build(deps): bump taskcluster from 38.0.4 to 38.0.6 in /tools

[dependabot]

Bumps taskcluster from 38.0.4 to 38.0.6.

Release notes

Sourced from taskcluster's releases.

v38.0.6

GENERAL

▶ [patch] #3906 Creating comments on github is fixed in this release

▶ [patch] #3903 Scopes are now expanded in between using a certificate's scopes and checking authorizedScopes as well.

USERS

▶ [patch] #3908 E-mail and Slack notifications should now correctly link to the group when the group ID does not match the task ID.

v38.0.5

GENERAL

▶ [patch] #3874 The notify service now has enough scopes to handle notifications on Taskcluster instances without the anonymous role.

USERS

▶ [patch] #3884 Clients created with third-party sign-in (e.g., taskcluster signin) will no longer be disabled if they contain assume:anonymous or scopes in that role.

▶ [patch] #3899 Docker-worker now skips gzipping artifacts with an .lz4 extension, in addition to the existing list of extensions.

▶ [patch] #3873 The /provisioners/<worker-type> view now works correctly, fixing the error about reading property replace of null.

OTHER

▶ Additional change not described here: #3837.

Changelog

Sourced from taskcluster's changelog.

v38.0.6

GENERAL

▶ [patch] #3906 Creating comments on github is fixed in this release

▶ [patch] #3903 Scopes are now expanded in between using a certificate's scopes and checking authorizedScopes as well.

USERS

▶ [patch] #3908 E-mail and Slack notifications should now correctly link to the group when the group ID does not match the task ID.

v38.0.5

GENERAL

▶ [patch] #3874 The notify service now has enough scopes to handle notifications on Taskcluster instances without the anonymous role.

USERS

▶ [patch] #3884 Clients created with third-party sign-in (e.g., taskcluster signin) will no longer be disabled if they contain assume:anonymous or scopes in that role.

▶ [patch] #3899 Docker-worker now skips gzipping artifacts with an .lz4 extension, in addition to the existing list of extensions.

▶ [patch] #3873 The /provisioners/<worker-type> view now works correctly, fixing the error about reading property replace of null.

OTHER

▶ Additional change not described here: #3837.

Commits

• 0b23179 v38.0.6
• 13316ab Merge pull request #3904 from taskcluster/issue-3903
• 6a99f4e Merge pull request #3907 from taskcluster/issue-3906
• 74c73a4 Merge pull request #3909 from wellplayedgames/issue-3908
• 4a06c86 Add changelog
• a64f36b Fix notify groupHref
• c470ba4 Fix github issue commenting
• 23a1ecd Expand scopes in between pulling them from cert and checking authorizedScopes
• 33f22c8 v38.0.5
• 911decf Merge pull request #3900 from djmitche/issue3899
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)