Closed dependabot[bot] closed 8 months ago
VIOLATION DESCRIPTION | NUMBER OF VIOLATIONS |
---|---|
HIGH/CRITICAL SECURITY VULNERABILITIES | 0 |
MAJOR UPDATES AVAILABLE | 0 |
LICENSE REQUIRES REVIEW | 0 |
LICENSE RISK HIGH | 9 |
RESTRICTIED LICENSE FOR ON-PREMISE DELIVERY | 1 |
Integration Tests for 1004c32765ee35550f77dfacc62bf50e67fded4a run with result: Success ✅!
Integration Tests for 1e39e53ebd5b6c9e06636ae35fe2f38c7bb0c4cc run with result: Success ✅!
Integration Tests for 1d2822df007fbfba9f46e9711089999e58fa3f11 run with result: Success ✅!
looks ok from my side. @mandelsoft , if there are issues in the next release process, this PR may be the reason :-)
Integration Tests for f111a7b6be2627823e67f37de488e97960527af5 run with result: Success ✅!
Bumps the ci group with 6 updates:
3
4
2.2.0
3.0.0
5
6
0.15.4
0.15.8
3.3.0
3.4.0
2
3
Updates
codecov/codecov-action
from 3 to 4Release notes
Sourced from codecov/codecov-action's releases.
... (truncated)
Changelog
Sourced from codecov/codecov-action's changelog.
... (truncated)
Commits
e0b68c6
fix: show both token uses in readme (#1250)1f9f557
Add all args (#1245)09686fc
Update README.md (#1243)f30e495
fix: update action.yml (#1240)a7b945c
fix: allow for other archs (#1239)98ab2c5
Update package.json (#1238)43235cc
Update README.md (#1237)0cf8684
chore(ci): bump to node20 (#1236)8e1e730
build(deps-dev): bump@typescript-eslint/eslint-plugin
from 6.19.1 to 6.20.0 ...61293af
build(deps-dev): bump@typescript-eslint/parser
from 6.19.1 to 6.20.0 (#1235)Updates
8BitJonny/gh-get-current-pr
from 2.2.0 to 3.0.0Release notes
Sourced from 8BitJonny/gh-get-current-pr's releases.
Commits
08e737c
Merge pull request #295 from 8BitJonny/upgrade-to-node20f21b71e
(dep): runnpm audit fix
2fe5f33
(chore): update to node v20 in nvmrc2011959
Merge branch 'master' into upgrade-to-node20fda1672
Merge pull request #289 from 8BitJonny/dependabot/npm_and_yarn/word-wrap-1.2.4f4fb4f8
Merge pull request #288 from 8BitJonny/dependabot/npm_and_yarn/eslint-8.45.0a293d8b
Merge pull request #286 from 8BitJonny/dependabot/npm_and_yarn/eslint-plugin-...f24508c
Merge pull request #290 from 8BitJonny/dependabot/npm_and_yarn/types/node-20.4.4f65b5c7
Merge pull request #296 from 8BitJonny/dependabot/npm_and_yarn/babel/traverse...1b34411
build(deps-dev): bump@babel/traverse
from 7.17.3 to 7.23.9Updates
release-drafter/release-drafter
from 5 to 6Release notes
Sourced from release-drafter/release-drafter's releases.
... (truncated)
Commits
3f0f870
v6.0.080296b4
Update Node.js to 20 (#1379)Updates
anchore/sbom-action
from 0.15.4 to 0.15.8Release notes
Sourced from anchore/sbom-action's releases.
Commits
b6a39da
chore(deps): update Syft to v0.103.1 (#441)767b08f
chore: migrate action from 16 -> 20 (#440)c6aed38
chore(deps): update Syft to v0.102.0 (#438)24b0d52
chore(deps): update Syft to v0.101.1 (#437)Updates
sigstore/cosign-installer
from 3.3.0 to 3.4.0Release notes
Sourced from sigstore/cosign-installer's releases.
Commits
e1523de
default cosign install to release v2.2.3 (#156)b18d21a
Use examples that work with multiple tags (#155)Updates
peter-evans/repository-dispatch
from 2 to 3Release notes
Sourced from peter-evans/repository-dispatch's releases.
... (truncated)
Commits
ff45666
feat: update runtime to node 20 (#305)a4a9027
build(deps-dev): bump@types/node
from 18.19.6 to 18.19.8 (#304)2605253
build(deps-dev): bump prettier from 3.1.1 to 3.2.4 (#303)ab3258e
build(deps-dev): bump@types/node
from 18.19.4 to 18.19.6 (#302)240bc73
build(deps-dev): bump eslint-plugin-prettier from 5.1.2 to 5.1.3 (#301)8aa15c5
build(deps-dev): bump@types/node
from 18.19.3 to 18.19.4 (#300)22aa07c
build(deps-dev): bump eslint-plugin-prettier from 5.1.1 to 5.1.2 (#299)ba02985
build(deps-dev): bump eslint-plugin-prettier from 5.0.1 to 5.1.1 (#298)accfd7b
build(deps-dev): bump eslint from 8.55.0 to 8.56.0 (#297)3c7d964
build(deps): bump actions/upload-artifact from 3 to 4 (#295)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show