Upgrade: [dependabot] - bump NHSDigital/eps-common-workflows/.github/workflows/dependabot-auto-approve-and-merge.yml from 5.2.12 to 5.3.1 (#404)

dependabot[bot] · anthony-nhs · web-flow · commit c5fe7ecfa153 · 2026-01-17T09:55:32.000Z
Bumps [NHSDigital/eps-common-workflows/.github/workflows/dependabot-auto-approve-and-merge.yml](https://github.com/nhsdigital/eps-common-workflows) from 5.2.12 to 5.3.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/nhsdigital/eps-common-workflows/releases">NHSDigital/eps-common-workflows/.github/workflows/dependabot-auto-approve-and-merge.yml's releases</a>.</em></p> <blockquote> <h2>v5.3.1</h2> <h2><a href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.3.0...v5.3.1">5.3.1</a> (2026-01-16)</h2> <h3>Fix</h3> <ul> <li>[AEA-0000] - install asdf on iac check (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/48">#48</a>) (<a href="https://github.com/NHSDigital/eps-common-workflows/commit/a2edde3fb0e9816a25a5ba4923b4d509db83f552">a2edde3</a>)</li> </ul> <h2>Info</h2> <p><a href="https://github.com/NHSDigital/eps-common-workflows/compare/b796becae6fe...a2edde3fb0e9">See code diff</a> <a href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/21074961877">Release workflow run</a> - Workflow ID: 21074961877</p> <p>It was initialized by <a href="https://github.com/anthony-nhs">anthony-nhs</a></p> <h2>v5.3.0</h2> <h1><a href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.2.14...v5.3.0">5.3.0</a> (2026-01-15)</h1> <h3>New</h3> <ul> <li>[AEA-6028] - Added option for publishing sub-packages (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/46">#46</a>) (<a href="https://github.com/NHSDigital/eps-common-workflows/commit/b796becae6fece7d8d093e0aa976a05d3a5e5dbe">b796bec</a>)</li> </ul> <h2>Info</h2> <p><a href="https://github.com/NHSDigital/eps-common-workflows/compare/e5c6c80d4acb...b796becae6fe">See code diff</a> <a href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/21035383276">Release workflow run</a> - Workflow ID: 21035383276</p> <p>It was initialized by <a href="https://github.com/MatthewPopat-NHS">MatthewPopat-NHS</a></p> <h2>v5.2.14</h2> <h2><a href="https://github.com/NHSDigital/eps-common-workflows/compare/v5.2.13...v5.2.14">5.2.14</a> (2026-01-13)</h2> <h3>Upgrade</h3> <ul> <li>[dependabot] - bump filelock from 3.20.1 to 3.20.3 (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/45">#45</a>) (<a href="https://github.com/NHSDigital/eps-common-workflows/commit/e5c6c80d4acb09603dab4a0c8c69889d6e117f8e">e5c6c80</a>)</li> </ul> <h2>Info</h2> <p><a href="https://github.com/NHSDigital/eps-common-workflows/compare/d8d51745e7ff...e5c6c80d4acb">See code diff</a> <a href="https://github.com/NHSDigital/eps-common-workflows/actions/runs/20971142098">Release workflow run</a> - Workflow ID: 20971142098</p> <p>It was initialized by <a href="https://github.com/apps/eps-autoapprove-dependabot">eps-autoapprove-dependabot[bot]</a></p>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/NHSDigital/eps-common-workflows/commit/a2edde3fb0e9816a25a5ba4923b4d509db83f552"><code>a2edde3</code></a> Fix: [AEA-0000] - install asdf on iac check (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/48">#48</a>)</li> <li><a href="https://github.com/NHSDigital/eps-common-workflows/commit/b796becae6fece7d8d093e0aa976a05d3a5e5dbe"><code>b796bec</code></a> New: [AEA-6028] - Added option for publishing sub-packages (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/46">#46</a>)</li> <li><a href="https://github.com/NHSDigital/eps-common-workflows/commit/e5c6c80d4acb09603dab4a0c8c69889d6e117f8e"><code>e5c6c80</code></a> Upgrade: [dependabot] - bump filelock from 3.20.1 to 3.20.3 (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/45">#45</a>)</li> <li><a href="https://github.com/NHSDigital/eps-common-workflows/commit/d8d51745e7ffe610be80d3d594964576f69032d9"><code>d8d5174</code></a> Upgrade: [dependabot] - bump virtualenv from 20.35.3 to 20.36.1 (<a href="https://redirect.github.com/nhsdigital/eps-common-workflows/issues/44">#44</a>)</li> <li>See full diff in <a href="https://github.com/nhsdigital/eps-common-workflows/compare/9791a77de7b005056b4ddfb9789306f5179f53da...a2edde3fb0e9816a25a5ba4923b4d509db83f552">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=NHSDigital/eps-common-workflows/.github/workflows/dependabot-auto-approve-and-merge.yml&package-manager=github_actions&previous-version=5.2.12&new-version=5.3.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: anthony-nhs <121869075+anthony-nhs@users.noreply.github.com>
diff --git a/.github/workflows/pull_request.yml b/.github/workflows/pull_request.yml
@@ -10,7 +10,7 @@ env:
 jobs:
   dependabot-auto-approve-and-merge:
     needs: quality_checks
-    uses: NHSDigital/eps-common-workflows/.github/workflows/dependabot-auto-approve-and-merge.yml@9791a77de7b005056b4ddfb9789306f5179f53da
+    uses: NHSDigital/eps-common-workflows/.github/workflows/dependabot-auto-approve-and-merge.yml@a2edde3fb0e9816a25a5ba4923b4d509db83f552
     secrets:
       AUTOMERGE_APP_ID: ${{ secrets.AUTOMERGE_APP_ID }}
       AUTOMERGE_PEM: ${{ secrets.AUTOMERGE_PEM }}
