Closed dependabot[bot] closed 8 months ago
VIOLATION DESCRIPTION | NUMBER OF VIOLATIONS |
---|---|
HIGH/CRITICAL SECURITY VULNERABILITIES | 0 |
MAJOR UPDATES AVAILABLE | 0 |
LICENSE REQUIRES REVIEW | 0 |
LICENSE RISK HIGH | 7 |
RESTRICTIED LICENSE FOR ON-PREMISE DELIVERY | 1 |
Looks like these dependencies are updatable in another way, so this is no longer needed.
Bumps the ci group with 3 updates: actions/cache, slackapi/slack-github-action and 8BitJonny/gh-get-current-pr.
Updates
actions/cache
from 3 to 4Release notes
Sourced from actions/cache's releases.
... (truncated)
Changelog
Sourced from actions/cache's changelog.
... (truncated)
Commits
13aacd8
Merge pull request #1242 from to-s/main53b35c5
Merge branch 'main' into main65b8989
Merge pull request #1284 from takost/update-to-node-20d0be34d
Fix dist66cf064
Merge branch 'main' into update-to-node-201326563
Merge branch 'main' into maine718767
Fix format0122982
Apply workaround for earlyExit3185ecf
Update "only-" actions to node2025618a0
Bump versionUpdates
slackapi/slack-github-action
from 1.24.0 to 1.25.0Release notes
Sourced from slackapi/slack-github-action's releases.
Commits
6c661ce
Automatic compilation2a8087d
v1.25.0a678e58
ci(security): check for pull_request_target events in the access check (#282)84a8f7d
ci(security): require access checks to pass before running unit tests (#279)f6aff2f
Bump eslint from 8.54.0 to 8.56.0 (#275)372e934
Bump eslint-plugin-import from 2.29.0 to 2.29.1 (#274)bac28df
Bump@slack/web-api
from 6.9.1 to 6.11.1 (#277)0474a45
Unit tests in GitHub CI should test the PR/branch (#276)34ae0b4
Bump@actions/github
from 5.1.1 to 6.0.0 (#265)e7f3840
Bump whatwg-url from 13.0.0 to 14.0.0 (#263)Updates
8BitJonny/gh-get-current-pr
from 2.2.0 to 3.0.0Release notes
Sourced from 8BitJonny/gh-get-current-pr's releases.
Commits
08e737c
Merge pull request #295 from 8BitJonny/upgrade-to-node20f21b71e
(dep): runnpm audit fix
2fe5f33
(chore): update to node v20 in nvmrc2011959
Merge branch 'master' into upgrade-to-node20fda1672
Merge pull request #289 from 8BitJonny/dependabot/npm_and_yarn/word-wrap-1.2.4f4fb4f8
Merge pull request #288 from 8BitJonny/dependabot/npm_and_yarn/eslint-8.45.0a293d8b
Merge pull request #286 from 8BitJonny/dependabot/npm_and_yarn/eslint-plugin-...f24508c
Merge pull request #290 from 8BitJonny/dependabot/npm_and_yarn/types/node-20.4.4f65b5c7
Merge pull request #296 from 8BitJonny/dependabot/npm_and_yarn/babel/traverse...1b34411
build(deps-dev): bump@babel/traverse
from 7.17.3 to 7.23.9Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show