Open dependabot[bot] opened 3 days ago
[!IMPORTANT]
Review skipped
Bot user detected.
To trigger a single review, invoke the
@coderabbitai review
command.You can disable this status message by setting the
reviews.review_status
tofalse
in the CodeRabbit configuration file.
Descriptor | Linter | Files | Fixed | Errors | Elapsed time |
---|---|---|---|---|---|
β ACTION | actionlint | 1 | 0 | 0.01s | |
β COPYPASTE | jscpd | yes | 20 | 3.5s | |
β EDITORCONFIG | editorconfig-checker | 1 | 0 | 0.01s | |
β REPOSITORY | checkov | yes | 1 | 21.67s | |
β REPOSITORY | devskim | yes | 7 | 1.61s | |
β REPOSITORY | dustilock | yes | no | 0.01s | |
β REPOSITORY | gitleaks | yes | 2 | 3.71s | |
β REPOSITORY | git_diff | yes | no | 1.03s | |
β REPOSITORY | grype | yes | no | 20.22s | |
β REPOSITORY | kics | yes | 11 | 32.77s | |
β REPOSITORY | secretlint | yes | 1 | 5.23s | |
β REPOSITORY | syft | yes | no | 0.49s | |
β REPOSITORY | trivy | yes | no | 6.45s | |
β REPOSITORY | trivy-sbom | yes | no | 1.47s | |
β REPOSITORY | trufflehog | yes | no | 11.09s | |
β SPELL | cspell | 2 | 5 | 2.8s | |
β SPELL | lychee | 1 | 0 | 0.08s | |
β YAML | prettier | 1 | 0 | 0 | 1.36s |
β YAML | v8r | 1 | 0 | 2.42s | |
β YAML | yamllint | 1 | 0 | 0.67s |
See detailed report in MegaLinter reports
_Set VALIDATE_ALL_CODEBASE: true
in mega-linter.yml to validate all sources, not only the diff_
Bumps github/codeql-action from 3.26.5 to 3.26.7.
Changelog
Sourced from github/codeql-action's changelog.
Commits
8214744
Merge pull request #2478 from github/update-v3.26.7-4a01ec798a3b3e07
Update changelog for v3.26.74a01ec7
Merge pull request #2474 from github/aeisenberg/always-upload-eslint-sarif762dbae
Merge pull request #2471 from github/update-bundle/codeql-bundle-v2.18.40d0f998
Always upload eslint.sarife817992
Merge pull request #2469 from github/aeisenberg/upload-eslint-sarif49021ad
Merge pull request #2472 from rvermeulen/rvermeulen/update-release-branch-authz56b8418
Ignore suppressed alertsf824adb
Merge branch 'main' into rvermeulen/update-release-branch-authz8d9ed0b
Add changelog noteDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show