search

dedsxc / unixbot

Unixporn Twitter bot
MIT License
18 stars 0 forks source link

chore(deps): update github-action (major) #26

Closed dedsxc[bot] closed 3 weeks ago

dedsxc[bot] commented 3 weeks ago

This PR contains the following updates:

Package Type Update Change
docker/login-action action major v1 -> v3
docker/setup-buildx-action action major v2 -> v3
peter-evans/create-or-update-comment action major v3 -> v4

Release Notes

docker/login-action (docker/login-action) ### [`v3`](https://togithub.com/docker/login-action/compare/v2...v3) [Compare Source](https://togithub.com/docker/login-action/compare/v2...v3) ### [`v2`](https://togithub.com/docker/login-action/compare/v1...v2) [Compare Source](https://togithub.com/docker/login-action/compare/v1...v2)
docker/setup-buildx-action (docker/setup-buildx-action) ### [`v3`](https://togithub.com/docker/setup-buildx-action/compare/v2...v3) [Compare Source](https://togithub.com/docker/setup-buildx-action/compare/v2...v3)
peter-evans/create-or-update-comment (peter-evans/create-or-update-comment) ### [`v4`](https://togithub.com/peter-evans/create-or-update-comment/compare/v3...v4) [Compare Source](https://togithub.com/peter-evans/create-or-update-comment/compare/v3...v4)

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

This PR has been generated by Renovate Bot.

dedsxc[bot] commented 3 weeks ago

Target ghcr.io/dedsxc/unixbot:pr-26 (alpine 3.17.6)

Vulnerabilities (26)

Package ID Severity Installed Version Fixed Version
busybox CVE-2023-42363 MEDIUM 1.35.0-r29 1.35.0-r31
busybox CVE-2023-42364 MEDIUM 1.35.0-r29 1.35.0-r31
busybox CVE-2023-42365 MEDIUM 1.35.0-r29 1.35.0-r31
busybox CVE-2023-42366 MEDIUM 1.35.0-r29 1.35.0-r30
busybox-binsh CVE-2023-42363 MEDIUM 1.35.0-r29 1.35.0-r31
busybox-binsh CVE-2023-42364 MEDIUM 1.35.0-r29 1.35.0-r31
busybox-binsh CVE-2023-42365 MEDIUM 1.35.0-r29 1.35.0-r31
busybox-binsh CVE-2023-42366 MEDIUM 1.35.0-r29 1.35.0-r30
libcrypto3 CVE-2023-6129 MEDIUM 3.0.12-r1 3.0.12-r2
libcrypto3 CVE-2023-6237 MEDIUM 3.0.12-r1 3.0.12-r3
libcrypto3 CVE-2024-0727 MEDIUM 3.0.12-r1 3.0.12-r4
libcrypto3 CVE-2024-4603 MEDIUM 3.0.12-r1 3.0.13-r0
libcrypto3 CVE-2024-2511 LOW 3.0.12-r1 3.0.12-r5
libexpat CVE-2023-52425 HIGH 2.5.0-r0 2.6.0-r0
libexpat CVE-2024-28757 HIGH 2.5.0-r0 2.6.2-r0
libexpat CVE-2023-52426 MEDIUM 2.5.0-r0 2.6.0-r0
libssl3 CVE-2023-6129 MEDIUM 3.0.12-r1 3.0.12-r2
libssl3 CVE-2023-6237 MEDIUM 3.0.12-r1 3.0.12-r3
libssl3 CVE-2024-0727 MEDIUM 3.0.12-r1 3.0.12-r4
libssl3 CVE-2024-4603 MEDIUM 3.0.12-r1 3.0.13-r0
libssl3 CVE-2024-2511 LOW 3.0.12-r1 3.0.12-r5
sqlite-libs CVE-2023-7104 HIGH 3.40.1-r0 3.40.1-r1
ssl_client CVE-2023-42363 MEDIUM 1.35.0-r29 1.35.0-r31
ssl_client CVE-2023-42364 MEDIUM 1.35.0-r29 1.35.0-r31
ssl_client CVE-2023-42365 MEDIUM 1.35.0-r29 1.35.0-r31
ssl_client CVE-2023-42366 MEDIUM 1.35.0-r29 1.35.0-r30

No Misconfigurations found

Target Python

Vulnerabilities (1)

Package ID Severity Installed Version Fixed Version
pip CVE-2023-5752 MEDIUM 23.2.1 23.3

No Misconfigurations found