Skip to content

chore(deps): update tools to latest versions#3045

Merged
willmurphyscode merged 3 commits intomainfrom
auto/latest-tools
Nov 14, 2025
Merged

chore(deps): update tools to latest versions#3045
willmurphyscode merged 3 commits intomainfrom
auto/latest-tools

Conversation

@anchore-actions-token-generator
Copy link
Copy Markdown
Contributor

@anchore-actions-token-generator anchore-actions-token-generator Bot commented Nov 13, 2025
edited
Loading 

 TOOL           UPDATE            
──────────────────────────────────
 gh             v2.82.1 → v2.83.1 
 golangci-lint  v2.5.0 → v2.6.1

This is an auto-generated pull request to update all of the tools to the latest versions.

@willmurphyscode willmurphyscode self-assigned this Nov 13, 2025
@willmurphyscode willmurphyscode moved this to In Progress in OSS Nov 13, 2025
@westonsteimel @github-actions
chore(deps): update tools to latest versions
58fe137 
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
@willmurphyscode
chore: appease new linter
ef23b8c 
Signed-off-by: Will Murphy <willmurphyscode@users.noreply.github.com>
@willmurphyscode
let same schema version acquire newline in description field
d4f0dfa 
Signed-off-by: Will Murphy <willmurphyscode@users.noreply.github.com>
spiffcs
spiffcs approved these changes Nov 14, 2025
View reviewed changes
Copy link
Copy Markdown
Contributor

@spiffcs spiffcs left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved - I did have a comment about the json schema modifications and the newlines added.

Was this caught by a linter?

Why did schema/grype/db-search/json/schema-1.1.3.json and schema/grype/db-search/json/schema-latest.json get modifications in the namespace description?

Is this just a consequence of the documentation changes in the code? Since it's a description I don't think we need to worry about it at all, just a curiosity 😄

@willmurphyscode
Copy link
Copy Markdown
Contributor

willmurphyscode commented Nov 14, 2025

@spiffcs yes, the new linter requires Deprecated: to be on its own line, and the description field in the JSON is generated from the doc comment it got a newline too. I suppose it might have been technically correct to bump the JSON schema but a whitespace change inside a field description didn't feel like it was even a minor change. (The reason they're both modified is that I tricked the JSON schema generator into changing the existing schema rather than bumping since there is no change to the data described at all.)

@willmurphyscode willmurphyscode merged commit 741332e into main Nov 14, 2025
12 checks passed
@willmurphyscode willmurphyscode deleted the auto/latest-tools branch November 14, 2025 14:30
@github-project-automation github-project-automation Bot moved this from In Progress to Done in OSS Nov 14, 2025
spiffcs added a commit to joonas/grype that referenced this pull request Nov 20, 2025
@spiffcs
Merge branch 'main' into chore/replace-archiver-with-archives
f76df12 
* main:
  chore(deps): update tools to latest versions (anchore#3051)
  chore(deps): bump actions/checkout from 5.0.0 to 5.0.1 (anchore#3059)
  chore(deps): bump anchore/sbom-action from 0.20.9 to 0.20.10 (anchore#3060)
  chore(deps): bump github/codeql-action from 4.31.2 to 4.31.4 (anchore#3061)
  chore(deps): bump golang.org/x/crypto from 0.44.0 to 0.45.0 (anchore#3063)
  chore(deps): bump actions/setup-go in /.github/actions/bootstrap (anchore#3064)
  chore(deps): update anchore dependencies (anchore#3055)
  test: update quality gate db to latest version (anchore#3053)
  fix: normalize java runtime qualifiers in maven version comparisons (anchore#3034)
  chore(deps): update tools to latest versions (anchore#3045)
  fix: junit template use CDATA block to prevent XML parse errors (anchore#3019)
  feat: add basic VEX support for SBOM and other sources
  chore(deps): bump golang.org/x/tools from 0.38.0 to 0.39.0 (anchore#3046)
  chore(deps): bump github.com/opencontainers/selinux (anchore#3044)
  chore(deps): bump github.com/olekukonko/tablewriter from 1.1.0 to 1.1.1 (anchore#3039)
  keep nested loggers labeled (anchore#3040)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@willmurphyscode willmurphyscode willmurphyscode approved these changes

@spiffcs spiffcs spiffcs approved these changes

Assignees

@willmurphyscode willmurphyscode

Labels

dependencies

Projects

OSS
Archived in project

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@willmurphyscode @spiffcs @westonsteimel