Closed dependabot[bot] closed 2 weeks ago
Hey there and thank you for opening this pull request! 👋🏼
We require pull request titles to follow the Conventional Commits specification and it looks like your proposed title needs to be adjusted.
Details:
No release type found in pull request title "Bump the dependencies group across 1 directory with 2 updates". Add a prefix to indicate what kind of release this pull request corresponds to. For reference, see https://www.conventionalcommits.org/
Available types:
- feat: A new feature
- fix: A bug fix
- docs: Documentation only changes
- style: Changes that do not affect the meaning of the code (white-space, formatting, missing semi-colons, etc)
- refactor: A code change that neither fixes a bug nor adds a feature
- perf: A code change that improves performance
- test: Adding missing tests or correcting existing tests
- build: Changes that affect the build system or external dependencies (example scopes: gulp, broccoli, npm)
- ci: Changes to our CI configuration files and scripts (example scopes: Travis, Circle, BrowserStack, SauceLabs)
- chore: Other changes that don't modify src or test files
- revert: Reverts a previous commit
Looks like these dependencies are updatable in another way, so this is no longer needed.
Bumps the dependencies group with 2 updates in the / directory: github/codeql-action and aquasecurity/trivy-action.
Updates
github/codeql-action
from 3.25.6 to 3.25.8Changelog
Sourced from github/codeql-action's changelog.
... (truncated)
Commits
2e230e8
Merge pull request #2323 from github/update-v3.25.8-18b06dd1d66ad891
Update changelog for v3.25.818b06dd
Merge pull request #2322 from github/dependabot/npm_and_yarn/npm-10d82c2911200dd0c
Update checked-in dependencies2bb35ea
bump the npm group with 4 updates9c15e42
Merge pull request #2321 from github/update-bundle/codeql-bundle-v2.17.498e7922
Merge branch 'main' into update-bundle/codeql-bundle-v2.17.4440350b
Add changelog noted4fcc8b
Update default bundle to codeql-bundle-v2.17.4add199b
Merge pull request #2320 from github/angelapwen/use-linked-in-testsUpdates
aquasecurity/trivy-action
from 0.21.0 to 0.22.0Release notes
Sourced from aquasecurity/trivy-action's releases.
Commits
595be6a
Upgrade trivy to v0.52.0 (#364)841fb37
chore(docs): Reference the use of a pinned version (#356)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show