search

apollographql / apollo-federation-subgraph-compatibility

A repo to test subgraph libraries compatibility with the Apollo Federation Specification
https://www.apollographql.com/docs/federation/building-supergraphs/supported-subgraphs/
MIT License
77 stars 58 forks source link

old renovate Dependency Dashboard #464

Closed svc-secops closed 1 year ago

svc-secops commented 1 year ago

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Pending Status Checks

These updates await pending status checks. To force their creation now, click the checkbox below.

Other Branches

These updates are pending. To force PRs open, click the checkbox below.

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

Vulnerabilities

3/3 CVEs have Renovate fixes.

npm
packages/compatibility/package.json
graphql
- [GHSA-9pv7-vfvm-6vr7](https://osv.dev/vulnerability/GHSA-9pv7-vfvm-6vr7) (fixed in 16.8.1)
packages/subgraphs/inventory/package.json
graphql
- [GHSA-9pv7-vfvm-6vr7](https://osv.dev/vulnerability/GHSA-9pv7-vfvm-6vr7) (fixed in 16.8.1)
packages/subgraphs/users/package.json
graphql
- [GHSA-9pv7-vfvm-6vr7](https://osv.dev/vulnerability/GHSA-9pv7-vfvm-6vr7) (fixed in 16.8.1)

Detected dependencies

dockerfile
packages/subgraphs/inventory/Dockerfile - `node 18-alpine`
packages/subgraphs/users/Dockerfile - `node 18-alpine`
github-actions
.github/workflows/ci.yaml - `actions/checkout v3` - `actions/setup-python v4` - `actions/download-artifact v3` - `actions/upload-pages-artifact v2` - `actions/deploy-pages v2`
.github/workflows/comment.yaml - `actions/github-script v6` - `actions/github-script v6`
.github/workflows/library_metadata.yaml - `actions/checkout v3` - `actions/checkout v3` - `actions/upload-artifact v3` - `actions/checkout v3` - `actions/download-artifact v3`
.github/workflows/lint.yaml - `actions/checkout v3` - `actions/setup-node v3` - `actions/checkout v3` - `actions/setup-node v3`
.github/workflows/release.yaml - `actions/checkout v3` - `actions/setup-node v3`
.github/workflows/save-pr-info.yaml - `actions/upload-artifact v3`
.github/workflows/test-all.yaml - `actions/checkout v3` - `actions/checkout v3` - `actions/setup-node v3` - `actions/download-artifact v3` - `actions/upload-artifact v3`
.github/workflows/test-hosted-subgraph.yaml - `actions/checkout v3` - `actions/setup-node v3` - `actions/github-script v6` - `actions/upload-artifact v3`
.github/workflows/test-subgraph-appsync.yaml - `actions/upload-artifact v3`
.github/workflows/test-subgraph-stepzen.yaml - `actions/upload-artifact v3`
.github/workflows/test-subgraph.yaml - `actions/checkout v3` - `actions/setup-node v3` - `actions/upload-artifact v3`
npm
package.json - `@typescript-eslint/eslint-plugin 6.7.2` - `@typescript-eslint/parser 6.7.2` - `@vercel/ncc 0.38.0` - `concurrently 8.2.1` - `eslint 8.49.0` - `eslint-plugin-import 2.28.1` - `prettier 3.0.3` - `typescript 5.2.2` - `node >=18.0.0` - `npm >=8.6.0`
packages/compatibility/package.json - `@apollo/rover ^0.18.1` - `debug ^4.3.4` - `execa ^5.1.1` - `graphql ^16.8.0` - `jest ^29.6.4` - `make-fetch-happen ^13.0.0` - `pm2 ^5.3.0` - `ts-jest ^29.1.1` - `@types/debug 4.1.8` - `@types/jest 29.5.4` - `@types/make-fetch-happen 10.0.1` - `@types/node 18.17.13` - `node >=18.0.0` - `npm >=8.6.0`
packages/script/package.json - `@apollo/federation-subgraph-compatibility-tests ^2.0.0` - `commander ^11.0.0` - `debug ^4.3.4` - `@types/debug 4.1.8` - `node >=18.0.0` - `npm >=8.6.0`
packages/subgraphs/inventory/package.json - `@apollo/server ^4.9.3` - `@apollo/subgraph ^2.5.1` - `graphql ^16.8.0` - `graphql-tag ^2.12.6`
packages/subgraphs/users/package.json - `@apollo/server ^4.9.3` - `@apollo/subgraph ^2.5.1` - `graphql ^16.8.0` - `graphql-tag ^2.12.6`
nvm
.nvmrc - `node 18`
dariuszkuc commented 1 year ago

superseded by https://github.com/apollographql/apollo-federation-subgraph-compatibility/issues/523