search

GCTC-NTGC / TalentCloud

Talent Cloud aspires to be a cross-sectoral initiative testing new realities for talent in-and-out of government. // Nuage de talent s'efforce d'être une initiative intersectorielle mettant à l'essai de nouvelles réalités pour le talent à l'intérieur et à l'extérieur du gouvernement.
http://talent.canada.ca
MIT License
20 stars 12 forks source link

Bump snyk from 1.573.0 to 1.607.0 #5940

Closed dependabot-preview[bot] closed 3 years ago

dependabot-preview[bot] commented 3 years ago

⚠️ Dependabot Preview has been deactivated ⚠️

This pull request was created by Dependabot Preview, and you've upgraded to Dependabot. This means it won't respond to dependabot commands nor will it be automatically closed if a new version is found.

If you close this pull request, Dependabot will re-create it the next time it checks for updates and everything will work as expected.

Bumps snyk from 1.573.0 to 1.607.0.

Release notes

Sourced from snyk's releases.

v1.607.0

1.607.0 (2021-05-25)

Features

  • upgrade docker and binary runtimes to node@14 (58c58a8)

v1.606.0

1.606.0 (2021-05-23)

Features

  • check for sast/snyk code setting on org before running code test (ef25549)
  • support config attributes for reachability in gradle (ebbb434)

v1.605.0

1.605.0 (2021-05-20)

Features

  • protect: use new patches endpoint (75d9237)

v1.604.0

1.604.0 (2021-05-19)

Bug Fixes

  • protect: handle carriage returns when parsing .snyk file (63e4818)
  • protect: keep the same line endings when patching (c5b208c)

v1.603.0

1.603.0 (2021-05-19)

Features

  • add support for --org flag to snyk iac (e07de81)

v1.602.0

1.602.0 (2021-05-18)

Bug Fixes

  • latest @​snyk/fix with engines 10+ (e6ec890)

... (truncated)

Commits
  • 6f052a5 Merge pull request #1941 from snyk/smoke/release-upgrade-node-14
  • 6e7fccf Merge pull request #1944 from snyk/test/flakey-9000
  • 3bde878 Merge pull request #1936 from snyk/chore/update-js-yaml-npm-parser
  • fa5caf7 refactor: Skip empty files on loading
  • dbce1f0 Merge pull request #1938 from snyk/feat/bump-gradle-plugin-supporting-reachab...
  • b9344b5 test(protect): increase timeout for network test
  • 756a3d0 Merge pull request #1921 from snyk/feat/only-run-code-if-enabled-for-org
  • 7eab4e7 Merge pull request #1942 from snyk/chore/missing-deps
  • ef25549 feat: check for sast/snyk code setting on org before running code test
  • 4e7b2d2 chore: add missing dependencies to package.json
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
codecov[bot] commented 3 years ago

Codecov Report

Merging #5940 (462dd82) into dev (09a0ae4) will increase coverage by 0.02%. The diff coverage is n/a.

Impacted file tree graph

Impacted Files Coverage Δ
app/Models/Experience.php 79.32% <0.00%> (+6.90%) :arrow_up: 
@@             Coverage Diff              @@
##                dev    #5940      +/-   ##
============================================
+ Coverage     50.72%   50.74%   +0.02%     
  Complexity     1803     1803              
============================================
  Files           448      448              
  Lines         10571    10571              
  Branches        426      426              
============================================
+ Hits           5361     5363       +2     
+ Misses         4899     4897       -2     
  Partials        311      311
Impacted Files Coverage Δ
app/Models/Experience.php 79.32% <0.00%> (+6.90%) :arrow_up:
dependabot-preview[bot] commented 3 years ago

OK, I won't notify you again about this release, but will get in touch when a new version is available.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.