search

SwaragThaikkandi / SMdRQA

For doing multidimensional recurrent quantification analysis(MdRQA) and sliding window version of it
https://swaragthaikkandi.github.io/SMdRQA/
GNU General Public License v3.0
1 stars 0 forks source link

Update snyk/actions digest to d406fd2 #144

Closed renovate[bot] closed 5 months ago

renovate[bot] commented 5 months ago

Mend Renovate

This PR contains the following updates:

Package Type Update Change
snyk/actions action digest 8349f90 -> d406fd2

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.

cr-gpt[bot] commented 5 months ago

Seems you are using me but didn't get OPENAI_API_KEY seted in Variables/Secrets for this repo. you could follow readme for more information

sweep-ai[bot] commented 5 months ago

Sweep: PR Review

.github/workflows/snyk-security.yml

The change updates the version of the Snyk setup action used in the GitHub workflow.

github-actions[bot] commented 5 months ago

Dependency Review

The following issues were found:

See the Details below.

License Issues

.github/workflows/snyk-security.yml

PackageVersionLicenseIssue Type
snyk/actions/setupd406fd286b663eb8c6f8adcced4f7bcd199c0a3fNullUnknown License

OpenSSF Scorecard

PackageVersionScoreDetails
actions/snyk/actions/setup d406fd286b663eb8c6f8adcced4f7bcd199c0a3f :green_circle: 4.7
Details
CheckScoreReason
Maintained:warning: 12 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1
Code-Review:green_circle: 8Found 18/21 approved changesets -- score normalized to 8
CII-Best-Practices:warning: 0no effort to earn an OpenSSF best practices badge detected
License:green_circle: 9license file detected
Signed-Releases:warning: -1no releases found
Branch-Protection:warning: -1internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Dangerous-Workflow:green_circle: 10no dangerous workflow patterns detected
Binary-Artifacts:green_circle: 10no binaries found in the repo
Token-Permissions:warning: 0detected GitHub workflow tokens with excessive permissions
Packaging:warning: -1packaging workflow not detected
Fuzzing:warning: 0project is not fuzzed
Vulnerabilities:green_circle: 100 existing vulnerabilities detected
Security-Policy:warning: 0security policy file not detected
SAST:warning: 0SAST tool is not run on all commits -- score normalized to 0
Pinned-Dependencies:warning: 0dependency not pinned by hash detected -- score normalized to 0
actions/snyk/actions/setup 8349f9043a8b7f0f3ee8885bf28f0b388d2446e8 :green_circle: 4.7
Details
CheckScoreReason
Maintained:warning: 12 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1
Code-Review:green_circle: 8Found 18/21 approved changesets -- score normalized to 8
CII-Best-Practices:warning: 0no effort to earn an OpenSSF best practices badge detected
License:green_circle: 9license file detected
Signed-Releases:warning: -1no releases found
Branch-Protection:warning: -1internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Dangerous-Workflow:green_circle: 10no dangerous workflow patterns detected
Binary-Artifacts:green_circle: 10no binaries found in the repo
Token-Permissions:warning: 0detected GitHub workflow tokens with excessive permissions
Packaging:warning: -1packaging workflow not detected
Fuzzing:warning: 0project is not fuzzed
Vulnerabilities:green_circle: 100 existing vulnerabilities detected
Security-Policy:warning: 0security policy file not detected
SAST:warning: 0SAST tool is not run on all commits -- score normalized to 0
Pinned-Dependencies:warning: 0dependency not pinned by hash detected -- score normalized to 0

Scanned Manifest Files

.github/workflows/snyk-security.yml
  • snyk/actions/setup@d406fd286b663eb8c6f8adcced4f7bcd199c0a3f
  • snyk/actions/setup@8349f9043a8b7f0f3ee8885bf28f0b388d2446e8