chore(deps): bump azure/setup-helm from 4 to 5

[dependabot]

Bumps azure/setup-helm from 4 to 5.

Release notes

Sourced from azure/setup-helm's releases.

v5.0.0

Changed

• #259 Update Node.js runtime from node20 to node24
• #263 Bump undici
• #257 Bump undici and @​actions/http-client
• #256 Bump minimatch
• #248 Bump the actions group with 2 updates
• #247 Bump the actions group with 3 updates
• #246 Bump @​types/node from 25.0.2 to 25.0.3 in the actions group
• #245 Bump the actions group with 3 updates
• #243 Bump the actions group with 2 updates
• #240 Bump prettier from 3.6.2 to 3.7.3 in the actions group
• #229 Bump the actions group across 1 directory with 3 updates
• #231 Bump js-yaml from 3.14.1 to 3.14.2
• #234 Bump glob from 10.4.5 to 10.5.0
• #225 Fix build error
• #222 Bump @​types/node from 24.7.2 to 24.8.1 in the actions group
• #220 Bump the actions group across 1 directory with 4 updates
• #216 Bump the actions group across 1 directory with 4 updates
• #213 Bump the actions group with 2 updates
• #211 Bump undici
• #212 Bump jest from 30.0.5 to 30.1.2 in the actions group
• #210 Bump @​types/node from 24.2.1 to 24.3.0 in the actions group

v4.3.1

Changed

• #167 Pinning Action Dependencies for Security and Reliability
• #181 Fix types, and update node version.
• #191 chore(tests): Mock arch to make tests pass on arm host
• #192 chore: remove unnecessary prebuild script
• #203 Update helm version retrieval to use JSON output for latest version
• #207 ci(workflows): update helm version to v3.18.4 and add matrix for tests

Added

• #197 Add pre-commit hook

v4.3.0

• #152 feat: log when restoring from cache
• #157 Dependencies Update
• #137 Add dependabot

v4.2.0

• #124 Fix OS detection and download OS-native archive extension

v4.1.0

• #130 switches to use Helm published file to read latest version instead of using GitHub releases

Changelog

Sourced from azure/setup-helm's changelog.

[4.3.0] - 2025-02-15

• #152 feat: log when restoring from cache
• #157 Dependencies Update
• #137 Add dependabot

[4.2.0] - 2024-04-15

• #124 Fix OS detection and download OS-native archive extension

[4.1.0] - 2024-03-01

• #130 switches to use Helm published file to read latest version instead of using GitHub releases

[4.0.0] - 2024-02-12

• #121 update to node20 as node16 is deprecated

Commits

• dda3372 build
• 3894c84 chore(release): v5.0.0 (#265)
• ca66f38 Update Node.js runtime from node20 to node24 (#259)
• 316ed5a Bump undici (#263)
• bc9bc0c Bump undici and @​actions/http-client (#257)
• 16e3094 Bump minimatch (#256)
• 6e42753 Bump actions/stale in /.github/workflows in the actions group (#255)
• 9651d9d Bump actions/checkout in /.github/workflows in the actions group (#251)
• 658bff9 Bump the actions group with 2 updates (#248)
• 331c814 Bump the actions group with 3 updates (#247)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: ci. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[greptile-apps]

Greptile Summary

This PR bumps azure/setup-helm from v4 to v5 in the helm-chart job of .github/workflows/release.yml. The major version change primarily updates the action's Node.js runtime from node20 to node24 and includes several transitive dependency security patches (undici, minimatch, @actions/http-client).

Confidence Score: 5/5

Safe to merge — routine dependency bump with no workflow logic changes.

Single-line change upgrading azure/setup-helm from v4 to v5. The v5 release is a non-breaking runtime update (node20 → node24) with dependency security patches. No workflow logic is altered.

No files require special attention.

Important Files Changed

Filename	Overview
.github/workflows/release.yml	Single-line bump of azure/setup-helm from v4 to v5 in the helm-chart publish job; no behavioral changes to the workflow logic.

Flowchart

%%{init: {'theme': 'neutral'}}%%
flowchart TD
    A[helm-chart job] --> B[Checkout @ RELEASE_TAG]
    B --> C[Install Helm\nazure/setup-helm@v5]
    C --> D[Log in to GHCR\nHelm registry]
    D --> E[Log in to GHCR\nORAS / docker login]
    E --> F[Install ORAS]
    F --> G[Add Helm repositories\n& publish chart]

Loading

_{Reviews (1): Last reviewed commit: "chore(deps): bump azure/setup-helm from ..." | Re-trigger Greptile}

[janhoon]

Approved dependency update per maintainer request.

[dependabot]

Looks like azure/setup-helm is up-to-date now, so this is no longer needed.