ci(actions)(deps): bump actions/checkout from 4 to 6 #9
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
- Created for environment variable configuration. - Added to exclude unnecessary files from version control. - Introduced for secret scanning configuration. - Set up for pre-commit hooks. - Specified Python version in . - Added documentation files including , , and . - Included and for package distribution. - Updated and for project configuration. - Created initial CI/CD workflows in and . - Added various documentation files under for API, architecture, and integration details. - Established initial test structure in directory for unit and integration tests. - Implemented foundational code structure in directory for the application logic. - Ensured all new files are properly formatted and adhere to project standards.
## Features - **Tool Calling Agent Mode**: Full agentic tool loop with native support across all LLM providers - Native tool calling for OpenAI, Anthropic, Gemini, Azure OpenAI, LiteLLM, and Portkey - Tool registry with @tool decorator for defining callable functions - Automatic Pydantic model → JSON Schema conversion for structured outputs - Conversation management with message history and multi-turn tool execution - tool_choice parameter support (auto, required, none, or specific tool) - Prompt token counting via count_tokens() on all adapters - **Extension Protocols**: Duck-typed protocols for customizing orchestrator behavior - StoppingPolicy: Control when the tool loop terminates - ContextCompressor: Compress conversation context between iterations - NestedCallPolicy: Configure handling of nested llm_query() calls - Default implementations with full backward compatibility - **Performance Benchmarks**: Comprehensive profiling infrastructure - Frame encoding/decoding benchmarks - Connection pool performance tests - Live LLM benchmarks gated by RLM_LIVE_LLM=1 ## Improvements - Optimized codec for faster frame encoding/decoding - FINAL() marker search optimization - Enhanced type hints across adapter layer - Docker environment host network mode for CI ## Fixes - Correct async tool execution with proper Optional/Union schema handling - Trusted OIDC publishing for PyPI releases - Wheel installation tests include dependencies Full changelog: https://github.com/Luiz-Frias/agentic-codebase-navigator/blob/main/CHANGELOG.md
- Update ruff-pre-commit from v0.9.3 to v0.14.0 - Remove deprecated UP038 from ignore list
Bumps the uv group with 1 update in the / directory: [filelock](https://github.com/tox-dev/py-filelock). Updates `filelock` from 3.20.2 to 3.20.3 - [Release notes](https://github.com/tox-dev/py-filelock/releases) - [Changelog](https://github.com/tox-dev/filelock/blob/main/docs/changelog.rst) - [Commits](tox-dev/filelock@3.20.2...3.20.3) --- updated-dependencies: - dependency-name: filelock dependency-version: 3.20.3 dependency-type: indirect dependency-group: uv ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps the uv group with 1 update in the / directory: [urllib3](https://github.com/urllib3/urllib3). Updates `urllib3` from 2.6.2 to 2.6.3 - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](urllib3/urllib3@2.6.2...2.6.3) --- updated-dependencies: - dependency-name: urllib3 dependency-version: 2.6.3 dependency-type: indirect dependency-group: uv ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Type-Driven Architecture Refactor ## Breaking Changes - Local environment now uses subprocess workers (was in-process) - StoppingPolicy detection via policy_stop flag (was string matching) ## Features - StateMachine[S, E, C] declarative orchestration - Result[T, E] pattern (Rust-inspired Ok/Err) - SafeAccessor for duck-typed LLM response navigation - Optional Pydantic integration (JsonSchemaMapper) - SDK boundary layer for type-safe Any handling - Explicit policy_stop flag for StoppingPolicy tracking ## Documentation - Migration guide (1.1.0 → 1.2.0) - State machine architecture docs - Pydantic integration guide - Expanded troubleshooting See CHANGELOG.md for full details.
…-navigator into public-release
Removes placeholder Goal2 ports that were superseded by the v1.2.0 type-driven architecture refactor.
Bumps [jdx/mise-action](https://github.com/jdx/mise-action) from 2 to 3. - [Release notes](https://github.com/jdx/mise-action/releases) - [Changelog](https://github.com/jdx/mise-action/blob/main/CHANGELOG.md) - [Commits](jdx/mise-action@v2...v3) --- updated-dependencies: - dependency-name: jdx/mise-action dependency-version: '3' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4 to 7. - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@v4...v7) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv) from 5 to 7. - [Release notes](https://github.com/astral-sh/setup-uv/releases) - [Commits](astral-sh/setup-uv@v5...v7) --- updated-dependencies: - dependency-name: astral-sh/setup-uv dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps the uv group with 1 update in the / directory: [pyasn1](https://github.com/pyasn1/pyasn1). Updates `pyasn1` from 0.6.1 to 0.6.2 - [Release notes](https://github.com/pyasn1/pyasn1/releases) - [Changelog](https://github.com/pyasn1/pyasn1/blob/main/CHANGES.rst) - [Commits](pyasn1/pyasn1@v0.6.1...v0.6.2) --- updated-dependencies: - dependency-name: pyasn1 dependency-version: 0.6.2 dependency-type: indirect dependency-group: uv ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 6. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v4...v6) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
added
dependencies
dependabot
bot
added
dependencies
|
Important Review skippedAuto reviews are limited based on label configuration. 🏷️ Required labels (at least one) (2)
🚫 Excluded labels (none allowed) (3)
Please check the settings in the CodeRabbit UI or the You can disable this status message by setting the
Comment |
Contributor
Author
|
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting If you change your mind, just re-open this PR and I'll resolve any conflicts on it. |
dependabot
bot
deleted the
dependabot/github_actions/actions/checkout-6
branch
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps actions/checkout from 4 to 6.
Release notes
Sourced from actions/checkout's releases.
... (truncated)
Changelog
Sourced from actions/checkout's changelog.
... (truncated)
Commits
8e8c483Clarify v6 README (#2328)033fa0dAdd worktree support for persist-credentials includeIf (#2327)c2d88d3Update all references from v5 and v4 to v6 (#2314)1af3b93update readme/changelog for v6 (#2311)71cf226v6-beta (#2298)069c695Persist creds to a separate file (#2286)ff7abcdUpdate README to include Node.js 24 support details and requirements (#2248)08c6903Prepare v5.0.0 release (#2238)9f26565Update actions checkout to use node 24 (#2226)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)