TOMOSIA-VIETNAM / tomoblo

TOMOSIA TECH BLOG
http://blog.tomosia.com
MIT License
7 stars 49 forks source link

Bump snyk-go-plugin and snyk #243

Open dependabot[bot] opened 2 years ago

dependabot[bot] commented 2 years ago

Removes snyk-go-plugin. It's no longer used after updating ancestor dependency snyk. These dependencies need to be updated together.

Removes snyk-go-plugin

Updates snyk from 1.413.3 to 1.1024.0

Release notes

Sourced from snyk's releases.

v1.1024.0

1.1024.0 (2022-10-06)

v1.1023.0

1.1023.0 (2022-10-06)

Bug Fixes

  • Ignored issues count displays "undefined" (962df51)

v1.1022.0

1.1022.0 (2022-10-05)

Bug Fixes

  • do not check stderr output in IaC smoke tests (55cbba0)

Features

  • use short link to the Integrated IaC docs (8fd823d)

v1.1021.0

1.1021.0 (2022-10-04)

Bug Fixes

  • remove gradle matching config error (401c0f0)

Features

  • add flag to exclude app vulnerabilities (5d704e2)
  • print warning message on app-vulns enablement (9216c49)

v1.1020.0

1.1020.0 (2022-10-03)

v1.1019.0

1.1019.0 (2022-09-30)

Bug Fixes

  • use @​snyk/child-process package without shell (2d8845d)

... (truncated)

Commits
  • 9b48446 Merge pull request #4111 from snyk/feat/snyk-iac-debug-log
  • 85bfd82 chore: Add debug log for local bundle
  • 7533751 Merge pull request #4064 from snyk/docs/automatic-gitbook-update
  • 61c983d Merge pull request #4110 from snyk/fix/undefined-ignored-issues-count
  • 962df51 fix: Ignored issues count displays "undefined"
  • 29bb68b docs: synchronizing help from snyk/user-docs
  • b0c0789 Merge pull request #4106 from snyk/feat/use-short-integrated-iac-link
  • 8fd823d feat: use short link to the Integrated IaC docs
  • e9b88b9 Merge pull request #4043 from snyk/fix/iac-smoke-stderr
  • 0f54465 Merge pull request #3874 from snyk/feat/no-app-vulns
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by snyk-admin, a new releaser for snyk since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/TOMOSIA-VIETNAM/tomoblo/network/alerts).