build(deps): bump actions/setup-node from 4 to 6

[dependabot]

Bumps actions/setup-node from 4 to 6.

Release notes

Sourced from actions/setup-node's releases.

v6.0.0

What's Changed

Breaking Changes

• Limit automatic caching to npm, update workflows and documentation by @​priyagupta108 in actions/setup-node#1374

Dependency Upgrades

• Upgrade ts-jest from 29.1.2 to 29.4.1 and document breaking changes in v5 by @​dependabot[bot] in #1336
• Upgrade prettier from 2.8.8 to 3.6.2 by @​dependabot[bot] in #1334
• Upgrade actions/publish-action from 0.3.0 to 0.4.0 by @​dependabot[bot] in #1362

Full Changelog: actions/setup-node@v5...v6.0.0

v5.0.0

What's Changed

Breaking Changes

• Enhance caching in setup-node with automatic package manager detection by @​priya-kinthali in actions/setup-node#1348

This update, introduces automatic caching when a valid packageManager field is present in your package.json. This aims to improve workflow performance and make dependency management more seamless. To disable this automatic caching, set package-manager-cache: false

steps:
- uses: actions/checkout@v5
- uses: actions/setup-node@v5
  with:
    package-manager-cache: false

• Upgrade action to use node24 by @​salmanmkc in actions/setup-node#1325

Make sure your runner is on version v2.327.1 or later to ensure compatibility with this release. See Release Notes

Dependency Upgrades

• Upgrade @​octokit/request-error and @​actions/github by @​dependabot[bot] in actions/setup-node#1227
• Upgrade uuid from 9.0.1 to 11.1.0 by @​dependabot[bot] in actions/setup-node#1273
• Upgrade undici from 5.28.5 to 5.29.0 by @​dependabot[bot] in actions/setup-node#1295
• Upgrade form-data to bring in fix for critical vulnerability by @​gowridurgad in actions/setup-node#1332
• Upgrade actions/checkout from 4 to 5 by @​dependabot[bot] in actions/setup-node#1345

New Contributors

• @​priya-kinthali made their first contribution in actions/setup-node#1348
• @​salmanmkc made their first contribution in actions/setup-node#1325

Full Changelog: actions/setup-node@v4...v5.0.0

v4.4.0

... (truncated)

Commits

• 53b8394 Bump minimatch from 3.1.2 to 3.1.5 (#1498)
• 54045ab Scope test lockfiles by package manager and update cache tests (#1495)
• c882bff Replace uuid with crypto.randomUUID() (#1378)
• 774c1d6 feat(node-version-file): support parsing devEngines field (#1283)
• efcb663 fix: remove hardcoded bearer (#1467)
• d02c89d Fix npm audit issues (#1491)
• 6044e13 Docs: bump actions/checkout from v5 to v6 (#1468)
• 8e49463 Fix README typo (#1226)
• 621ac41 README.md: bump to latest released checkout version v6 (#1446)
• 2951748 Bump @​actions/cache to v5.0.1 (#1449)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[greptile-apps]

Greptile Summary

This is a routine Dependabot-generated bump of actions/setup-node from v4 to v6 across both CI workflow files. The change is minimal (two one-line version number updates) and fits cleanly into the existing workflow structure.

Key notes on the skipped versions:

• v5 breaking change: Introduced automatic npm/yarn/pnpm cache when a packageManager field is detected in package.json. This would not conflict with the existing explicit actions/cache@v4 steps for node_modules, since setup-node's built-in caching targets the global package manager cache, not node_modules directly.
• v6 breaking change: Limits the automatic caching back to npm only. Both workflows hash **/package-lock.json for their cache keys, confirming npm usage, so behavior is consistent.
• v5 runner requirement: Requires GitHub Actions runner v2.327.1+ for node24 internal runtime compatibility. GitHub-hosted runners (ubuntu-24.04, windows-latest, macos-14, macos-latest) are kept up to date and satisfy this requirement.

No functional issues were identified.

Confidence Score: 5/5

• This PR is safe to merge — it is a minimal, low-risk version bump with no logic changes.
• Only two lines changed across two files, both upgrading a well-maintained GitHub Action from v4 to v6. The workflows already handle their own node_modules caching explicitly, the breaking changes in v5/v6 do not affect this usage, and GitHub-hosted runners meet the minimum runner version requirement.
• No files require special attention.

Important Files Changed

Filename	Overview
.github/workflows/build-tauri.yml	Bumps actions/setup-node from v4 to v6 on line 66; no other changes. Existing manual node_modules caching and node-version: 22 are unaffected.
.github/workflows/build.yml	Bumps actions/setup-node from v4 to v6 on line 67; no other changes. Existing manual node_modules caching and node-version: 22 are unaffected.

Flowchart

%%{init: {'theme': 'neutral'}}%%
flowchart TD
    A[Workflow triggered] --> B[checkout]
    B --> C[setup-python v5]
    C --> D{skip_webui?}
    D -- false --> E["setup-node v6 - upgraded\nnode-version 22"]
    D -- true --> F[Skip Node setup]
    E --> G[cache node_modules]
    F --> G
    G --> H[Build and Test]
    H --> I[Package and Upload]

Loading

_{Last reviewed commit: "build(deps): bump ac..."}