search

miracum / fhir-pseudonymizer

A REST service to pseudonymize and anonymize FHIR® resources.
MIT License
14 stars 2 forks source link

chore(deps): update github-actions #82

Closed renovate[bot] closed 1 year ago

renovate[bot] commented 1 year ago

Mend Renovate

This PR contains the following updates:

Package Type Update Change
actions/checkout action patch v3.5.2 -> v3.5.3
actions/checkout action digest 8e5e7e5 -> c85c95e
actions/setup-dotnet action digest 607fce5 -> 3447fd6
aquasecurity/trivy-action action minor 0.10.0 -> 0.11.2
docker/login-action action digest f4ef78c -> 465a078
docker/metadata-action action digest c4ee3ad -> 818d4b7
docker/setup-buildx-action action digest 4b4e9c3 -> 4c0219f
docker/setup-qemu-action action digest e81a89b -> 2b82ce8
github/codeql-action action minor v2.3.3 -> v2.21.3
github/codeql-action action digest 29b1f65 -> 5b6282e
helm/kind-action action minor v1.5.0 -> v1.8.0
iter8-tools/iter8 action minor v0.13.17 -> v0.15.5
marocchino/sticky-pull-request-comment action minor v2.6.2 -> v2.7.0
ossf/scorecard-action action minor v2.1.3 -> v2.2.0
slsa-framework/slsa-github-generator action minor v1.5.0 -> v1.8.0

⚠ Dependency Lookup Warnings ⚠

Warnings were logged while processing this repo. Please check the logs for more information.

Release Notes

actions/checkout (actions/checkout) ### [`v3.5.3`](https://togithub.com/actions/checkout/blob/HEAD/CHANGELOG.md#v353) [Compare Source](https://togithub.com/actions/checkout/compare/v3.5.2...v3.5.3) - [Fix: Checkout fail in self-hosted runners when faulty submodule are checked-in](https://togithub.com/actions/checkout/pull/1196) - [Fix typos found by codespell](https://togithub.com/actions/checkout/pull/1287) - [Add support for sparse checkouts](https://togithub.com/actions/checkout/pull/1369)
aquasecurity/trivy-action (aquasecurity/trivy-action) ### [`v0.11.2`](https://togithub.com/aquasecurity/trivy-action/releases/tag/0.11.2) [Compare Source](https://togithub.com/aquasecurity/trivy-action/compare/0.11.1...0.11.2) **Full Changelog**: https://github.com/aquasecurity/trivy-action/compare/0.11.1...0.11.2 ### [`v0.11.1`](https://togithub.com/aquasecurity/trivy-action/releases/tag/0.11.1) [Compare Source](https://togithub.com/aquasecurity/trivy-action/compare/0.11.0...0.11.1) #### What's Changed - bump trivy to v0.42.1 by [@​danielchabr](https://togithub.com/danielchabr) in [https://github.com/aquasecurity/trivy-action/pull/240](https://togithub.com/aquasecurity/trivy-action/pull/240) **Full Changelog**: https://github.com/aquasecurity/trivy-action/compare/0.11.0...0.11.1 ### [`v0.11.0`](https://togithub.com/aquasecurity/trivy-action/releases/tag/0.11.0) [Compare Source](https://togithub.com/aquasecurity/trivy-action/compare/0.10.0...0.11.0) #### What's Changed - Include args when using trivy config file by [@​hermanwh](https://togithub.com/hermanwh) in [https://github.com/aquasecurity/trivy-action/pull/231](https://togithub.com/aquasecurity/trivy-action/pull/231) - bump trivy to v0.42.0 by [@​danielchabr](https://togithub.com/danielchabr) in [https://github.com/aquasecurity/trivy-action/pull/237](https://togithub.com/aquasecurity/trivy-action/pull/237) - Enhance GitHub Dependency Snapshot upload by [@​abriko](https://togithub.com/abriko) in [https://github.com/aquasecurity/trivy-action/pull/233](https://togithub.com/aquasecurity/trivy-action/pull/233) - feat: add exit-code parameter to sarif format by [@​rogercoll](https://togithub.com/rogercoll) in [https://github.com/aquasecurity/trivy-action/pull/213](https://togithub.com/aquasecurity/trivy-action/pull/213) #### New Contributors - [@​hermanwh](https://togithub.com/hermanwh) made their first contribution in [https://github.com/aquasecurity/trivy-action/pull/231](https://togithub.com/aquasecurity/trivy-action/pull/231) - [@​danielchabr](https://togithub.com/danielchabr) made their first contribution in [https://github.com/aquasecurity/trivy-action/pull/237](https://togithub.com/aquasecurity/trivy-action/pull/237) - [@​abriko](https://togithub.com/abriko) made their first contribution in [https://github.com/aquasecurity/trivy-action/pull/233](https://togithub.com/aquasecurity/trivy-action/pull/233) - [@​rogercoll](https://togithub.com/rogercoll) made their first contribution in [https://github.com/aquasecurity/trivy-action/pull/213](https://togithub.com/aquasecurity/trivy-action/pull/213) **Full Changelog**: https://github.com/aquasecurity/trivy-action/compare/0.10.0...0.11.0
github/codeql-action (github/codeql-action) ### [`v2.21.3`](https://togithub.com/github/codeql-action/compare/v2.21.2...v2.21.3) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.21.2...v2.21.3) ### [`v2.21.2`](https://togithub.com/github/codeql-action/compare/v2.21.1...v2.21.2) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.21.1...v2.21.2) ### [`v2.21.1`](https://togithub.com/github/codeql-action/compare/v2.21.0...v2.21.1) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.21.0...v2.21.1) ### [`v2.21.0`](https://togithub.com/github/codeql-action/compare/v2.20.4...v2.21.0) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.20.4...v2.21.0) ### [`v2.20.4`](https://togithub.com/github/codeql-action/compare/v2.20.3...v2.20.4) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.20.3...v2.20.4) ### [`v2.20.3`](https://togithub.com/github/codeql-action/compare/v2.20.2...v2.20.3) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.20.2...v2.20.3) ### [`v2.20.2`](https://togithub.com/github/codeql-action/compare/v2.20.1...v2.20.2) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.20.1...v2.20.2) ### [`v2.20.1`](https://togithub.com/github/codeql-action/compare/v2.20.0...v2.20.1) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.20.0...v2.20.1) ### [`v2.20.0`](https://togithub.com/github/codeql-action/compare/v2.3.6...v2.20.0) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.3.6...v2.20.0) ### [`v2.3.6`](https://togithub.com/github/codeql-action/compare/v2.3.5...v2.3.6) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.3.5...v2.3.6) ### [`v2.3.5`](https://togithub.com/github/codeql-action/compare/v2.3.4...v2.3.5) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.3.4...v2.3.5) ### [`v2.3.4`](https://togithub.com/github/codeql-action/compare/v2.3.3...v2.3.4) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.3.3...v2.3.4)
helm/kind-action (helm/kind-action) ### [`v1.8.0`](https://togithub.com/helm/kind-action/releases/tag/v1.8.0) [Compare Source](https://togithub.com/helm/kind-action/compare/v1.7.0...v1.8.0) #### What's Changed - [#​54](https://togithub.com/helm/kind-action/issues/54) ignore the occasional post delete cluster by [@​jerry153fish](https://togithub.com/jerry153fish) in [https://github.com/helm/kind-action/pull/79](https://togithub.com/helm/kind-action/pull/79) - bump kind to v0.20.0 and script cleanup by [@​cpanato](https://togithub.com/cpanato) in [https://github.com/helm/kind-action/pull/88](https://togithub.com/helm/kind-action/pull/88) #### New Contributors - [@​jerry153fish](https://togithub.com/jerry153fish) made their first contribution in [https://github.com/helm/kind-action/pull/79](https://togithub.com/helm/kind-action/pull/79) **Full Changelog**: https://github.com/helm/kind-action/compare/v1.7.0...v1.8.0 ### [`v1.7.0`](https://togithub.com/helm/kind-action/releases/tag/v1.7.0) [Compare Source](https://togithub.com/helm/kind-action/compare/v1.6.0...v1.7.0) #### What's Changed - default action to use kind release v0.19.0 by [@​cpanato](https://togithub.com/cpanato) in [https://github.com/helm/kind-action/pull/85](https://togithub.com/helm/kind-action/pull/85) **Full Changelog**: https://github.com/helm/kind-action/compare/v1.6.0...v1.7.0 ### [`v1.6.0`](https://togithub.com/helm/kind-action/releases/tag/v1.6.0) [Compare Source](https://togithub.com/helm/kind-action/compare/v1.5.0...v1.6.0) #### What's Changed - fix: update documentation to represent actual kubectl version used by [@​tomhobson](https://togithub.com/tomhobson) in [https://github.com/helm/kind-action/pull/83](https://togithub.com/helm/kind-action/pull/83) - update kind to v0.18.0 and kubectl to v1.26.4 by [@​cpanato](https://togithub.com/cpanato) in [https://github.com/helm/kind-action/pull/84](https://togithub.com/helm/kind-action/pull/84) #### New Contributors - [@​tomhobson](https://togithub.com/tomhobson) made their first contribution in [https://github.com/helm/kind-action/pull/83](https://togithub.com/helm/kind-action/pull/83) **Full Changelog**: https://github.com/helm/kind-action/compare/v1.5.0...v1.6.0
iter8-tools/iter8 (iter8-tools/iter8) ### [`v0.15.5`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.15.5): Version 0.15.5 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.15.4...v0.15.5) #### What’s Changed - [#​1560](https://togithub.com/iter8-tools/iter8/issues/1560): update routing charts to include kserve in addition to kserve-modelmesh ### [`v0.15.4`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.15.4): Version 0.15.4 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.15.3...v0.15.4) #### What’s Changed - [#​1563](https://togithub.com/iter8-tools/iter8/issues/1563): weighted hash ### [`v0.15.3`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.15.3): Version 0.15.3 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.15.2...v0.15.3) #### What’s Changed - [#​1546](https://togithub.com/iter8-tools/iter8/issues/1546): update kustomize ### [`v0.15.2`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.15.2): Version 0.15.2 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.15.1...v0.15.2) #### What’s Changed - [#​1544](https://togithub.com/iter8-tools/iter8/issues/1544): update majorminor constant ### [`v0.15.1`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.15.1): Version 0.15.1 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.15.0...v0.15.1) #### What’s Changed - [#​1543](https://togithub.com/iter8-tools/iter8/issues/1543): update tests and chart images to v0.15 ### [`v0.15.0`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.15.0): Version 0.15.0 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.14.10...v0.15.0) #### What’s Changed - [#​1493](https://togithub.com/iter8-tools/iter8/issues/1493): Refactor A/B/n service to use traffic controller - [#​1536](https://togithub.com/iter8-tools/iter8/issues/1536): Rename workflows - [#​1528](https://togithub.com/iter8-tools/iter8/issues/1528): Fix workflows - [#​1511](https://togithub.com/iter8-tools/iter8/issues/1511): GetMetrics() uses app, user, trans - [#​1504](https://togithub.com/iter8-tools/iter8/issues/1504): Add GetMetrics() - [#​1498](https://togithub.com/iter8-tools/iter8/issues/1498): Add signature - [#​1494](https://togithub.com/iter8-tools/iter8/issues/1494): Set default release in Dockefile to one with existing binaries - [#​1490](https://togithub.com/iter8-tools/iter8/issues/1490): GetSummaryMetrics() - [#​1486](https://togithub.com/iter8-tools/iter8/issues/1486): Add methods to storageclient ### [`v0.14.10`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.14.10): Version 0.14.10 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.14.9...v0.14.10) #### What’s Changed - [#​1487](https://togithub.com/iter8-tools/iter8/issues/1487): fix for non-default namespaces - [#​1483](https://togithub.com/iter8-tools/iter8/issues/1483): Add interface #### 🚀 Features - [#​1418](https://togithub.com/iter8-tools/iter8/issues/1418): assess rewards and report ### [`v0.14.9`](https://togithub.com/iter8-tools/iter8/compare/v0.14.8...v0.14.9) [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.14.8...v0.14.9) ### [`v0.14.8`](https://togithub.com/iter8-tools/iter8/compare/v0.14.7...v0.14.8) [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.14.7...v0.14.8) ### [`v0.14.7`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.14.7): Version 0.14.7 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.14.6...v0.14.7) #### What’s Changed - [#​1473](https://togithub.com/iter8-tools/iter8/issues/1473): Fix tag prefix in release drafter - [#​1475](https://togithub.com/iter8-tools/iter8/issues/1475): Persistent volume ### [`v0.14.6`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.14.6): Version 0.14.6 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.14.5...v0.14.6) #### What’s Changed - [#​1472](https://togithub.com/iter8-tools/iter8/issues/1472): Update contributing and add link and spell check workflows ### [`v0.14.5`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.14.5): Version 0.14.5 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.14.4...v0.14.5) #### What’s Changed - [#​1471](https://togithub.com/iter8-tools/iter8/issues/1471): Release config fixes ### [`v0.14.4`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.14.4): Version 0.14.4 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.14.3...v0.14.4) #### What’s Changed - [#​1470](https://togithub.com/iter8-tools/iter8/issues/1470): Revert Dockerfile to use binaries ### [`v0.14.3`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.14.3): Version 0.14.3 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.14.2...v0.14.3) #### What’s Changed - [#​1468](https://togithub.com/iter8-tools/iter8/issues/1468): Test asset workflow ### [`v0.14.2`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.14.2): Version 0.14.2 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.14.1...v0.14.2) #### What’s Changed - [#​1467](https://togithub.com/iter8-tools/iter8/issues/1467): Hotfix v0.14 ### [`v0.14.1`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.14.1): Version 0.14.1 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.14.0...v0.14.1) #### What’s Changed - [#​1466](https://togithub.com/iter8-tools/iter8/issues/1466): Hotfix workflows ### [`v0.14.0`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.14.0): Version 0.14.0 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.13.18...v0.14.0) #### What’s Changed - [#​1464](https://togithub.com/iter8-tools/iter8/issues/1464): Use `go install` for Iter8 ### [`v0.13.18`](https://togithub.com/iter8-tools/iter8/releases/tag/v0.13.18): Version 0.13.18 of Iter8 [Compare Source](https://togithub.com/iter8-tools/iter8/compare/v0.13.17...v0.13.18) #### What’s Changed - [#​1461](https://togithub.com/iter8-tools/iter8/issues/1461): Update charts - [#​1463](https://togithub.com/iter8-tools/iter8/issues/1463): Bump github.com/docker/distribution from 2.8.1+incompatible to 2.8.2+incompatible
marocchino/sticky-pull-request-comment (marocchino/sticky-pull-request-comment) ### [`v2.7.0`](https://togithub.com/marocchino/sticky-pull-request-comment/compare/v2.6.2...v2.7.0) [Compare Source](https://togithub.com/marocchino/sticky-pull-request-comment/compare/v2.6.2...v2.7.0)
ossf/scorecard-action (ossf/scorecard-action) ### [`v2.2.0`](https://togithub.com/ossf/scorecard-action/releases/tag/v2.2.0) [Compare Source](https://togithub.com/ossf/scorecard-action/compare/v2.1.3...v2.2.0) #### What's Changed - :seedling: Bump github.com/ossf/scorecard/v4 from v4.10.5 to v4.11.0 by [@​spencerschrock](https://togithub.com/spencerschrock) in [https://github.com/ossf/scorecard-action/pull/1192](https://togithub.com/ossf/scorecard-action/pull/1192) #### Scorecard Result Viewer Thanks to contributions from [@​cynthia-sg](https://togithub.com/cynthia-sg) and [@​tegioz](https://togithub.com/tegioz) at [CLOMonitor](https://togithub.com/cncf/clomonitor), there is a new Scorecard Result visualization page at `https://securityscorecards.dev/viewer/?uri=`. - [https://github.com/ossf/scorecard-webapp/pull/406](https://togithub.com/ossf/scorecard-webapp/pull/406) - [https://github.com/ossf/scorecard-webapp/pull/422](https://togithub.com/ossf/scorecard-webapp/pull/422) As an example, you can see our own score visualized [here](https://securityscorecards.dev/viewer/?uri=github.com/ossf/scorecard) Checkout our [README](https://togithub.com/ossf/scorecard-action/blob/08b4669551908b1024bb425080c797723083c031/README.md#scorecard-badge) to learn how to link your README badge to the new visualization page. #### Publishing Results This release contains two fixes which will improve the user experience when `publish_results` is `true` - Runs that fail our [workflow restrictions](https://togithub.com/ossf/scorecard-action/blob/08b4669551908b1024bb425080c797723083c031/README.md#workflow-restrictions) will fail with a 400 response indicating the problem, instead of a vague 500 status. ([https://github.com/ossf/scorecard-action/pull/1156](https://togithub.com/ossf/scorecard-action/pull/1156), resolved [https://github.com/ossf/scorecard-action/issues/1150](https://togithub.com/ossf/scorecard-action/issues/1150)) - Scorecard action will retry when signing results and submitting them to our web API. This should help with flakiness from connection failures. ([https://github.com/ossf/scorecard-action/pull/1191](https://togithub.com/ossf/scorecard-action/pull/1191)) #### Docs - 📖 Update README to accept fine-grained tokens by [@​pnacht](https://togithub.com/pnacht) in [https://github.com/ossf/scorecard-action/pull/1175](https://togithub.com/ossf/scorecard-action/pull/1175) - 📖 Update installation instructions to match current GitHub UI by [@​joycebrum](https://togithub.com/joycebrum) in [https://github.com/ossf/scorecard-action/pull/1153](https://togithub.com/ossf/scorecard-action/pull/1153) - 📖 Document the GitHub action workflow restrictions when publishing results. by [@​spencerschrock](https://togithub.com/spencerschrock) in #### New Contributors - [@​bobcallaway](https://togithub.com/bobcallaway) made their first contribution in [https://github.com/ossf/scorecard-action/pull/1140](https://togithub.com/ossf/scorecard-action/pull/1140) - [@​pnacht](https://togithub.com/pnacht) made their first contribution in [https://github.com/ossf/scorecard-action/pull/1175](https://togithub.com/ossf/scorecard-action/pull/1175) **Full Changelog**: https://github.com/ossf/scorecard-action/compare/v2.1.3...v2.2.0
slsa-framework/slsa-github-generator (slsa-framework/slsa-github-generator) ### [`v1.8.0`](https://togithub.com/slsa-framework/slsa-github-generator/blob/HEAD/CHANGELOG.md#v180) [Compare Source](https://togithub.com/slsa-framework/slsa-github-generator/compare/v1.7.0...v1.8.0) Release \[v1.8.0] includes bug fixes and new features. See the [full change list](https://togithub.com/slsa-framework/slsa-github-generator/compare/v1.7.0...v1.8.0). ##### v1.8.0: Generic Generator - **Added**: A new [`base64-subjects-as-file`](https://togithub.com/slsa-framework/slsa-github-generator/blob/v1.8.0/internal/builders/generic/README.md#workflow-inputs) was added to allow for specifying a large subject list. ##### v1.8.0: Node.js Builder (beta) - **Fixed**: Publishing for non-scoped packages was fixed (See [#​2359](https://togithub.com/slsa-framework/slsa-github-generator/issues/2359)) - **Fixed**: Documentation was updated to clarify that the GitHub Actions `deployment` event is not supported. - **Changed**: The file extension for the generated provenance file was changed from `.sigstore` to `.build.slsa` in order to make it easier to identify provenance files regardless of file format. - **Fixed**: The publish action was fixed to address an issue with the package name when using Node 16. ### [`v1.7.0`](https://togithub.com/slsa-framework/slsa-github-generator/blob/HEAD/CHANGELOG.md#v170) [Compare Source](https://togithub.com/slsa-framework/slsa-github-generator/compare/v1.6.0...v1.7.0) This release includes the first beta release of the [Container-based builder](https://togithub.com/slsa-framework/slsa-github-generator/tree/v1.7.0/internal/builders/docker). The Container-based builder provides a GitHub Actions reusable workflow that can be used to invoke a container image with a user-specified command to generate an artifact and SLSA Build L3 compliant provenance. ##### v1.7.0: Go builder - **Added**: A new [go-version-file](https://togithub.com/slsa-framework/slsa-github-generator/blob/main/internal/builders/go/README.md#workflow-inputs) input was added. This allows you to specify a go.mod file in order to track which version of Go is used for your project. ### [`v1.6.0`](https://togithub.com/slsa-framework/slsa-github-generator/blob/HEAD/CHANGELOG.md#v160) [Compare Source](https://togithub.com/slsa-framework/slsa-github-generator/compare/v1.5.0...v1.6.0) This release includes the first beta release of the [Node.js builder](https://togithub.com/slsa-framework/slsa-github-generator/tree/v1.6.0/internal/builders/nodejs). The Node.js builder provides a GitHub Actions reusable workflow that can be called to build a Node.js package, generate SLSA Build L3 compliant provenance, and publish it to the npm registry along with the package. ##### Summary of changes ##### Go builder ##### New Features - A new [`prerelease`](https://togithub.com/slsa-framework/slsa-github-generator/blob/v1.6.0/internal/builders/go/README.md#workflow-inputs) input was added to allow users to create releases marked as prerelease when `upload-assets` is set to `true`. - A new input [`draft-release`](https://togithub.com/slsa-framework/slsa-github-generator/blob/v1.6.0/internal/builders/go/README.md#workflow-inputs) was added to allow users to create releases marked as draft when `upload-assets` is set to `true`. - A new output [`go-provenance-name`](https://togithub.com/slsa-framework/slsa-github-generator/blob/v1.6.0/internal/builders/go/README.md#workflow-outputs) added which can be used to retrieve the name of the provenance file generated by the builder. ##### Generic generator ##### New Features - A new input [`draft-release`](https://togithub.com/slsa-framework/slsa-github-generator/blob/v1.6.0/internal/builders/generic/README.md#workflow-inputs) was added to allow users to create releases marked as draft when `upload-assets` is set to `true`. ##### Container generator The Container Generator was updated to use `cosign` v2.0.0. No changes to the workflow's inputs or outputs were made. ##### Changelog since v1.5.0

Configuration

📅 Schedule: Branch creation - "before 4am on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

This PR has been generated by Mend Renovate. View repository job log here.

github-actions[bot] commented 1 year ago

🦙 MegaLinter status: ✅ SUCCESS

Descriptor Linter Files Fixed Errors Elapsed time
✅ ACTION actionlint 7 0 0.22s
✅ EDITORCONFIG editorconfig-checker 7 0 0.05s
✅ REPOSITORY checkov yes no 25.26s
✅ REPOSITORY dustilock yes no 0.03s
✅ REPOSITORY gitleaks yes no 2.17s
✅ REPOSITORY git_diff yes no 0.04s
✅ REPOSITORY secretlint yes no 1.67s
✅ REPOSITORY syft yes no 0.29s
✅ REPOSITORY trivy yes no 18.37s
✅ YAML prettier 7 0 0.94s
✅ YAML v8r 7 0 5.32s
✅ YAML yamllint 7 0 0.37s

See detailed report in MegaLinter reports _Set VALIDATE_ALL_CODEBASE: true in mega-linter.yml to validate all sources, not only the diff_

_MegaLinter is graciously provided by OX Security_

renovate[bot] commented 1 year ago

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

Warning: custom changes will be lost.

github-actions[bot] commented 1 year ago

Code Coverage

Package Line Rate Branch Rate Health
FhirPseudonymizer.Tests 99% 100%
FhirPseudonymizer 75% 67%
Summary 80% (640 / 797) 71% (82 / 116)

Minimum allowed line rate is 50%

iter8 report


Experiment summary:
*******************

  Experiment completed: true
  No task failures: true
  Total number of tasks: 7
  Number of completed tasks: 7
  Number of completed loops: 1

Whether or not service level objectives (SLOs) are satisfied:
*************************************************************

  SLO Conditions                 | Satisfied
  --------------                 | ---------
  http/error-count <= 0          | true
  http/latency-mean (msec) <= 25 | true
  http/latency-p99 (msec) <= 50  | true

Latest observed values for metrics:
***********************************

  Metric                     | value
  -------                    | -----
  http/error-count           | 0.00
  http/error-rate            | 0.00
  http/latency-max (msec)    | 1046.22
  http/latency-mean (msec)   | 10.17
  http/latency-min (msec)    | 3.18
  http/latency-p50 (msec)    | 8.97
  http/latency-p75 (msec)    | 10.92
  http/latency-p90 (msec)    | 14.25
  http/latency-p95 (msec)    | 17.73
  http/latency-p99 (msec)    | 28.77
  http/latency-p99.9 (msec)  | 58.50
  http/latency-stddev (msec) | 13.90
  http/request-count         | 25000.00
miracum-bot commented 1 year ago

:tada: This PR is included in version 2.19.0 :tada:

The release is available on GitHub release

Your semantic-release bot :package::rocket: