search

keptn / lifecycle-toolkit

Toolkit for cloud-native application lifecycle management
https://keptn.sh
Apache License 2.0
267 stars 111 forks source link

deps: update anchore/sbom-action action to v0.16.0 #3539

Open renovate[bot] opened 1 month ago

renovate[bot] commented 1 month ago

Mend Renovate

This PR contains the following updates:

Package Type Update Change
anchore/sbom-action action minor v0.15.11 -> v0.16.0

[!WARNING] Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

anchore/sbom-action (anchore/sbom-action) ### [`v0.16.0`](https://togithub.com/anchore/sbom-action/releases/tag/v0.16.0): v0.16 [Compare Source](https://togithub.com/anchore/sbom-action/compare/v0.15.11...v0.16.0) #### Changes in v0.16.0 - Update Syft to v1.4.1 ([#​465](https://togithub.com/anchore/sbom-action/issues/465)) - Update GitHub artifact client ([#​463](https://togithub.com/anchore/sbom-action/issues/463)) \[[kzantow](https://togithub.com/kzantow)] NOTE: if you are using this action within a *matrix build* and see failures attempting to upload artifacts with duplicate names, you will need to set the `artifact-name` to be unique based on the matrix properties ([an example here](https://togithub.com/anchore/sbom-action/blob/main/.github/workflows/test.yml#L36)). This is due to a change to use a newer GitHub API which no longer allows artifacts with duplicate names.

Configuration

📅 Schedule: Branch creation - "after 10pm every weekday,before 5am every weekday,every weekend" in timezone Europe/Vienna, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.

sonarcloud[bot] commented 1 month ago

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarCloud

codecov[bot] commented 1 month ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Project coverage is 85.32%. Comparing base (19a0f7c) to head (161995f).

Additional details and impacted files ```diff @@ Coverage Diff @@ ## main #3539 +/- ## ========================================== - Coverage 85.37% 85.32% -0.06% ========================================== Files 167 167 Lines 7414 7414 ========================================== - Hits 6330 6326 -4 - Misses 797 799 +2 - Partials 287 289 +2 ``` [see 2 files with indirect coverage changes](https://app.codecov.io/gh/keptn/lifecycle-toolkit/pull/3539/indirect-changes?src=pr&el=tree-more&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=keptn) | [Flag](https://app.codecov.io/gh/keptn/lifecycle-toolkit/pull/3539/flags?src=pr&el=flags&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=keptn) | Coverage Δ | | |---|---|---| | [certificate-operator](https://app.codecov.io/gh/keptn/lifecycle-toolkit/pull/3539/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=keptn) | `69.23% <ø> (ø)` | | | [component-tests](https://app.codecov.io/gh/keptn/lifecycle-toolkit/pull/3539/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=keptn) | `58.04% <ø> (-0.33%)` | :arrow_down: | | [lifecycle-operator](https://app.codecov.io/gh/keptn/lifecycle-toolkit/pull/3539/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=keptn) | `83.42% <ø> (ø)` | | | [metrics-operator](https://app.codecov.io/gh/keptn/lifecycle-toolkit/pull/3539/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=keptn) | `88.32% <ø> (ø)` | | | [scheduler](https://app.codecov.io/gh/keptn/lifecycle-toolkit/pull/3539/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=keptn) | `34.90% <ø> (ø)` | | Flags with carried forward coverage won't be shown. [Click here](https://docs.codecov.io/docs/carryforward-flags?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=keptn#carryforward-flags-in-the-pull-request-comment) to find out more.
odubajDT commented 4 weeks ago

This version bump requires changes in the release.yaml (see release notes of the newest version)