Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update maru support dependencies #181

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): update maru support dependencies #181

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jan 21, 2025
edited
Loading

This PR contains the following updates:

Package Type Update Change
actions/create-github-app-token action patch v1.11.1 -> v1.11.5
actions/setup-go action minor v5.2.0 -> v5.3.0
actions/setup-node action minor v4.1.0 -> v4.2.0
actions/upload-artifact action patch v4.6.0 -> v4.6.1
anchore/sbom-action action minor v0.17.9 -> v0.18.0
github/codeql-action action patch v3.28.1 -> v3.28.10
goreleaser/goreleaser-action action minor v6.1.0 -> v6.2.1
morphy/revive-action docker digest 793c4e8 -> 28eca8b
ossf/scorecard-action action patch v2.4.0 -> v2.4.1
zarf-dev/zarf minor v0.46.0 -> v0.49.0

Release Notes

actions/create-github-app-token (actions/create-github-app-token)

v1.11.5

Compare Source

Bug Fixes

v1.11.4

Compare Source

Bug Fixes

v1.11.3

Compare Source

Bug Fixes

v1.11.2

Compare Source

Bug Fixes
actions/setup-go (actions/setup-go)

v5.3.0

Compare Source

What's Changed
New Contributors

Full Changelog: actions/setup-go@v5...v5.3.0

actions/setup-node (actions/setup-node)

v4.2.0

Compare Source

actions/upload-artifact (actions/upload-artifact)

v4.6.1

Compare Source

What's Changed

Full Changelog: actions/upload-artifact@v4...v4.6.1

anchore/sbom-action (anchore/sbom-action)

v0.18.0

Compare Source

Changes in v0.18.0

github/codeql-action (github/codeql-action)

v3.28.10

Compare Source

v3.28.9

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.9 - 07 Feb 2025
  • Update default CodeQL bundle version to 2.20.4. #​2753

See the full CHANGELOG.md for more information.

v3.28.8

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.8 - 29 Jan 2025
  • Enable support for Kotlin 2.1.10 when running with CodeQL CLI v2.20.3. #​2744

See the full CHANGELOG.md for more information.

v3.28.7

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.7 - 29 Jan 2025

No user facing changes.

See the full CHANGELOG.md for more information.

v3.28.6

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.6 - 27 Jan 2025

  • Re-enable debug artifact upload for CLI versions 2.20.3 or greater. #​2726

See the full CHANGELOG.md for more information.

v3.28.5

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.5 - 24 Jan 2025

  • Update default CodeQL bundle version to 2.20.3. #​2717

See the full CHANGELOG.md for more information.

v3.28.4

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.4 - 23 Jan 2025

No user facing changes.

See the full CHANGELOG.md for more information.

v3.28.3

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.3 - 22 Jan 2025
  • Update default CodeQL bundle version to 2.20.2. #​2707
  • Fix an issue downloading the CodeQL Bundle from a GitHub Enterprise Server instance which occurred when the CodeQL Bundle had been synced to the instance using the CodeQL Action sync tool and the Actions runner did not have Zstandard installed. #​2710
  • Uploading debug artifacts for CodeQL analysis is temporarily disabled. #​2712

See the full CHANGELOG.md for more information.

v3.28.2

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.2 - 21 Jan 2025

No user facing changes.

See the full CHANGELOG.md for more information.

goreleaser/goreleaser-action (goreleaser/goreleaser-action)

v6.2.1

Compare Source

What's Changed

This version of the actions adds support for GoReleaser Pro v2.7.0 versioning (which dropped the -pro suffix).
Older versions should work fine.

[!WARNING]
This version is required for GoReleaser Pro v2.7.0+.
Read more here.

Full Changelog: goreleaser/goreleaser-action@v6.2.0...v6.2.1

v6.2.0

Compare Source

What's Changed

This version of the actions adds support for GoReleaser Pro v2.7.0 versioning (which dropped the -pro suffix).
Older versions should work fine.

[!WARNING]
This version is required for GoReleaser Pro v2.7.0+.
Read more here.

Full Changelog: goreleaser/goreleaser-action@v6.1.0...v6.2.0

ossf/scorecard-action (ossf/scorecard-action)

v2.4.1

Compare Source

zarf-dev/zarf (zarf-dev/zarf)

v0.49.0

Compare Source

This release includes a number of project adjustments as well as fixes.

Breaking Changes

  • Configuration file formats other than yaml and toml are being deprecated
    • See Proposed ZEP-0015 for background on limitations driving this decision
  • zarf connect default execution has a UX change
    • The --cli-only flag has been removed - this behavior is now the default
    • Browsers can be automatically opened with the command using the --open flag

The update to zarf connect is with consideration of zarf behaviors defaulting to fully-encapsulated execution. As a general principle we want zarf to have minimal dependency on external/system tooling by default.

What's Changed

🚀 Updates
📦 Dependencies

Full Changelog: zarf-dev/zarf@v0.48.1...v0.49.0

v0.48.1

Compare Source

What's Changed

🚀 Updates
📦 Dependencies

Full Changelog: zarf-dev/zarf@v0.48.0...v0.48.1

v0.48.0

Compare Source

What's Changed

🚀 Updates
📦 Dependencies

Full Changelog: zarf-dev/zarf@v0.47.0...v0.48.0

v0.47.0

Compare Source

Highlights:

Breaking
  • Zarf's Commands have been unexported in favor of cmd.NewZarfCommand() for users embedding Zarf in their CLI applications.
UX
  • The logging overhaul is out of beta and now fully released. --log-format="legacy" will be available for at least the next two minor releases for a smooth upgrade path.
  • zarf package create's build scroll has been simplified and Yaml inspection has been migrated to a first class command zarf dev inspect {definition} (dev inspect feature requests welcome!).

What's Changed

Full Changelog: zarf-dev/zarf@v0.46.0...v0.47.0

Configuration

📅 Schedule: Branch creation - "after 12pm every weekday,before 11am every weekday" in timezone America/New_York, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot requested a review from a team as a code owner January 21, 2025 06:14
@renovate renovate bot force-pushed the renovate/maru-support-dependencies branch from 682f0f5 to d50ebf5 Compare January 21, 2025 22:38
@renovate renovate bot changed the title chore(deps): update support-deps to v5.3.0 chore(deps): update maru support dependencies Jan 21, 2025
@renovate renovate bot force-pushed the renovate/maru-support-dependencies branch 9 times, most recently from dbe4112 to a38cfbc Compare January 29, 2025 19:26
@renovate renovate bot force-pushed the renovate/maru-support-dependencies branch 4 times, most recently from f55d296 to a0cedac Compare February 6, 2025 19:10
@renovate renovate bot force-pushed the renovate/maru-support-dependencies branch 2 times, most recently from ff3031a to e92b870 Compare February 11, 2025 09:34
@renovate renovate bot force-pushed the renovate/maru-support-dependencies branch 4 times, most recently from 890235c to 41d7e4e Compare February 21, 2025 00:58
@renovate
chore(deps): update maru support dependencies
f1536a1 
| datasource  | package                         | from    | to       |
| ----------- | ------------------------------- | ------- | -------- |
| github-tags | actions/create-github-app-token | v1.11.1 | v1.11.5  |
| github-tags | actions/setup-go                | v5.2.0  | v5.3.0   |
| github-tags | actions/setup-node              | v4.1.0  | v4.2.0   |
| github-tags | actions/upload-artifact         | v4.6.0  | v4.6.1   |
| github-tags | anchore/sbom-action             | v0.17.9 | v0.18.0  |
| github-tags | github/codeql-action            | v3.28.1 | v3.28.10 |
| github-tags | goreleaser/goreleaser-action    | v6.1.0  | v6.2.1   |
| github-tags | ossf/scorecard-action           | v2.4.0  | v2.4.1   |
| github-tags | zarf-dev/zarf                   | v0.46.0 | v0.49.0  |
@renovate renovate bot force-pushed the renovate/maru-support-dependencies branch from 41d7e4e to f1536a1 Compare February 21, 2025 20:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
support-deps
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants