philips-software / amp-devcontainer

amp-devcontainer is a fully loaded devcontainer useable for, embedded, C++ or Rust development

MIT License

98 stars 4 forks source link

ci(deps): bump github/codeql-action from 3.25.13 to 3.25.14 in the github-actions group #518

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps the github-actions group with 1 update: github/codeql-action.

Updates github/codeql-action from 3.25.13 to 3.25.14

Commits

5cf07d8 Merge pull request #2388 from github/update-v3.25.14-1b214db07
ecab108 Update changelog for v3.25.14
1b214db Merge pull request #2387 from github/aibaars/remove-set-secret
826b78c Remove setSecret call
f67c9cd Merge pull request #2376 from github/aibaars/start-proxy
77e4172 start-proxy: get binary from toolcache
4733419 Address comments
6186179 Print proxy log when debugging is enabled
7b43b7c Add codeql-action/start-proxy
5669f66 Add node-forge to package.json
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

sonarcloud[bot] commented 1 month ago

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

github-actions[bot] commented 1 month ago

Compressed layer size comparison

Comparing ghcr.io/philips-software/amp-devcontainer-rust:latest to ghcr.io/philips-software/amp-devcontainer-rust@sha256:8028302a3b2e70696d7f519570e2ab7dc1c8ef0470550df10bb0936816deda1f

OS/Platform	Previous Size	Current Size	Delta
linux/amd64	432.86M	432.87M	17.34K (+0.00%)
linux/arm64	572.09M	572.11M	21.07K (+0.00%)

github-actions[bot] commented 1 month ago

🦙 MegaLinter status: ✅ SUCCESS

Descriptor	Linter	Files	Fixed	Errors	Elapsed time
✅ ACTION	actionlint	15		0	0.04s
✅ DOCKERFILE	hadolint	2		0	0.41s
✅ JSON	prettier	11	0	0	0.6s
✅ JSON	v8r	10		0	4.29s
✅ MARKDOWN	markdownlint	8	0	0	1.02s
✅ MARKDOWN	markdown-table-formatter	8	0	0	0.23s
✅ REPOSITORY	checkov	yes		no	15.82s
✅ REPOSITORY	gitleaks	yes		no	0.23s
✅ REPOSITORY	git_diff	yes		no	0.01s
✅ REPOSITORY	grype	yes		no	13.04s
✅ REPOSITORY	secretlint	yes		no	1.33s
✅ REPOSITORY	trivy	yes		no	7.06s
✅ REPOSITORY	trivy-sbom	yes		no	1.04s
✅ REPOSITORY	trufflehog	yes		no	3.18s
✅ SPELL	lychee	48		0	2.66s
✅ YAML	prettier	20	0	0	0.96s
✅ YAML	v8r	20		0	15.23s
✅ YAML	yamllint	20		0	0.38s

See detailed report in MegaLinter reports

_MegaLinter is graciously provided by _

github-actions[bot] commented 1 month ago

Compressed layer size comparison

Comparing ghcr.io/philips-software/amp-devcontainer-cpp:latest to ghcr.io/philips-software/amp-devcontainer-cpp@sha256:2f25e48d08d9e1c2197555312c0052f8c8adffecbc9d68de3baf4c10bbaac1f3

OS/Platform	Previous Size	Current Size	Delta
linux/amd64	640.74M	640.77M	26.37K (+0.00%)
linux/arm64	633.10M	633.13M	22.62K (+0.00%)

github-actions[bot] commented 1 month ago

Test Results

2 files ±0 2 suites ±0 52s :stopwatch: ±0s 26 tests ±0 26 :white_check_mark: ±0 0 :zzz: ±0 0 :x: ±0 28 runs ±0 28 :white_check_mark: ±0 0 :zzz: ±0 0 :x: ±0

Results for commit 3e40e483. ± Comparison against base commit 8701ced2.

github-actions[bot] commented 1 month ago

Pull Request Report (#518)

Static measures

Description	Value
Number of added lines	3
Number of deleted lines	3
Number of changed files	3
Number of commits	1
Number of reviews	1
Number of comments (w/o review comments)	5
Number of reviews that contains a comment to resolve	0
Number of reviews that requested a change from the author	0
Number of reviews that approved the Pull Request	1
Get the total number of participants of a Pull Request	4

Time related measures

Description	Value
PR lead time (from creation to close of PR)	16.8 Min
Time that was spend on the branch before the PR was created	1 Sec
Time that was spend on the branch before the PR was merged	16.8 Min
Time to merge after last review	4 Min

Status check related measures

Description	Value
Total runtime for last status check run (Workflow for PR)	12.6 Min
Total time spend in last status check run on PR	4.5 Min

github-actions[bot] commented 2 weeks ago

🎉 Hooray! The changes in this pull request went live with the release of v5.1.4 🎉