search

derberg / manage-files-in-multiple-repositories

GitHub Action that introduces support for global workflows. Global workflows are the one you update in just one repo and they are automatically updated in other repositories.
MIT License
53 stars 19 forks source link

Run dependency updates to fix issues with vulnerable packages #52

Open rajbos opened 1 year ago

rajbos commented 1 year ago

Hi, an internal user requested to use this action so I have run our standard security scan on this action. It found 14 dependency issues, most of them in simple-git, which already has version 3.19.1 available.

If you enable Dependabot version updates (and / or security updates), you'll get new Pull Requests for these updates automatically. If you need help with it, please let me know, I use it a lot.

Could the dependencies please be updated to their latest version so that we can on-board the action for our users?

@derberg

derberg commented 1 year ago

@rajbos hey, done but with simple-git - it had a major release, I need to do some manual tests before I merge and release