From cf1a60b7d8d81a7936d102cb67414c48aae3a953 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 6 Jan 2025 10:28:19 -0700 Subject: [PATCH] chore(deps): update support-deps (#1147) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | Type | Update | |---|---|---|---|---|---|---|---| | [@types/node](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/master/types/node) ([source](https://redirect.github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node)) | [`22.10.2` -> `22.10.5`](https://renovatebot.com/diffs/npm/@types%2fnode/22.10.2/22.10.5) | [![age](https://developer.mend.io/api/mc/badges/age/npm/@types%2fnode/22.10.5?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/npm/@types%2fnode/22.10.5?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/npm/@types%2fnode/22.10.2/22.10.5?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@types%2fnode/22.10.2/22.10.5?slim=true)](https://docs.renovatebot.com/merge-confidence/) | devDependencies | patch | | [defenseunicorns/lula](https://redirect.github.com/defenseunicorns/lula) | `v0.13.0` -> `v0.14.0` | [![age](https://developer.mend.io/api/mc/badges/age/github-tags/defenseunicorns%2flula/v0.14.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/github-tags/defenseunicorns%2flula/v0.14.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/github-tags/defenseunicorns%2flula/v0.13.0/v0.14.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/github-tags/defenseunicorns%2flula/v0.13.0/v0.14.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | | minor | | [terraform-aws-modules/s3-bucket/aws](https://registry.terraform.io/modules/terraform-aws-modules/s3-bucket/aws) ([source](https://redirect.github.com/terraform-aws-modules/terraform-aws-s3-bucket)) | `4.2.2` -> `4.3.0` | [![age](https://developer.mend.io/api/mc/badges/age/terraform-module/terraform-aws-modules%2fs3-bucket%2faws/4.3.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/terraform-module/terraform-aws-modules%2fs3-bucket%2faws/4.3.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/terraform-module/terraform-aws-modules%2fs3-bucket%2faws/4.2.2/4.3.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/terraform-module/terraform-aws-modules%2fs3-bucket%2faws/4.2.2/4.3.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | module | minor | --- ### Release Notes
defenseunicorns/lula (defenseunicorns/lula) ### [`v0.14.0`](https://redirect.github.com/defenseunicorns/lula/releases/tag/v0.14.0) [Compare Source](https://redirect.github.com/defenseunicorns/lula/compare/v0.13.0...v0.14.0) This release includes a host of great changes. From supporting the generation of SSP's with `lula generate system-security-plan` to the initial release of `lula report` and enumerating controls from component definitions. The OPA domain now allows for the inclusion of common rego modules that can be imported and shared across validations. As well as the ability to run validation tests across all validations in your OSCAL during `lula validate` with the `--run-tests` flag. Other fixes and dependency updates are also included - checkout the changelog if interested! ##### ⚠ BREAKING CHANGES - **generate:** initial generate ssp command ([#​812](https://redirect.github.com/defenseunicorns/lula/issues/812)) ##### Features - **generate:** initial generate ssp command ([#​812](https://redirect.github.com/defenseunicorns/lula/issues/812)) ([74fd193](https://redirect.github.com/defenseunicorns/lula/commit/74fd193cf8f0ce8b618632befe187839866d8179)) - **opa:** allow importing custom OPA modules in OPA policies ([#​826](https://redirect.github.com/defenseunicorns/lula/issues/826)) ([d3a8690](https://redirect.github.com/defenseunicorns/lula/commit/d3a869049c70a7237440651c6ce24bbde32f3ad4)) - **report:** initial lula report ([#​599](https://redirect.github.com/defenseunicorns/lula/issues/599)) ([27e9f25](https://redirect.github.com/defenseunicorns/lula/commit/27e9f2537ce7fe620232a37d12a8f5682cc8e2e3)) - **validate:** validate run tests flag ([#​838](https://redirect.github.com/defenseunicorns/lula/issues/838)) ([be2a063](https://redirect.github.com/defenseunicorns/lula/commit/be2a06356934f242b309d978cd1c050e6e9de1ad)) - **validation-tests:** validation tests path resolution ([#​845](https://redirect.github.com/defenseunicorns/lula/issues/845)) ([c54d5ba](https://redirect.github.com/defenseunicorns/lula/commit/c54d5bafe65e827e29fb27ff5250ac3c577a9fc8)) - **validation:** account for controls not evaluated by Lula ([#​847](https://redirect.github.com/defenseunicorns/lula/issues/847)) ([58b234b](https://redirect.github.com/defenseunicorns/lula/commit/58b234b382e8131cdb76631909ab53e9261306b0)) ##### Bug Fixes - **alert:** update golang dep golang.org/x/net to patched version ([#​860](https://redirect.github.com/defenseunicorns/lula/issues/860)) ([6851e88](https://redirect.github.com/defenseunicorns/lula/commit/6851e88a72bfc5cf01a6a96a42dab03801b6752d)) - **assessment:** adjust reason accordingly across multiple components ([#​862](https://redirect.github.com/defenseunicorns/lula/issues/862)) ([f0fe67c](https://redirect.github.com/defenseunicorns/lula/commit/f0fe67c30b2a13bc4c1dd727093636724f5aab24)) - **deps:** workaround pterm.SetDefaultOutput until it is fixed upstream ([#​848](https://redirect.github.com/defenseunicorns/lula/issues/848)) ([749cdff](https://redirect.github.com/defenseunicorns/lula/commit/749cdffed085549681d7e570f2dd410a8bd055ec)) - **oscal:** update version of assessment results generated ([#​853](https://redirect.github.com/defenseunicorns/lula/issues/853)) ([0774f66](https://redirect.github.com/defenseunicorns/lula/commit/0774f6627f4160b59a1f6edd69cbb16b916a0536)) ##### Miscellaneous - add fuzz tests and daily fuzz workflow ([#​832](https://redirect.github.com/defenseunicorns/lula/issues/832)) ([377ed80](https://redirect.github.com/defenseunicorns/lula/commit/377ed80ae4c98809f8f82b52dd972926327c091c)) - **deps:** bump golang.org/x/crypto from 0.28.0 to 0.31.0 ([#​846](https://redirect.github.com/defenseunicorns/lula/issues/846)) ([df40fca](https://redirect.github.com/defenseunicorns/lula/commit/df40fcaef7730a6f99ccc2dd82bb1e6769c91b97)) - **deps:** update actions/create-github-app-token action to v1.11.1 ([#​864](https://redirect.github.com/defenseunicorns/lula/issues/864)) ([978fb2e](https://redirect.github.com/defenseunicorns/lula/commit/978fb2ec34da125be5cb70a03710c7a53c60ed66)) - **deps:** update actions/setup-go action to v5.2.0 ([#​844](https://redirect.github.com/defenseunicorns/lula/issues/844)) ([5e9d87a](https://redirect.github.com/defenseunicorns/lula/commit/5e9d87ac91cf6e4f813acb650599334c02783198)) - **deps:** update actions/upload-artifact action to v4.5.0 ([#​859](https://redirect.github.com/defenseunicorns/lula/issues/859)) ([33bcf02](https://redirect.github.com/defenseunicorns/lula/commit/33bcf02369f45440ef49c803bb5c1ac02123b259)) - **deps:** update anchore/sbom-action action to v0.17.9 ([#​855](https://redirect.github.com/defenseunicorns/lula/issues/855)) ([d0ab57e](https://redirect.github.com/defenseunicorns/lula/commit/d0ab57eb20337761f344239c351921f475e94c45)) - **deps:** update dependency commitlint to v19.6.1 ([#​857](https://redirect.github.com/defenseunicorns/lula/issues/857)) ([d23cedf](https://redirect.github.com/defenseunicorns/lula/commit/d23cedff5770666b3f06d8953d86e995c6bfcba1)) - **deps:** update github.com/charmbracelet/x/exp/teatest digest to [`e9f42af`](https://redirect.github.com/defenseunicorns/lula/commit/e9f42af) ([#​793](https://redirect.github.com/defenseunicorns/lula/issues/793)) ([7a1e5ad](https://redirect.github.com/defenseunicorns/lula/commit/7a1e5adac41062548e5b41bb657e2300e685295e)) - **deps:** update github/codeql-action action to v3.27.8 ([#​842](https://redirect.github.com/defenseunicorns/lula/issues/842)) ([401b4ec](https://redirect.github.com/defenseunicorns/lula/commit/401b4ec0a47d67b4c8993bad0e2984421a1b2fe8)) - **deps:** update github/codeql-action action to v3.27.9 ([#​854](https://redirect.github.com/defenseunicorns/lula/issues/854)) ([71f7cd8](https://redirect.github.com/defenseunicorns/lula/commit/71f7cd87ead400311d64ce9dd95d227a189c063c)) - **deps:** update github/codeql-action action to v3.28.0 ([#​865](https://redirect.github.com/defenseunicorns/lula/issues/865)) ([f4f52f9](https://redirect.github.com/defenseunicorns/lula/commit/f4f52f90d15200e85b089edc3fc88983758ea5c0)) - **deps:** update kubernetes packages to v0.32.0 ([#​843](https://redirect.github.com/defenseunicorns/lula/issues/843)) ([996e98b](https://redirect.github.com/defenseunicorns/lula/commit/996e98b7bb4db164fd300ff47560518131086204)) - **docs:** added file domain ([#​852](https://redirect.github.com/defenseunicorns/lula/issues/852)) ([5d7bc02](https://redirect.github.com/defenseunicorns/lula/commit/5d7bc022ceb24012433594528271ad1026d91625)) - **e2e:** add OPA remote module e2e test ([#​850](https://redirect.github.com/defenseunicorns/lula/issues/850)) ([5e0b2d0](https://redirect.github.com/defenseunicorns/lula/commit/5e0b2d0e6f86302b194c06d5423f162aa71bcb01)) #### What's Changed - chore: add fuzz tests and daily fuzz workflow by [@​mildwonkey](https://redirect.github.com/mildwonkey) in [https://github.com/defenseunicorns/lula/pull/832](https://redirect.github.com/defenseunicorns/lula/pull/832) - chore(deps): update actions/setup-go action to v5.2.0 by [@​renovate](https://redirect.github.com/renovate) in [https://github.com/defenseunicorns/lula/pull/844](https://redirect.github.com/defenseunicorns/lula/pull/844) - feat(opa): allow importing custom OPA modules in OPA policies by [@​nacx](https://redirect.github.com/nacx) in [https://github.com/defenseunicorns/lula/pull/826](https://redirect.github.com/defenseunicorns/lula/pull/826) - docs: added file domain by [@​meganwolf0](https://redirect.github.com/meganwolf0) in [https://github.com/defenseunicorns/lula/pull/852](https://redirect.github.com/defenseunicorns/lula/pull/852) - chore(deps): update github/codeql-action action to v3.27.8 by [@​renovate](https://redirect.github.com/renovate) in [https://github.com/defenseunicorns/lula/pull/842](https://redirect.github.com/defenseunicorns/lula/pull/842) - chore(deps): bump golang.org/x/crypto from 0.28.0 to 0.31.0 by [@​dependabot](https://redirect.github.com/dependabot) in [https://github.com/defenseunicorns/lula/pull/846](https://redirect.github.com/defenseunicorns/lula/pull/846) - fix: workaround pterm.SetDefaultOutput until it is fixed upstream to fix the message.UseBuffer by [@​nacx](https://redirect.github.com/nacx) in [https://github.com/defenseunicorns/lula/pull/848](https://redirect.github.com/defenseunicorns/lula/pull/848) - chore(e2e): add OPA remote module e2e test by [@​nacx](https://redirect.github.com/nacx) in [https://github.com/defenseunicorns/lula/pull/850](https://redirect.github.com/defenseunicorns/lula/pull/850) - fix(oscal): update version of assessment results generated by [@​brandtkeller](https://redirect.github.com/brandtkeller) in [https://github.com/defenseunicorns/lula/pull/853](https://redirect.github.com/defenseunicorns/lula/pull/853) - feat(valiation): account for controls not evaluated by Lula by [@​nacx](https://redirect.github.com/nacx) in [https://github.com/defenseunicorns/lula/pull/847](https://redirect.github.com/defenseunicorns/lula/pull/847) - feat(generate)!: initial generate ssp command by [@​meganwolf0](https://redirect.github.com/meganwolf0) in [https://github.com/defenseunicorns/lula/pull/812](https://redirect.github.com/defenseunicorns/lula/pull/812) - chore(deps): update github/codeql-action action to v3.27.9 by [@​renovate](https://redirect.github.com/renovate) in [https://github.com/defenseunicorns/lula/pull/854](https://redirect.github.com/defenseunicorns/lula/pull/854) - chore(deps): update anchore/sbom-action action to v0.17.9 by [@​renovate](https://redirect.github.com/renovate) in [https://github.com/defenseunicorns/lula/pull/855](https://redirect.github.com/defenseunicorns/lula/pull/855) - chore(deps): update dependency commitlint to v19.6.1 by [@​renovate](https://redirect.github.com/renovate) in [https://github.com/defenseunicorns/lula/pull/857](https://redirect.github.com/defenseunicorns/lula/pull/857) - feat: initial lula report by [@​CloudBeard](https://redirect.github.com/CloudBeard) in [https://github.com/defenseunicorns/lula/pull/599](https://redirect.github.com/defenseunicorns/lula/pull/599) - chore(deps): update kubernetes packages to v0.32.0 by [@​renovate](https://redirect.github.com/renovate) in [https://github.com/defenseunicorns/lula/pull/843](https://redirect.github.com/defenseunicorns/lula/pull/843) - chore(deps): update actions/upload-artifact action to v4.5.0 by [@​renovate](https://redirect.github.com/renovate) in [https://github.com/defenseunicorns/lula/pull/859](https://redirect.github.com/defenseunicorns/lula/pull/859) - feat: validate run tests by [@​meganwolf0](https://redirect.github.com/meganwolf0) in [https://github.com/defenseunicorns/lula/pull/838](https://redirect.github.com/defenseunicorns/lula/pull/838) - feat(validation-tests): validation tests path resolution by [@​meganwolf0](https://redirect.github.com/meganwolf0) in [https://github.com/defenseunicorns/lula/pull/845](https://redirect.github.com/defenseunicorns/lula/pull/845) - fix(alert): update golang dep golang.org/x/net to patched version by [@​brandtkeller](https://redirect.github.com/brandtkeller) in [https://github.com/defenseunicorns/lula/pull/860](https://redirect.github.com/defenseunicorns/lula/pull/860) - fix(assessment): adjust reason accordingly across multiple components by [@​brandtkeller](https://redirect.github.com/brandtkeller) in [https://github.com/defenseunicorns/lula/pull/862](https://redirect.github.com/defenseunicorns/lula/pull/862) - chore(deps): update github.com/charmbracelet/x/exp/teatest digest to [`e9f42af`](https://redirect.github.com/defenseunicorns/lula/commit/e9f42af) by [@​renovate](https://redirect.github.com/renovate) in [https://github.com/defenseunicorns/lula/pull/793](https://redirect.github.com/defenseunicorns/lula/pull/793) - chore(deps): update actions/create-github-app-token action to v1.11.1 by [@​renovate](https://redirect.github.com/renovate) in [https://github.com/defenseunicorns/lula/pull/864](https://redirect.github.com/defenseunicorns/lula/pull/864) - chore(deps): update github/codeql-action action to v3.28.0 by [@​renovate](https://redirect.github.com/renovate) in [https://github.com/defenseunicorns/lula/pull/865](https://redirect.github.com/defenseunicorns/lula/pull/865) - chore(main): release 0.14.0 by [@​github-actions](https://redirect.github.com/github-actions) in [https://github.com/defenseunicorns/lula/pull/839](https://redirect.github.com/defenseunicorns/lula/pull/839) #### New Contributors - [@​nacx](https://redirect.github.com/nacx) made their first contribution in [https://github.com/defenseunicorns/lula/pull/826](https://redirect.github.com/defenseunicorns/lula/pull/826) **Full Changelog**: https://github.com/defenseunicorns/lula/compare/v0.13.0...v0.14.0
terraform-aws-modules/terraform-aws-s3-bucket (terraform-aws-modules/s3-bucket/aws) ### [`v4.3.0`](https://redirect.github.com/terraform-aws-modules/terraform-aws-s3-bucket/blob/HEAD/CHANGELOG.md#430-2024-12-21) [Compare Source](https://redirect.github.com/terraform-aws-modules/terraform-aws-s3-bucket/compare/v4.2.2...v4.3.0) ##### Features - Added Account-level Public Access Block module, and minor fixes as fallback ([#​299](https://redirect.github.com/terraform-aws-modules/terraform-aws-s3-bucket/issues/299)) ([69f0f4e](https://redirect.github.com/terraform-aws-modules/terraform-aws-s3-bucket/commit/69f0f4ebfb93969ec8950e92fd32215d718f63c9))
--- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://redirect.github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/defenseunicorns/uds-core). Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Chance <139784371+UnicornChance@users.noreply.github.com> --- .github/actions/setup/action.yaml | 2 +- .github/test-infra/aws/rke2/irsa.tf | 2 +- test/jest/package-lock.json | 6 +++--- test/playwright/package-lock.json | 6 +++--- 4 files changed, 8 insertions(+), 8 deletions(-) diff --git a/.github/actions/setup/action.yaml b/.github/actions/setup/action.yaml index 40a0d4494..ae1d45cd6 100644 --- a/.github/actions/setup/action.yaml +++ b/.github/actions/setup/action.yaml @@ -41,7 +41,7 @@ runs: uses: defenseunicorns/lula-action/setup@badad8c4b1570095f57e66ffd62664847698a3b9 # v0.0.1 with: # renovate: datasource=github-tags depName=defenseunicorns/lula versioning=semver-coerced - version: v0.13.0 + version: v0.14.0 - name: Iron Bank Login if: ${{ inputs.registry1Username != '' }} diff --git a/.github/test-infra/aws/rke2/irsa.tf b/.github/test-infra/aws/rke2/irsa.tf index 17f014503..34cabc0c7 100644 --- a/.github/test-infra/aws/rke2/irsa.tf +++ b/.github/test-infra/aws/rke2/irsa.tf @@ -36,7 +36,7 @@ resource "aws_secretsmanager_secret_version" "private_key" { # Public bucket to host OIDC files module "oidc_bucket" { source = "terraform-aws-modules/s3-bucket/aws" - version = "4.2.2" + version = "4.3.0" bucket = "${var.environment}-oidc-${random_string.ssm.result}" force_destroy = var.force_destroy diff --git a/test/jest/package-lock.json b/test/jest/package-lock.json index 738b6e836..b761b230e 100644 --- a/test/jest/package-lock.json +++ b/test/jest/package-lock.json @@ -1245,9 +1245,9 @@ "dev": true }, "node_modules/@types/node": { - "version": "22.10.2", - "resolved": "https://registry.npmjs.org/@types/node/-/node-22.10.2.tgz", - "integrity": "sha512-Xxr6BBRCAOQixvonOye19wnzyDiUtTeqldOOmj3CkeblonbccA12PFwlufvRdrpjXxqnmUaeiU5EOA+7s5diUQ==", + "version": "22.10.5", + "resolved": "https://registry.npmjs.org/@types/node/-/node-22.10.5.tgz", + "integrity": "sha512-F8Q+SeGimwOo86fiovQh8qiXfFEh2/ocYv7tU5pJ3EXMSSxk1Joj5wefpFK2fHTf/N6HKGSxIDBT9f3gCxXPkQ==", "dev": true, "license": "MIT", "dependencies": { diff --git a/test/playwright/package-lock.json b/test/playwright/package-lock.json index a7f6e9ef4..50d771765 100644 --- a/test/playwright/package-lock.json +++ b/test/playwright/package-lock.json @@ -28,9 +28,9 @@ } }, "node_modules/@types/node": { - "version": "22.10.2", - "resolved": "https://registry.npmjs.org/@types/node/-/node-22.10.2.tgz", - "integrity": "sha512-Xxr6BBRCAOQixvonOye19wnzyDiUtTeqldOOmj3CkeblonbccA12PFwlufvRdrpjXxqnmUaeiU5EOA+7s5diUQ==", + "version": "22.10.5", + "resolved": "https://registry.npmjs.org/@types/node/-/node-22.10.5.tgz", + "integrity": "sha512-F8Q+SeGimwOo86fiovQh8qiXfFEh2/ocYv7tU5pJ3EXMSSxk1Joj5wefpFK2fHTf/N6HKGSxIDBT9f3gCxXPkQ==", "dev": true, "license": "MIT", "dependencies": {