atomantic / dotfiles

🖥️ Automated Configuration, Preferences and Software Installation for macOS
ISC License
1.33k stars 453 forks source link

Bump yaml and snyk #111

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Removes yaml. It's no longer used after updating ancestor dependency snyk. These dependencies need to be updated together.

Removes yaml

Updates snyk from 1.465.0 to 1.1144.0

Release notes

Sourced from snyk's releases.

v1.1144.0

1.1144.0 (2023-04-24)

Bug Fixes

  • bump snyk-docker-plugin (16bf762)
  • temporarily skip failing gradle test (c194271)
  • use printf rather than echo for escaping in cliv2 Makefile (#4559) (c074f6c)

v1.1143.0

1.1143.0 (2023-04-18)

Features

  • bump nodejs parser version 1.49.0 (2b27ec2)

v1.1142.0

1.1142.0 (2023-04-12)

Features

  • add retry to sendTestPayload (fdf401d)

v1.1141.0

1.1141.0 (2023-04-12)

Bug Fixes

  • always read additional CA certs (ce5a877)

Features

  • upgrade deps to support oci images (5b42613)

v1.1140.0

1.1140.0 (2023-04-05)

Bug Fixes

  • parse mvn output with unresolved properties (9c4e843)

v1.1139.0

1.1139.0 (2023-04-04)

... (truncated)

Commits
  • 3a45d54 Merge pull request #4564 from snyk/fix/bump-sdp
  • 16bf762 fix: bump snyk-docker-plugin
  • 66aa32d Merge pull request #4565 from snyk/fix/skip_gradle_test
  • c194271 fix: temporarily skip failing gradle test
  • 31d2ca8 Merge pull request #4560 from snyk/docs/how_to_build
  • fd58de0 docs: update basic build instructions.
  • c074f6c fix: use printf rather than echo for escaping in cliv2 Makefile (#4559)
  • b51371c Merge pull request #4557 from snyk/feat/bump-nodejs-parser-version-1.49.0
  • 2b27ec2 feat: bump nodejs parser version 1.49.0
  • c83da58 Merge pull request #4555 from snyk/chore/run_smoketests_only_at_11pm_instead_...
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by snyk-admin, a new releaser for snyk since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/atomantic/dotfiles/network/alerts).