chore(deps): Bump github/codeql-action from 3.25.13 to 3.25.15 in /.github/actions/build-docker-image - Githubissues

Automattic / vip-container-images

Multipurpose VIP Docker container images (primarily meant for use with the VIP Local Development Environment)

https://docs.wpvip.com/technical-references/vip-local-development-environment/

16 stars 4 forks source link

chore(deps): Bump github/codeql-action from 3.25.13 to 3.25.15 in /.github/actions/build-docker-image #841

Closed dependabot[bot] closed 2 months ago

dependabot[bot] commented 2 months ago

Bumps github/codeql-action from 3.25.13 to 3.25.15.

Changelog

Sourced from github/codeql-action's changelog.

3.25.15 - 26 Jul 2024

Update default CodeQL bundle version to 2.18.1. #2385

3.25.14 - 25 Jul 2024

Experimental: add a new start-proxy action which starts the same HTTP proxy as used by github/dependabot-action. Do not use this in production as it is part of an internal experiment and subject to change at any time.

Commits

afb54ba Merge pull request #2391 from github/update-v3.25.15-4b1d7da10
57a4b22 Update changelog for v3.25.15
4b1d7da Merge pull request #2385 from github/update-bundle/codeql-bundle-v2.18.1
97e8f69 Merge branch 'main' into update-bundle/codeql-bundle-v2.18.1
f8e94f9 Merge pull request #2389 from github/mergeback/v3.25.14-to-main-5cf07d8b
9e375a8 Update checked-in dependencies
02d73d0 Update changelog and version after v3.25.14
5cf07d8 Merge pull request #2388 from github/update-v3.25.14-1b214db07
ecab108 Update changelog for v3.25.14
1b214db Merge pull request #2387 from github/aibaars/remove-set-secret
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/alpine:3.20.2 (alpine 3.20.2)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/nginx:1.27.0 (alpine 3.19.3)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/dev-tools:0.9 (alpine 3.20.2)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/photon:latest (alpine 3.20.2)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/skeleton:latest (alpine 3.20.2)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/traefik_openssl:2.11.2 (alpine 3.19.1)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/php-fpm:8.3 (ubuntu 24.04)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/wordpress:6.2 (alpine 3.20.2)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/wordpress:6.1 (alpine 3.20.2)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/wordpress:6.4 (alpine 3.20.2)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/php-fpm:8.1 (ubuntu 22.04)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/php-fpm:8.2 (ubuntu 22.04)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/wordpress:6.6 (alpine 3.20.2)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/wordpress:6.5 (alpine 3.20.2)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/wordpress:6.0 (alpine 3.20.2)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/wordpress:6.3 (alpine 3.20.2)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/wordpress:trunk (alpine 3.20.2)

No vulnerabilities found.

github-actions[bot] commented 2 months ago

Trivy Scan Report

ghcr.io/automattic/vip-container-images/mu-plugins:0.1 (alpine 3.20.2)

No vulnerabilities found.

sjinks commented 2 months ago

@dependabot rebase

sjinks commented 2 months ago

@dependabot recreate