Skip to content

⬆️ Bump @actions/tool-cache from 3.0.0 to 4.0.0#32

Merged
RobertoGraham merged 4 commits intomainfrom
dependabot/npm_and_yarn/actions/tool-cache-4.0.0
Mar 31, 2026
Merged

⬆️ Bump @actions/tool-cache from 3.0.0 to 4.0.0#32
RobertoGraham merged 4 commits intomainfrom
dependabot/npm_and_yarn/actions/tool-cache-4.0.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Jan 30, 2026
edited
Loading

Bumps @actions/tool-cache from 3.0.0 to 4.0.0.

Changelog

Sourced from @​actions/tool-cache's changelog.

4.0.0

  • Breaking change: Package is now ESM-only
    • CommonJS consumers must use dynamic import() instead of require()

3.0.1

  • Bump @actions/http-client to 3.0.2
Commits

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jan 30, 2026
@dependabot dependabot bot requested a review from RobertoGraham as a code owner January 30, 2026 09:09
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jan 30, 2026
@dependabot dependabot bot mentioned this pull request Jan 30, 2026
Closed
@RobertoGraham
Copy link
Copy Markdown
Owner

RobertoGraham commented Mar 31, 2026

@dependabot rebase

@dependabot
⬆️ Bump @actions/tool-cache from 3.0.0 to 4.0.0
4ce493e 
Bumps [@actions/tool-cache](https://github.com/actions/toolkit/tree/HEAD/packages/tool-cache) from 3.0.0 to 4.0.0.
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/tool-cache/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/@actions/cache@4.0.0/packages/tool-cache)

---
updated-dependencies:
- dependency-name: "@actions/tool-cache"
  dependency-version: 4.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/actions/tool-cache-4.0.0 branch from f89c30c to 4ce493e Compare March 31, 2026 23:02
@RobertoGraham
Copy link
Copy Markdown
Owner

RobertoGraham commented Mar 31, 2026

@copilot, address the breaking change.

Copy link
Copy Markdown
Contributor

Copilot AI commented Mar 31, 2026
edited
Loading

@copilot, address the breaking change.

In commit f74f675, replaced require('@actions/tool-cache') with await import('@actions/tool-cache'). The package is now ESM-only in 4.0.0, and since find, downloadTool, extractTar, and cacheDir are all named exports on the module namespace object, no other changes are needed.

Warning

Firewall rules blocked me from connecting to one or more addresses (expand for details)

I tried to connect to the following addresses, but was blocked by firewall rules:

  • unpkg.com
    • Triggering command: /usr/bin/curl curl -s REDACTED (dns block)

If you need me to access, download, or install something from one of these locations, you can either:

@RobertoGraham RobertoGraham merged commit 97652ea into main Mar 31, 2026
1 check passed
@RobertoGraham RobertoGraham deleted the dependabot/npm_and_yarn/actions/tool-cache-4.0.0 branch March 31, 2026 23:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@RobertoGraham RobertoGraham RobertoGraham approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@RobertoGraham