KartanHQ / intellij-nestjs

Nest plugin for IntelliJ Platform
Apache License 2.0
12 stars 2 forks source link

ci(deps): bump JetBrains/qodana-action from 2023.3.2 to 2024.1.3 #344

Closed dependabot[bot] closed 5 months ago

dependabot[bot] commented 6 months ago

Bumps JetBrains/qodana-action from 2023.3.2 to 2024.1.3.

Release notes

Sourced from JetBrains/qodana-action's releases.

v2024.1.3

Changelog

  • 4294d43 :memo: Update CONTRIBUTING.md
  • 966bad5 :memo: Update CONTRIBUTING.md with release links
  • 6059c45 :arrow_up: Bump gradle/wrapper-validation-action
  • 48916df :bricks: Update dependabot configuration
  • 4b4a649 :bricks: Add new GitHub integration tests
  • f6f71dd :arrow_up: Bump the npm-development group with 3 updates
  • 2249826 :arrow_up: Update qodana to v2024.1.3
  • 3346d1b :arrow_up: Bump azure-pipelines-task-lib from 4.11.0 to 4.12.0
  • 348e594 :arrow_up: Bump @​octokit/types from 13.4.1 to 13.5.0
  • 469f04d :arrow_up: Bump the npm-production group with 2 updates

v2024.1.2

Changelog

  • e185f83 :bug: Update artifact upload pattern
  • 5faa8fe :bug: Fix dependency summary
  • 2dbc410 :arrow_up: Update qodana to v2024.1.2

v2024.1.1

Changelog

  • caaec8a :arrow_up: Bump the dependencies group with 7 updates
  • 28b4ee5 :bricks: Update release workflows
  • bb446e7 :bricks: Update gradle properties
  • 92c7009 :arrow_up: Bump the dependencies group with 2 updates
  • 3e525c9 :arrow_up: Bump gradle/wrapper-validation-action
  • ee19938 :arrow_up: Bump the dependencies group with 10 updates
  • d9d3d01 :bricks: Fix CLI updater script
  • 5240dc8 :arrow_up: Bump gradle/wrapper-validation-action
  • 3925fa7 :lock: Prevent second order command injection prevention (CWE-88, CWE-78)
  • 12749d0 :arrow_up: Update qodana to v2024.1.1
  • efcec05 :arrow_up: Bump the dependencies group with 7 updates
  • 03d9f05 :recycle: Apply Qodana suggestions
  • f0a644c :children_crossing: Fix view report message
  • ccc2f78 :bricks: Update Qodana configuration
  • 38a023c :bug: Support --config in the action
  • 23aa837 :bricks: Update Azure configuration
  • a4f50a6 :memo: Update Azure icon
Commits
  • 469f04d :arrow_up: Bump the npm-production group with 2 updates
  • 348e594 :arrow_up: Bump @​octokit/types from 13.4.1 to 13.5.0
  • 3346d1b :arrow_up: Bump azure-pipelines-task-lib from 4.11.0 to 4.12.0
  • 2249826 :arrow_up: Update qodana to v2024.1.3
  • f6f71dd :arrow_up: Bump the npm-development group with 3 updates
  • 4b4a649 :bricks: Add new GitHub integration tests
  • 48916df :bricks: Update dependabot configuration
  • 6059c45 :arrow_up: Bump gradle/wrapper-validation-action
  • 966bad5 :memo: Update CONTRIBUTING.md with release links
  • 4294d43 :memo: Update CONTRIBUTING.md
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
github-actions[bot] commented 6 months ago

Qodana Community for JVM

It seems all right 👌

No new problems were found according to the checks applied

💡 Qodana analysis was run in the pull request mode: only the changed files were checked

View the detailed Qodana report To be able to view the detailed Qodana report, you can either: - Register at [Qodana Cloud](https://qodana.cloud/) and [configure the action](https://github.com/jetbrains/qodana-action#qodana-cloud) - Use [GitHub Code Scanning with Qodana](https://github.com/jetbrains/qodana-action#github-code-scanning) - Host [Qodana report at GitHub Pages](https://github.com/JetBrains/qodana-action/blob/3a8e25f5caad8d8b01c1435f1ef7b19fe8b039a0/README.md#github-pages) - Inspect and use `qodana.sarif.json` (see [the Qodana SARIF format](https://www.jetbrains.com/help/qodana/qodana-sarif-output.html#Report+structure) for details) To get `*.log` files or any other Qodana artifacts, run the action with `upload-result` option set to `true`, so that the action will upload the files as the job artifacts: ```yaml - name: 'Qodana Scan' uses: JetBrains/qodana-action@v2024.1.3 with: upload-result: true ```
Contact Qodana team Contact us at [qodana-support@jetbrains.com](mailto:qodana-support@jetbrains.com) - Or via our issue tracker: https://jb.gg/qodana-issue - Or share your feedback: https://jb.gg/qodana-discussions
dependabot[bot] commented 5 months ago

Superseded by #347.