update-examples workflow will now strip distance and hash (longest -* match) from the input or calculated version numbers.
reusable-secrets-analysis.yml now uses the Trufflehog Github Action to scan for only verified secrets, which should reduce or eliminate false positives.
Removed
reusable-secrets-analysis.yml no longer recognizes .trufflehog.txt, which was previously used to specify exclude paths.
update-examples workflow will now strip distance and hash (longest -* match) from the input or calculated version numbers.
reusable-secrets-analysis.yml now uses the Trufflehog Github Action to scan for only verified secrets, which should reduce or eliminate false positives.
Removed
reusable-secrets-analysis.yml no longer recognizes .trufflehog.txt, which was previously used to specify exclude paths.
Commits
a840760 Merge pull request #114 from ASFHyP3/develop
1020c90 Merge pull request #109 from ASFHyP3/jhkennedy-patch-1
3ec8c08 Merge branch 'jhkennedy-patch-1' of github.com:ASFHyP3/actions into jhkennedy...
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps ASFHyP3/actions from 0.10.0 to 0.11.0.
Release notes
Sourced from ASFHyP3/actions's releases.
Changelog
Sourced from ASFHyP3/actions's changelog.
Commits
a840760
Merge pull request #114 from ASFHyP3/develop1020c90
Merge pull request #109 from ASFHyP3/jhkennedy-patch-13ec8c08
Merge branch 'jhkennedy-patch-1' of github.com:ASFHyP3/actions into jhkennedy...069e143
changelogb21d240
Revert temporary version pina04dcde
base: main20a8e44
Temporary version pind6315de
Merge branch 'develop' into jhkennedy-patch-13ebf98e
Remove the--exclude_paths
option84c242f
Merge pull request #113 from ASFHyP3/dependabot/github_actions/ASFHyP3/action...Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show