1m�[94m...�[0m
�[1m�[94m155�[0m �[1m�[94m|�[0m           password: ${{ secrets.dockerhub-token }}
    �[1m�[94m|�[0m                         �[1m�[33m^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[33msecret is accessed outside of a dedicated environment�[0m
    �[1m�[94m|�[0m
    �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
    �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#secrets-outside-env�[39m

�[1m�[33mwarning[secrets-outside-env]�[0m�[1m: secrets referenced without a dedicated environment�[0m
   �[1m�[94m--> �[0m/github/workspace/.github/workflows/reusable-docker-build-native.yaml:253:25
    �[1m�[94m|�[0m
�[1m�[94m215�[0m �[1m�[94m|�[0m   merge-manifest:
    �[1m�[94m|�[0m   �[1m�[94m--------------�[0m �[1m�[94mthis job�[0m
�[1m�[94m...�[0m
�[1m�[94m253�[0m �[1m�[94m|�[0m           username: ${{ secrets.dockerhub-username }}
    �[1m�[94m|�[0m                         �[1m�[33m^^^^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[33msecret is accessed outside of a dedicated environment�[0m
    �[1m�[94m|�[0m
    �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
    �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#secrets-outside-env�[39m

�[1m�[33mwarning[secrets-outside-env]�[0m�[1m: secrets referenced without a dedicated environment�[0m
   �[1m�[94m--> �[0m/github/workspace/.github/workflows/reusable-docker-build-native.yaml:254:25
    �[1m�[94m|�[0m
�[1m�[94m215�[0m �[1m�[94m|�[0m   merge-manifest:
    �[1m�[94m|�[0m   �[1m�[94m--------------�[0m �[1m�[94mthis job�[0m
�[1m�[94m...�[0m
�[1m�[94m254�[0m �[1m�[94m|�[0m           password: ${{ secrets.dockerhub-token }}
    �[1m�[94m|�[0m                         �[1m�[33m^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[33msecret is accessed outside of a dedicated environment�[0m
    �[1m�[94m|�[0m
    �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
    �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#secrets-outside-env�[39m

�[1m�[96mhelp[superfluous-actions]�[0m�[1m: action functionality is already included by the runner�[0m
   �[1m�[94m--> �[0m/github/workspace/.github/workflows/reusable-docker-build-native.yaml:310:15
    �[1m�[94m|�[0m
�[1m�[94m309�[0m �[1m�[94m|�[0m       - name: Create or update comment for image tags
    �[1m�[94m|�[0m         �[1m�[94m---------------------------------------------�[0m �[1m�[94mthis step�[0m
�[1m�[94m310�[0m �[1m�[94m|�[0m         uses: peter-evans/create-or-update-comment@e8674b075228eee787fea43ef493e45ece1004c9 #v5.0.0
    �[1m�[94m|�[0m               �[1m�[96m^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[96muse `gh pr comment` or `gh issue comment` in a script step�[0m
    �[1m�[94m|�[0m
    �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
    �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#superfluous-actions�[39m

�[1m�[33mwarning[secrets-outside-env]�[0m�[1m: secrets referenced without a dedicated environment�[0m
   �[1m�[94m--> �[0m/github/workspace/.github/workflows/reusable-docker-build.yaml:149:25
    �[1m�[94m|�[0m
�[1m�[94m120�[0m �[1m�[94m|�[0m   build-image:
    �[1m�[94m|�[0m   �[1m�[94m-----------�[0m �[1m�[94mthis job�[0m
�[1m�[94m...�[0m
�[1m�[94m149�[0m �[1m�[94m|�[0m           username: ${{ secrets.dockerhub-username }}
    �[1m�[94m|�[0m                         �[1m�[33m^^^^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[33msecret is accessed outside of a dedicated environment�[0m
    �[1m�[94m|�[0m
    �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
    �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#secrets-outside-env�[39m

�[1m�[33mwarning[secrets-outside-env]�[0m�[1m: secrets referenced without a dedicated environment�[0m
   �[1m�[94m--> �[0m/github/workspace/.github/workflows/reusable-docker-build.yaml:150:25
    �[1m�[94m|�[0m
�[1m�[94m120�[0m �[1m�[94m|�[0m   build-image:
    �[1m�[94m|�[0m   �[1m�[94m-----------�[0m �[1m�[94mthis job�[0m
�[1m�[94m...�[0m
�[1m�[94m150�[0m �[1m�[94m|�[0m           password: ${{ secrets.dockerhub-token }}
    �[1m�[94m|�[0m                         �[1m�[33m^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[33msecret is accessed outside of a dedicated environment�[0m
    �[1m�[94m|�[0m
    �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
    �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#secrets-outside-env�[39m

�[1m�[96mhelp[superfluous-actions]�[0m�[1m: action functionality is already included by the runner�[0m
   �[1m�[94m--> �[0m/github/workspace/.github/workflows/reusable-docker-build.yaml:210:15
    �[1m�[94m|�[0m
�[1m�[94m209�[0m �[1m�[94m|�[0m       - name: Create or update comment for image tags
    �[1m�[94m|�[0m         �[1m�[94m---------------------------------------------�[0m �[1m�[94mthis step�[0m
�[1m�[94m210�[0m �[1m�[94m|�[0m         uses: peter-evans/create-or-update-comment@e8674b075228eee787fea43ef493e45ece1004c9 #v5.0.0
    �[1m�[94m|�[0m               �[1m�[96m^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[96muse `gh pr comment` or `gh issue comment` in a script step�[0m
    �[1m�[94m|�[0m
    �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
    �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#superfluous-actions�[39m

�[32m12�[39m findings (�[1m�[93m2�[39m ignored, �[93m2�[39m suppressed�[0m): �[35m0�[39m informational, �[36m2�[39m low, �[33m6�[39m medium, �[31m0�[39m high🌈 zizmor v1.23.1
�[32m INFO�[0m �[1maudit�[0m�[2m:�[0m �[2mzizmor�[0m�[2m:�[0m 🌈 completed /github/workspace/.github/workflows/reusable-docker-build-native.yaml
�[32m INFO�[0m �[1maudit�[0m�[2m:�[0m �[2mzizmor�[0m�[2m:�[0m 🌈 completed /github/workspace/.github/workflows/reusable-docker-build.yaml

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants