Skip to content
This repository was archived by the owner on May 3, 2024. It is now read-only.

chore(deps): update ci dependencies#45

Open
renovate[bot] wants to merge 1 commit intomasterfrom
renovate/ci-deps
Open

chore(deps): update ci dependencies#45
renovate[bot] wants to merge 1 commit intomasterfrom
renovate/ci-deps

Conversation

@renovate
Copy link
Copy Markdown

@renovate renovate Bot commented Jan 4, 2024
edited
Loading

Mend Renovate

This PR contains the following updates:

Package Type Update Change
actions/add-to-project action major v0.5.0 -> v1.0.1
actions/checkout action patch v4.1.1 -> v4.1.4
actions/dependency-review-action action major v3.1.4 -> v4.3.2
actions/setup-node action patch v4.0.1 -> v4.0.2
actions/setup-python action minor v5.0.0 -> v5.1.0
actions/upload-artifact action minor v4.0.0 -> v4.3.3
docker/build-push-action action minor v5.1.0 -> v5.3.0
docker/login-action action minor v3.0.0 -> v3.1.0
docker/setup-buildx-action action minor v3.0.0 -> v3.3.0
eps1lon/actions-label-merge-conflict action major v2.1.0 -> v3.0.0
webiny/action-conventional-commits action minor v1.2.0 -> v1.3.0

Release Notes

actions/add-to-project (actions/add-to-project)

v1.0.1

Compare Source

Summary

This release includes dependency updates, including security fix to undici.

What's Changed

Full Changelog: actions/add-to-project@v1.0.0...v1.0.1

v1.0.0

Compare Source

Summary

This release promotes actions/add-to-projects to a major version 1 and marks the public API stable.

What's Changed

Full Changelog: actions/add-to-project@v0.6.1...v1.0.0

v0.6.1

Compare Source

What's Changed

New Contributors

Full Changelog: actions/add-to-project@v0.6.0...v0.6.1

v0.6.0

Compare Source

actions/checkout (actions/checkout)

v4.1.4

Compare Source

v4.1.3

Compare Source

What's Changed

Full Changelog: actions/checkout@v4.1.2...v4.1.3

v4.1.2

Compare Source

actions/dependency-review-action (actions/dependency-review-action)

v4.3.2

Compare Source

What's Changed

Full Changelog: actions/dependency-review-action@v4.3.1...v4.3.2

v4.3.1

Compare Source

What's Changed

This release fixes some bugs related to package-url parsing that were introduced in 4.3.0. See https://github.com/actions/dependency-review-action/pull/753.

Full Changelog: actions/dependency-review-action@V4.3.0...v4.3.1

v4.3.0

Compare Source

New Features

  • The deny-packages option can now be used without a version number to exclude all versions of a package.

What's Changed

New Contributors

Full Changelog: actions/dependency-review-action@v4.2.5...V4.3.0

v4.2.5: 4.2.5

Compare Source

What's Changed

Full Changelog: actions/dependency-review-action@v4.2.4...v4.2.5

v4.2.4

Compare Source

What's Changed

Fixed a bug in the output of OpenSSF cards for GitHub Actions.

New Contributors

Full Changelog: actions/dependency-review-action@v4.2.3...v4.2.4

v4.2.3: 4.2.3

Compare Source

What's Changed

New Contributors

Full Changelog: actions/dependency-review-action@v4.1.3...v4.2.3

v4.1.3: 4.1.3

Compare Source

Fixes a bug in 4.1.2 that would introduce comments in every pull request, regardless of the user's configuration (see https://github.com/actions/dependency-review-action/issues/697).

Full Changelog: actions/dependency-review-action@v4.1.2...v4.1.3

v4.1.2: 4.1.2

Compare Source

What's Changed

Full Changelog: actions/dependency-review-action@v4.1.1...v4.1.2

v4.1.1: 4.1.1

Compare Source

What's Changed

Full Changelog: actions/dependency-review-action@v4.1.0...v4.1.1

v4.1.0: 4.1.0

Compare Source

What's Changed

Added a new configuration option (warn-only, boolean) that makes the action always succeed while still displaying found vulnerabilities in the log.

New Contributors

Full Changelog: actions/dependency-review-action@v4...v4.1.0

v4.0.0

Compare Source

New Contributors

Full Changelog: actions/dependency-review-action@v3.1.5...v4.0.0

v3.1.5: 3.1.5

Compare Source

What's Changed

Full Changelog: actions/dependency-review-action@v3.1.4...v3.1.5

actions/setup-node (actions/setup-node)

v4.0.2

Compare Source

What's Changed
New Contributors

Full Changelog: actions/setup-node@v4.0.1...v4.0.2

actions/setup-python (actions/setup-python)

v5.1.0

Compare Source

What's Changed

New Contributors

Full Changelog: actions/setup-python@v5.0.0...v5.1.0

actions/upload-artifact (actions/upload-artifact)

v4.3.3

Compare Source

What's Changed

Full Changelog: actions/upload-artifact@v4.3.2...v4.3.3

v4.3.2

Compare Source

What's Changed

New Contributors

Full Changelog: actions/upload-artifact@v4.3.1...v4.3.2

v4.3.1

Compare Source

v4.3.0

Compare Source

What's Changed

Full Changelog: actions/upload-artifact@v4...v4.3.0

v4.2.0

Compare Source

What's Changed

Full Changelog: actions/upload-artifact@v4...v4.2.0

v4.1.0

Compare Source

What's Changed

New Contributors

Full Changelog: actions/upload-artifact@v4...v4.1.0

docker/build-push-action (docker/build-push-action)

v5.3.0

Compare Source

Full Changelog: docker/build-push-action@v5.2.0...v5.3.0

v5.2.0

Compare Source

Full Changelog: docker/build-push-action@v5.1.0...v5.2.0

docker/login-action (docker/login-action)

v3.1.0

Compare Source

Full Changelog: docker/login-action@v3.0.0...v3.1.0

docker/setup-buildx-action (docker/setup-buildx-action)

v3.3.0

Compare Source

v3.2.0

Compare Source

[!NOTE]
config and config-inline input names are deprecated and will be removed in next major release.

Full Changelog: docker/setup-buildx-action@v3.1.0...v3.2.0

v3.1.0

Compare Source

eps1lon/actions-label-merge-conflict (eps1lon/actions-label-merge-conflict)

v3.0.0

Compare Source

What's Changed

Full Changelog: eps1lon/actions-label-merge-conflict@v2.1.0...v3.0.0

webiny/action-conventional-commits (webiny/action-conventional-commits)

v1.3.0

Compare Source

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate renovate Bot added the dependencies label Jan 4, 2024
@renovate renovate Bot changed the title chore(deps): update actions/dependency-review-action action to v3.1.5 chore(deps): update ci dependencies Jan 12, 2024
@renovate renovate Bot force-pushed the renovate/ci-deps branch 3 times, most recently from 4cfd0c0 to b8aaa50 Compare January 18, 2024 23:01
@renovate renovate Bot force-pushed the renovate/ci-deps branch 2 times, most recently from 68fc5d4 to 447600a Compare January 26, 2024 17:29
@renovate renovate Bot force-pushed the renovate/ci-deps branch 2 times, most recently from 1ca4761 to 87092b1 Compare February 7, 2024 06:51
@renovate renovate Bot force-pushed the renovate/ci-deps branch 3 times, most recently from b9bad52 to a3d9464 Compare February 19, 2024 16:32
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Feb 19, 2024

Dependency Review

The following issues were found:
  • ✅ 0 vulnerable package(s)
  • ✅ 0 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ⚠️ 1 package(s) with unknown licenses.
See the Details below.

License Issues

.github/workflows/quality-checks.yml

PackageVersionLicenseIssue Type
webiny/action-conventional-commits1.3.0NullUnknown License

Scanned Manifest Files

.github/workflows/decide.yml
  • actions/upload-artifact@4.3.1
  • actions/upload-artifact@4.0.0
.github/workflows/quality-checks.yml
  • actions/dependency-review-action@4.1.2
  • actions/setup-node@4.0.2
  • webiny/action-conventional-commits@1.3.0
  • actions/dependency-review-action@3.1.4
  • actions/setup-node@4.0.1
  • webiny/action-conventional-commits@1.2.0

@renovate renovate Bot force-pushed the renovate/ci-deps branch 3 times, most recently from 2ed2b5b to 66eb901 Compare February 27, 2024 11:04
@renovate renovate Bot force-pushed the renovate/ci-deps branch 3 times, most recently from 989a895 to ce4aed5 Compare March 14, 2024 10:25
@renovate renovate Bot force-pushed the renovate/ci-deps branch 6 times, most recently from 8282e8e to a4ccaf5 Compare March 26, 2024 15:21
@renovate renovate Bot force-pushed the renovate/ci-deps branch from a4ccaf5 to cf64ccd Compare March 26, 2024 23:27
@renovate renovate Bot force-pushed the renovate/ci-deps branch 2 times, most recently from df6e24f to 4458585 Compare April 11, 2024 21:07
@renovate renovate Bot force-pushed the renovate/ci-deps branch 2 times, most recently from 4d82340 to 16f8204 Compare April 22, 2024 14:38
@renovate renovate Bot force-pushed the renovate/ci-deps branch 3 times, most recently from 6c2341f to d5a5cba Compare April 29, 2024 18:29
@renovate renovate Bot force-pushed the renovate/ci-deps branch from d5a5cba to 58183ae Compare April 30, 2024 18:41
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies

Projects

Decide
Status: No status

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants