update-examples workflow will now strip distance and hash (longest -* match) from the input or calculated version numbers.
reusable-secrets-analysis.yml now uses the Trufflehog Github Action to scan for only verified secrets, which should reduce or eliminate false positives.
Removed
reusable-secrets-analysis.yml no longer recognizes .trufflehog.txt, which was previously used to specify exclude paths.
update-examples workflow will now strip distance and hash (longest -* match) from the input or calculated version numbers.
reusable-secrets-analysis.yml now uses the Trufflehog Github Action to scan for only verified secrets, which should reduce or eliminate false positives.
Removed
reusable-secrets-analysis.yml no longer recognizes .trufflehog.txt, which was previously used to specify exclude paths.
Commits
a840760 Merge pull request #114 from ASFHyP3/develop
1020c90 Merge pull request #109 from ASFHyP3/jhkennedy-patch-1
3ec8c08 Merge branch 'jhkennedy-patch-1' of github.com:ASFHyP3/actions into jhkennedy...
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps ASFHyP3/actions from 0.10.0 to 0.11.0.
Release notes
Sourced from ASFHyP3/actions's releases.
Changelog
Sourced from ASFHyP3/actions's changelog.
Commits
a840760Merge pull request #114 from ASFHyP3/develop1020c90Merge pull request #109 from ASFHyP3/jhkennedy-patch-13ec8c08Merge branch 'jhkennedy-patch-1' of github.com:ASFHyP3/actions into jhkennedy...069e143changelogb21d240Revert temporary version pina04dcdebase: main20a8e44Temporary version pind6315deMerge branch 'develop' into jhkennedy-patch-13ebf98eRemove the--exclude_pathsoption84c242fMerge pull request #113 from ASFHyP3/dependabot/github_actions/ASFHyP3/action...Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show