search

SwaragThaikkandi / SMdRQA

For doing multidimensional recurrent quantification analysis(MdRQA) and sliding window version of it
https://swaragthaikkandi.github.io/SMdRQA/
GNU General Public License v3.0
1 stars 0 forks source link

chore(deps): update codecov/codecov-action action to v4.1.0 #38

Closed renovate[bot] closed 7 months ago

renovate[bot] commented 7 months ago

Mend Renovate

This PR contains the following updates:

Package Type Update Change
codecov/codecov-action action minor v4.0.1 -> v4.1.0

Release Notes

codecov/codecov-action (codecov/codecov-action) ### [`v4.1.0`](https://togithub.com/codecov/codecov-action/releases/tag/v4.1.0) [Compare Source](https://togithub.com/codecov/codecov-action/compare/v4.0.2...v4.1.0) ##### What's Changed - fix: set safe directory by [@​thomasrockhu-codecov](https://togithub.com/thomasrockhu-codecov) in [https://github.com/codecov/codecov-action/pull/1304](https://togithub.com/codecov/codecov-action/pull/1304) - build(deps): bump github/codeql-action from 3.24.3 to 3.24.5 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/codecov/codecov-action/pull/1306](https://togithub.com/codecov/codecov-action/pull/1306) - build(deps-dev): bump eslint from 8.56.0 to 8.57.0 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/codecov/codecov-action/pull/1305](https://togithub.com/codecov/codecov-action/pull/1305) - chore(release): v4.1.0 by [@​thomasrockhu-codecov](https://togithub.com/thomasrockhu-codecov) in [https://github.com/codecov/codecov-action/pull/1307](https://togithub.com/codecov/codecov-action/pull/1307) **Full Changelog**: https://github.com/codecov/codecov-action/compare/v4.0.2...v4.1.0 ### [`v4.0.2`](https://togithub.com/codecov/codecov-action/releases/tag/v4.0.2) [Compare Source](https://togithub.com/codecov/codecov-action/compare/v4.0.1...v4.0.2) ##### What's Changed - Update README.md by [@​thomasrockhu-codecov](https://togithub.com/thomasrockhu-codecov) in [https://github.com/codecov/codecov-action/pull/1251](https://togithub.com/codecov/codecov-action/pull/1251) - build(deps-dev): bump [@​types/jest](https://togithub.com/types/jest) from 29.5.11 to 29.5.12 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/codecov/codecov-action/pull/1257](https://togithub.com/codecov/codecov-action/pull/1257) - build(deps): bump github/codeql-action from 3.23.2 to 3.24.0 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/codecov/codecov-action/pull/1266](https://togithub.com/codecov/codecov-action/pull/1266) - Escape pipes in table of arguments by [@​jwodder](https://togithub.com/jwodder) in [https://github.com/codecov/codecov-action/pull/1265](https://togithub.com/codecov/codecov-action/pull/1265) - Add link to docs on Dependabot secrets by [@​ianlewis](https://togithub.com/ianlewis) in [https://github.com/codecov/codecov-action/pull/1260](https://togithub.com/codecov/codecov-action/pull/1260) - fix: working-directory input for all stages by [@​Bo98](https://togithub.com/Bo98) in [https://github.com/codecov/codecov-action/pull/1272](https://togithub.com/codecov/codecov-action/pull/1272) - build(deps-dev): bump [@​typescript-eslint/parser](https://togithub.com/typescript-eslint/parser) from 6.20.0 to 6.21.0 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/codecov/codecov-action/pull/1271](https://togithub.com/codecov/codecov-action/pull/1271) - build(deps-dev): bump [@​typescript-eslint/eslint-plugin](https://togithub.com/typescript-eslint/eslint-plugin) from 6.20.0 to 6.21.0 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/codecov/codecov-action/pull/1269](https://togithub.com/codecov/codecov-action/pull/1269) - build(deps): bump github/codeql-action from 3.24.0 to 3.24.3 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/codecov/codecov-action/pull/1298](https://togithub.com/codecov/codecov-action/pull/1298) - Use updated syntax for GitHub Markdown notes by [@​jamacku](https://togithub.com/jamacku) in [https://github.com/codecov/codecov-action/pull/1300](https://togithub.com/codecov/codecov-action/pull/1300) - build(deps-dev): bump [@​typescript-eslint/eslint-plugin](https://togithub.com/typescript-eslint/eslint-plugin) from 6.21.0 to 7.0.0 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/codecov/codecov-action/pull/1290](https://togithub.com/codecov/codecov-action/pull/1290) - build(deps): bump actions/upload-artifact from 4.3.0 to 4.3.1 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/codecov/codecov-action/pull/1286](https://togithub.com/codecov/codecov-action/pull/1286) - chore(release): bump to 4.0.2 by [@​thomasrockhu-codecov](https://togithub.com/thomasrockhu-codecov) in [https://github.com/codecov/codecov-action/pull/1302](https://togithub.com/codecov/codecov-action/pull/1302) ##### New Contributors - [@​jwodder](https://togithub.com/jwodder) made their first contribution in [https://github.com/codecov/codecov-action/pull/1265](https://togithub.com/codecov/codecov-action/pull/1265) - [@​ianlewis](https://togithub.com/ianlewis) made their first contribution in [https://github.com/codecov/codecov-action/pull/1260](https://togithub.com/codecov/codecov-action/pull/1260) - [@​Bo98](https://togithub.com/Bo98) made their first contribution in [https://github.com/codecov/codecov-action/pull/1272](https://togithub.com/codecov/codecov-action/pull/1272) - [@​jamacku](https://togithub.com/jamacku) made their first contribution in [https://github.com/codecov/codecov-action/pull/1300](https://togithub.com/codecov/codecov-action/pull/1300) **Full Changelog**: https://github.com/codecov/codecov-action/compare/v4.0.1...v4.0.2

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.

github-actions[bot] commented 7 months ago

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

PackageVersionScoreDetails
actions/codecov/codecov-action 4.1.0 :green_circle: 7.6
Details
CheckScoreReason
Binary-Artifacts:green_circle: 10no binaries found in the repo
Branch-Protection:warning: -1internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
CI-Tests:green_circle: 1030 out of 30 merged PRs checked by a CI test -- score normalized to 10
CII-Best-Practices:warning: 0no effort to earn an OpenSSF best practices badge detected
Code-Review:green_circle: 10all changesets reviewed
Contributors:green_circle: 109 different organizations found -- score normalized to 10
Dangerous-Workflow:green_circle: 10no dangerous workflow patterns detected
Dependency-Update-Tool:green_circle: 10update tool detected
Fuzzing:warning: 0project is not fuzzed
License:green_circle: 10license file detected
Maintained:green_circle: 1030 commit(s) out of 30 and 0 issue activity out of 30 found in the last 90 days -- score normalized to 10
Packaging:warning: -1no published package detected
Pinned-Dependencies:green_circle: 3dependency not pinned by hash detected -- score normalized to 3
SAST:green_circle: 7SAST tool detected but not run on all commits
Security-Policy:green_circle: 10security policy file detected
Signed-Releases:warning: -1no releases found
Token-Permissions:warning: 0detected GitHub workflow tokens with excessive permissions
Vulnerabilities:green_circle: 10no vulnerabilities detected
actions/codecov/codecov-action 4.0.1 :green_circle: 7.6
Details
CheckScoreReason
Binary-Artifacts:green_circle: 10no binaries found in the repo
Branch-Protection:warning: -1internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
CI-Tests:green_circle: 1030 out of 30 merged PRs checked by a CI test -- score normalized to 10
CII-Best-Practices:warning: 0no effort to earn an OpenSSF best practices badge detected
Code-Review:green_circle: 10all changesets reviewed
Contributors:green_circle: 109 different organizations found -- score normalized to 10
Dangerous-Workflow:green_circle: 10no dangerous workflow patterns detected
Dependency-Update-Tool:green_circle: 10update tool detected
Fuzzing:warning: 0project is not fuzzed
License:green_circle: 10license file detected
Maintained:green_circle: 1030 commit(s) out of 30 and 0 issue activity out of 30 found in the last 90 days -- score normalized to 10
Packaging:warning: -1no published package detected
Pinned-Dependencies:green_circle: 3dependency not pinned by hash detected -- score normalized to 3
SAST:green_circle: 7SAST tool detected but not run on all commits
Security-Policy:green_circle: 10security policy file detected
Signed-Releases:warning: -1no releases found
Token-Permissions:warning: 0detected GitHub workflow tokens with excessive permissions
Vulnerabilities:green_circle: 10no vulnerabilities detected

Scanned Manifest Files

.github/workflows/python-package.yml
  • codecov/codecov-action@4.1.0
  • codecov/codecov-action@4.0.1