Closed dependabot[bot] closed 3 months ago
All modified and coverable lines are covered by tests :white_check_mark:
Project coverage is 88.49%. Comparing base (
6413a43
) to head (bdadd2f
).
:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.
Looks like these dependencies are updatable in another way, so this is no longer needed.
Bumps the github-actions group with 6 updates in the / directory:
2.7.1
2.8.1
4.1.5
4.1.6
3.1.0
3.2.0
4.3.2
4.3.3
2.13.4
3.25.8
4.3.1
4.4.1
Updates
step-security/harden-runner
from 2.7.1 to 2.8.1Release notes
Sourced from step-security/harden-runner's releases.
Commits
17d0e2b
Merge pull request #425 from step-security/rc-9bb112d0
Update isGitHubHosted implementationf4f3f44
Merge pull request #407 from step-security/dependabot/github_actions/actions/...7a946b5
Bump actions/dependency-review-action from 3.1.3 to 4.3.275a01c2
Merge pull request #417 from step-security/dependabot/github_actions/step-sec...53413f1
Bump step-security/harden-runner from 2.7.1 to 2.8.0f086349
Merge pull request #416 from step-security/rc-8b9c325d
Update image808a771
Add info about file and process events7171429
Update agentUpdates
actions/checkout
from 4.1.5 to 4.1.6Release notes
Sourced from actions/checkout's releases.
Changelog
Sourced from actions/checkout's changelog.
... (truncated)
Commits
a5ac7e5
Update for 4.1.6 release (#1733)24ed1a3
Check platform for extension (#1732)Updates
docker/login-action
from 3.1.0 to 3.2.0Release notes
Sourced from docker/login-action's releases.
Commits
0d4c9c5
Merge pull request #722 from crazy-max/update-readmeb29e14f
add contributing section to README218a70c
Merge pull request #721 from docker/dependabot/npm_and_yarn/docker/actions-to...b820080
build(deps): bump@docker/actions-toolkit
from 0.23.0 to 0.24.027530a9
Merge pull request #720 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...d072a60
chore: update generated content7c627b5
build(deps): bump the aws-sdk-dependencies group across 1 directory with 2 up...787cfc6
Merge pull request #694 from docker/dependabot/npm_and_yarn/undici-5.28.48e66e91
chore: update generated content5ba5e97
build(deps): bump undici from 5.28.3 to 5.28.4Updates
actions/dependency-review-action
from 4.3.2 to 4.3.3Release notes
Sourced from actions/dependency-review-action's releases.
Commits
72eb03d
Merge pull request #781 from actions/release-v4.3.3137d8b4
bump to version v4.3.3e6b618e
Merge pull request #767 from actions/max-comment-length3c42649
fix ws for linter8e6ea8d
update packaging1b3d277
post-review: add PR comment full summary test case220872c
Update src/main.ts087d0f8
repackage to update dist4531204
whitespacedf1ca89
appease linterUpdates
github/codeql-action
from 2.13.4 to 3.25.8Release notes
Sourced from github/codeql-action's releases.
... (truncated)
Changelog
Sourced from github/codeql-action's changelog.
... (truncated)
Commits
2e230e8
Merge pull request #2323 from github/update-v3.25.8-18b06dd1d66ad891
Update changelog for v3.25.818b06dd
Merge pull request #2322 from github/dependabot/npm_and_yarn/npm-10d82c2911200dd0c
Update checked-in dependencies2bb35ea
bump the npm group with 4 updates9c15e42
Merge pull request #2321 from github/update-bundle/codeql-bundle-v2.17.498e7922
Merge branch 'main' into update-bundle/codeql-bundle-v2.17.4440350b
Add changelog noted4fcc8b
Update default bundle to codeql-bundle-v2.17.4add199b
Merge pull request #2320 from github/angelapwen/use-linked-in-testsUpdates
codecov/codecov-action
from 4.3.1 to 4.4.1Release notes
Sourced from codecov/codecov-action's releases.
Commits
125fc84
chore(release): 4.4.1 (#1441)c9dbf6a
fix: isPullRequestFromFork returns false for any PR (#1437)59fc46f
build(deps): bump actions/checkout from 4.1.5 to 4.1.6 (#1438)3889fdd
build(deps): bump github/codeql-action from 3.25.4 to 3.25.5 (#1439)d42a336
fix: prevent xlarge from running on forks (#1432)fd624e5
build(deps-dev): bump@typescript-eslint/eslint-plugin
from 7.8.0 to 7.9.0 (#...6d79887
chore(release): 4.4.0 (#1430)37364fa
build(deps-dev): bump@typescript-eslint/parser
from 7.8.0 to 7.9.0 (#1428)2791a5c
fix: remove GPG and run on spawn (#1426)b71af43
build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 (#1420)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show