Bump the actions group with 2 updates (#256 )

Bumps the actions group with 2 updates: [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) and [prettier](https://github.com/prettier/prettier). Updates `@types/node` from 25.9.2 to 25.9.3 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node) Updates `prettier` from 3.8.3 to 3.8.4 - [Release notes](https://github.com/prettier/prettier/releases) - [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md) - [Commits](https://github.com/prettier/prettier/compare/3.8.3...3.8.4) --- updated-dependencies: - dependency-name: "@types/node" dependency-version: 25.9.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: actions - dependency-name: prettier dependency-version: 3.8.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: actions ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump esbuild from 0.28.0 to 0.28.1 (#255 )
2026-06-22 23:09:31 +08:00 · 2026-06-16 13:01:14 -07:00 · 2026-06-13 13:24:38 +12:00 · 2026-06-13 13:18:08 +12:00 · 2026-06-13 13:17:23 +12:00 · 2026-06-05 11:37:03 +12:00
12 changed files with 380 additions and 328 deletions
@@ -55,11 +55,11 @@ jobs:
            # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
      steps:
         - name: Checkout repository
-           uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+           uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3

         # Initializes the CodeQL tools for scanning.
         - name: Initialize CodeQL
-           uses: github/codeql-action/init@38697555549f1db7851b81482ff19f1fa5c4fedc # v3.29.5
+           uses: github/codeql-action/init@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v3.29.5
           with:
              languages: ${{ matrix.language }}
              build-mode: ${{ matrix.build-mode }}
@@ -86,6 +86,6 @@ jobs:
              echo '  make release'
              exit 1
         - name: Perform CodeQL Analysis
-           uses: github/codeql-action/analyze@38697555549f1db7851b81482ff19f1fa5c4fedc # v3.29.5
+           uses: github/codeql-action/analyze@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v3.29.5
           with:
              category: '/language:${{matrix.language}}'
@@ -13,7 +13,7 @@ jobs:

      # Steps represent a sequence of tasks that will be executed as part of the job
      steps:
-         - uses: actions/stale@b5d41d4e1d5dceea10e7104786b73624c18a190f # v10.2.0
+         - uses: actions/stale@eb5cf3af3ac0a1aa4c9c45633dd1ae542a27a899 # v10.3.0
           name: Setting Issue as Idle
           with:
              repo-token: ${{ secrets.GITHUB_TOKEN }}
@@ -24,7 +24,7 @@ jobs:
              operations-per-run: 100
              exempt-issue-labels: 'backlog'

-         - uses: actions/stale@b5d41d4e1d5dceea10e7104786b73624c18a190f # v10.2.0
+         - uses: actions/stale@eb5cf3af3ac0a1aa4c9c45633dd1ae542a27a899 # v10.3.0
           name: Setting PR as Idle
           with:
              repo-token: ${{ secrets.GITHUB_TOKEN }}
@@ -15,7 +15,7 @@ jobs:
      steps:
         - name: Checkout Source Code
           id: checkout-code
-           uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+           uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
         - name: Npm Install and Build
           id: npm-build
           run: |
@@ -10,10 +10,10 @@ jobs:
      runs-on: ubuntu-latest
      steps:
         - name: Checkout Repository
-           uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+           uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3

         - name: Setup Node.js
-           uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
+           uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
           with:
              node-version: 'lts/*'
              cache: 'npm'
@@ -13,6 +13,6 @@ jobs:
      permissions:
         actions: read
         contents: write
-      uses: Azure/action-release-workflows/.github/workflows/release_js_project.yaml@v1
+      uses: Azure/action-release-workflows/.github/workflows/release_js_project.yaml@3c677ba5ab58f5c5c1a6f0cfb176b333b1f27405 # v1
      with:
         changelogPath: ./CHANGELOG.md
@@ -1,10 +0,0 @@
-name: Tag and create release draft
-
-on:
-   push:
-      branches:
-         - releases/*
-
-jobs:
-   tag-and-release:
-      uses: OliverMKing/javascript-release-workflow/.github/workflows/tag-and-release.yml@main
@@ -13,7 +13,7 @@ jobs:
   unit-test:
      runs-on: ubuntu-latest
      steps:
-         - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+         - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
         - name: Run Unit Tests
           run: |
              npm install
@@ -1,5 +1,44 @@
 # Change Log

+## [5.0.0] - 2026-04-07
+
+### Features
+
+- #227 Migrate to ESM with esbuild, vitest
+
+### Runtime and platform
+
+- #222 Update Node version from 20 to 24
+
+### Dependabot updates
+
+- #231 Bump github/codeql-action in /.github/workflows in the actions group
+- #230 Bump typescript in the actions group across 1 directory
+- #228 Bump picomatch
+- #226 Bump github/codeql-action in /.github/workflows in the actions group
+- #223 Bump undici from 6.23.0 to 6.24.0
+- #221 Bump the actions group in /.github/workflows with 2 updates
+- #218 Bump the actions group in /.github/workflows with 2 updates
+- #219 Bump minimatch
+- #217 Bump undici and @actions/http-client
+- #216 Bump github/codeql-action in /.github/workflows in the actions group
+- #214 Bump the actions group in /.github/workflows with 2 updates
+- #212 Bump the actions group in /.github/workflows with 2 updates
+- #211 Bump the actions group with 3 updates
+- #210 Bump the actions group with 2 updates
+- #208 Bump @types/node from 25.0.2 to 25.0.3 in the actions group
+- #209 Bump github/codeql-action in /.github/workflows in the actions group
+- #206 Bump the actions group with 3 updates
+- #207 Bump github/codeql-action in /.github/workflows in the actions group
+- #205 Bump the actions group in /.github/workflows with 4 updates
+- #204 Bump the actions group with 2 updates
+- #202 Bump the actions group in /.github/workflows with 2 updates
+- #203 Bump prettier from 3.6.2 to 3.7.3 in the actions group
+- #201 Bump glob from 10.4.5 to 10.5.0
+- #200 Bump js-yaml from 3.14.1 to 3.14.2
+- #198 Bump js-yaml from 4.1.0 to 4.1.1
+- #199 Bump the actions group with 2 updates
+
 ## [4.0.2] - 2025-11-13

 - #[164](https://github.com/Azure/k8s-set-context/pull/164) Adding optional kubeconfig encoding variable
@@ -19,7 +19,7 @@ Refer to the [action metadata file](./action.yml) for details about inputs. Note
 ### Kubeconfig approach

 ```yaml
- uses: azure/k8s-set-context@v4
+- uses: azure/k8s-set-context@v5
  with:
     method: kubeconfig
     kubeconfig: <your kubeconfig>
@@ -50,7 +50,7 @@ Please refer to documentation on fetching [kubeconfig for any generic K8s cluste
 ### Service account approach

 ```yaml
- uses: azure/k8s-set-context@v4
+- uses: azure/k8s-set-context@v5
  with:
     method: service-account
     k8s-url: <URL of the cluster's API server>
@@ -74,7 +74,7 @@ kubectl get secret <service-account-secret-name> -n <namespace> -o yaml
 ### Service account approach for arc cluster

 ```yaml
- uses: azure/k8s-set-context@v4
+- uses: azure/k8s-set-context@v5
  with:
     method: service-account
     cluster-type: arc
@@ -86,7 +86,7 @@ kubectl get secret <service-account-secret-name> -n <namespace> -o yaml
 ### Service principal approach for arc cluster

 ```yaml
- uses: azure/k8s-set-context@v4
+- uses: azure/k8s-set-context@v5
  with:
     method: service-principal
     cluster-type: arc
@@ -1,6 +1,6 @@
 {
   "name": "k8s-set-context-action",
-   "version": "4.0.2",
+   "version": "5.0.0",
   "private": true,
   "main": "lib/index.js",
   "type": "module",
@@ -21,19 +21,19 @@
   "author": "GitHub",
   "license": "MIT",
   "dependencies": {
-      "@actions/core": "^3.0.0",
+      "@actions/core": "^3.0.1",
      "@actions/exec": "^3.0.0",
      "@actions/io": "^3.0.2",
      "@kubernetes/client-node": "^1.4.0",
      "husky": "^9.1.7",
-      "js-yaml": "^4.1.1"
+      "js-yaml": "^4.2.0"
   },
   "devDependencies": {
      "@types/js-yaml": "^4.0.9",
-      "@types/node": "^25.0.9",
-      "esbuild": "^0.27.4",
-      "prettier": "^3.8.0",
-      "typescript": "^5.9.3",
-      "vitest": "^4.1.1"
+      "@types/node": "^25.9.3",
+      "esbuild": "^0.28.1",
+      "prettier": "^3.8.4",
+      "typescript": "^6.0.3",
+      "vitest": "^4.1.8"
   }
 }
@@ -36,6 +36,7 @@ export async function runAzKubeconfigCommandBlocking(
   proc.unref()

   await sleep(AZ_TIMEOUT_SECONDS)
+   fs.chmodSync(kubeconfigPath, 0o600)
   return fs.readFileSync(kubeconfigPath).toString()
 }