chore(deps): bump the actions group across 1 directory with 9 updates

[dependabot[bot]]

Bumps the actions group with 9 updates in the / directory:

Package	From	To
actions/checkout	2	4
docker/login-action	2	3
docker/build-push-action	4	6
actions/setup-go	3	5
actions/github-script	6	7
coursier/cache-action	6.4.5	6.4.6
golangci/golangci-lint-action	5	6
anchore/sbom-action	0.15.10	0.16.0
goreleaser/goreleaser-action	5	6

Updates actions/checkout from 2 to 4

Release notes

Sourced from actions/checkout's releases.

v4.0.0

What's Changed

• Update default runtime to node20 by @​takost in actions/checkout#1436
• Support fetching without the --progress option by @​simonbaird in actions/checkout#1067
• Release 4.0.0 by @​takost in actions/checkout#1447

New Contributors

• @​takost made their first contribution in actions/checkout#1436
• @​simonbaird made their first contribution in actions/checkout#1067

Full Changelog: https://github.com/actions/checkout/compare/v3...v4.0.0

v3.6.0

What's Changed

• Mark test scripts with Bash'isms to be run via Bash by @​dscho in actions/checkout#1377
• Add option to fetch tags even if fetch-depth > 0 by @​RobertWieczoreck in actions/checkout#579
• Release 3.6.0 by @​luketomlinson in actions/checkout#1437

New Contributors

• @​RobertWieczoreck made their first contribution in actions/checkout#579
• @​luketomlinson made their first contribution in actions/checkout#1437

Full Changelog: https://github.com/actions/checkout/compare/v3.5.3...v3.6.0

v3.5.3

What's Changed

• Fix: Checkout Issue in self hosted runner due to faulty submodule check-ins by @​megamanics in actions/checkout#1196
• Fix typos found by codespell by @​DimitriPapadopoulos in actions/checkout#1287
• Add support for sparse checkouts by @​dscho and @​dfdez in actions/checkout#1369
• Release v3.5.3 by @​TingluoHuang in actions/checkout#1376

New Contributors

• @​megamanics made their first contribution in actions/checkout#1196
• @​DimitriPapadopoulos made their first contribution in actions/checkout#1287
• @​dfdez made their first contribution in actions/checkout#1369

Full Changelog: https://github.com/actions/checkout/compare/v3...v3.5.3

v3.5.2

What's Changed

• Fix: Use correct API url / endpoint in GHES by @​fhammerl in actions/checkout#1289 based on #1286 by @​1newsr

Full Changelog: https://github.com/actions/checkout/compare/v3.5.1...v3.5.2

v3.5.1

What's Changed

• Improve checkout performance on Windows runners by upgrading @​actions/github dependency by @​BrettDong in actions/checkout#1246

New Contributors

• @​BrettDong made their first contribution in actions/checkout#1246

... (truncated)

Changelog

Sourced from actions/checkout's changelog.

Changelog

v4.1.7

• Bump the minor-npm-dependencies group across 1 directory with 4 updates by @​dependabot in actions/checkout#1739
• Bump actions/checkout from 3 to 4 by @​dependabot in actions/checkout#1697
• Check out other refs/* by commit by @​orhantoy in actions/checkout#1774
• Pin actions/checkout's own workflows to a known, good, stable version. by @​jww3 in actions/checkout#1776

v4.1.6

• Check platform to set archive extension appropriately by @​cory-miller in actions/checkout#1732

v4.1.5

• Update NPM dependencies by @​cory-miller in actions/checkout#1703
• Bump github/codeql-action from 2 to 3 by @​dependabot in actions/checkout#1694
• Bump actions/setup-node from 1 to 4 by @​dependabot in actions/checkout#1696
• Bump actions/upload-artifact from 2 to 4 by @​dependabot in actions/checkout#1695
• README: Suggest user.email to be 41898282+github-actions[bot]@users.noreply.github.com by @​cory-miller in actions/checkout#1707

v4.1.4

• Disable extensions.worktreeConfig when disabling sparse-checkout by @​jww3 in actions/checkout#1692
• Add dependabot config by @​cory-miller in actions/checkout#1688
• Bump the minor-actions-dependencies group with 2 updates by @​dependabot in actions/checkout#1693
• Bump word-wrap from 1.2.3 to 1.2.5 by @​dependabot in actions/checkout#1643

v4.1.3

• Check git version before attempting to disable sparse-checkout by @​jww3 in actions/checkout#1656
• Add SSH user parameter by @​cory-miller in actions/checkout#1685
• Update actions/checkout version in update-main-version.yml by @​jww3 in actions/checkout#1650

v4.1.2

• Fix: Disable sparse checkout whenever sparse-checkout option is not present @​dscho in actions/checkout#1598

v4.1.1

• Correct link to GitHub Docs by @​peterbe in actions/checkout#1511
• Link to release page from what's new section by @​cory-miller in actions/checkout#1514

v4.1.0

• Add support for partial checkout filters

v4.0.0

• Support fetching without the --progress option
• Update to node20

v3.6.0

• Fix: Mark test scripts with Bash'isms to be run via Bash
• Add option to fetch tags even if fetch-depth > 0

v3.5.3

• Fix: Checkout fail in self-hosted runners when faulty submodule are checked-in
• Fix typos found by codespell

... (truncated)

Commits

• 692973e Prepare 4.1.7 release (#1775)
• 6ccd57f Pin actions/checkout's own workflows to a known, good, stable version. (#1776)
• b17fe1e Handle hidden refs (#1774)
• b80ff79 Bump actions/checkout from 3 to 4 (#1697)
• b1ec302 Bump the minor-npm-dependencies group across 1 directory with 4 updates (#1739)
• a5ac7e5 Update for 4.1.6 release (#1733)
• 24ed1a3 Check platform for extension (#1732)
• 44c2b7a README: Suggest user.email to be `41898282+github-actions[bot]@​users.norepl...
• 8459bc0 Bump actions/upload-artifact from 2 to 4 (#1695)
• 3f603f6 Bump actions/setup-node from 1 to 4 (#1696)
• Additional commits viewable in compare view

Updates docker/login-action from 2 to 3

Release notes

Sourced from docker/login-action's releases.

v3.0.0

• Node 20 as default runtime (requires Actions Runner v2.308.0 or later) by @​crazy-max in docker/login-action#593
• Bump @​actions/core from 1.10.0 to 1.10.1 in docker/login-action#598
• Bump @​aws-sdk/client-ecr and @​aws-sdk/client-ecr-public to 3.410.0 in docker/login-action#555 docker/login-action#560 docker/login-action#582 docker/login-action#599
• Bump semver from 6.3.0 to 6.3.1 in docker/login-action#556
• Bump https-proxy-agent to 7.0.2 docker/login-action#561 docker/login-action#588

Full Changelog: https://github.com/docker/login-action/compare/v2.2.0...v3.0.0

v2.2.0

• Switch to actions-toolkit implementation by @​crazy-max in docker/login-action#409 docker/login-action#470 docker/login-action#476
• Bump @​aws-sdk/client-ecr and @​aws-sdk/client-ecr-public to 3.347.1 in docker/login-action#524 docker/login-action#364 docker/login-action#363
• Bump minimatch from 3.0.4 to 3.1.2 in docker/login-action#354
• Bump json5 from 2.2.0 to 2.2.3 in docker/login-action#378
• Bump http-proxy-agent from 5.0.0 to 7.0.0 in docker/login-action#509
• Bump https-proxy-agent from 5.0.1 to 7.0.0 in docker/login-action#508

Full Changelog: https://github.com/docker/login-action/compare/v2.1.0...v2.2.0

v2.1.0

• Ensure AWS temp credentials are redacted in workflow logs by @​crazy-max (#275)
• Bump @​actions/core from 1.6.0 to 1.10.0 (#252 #292)
• Bump @​aws-sdk/client-ecr from 3.53.0 to 3.186.0 (#298)
• Bump @​aws-sdk/client-ecr-public from 3.53.0 to 3.186.0 (#299)

Full Changelog: https://github.com/docker/login-action/compare/v2.0.0...v2.1.0

Commits

• 0d4c9c5 Merge pull request #722 from crazy-max/update-readme
• b29e14f add contributing section to README
• 218a70c Merge pull request #721 from docker/dependabot/npm_and_yarn/docker/actions-to...
• b820080 build(deps): bump @​docker/actions-toolkit from 0.23.0 to 0.24.0
• 27530a9 Merge pull request #720 from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...
• d072a60 chore: update generated content
• 7c627b5 build(deps): bump the aws-sdk-dependencies group across 1 directory with 2 up...
• 787cfc6 Merge pull request #694 from docker/dependabot/npm_and_yarn/undici-5.28.4
• 8e66e91 chore: update generated content
• 5ba5e97 build(deps): bump undici from 5.28.3 to 5.28.4
• Additional commits viewable in compare view

Updates docker/build-push-action from 4 to 6

Release notes

Sourced from docker/build-push-action's releases.

v6.0.0

• Export build record and generate build summary by @​crazy-max in docker/build-push-action#1120
• Bump @​docker/actions-toolkit from 0.24.0 to 0.26.0 in docker/build-push-action#1132 docker/build-push-action#1136 docker/build-push-action#1138
• Bump braces from 3.0.2 to 3.0.3 in docker/build-push-action#1137

[!NOTE] This major release adds support for generating Build summary and exporting build record for your build. You can disable this feature by setting DOCKER_BUILD_NO_SUMMARY: true environment variable in your workflow.

Full Changelog: https://github.com/docker/build-push-action/compare/v5.4.0...v6.0.0

v5.4.0

• Show builder information before building by @​crazy-max in docker/build-push-action#1128
• Handle attestations correctly with provenance and sbom inputs by @​crazy-max in docker/build-push-action#1086
• Bump @​docker/actions-toolkit from 0.19.0 to 0.24.0 in docker/build-push-action#1088 docker/build-push-action#1105 docker/build-push-action#1121 docker/build-push-action#1127
• Bump undici from 5.28.3 to 5.28.4 in docker/build-push-action#1090

Full Changelog: https://github.com/docker/build-push-action/compare/v5.3.0...v5.4.0

v5.3.0

• Bump @​docker/actions-toolkit from 0.18.0 to 0.19.0 in docker/build-push-action#1080

Full Changelog: https://github.com/docker/build-push-action/compare/v5.2.0...v5.3.0

v5.2.0

• Disable quotes detection for outputs input by @​crazy-max in docker/build-push-action#1074
• Warn about ignored inputs by @​favonia in docker/build-push-action#1019
• Bump @​docker/actions-toolkit from 0.14.0 to 0.18.0 in docker/build-push-action#1070
• Bump undici from 5.26.3 to 5.28.3 in docker/build-push-action#1057

Full Changelog: https://github.com/docker/build-push-action/compare/v5.1.0...v5.2.0

v5.1.0

• Add annotations input by @​crazy-max in docker/build-push-action#992
• Add secret-envs input by @​elias-lundgren in docker/build-push-action#980
• Bump @​babel/traverse from 7.17.3 to 7.23.2 in docker/build-push-action#991
• Bump @​docker/actions-toolkit from 0.13.0-rc.1 to 0.14.0 in docker/build-push-action#990 docker/build-push-action#1006

Full Changelog: https://github.com/docker/build-push-action/compare/v5.0.0...v5.1.0

v5.0.0

• Node 20 as default runtime (requires Actions Runner v2.308.0 or later) by @​crazy-max in docker/build-push-action#954
• Bump @​actions/core from 1.10.0 to 1.10.1 in docker/build-push-action#959

Full Changelog: https://github.com/docker/build-push-action/compare/v4.2.1...v5.0.0

v4.2.1

Note

Buildx v0.10 enables support for a minimal SLSA Provenance attestation, which requires support for OCI-compliant multi-platform images. This may introduce issues with registry and runtime support (e.g. Google Cloud Run and AWS Lambda). You can optionally disable the default provenance attestation functionality using provenance: false.

... (truncated)

Commits

• 94f8f8c Merge pull request #1142 from docker/dependabot/npm_and_yarn/docker/actions-t...
• 22f4433 chore: update generated content
• 6721c56 chore(deps): Bump @​docker/actions-toolkit from 0.26.0 to 0.26.1
• 4367da9 Merge pull request #1140 from docker/dependabot/github_actions/docker/bake-ac...
• 0883ebe Merge pull request #1139 from crazy-max/bump-major
• 76e5c2d chore(deps): Bump docker/bake-action from 4 to 5
• 29d6782 docs: bump actions to latest major
• c382f71 Merge pull request #1120 from crazy-max/build-summary
• 5a5b70d chore: update generated content
• dc24cf9 don't generate summary for cloud driver
• Additional commits viewable in compare view

Updates actions/setup-go from 3 to 5

Release notes

Sourced from actions/setup-go's releases.

v5.0.0

What's Changed

In scope of this release, we change Nodejs runtime from node16 to node20 (actions/setup-go#421). Moreover, we update some dependencies to the latest versions (actions/setup-go#445).

Besides, this release contains such changes as:

• Fix hosted tool cache usage on windows by @​galargh in actions/setup-go#411
• Improve documentation regarding dependencies caching by @​artemgavrilov in actions/setup-go#417

New Contributors

• @​galargh made their first contribution in actions/setup-go#411
• @​artemgavrilov made their first contribution in actions/setup-go#417
• @​chenrui333 made their first contribution in actions/setup-go#421

Full Changelog: https://github.com/actions/setup-go/compare/v4...v5.0.0

v4.1.0

What's Changed

In scope of this release, slow installation on Windows was fixed by @​dsame in actions/setup-go#393 and OS version was added to primaryKey for Ubuntu runners to avoid conflicts (actions/setup-go#383)

This release also includes the following changes:

• Remove implicit dependencies by @​nikolai-laevskii in actions/setup-go#378
• Update action.yml by @​mkelly in actions/setup-go#379
• Added a description that go-version should be specified as a string type by @​n3xem in actions/setup-go#367
• Add note about YAML parsing versions by @​dmitry-shibanov in actions/setup-go#382
• Automatic update of configuration files from 05/23/2023 by @​github-actions in actions/setup-go#377
• Bump tough-cookie and @​azure/ms-rest-js by @​dependabot in actions/setup-go#392
• Bump word-wrap from 1.2.3 to 1.2.4 by @​dependabot in actions/setup-go#397
• Bump semver from 6.3.0 to 6.3.1 by @​dependabot in actions/setup-go#396

New Contributors

• @​mkelly made their first contribution in actions/setup-go#379
• @​n3xem made their first contribution in actions/setup-go#367

Full Changelog: https://github.com/actions/setup-go/compare/v4...v4.1.0

v4.0.1

What's Changed

• Update documentation for v4 by @​dsame in actions/setup-go#354
• Fix glob bug in the package.json scripts section by @​IvanZosimov in actions/setup-go#359
• Bump xml2js dependency by @​dmitry-shibanov in actions/setup-go#370
• Bump @actions/cache dependency to v3.2.1 by @​nikolai-laevskii in actions/setup-go#374

New Contributors

• @​nikolai-laevskii made their first contribution in actions/setup-go#374

Full Changelog: https://github.com/actions/setup-go/compare/v4...v4.0.1

v4.0.0

In scope of release we enable cache by default. The action won’t throw an error if the cache can’t be restored or saved. The action will throw a warning message but it won’t stop a build process. The cache can be disabled by specifying cache: false.

</tr></table> 

... (truncated)

Commits

• cdcb360 Remove the description of the old go.mod specification (#458)
• 99176a8 Update README.md with V5 release notes (#459)
• be1aa11 Bump undici from 5.28.2 to 5.28.3 (#465)
• 6c1fd22 docs: bump actions/setup-go to v5 (#449)
• 0c52d54 Update dependencies for node20 (#445)
• bfd2fb3 Merge pull request #421 from chenrui333/node20-runtime
• 3d65fa5 feat: bump to use actions/checkout@v4
• 8a505c9 feat: bump to use node20 runtime
• 883490d Merge pull request #417 from artemgavrilov/main
• d45ebba Rephrase sentence
• Additional commits viewable in compare view

Updates actions/github-script from 6 to 7

Release notes

Sourced from actions/github-script's releases.

v7.0.0

What's Changed

• Add base-url option by @​robandpdx in actions/github-script#429
• Expose async-function argument type by @​viktorlott in actions/github-script#402, see for details https://github.com/actions/github-script#use-scripts-with-jsdoc-support
• Update dependencies and use Node 20 by @​joshmgross in actions/github-script#425

New Contributors

• @​navarroaxel made their first contribution in actions/github-script#285
• @​robandpdx made their first contribution in actions/github-script#429
• @​viktorlott made their first contribution in actions/github-script#402

Full Changelog: https://github.com/actions/github-script/compare/v6.4.1...v7.0.0

v6.4.1

What's Changed

• Add @​octokit/plugin-request-log, to produce debug output for requests by @​mjpieters in actions/github-script#358
• fix input handling by @​mjpieters in actions/github-script#357
• Remove unused dependencies by @​mjpieters in actions/github-script#356
• Default debug to current runner debug state by @​mjpieters in actions/github-script#363

New Contributors

• @​mjpieters made their first contribution in actions/github-script#358

Full Changelog: https://github.com/actions/github-script/compare/v6.4.0...v6.4.1

v6.4.0

What's Changed

• Bump json5 from 2.1.3 to 2.2.3 by @​dependabot in actions/github-script#319
• Bump minimatch from 3.0.4 to 3.1.2 by @​dependabot in actions/github-script#320
• Add node-fetch by @​danmichaelo in actions/github-script#321

New Contributors

• @​jongwooo made their first contribution in actions/github-script#313
• @​austinvazquez made their first contribution in actions/github-script#306
• @​danmichaelo made their first contribution in actions/github-script#321

Full Changelog: https://github.com/actions/github-script/compare/v6.3.3...v6.4.0

v6.3.3

What's Changed

• Update @actions/glob to 0.3.0 by @​nineinchnick in actions/github-script#279

New Contributors

• @​nineinchnick made their first contribution in actions/github-script#279

Full Changelog: https://github.com/actions/github-script/compare/v6.3.2...v6.3.3

v6.3.2

What's Changed

• Update @​actions/core to 1.10.0 by @​rentziass in actions/github-script#295

... (truncated)

Commits

• 60a0d83 Merge pull request #440 from actions/joshmgross/v7.0.1
• b7fb200 Update version to 7.0.1
• 12e22ed Merge pull request #439 from actions/joshmgross/avoid-setting-base-url
• d319f8f Avoid setting baseUrl to undefined when input is not provided
• e69ef54 Merge pull request #425 from actions/joshmgross/node-20
• ee0914b Update licenses
• d6fc56f Use @types/node for Node 20
• 384d6cf Fix quotations in tests
• 8472492 Only validate GraphQL previews
• 84903f5 Remove node-fetch from type
• Additional commits viewable in compare view

Updates coursier/cache-action from 6.4.5 to 6.4.6

Release notes

Sourced from coursier/cache-action's releases.

v6.4.6

What's Changed

• fix: explicit termination in the post-step by @​laughedelic in coursier/cache-action#598

Updates / maintenance

• Bump @​actions/core from 1.10.0 to 1.10.1 by @​dependabot in coursier/cache-action#569
• Bump peter-evans/create-pull-request from 5 to 6 by @​dependabot in coursier/cache-action#571
• Bump prettier from 3.2.4 to 3.2.5 by @​dependabot in coursier/cache-action#572
• Bump @​typescript-eslint/eslint-plugin from 6.19.1 to 7.0.0 by @​dependabot in coursier/cache-action#576
• Bump @​actions/cache from 3.2.2 to 3.2.4 by @​dependabot in coursier/cache-action#570
• Bump @​types/node from 20.9.0 to 20.11.29 by @​dependabot in coursier/cache-action#585
• Update dist by @​github-actions in coursier/cache-action#584
• Update checkout version in README.md by @​cptwunderlich in coursier/cache-action#574
• Bump eslint from 8.56.0 to 8.57.0 by @​dependabot in coursier/cache-action#587
• Bump @​types/node from 20.11.29 to 20.12.4 by @​dependabot in coursier/cache-action#596
• Bump typescript from 5.3.3 to 5.4.4 by @​dependabot in coursier/cache-action#597
• Bump eslint-plugin-github from 4.10.1 to 4.10.2 by @​dependabot in coursier/cache-action#589
• Update dist by @​github-actions in coursier/cache-action#599

New Contributors

• @​cptwunderlich made their first contribution in coursier/cache-action#574
• @​laughedelic made their first contribution in coursier/cache-action#598

Full Changelog: https://github.com/coursier/cache-action/compare/v6.4.5...v6.4.6

Commits

• 142d273 Update dist (#599)
• 9129103 Bump eslint-plugin-github from 4.10.1 to 4.10.2 (#589)
• d95d61e Bump typescript from 5.3.3 to 5.4.4 (#597)
• 5743260 Bump @​types/node from 20.11.29 to 20.12.4 (#596)
• 2dea3cc Bump eslint from 8.56.0 to 8.57.0 (#587)
• 1f647d4 fix dangling post-save (#598)
• 0938be4 Update checkout version in README.md (#574)
• 9ae081f Update dist (#584)
• 85bd3d7 Bump @​types/node from 20.9.0 to 20.11.29 (#585)
• c28cb85 Bump @​actions/cache from 3.2.2 to 3.2.4 (#570)
• Additional commits viewable in compare view

Updates golangci/golangci-lint-action from 5 to 6

Release notes

Sourced from golangci/golangci-lint-action's releases.

v6.0.0

What's Changed

This version removes annotations option (because it was useless), and removes the default output format (github-actions). The annotations are still produced but with another approach.

Changes

• feat: rewrite format handling by @​ldez in golangci/golangci-lint-action#1038

Dependencies

• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.7.1 to 7.8.0 by @​dependabot in golangci/golangci-lint-action#1034
• build(deps): bump @​types/node from 20.12.7 to 20.12.8 by @​dependabot in golangci/golangci-lint-action#1036
• build(deps-dev): bump @​typescript-eslint/parser from 7.7.1 to 7.8.0 by @​dependabot in golangci/golangci-lint-action#1035

Full Changelog: https://github.com/golangci/golangci-lint-action/compare/v5.3.0...v6.0.0

v5.3.0

What's Changed

Changes

• feat: uses 2 dots compare syntax for push diff by @​ldez in golangci/golangci-lint-action#1030
• feat: add option to control cache invalidation interval by @​ldez in golangci/golangci-lint-action#1031
• feat: use OS and working-directory as cache key by @​ldez in golangci/golangci-lint-action#1032
• feat: improve log about pwd/cwd by @​ldez in golangci/golangci-lint-action#1033

Full Changelog: https://github.com/golangci/golangci-lint-action/compare/v5.2.0...v5.3.0

v5.2.0

What's Changed

Changes

• feat: add an option to enable/disable annotations by @​ldez

Full Changelog: https://github.com/golangci/golangci-lint-action/compare/v5.1.0...v5.2.0

v5.1.0

What's Changed

Changes

• feat: support for pull and merge_group events with the option only-new-issues by @​ldez in golangci/golangci-lint-action#1029

Dependencies

• build(deps-dev): bump @​typescript-eslint/parser from 7.7.0 to 7.7.1 by @​dependabot in golangci/golangci-lint-action#1027
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.7.0 to 7.7.1 by @​dependabot in golangci/golangci-lint-action#1028

... (truncated)

Commits

• a4f60bb fix: use 3-dots syntax for diff on push (#1040)
• 5815a4b doc: improve readme
• 23faadf doc: improve readme
• b556f25 doc: improve readme
• 789f114 feat: rewrite format handling (#1038)
• d36b91c build(deps-dev): bump @​typescript-eslint/parser from 7.7.1 to 7.8.0 (#1035)
• a9eb115 build(deps): bump @​types/node from 20.12.7 to 20.12.8 (#1036)
• bd4fa7c build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.7.1 to 7.8.0 (#...
• See full diff in compare view

Updates anchore/sbom-action from 0.15.10 to 0.16.0

Release notes

Sourced from anchore/sbom-action's releases.

v0.16

Changes in v0.16.0

• Update Syft to v1.4.1 (#465)
• Update GitHub artifact client (#463) [kzantow]

NOTE: if you are using this action within a matrix build and see failures attempting to upload artifacts with duplicate names, you will need to set the artifact-name to be unique based on the matrix properties (an example here). This is due to a change to use a newer GitHub API which no longer allows artifacts with duplicate names.

v0.15.11

Changes in v0.15.11

• chore(deps): update Syft to v1.3.0 (#456) [anchore-actions-token-generator]
• chore: remove outdated snapshot workflow (#457) [spiffcs]
• fix: don't pass in a separate env. This makes it impossible to pass env vars via the action context to syft. (#455) [iNoahNothing]

Commits

• e8d2a69 chore(deps): update Syft to v1.4.1 (#465)
• 610bea4 chore: update GitHub artifact client (#463)
• 0445e23 chore(deps): bump actions/checkout from 4.1.4 to 4.1.5 (#464)
• a66e2f3 chore(deps): bump actions/checkout from 4.1.2 to 4.1.4 (#461)
• 1abd786 chore(deps): bump peter-evans/create-pull-request from 6.0.2 to 6.0.5 (#462)
• 7ccf588 chore(deps): update Syft t... _Description has been truncated_

[dependabot[bot]]

The following labels could not be found: github_actions.

[codecov[bot]]

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Project coverage is 54.70%. Comparing base (eef0039) to head (ca8f815).

Additional details and impacted files

```diff @@ Coverage Diff @@ ## master #2396 +/- ## ========================================== + Coverage 54.68% 54.70% +0.02% ========================================== Files 582 582 Lines 78330 78398 +68 ========================================== + Hits 42838 42891 +53 - Misses 32285 32299 +14 - Partials 3207 3208 +1 ``` | [Flag](https://app.codecov.io/gh/gnolang/gno/pull/2396/flags?src=pr&el=flags&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=gnolang) | Coverage Δ | | |---|---|---| | [contribs/gnodev](https://app.codecov.io/gh/gnolang/gno/pull/2396/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=gnolang) | `23.81% <ø> (ø)` | | | [contribs/gnofaucet](https://app.codecov.io/gh/gnolang/gno/pull/2396/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=gnolang) | `14.46% <ø> (-0.86%)` | :arrow_down: | | [contribs/gnokeykc](https://app.codecov.io/gh/gnolang/gno/pull/2396/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=gnolang) | `0.00% <ø> (ø)` | | | [contribs/gnomd](https://app.codecov.io/gh/gnolang/gno/pull/2396/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=gnolang) | `0.00% <ø> (ø)` | | | [gnovm](https://app.codecov.io/gh/gnolang/gno/pull/2396/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=gnolang) | `59.96% <ø> (+0.04%)` | :arrow_up: | | [misc/autocounterd](https://app.codecov.io/gh/gnolang/gno/pull/2396/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=gnolang) | `0.00% <ø> (ø)` | | | [misc/genproto](https://app.codecov.io/gh/gnolang/gno/pull/2396/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=gnolang) | `0.00% <ø> (ø)` | | | [misc/genstd](https://app.codecov.io/gh/gnolang/gno/pull/2396/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=gnolang) | `73.90% <ø> (ø)` | | | [misc/goscan](https://app.codecov.io/gh/gnolang/gno/pull/2396/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=gnolang) | `0.00% <ø> (ø)` | | | [misc/logos](https://app.codecov.io/gh/gnolang/gno/pull/2396/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=gnolang) | `17.68% <ø> (ø)` | | | [misc/loop](https://app.codecov.io/gh/gnolang/gno/pull/2396/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=gnolang) | `0.00% <ø> (ø)` | | | [tm2](https://app.codecov.io/gh/gnolang/gno/pull/2396/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=gnolang) | `54.47% <ø> (+0.09%)` | :arrow_up: | Flags with carried forward coverage won't be shown. [Click here](https://docs.codecov.io/docs/carryforward-flags?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=gnolang#carryforward-flags-in-the-pull-request-comment) to find out more.

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.