Merge pull request #1398 from docker/dependabot/npm_and_yarn/tmp-0.2.4

chore(deps): Bump tmp from 0.2.3 to 0.2.4
chore: update generated content
2026-02-11 13:48:19 +00:00 · 2026-02-10 17:34:08 +01:00 · 2026-02-10 16:31:49 +00:00 · 2026-02-10 16:30:28 +00:00 · 2026-02-10 17:28:15 +01:00 · 2026-02-10 16:20:42 +00:00
5 changed files with 35 additions and 48 deletions
--- a/tests/context.test.ts
+++ b/tests/context.test.ts
@@ -232,7 +232,7 @@ ccc"`],
      [
        'build',
        '--output', '.',
-        '--secret', `id=GIT_AUTH_TOKEN,src=${tmpName}`,
+        '--secret', `id=GIT_AUTH_TOKEN.github.com,src=${tmpName}`,
        'https://github.com/docker/build-push-action.git#refs/heads/master'
      ],
      undefined
@@ -478,7 +478,7 @@ nproc=3`],
      [
        'build',
        '--iidfile', imageIDFilePath,
-        '--secret', `id=GIT_AUTH_TOKEN,src=${tmpName}`,
+        '--secret', `id=GIT_AUTH_TOKEN.github.com,src=${tmpName}`,
        '--metadata-file', metadataJson,
        'https://github.com/docker/build-push-action.git#refs/heads/master:subdir'
      ],
--- a/dist/index.js
+++ b/dist/index.js
--- a/dist/index.js.map
+++ b/dist/index.js.map
--- a/src/context.ts
+++ b/src/context.ts
@@ -183,7 +183,7 @@ async function getBuildArgs(inputs: Inputs, context: string, toolkit: Toolkit):
    }
  });
  if (inputs['github-token'] && !Build.hasGitAuthTokenSecret(inputs.secrets) && context.startsWith(Context.gitContext())) {
-    args.push('--secret', Build.resolveSecretString(`GIT_AUTH_TOKEN=${inputs['github-token']}`));
+    args.push('--secret', Build.resolveSecretString(`GIT_AUTH_TOKEN.github.com=${inputs['github-token']}`));
  }
  if (inputs['shm-size']) {
    args.push('--shm-size', inputs['shm-size']);
--- a/yarn.lock
+++ b/yarn.lock
@@ -2992,12 +2992,12 @@ __metadata:
  linkType: hard
 "brace-expansion@npm:^1.1.7":
-  version: 1.1.11
+  version: 1.1.12
-  resolution: "brace-expansion@npm:1.1.11"
+  resolution: "brace-expansion@npm:1.1.12"
  dependencies:
    balanced-match: ^1.0.0
    concat-map: 0.0.1
-  checksum: faf34a7bb0c3fcf4b59c7808bc5d2a96a40988addf2e7e09dfbb67a2251800e0d14cd2bfc1aa79174f2f5095c54ff27f46fb1289fe2d77dac755b5eb3434cc07
+  checksum: 12cb6d6310629e3048cadb003e1aca4d8c9bb5c67c3c321bafdd7e7a50155de081f78ea3e0ed92ecc75a9015e784f301efc8132383132f4f7904ad1ac529c562
  languageName: node
  linkType: hard
@@ -5129,14 +5129,14 @@ __metadata:
  linkType: hard
 "js-yaml@npm:^3.13.1":
-  version: 3.14.1
+  version: 3.14.2
-  resolution: "js-yaml@npm:3.14.1"
+  resolution: "js-yaml@npm:3.14.2"
  dependencies:
    argparse: ^1.0.7
    esprima: ^4.0.0
  bin:
    js-yaml: bin/js-yaml.js
-  checksum: bef146085f472d44dee30ec34e5cf36bf89164f5d585435a3d3da89e52622dff0b188a580e4ad091c3341889e14cb88cac6e4deb16dc5b1e9623bb0601fc255c
+  checksum: 626fc207734a3452d6ba84e1c8c226240e6d431426ed94d0ab043c50926d97c509629c08b1d636f5d27815833b7cfd225865631da9fb33cb957374490bf3e90b
  languageName: node
  linkType: hard
@@ -5313,9 +5313,9 @@ __metadata:
  linkType: hard
 "lodash@npm:^4.17.15":
-  version: 4.17.21
+  version: 4.17.23
-  resolution: "lodash@npm:4.17.21"
+  resolution: "lodash@npm:4.17.23"
-  checksum: eb835a2e51d381e561e508ce932ea50a8e5a68f4ebdd771ea240d3048244a8d13658acbd502cd4829768c56f2e16bdd4340b9ea141297d472517b83868e677f7
+  checksum: 7daad39758a72872e94651630fbb54ba76868f904211089721a64516ce865506a759d9ad3d8ff22a2a49a50a09db5d27c36f22762d21766e47e3ba918d6d7bab
  languageName: node
  linkType: hard
@@ -6549,9 +6549,9 @@ __metadata:
  linkType: hard
 "tmp@npm:^0.2.3":
-  version: 0.2.3
+  version: 0.2.5
-  resolution: "tmp@npm:0.2.3"
+  resolution: "tmp@npm:0.2.5"
-  checksum: 73b5c96b6e52da7e104d9d44afb5d106bb1e16d9fa7d00dbeb9e6522e61b571fbdb165c756c62164be9a3bbe192b9b268c236d370a2a0955c7689cd2ae377b95
+  checksum: 9d18e58060114154939930457b9e198b34f9495bcc05a343bc0a0a29aa546d2c1c2b343dae05b87b17c8fde0af93ab7d8fe8574a8f6dc2cd8fd3f2ca1ad0d8e1
  languageName: node
  linkType: hard
@@ -6793,16 +6793,7 @@ __metadata:
  languageName: node
  linkType: hard
-"undici@npm:^5.25.4":
+"undici@npm:^5.25.4, undici@npm:^5.28.5":
  version: 5.28.4
  resolution: "undici@npm:5.28.4"
  dependencies:
    "@fastify/busboy": ^2.0.0
  checksum: a8193132d84540e4dc1895ecc8dbaa176e8a49d26084d6fbe48a292e28397cd19ec5d13bc13e604484e76f94f6e334b2bdc740d5f06a6e50c44072818d0c19f9
  languageName: node
  linkType: hard
 "undici@npm:^5.28.5":
  version: 5.29.0
  resolution: "undici@npm:5.29.0"
  dependencies:
Author	SHA1	Message	Date
CrazyMax	ee4ca427a2	Merge pull request #1398 from docker/dependabot/npm_and_yarn/tmp-0.2.4 chore(deps): Bump tmp from 0.2.3 to 0.2.4	2026-02-10 17:34:08 +01:00
github-actions[bot]	f1b3bb51af	chore: update generated content	2026-02-10 16:31:49 +00:00
dependabot[bot]	db35f80311	chore(deps): Bump tmp from 0.2.3 to 0.2.4 Bumps [tmp](https://github.com/raszi/node-tmp) from 0.2.3 to 0.2.4. - [Changelog](https://github.com/raszi/node-tmp/blob/master/CHANGELOG.md) - [Commits](https://github.com/raszi/node-tmp/compare/v0.2.3...v0.2.4) --- updated-dependencies: - dependency-name: tmp dependency-version: 0.2.4 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2026-02-10 16:30:28 +00:00
CrazyMax	a129300020	Merge pull request #1397 from docker/dependabot/npm_and_yarn/undici-5.29.0 chore(deps): Bump undici from 5.28.4 to 5.29.0	2026-02-10 17:28:15 +01:00
github-actions[bot]	ba15693834	chore: update generated content	2026-02-10 16:20:42 +00:00
dependabot[bot]	367ff5effe	chore(deps): Bump undici from 5.28.4 to 5.29.0 Bumps [undici](https://github.com/nodejs/undici) from 5.28.4 to 5.29.0. - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](https://github.com/nodejs/undici/compare/v5.28.4...v5.29.0) --- updated-dependencies: - dependency-name: undici dependency-version: 5.29.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2026-02-10 16:19:23 +00:00
CrazyMax	0149a90b0f	Merge pull request #1396 from docker/dependabot/npm_and_yarn/brace-expansion-1.1.12 chore(deps): Bump brace-expansion from 1.1.11 to 1.1.12	2026-02-10 17:16:59 +01:00
github-actions[bot]	d1d3988951	chore: update generated content	2026-02-10 16:01:19 +00:00
dependabot[bot]	b88979e155	chore(deps): Bump brace-expansion from 1.1.11 to 1.1.12 Bumps [brace-expansion](https://github.com/juliangruber/brace-expansion) from 1.1.11 to 1.1.12. - [Release notes](https://github.com/juliangruber/brace-expansion/releases) - [Commits](https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12) --- updated-dependencies: - dependency-name: brace-expansion dependency-version: 1.1.12 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2026-02-10 15:59:52 +00:00
CrazyMax	176babefcc	Merge pull request #1429 from docker/dependabot/npm_and_yarn/js-yaml-3.14.2 chore(deps): Bump js-yaml from 3.14.1 to 3.14.2	2026-02-10 16:57:14 +01:00
CrazyMax	469bed9e93	Merge pull request #1446 from docker/dependabot/npm_and_yarn/lodash-4.17.23 chore(deps): Bump lodash from 4.17.21 to 4.17.23	2026-02-10 16:56:47 +01:00
CrazyMax	f477955db5	Merge pull request #1451 from crazy-max/fix-git-auth-token scope default git auth token to github.com	2026-02-10 16:55:36 +01:00
CrazyMax	9760b3030f	chore: update generated content Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>	2026-02-10 15:39:22 +01:00
CrazyMax	d40bd56b13	scope default git auth token to github.com Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>	2026-02-10 15:39:21 +01:00
dependabot[bot]	073b0e6385	chore(deps): Bump lodash from 4.17.21 to 4.17.23 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.21 to 4.17.23. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.21...4.17.23) --- updated-dependencies: - dependency-name: lodash dependency-version: 4.17.23 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2026-01-22 00:11:31 +00:00
dependabot[bot]	6d01ebc3b0	chore(deps): Bump js-yaml from 3.14.1 to 3.14.2 Bumps [js-yaml](https://github.com/nodeca/js-yaml) from 3.14.1 to 3.14.2. - [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md) - [Commits](https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2) --- updated-dependencies: - dependency-name: js-yaml dependency-version: 3.14.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2025-11-17 19:01:34 +00:00