build(deps): bump the github-actions group with 3 updates

[dependabot]

Bumps the github-actions group with 3 updates: Swatinem/rust-cache, tauri-apps/tauri-action and actions/download-artifact.

Updates Swatinem/rust-cache from ad397744b0d591a723ab90405b7247fac0e6b8db to 779680da715d629ac1d338a641029a2f4372abb5

Changelog

Sourced from Swatinem/rust-cache's changelog.

Changelog

2.8.2

• Don't overwrite env for cargo-metadata call

2.8.1

• Set empty CARGO_ENCODED_RUSTFLAGS when retrieving metadata
• Various dependency updates

2.8.0

• Add support for warpbuild cache provider
• Add new cache-workspace-crates feature

2.7.8

• Include CPU arch in the cache key

2.7.7

• Also cache cargo install metadata

2.7.6

• Allow opting out of caching $CARGO_HOME/bin
• Add runner OS in cache key
• Adds an option to do lookup-only of the cache

2.7.5

• Support Cargo.lock format cargo-lock v4
• Only run macOsWorkaround() on macOS

2.7.3

• Work around upstream problem that causes cache saving to hang for minutes.

2.7.2

• Only key by Cargo.toml and Cargo.lock files of workspace members.

2.7.1

• Update toml parser to fix parsing errors.

2.7.0

• Properly cache trybuild tests.

... (truncated)

Commits

• See full diff in compare view

Updates tauri-apps/tauri-action from 79c624843491f12ae9d63592534ed49df3bc4adb to 73fb865345c54760d875b94642314f8c0c894afa

Changelog

Sourced from tauri-apps/tauri-action's changelog.

Changelog

[0.6.0]

• e918a06 (#1133) Encode tagName option value in latest.json URL.
• 45acc19 (#1164) Add generateReleaseNotes config to use GitHub's release notes API to auto generate the release name and/or body.
• 59a1a70 (#1166) Fix default file name pattern to match tauri's file names again.
• 08112f7 (#1106) Added experimental support for Gitea hosted instances.
• 08112f7 (#1106) Added a config to set the GitHub API URL which should help users with self-hosted instances and those using GitHub Enterprise.
• b067139 (#1130) The action now uses node v24 which raises the minimum GitHub runner version to v2.327.1.

[0.5.24]

• c5d6ac7 (#1152 by @​FabianLars) The latest.json file now contains {os}-{arch}-{installer} keys as well to support multiple installer formats per platform. This requires tauri-plugin-updater version 2.10.0 or above.
• 0085932 (#1141 by @​jarjk) Added option to upload the app's binary alongside installers.

[0.5.23]

• 5b1138d (#1099 by @​lete114) Added the assetNamePattern config that allows setting a template specifying how uploaded assets will be named in the release. BREAKING CHANGE: The default naming scheme will now have the -debug suffix at the end (before the extension) on all assets.
• fcedb49 (#1125 by @​ChanTsune) Fixed an issue that caused the action to look for x64 artifacts on native ARM runners.

[0.5.22]

• be57b0c (#1100 by @​FabianLars) Fixed an issue that caused the action to upload only the first artifact it found.

[0.5.21]

• 5666b68 (#1030 by @​997R8V10) retryAttempts is now also applied to uploads.

[0.5.20]

• 563aed7 (#1031 by @​Muska-Ami) Add support for Bun's text-based lockfile.

[0.5.19]

• fd1ea0d (#1009 by @​FabianLars) Fixed an issue that made the action fail to find .msi packages for tauri v2 apps with numeric build numbers (1.0.0-0).

[0.5.18]

• 91c7ee8 (#978 by @​Chiichen) Fix This is not building for Latest JSON and Not uploading all assets

[0.5.17]

• fb76925 (#895 by @​Chiichen) Upload assets to the release associated with given tagName
• 29dbe80 (#964 by @​louis030195) Add retry mechanism for failed builds to improve CI reliability

[0.5.16]

• acdef25 (#949 by @​FabianLars) The action will now set TAURI_BUNDLER_DMG_IGNORE_CI: true by default on tauri cli versions 2.2.0 and above. See tauri-apps/tauri-action#740 for context. This can be disabled by explicitly setting TAURI_BUNDLER_DMG_IGNORE_CI: false yourself.

... (truncated)

Commits

• See full diff in compare view

Updates actions/download-artifact from 7.0.0 to 8.0.0

Release notes

Sourced from actions/download-artifact's releases.

v8.0.0

v8 - What's new

Direct downloads

To support direct uploads in actions/upload-artifact, the action will no longer attempt to unzip all downloaded files. Instead, the action checks the Content-Type header ahead of unzipping and skips non-zipped files. Callers wishing to download a zipped file as-is can also set the new skip-decompress parameter to false.

Enforced checks (breaking)

A previous release introduced digest checks on the download. If a download hash didn't match the expected hash from the server, the action would log a warning. Callers can now configure the behavior on mismatch with the digest-mismatch parameter. To be secure by default, we are now defaulting the behavior to error which will fail the workflow run.

ESM

To support new versions of the @actions/* packages, we've upgraded the package to ESM.

What's Changed

• Don't attempt to un-zip non-zipped downloads by @​danwkennedy in actions/download-artifact#460
• Add a setting to specify what to do on hash mismatch and default it to error by @​danwkennedy in actions/download-artifact#461

Full Changelog: actions/download-artifact@v7...v8.0.0

Commits

• 70fc10c Merge pull request #461 from actions/danwkennedy/digest-mismatch-behavior
• f258da9 Add change docs
• ccc058e Fix linting issues
• bd7976b Add a setting to specify what to do on hash mismatch and default it to error
• ac21fcf Merge pull request #460 from actions/danwkennedy/download-no-unzip
• 15999bf Add note about package bumps
• 974686e Bump the version to v8 and add release notes
• fbe48b1 Update test names to make it clearer what they do
• 96bf374 One more test fix
• b8c4819 Fix skip decompress test
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: dependencies, github-actions. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
safe-lens-generator	Ready	Preview, Comment	Mar 2, 2026 5:30am