Closed renovate[bot] closed 4 months ago
Descriptor | Linter | Files | Fixed | Errors | Elapsed time |
---|---|---|---|---|---|
β ACTION | actionlint | 4 | 0 | 0.1s | |
β DOCKERFILE | hadolint | 2 | 0 | 0.1s | |
β EDITORCONFIG | editorconfig-checker | 66 | 0 | 0.27s | |
β GROOVY | npm-groovy-lint | 2 | 0 | 8.8s | |
β JAVA | checkstyle | 18 | 0 | 4.45s | |
β JSON | jsonlint | 5 | 0 | 0.25s | |
β JSON | prettier | 5 | 0 | 2.06s | |
β JSON | v8r | 5 | 0 | 3.87s | |
β MARKDOWN | markdownlint | 2 | 0 | 0.73s | |
β PYTHON | bandit | 1 | 0 | 0.92s | |
β PYTHON | black | 1 | 0 | 0.63s | |
β PYTHON | flake8 | 1 | 0 | 0.42s | |
β PYTHON | isort | 1 | 0 | 0.39s | |
β PYTHON | mypy | 1 | 0 | 8.05s | |
β PYTHON | ruff | 1 | 0 | 0.06s | |
β REPOSITORY | checkov | yes | no | 16.19s | |
β REPOSITORY | gitleaks | yes | no | 1.22s | |
β REPOSITORY | git_diff | yes | no | 0.05s | |
β REPOSITORY | grype | yes | no | 14.26s | |
β REPOSITORY | kics | yes | no | 5.06s | |
β REPOSITORY | secretlint | yes | no | 1.15s | |
β REPOSITORY | syft | yes | no | 2.78s | |
β REPOSITORY | trivy | yes | no | 8.0s | |
β REPOSITORY | trivy-sbom | yes | no | 6.65s | |
β REPOSITORY | trufflehog | yes | no | 3.77s | |
β SQL | sql-lint | 1 | 0 | 0.29s | |
β XML | xmllint | 1 | 0 | 0.01s | |
β YAML | prettier | 17 | 0 | 1.31s | |
β YAML | yamllint | 17 | 0 | 0.47s |
See detailed report in MegaLinter reports
You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.
ghcr.io/miracum/fhir-gateway:pr-146 (debian 12.5)
Package | ID | Severity | Installed Version | Fixed Version |
---|---|---|---|---|
libc6 |
CVE-2024-33599 | HIGH | 2.36-9+deb12u6 | |
libc6 |
CVE-2024-33600 | MEDIUM | 2.36-9+deb12u6 | |
libc6 |
CVE-2024-33601 | MEDIUM | 2.36-9+deb12u6 | |
libc6 |
CVE-2024-33602 | MEDIUM | 2.36-9+deb12u6 | |
libc6 |
CVE-2010-4756 | LOW | 2.36-9+deb12u6 | |
libc6 |
CVE-2018-20796 | LOW | 2.36-9+deb12u6 | |
libc6 |
CVE-2019-1010022 | LOW | 2.36-9+deb12u6 | |
libc6 |
CVE-2019-1010023 | LOW | 2.36-9+deb12u6 | |
libc6 |
CVE-2019-1010024 | LOW | 2.36-9+deb12u6 | |
libc6 |
CVE-2019-1010025 | LOW | 2.36-9+deb12u6 | |
libc6 |
CVE-2019-9192 | LOW | 2.36-9+deb12u6 | |
libexpat1 |
CVE-2023-52425 | HIGH | 2.5.0-1 | |
libexpat1 |
CVE-2023-52426 | LOW | 2.5.0-1 | |
libexpat1 |
CVE-2024-28757 | LOW | 2.5.0-1 | |
libgcc-s1 |
CVE-2023-4039 | MEDIUM | 12.2.0-14 | |
libgcc-s1 |
CVE-2022-27943 | LOW | 12.2.0-14 | |
libpng16-16 |
CVE-2021-4214 | LOW | 1.6.39-2 | |
libstdc++6 |
CVE-2023-4039 | MEDIUM | 12.2.0-14 | |
libstdc++6 |
CVE-2022-27943 | LOW | 12.2.0-14 | |
libuuid1 |
CVE-2022-0563 | LOW | 2.38.1-5+deb12u1 | |
zlib1g |
CVE-2023-45853 | CRITICAL | 1:1.2.13.dfsg-1 |
Java
Package | ID | Severity | Installed Version | Fixed Version |
---|---|---|---|---|
org.springframework:spring-web |
CVE-2024-22262 | HIGH | 6.1.5 | 5.3.34, 6.0.19, 6.1.6 |
:tada: This PR is included in version 3.12.13 :tada:
The release is available on GitHub release
Your semantic-release bot :package::rocket:
This PR contains the following updates:
v4.1.1
->v4.1.4
v4.1.4
->v4.1.7
v4.3.1
->v4.3.3
v3.24.9
->v3.25.3
v1.6.3
->v1.8.3
Release Notes
actions/checkout (actions/checkout)
### [`v4.1.4`](https://togithub.com/actions/checkout/blob/HEAD/CHANGELOG.md#v414) [Compare Source](https://togithub.com/actions/checkout/compare/v4.1.3...v4.1.4) - Disable `extensions.worktreeConfig` when disabling `sparse-checkout` by [@jww3](https://togithub.com/jww3) in [https://github.com/actions/checkout/pull/1692](https://togithub.com/actions/checkout/pull/1692) - Add dependabot config by [@cory-miller](https://togithub.com/cory-miller) in [https://github.com/actions/checkout/pull/1688](https://togithub.com/actions/checkout/pull/1688) - Bump the minor-actions-dependencies group with 2 updates by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/checkout/pull/1693](https://togithub.com/actions/checkout/pull/1693) - Bump word-wrap from 1.2.3 to 1.2.5 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/actions/checkout/pull/1643](https://togithub.com/actions/checkout/pull/1643) ### [`v4.1.3`](https://togithub.com/actions/checkout/releases/tag/v4.1.3) [Compare Source](https://togithub.com/actions/checkout/compare/v4.1.2...v4.1.3) #### What's Changed - Update `actions/checkout` version in `update-main-version.yml` by [@jww3](https://togithub.com/jww3) in [https://github.com/actions/checkout/pull/1650](https://togithub.com/actions/checkout/pull/1650) - Check git version before attempting to disable `sparse-checkout` by [@jww3](https://togithub.com/jww3) in [https://github.com/actions/checkout/pull/1656](https://togithub.com/actions/checkout/pull/1656) - Add SSH user parameter by [@cory-miller](https://togithub.com/cory-miller) in [https://github.com/actions/checkout/pull/1685](https://togithub.com/actions/checkout/pull/1685) **Full Changelog**: https://github.com/actions/checkout/compare/v4.1.2...v4.1.3 ### [`v4.1.2`](https://togithub.com/actions/checkout/blob/HEAD/CHANGELOG.md#v412) [Compare Source](https://togithub.com/actions/checkout/compare/v4.1.1...v4.1.2) - Fix: Disable sparse checkout whenever `sparse-checkout` option is not present [@dscho](https://togithub.com/dscho) in [https://github.com/actions/checkout/pull/1598](https://togithub.com/actions/checkout/pull/1598)actions/download-artifact (actions/download-artifact)
### [`v4.1.7`](https://togithub.com/actions/download-artifact/releases/tag/v4.1.7) [Compare Source](https://togithub.com/actions/download-artifact/compare/v4.1.6...v4.1.7) #### What's Changed - Update [@actions/artifact](https://togithub.com/actions/artifact) dependency by [@bethanyj28](https://togithub.com/bethanyj28) in [https://github.com/actions/download-artifact/pull/325](https://togithub.com/actions/download-artifact/pull/325) **Full Changelog**: https://github.com/actions/download-artifact/compare/v4.1.6...v4.1.7 ### [`v4.1.6`](https://togithub.com/actions/download-artifact/releases/tag/v4.1.6) [Compare Source](https://togithub.com/actions/download-artifact/compare/v4.1.5...v4.1.6) #### What's Changed - updating `@actions/artifact` dependency to v2.1.6 by [@eggyhead](https://togithub.com/eggyhead) in [https://github.com/actions/download-artifact/pull/324](https://togithub.com/actions/download-artifact/pull/324) **Full Changelog**: https://github.com/actions/download-artifact/compare/v4.1.5...v4.1.6 ### [`v4.1.5`](https://togithub.com/actions/download-artifact/releases/tag/v4.1.5) [Compare Source](https://togithub.com/actions/download-artifact/compare/v4.1.4...v4.1.5) #### What's Changed - Update readme with v3/v2/v1 deprecation notice by [@robherley](https://togithub.com/robherley) in [https://github.com/actions/download-artifact/pull/322](https://togithub.com/actions/download-artifact/pull/322) - Update dependencies `@actions/core` to v1.10.1 and `@actions/artifact` to v2.1.5 **Full Changelog**: https://github.com/actions/download-artifact/compare/v4.1.4...v4.1.5actions/upload-artifact (actions/upload-artifact)
### [`v4.3.3`](https://togithub.com/actions/upload-artifact/releases/tag/v4.3.3) [Compare Source](https://togithub.com/actions/upload-artifact/compare/v4.3.2...v4.3.3) ##### What's Changed - updating `@actions/artifact` dependency to v2.1.6 by [@eggyhead](https://togithub.com/eggyhead) in [https://github.com/actions/upload-artifact/pull/565](https://togithub.com/actions/upload-artifact/pull/565) **Full Changelog**: https://github.com/actions/upload-artifact/compare/v4.3.2...v4.3.3 ### [`v4.3.2`](https://togithub.com/actions/upload-artifact/releases/tag/v4.3.2) [Compare Source](https://togithub.com/actions/upload-artifact/compare/v4.3.1...v4.3.2) #### What's Changed - Update release-new-action-version.yml by [@konradpabjan](https://togithub.com/konradpabjan) in [https://github.com/actions/upload-artifact/pull/516](https://togithub.com/actions/upload-artifact/pull/516) - Minor fix to the migration readme by [@andrewakim](https://togithub.com/andrewakim) in [https://github.com/actions/upload-artifact/pull/523](https://togithub.com/actions/upload-artifact/pull/523) - Update readme with v3/v2/v1 deprecation notice by [@robherley](https://togithub.com/robherley) in [https://github.com/actions/upload-artifact/pull/561](https://togithub.com/actions/upload-artifact/pull/561) - updating `@actions/artifact` dependency to v2.1.5 and `@actions/core` to v1.0.1 by [@eggyhead](https://togithub.com/eggyhead) in [https://github.com/actions/upload-artifact/pull/562](https://togithub.com/actions/upload-artifact/pull/562) #### New Contributors - [@andrewakim](https://togithub.com/andrewakim) made their first contribution in [https://github.com/actions/upload-artifact/pull/523](https://togithub.com/actions/upload-artifact/pull/523) **Full Changelog**: https://github.com/actions/upload-artifact/compare/v4.3.1...v4.3.2github/codeql-action (github/codeql-action)
### [`v3.25.3`](https://togithub.com/github/codeql-action/compare/v3.25.2...v3.25.3) [Compare Source](https://togithub.com/github/codeql-action/compare/v3.25.2...v3.25.3) ### [`v3.25.2`](https://togithub.com/github/codeql-action/compare/v3.25.1...v3.25.2) [Compare Source](https://togithub.com/github/codeql-action/compare/v3.25.1...v3.25.2) ### [`v3.25.1`](https://togithub.com/github/codeql-action/compare/v3.25.0...v3.25.1) [Compare Source](https://togithub.com/github/codeql-action/compare/v3.25.0...v3.25.1) ### [`v3.25.0`](https://togithub.com/github/codeql-action/compare/v3.24.10...v3.25.0) [Compare Source](https://togithub.com/github/codeql-action/compare/v3.24.10...v3.25.0) ### [`v3.24.10`](https://togithub.com/github/codeql-action/compare/v3.24.9...v3.24.10) [Compare Source](https://togithub.com/github/codeql-action/compare/v3.24.9...v3.24.10)miracum/.github (miracum/.github)
### [`v1.8.3`](https://togithub.com/miracum/.github/releases/tag/v1.8.3) [Compare Source](https://togithub.com/miracum/.github/compare/v1.8.2...v1.8.3) ##### Miscellaneous Chores - **deps:** update github-actions ([#54](https://togithub.com/miracum/.github/issues/54)) ([392030c](https://togithub.com/miracum/.github/commit/392030c6f94fcfaa509a606af2b0907d022f2257)) ### [`v1.8.2`](https://togithub.com/miracum/.github/releases/tag/v1.8.2) [Compare Source](https://togithub.com/miracum/.github/compare/v1.8.1...v1.8.2) ##### Miscellaneous Chores - **deps:** update github-actions ([#55](https://togithub.com/miracum/.github/issues/55)) ([ab3e0ac](https://togithub.com/miracum/.github/commit/ab3e0ac5d240798117e0292bb90ddfbe8af270a4)) - **renovate:** update default.json ([#53](https://togithub.com/miracum/.github/issues/53)) ([366d588](https://togithub.com/miracum/.github/commit/366d5887d82bcff0499381abe528591767e965f2)) ### [`v1.8.1`](https://togithub.com/miracum/.github/releases/tag/v1.8.1) [Compare Source](https://togithub.com/miracum/.github/compare/v1.8.0...v1.8.1) ##### Miscellaneous Chores - **deps:** update github-actions ([#52](https://togithub.com/miracum/.github/issues/52)) ([da9eb39](https://togithub.com/miracum/.github/commit/da9eb398ce562335372c0f48c32b26a2247d28f2)) ### [`v1.8.0`](https://togithub.com/miracum/.github/releases/tag/v1.8.0) [Compare Source](https://togithub.com/miracum/.github/compare/v1.7.2...v1.8.0) ##### Features - support for overwriting image tags ([#51](https://togithub.com/miracum/.github/issues/51)) ([13d484d](https://togithub.com/miracum/.github/commit/13d484d08281bdcb56393ed14cf15559212793b1)) ### [`v1.7.2`](https://togithub.com/miracum/.github/releases/tag/v1.7.2) [Compare Source](https://togithub.com/miracum/.github/compare/v1.7.1...v1.7.2) ##### Bug Fixes - collapse CVE list by default ([7be2f06](https://togithub.com/miracum/.github/commit/7be2f06ea2da99a29964a4bd2006f7313a9330fb)) ### [`v1.7.1`](https://togithub.com/miracum/.github/releases/tag/v1.7.1) [Compare Source](https://togithub.com/miracum/.github/compare/v1.7.0...v1.7.1) ##### Bug Fixes - only conditionally attest trivy vulnerability report ([bb8185d](https://togithub.com/miracum/.github/commit/bb8185d0f7b8fc29d1ff865c67e18735af4bd311)) ##### CI/CD - install cosign ([c3f13dd](https://togithub.com/miracum/.github/commit/c3f13dd53633bed28ff2667e559d74eae791a1a7)) ### [`v1.7.0`](https://togithub.com/miracum/.github/releases/tag/v1.7.0) [Compare Source](https://togithub.com/miracum/.github/compare/v1.6.3...v1.7.0) ##### Features - allow disabling trivy scanning ([ed38f7c](https://togithub.com/miracum/.github/commit/ed38f7c50102bc06b5bc2cea69b62ae341a8ddae))Configuration
π Schedule: Branch creation - "every 3 months on the first day of the month" (UTC), Automerge - At any time (no schedule defined).
π¦ Automerge: Disabled by config. Please merge this manually once you are satisfied.
β» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
π» Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Mend Renovate. View repository job log here.