chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
docker/login-action	action	minor	v3.0.0 -> v3.1.0
ghcr.io/kyverno/policy-reporter		minor	2.17.5 -> 2.18.1
policy-reporter (source)		patch	2.22.0 -> 2.22.4
updatecli/updatecli-action	action	minor	v2.54.0 -> v2.56.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

docker/login-action (docker/login-action)

v3.1.0

Compare Source

• build(deps): bump @​babel/traverse from 7.17.3 to 7.23.2 in https://github.com/docker/login-action/pull/618
• build(deps): bump @​docker/actions-toolkit from 0.12.0 to 0.18.0 in https://github.com/docker/login-action/pull/616 https://github.com/docker/login-action/pull/636 https://github.com/docker/login-action/pull/682
• build(deps): bump aws-sdk dependencies to 3.529.1 in https://github.com/docker/login-action/pull/624 https://github.com/docker/login-action/pull/685
• build(deps): bump http-proxy-agent to 7.0.2 in https://github.com/docker/login-action/pull/676
• build(deps): bump https-proxy-agent to 7.0.4 in https://github.com/docker/login-action/pull/676
• build(deps): bump undici from 5.26.5 to 5.28.3 in https://github.com/docker/login-action/pull/677

Full Changelog: docker/login-action@v3.0.0...v3.1.0

kyverno/policy-reporter (policy-reporter)

v2.22.4

Compare Source

• Helm Chart
  • fix mapping of headers properties to from values.yaml to config.yaml

v2.22.3

Compare Source

• Helm Chart
  • fix(helm): typo in email report config [#​413 by sudoleg]

v2.22.2

Compare Source

• Helm Chart
  • Policy Reporter v2.18.1
    • Fix Resource Mapping in Violation Report E-Mails

v2.22.1

Compare Source

• Helm Chart
  • Fix indentation in SummaryReport CronJob

updatecli/updatecli-action (updatecli/updatecli-action)

v2.56.0: 🌈

Compare Source

Changes

• Bump updatecli version to v0.74.0 @​github-actions (#​504)
• Bump All NPM package version @​github-actions (#​502)

Contributors

@​github-actions and @​github-actions[bot]

v2.55.0: 🌈

Compare Source

WARNING

This release introduces a few important changes.

Ephemeral branch

The ephemeral branch created by Updatecli before opening a pullrequest or merge request changes its format to include the base branch, more information here about why this change is needed.
The consequence of this, is that every pull requests or merge requests created by Updatecli before 0.73.0 will become orphan. They can be closed as Updatecli will recreate them with the new ephemeral branch format.

Autodiscovery updating container tag

The Autodiscovery plugins for Helm, Dockerfile, and docker compose have been improved to also include the image digest by default.

So

1. updatecli/updatecli:latest will be updated to updatecli/updatecli:latest@sha256xxxx
2. updatecli/updatecli:0.23.0 to updatecli/updatecli:0.73.0@​sha256xxx
3. updatecli/updatecli:0.23.0@​sha256xxx to updatecli/updatecli:0.73.0@​sha256yyy

Docker image using digest without specifying the tag will be ignored.

This behavior can be disabled using the parameter digest set to false such as in the following example:

autodiscovery:
  scmid: default
  crawlers:
    helm:
      digest: false

Changes

• Bump updatecli version to v0.73.0 @​github-actions (#​501)
• chore(deps): Bump tibdex/github-app-token from 1.8.2 to 2.1.0 @​dependabot (#​458)
• Bump All NPM package version @​github-actions (#​497)
• chore(deps): Bump release-drafter/release-drafter from 5 to 6 @​dependabot (#​499)
• chore(deps): Bump actions/setup-node from 4.0.1 to 4.0.2 @​dependabot (#​500)
• chore(deps): Bump @​actions/core from 1.10.0 to 1.10.1 @​dependabot (#​446)

Contributors

@​dependabot, @​dependabot[bot], @​github-actions and @​github-actions[bot]

---

Configuration

📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[viccuad]

Needs test of policy-reporter-ui.

[viccuad]

Tested policy-reporter ui successfully, ready to merge.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠ Warning: custom changes will be lost.