hugh-mend / WebGoat

WebGoat is a deliberately insecure application
https://owasp.org/www-project-webgoat/
Other
0 stars 0 forks source link

chore(deps): update docker/build-push-action action to v4.2.1 #3

Open mend-for-github-com[bot] opened 1 year ago

mend-for-github-com[bot] commented 1 year ago

This PR contains the following updates:

Package Type Update Change
docker/build-push-action action minor v4.1.1 -> v4.2.1

Release Notes

docker/build-push-action (docker/build-push-action) ### [`v4.2.1`](https://redirect.github.com/docker/build-push-action/releases/tag/v4.2.1) [Compare Source](https://redirect.github.com/docker/build-push-action/compare/v4.2.0...v4.2.1) > **Note** > > Buildx v0.10 enables support for a minimal [SLSA Provenance](https://slsa.dev/provenance/) attestation, which requires support for [OCI-compliant](https://redirect.github.com/opencontainers/image-spec) multi-platform images. This may introduce issues with registry and runtime support (e.g. [Google Cloud Run and AWS Lambda](https://redirect.github.com/docker/buildx/issues/1533)). You can optionally disable the default provenance attestation functionality using `provenance: false`. - warn if docker config can't be parsed by [@​crazy-max](https://redirect.github.com/crazy-max) in [https://github.com/docker/build-push-action/pull/957](https://redirect.github.com/docker/build-push-action/pull/957) **Full Changelog**: https://github.com/docker/build-push-action/compare/v4.2.0...v4.2.1 ### [`v4.2.0`](https://redirect.github.com/docker/build-push-action/releases/tag/v4.2.0) [Compare Source](https://redirect.github.com/docker/build-push-action/compare/v4.1.1...v4.2.0) > **Note** > > Buildx v0.10 enables support for a minimal [SLSA Provenance](https://slsa.dev/provenance/) attestation, which requires support for [OCI-compliant](https://redirect.github.com/opencontainers/image-spec) multi-platform images. This may introduce issues with registry and runtime support (e.g. [Google Cloud Run and AWS Lambda](https://redirect.github.com/docker/buildx/issues/1533)). You can optionally disable the default provenance attestation functionality using `provenance: false`. - display proxy configuration by [@​crazy-max](https://redirect.github.com/crazy-max) in [https://github.com/docker/build-push-action/pull/872](https://redirect.github.com/docker/build-push-action/pull/872) - chore(deps): Bump [@​docker/actions-toolkit](https://redirect.github.com/docker/actions-toolkit) from 0.6.0 to 0.8.0 in [https://github.com/docker/build-push-action/pull/930](https://redirect.github.com/docker/build-push-action/pull/930) - chore(deps): Bump word-wrap from 1.2.3 to 1.2.5 in [https://github.com/docker/build-push-action/pull/925](https://redirect.github.com/docker/build-push-action/pull/925) - chore(deps): Bump semver from 6.3.0 to 6.3.1 in [https://github.com/docker/build-push-action/pull/902](https://redirect.github.com/docker/build-push-action/pull/902) **Full Changelog**: https://github.com/docker/build-push-action/compare/v4.1.1...v4.2.0

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.