search

miracum / fhir-pseudonymizer

A REST service to pseudonymize and anonymize FHIR® resources.
MIT License
15 stars 2 forks source link

chore(deps): update all non-major dependencies #179

Closed renovate[bot] closed 4 months ago

renovate[bot] commented 4 months ago

Mend Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence Type Update
FakeItEasy (source) 8.2.0 -> 8.3.0 age adoption passing confidence nuget minor
Google.Protobuf 3.27.0 -> 3.27.2 age adoption passing confidence nuget patch
NBomber 5.6.0 -> 5.7.0 age adoption passing confidence nuget minor
OpenTelemetry (source) 1.8.1 -> 1.9.0 age adoption passing confidence nuget minor
OpenTelemetry.Exporter.OpenTelemetryProtocol (source) 1.8.1 -> 1.9.0 age adoption passing confidence nuget minor
OpenTelemetry.Extensions.Hosting (source) 1.8.1 -> 1.9.0 age adoption passing confidence nuget minor
OpenTelemetry.Instrumentation.AspNetCore (source) 1.8.1 -> 1.9.0 age adoption passing confidence nuget minor
OpenTelemetry.Instrumentation.Http (source) 1.8.1 -> 1.9.0 age adoption passing confidence nuget minor
Verify.Xunit 25.0.1 -> 25.0.4 age adoption passing confidence nuget patch
YamlDotNet (source) 15.1.6 -> 15.3.0 age adoption passing confidence nuget minor
docker.io/bitnami/kubectl (source) 1.30.1 -> 1.30.2 age adoption passing confidence final patch
docker.io/jaegertracing/all-in-one 1.57 -> 1.58 age adoption passing confidence minor
mcr.microsoft.com/dotnet/sdk 8.0.301-noble -> 8.0.302-noble age adoption passing confidence stage patch

Release Notes

FakeItEasy/FakeItEasy (FakeItEasy) ### [`v8.3.0`](https://togithub.com/FakeItEasy/FakeItEasy/releases/tag/8.3.0) [Compare Source](https://togithub.com/FakeItEasy/FakeItEasy/compare/8.2.0...8.3.0) ##### New - Faking delegates now about 25 times faster due to DynamicProxy's `CreateDelegateToMixin` ([#​2013](https://togithub.com/FakeItEasy/FakeItEasy/issues/2013)) - Build and test on macOS ([#​2029](https://togithub.com/FakeItEasy/FakeItEasy/issues/2029)) ##### Fixed - Adding null-valued EventHandlers to a fake leads to `ArgumentNullException` ([#​2033](https://togithub.com/FakeItEasy/FakeItEasy/issues/2033)) ##### Additional Items - Fix one aspect of Linux build - make build.ps1 executable on Linux ([#​2017](https://togithub.com/FakeItEasy/FakeItEasy/issues/2017)) - Fix docs preview workflow ([#​2001](https://togithub.com/FakeItEasy/FakeItEasy/issues/2001), [#​2003](https://togithub.com/FakeItEasy/FakeItEasy/issues/2003), [#​2004](https://togithub.com/FakeItEasy/FakeItEasy/issues/2004)) - Improve docs preview workflow ([#​2006](https://togithub.com/FakeItEasy/FakeItEasy/issues/2006), [#​2008](https://togithub.com/FakeItEasy/FakeItEasy/issues/2008)) - Bump docs generation dependencies ([#​2005](https://togithub.com/FakeItEasy/FakeItEasy/issues/2005), [#​2025](https://togithub.com/FakeItEasy/FakeItEasy/issues/2025), [#​2032](https://togithub.com/FakeItEasy/FakeItEasy/issues/2032)) - Update docs to - use new URL in link to Moq ([#​2021](https://togithub.com/FakeItEasy/FakeItEasy/issues/2021)) - note that faking of generic types with methods that have `in` parameters works on .NET 6 and higher ([#​1382](https://togithub.com/FakeItEasy/FakeItEasy/issues/1382)) - stress that methods must be fully configured to capture arguments ([#​2011](https://togithub.com/FakeItEasy/FakeItEasy/issues/2011)) - indicate how to use `A.CallTo` with methods whose arguments include anonymous types ([#​1593](https://togithub.com/FakeItEasy/FakeItEasy/issues/1593)) - document how to use `InternalsVisibleTo` from project files ([#​2027](https://togithub.com/FakeItEasy/FakeItEasy/issues/2027)) - fix broken links ([#​2023](https://togithub.com/FakeItEasy/FakeItEasy/issues/2023)) - Check generated documentation for dead links ([#​2024](https://togithub.com/FakeItEasy/FakeItEasy/issues/2024)) - Update [how to build](https://togithub.com/FakeItEasy/FakeItEasy/blob/HEAD/how_to_build.md) instructions to correct mistakes and streamline ([#​2016](https://togithub.com/FakeItEasy/FakeItEasy/issues/2016)) - Use .NET 5.0 source generators to generate strongly-typed overloads ([#​1804](https://togithub.com/FakeItEasy/FakeItEasy/issues/1804)) ##### With special thanks for contributions to this release from: - Jonathon Rossi - [@​jonorossi](https://togithub.com/jonorossi) - Dominique Schuppli - [@​stakx](https://togithub.com/stakx) - Stephen Friend - [@​StephenFriend](https://togithub.com/StephenFriend)
protocolbuffers/protobuf (Google.Protobuf) ### [`v3.27.1`](https://togithub.com/protocolbuffers/protobuf/compare/v3.27.0...v3.27.1)
VerifyTests/Verify (Verify.Xunit) ### [`v25.0.4`](https://togithub.com/VerifyTests/Verify/compare/25.0.3...25.0.4) [Compare Source](https://togithub.com/VerifyTests/Verify/compare/25.0.3...25.0.4) ### [`v25.0.3`](https://togithub.com/VerifyTests/Verify/compare/25.0.2...25.0.3) [Compare Source](https://togithub.com/VerifyTests/Verify/compare/25.0.2...25.0.3) ### [`v25.0.2`](https://togithub.com/VerifyTests/Verify/compare/25.0.1...25.0.2) [Compare Source](https://togithub.com/VerifyTests/Verify/compare/25.0.1...25.0.2)
aaubry/YamlDotNet (YamlDotNet) ### [`v15.3.0`](https://togithub.com/aaubry/YamlDotNet/releases/tag/v15.3.0): Release 15.3.0 - Merge pull request [#​910](https://togithub.com/aaubry/YamlDotNet/issues/910) from lahma/symbols\ Include symbols and deterministic build - Merge pull request [#​930](https://togithub.com/aaubry/YamlDotNet/issues/930) from MrLuje/fsharp-option\ Add FSharpOption support
dotnet/sdk (mcr.microsoft.com/dotnet/sdk) ### [`v8.0.302`](https://togithub.com/dotnet/sdk/compare/v8.0.301...v8.0.302) [Compare Source](https://togithub.com/dotnet/sdk/compare/v8.0.301...v8.0.302)

Configuration

📅 Schedule: Branch creation - "every 3 months on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

This PR has been generated by Mend Renovate. View repository job log here.

github-actions[bot] commented 4 months ago

Trivy image scan report

ghcr.io/miracum/fhir-pseudonymizer:pr-179 (ubuntu 24.04)

8 known vulnerabilities found (LOW: 4 CRITICAL: 0 HIGH: 0 MEDIUM: 4)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
libc6 CVE-2024-33599 MEDIUM 2.39-0ubuntu8.1 2.39-0ubuntu8.2
libc6 CVE-2024-33600 MEDIUM 2.39-0ubuntu8.1 2.39-0ubuntu8.2
libc6 CVE-2024-33601 MEDIUM 2.39-0ubuntu8.1 2.39-0ubuntu8.2
libc6 CVE-2024-33602 MEDIUM 2.39-0ubuntu8.1 2.39-0ubuntu8.2
libc6 CVE-2016-20013 LOW 2.39-0ubuntu8.1
libssl3t64 CVE-2024-2511 LOW 3.0.13-0ubuntu3.1
libssl3t64 CVE-2024-4603 LOW 3.0.13-0ubuntu3.1
libssl3t64 CVE-2024-4741 LOW 3.0.13-0ubuntu3.1

No Misconfigurations found

opt/fhir-pseudonymizer/FhirPseudonymizer.deps.json

No Vulnerabilities found

No Misconfigurations found

opt/fhir-pseudonymizer/packages.lock.json

No Vulnerabilities found

No Misconfigurations found

usr/share/dotnet/shared/Microsoft.AspNetCore.App/8.0.6/Microsoft.AspNetCore.App.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/share/dotnet/shared/Microsoft.NETCore.App/8.0.6/Microsoft.NETCore.App.deps.json

No Vulnerabilities found

No Misconfigurations found

github-actions[bot] commented 4 months ago

Code Coverage

Package Line Rate Branch Rate Health
FhirPseudonymizer 74% 65%
FhirPseudonymizer.Tests 100% 100%
Summary 81% (816 / 1008) 68% (93 / 136)

Minimum allowed line rate is 50%

iter8 report


Experiment summary:
*******************

  Experiment completed: true
  No task failures: true
  Total number of tasks: 7
  Number of completed tasks: 7
  Number of completed loops: 1

Whether or not service level objectives (SLOs) are satisfied:
*************************************************************

  SLO Conditions                 | Satisfied
  --------------                 | ---------
  http/error-count <= 0          | true
  http/latency-mean (msec) <= 25 | true
  http/latency-p99 (msec) <= 85  | true

Latest observed values for metrics:
***********************************

  Metric                     | value
  -------                    | -----
  http/error-count           | 0.00
  http/error-rate            | 0.00
  http/latency-max (msec)    | 856.90
  http/latency-mean (msec)   | 15.85
  http/latency-min (msec)    | 2.26
  http/latency-p50 (msec)    | 7.78
  http/latency-p75 (msec)    | 15.27
  http/latency-p90 (msec)    | 52.26
  http/latency-p95 (msec)    | 60.63
  http/latency-p99 (msec)    | 69.48
  http/latency-p99.9 (msec)  | 106.40
  http/latency-stddev (msec) | 21.17
  http/request-count         | 25000.00
github-actions[bot] commented 4 months ago

🦙 MegaLinter status: ⚠️ WARNING

Descriptor Linter Files Fixed Errors Elapsed time
✅ ACTION actionlint 5 0 0.11s
✅ BASH bash-exec 1 0 0.0s
✅ BASH shellcheck 1 0 0.01s
✅ BASH shfmt 1 0 0.0s
✅ CSHARP csharpier 95 0 4.62s
⚠️ CSHARP roslynator 3 2 46.93s
✅ DOCKERFILE hadolint 1 0 0.1s
✅ EDITORCONFIG editorconfig-checker 181 0 1.48s
✅ JSON jsonlint 27 0 0.31s
✅ JSON prettier 27 0 3.45s
✅ JSON v8r 27 0 9.46s
✅ MARKDOWN markdownlint 4 0 0.84s
✅ PROTOBUF protolint 4 0 6.44s
✅ REPOSITORY checkov yes no 15.18s
✅ REPOSITORY dustilock yes no 0.04s
✅ REPOSITORY gitleaks yes no 0.54s
✅ REPOSITORY git_diff yes no 0.13s
✅ REPOSITORY grype yes no 16.08s
✅ REPOSITORY kics yes no 15.24s
✅ REPOSITORY secretlint yes no 1.25s
✅ REPOSITORY syft yes no 0.62s
✅ REPOSITORY trivy yes no 7.78s
✅ REPOSITORY trivy-sbom yes no 6.56s
✅ REPOSITORY trufflehog yes no 3.67s
✅ XML xmllint 2 0 0.02s
✅ YAML prettier 29 0 3.16s
✅ YAML v8r 29 0 33.28s
✅ YAML yamllint 29 0 1.88s

See detailed report in MegaLinter reports

You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.

_MegaLinter is graciously provided by OX Security_

miracum-bot commented 4 months ago

:tada: This PR is included in version 2.21.11 :tada:

The release is available on GitHub release

Your semantic-release bot :package::rocket: