Skip to content

Bump senzing-factory/build-resources/.github/workflows/add-labels-to-issue.yaml from 3 to 4#215

Merged
docktermj merged 4 commits intomainfrom
dependabot/github_actions/senzing-factory/build-resources/dot-github/workflows/add-labels-to-issue.yaml-4
Feb 13, 2026
Merged

Bump senzing-factory/build-resources/.github/workflows/add-labels-to-issue.yaml from 3 to 4#215
docktermj merged 4 commits intomainfrom
dependabot/github_actions/senzing-factory/build-resources/dot-github/workflows/add-labels-to-issue.yaml-4

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 13, 2026
edited by github-actions bot
Loading

Bumps senzing-factory/build-resources/.github/workflows/add-labels-to-issue.yaml from 3 to 4.

Release notes

Sourced from senzing-factory/build-resources/.github/workflows/add-labels-to-issue.yaml's releases.

4.0.0

What's Changed

Full Changelog: senzing-factory/build-resources@v3...4.0.0

3.0.31

What's Changed

Full Changelog: senzing-factory/build-resources@v3...3.0.31

3.0.30

What's Changed

Full Changelog: senzing-factory/build-resources@v3...3.0.30

3.0.29

What's Changed

Full Changelog: senzing-factory/build-resources@v3...3.0.29

3.0.28

What's Changed

New Contributors

Full Changelog: senzing-factory/build-resources@v3...3.0.28

3.0.27

Full Changelog: senzing-factory/build-resources@v3...3.0.27

3.0.26

Full Changelog: senzing-factory/build-resources@v3...3.0.26

... (truncated)

Changelog

Sourced from senzing-factory/build-resources/.github/workflows/add-labels-to-issue.yaml's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, markdownlint, and this project adheres to Semantic Versioning.

[Unreleased]

  • Thing 5
  • Thing 4

[1.0.1] - yyyy-mm-dd

Added to 1.0.1

  • Thing 3

Fixed in 1.0.1

  • Thing 2

[1.0.0] - yyyy-mm-dd

Added to 1.0.0

  • Thing 2
  • Thing 1
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Resolves #260
Resolves #262
Resolves #261
Resolves senzing-factory/build-resources#261
Resolves senzing-factory/build-resources#257
Resolves senzing-factory/build-resources#259
Resolves senzing-factory/build-resources#254
Resolves senzing-factory/build-resources#250
Resolves senzing-factory/build-resources#255
Resolves senzing-factory/build-resources#249
Resolves senzing-factory/build-resources#256
Resolves senzing-factory/build-resources#252
Resolves senzing-factory/build-resources#253
Resolves senzing-factory/build-resources#244
Resolves senzing-factory/build-resources#246
Resolves senzing-factory/build-resources#248

@dependabot
Bump senzing-factory/build-resources/.github/workflows/add-labels-to-…
0751d96 
…issue.yaml

Bumps [senzing-factory/build-resources/.github/workflows/add-labels-to-issue.yaml](https://github.com/senzing-factory/build-resources) from 3 to 4.
- [Release notes](https://github.com/senzing-factory/build-resources/releases)
- [Changelog](https://github.com/senzing-factory/build-resources/blob/main/CHANGELOG.md)
- [Commits](senzing-factory/build-resources@v3...v4)

---
updated-dependencies:
- dependency-name: senzing-factory/build-resources/.github/workflows/add-labels-to-issue.yaml
  dependency-version: '4'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Feb 13, 2026
@dependabot dependabot bot requested a review from a team as a code owner February 13, 2026 01:43
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Feb 13, 2026
@github-actions
Copy link

github-actions bot commented Feb 13, 2026

🤖 Claude Code Review

Code Review Analysis

Code Quality

  • Code follows style guide: This is a GitHub Actions workflow file updating a workflow reference. The YAML syntax is clean and follows standard GitHub Actions conventions.
  • No commented-out code: No commented code present.
  • Meaningful variable names: The workflow references and secrets use clear, descriptive names.
  • DRY principle followed: Single line change, no duplication introduced.
  • Identify Defects: No bugs, logic errors, or security vulnerabilities detected. This is a straightforward version bump from v3 to v4 of a reusable workflow reference in .github/workflows/add-labels-standardized.yaml:18.
  • Project memory configuration: No .claude/CLAUDE.md file found in this repository, so no project-specific guidelines to consider.

Testing

  • Unit tests for new functions: N/A - This is a workflow configuration change, not application code.
  • Integration tests for new endpoints: N/A - No endpoints added.
  • Edge cases covered: N/A - Version reference update.
  • Test coverage > 80%: N/A - Not applicable to workflow configuration.

Note: The workflow change should be validated by monitoring the workflow execution after merge to ensure the v4 version of the reusable workflow functions correctly.

Documentation

  • Readme updated if needed: No README update needed - this is an internal workflow version bump.
  • API docs updated: N/A - No API changes.
  • Inline comments for complex logic: N/A - Simple version reference change requires no additional comments.
  • ⚠️ CHANGELOG.md updated: Not visible in the diff. If this repository maintains a CHANGELOG, this minor version bump should be documented. However, for build automation workflow updates, this is often considered internal maintenance and may not require CHANGELOG entries depending on project conventions.
  • Markdown formatting: N/A - No markdown files modified in this change.

Security

  • No hardcoded credentials: No credentials in the change. Secrets are properly referenced via secrets.* syntax.
  • Input validation implemented: N/A - Not applicable to workflow references.
  • Proper error handling: Workflow-level error handling is inherited from the reusable workflow.
  • No sensitive data in logs: No logging changes introduced.
  • License files: No .lic files or AQAAAD strings detected in the diff.

Summary

Overall Assessment: ✅ APPROVED

This is a clean, low-risk change that bumps the version of a reusable GitHub Actions workflow from v3 to v4. The change follows best practices for workflow maintenance.

Recommendations:

  1. Monitor the first workflow execution after merge to verify the v4 version functions as expected
  2. Consider documenting in CHANGELOG.md if this represents a significant workflow behavior change (optional, depends on project conventions for infrastructure updates)

No blocking issues found.

Automated code review analyzing defects and coding standards

@docktermj docktermj enabled auto-merge (squash) February 13, 2026 15:38
@docktermj
Merge branch 'main' into dependabot/github_actions/senzing-factory/bu…
ee0d81a 
…ild-resources/dot-github/workflows/add-labels-to-issue.yaml-4
@docktermj docktermj self-assigned this Feb 13, 2026
@github-actions
Copy link

github-actions bot commented Feb 13, 2026

🤖 Claude Code Review

Code Review Analysis

Code Quality

✅ Code follows style guide

The change is a simple version bump in a GitHub Actions workflow file. No style guide violations present - the YAML formatting is correct and consistent with the existing structure.

✅ No commented-out code

No commented-out code found in this diff.

✅ Meaningful variable names

All variable names (ORG_MEMBERSHIP_TOKEN, SENZING_MEMBERS) are clear and descriptive.

✅ DRY principle followed

This is a workflow configuration file with a single version reference - no repetition issues.

✅ Identify Defects

No bugs, logic errors, or security vulnerabilities identified. The change is a straightforward version bump from v3 to v4 of a reusable workflow at .github/workflows/add-labels-to-issue.yaml:18.

Recommendation: Verify that the v4 version of the referenced workflow (senzing-factory/build-resources/.github/workflows/add-labels-to-issue.yaml) is:

  1. Available and published
  2. Compatible with the current secrets and configuration
  3. Documented with a changelog explaining breaking changes (if any)

✅ Project memory configuration

No ./.claude/CLAUDE.md file exists in this repository to consider.

Testing

⚠️ Unit tests for new functions

N/A - This is a workflow configuration change, not application code. However, it's recommended to:

  • Monitor the first run of this workflow after merge to ensure v4 behaves as expected
  • Review the changelog for the v4 release to understand any behavioral changes

⚠️ Integration tests for new endpoints

N/A - No endpoints modified.

⚠️ Edge cases covered

N/A - Workflow dependency updates don't typically have edge case tests.

⚠️ Test coverage

N/A - This change doesn't affect code coverage metrics.

Documentation

❌ CHANGELOG.md updated

The CHANGELOG.md should be updated to reflect this workflow dependency version bump. This helps maintainers track infrastructure changes over time.

Action needed: Add an entry to CHANGELOG.md documenting:

  • Version bump of add-labels-to-issue.yaml workflow from v3 to v4
  • Any behavioral changes or new features from the v4 release
  • Date of change

✅ Readme updated if needed

No README update appears necessary for this internal workflow change.

✅ Inline comments for complex logic

The workflow file is simple and self-documenting. No additional comments needed.

✅ API docs updated

N/A - No API changes.

✅ Markdown files follow CommonMark

No markdown files modified in this diff.

Security

✅ No hardcoded credentials

Credentials are properly referenced through GitHub secrets (ORG_MEMBERSHIP_TOKEN, SENZING_MEMBERS).

✅ Input validation implemented

N/A - This is a workflow configuration.

✅ Proper error handling

The workflow includes a slack-notification job that depends on add-issue-labels, which will capture failures.

✅ No sensitive data in logs

Secrets are passed securely through the GitHub Actions secrets mechanism.

✅ No license files or AQAAAD strings

No license files (.lic) or suspicious base64-encoded strings found in this diff.

Summary

Overall Assessment:APPROVED with minor documentation requirement

This is a clean, low-risk dependency version bump. The only action item is updating the CHANGELOG.md to document this infrastructure change. Before merging, confirm that:

  1. The v4 version of the referenced workflow is stable and tested
  2. The changelog entry is added
  3. The first workflow run is monitored for any unexpected behavior

Files requiring attention:

  • CHANGELOG.md - needs entry for this change

Automated code review analyzing defects and coding standards

@docktermj
Merge branch 'main' into dependabot/github_actions/senzing-factory/bu…
9d42b87 
…ild-resources/dot-github/workflows/add-labels-to-issue.yaml-4
@github-actions
Copy link

github-actions bot commented Feb 13, 2026

🤖 Claude Code Review

PR Code Review

Executive Summary

This is a straightforward dependency version bump in a GitHub Actions workflow file. The change updates the workflow reference from @v3 to @v4 for the add-labels-to-issue.yaml workflow.

Detailed Review

Code Quality ✅

  • Code follows style guide: The change maintains the existing YAML formatting and structure. This is a configuration file, and the style is appropriate.
  • No commented-out code: None present.
  • Meaningful variable names: N/A - only version reference changed.
  • DRY principle followed: N/A for this change.
  • Defects: No bugs, logic errors, or security vulnerabilities introduced. This is a simple version bump.
  • Project memory configuration: No .claude/CLAUDE.md file detected in the repository that would affect this review.

Testing ⚠️

  • ⚠️ Unit tests: N/A for workflow configuration changes.
  • ⚠️ Integration tests: N/A for workflow configuration changes.
  • ⚠️ Edge cases: N/A for this change.
  • ⚠️ Test coverage: N/A - this is a GitHub Actions workflow file, not application code.

Note: While automated tests don't apply here, this change should be verified by monitoring the workflow execution after merge to ensure the @v4 version of the workflow functions correctly.

Documentation ✅

  • README updated: Not needed for this change.
  • API docs updated: Not applicable.
  • Inline comments: Not needed for this simple version bump.
  • CHANGELOG.md: Should be updated to note the workflow version bump from v3 to v4.
  • Markdown formatting: The file is YAML, not Markdown. YAML structure is correct.

Security ✅

  • No hardcoded credentials: Secrets are properly referenced using ${{ secrets.* }} syntax.
  • Input validation: N/A for this change.
  • Proper error handling: N/A - workflow error handling is managed by GitHub Actions.
  • No sensitive data in logs: No changes that would affect logging.
  • No license files: No .lic files or AQAAAD strings present in this diff.

Recommendations

Required Actions

None - this is a clean dependency update.

Suggested Actions

  1. CHANGELOG.md Update: Consider adding an entry like:

    - Updated add-labels-to-issue workflow from v3 to v4

  2. Post-merge verification: Monitor the next issue that triggers this workflow to ensure the v4 version works as expected.

  3. Release Notes: If this is part of a larger PR or release, document what improvements or fixes are in v4 of the add-labels-to-issue workflow.

Conclusion

Overall Assessment: ✅ APPROVED

This is a low-risk change that updates a workflow dependency version. No code quality, security, or functionality issues detected. The change is minimal, focused, and follows best practices for dependency management in GitHub Actions workflows.

File: .github/workflows/add-labels-standardized.yaml:18

Automated code review analyzing defects and coding standards

@docktermj
Merge branch 'main' into dependabot/github_actions/senzing-factory/bu…
7c9444d 
…ild-resources/dot-github/workflows/add-labels-to-issue.yaml-4
@github-actions
Copy link

github-actions bot commented Feb 13, 2026

🤖 Claude Code Review

Code Review Analysis

Code Quality

Code follows style guide - This is a simple GitHub Actions workflow version bump. The change is minimal and follows YAML formatting conventions.

No commented-out code - Clean diff with no commented code.

Meaningful variable names - Not applicable to this change.

DRY principle followed - Not applicable to this change.

Identify Defects - No defects identified. This is a straightforward dependency version update from v3 to v4.

Project memory configuration - Checked ./.claude/CLAUDE.md - it contains general project guidelines appropriate for all developers, nothing environment-specific.

Testing

⚠️ Testing concerns - Cannot verify from this diff alone:

  • Unit tests for new functions - N/A for workflow version bump
  • Integration tests - N/A for workflow version bump
  • Edge cases covered - N/A for workflow version bump
  • Test coverage > 80% - N/A for workflow version bump

Recommendation: Verify that the v4 version of add-labels-to-issue.yaml has been tested in the upstream repository and confirm it's backward compatible with your current configuration.

Documentation

⚠️ Documentation Updates:

  • README.md - Should verify if README mentions workflow versions (.github/workflows/add-labels-standardized.yaml:15)
  • CHANGELOG.md - Not updated to reflect the workflow dependency version bump from v3 to v4
  • Inline comments - N/A for this change
  • API docs - N/A for workflow files

Required Action: Update CHANGELOG.md to document this dependency version update.

Security

No hardcoded credentials - Credentials properly passed via secrets.

Input validation - N/A for workflow version reference.

Proper error handling - N/A for this change.

No sensitive data in logs - No changes to logging behavior.

No license files flagged - No .lic files or AQAAAD strings in this diff.

Summary

Overall Assessment: ✅ Approved with Minor Changes Required

This is a clean dependency version bump from v3 to v4 of the add-labels-to-issue.yaml workflow. The change is straightforward and low-risk.

Required Changes:

  1. Update CHANGELOG.md - Document the workflow dependency version update

Recommendations:

  1. Verify v4 compatibility with your current workflow configuration
  2. Check if the upstream v4 workflow introduces any breaking changes or new features
  3. Review release notes for senzing-factory/build-resources v4 to understand what changed

Files Reviewed:

  • .github/workflows/add-labels-standardized.yaml:18 - Version bump from v3 to v4

Automated code review analyzing defects and coding standards

@docktermj docktermj merged commit 7cc76e3 into main Feb 13, 2026
24 checks passed
@docktermj docktermj deleted the dependabot/github_actions/senzing-factory/build-resources/dot-github/workflows/add-labels-to-issue.yaml-4 branch February 13, 2026 18:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@docktermj docktermj docktermj approved these changes

Assignees

@docktermj docktermj

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@docktermj