chore(deps): bump huggingface/doc-builder/.github/workflows/upload_pr_documentation.yml from b0f9a6e3b6aa912656cbda9f74896eb721d29421 to bcff59fca682130d2e7271ca8589911b7ac0b8bf#782
Conversation
…_documentation.yml Bumps [huggingface/doc-builder/.github/workflows/upload_pr_documentation.yml](https://github.com/huggingface/doc-builder) from b0f9a6e3b6aa912656cbda9f74896eb721d29421 to bcff59fca682130d2e7271ca8589911b7ac0b8bf. - [Release notes](https://github.com/huggingface/doc-builder/releases) - [Commits](huggingface/doc-builder@b0f9a6e...bcff59f) --- updated-dependencies: - dependency-name: huggingface/doc-builder/.github/workflows/upload_pr_documentation.yml dependency-version: bcff59fca682130d2e7271ca8589911b7ac0b8bf dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
added
Dependencies
github_actions
|
The docs for this PR live here. All of your documentation changes will be reflected on that endpoint. The docs are available until 30 days after the last update. |
Darktex
left a comment
Darktex
left a comment
There was a problem hiding this comment.
Note: This is an automated review by Claude Code, not a human review.
Alignment Review
Tier 1 — mechanical: PASS. Exactly one line changed: the SHA pin on uses: for huggingface/doc-builder/.github/workflows/upload_pr_documentation.yml (b0f9a6e… → bcff59f…). The # main tracking comment is preserved, and the with (package_name: openenv) and secrets blocks are untouched. Well-formed YAML.
Tier 2 — alignment: No concerns. SHA-pinning third-party reusable workflows (rather than a mutable @main/tag ref) is the correct supply-chain-safe pattern, and this bump maintains it.
Approved.
Automated review by Claude Code | Learn more
1 participant
Bumps huggingface/doc-builder/.github/workflows/upload_pr_documentation.yml from b0f9a6e3b6aa912656cbda9f74896eb721d29421 to bcff59fca682130d2e7271ca8589911b7ac0b8bf.
Commits
bcff59ffix(kit): don't crash prerender when a provider/task has no snippet (#791)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)