chore(deps): update all-ci-updates #652
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=60&v=4){kind=small}
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## main #652 +/- ##
=====================================
Coverage 0.00% 0.00%
=====================================
Files 1 1
Lines 271 271
=====================================
Misses 271 271 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
renovate
bot
force-pushed
the
renovate/all-ci-updates
branch
3 times, most recently
from
1e503cc to
d38d190
Compare
renovate
bot
force-pushed
the
renovate/all-ci-updates
branch
4 times, most recently
from
bb4fc58 to
dd06dbe
Compare
renovate
bot
force-pushed
the
renovate/all-ci-updates
branch
2 times, most recently
from
e40b9bd to
d40a18e
Compare
renovate
bot
force-pushed
the
renovate/all-ci-updates
branch
from
d40a18e to
3a018ce
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v4.2.0->v4.2.2v4.6.0->v4.6.1v0.29.0->0.30.00.7.3->0.7.4v5.3.1->v5.4.0v3.28.9->v3.28.11v6.1.0->v6.2.1v2.4.0->v2.4.1v2.22.0->v2.22.2v3.8.0->v3.8.1v2.0.0->v2.1.0v3.0.21->v3.0.22Warning
Some dependencies could not be looked up. Check the Dependency Dashboard for more information.
Release Notes
actions/cache (actions/cache)
v4.2.2Compare Source
What's Changed
Full Changelog: actions/cache@v4.2.1...v4.2.2
v4.2.1Compare Source
What's Changed
New Contributors
Full Changelog: actions/cache@v4.2.0...v4.2.1
actions/upload-artifact (actions/upload-artifact)
v4.6.1Compare Source
What's Changed
Full Changelog: actions/upload-artifact@v4...v4.6.1
aquasecurity/trivy-action (aquasecurity/trivy-action)
v0.30.0Compare Source
What's Changed
New Contributors
Full Changelog: aquasecurity/trivy-action@0.29.0...0.30.0
projectcapsule/capsule (capsule)
v0.7.4Compare Source
Changelog
🚀 Build process updates
b7a2072: ci: generate seccomp profile within pipeline (#1325) (@alegrey91)Full Changelog: projectcapsule/capsule@v0.7.3...v0.7.4
Docker Images
ghcr.io/projectcapsule/capsule:0.7.4ghcr.io/projectcapsule/capsule:latestHelm Chart
View this release on Artifact Hub or use the OCI helm chart:
ghcr.io/projectcapsule/charts/capsule:0.7.4Review the Major Changes section first before upgrading to a new version
Kubernetes compatibility
[!IMPORTANT]
Note that the Capsule project offers support only for the latest minor version of Kubernetes.
Backwards compatibility with older versions of Kubernetes and OpenShift is offered by vendors.
v1.31>= 1.31.0Thanks to all the contributors! 🚀 🦄
codecov/codecov-action (codecov/codecov-action)
v5.4.0Compare Source
What's Changed
use_pypibypasses integrity checks too by @webknjaz in https://github.com/codecov/codecov-action/pull/1773Full Changelog: https://github.com/codecov/codecov-action/compare/v5.3.1..v5.4.0
github/codeql-action (github/codeql-action)
v3.28.11Compare Source
CodeQL Action Changelog
See the releases page for the relevant changes to the CodeQL CLI and language packs.
3.28.11 - 07 Mar 2025
See the full CHANGELOG.md for more information.
v3.28.10Compare Source
CodeQL Action Changelog
See the releases page for the relevant changes to the CodeQL CLI and language packs.
3.28.10 - 21 Feb 2025
See the full CHANGELOG.md for more information.
goreleaser/goreleaser-action (goreleaser/goreleaser-action)
v6.2.1Compare Source
What's Changed
This version of the actions adds support for GoReleaser Pro v2.7.0 versioning (which dropped the
-prosuffix).Older versions should work fine.
Full Changelog: goreleaser/goreleaser-action@v6.2.0...v6.2.1
v6.2.0Compare Source
What's Changed
This version of the actions adds support for GoReleaser Pro v2.7.0 versioning (which dropped the
-prosuffix).Older versions should work fine.
Full Changelog: goreleaser/goreleaser-action@v6.1.0...v6.2.0
ossf/scorecard-action (ossf/scorecard-action)
v2.4.1Compare Source
What's Changed
file_modeinput which controls how repository files are fetched from GitHub. The default isarchive, butgitproduces the most accurate results for repositories with.gitattributesfiles at the cost of analysis speed.--file-modeby @spencerschrock in https://github.com/ossf/scorecard-action/pull/1509Docs
New Contributors
Full Changelog: ossf/scorecard-action@v2.4.0...v2.4.1
securego/gosec (securego/gosec)
v2.22.2Compare Source
Changelog
136f6c0Update to go version 1.24.1 and 1.23.7 (#1313)047453achore(deps): update all dependencies (#1310)76ccee5chore(deps): update all dependencies (#1308)a9eb1c9Update gosec version in the GitHub action to v2.22.1 (#1307)89c5da3chore(deps): update module google.golang.org/api to v0.221.0 (#1305)v2.22.1Compare Source
Changelog
43fee88Update cosign to v2.4.2 (#1303)7723829Add support for go 1.24 and phased out support for go 1.22 (#1302)9552f03chore(deps): update all dependencies (#1300)f4d2576Update to go version 1.23.6 and 1.22.12 (#1299)2258e31chore(deps): update module google.golang.org/api to v0.219.0 (#1296)fbb0833chore(deps): update module google.golang.org/api to v0.218.0 (#1294)c66cb56Add test to conver unit parssing for G115 rule (#1293)59291a0Update to go version 1.23.5 and 1.22.11 (#1291)7466b7cchore(deps): update all dependencies (#1290)32dcc8aUpdate gosec in github action to 2.22.0 (#1286)sigstore/cosign-installer (sigstore/cosign-installer)
v3.8.1Compare Source
What's Changed
Full Changelog: sigstore/cosign-installer@v3...v3.8.1
slsa-framework/slsa-github-generator (slsa-framework/slsa-github-generator)
v2.1.0Compare Source
v2.1.0: Sigstore Bundles for Generic Generator and Go Builder
The workflows
generator_generic_slsa3.ymlandbuilder_go_slsa3.ymlhave been updated to produce signed Sigstore Bundles, just like all the other builders
that use the BYOB framework.
The workflow logs will now print a LogIndex, rather than a LogUUID. Both are equally searchanble on
https://search.sigstore.dev/.
v2.1.0: Vars context recorded in provenance
varscontext is now recorded in provenance for the generic andcontainer generators. The
varscontext cannot affect the build in the Gobuilder so it is not recorded.
zgosalvez/github-actions-ensure-sha-pinned-actions (zgosalvez/github-actions-ensure-sha-pinned-actions)
v3.0.22Compare Source
What's Changed
Full Changelog: zgosalvez/github-actions-ensure-sha-pinned-actions@v3...v3.0.22
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR was generated by Mend Renovate. View the repository job log.