Bump the actions group with 3 updates (#245 )

Bumps the actions group with 3 updates: [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core), [@actions/exec](https://github.com/actions/toolkit/tree/HEAD/packages/exec) and [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node). Updates `@actions/core` from 1.11.1 to 2.0.1 - [Changelog](https://github.com/actions/toolkit/blob/main/packages/core/RELEASES.md) - [Commits](https://github.com/actions/toolkit/commits/@actions/artifact@2.0.1/packages/core) Updates `@actions/exec` from 1.1.1 to 2.0.0 - [Changelog](https://github.com/actions/toolkit/blob/main/packages/exec/RELEASES.md) - [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/exec) Updates `@types/node` from 24.10.1 to 25.0.2 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node) --- updated-dependencies: - dependency-name: "@actions/core" dependency-version: 2.0.1 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: "@actions/exec" dependency-version: 2.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: "@types/node" dependency-version: 25.0.2 dependency-type: direct:development update-type: version-update:semver-major dependency-group: actions ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump the actions group in /.github/workflows with 2 updates (#244 )
2025-12-21 14:55:43 +00:00 · 2025-12-15 12:22:02 -05:00 · 2025-12-09 06:39:58 +13:00 · 2025-12-09 06:39:31 +13:00 · 2025-12-01 11:28:43 -08:00 · 2025-12-01 14:27:51 -05:00
10 changed files with 982 additions and 724 deletions
--- a/.github/workflows/defaultLabels.yml
+++ b/.github/workflows/defaultLabels.yml
@@ -13,7 +13,7 @@ jobs:
      # Steps represent a sequence of tasks that will be executed as part of the job
      steps:
-         - uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 #v9.1.0
+         - uses: actions/stale@997185467fa4f803885201cee163a9f38240193d #v10.1.1
           name: Setting issue as idle
           with:
              repo-token: ${{ secrets.GITHUB_TOKEN }}
@@ -24,7 +24,7 @@ jobs:
              operations-per-run: 100
              exempt-issue-labels: 'backlog'
-         - uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 #v9.1.0
+         - uses: actions/stale@997185467fa4f803885201cee163a9f38240193d #v10.1.1
           name: Setting PR as idle
           with:
              repo-token: ${{ secrets.GITHUB_TOKEN }}
--- a/.github/workflows/integration-tests.yml
+++ b/.github/workflows/integration-tests.yml
@@ -7,15 +7,22 @@ on:
 jobs:
   trigger-integration-tests:
      name: Trigger Integration tests
-      runs-on: ubuntu-latest
+      strategy:
         matrix:
            os:
               - ubuntu-latest
               - ubuntu-24.04-arm
               - macos-latest # arm
         fail-fast: false
      runs-on: ${{ matrix.os }}
      env:
-         HELM_3_8_0: 'v3.8.0'
+         HELM_3_18_4: 'v3.18.4'
-         HELM_3_7_2: 'v3.7.2'
+         HELM_3_18_0: 'v3.18.0'
-         HELM_NO_V: '3.5.0'
+         HELM_NO_V: '3.18.4'
         PR_BASE_REF: ${{ github.event.pull_request.base.ref }}
      steps:
         - name: Check out repository
-           uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+           uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
         - name: npm install and build
           id: action-npm-build
           run: |
@@ -27,41 +34,41 @@ jobs:
         - name: Setup helm
           uses: ./
           with:
-              version: ${{ env.HELM_3_8_0 }}
+              version: ${{ env.HELM_3_18_4 }}
-         - name: Validate helm 3.8.0
+         - name: Validate helm 3.18.4
           run: |
-              if [[ $(helm version) != *$HELM_3_8_0* ]]; then
+              if [[ $(helm version) != *$HELM_3_18_4* ]]; then
-                echo "HELM VERSION INCORRECT: HELM VERSION DOES NOT CONTAIN v3.8.0"
+                echo "HELM VERSION INCORRECT: HELM VERSION DOES NOT CONTAIN v3.18.4"
                echo "HELM VERSION OUTPUT: $(helm version)"
                exit 1
              else
-                echo "HELM VERSION $HELM_3_8_0 INSTALLED SUCCESSFULLY"
+                echo "HELM VERSION $HELM_3_18_4 INSTALLED SUCCESSFULLY"
              fi
-         - name: Setup helm 3.7.2
+         - name: Setup helm 3.18.0
           uses: ./
           with:
-              version: ${{ env.HELM_3_7_2 }}
+              version: ${{ env.HELM_3_18_0 }}
-         - name: Validate 3.7.2
+         - name: Validate 3.18.0
           run: |
-              if [[ $(helm version) != *$HELM_3_7_2* ]]; then
+              if [[ $(helm version) != *$HELM_3_18_0* ]]; then
-                echo "HELM VERSION INCORRECT: HELM VERSION DOES NOT CONTAIN v3.7.2"
+                echo "HELM VERSION INCORRECT: HELM VERSION DOES NOT CONTAIN v3.18.0"
                echo "HELM VERSION OUTPUT: $(helm version)"
                exit 1
              else
-                echo "HELM VERSION $HELM_3_7_2 INSTALLED SUCCESSFULLY"
+                echo "HELM VERSION $HELM_3_18_0 INSTALLED SUCCESSFULLY"
              fi
-         - name: Setup helm 3.5.0 with no v in version
+         - name: Setup helm 3.18.4 with no v in version
           uses: ./
           with:
              version: ${{ env.HELM_NO_V }}
-         - name: Validate 3.5.0 without v in version
+         - name: Validate 3.18.4 without v in version
           run: |
              if [[ $(helm version) != *$HELM_NO_V* ]]; then
-                echo "HELM VERSION INCORRECT: HELM VERSION DOES NOT CONTAIN v3.5.0"
+                echo "HELM VERSION INCORRECT: HELM VERSION DOES NOT CONTAIN 3.18.4"
                echo "HELM VERSION OUTPUT: $(helm version)"
                exit 1
              else
-                echo "HELM VERSION $HELM_3_5_0 INSTALLED SUCCESSFULLY"
+                echo "HELM VERSION $HELM_NO_V INSTALLED SUCCESSFULLY"
              fi
         - name: Setup helm latest version
           uses: ./
@@ -72,12 +79,7 @@ jobs:
           env:
              GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           run: |
-              HELM_LATEST=$(gh release list \
+              HELM_LATEST=$(curl -s https://get.helm.sh/helm-latest-version)
                --repo helm/helm \
                --exclude-drafts \
                --exclude-pre-releases \
                --json name,isLatest \
                --jq '.[] | select(.isLatest)|.name' | awk '{print $2}')
              if [[ $(helm version) != *$HELM_LATEST* ]]; then
                echo "HELM VERSION INCORRECT: HELM VERSION DOES NOT CONTAIN $HELM_LATEST"
--- a/.github/workflows/prettify-code.yml
+++ b/.github/workflows/prettify-code.yml
@@ -10,7 +10,7 @@ jobs:
      runs-on: ubuntu-latest
      steps:
         - name: Checkout Repository
-           uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+           uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
         - name: Enforce Prettier
           run: npx prettier --check .
--- a/.github/workflows/unit-tests.yml
+++ b/.github/workflows/unit-tests.yml
@@ -11,9 +11,18 @@ on: # rebuild any PRs and main branch changes
 jobs:
   build: # make sure build/ci works properly
-      runs-on: ubuntu-latest
+      strategy:
         matrix:
            os:
               - ubuntu-latest
               - ubuntu-24.04-arm
               - windows-latest
               - windows-11-arm
               - macos-latest # arm
         fail-fast: false
      runs-on: ${{ matrix.os }}
      steps:
-         - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+         - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
         - name: Run L0 tests.
           run: |
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,20 @@
 # Change Log
 ## [4.3.1] - 2025-08-12
 ### Changed
 - #167 [Pinning Action Dependencies for Security and Reliability](https://github.com/Azure/setup-helm/pull/167)
 - #181 [Fix types, and update node version.](https://github.com/Azure/setup-helm/pull/181)
 - #191 [chore(tests): Mock arch to make tests pass on arm host](https://github.com/Azure/setup-helm/pull/191)
 - #192 [chore: remove unnecessary prebuild script](https://github.com/Azure/setup-helm/pull/192)
 - #203 [Update helm version retrieval to use JSON output for latest version](https://github.com/Azure/setup-helm/pull/203)
 - #207 [ci(workflows): update helm version to v3.18.4 and add matrix for tests](https://github.com/Azure/setup-helm/pull/207)
 ### Added
 - #197 [Add pre-commit hook](https://github.com/Azure/setup-helm/pull/197)
 ## [4.3.0] - 2025-02-15
 - #152 feat: log when restoring from cache
--- a/README.md
+++ b/README.md
@@ -14,7 +14,7 @@ Acceptable values are latest or any semantic version string like v3.5.0 Use this
 ```
 > [!NOTE]
-> If something goes wrong with fetching the latest version the action will use the hardcoded default stable version (currently v3.13.3). If you rely on a certain version higher than the default, you should explicitly use that version instead of latest.
+> If something goes wrong with fetching the latest version the action will use the hardcoded default version (currently v3.18.3). If you rely on a certain version higher than the default, you should explicitly use that version instead of latest.
 The cached helm binary path is prepended to the PATH environment variable as well as stored in the helm-path output variable.
 Refer to the action metadata file for details about all the inputs https://github.com/Azure/setup-helm/blob/master/action.yml
--- a/package-lock.json
+++ b/package-lock.json
--- a/package.json
+++ b/package.json
@@ -1,21 +1,20 @@
 {
   "name": "setuphelm",
-   "version": "4.3.0",
+   "version": "4.3.1",
   "private": true,
   "description": "Setup helm",
   "author": "Anumita Shenoy",
   "license": "MIT",
   "dependencies": {
-      "@actions/core": "^1.11.1",
+      "@actions/core": "^2.0.1",
-      "@actions/exec": "^1.1.1",
+      "@actions/exec": "^2.0.0",
-      "@actions/io": "^1.1.2",
+      "@actions/io": "^2.0.0",
      "@actions/tool-cache": "2.0.2",
-      "@octokit/action": "^8.0.2",
+      "@octokit/action": "^8.0.4",
-      "semver": "^7.7.2"
+      "semver": "^7.7.3"
   },
   "main": "lib/index.js",
   "scripts": {
      "prebuild": "npm i ncc",
      "build": "ncc build src/index.ts -o lib",
      "test": "jest",
      "test-coverage": "jest --coverage",
@@ -25,12 +24,12 @@
   },
   "devDependencies": {
      "@types/jest": "^30.0.0",
-      "@types/node": "^24.0.13",
+      "@types/node": "^25.0.2",
-      "@vercel/ncc": "^0.38.3",
+      "@vercel/ncc": "^0.38.4",
      "husky": "^9.1.7",
-      "jest": "^30.0.4",
+      "jest": "^30.2.0",
-      "prettier": "^3.6.2",
+      "prettier": "^3.7.4",
-      "ts-jest": "^29.4.0",
+      "ts-jest": "^29.4.6",
-      "typescript": "^5.8.3"
+      "typescript": "^5.9.3"
   }
 }
--- a/src/run.test.ts
+++ b/src/run.test.ts
@@ -67,7 +67,7 @@ describe('run.ts', () => {
      expect(os.arch).toHaveBeenCalled()
   })
-   test('getHelmDownloadURL() - return the URL to download helm for Windows', () => {
+   test('getHelmDownloadURL() - return the URL to download helm for Windows x64', () => {
      jest.spyOn(os, 'platform').mockReturnValue('win32')
      jest.spyOn(os, 'arch').mockReturnValue('x64')
@@ -76,6 +76,15 @@ describe('run.ts', () => {
      expect(os.platform).toHaveBeenCalled()
   })
   test('getHelmDownloadURL() - return the URL to download helm for Windows arm64', () => {
      jest.spyOn(os, 'platform').mockReturnValue('win32')
      jest.spyOn(os, 'arch').mockReturnValue('arm64')
      const expected = 'https://test.tld/helm-v3.8.0-windows-arm64.zip'
      expect(run.getHelmDownloadURL(downloadBaseURL, 'v3.8.0')).toBe(expected)
      expect(os.platform).toHaveBeenCalled()
   })
   test('getLatestHelmVersion() - return the latest version of HELM', async () => {
      const res = {
         status: 200,
@@ -88,7 +97,7 @@ describe('run.ts', () => {
   test('getLatestHelmVersion() - return the stable version of HELM when simulating a network error', async () => {
      const errorMessage: string = 'Network Error'
      global.fetch = jest.fn().mockRejectedValueOnce(new Error(errorMessage))
-      expect(await run.getLatestHelmVersion()).toBe('v3.13.3')
+      expect(await run.getLatestHelmVersion()).toBe(run.stableHelmVersion)
   })
   test('getValidVersion() - return version with v prepended', () => {
@@ -99,20 +108,20 @@ describe('run.ts', () => {
      jest.spyOn(fs, 'readdirSync').mockImplementation((file, _) => {
         if (file == 'mainFolder')
            return [
-               'file1' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>,
+               'file1' as unknown as fs.Dirent<NonSharedBuffer>,
-               'file2' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>,
+               'file2' as unknown as fs.Dirent<NonSharedBuffer>,
-               'folder1' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>,
+               'folder1' as unknown as fs.Dirent<NonSharedBuffer>,
-               'folder2' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>
+               'folder2' as unknown as fs.Dirent<NonSharedBuffer>
            ]
         if (file == path.join('mainFolder', 'folder1'))
            return [
-               'file11' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>,
+               'file11' as unknown as fs.Dirent<NonSharedBuffer>,
-               'file12' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>
+               'file12' as unknown as fs.Dirent<NonSharedBuffer>
            ]
         if (file == path.join('mainFolder', 'folder2'))
            return [
-               'file21' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>,
+               'file21' as unknown as fs.Dirent<NonSharedBuffer>,
-               'file22' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>
+               'file22' as unknown as fs.Dirent<NonSharedBuffer>
            ]
         return []
      })
@@ -134,20 +143,20 @@ describe('run.ts', () => {
      jest.spyOn(fs, 'readdirSync').mockImplementation((file, _) => {
         if (file == 'mainFolder')
            return [
-               'file1' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>,
+               'file1' as unknown as fs.Dirent<NonSharedBuffer>,
-               'file2' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>,
+               'file2' as unknown as fs.Dirent<NonSharedBuffer>,
-               'folder1' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>,
+               'folder1' as unknown as fs.Dirent<NonSharedBuffer>,
-               'folder2' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>
+               'folder2' as unknown as fs.Dirent<NonSharedBuffer>
            ]
         if (file == path.join('mainFolder', 'folder1'))
            return [
-               'file11' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>,
+               'file11' as unknown as fs.Dirent<NonSharedBuffer>,
-               'file12' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>
+               'file12' as unknown as fs.Dirent<NonSharedBuffer>
            ]
         if (file == path.join('mainFolder', 'folder2'))
            return [
-               'file21' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>,
+               'file21' as unknown as fs.Dirent<NonSharedBuffer>,
-               'file22' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>
+               'file22' as unknown as fs.Dirent<NonSharedBuffer>
            ]
         return []
      })
@@ -167,7 +176,7 @@ describe('run.ts', () => {
      jest.spyOn(fs, 'chmodSync').mockImplementation(() => {})
      jest.spyOn(fs, 'readdirSync').mockImplementation((file, _) => {
         if (file == 'mainFolder')
-            return ['helm.exe' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>]
+            return ['helm.exe' as unknown as fs.Dirent<NonSharedBuffer>]
         return []
      })
      jest.spyOn(fs, 'statSync').mockImplementation((file) => {
@@ -204,13 +213,14 @@ describe('run.ts', () => {
      const response = JSON.stringify([{tag_name: 'v4.0.0'}])
      jest.spyOn(fs, 'readFileSync').mockReturnValue(response)
      jest.spyOn(os, 'platform').mockReturnValue('win32')
      jest.spyOn(os, 'arch').mockReturnValue('x64')
      jest.spyOn(fs, 'chmodSync').mockImplementation(() => {})
      jest.spyOn(toolCache, 'extractZip').mockResolvedValue('extractedPath')
      jest.spyOn(toolCache, 'cacheDir').mockResolvedValue('pathToCachedDir')
      jest
         .spyOn(fs, 'readdirSync')
         .mockImplementation((file, _) => [
-            'helm.exe' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>
+            'helm.exe' as unknown as fs.Dirent<NonSharedBuffer>
         ])
      jest.spyOn(fs, 'statSync').mockImplementation((file) => {
         const isDirectory =
@@ -239,6 +249,7 @@ describe('run.ts', () => {
         throw 'Unable to download'
      })
      jest.spyOn(os, 'platform').mockReturnValue('win32')
      jest.spyOn(os, 'arch').mockReturnValue('x64')
      const downloadUrl = 'https://test.tld/helm-v3.2.1-windows-amd64.zip'
      await expect(run.downloadHelm(downloadBaseURL, 'v3.2.1')).rejects.toThrow(
@@ -254,12 +265,11 @@ describe('run.ts', () => {
      jest.spyOn(toolCache, 'downloadTool').mockResolvedValue('pathToTool')
      jest.spyOn(toolCache, 'extractZip').mockResolvedValue('extractedPath')
      jest.spyOn(os, 'platform').mockReturnValue('win32')
      jest.spyOn(os, 'arch').mockReturnValue('x64')
      jest.spyOn(fs, 'chmodSync').mockImplementation(() => {})
      jest
         .spyOn(fs, 'readdirSync')
-         .mockReturnValue([
+         .mockReturnValue(['helm.exe' as unknown as fs.Dirent<NonSharedBuffer>])
            'helm.exe' as unknown as fs.Dirent<Buffer<ArrayBufferLike>>
         ])
      jest.spyOn(fs, 'statSync').mockImplementation((file) => {
         const isDirectory =
            (file as string).indexOf('folder') == -1 ? false : true
@@ -283,6 +293,7 @@ describe('run.ts', () => {
      jest.spyOn(toolCache, 'downloadTool').mockResolvedValue('pathToTool')
      jest.spyOn(toolCache, 'extractZip').mockResolvedValue('extractedPath')
      jest.spyOn(os, 'platform').mockReturnValue('win32')
      jest.spyOn(os, 'arch').mockReturnValue('x64')
      jest.spyOn(fs, 'chmodSync').mockImplementation()
      jest.spyOn(fs, 'readdirSync').mockImplementation((file, _) => [])
      jest.spyOn(fs, 'statSync').mockImplementation((file) => {
--- a/src/run.ts
+++ b/src/run.ts
@@ -10,7 +10,7 @@ import * as toolCache from '@actions/tool-cache'
 import * as core from '@actions/core'
 const helmToolName = 'helm'
-const stableHelmVersion = 'v3.13.3'
+export const stableHelmVersion = 'v3.18.4'
 export async function run() {
   let version = core.getInput('version', {required: true})