From ccaa42e3f1244c62f61a07ed0964ced74c6cf1ff Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 1 Nov 2025 10:02:19 +0000
Subject: [PATCH 1/2] build(deps): bump actions/setup-node from 4 to 6

Bumps [actions/setup-node](https://github.com/actions/setup-node) from 4 to 6.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v4...v6)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/release.yml                  | 2 +-
 .github/workflows/test.yml                     | 4 ++--
 .github/workflows/update-permission-inputs.yml | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index ac1c7abb..33d33496 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -22,7 +22,7 @@ jobs:
         with:
           persist-credentials: false
 
-      - uses: actions/setup-node@v4
+      - uses: actions/setup-node@v6
         with:
           node-version-file: .node-version
           cache: 'npm'
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index b1308429..55dd65ac 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -21,7 +21,7 @@ jobs:
     steps:
       - uses: actions/checkout@v5
 
-      - uses: actions/setup-node@v4
+      - uses: actions/setup-node@v6
         with:
           node-version-file: .node-version
           cache: 'npm'
@@ -36,7 +36,7 @@ jobs:
     if: github.event.pull_request.head.repo.owner.login == github.event.pull_request.base.repo.owner.login
     steps:
       - uses: actions/checkout@v5
-      - uses: actions/setup-node@v4
+      - uses: actions/setup-node@v6
         with:
           node-version: 20
           cache: "npm"
diff --git a/.github/workflows/update-permission-inputs.yml b/.github/workflows/update-permission-inputs.yml
index 804dfebe..c19da524 100644
--- a/.github/workflows/update-permission-inputs.yml
+++ b/.github/workflows/update-permission-inputs.yml
@@ -19,7 +19,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v5
-      - uses: actions/setup-node@v4
+      - uses: actions/setup-node@v6
         with:
           node-version-file: .node-version
           cache: 'npm'

From e18588ccea0635a414e16d3efd79e8ddf25803d2 Mon Sep 17 00:00:00 2001
From: Parker Brown <17183625+parkerbxyz@users.noreply.github.com>
Date: Fri, 21 Nov 2025 13:16:52 -0800
Subject: [PATCH 2/2] Switch Node version source to package.json and remove
 .node-version

Workflows now use package.json for Node version specification instead of .node-version. The .node-version file is deleted, and package.json is updated with an engines field and packageManager. This streamlines Node version management and aligns with best practices for GitHub Actions. Cache inputs have been removed because caching is now enabled by default in actions/setup-node.
---
 .github/workflows/release.yml                  | 4 ++--
 .github/workflows/test.yml                     | 6 ++----
 .github/workflows/update-permission-inputs.yml | 3 +--
 .node-version                                  | 1 -
 package.json                                   | 4 ++++
 5 files changed, 9 insertions(+), 9 deletions(-)
 delete mode 100644 .node-version

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 33d33496..11c6821b 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -24,8 +24,8 @@ jobs:
 
       - uses: actions/setup-node@v6
         with:
-          node-version-file: .node-version
-          cache: 'npm'
+          node-version-file: package.json
+
 
       - run: npm ci
       - run: npm run build
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index 55dd65ac..55902c38 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -23,8 +23,7 @@ jobs:
 
       - uses: actions/setup-node@v6
         with:
-          node-version-file: .node-version
-          cache: 'npm'
+          node-version-file: package.json
 
       - run: npm ci
       - run: npm test
@@ -38,8 +37,7 @@ jobs:
       - uses: actions/checkout@v5
       - uses: actions/setup-node@v6
         with:
-          node-version: 20
-          cache: "npm"
+          node-version-file: package.json
       - run: npm ci
       - run: npm run build
       - uses: ./ # Uses the action in the root directory
diff --git a/.github/workflows/update-permission-inputs.yml b/.github/workflows/update-permission-inputs.yml
index c19da524..3a93855c 100644
--- a/.github/workflows/update-permission-inputs.yml
+++ b/.github/workflows/update-permission-inputs.yml
@@ -21,8 +21,7 @@ jobs:
       - uses: actions/checkout@v5
       - uses: actions/setup-node@v6
         with:
-          node-version-file: .node-version
-          cache: 'npm'
+          node-version-file: package.json
       - name: Install dependencies
         run: npm ci
       - name: Run permission inputs update script
diff --git a/.node-version b/.node-version
deleted file mode 100644
index f3f52b42..00000000
--- a/.node-version
+++ /dev/null
@@ -1 +0,0 @@
-20.9.0
diff --git a/package.json b/package.json
index 5a312a97..f722e18d 100644
--- a/package.json
+++ b/package.json
@@ -4,6 +4,10 @@
   "type": "module",
   "version": "2.1.4",
   "description": "GitHub Action for creating a GitHub App Installation Access Token",
+  "engines": {
+    "node": ">=20"
+  },
+  "packageManager": "npm@10.9.4",
   "scripts": {
     "build": "esbuild main.js post.js --bundle --outdir=dist --out-extension:.js=.cjs --platform=node --target=node20.0.0 --packages=bundle",
     "test": "c8 --100 ava tests/index.js",