-
Notifications
You must be signed in to change notification settings - Fork 10
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
merge to main #217
merge to main #217
Conversation
Bumps [django](https://github.com/django/django) from 5.0.1 to 5.0.2. - [Commits](django/django@5.0.1...5.0.2) --- updated-dependencies: - dependency-name: django dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.2.0 to 4.3.1. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@694cdab...5d5d22a) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
Bumps debian from bookworm-20240110-slim to bookworm-20240211-slim. --- updated-dependencies: - dependency-name: debian dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]>
…oad-artifact-4.3.1
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.23.1 to 3.24.1. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@0b21cf2...e675ced) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.3.0 to 3.4.0. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](sigstore/cosign-installer@9614fae...e1523de) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 5.5.0 to 5.5.1. - [Release notes](https://github.com/docker/metadata-action/releases) - [Commits](docker/metadata-action@dbef880...8e5442c) --- updated-dependencies: - dependency-name: docker/metadata-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>
…ress run is allowed at a time
Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. - [Release notes](https://github.com/actions/checkout/releases) - [Commits](actions/checkout@v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
Bumps [docker/scout-action](https://github.com/docker/scout-action) from 1.3.0 to 1.4.1. - [Release notes](https://github.com/docker/scout-action/releases) - [Commits](docker/scout-action@42a6acc...4a5494e) --- updated-dependencies: - dependency-name: docker/scout-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
Signed-off-by: StepSecurity Bot <[email protected]>
…onent-detection step
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 4.0.0 to 4.1.0. - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](actions/dependency-review-action@4901385...80f10bf) --- updated-dependencies: - dependency-name: actions/dependency-review-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
Dependency ReviewThe following issues were found:
Snapshot WarningsConsider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice. License Issuesvcpkg.json
.github/workflows/docker-scout-scan.yml
Scanned Manifest Files.github/workflows/cmake-multi-platform.yml
.github/workflows/codeql.yml.github/workflows/create-release.yml.github/workflows/dependency-review.yml.github/workflows/deploy-eks.yml
.github/workflows/docker-publish.yml
.github/workflows/docker-scout-scan.yml.github/workflows/jekyll-gh-pages.yml.github/workflows/sbom-generate-submit.yml.github/workflows/scorecard.ymlPyOdbDesignServer/requirements.txt/PyOdbDesignServer/requirements.txtvcpkg.json
|
🔍 Vulnerabilities of
|
digest | sha256:0e0a61f9a363b4fbf108fe29041a547e55f8228b783fa608ca750fa7115b58e3 |
vulnerabilities | |
platform | linux/amd64 |
size | 40 MB |
packages | 126 |
📦 Base Image debian:12-slim
also known as |
|
digest | sha256:6bdbd579ba71f6855deecf57e64524921aed6b97ff1e5195436f244d2cb42b12 |
vulnerabilities |
Description
Description
Description
| ||||||||||||
Description
Description
| ||||||||||||
Description
Description
| ||||||||||||
Description
Description
| ||||||||||||
Description
| ||||||||||||
Description
| ||||||||||||
Description
| ||||||||||||
Description
| ||||||||||||
Description
| ||||||||||||
Description
| ||||||||||||
Description
| ||||||||||||
Description
| ||||||||||||
Description
|
Overview
Labels (3 changes)
org.opencontainers.image.authors=https://github.com/nam20485
-org.opencontainers.image.created=2024-02-11T21:07:53.494Z
+org.opencontainers.image.created=2024-02-15T02:48:08.692Z
org.opencontainers.image.description=A free open source cross-platform C++ library for parsing ODB++ Design archives, accessing their data, and building net list product models. Exposed via a REST API and packaged inside of a Docker image.
org.opencontainers.image.licenses=MIT
-org.opencontainers.image.revision=121e3fde2ea077316e8baddbd9c3ba6e39a99d29
+org.opencontainers.image.revision=18dbaee65bbacab3874ba9084c6ffba3023e639b
org.opencontainers.image.source=https://github.com/nam20485/OdbDesign
org.opencontainers.image.title=OdbDesign
org.opencontainers.image.url=https://github.com/nam20485/OdbDesign
-org.opencontainers.image.version=main-733
+org.opencontainers.image.version=pr-217 Packages and Vulnerabilities (13 package changes and 1 vulnerability changes)
Changes for packages of type
|
Package | Versionghcr.io/nam20485/odbdesign:main-latest |
Versionnam20485/odbdesign:pr-217 |
|
---|---|---|---|
♾️ | base-files | 12.4+deb12u4 |
12.4+deb12u5 |
♾️ | glibc | 2.36-9+deb12u3 |
2.36-9+deb12u4 |
♾️ | gnutls28 | 3.7.9-2+deb12u1 |
3.7.9-2+deb12u2 |
Removed vulnerabilities (1): |
|||
♾️ | libc-bin | 2.36-9+deb12u3 |
2.36-9+deb12u4 |
♾️ | libc6 | 2.36-9+deb12u3 |
2.36-9+deb12u4 |
♾️ | libgnutls30 | 3.7.9-2+deb12u1 |
3.7.9-2+deb12u2 |
♾️ | libsystemd0 | 252.19-1~deb12u1 |
252.22-1~deb12u1 |
♾️ | libudev1 | 252.19-1~deb12u1 |
252.22-1~deb12u1 |
♾️ | systemd | 252.19-1~deb12u1 |
252.22-1~deb12u1 |
♾️ | tar | 1.34+dfsg-1.2 |
1.34+dfsg-1.2+deb12u1 |
♾️ | tzdata | 2023c-5+deb12u1 |
2024a-0+deb12u1 |
♾️ | usr-is-merged | 35 |
37~deb12u1 |
♾️ | usrmerge | 35 |
37~deb12u1 |
No description provided.