codecov-commenter
commented
10 months ago Codecov Report
Merging #193 (8bf0da8) into main (983ad07) will decrease coverage by
0.37%. Report is 7 commits behind head on main. The diff coverage is51.16%.
:exclamation: Your organization needs to install the Codecov GitHub app to enable full functionality.
@@ Coverage Diff @@
## main #193 +/- ##
==========================================
- Coverage 68.93% 68.57% -0.37%
==========================================
Files 28 28
Lines 2025 2062 +37
==========================================
+ Hits 1396 1414 +18
- Misses 545 564 +19
Partials 84 84 | Files | Coverage Δ | |
|---|---|---|
| api/v1alpha1/terraformlayer_types.go | 16.66% <ø> (ø) |
|
| internal/webhook/event/pullrequest.go | 82.19% <100.00%> (+0.24%) |
:arrow_up: |
| internal/webhook/event/push.go | 55.84% <100.00%> (+1.79%) |
:arrow_up: |
| ...nal/controllers/terraformpullrequest/conditions.go | 85.83% <0.00%> (+3.25%) |
:arrow_up: |
| internal/controllers/terraformlayer/states.go | 78.43% <77.77%> (ø) |
|
| internal/webhook/github/provider.go | 67.18% <55.55%> (-2.46%) |
:arrow_down: |
| internal/controllers/terraformpullrequest/layer.go | 80.43% <66.66%> (-3.57%) |
:arrow_down: |
| internal/controllers/terraformlayer/controller.go | 38.75% <53.33%> (+0.72%) |
:arrow_up: |
| ...nal/controllers/terraformpullrequest/controller.go | 31.34% <22.22%> (-3.58%) |
:arrow_down: |
| internal/controllers/terraformrun/controller.go | 59.61% <22.22%> (-3.02%) |
:arrow_down: |
| ... and 1 more |
:mega: Codecov offers a browser extension for seamless coverage viewing on GitHub. Try it in Chrome or Firefox today!
This PR contains the following updates:
1.5.1->1.6.0GitHub Vulnerability Alerts
CVE-2023-45857
An issue discovered in Axios 0.8.1 through 1.5.1 inadvertently reveals the confidential XSRF-TOKEN stored in cookies by including it in the HTTP header X-XSRF-TOKEN for every request made to any host allowing attackers to view sensitive information.
Release Notes
axios/axios (axios)
### [`v1.6.0`](https://togithub.com/axios/axios/blob/HEAD/CHANGELOG.md#160-2023-10-26) [Compare Source](https://togithub.com/axios/axios/compare/v1.5.1...v1.6.0) ##### Bug Fixes - **CSRF:** fixed CSRF vulnerability CVE-2023-45857 ([#6028](https://togithub.com/axios/axios/issues/6028)) ([96ee232](https://togithub.com/axios/axios/commit/96ee232bd3ee4de2e657333d4d2191cd389e14d0)) - **dns:** fixed lookup function decorator to work properly in node v20; ([#6011](https://togithub.com/axios/axios/issues/6011)) ([5aaff53](https://togithub.com/axios/axios/commit/5aaff532a6b820bb9ab6a8cd0f77131b47e2adb8)) - **types:** fix AxiosHeaders types; ([#5931](https://togithub.com/axios/axios/issues/5931)) ([a1c8ad0](https://togithub.com/axios/axios/commit/a1c8ad008b3c13d53e135bbd0862587fb9d3fc09)) ##### PRs - CVE 2023 45857 ( [#6028](https://api.github.com/repos/axios/axios/pulls/6028) ) ``` ⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459 ``` ##### Contributors to this release -Configuration
📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.