build

.github/workflows/codeql.yml

@@ -55,11 +55,11 @@ jobs:
             # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
       steps:
          - name: Checkout repository
-           uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
+           uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
 
          # Initializes the CodeQL tools for scanning.
          - name: Initialize CodeQL
-           uses: github/codeql-action/init@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v3.29.5
+           uses: github/codeql-action/init@c10b8064de6f491fea524254123dbe5e09572f13 # v3.29.5
            with:
               languages: ${{ matrix.language }}
               build-mode: ${{ matrix.build-mode }}
@@ -86,6 +86,6 @@ jobs:
               echo '  make release'
               exit 1
          - name: Perform CodeQL Analysis
-           uses: github/codeql-action/analyze@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v3.29.5
+           uses: github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v3.29.5
            with:
               category: '/language:${{matrix.language}}'

.github/workflows/default-labels.yml

@@ -13,7 +13,7 @@ jobs:
 
       # Steps represent a sequence of tasks that will be executed as part of the job
       steps:
-         - uses: actions/stale@eb5cf3af3ac0a1aa4c9c45633dd1ae542a27a899 # v10.3.0
+         - uses: actions/stale@b5d41d4e1d5dceea10e7104786b73624c18a190f # v10.2.0
            name: Setting Issue as Idle
            with:
               repo-token: ${{ secrets.GITHUB_TOKEN }}
@@ -24,7 +24,7 @@ jobs:
               operations-per-run: 100
               exempt-issue-labels: 'backlog'
 
-         - uses: actions/stale@eb5cf3af3ac0a1aa4c9c45633dd1ae542a27a899 # v10.3.0
+         - uses: actions/stale@b5d41d4e1d5dceea10e7104786b73624c18a190f # v10.2.0
            name: Setting PR as Idle
            with:
               repo-token: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/integration-tests.yml

@@ -15,7 +15,7 @@ jobs:
       steps:
          - name: Checkout Source Code
            id: checkout-code
-           uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
+           uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
          - name: Npm Install and Build
            id: npm-build
            run: |

.github/workflows/prettify-code.yml

@@ -10,10 +10,10 @@ jobs:
       runs-on: ubuntu-latest
       steps:
          - name: Checkout Repository
-           uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
+           uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
 
          - name: Setup Node.js
-           uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
+           uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
            with:
               node-version: 'lts/*'
               cache: 'npm'

.github/workflows/release-pr.yml

@@ -13,6 +13,6 @@ jobs:
       permissions:
          actions: read
          contents: write
-      uses: Azure/action-release-workflows/.github/workflows/release_js_project.yaml@3c677ba5ab58f5c5c1a6f0cfb176b333b1f27405 # v1
+      uses: Azure/action-release-workflows/.github/workflows/release_js_project.yaml@v1
       with:
          changelogPath: ./CHANGELOG.md

.github/workflows/tag-and-draft.yml

@@ -0,0 +1,10 @@
+name: Tag and create release draft
+
+on:
+   push:
+      branches:
+         - releases/*
+
+jobs:
+   tag-and-release:
+      uses: OliverMKing/javascript-release-workflow/.github/workflows/tag-and-release.yml@main

.github/workflows/unit-tests.yml

@@ -13,7 +13,7 @@ jobs:
    unit-test:
       runs-on: ubuntu-latest
       steps:
-         - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
+         - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
          - name: Run Unit Tests
            run: |
               npm install

CHANGELOG.md

@@ -1,38 +1,5 @@
 # Change Log
 
-## [5.0.1] 2026-06-23
-
-### Fixes
-
-- #252 Set kubeconfig file permissions to 600 after creation
-- #250 Remove deprecated OliverMKing release workflow, pin to SHA
-
-### Dependabot updates
-
-- #260 Bump undici from 6.24.1 to 6.27.0
-- #259 Bump the actions group with 3 updates
-- #258 Bump actions/checkout from 6.0.3 to 7.0.0 in /.github/workflows in the actions group
-- #257 Bump form-data from 4.0.5 to 4.0.6
-- #256 Bump the actions group with 2 updates
-- #255 Bump esbuild from 0.28.0 to 0.28.1
-- #254 Bump the actions group in /.github/workflows with 2 updates
-- #253 Bump the actions group with 2 updates
-- #251 Bump js-yaml from 4.1.1 to 4.2.0 in the actions group
-- #249 Bump ws from 8.20.0 to 8.21.0
-- #248 Bump the actions group in /.github/workflows with 2 updates
-- #247 Bump the actions group with 2 updates
-- #246 Bump github/codeql-action from 4.35.4 to 4.35.5 in /.github/workflows in the actions group
-- #245 Bump the actions group with 2 updates
-- #244 Bump github/codeql-action from 4.35.3 to 4.35.4 in /.github/workflows in the actions group
-- #243 Bump @types/node from 25.6.0 to 25.6.2 in the actions group
-- #242 Bump ip-address from 10.1.0 to 10.2.0
-- #240 Bump the actions group across 1 directory with 2 updates
-- #238 Bump the actions group with 2 updates
-- #237 Bump github/codeql-action from 4.35.1 to 4.35.2 in /.github/workflows in the actions group
-- #236 Bump the actions group with 2 updates
-- #235 Bump the actions group with 3 updates
-- #233 Bump the actions group across 1 directory with 2 updates
-
 ## [5.0.0] - 2026-04-07
 
 ### Features

package.json

@@ -1,6 +1,6 @@
 {
    "name": "k8s-set-context-action",
-   "version": "5.0.1",
+   "version": "5.0.0",
    "private": true,
    "main": "lib/index.js",
    "type": "module",
@@ -21,19 +21,19 @@
    "author": "GitHub",
    "license": "MIT",
    "dependencies": {
-      "@actions/core": "^3.0.1",
+      "@actions/core": "^3.0.0",
       "@actions/exec": "^3.0.0",
       "@actions/io": "^3.0.2",
       "@kubernetes/client-node": "^1.4.0",
       "husky": "^9.1.7",
-      "js-yaml": "^5.0.0"
+      "js-yaml": "^4.1.1"
    },
    "devDependencies": {
       "@types/js-yaml": "^4.0.9",
-      "@types/node": "^26.0.0",
-      "esbuild": "^0.28.1",
-      "prettier": "^3.8.4",
-      "typescript": "^6.0.3",
-      "vitest": "^4.1.9"
+      "@types/node": "^25.5.2",
+      "esbuild": "^0.28.0",
+      "prettier": "^3.8.0",
+      "typescript": "^6.0.2",
+      "vitest": "^4.1.1"
    }
 }

src/kubeconfigs/azCommands.ts

@@ -36,7 +36,6 @@ export async function runAzKubeconfigCommandBlocking(
    proc.unref()
 
    await sleep(AZ_TIMEOUT_SECONDS)
-   fs.chmodSync(kubeconfigPath, 0o600)
    return fs.readFileSync(kubeconfigPath).toString()
 }