search

quiltdata / nf-quilt

GNU General Public License v3.0
9 stars 1 forks source link

chore(deps): update oxsecurity/megalinter action to v7.8.0 #157

Closed renovate[bot] closed 9 months ago

renovate[bot] commented 1 year ago

Mend Renovate

This PR contains the following updates:

Package Type Update Change
oxsecurity/megalinter action minor v7.4.0 -> v7.8.0

Release Notes

oxsecurity/megalinter (oxsecurity/megalinter) ### [`v7.8.0`](https://togithub.com/oxsecurity/megalinter/blob/HEAD/CHANGELOG.md#v780---2024-01-21) [Compare Source](https://togithub.com/oxsecurity/megalinter/compare/v7.7.0...v7.8.0) - Reporters - New reporter **MARKDOWN_SUMMARY_REPORTER**, allows saving MegaLinter results summary as a markdown file. This file can be further utilised to add comments on the pull request (PR) from Jenkins and other continuous integration (CI) tools by [@​saishivarcr](https://togithub.com/saishivarcr) in [#​3250](https://togithub.com/oxsecurity/megalinter/pull/3250) - New reporter **BITBUCKET_COMMENT_REPORTER** allowing to post MegaLinter results as comments on Bitbucket pull requests by [@​saishivarcr](https://togithub.com/saishivarcr) in [#​3256](https://togithub.com/oxsecurity/megalinter/pull/3256) - Core - mega-linter-runner: Remove container by default, except of `no-remove-container` option is sent by [@​nvuillam](https://togithub.com/nvuillam) in [#​3203](https://togithub.com/oxsecurity/megalinter/pull/3203) - Upgrade base image from python:3.11.6-alpine3.18 to python:3.11.7-alpine3.18, by [@​echoix](https://togithub.com/echoix) in [#​3212](https://togithub.com/oxsecurity/megalinter/pull/3212) - Upgrade to python 3.12.0 by [@​nvuillam](https://togithub.com/nvuillam) in [#​3006](https://togithub.com/oxsecurity/megalinter/pull/3006) - Upgrade actions/upload-artifact@v3 to actions/upload-artifact@v4 in default workflows by [@​nvuillam](https://togithub.com/nvuillam) in [#​3225](https://togithub.com/oxsecurity/megalinter/pull/3225) - mega-linter-runner: Improve check if running as script or module, by [@​echoix](https://togithub.com/echoix) in [#​3233](https://togithub.com/oxsecurity/megalinter/pull/3233) - Media - (FR) MegaLinter presentation at [DevCon 20 / Programmez Magazine](https://www.programmez.com/page-devcon/devcon-20-100-securite-qualite-du-code), by [Nicolas Vuillamy](https://togithub.com/nvuillam)
- Fixes - tekton-lint is now published as [@​ibm/tekton-lint](https://togithub.com/ibm/tekton-lint), by [@​echoix](https://togithub.com/echoix) in [#​3210](https://togithub.com/oxsecurity/megalinter/pull/3210) - PHP PHIVE: Use keys.openpgp.org and fingerprint for phive key verification, by [@​echoix](https://togithub.com/echoix) in [#​3230](https://togithub.com/oxsecurity/megalinter/pull/3230) - Undowngrade sass linters, by [@​echoix](https://togithub.com/echoix) in [#​3260](https://togithub.com/oxsecurity/megalinter/pull/3260) - Upgrade lychee default configuration to handle [breaking change between 0.13.0 and 0.14.0](https://togithub.com/lycheeverse/lychee/issues/1338) - Hadolint: support both `Containerfile` and `Dockerfile` by [@​sanmai-NL](https://togithub.com/sanmai-NL) in [#​3217](https://togithub.com/oxsecurity/megalinter/pull/3217) - Doc - Upgrade url to [PHP CodeSniffer](https://togithub.com/PHPCSStandards/PHP_CodeSniffer), as now the original repo is not maintained anymore by [@​nvuillam](https://togithub.com/nvuillam) in [#​3201](https://togithub.com/oxsecurity/megalinter/pull/3201) - CI - Use docker/metadata-action for deploy-DEV.yml workflow, by [@​echoix](https://togithub.com/echoix) in [#​3193](https://togithub.com/oxsecurity/megalinter/pull/3193) - Linter versions upgrades - [ansible-lint](https://ansible-lint.readthedocs.io/) from 6.22.1 to **6.22.2** - [bash-exec](https://www.gnu.org/software/bash/) from 5.2.15 to **5.2.21** - [bicep_linter](https://learn.microsoft.com/en-us/azure/azure-resource-manager/bicep/linter) from 0.23.1 to **0.24.24** on 2023-12-14 - [black](https://black.readthedocs.io/en/stable/) from 23.11.0 to **23.12.1** on 2023-12-23 - [cfn-lint](https://togithub.com/aws-cloudformation/cfn-lint) from 0.83.4 to **0.84.0** - [checkov](https://www.checkov.io/) from 3.1.27 to **3.1.67** - [checkstyle](https://checkstyle.sourceforge.io) from 10.12.6 to **10.12.7** - [clippy](https://togithub.com/rust-lang/rust-clippy) from 0.1.74 to **0.1.75** on 2023-12-28 - [clj-kondo](https://togithub.com/borkdude/clj-kondo) from 2023.10.20 to **2023.12.15** on 2023-12-15 - [csharpier](https://csharpier.com/) from 0.26.4 to **0.27.0** - [cspell](https://togithub.com/streetsidesoftware/cspell/tree/master/packages/cspell) from 8.1.3 to **8.3.2** - [devskim](https://togithub.com/microsoft/DevSkim) from 1.0.23 to **1.0.28** - [djlint](https://djlint.com/) from 1.34.0 to **1.34.1** on 2023-12-22 - [dotnet-format](https://docs.microsoft.com/en-us/dotnet/core/tools/dotnet-format) from 7.0.114 to **7.0.115** - [eslint-plugin-jsonc](https://ota-meshi.github.io/eslint-plugin-jsonc/) from 2.10.0 to **2.12.2** - [eslint](https://eslint.org) from 8.55.0 to **8.56.0** on 2023-12-16 - [flake8](https://flake8.pycqa.org) from 6.1.0 to **7.0.0** - [git_diff](https://git-scm.com) from 2.40.1 to **2.43.0** - [helm](https://helm.sh/docs/helm/helm_lint/) from 3.11.3 to **3.13.2** - [isort](https://pycqa.github.io/isort/) from 5.13.0 to **5.13.2** on 2023-12-13 - [kics](https://www.kics.io) from 1.7.11 to **1.7.12** on 2023-12-22 - [ktlint](https://ktlint.github.io) from 1.0.1 to **1.1.1** - [lychee](https://lychee.cli.rs) from 0.13.0 to **0.14.1** - [mypy](https://mypy.readthedocs.io/en/stable/) from 1.7.1 to **1.8.0** on 2023-12-22 - [npm-groovy-lint](https://nvuillam.github.io/npm-groovy-lint/) from 13.0.2 to **14.2.0** - [phpcs](https://togithub.com/PHPCSStandards/PHP_CodeSniffer) from 3.8.0 to **3.8.1** - [phplint](https://togithub.com/overtrue/phplint) from 9.0.6 to **9.1.0** on 2023-12-17 - [phpstan](https://phpstan.org/) from 1.10.48 to **1.10.56** - [prettier](https://prettier.io/) from 3.1.0 to **3.2.4** - [protolint](https://togithub.com/yoheimuta/protolint) from 0.46.3 to **0.47.5** - [psalm](https://psalm.dev) from Psalm.5.17.0@​ to **Psalm.5.20.0@​** - [pylint](https://pylint.readthedocs.io) from 3.0.2 to **3.0.3** on 2023-12-13 - [pyright](https://togithub.com/Microsoft/pyright) from 1.1.339 to **1.1.347** - [revive](https://revive.run/) from 1.3.4 to **1.3.6** - [roslynator](https://togithub.com/JosefPihrt/Roslynator) from 0.8.1.0 to **0.8.2.0** - [rubocop](https://rubocop.org/) from 1.58.0 to **1.60.1** - [ruff](https://togithub.com/astral-sh/ruff) from 0.1.7 to **0.1.14** on 2023-12-13 - [secretlint](https://togithub.com/secretlint/secretlint) from 8.0.0 to **8.1.0** on 2023-12-28 - [sfdx-scanner-apex](https://forcedotcom.github.io/sfdx-scanner/) from 3.19.0 to **3.20.0** - [sfdx-scanner-aura](https://forcedotcom.github.io/sfdx-scanner/) from 3.19.0 to **3.20.0** - [sfdx-scanner-lwc](https://forcedotcom.github.io/sfdx-scanner/) from 3.19.0 to **3.20.0** - [snakefmt](https://togithub.com/snakemake/snakefmt) from 0.8.5 to **0.9.0** - [snakemake](https://snakemake.readthedocs.io/en/stable/) from 7.32.4 to **8.2.3** - [stylelint](https://stylelint.io) from 15.11.0 to **16.2.0** - [syft](https://togithub.com/anchore/syft) from 0.98.0 to **0.101.1** on 2023-12-22 - [tekton-lint](https://togithub.com/IBM/tekton-lint) from 0.6.0 to **1.0.0** - [terraform-fmt](https://developer.hashicorp.com/terraform/cli/commands/fmt) from 1.6.5 to **1.7.0** - [terragrunt](https://terragrunt.gruntwork.io) from 0.54.0 to **0.54.20** - [terrascan](https://runterrascan.io/) from 1.18.3 to **1.18.8** on 2023-12-16 - [terrascan](https://runterrascan.io/) from 1.18.8 to **1.18.11** on 2023-12-30 - [tflint](https://togithub.com/terraform-linters/tflint) from 0.49.0 to **0.50.0** on 2023-12-30 - [tflint](https://togithub.com/terraform-linters/tflint) from 0.50.0 to **0.50.1** - [trivy-sbom](https://aquasecurity.github.io/trivy/) from 0.48.0 to **0.48.1** on 2023-12-18 - [trivy-sbom](https://aquasecurity.github.io/trivy/) from 0.48.1 to **0.48.2** - [trivy-sbom](https://aquasecurity.github.io/trivy/) from 0.48.2 to **0.48.3** - [trivy](https://aquasecurity.github.io/trivy/) from 0.48.0 to **0.48.1** on 2023-12-18 - [trivy](https://aquasecurity.github.io/trivy/) from 0.48.1 to **0.48.2** - [trivy](https://aquasecurity.github.io/trivy/) from 0.48.2 to **0.48.3** - [trufflehog](https://togithub.com/trufflesecurity/trufflehog) from 3.63.2 to **3.63.3** on 2023-12-14 - [trufflehog](https://togithub.com/trufflesecurity/trufflehog) from 3.63.3 to **3.63.4** on 2023-12-15 - [trufflehog](https://togithub.com/trufflesecurity/trufflehog) from 3.63.4 to **3.63.6** on 2023-12-22 - [trufflehog](https://togithub.com/trufflesecurity/trufflehog) from 3.63.6 to **3.63.7** on 2023-12-23 - [trufflehog](https://togithub.com/trufflesecurity/trufflehog) from 3.63.7 to **3.63.9** - [trufflehog](https://togithub.com/trufflesecurity/trufflehog) from 3.63.9 to **3.63.10** - [vale](https://vale.sh/) from 2.30.0 to **3.0.5** ### [`v7.7.0`](https://togithub.com/oxsecurity/megalinter/blob/HEAD/CHANGELOG.md#v770---2023-12-09) [Compare Source](https://togithub.com/oxsecurity/megalinter/compare/v7.6.0...v7.7.0) - Core - Update base java apk package to openjdk 17 by [@​nvuillam](https://togithub.com/nvuillam) in [#​3160](https://togithub.com/oxsecurity/megalinter/pull/3160) - Update dotnet linters to .NET 7 by [@​bdovaz](https://togithub.com/bdovaz) in [#​2402](https://togithub.com/oxsecurity/megalinter/pull/2402) - Media - [Try using MegaLinter (article in japanese)](https://future-architect.github.io/articles/20231129a/?s=03) by [Takashi Minayaga](https://future-architect.github.io/authors/%E5%AE%AE%E6%B0%B8%E5%B4%87%E5%8F%B2) - New linters - Add [clang-format](https://releases.llvm.org/16.0.0/tools/clang/docs/ClangFormat.html) c & cpp formatting linter including "apply fix" support - Add [Roslynator](https://togithub.com/dotnet/roslynator) C# linter by [@​bdovaz](https://togithub.com/bdovaz) in [#​3155](https://togithub.com/oxsecurity/megalinter/pull/3155) - Fixes - Call jscpd with `--gitignore` to ignore copy-pastes in files matching `.gitignore` - cpplint: Dynamically add the list of extensions from list of files in --extensions parameter - Fix mkdocs generation + CI control job by [@​nvuillam](https://togithub.com/nvuillam) in [#​3135](https://togithub.com/oxsecurity/megalinter/pull/3135) - Add semgrep ruleset to validation schema by [@​wesley-dean-flexion](https://togithub.com/wesley-dean-flexion) in [#​3164](https://togithub.com/oxsecurity/megalinter/pull/3164) - Downgrade stylelint to avoid crash with not v16 compliant dependencies - Fix count of yaml-lint errors - Remove openssl reinstall, as base image has updated version from alpine 3.18.5 by [@​echoix](https://togithub.com/echoix) in [#​3181](https://togithub.com/oxsecurity/megalinter/pull/3181) - CI - Add arguments to make use of pytest-xdist, by [@​echoix](https://togithub.com/echoix) - Linter versions upgrades - [ansible-lint](https://ansible-lint.readthedocs.io/) from 6.22.0 to **6.22.1** - [bandit](https://bandit.readthedocs.io/en/latest/) from 1.7.5 to **1.7.6** - [cfn-lint](https://togithub.com/aws-cloudformation/cfn-lint) from 0.83.3 to **0.83.4** - [checkov](https://www.checkov.io/) from 3.0.39 to **3.1.25** - [checkstyle](https://checkstyle.sourceforge.io) from 10.12.5 to **10.12.6** - [csharpier](https://csharpier.com/) from 0.26.2 to **0.26.4** - [cspell](https://togithub.com/streetsidesoftware/cspell/tree/master/packages/cspell) from 8.0.0 to **8.1.3** - [dotnet-format](https://docs.microsoft.com/en-us/dotnet/core/tools/dotnet-format) from 6.0.417 to **7.0.114** - [eslint](https://eslint.org) from 8.54.0 to **8.55.0** - [gitleaks](https://togithub.com/gitleaks/gitleaks) from 8.18.0 to **8.18.1** - [isort](https://pycqa.github.io/isort/) from 5.12.0 to **5.13.0** - [lightning-flow-scanner](https://togithub.com/Lightning-Flow-Scanner) from 2.15.0 to **2.16.0** - [luacheck](https://luacheck.readthedocs.io) from 1.1.1 to **1.1.2** - [markdown-table-formatter](https://www.npmjs.com/package/markdown-table-formatter) from 1.4.0 to **1.5.0** - [markdownlint](https://togithub.com/DavidAnson/markdownlint) from 0.37.0 to **0.38.0** - [mypy](https://mypy.readthedocs.io/en/stable/) from 1.7.0 to **1.7.1** - [npm-groovy-lint](https://nvuillam.github.io/npm-groovy-lint/) from 12.1.0 to **13.0.2** - [phpcs](https://togithub.com/squizlabs/PHP_CodeSniffer) from 3.7.2 to **3.8.0** - [phplint](https://togithub.com/overtrue/phplint) from 9.0.4 to **9.0.6** - [phpstan](https://phpstan.org/) from 1.10.42 to **1.10.48** - [psalm](https://psalm.dev) from Psalm.5.15.0@​ to **Psalm.5.17.0@​** - [puppet-lint](http://puppet-lint.com/) from 4.2.1 to **4.2.3** - [pyright](https://togithub.com/Microsoft/pyright) from 1.1.336 to **1.1.339** - [roslynator](https://togithub.com/JosefPihrt/Roslynator) from 0.8.0.0 to **0.8.1.0** - [rubocop](https://rubocop.org/) from 1.57.2 to **1.58.0** - [ruff](https://togithub.com/astral-sh/ruff) from 0.1.6 to **0.1.7** - [secretlint](https://togithub.com/secretlint/secretlint) from 7.1.0 to **8.0.0** - [semgrep](https://semgrep.dev/) from 1.50.0 to **1.52.0** - [sfdx-scanner-apex](https://forcedotcom.github.io/sfdx-scanner/) from 3.18.0 to **3.19.0** - [sfdx-scanner-aura](https://forcedotcom.github.io/sfdx-scanner/) from 3.18.0 to **3.19.0** - [sfdx-scanner-lwc](https://forcedotcom.github.io/sfdx-scanner/) from 3.18.0 to **3.19.0** - [syft](https://togithub.com/anchore/syft) from 0.97.1 to **0.98.0** - [terraform-fmt](https://developer.hashicorp.com/terraform/cli/commands/fmt) from 1.6.4 to **1.6.5** - [terragrunt](https://terragrunt.gruntwork.io) from 0.53.4 to **0.54.0** - [trivy](https://aquasecurity.github.io/trivy/) from 0.47.0 to **0.48.0** - [trufflehog](https://togithub.com/trufflesecurity/trufflehog) from 3.63.0 to **3.63.2** - [vale](https://vale.sh/) from 2.29.7 to **2.30.0** ### [`v7.6.0`](https://togithub.com/oxsecurity/megalinter/blob/HEAD/CHANGELOG.md#v760---2023-11-19) [Compare Source](https://togithub.com/oxsecurity/megalinter/compare/v7.5.0...v7.6.0) - Major enhancements - New flavor [**c_cpp**](https://megalinter.io/latest/flavors/c_cpp/): New flavor for pure C/C++ projects, by [@​daltonv](https://togithub.com/daltonv) in [#​3067](https://togithub.com/oxsecurity/megalinter/pull/3067) - New flavor [**formatters**](https://megalinter.io/beta/flavors/formatters/): Contains only formatter linters, by [@​nvuillam](https://togithub.com/nvuillam) in [#​3071](https://togithub.com/oxsecurity/megalinter/pull/3071) - Add [**Salesforce Lightning Flow Scanner**](https://togithub.com/Lightning-Flow-Scanner), by [@​nvuillam](https://togithub.com/nvuillam) in [#​3092](https://togithub.com/oxsecurity/megalinter/pull/3092) - Core - Allow to use value `any` to always activate a linter who as a **\_DIRECTORY** variable. Example: `KUBERNETES_DIRECTORY: any`, by [@​nvuillam](https://togithub.com/nvuillam) in [#​3058](https://togithub.com/oxsecurity/megalinter/pull/3058) - Update base Docker image to `python:3.11.6-alpine3.18` - Fixes - Fix issue Gitleaks `--no-git` does not work anymore, [#​2945](https://togithub.com/oxsecurity/megalinter/issues/2945), in [#​3112](https://togithub.com/oxsecurity/megalinter/pull/3112) - Fix way to install powershell on Alpine linux image - Fix issue with VS Code devcontainer not building [#​3114](https://togithub.com/oxsecurity/megalinter/issues/3114) - Fix Default Workflow to handle latest ActionLint rules, by [@​nvuillam](https://togithub.com/nvuillam) in [#​3130](https://togithub.com/oxsecurity/megalinter/pull/3130) - Write checkov SARIF report `results_sarif.sarif` in `REPORT_FOLDER`, by [@​gmeligio](https://togithub.com/gmeligio) in [#​3121](https://togithub.com/oxsecurity/megalinter/pull/3121) - Updated lintr config template to use `linters_with_defaults()` (formerly `with_defaults()`) - Fix csharp installation dependencies, by [@​nvuillam](https://togithub.com/nvuillam) in [#​3075](https://togithub.com/oxsecurity/megalinter/pull/3075) - Fix powershell installation by [@​nvuillam](https://togithub.com/nvuillam) in [#​3126](https://togithub.com/oxsecurity/megalinter/pull/3126) - Doc - Update lintr links to their current locations, by [@​echoix](https://togithub.com/echoix) in [#​3122](https://togithub.com/oxsecurity/megalinter/issues/3122) - Update Pylint links to their current locations, by [@​echoix](https://togithub.com/echoix) in [#​3116](https://togithub.com/oxsecurity/megalinter/issues/3116) - Add R2DevOps way to setup MegaLinter on Gitlab, by [@​nvuillam](https://togithub.com/nvuillam) in [#​3129](https://togithub.com/oxsecurity/megalinter/pull/3129) - CI - Upgrade pymdown-extensions and markdown, by [@​BryanQuigley](https://togithub.com/BryanQuigley) in [#​3053](https://togithub.com/oxsecurity/megalinter/pull/3053) - Use docker/metadata-action for some internal CI, by [@​echoix](https://togithub.com/echoix) in [#​3110](https://togithub.com/oxsecurity/megalinter/pull/3110) - Call docker buildx prune instead of docker builder prune, by [@​echoix](https://togithub.com/echoix) in [#​3127](https://togithub.com/oxsecurity/megalinter/pull/3127) - Set schedule earlier for auto-update-linters.yml, allow manual runs, by [@​echoix](https://togithub.com/echoix) in [#​3066](https://togithub.com/oxsecurity/megalinter/pull/3066) - Add mike to dev/requirements.txt, by [@​echoix](https://togithub.com/echoix) in [#​3070](https://togithub.com/oxsecurity/megalinter/pull/3070) - Modernize dependabot.yml in correct directories, by [@​echoix](https://togithub.com/echoix) in [#​3093](https://togithub.com/oxsecurity/megalinter/pull/3093) - Fix devcontainer Dockerfile typo (fixes [#​3114](https://togithub.com/oxsecurity/megalinter/issues/3114)) by [@​daltonv](https://togithub.com/daltonv) in [#​3115](https://togithub.com/oxsecurity/megalinter/pull/3115) - Linter versions upgrades - [ansible-lint](https://ansible-lint.readthedocs.io/) from 6.21.1 to **6.22.0** - [bicep_linter](https://learn.microsoft.com/en-us/azure/azure-resource-manager/bicep/linter) from 0.22.6 to **0.23.1** - [black](https://black.readthedocs.io/en/stable/) from 23.10.1 to **23.11.0** - [cfn-lint](https://togithub.com/aws-cloudformation/cfn-lint) from 0.83.0 to **0.83.3** - [checkov](https://www.checkov.io/) from 3.0.12 to **3.0.39** - [checkstyle](https://checkstyle.sourceforge.io) from 10.12.4 to **10.12.5** - [clippy](https://togithub.com/rust-lang/rust-clippy) from 0.1.73 to **0.1.74** - [csharpier](https://csharpier.com/) from 0.25.0 to **0.26.2** - [cspell](https://togithub.com/streetsidesoftware/cspell/tree/master/packages/cspell) from 7.3.8 to **8.0.0** - [dotnet-format](https://docs.microsoft.com/en-us/dotnet/core/tools/dotnet-format) from 6.0.416 to **6.0.417** - [eslint](https://eslint.org) from 8.52.0 to **8.54.0** - [golangci-lint](https://golangci-lint.run/) from 1.55.1 to **1.55.2** - [kics](https://www.kics.io) from 1.7.10 to **1.7.11** - [kubeconform](https://togithub.com/yannh/kubeconform) from 0.6.3 to **0.6.4** - [mypy](https://mypy.readthedocs.io/en/stable/) from 1.6.1 to **1.7.0** - [npm-groovy-lint](https://nvuillam.github.io/npm-groovy-lint/) from 11.1.1 to **12.1.0** - [npm-package-json-lint](https://npmpackagejsonlint.org/) from 7.0.0 to **7.1.0** - [phpstan](https://phpstan.org/) from 1.10.39 to **1.10.42** - [powershell](https://togithub.com/PowerShell/PSScriptAnalyzer) from 7.3.9 to **7.4.0** - [powershell_formatter](https://togithub.com/PowerShell/PSScriptAnalyzer) from 7.3.9 to **7.4.0** - [prettier](https://prettier.io/) from 3.0.3 to **3.1.0** - [protolint](https://togithub.com/yoheimuta/protolint) from 0.46.2 to **0.46.3** - [pyright](https://togithub.com/Microsoft/pyright) from 1.1.333 to **1.1.336** - [ruff](https://togithub.com/astral-sh/ruff) from 0.1.3 to **0.1.6** - [secretlint](https://togithub.com/secretlint/secretlint) from 7.0.7 to **7.1.0** - [semgrep](https://semgrep.dev/) from 1.46.0 to **1.50.0** - [sfdx-scanner-apex](https://forcedotcom.github.io/sfdx-scanner/) from 3.17.0 to **3.18.0** - [sfdx-scanner-aura](https://forcedotcom.github.io/sfdx-scanner/) from 3.17.0 to **3.18.0** - [sfdx-scanner-lwc](https://forcedotcom.github.io/sfdx-scanner/) from 3.17.0 to **3.18.0** - [swiftlint](https://togithub.com/realm/SwiftLint) from 0.53.0 to **0.54.0** - [syft](https://togithub.com/anchore/syft) from 0.94.0 to **0.97.1** - [terraform-fmt](https://developer.hashicorp.com/terraform/cli/commands/fmt) from 1.6.2 to **1.6.4** - [terragrunt](https://terragrunt.gruntwork.io) from 0.53.0 to **0.53.4** - [tflint](https://togithub.com/terraform-linters/tflint) from 0.48.0 to **0.49.0** - [trivy-sbom](https://aquasecurity.github.io/trivy/) from 0.46.1 to **0.47.0** - [trivy](https://aquasecurity.github.io/trivy/) from 0.46.1 to **0.47.0** - [trufflehog](https://togithub.com/trufflesecurity/trufflehog) from 3.61.0 to **3.63.0** - [vale](https://vale.sh/) from 2.29.5 to **2.29.7** - [xmllint](https://gitlab.gnome.org/GNOME/libxml2/-/wikis/home) from 21104 to **21106** - [yamllint](https://yamllint.readthedocs.io/) from 1.32.0 to **1.33.0** ### [`v7.5.0`](https://togithub.com/oxsecurity/megalinter/blob/HEAD/CHANGELOG.md#v750---2023-10-29) [Compare Source](https://togithub.com/oxsecurity/megalinter/compare/v7.4.0...v7.5.0) - Core - mega-linter-runner: Convert to ES6 and upgrade npm dependencies. Node 18 minimum version is now required. - Allow to define `COMPILER_ONLY` virtual package as cargo dependency in descriptors to embed rust compiler in the Dockerfile - Optimize `@generated` marker scanning ([#​2654](https://togithub.com/oxsecurity/megalinter/pull/2654)) - Upgrade to python 3.12.0 - Media - [Achieve Code Consistency: MegaLinter Integration in Azure DevOps](https://techcommunity.microsoft.com/t5/azure-devops-blog/achieve-code-consistency-megalinter-integration-in-azure-devops/ba-p/3939448), by [Don Koning](https://techcommunity.microsoft.com/t5/user/viewprofilepage/user-id/2039143#profile) on [Microsoft Tech Community](https://techcommunity.microsoft.com/) - Fixes - build.py: Remove exclusivity between pip, gem & cargo packages - Salesforce linters: Switch sfdx-cli to [@​salesforce/cli](https://togithub.com/salesforce/cli) - Fixed issue with `actionlint` throwing an error on `if` statements in the generated workflow file - Added default `.devskim.json` to mitigate errors introduced when no config exists - Doc - Display list of articles from newest to oldest - Fix incorrect environment variable in djlint docs - Improve lychee documentation to add an example of `.lycheeignore` - CI - Add the other maintainers globally to the CODEOWNERS file ([#​3008](https://togithub.com/oxsecurity/megalinter/pull/3008)) - Free disk space earlier in the process to avoid failure during docker build - Set flavors-stats.json as a generated file in .gitattributes ([#​3023](https://togithub.com/oxsecurity/megalinter/pull/3023)) - Update and fix our ChatOps automations to only run on pull request comments, by [@​echoix](https://togithub.com/echoix) in [#​3034](https://togithub.com/oxsecurity/megalinter/pull/3034) - Use App::cpm to install perlcritic faster, and clean `.perl-cpm` cache, by [@​echoix](https://togithub.com/echoix) in [#​3036](https://togithub.com/oxsecurity/megalinter/pull/3036) - Add failure message in ChatOps build-command and Slash dispatcher, by [@​echoix](https://togithub.com/echoix) in [#​3037](https://togithub.com/oxsecurity/megalinter/pull/3037) - Linter versions upgrades - [ansible-lint](https://ansible-lint.readthedocs.io/) from 6.20.0 **6.21.1** - [bicep_linter](https://learn.microsoft.com/en-us/azure/azure-resource-manager/bicep/linter) from 0.21.1 to **0.22.6** - [black](https://black.readthedocs.io/en/stable/) from 23.9.1 to **23.10.1** - [cfn-lint](https://togithub.com/aws-cloudformation/cfn-lint) from 0.80.2 to **0.83.0** - [checkov](https://www.checkov.io/) from 2.4.48 to **3.0.12** - [checkstyle](https://checkstyle.sourceforge.io) from 10.12.3 to **10.12.4** - [clippy](https://togithub.com/rust-lang/rust-clippy) from 0.1.72 to **0.1.73** - [clj-kondo](https://togithub.com/borkdude/clj-kondo) from 2023.09.07 to **2023.10.20** - [cspell](https://togithub.com/streetsidesoftware/cspell/tree/master/packages/cspell) from 7.3.6 to **7.3.8** - [devskim](https://togithub.com/microsoft/DevSkim) from 1.0.22 to **1.0.23** - [dotnet-format](https://docs.microsoft.com/en-us/dotnet/core/tools/dotnet-format) from 6.0.414 to **6.0.416** - [editorconfig-checker](https://editorconfig-checker.github.io/) from 2.7.1 to **2.7.2** - [eslint-plugin-jsonc](https://ota-meshi.github.io/eslint-plugin-jsonc/) from 2.9.0 to **2.10.0** - [eslint](https://eslint.org) from 8.49.0 to **8.52.0** - [golangci-lint](https://golangci-lint.run/) from 1.54.2 to **1.55.1** - [kics](https://www.kics.io) from 1.7.8 to **1.7.10** - [ktlint](https://ktlint.github.io) from 1.0.0 to **1.0.1** - [mypy](https://mypy.readthedocs.io/en/stable/) from 1.5.1 to **1.6.1** - [perlcritic](https://metacpan.org/pod/Perl::Critic) from 1.150 to **1.152** - [phpstan](https://phpstan.org/) from 1.10.35 to **1.10.39** - [powershell](https://togithub.com/PowerShell/PSScriptAnalyzer) from 7.3.7 to **7.3.9** - [powershell_formatter](https://togithub.com/PowerShell/PSScriptAnalyzer) from 7.3.7 to **7.3.9** - [protolint](https://togithub.com/yoheimuta/protolint) from 0.46.0 to **0.46.2** - [puppet-lint](http://puppet-lint.com/) from 4.2.0 to **4.2.1** - [pylint](https://pylint.pycqa.org) from 2.17.5 to **3.0.2** - [pyright](https://togithub.com/Microsoft/pyright) from 1.1.327 to **1.1.333** - [rubocop](https://rubocop.org/) from 1.56.3 to **1.57.2** - [ruff](https://togithub.com/astral-sh/ruff) from 0.1.2 to **0.1.3** - [ruff](https://togithub.com/charliermarsh/ruff) from 0.0.290 to **0.1.2** - [semgrep](https://semgrep.dev/) from 1.41.0 to **1.46.0** - [sfdx-scanner-apex](https://forcedotcom.github.io/sfdx-scanner/) from 3.16.0 to **3.17.0** - [sfdx-scanner-aura](https://forcedotcom.github.io/sfdx-scanner/) from 3.16.0 to **3.17.0** - [sfdx-scanner-lwc](https://forcedotcom.github.io/sfdx-scanner/) from 3.16.0 to **3.17.0** - [snakefmt](https://togithub.com/snakemake/snakefmt) from 0.8.4 to **0.8.5** - [sqlfluff](https://www.sqlfluff.com/) from 2.3.2 to **2.3.5** - [stylelint](https://stylelint.io) from 15.10.3 to **15.11.0** - [swiftlint](https://togithub.com/realm/SwiftLint) from 0.52.4 to **0.53.0** - [syft](https://togithub.com/anchore/syft) from 0.91.0 to **0.94.0** - [terraform-fmt](https://developer.hashicorp.com/terraform/cli/commands/fmt) from 1.5.7 to **1.6.2** - [terragrunt](https://terragrunt.gruntwork.io) from 0.51.4 to **0.53.0** - [trivy-sbom](https://aquasecurity.github.io/trivy/) from 0.45.1 to **0.46.1** - [trivy](https://aquasecurity.github.io/trivy/) from 0.45.1 to **0.46.1** - [trufflehog](https://togithub.com/trufflesecurity/trufflehog) from 3.56.1 to **3.61.0** - [v8r](https://togithub.com/chris48s/v8r) from 2.0.0 to **2.1.0** - [vale](https://vale.sh/) from 2.29.0 to **2.29.5**

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.