This is an automated email from the ASF dual-hosted git repository.
kou pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/arrow.git
The following commit(s) were added to refs/heads/main by this push:
new b2f26926e7 MINOR: [CI] Bump actions/github-script from 8 to 9 (#49722)
b2f26926e7 is described below
commit b2f26926e79b8c00043481a160467fd1d90fe093
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Tue Apr 14 10:12:31 2026 +0900
MINOR: [CI] Bump actions/github-script from 8 to 9 (#49722)
Bumps [actions/github-script](https://github.com/actions/github-script)
from 8 to 9.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/github-script/releases";>actions/github-script's
releases</a>.</em></p>
<blockquote>
<h2>v9.0.0</h2>
<p><strong>New features:</strong></p>
<ul>
<li><strong><code>getOctokit</code> factory function</strong> — Available
directly in the script context. Create additional authenticated Octokit clients
with different tokens for multi-token workflows, GitHub App tokens, and
cross-org access. See <a
href="https://github.com/actions/github-script#creating-additional-clients-with-getoctokit";>Creating
additional clients with <code>getOctokit</code></a> for details and
examples.</li>
<li><strong>Orchestration ID in user-agent</strong> — The
<code>ACTIONS_ORCHESTRATION_ID</code> environment variable is automatically
appended to the user-agent string for request tracing.</li>
</ul>
<p><strong>Breaking changes:</strong></p>
<ul>
<li><strong><code>require('@ actions/github')</code> no longer works in
scripts.</strong> The upgrade to <code>@ actions/github</code> v9 (ESM-only)
means <code>require('@ actions/github')</code> will fail at runtime. If you
previously used patterns like <code>const { getOctokit } = require('@
actions/github')</code> to create secondary clients, use the new injected
<code>getOctokit</code> function instead — it's available directly in the
script context with no imports needed.</li>
<li><code>getOctokit</code> is now an injected function parameter. Scripts
that declare <code>const getOctokit = ...</code> or <code>let getOctokit =
...</code> will get a <code>SyntaxError</code> because JavaScript does not
allow <code>const</code>/<code>let</code> redeclaration of function parameters.
Use the injected <code>getOctokit</code> directly, or use <code>var getOctokit
= ...</code> if you need to redeclare it.</li>
<li>If your script accesses other <code>@ actions/github</code> internals
beyond the standard <code>github</code>/<code>octokit</code> client, you may
need to update those references for v9 compatibility.</li>
</ul>
<h2>What's Changed</h2>
<ul>
<li>Add ACTIONS_ORCHESTRATION_ID to user-agent string by <a
href="https://github.com/Copilot";><code>@Copilot</code></a> in <a
href="https://redirect.github.com/actions/github-script/pull/695";>actions/github-script#695</a></li>
<li>ci: use deployment: false for integration test environments by <a
href="https://github.com/salmanmkc";><code>@salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/github-script/pull/712";>actions/github-script#712</a></li>
<li>feat!: add getOctokit to script context, upgrade
<code>@actions/github</code> v9, <code>@octokit/core</code> v7, and related
packages by <a href="https://github.com/salmanmkc";><code>@salmanmkc</code></a>
in <a
href="https://redirect.github.com/actions/github-script/pull/700";>actions/github-script#700</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/Copilot";><code>@Copilot</code></a> made
their first contribution in <a
href="https://redirect.github.com/actions/github-script/pull/695";>actions/github-script#695</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/github-script/compare/v8.0.0...v9.0.0";>https://github.com/actions/github-script/compare/v8.0.0...v9.0.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/actions/github-script/commit/3a2844b7e9c422d3c10d287c895573f7108da1b3";><code>3a2844b</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/github-script/issues/700";>#700</a>
from actions/salmanmkc/expose-getoctokit + prepare re...</li>
<li><a
href="https://github.com/actions/github-script/commit/ca10bbdd1a7739de09e99a200c7a59f5d73a4079";><code>ca10bbd</code></a>
fix: use <code>@octokit/core/</code>types import for v7 compatibility</li>
<li><a
href="https://github.com/actions/github-script/commit/86e48e20ac85c970ed1f96e718fd068173948b7b";><code>86e48e2</code></a>
merge: incorporate main branch changes</li>
<li><a
href="https://github.com/actions/github-script/commit/c1084728b5b935ec4ddc1e4cee877b01797b3ff9";><code>c108472</code></a>
chore: rebuild dist for v9 upgrade and getOctokit factory</li>
<li><a
href="https://github.com/actions/github-script/commit/afff112e4f8b57c718168af75b89ce00bc8d091d";><code>afff112</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/github-script/issues/712";>#712</a>
from actions/salmanmkc/deployment-false + fix user-ag...</li>
<li><a
href="https://github.com/actions/github-script/commit/ff8117e5b78c415f814f39ad6998f424fee7b817";><code>ff8117e</code></a>
ci: fix user-agent test to handle orchestration ID</li>
<li><a
href="https://github.com/actions/github-script/commit/81c6b7876079abe10ff715951c9fc7b3e1ab389d";><code>81c6b78</code></a>
ci: use deployment: false to suppress deployment noise from integration
tests</li>
<li><a
href="https://github.com/actions/github-script/commit/3953caf8858d318f37b6cc53a9f5708859b5a7b7";><code>3953caf</code></a>
docs: update README examples from <a
href="https://github.com/v8";><code>@v8</code></a> to <a
href="https://github.com/v9";><code>@v9</code></a>, add getOctokit docs and v9
brea...</li>
<li><a
href="https://github.com/actions/github-script/commit/c17d55b90dcdb3d554d0027a6c180a7adc2daf78";><code>c17d55b</code></a>
ci: add getOctokit integration test job</li>
<li><a
href="https://github.com/actions/github-script/commit/a047196d9a02fe92098771cafbb98c2f1814e408";><code>a047196</code></a>
test: add getOctokit integration tests via callAsyncFunction</li>
<li>Additional commits viewable in <a
href="https://github.com/actions/github-script/compare/v8...v9";>compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting `@
dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@ dependabot rebase` will rebase this PR
- `@ dependabot recreate` will recreate this PR, overwriting any edits that
have been made to it
- `@ dependabot show <dependency name> ignore conditions` will show all of
the ignore conditions of the specified dependency
- `@ dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen the PR
or upgrade to it yourself)
- `@ dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen the PR
or upgrade to it yourself)
- `@ dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the PR or
upgrade to it yourself)
</details>
Authored-by: dependabot[bot]
<49699333+dependabot[bot]@users.noreply.github.com>
Signed-off-by: Sutou Kouhei <[email protected]>
---
.github/workflows/comment_bot.yml | 2 +-
.github/workflows/dev_pr.yml | 6 +++---
.github/workflows/issue_bot.yml | 2 +-
.github/workflows/pr_bot.yml | 2 +-
4 files changed, 6 insertions(+), 6 deletions(-)
diff --git a/.github/workflows/comment_bot.yml
b/.github/workflows/comment_bot.yml
index d1fbf058bf..7cfead4dce 100644
--- a/.github/workflows/comment_bot.yml
+++ b/.github/workflows/comment_bot.yml
@@ -63,7 +63,7 @@ jobs:
if: github.event.comment.body == 'take'
runs-on: ubuntu-latest
steps:
- - uses: actions/github-script@v8
+ - uses: actions/github-script@v9
with:
github-token: ${{ secrets.GITHUB_TOKEN }}
script: |
diff --git a/.github/workflows/dev_pr.yml b/.github/workflows/dev_pr.yml
index e2e75a34cf..24dc8a24fc 100644
--- a/.github/workflows/dev_pr.yml
+++ b/.github/workflows/dev_pr.yml
@@ -53,7 +53,7 @@ jobs:
if: |
(github.event.action == 'opened' ||
github.event.action == 'edited')
- uses: actions/github-script@v8
+ uses: actions/github-script@v9
with:
github-token: ${{ secrets.GITHUB_TOKEN }}
script: |
@@ -64,7 +64,7 @@ jobs:
if: |
(github.event.action == 'opened' ||
github.event.action == 'edited')
- uses: actions/github-script@v8
+ uses: actions/github-script@v9
with:
github-token: ${{ secrets.GITHUB_TOKEN }}
script: |
@@ -75,7 +75,7 @@ jobs:
if: |
(github.event.action == 'opened' ||
github.event.action == 'edited')
- uses: actions/github-script@v8
+ uses: actions/github-script@v9
with:
debug: true
github-token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/issue_bot.yml b/.github/workflows/issue_bot.yml
index 092c154b64..3e5b2a4dcf 100644
--- a/.github/workflows/issue_bot.yml
+++ b/.github/workflows/issue_bot.yml
@@ -33,7 +33,7 @@ jobs:
permissions:
issues: write
steps:
- - uses: actions/github-script@v8
+ - uses: actions/github-script@v9
with:
script: |
const moved_repos = {
diff --git a/.github/workflows/pr_bot.yml b/.github/workflows/pr_bot.yml
index 63bdb3e91e..7a6d448530 100644
--- a/.github/workflows/pr_bot.yml
+++ b/.github/workflows/pr_bot.yml
@@ -40,7 +40,7 @@ jobs:
- name: 'Download PR review payload'
id: 'download'
if: github.event_name == 'workflow_run'
- uses: actions/github-script@v8
+ uses: actions/github-script@v9
with:
script: |
const run_id = "${{ github.event.workflow_run.id }}";
