chore(deps): update github-actions #54

renovate · 2024-04-29T08:33:37Z

This PR contains the following updates:

Package	Type	Update	Change
actions/checkout	action	patch	`v4.1.1` -> `v4.1.4`
actions/download-artifact	action	patch	`v4.1.4` -> `v4.1.7`
actions/upload-artifact	action	patch	`v4.3.1` -> `v4.3.3`
github/codeql-action	action	patch	`v3.25.0` -> `v3.25.3`
lycheeverse/lychee-action	action	minor	`v1.9.3` -> `v1.10.0`
oxsecurity/megalinter	action	minor	`v7.10.0` -> `v7.11.1`

Release Notes

actions/checkout (actions/checkout)

Fix: Disable sparse checkout whenever sparse-checkout option is not present @dscho in https://github.com/actions/checkout/pull/1598

actions/download-artifact (actions/download-artifact)

`v4.1.7`

Compare Source

What's Changed

Update @actions/artifact dependency by @bethanyj28 in https://github.com/actions/download-artifact/pull/325

Full Changelog: actions/download-artifact@v4.1.6...v4.1.7

`v4.1.6`

Compare Source

What's Changed

updating @actions/artifact dependency to v2.1.6 by @eggyhead in https://github.com/actions/download-artifact/pull/324

Full Changelog: actions/download-artifact@v4.1.5...v4.1.6

`v4.1.5`

Compare Source

What's Changed

Update readme with v3/v2/v1 deprecation notice by @robherley in https://github.com/actions/download-artifact/pull/322
Update dependencies @actions/core to v1.10.1 and @actions/artifact to v2.1.5

Full Changelog: actions/download-artifact@v4.1.4...v4.1.5

actions/upload-artifact (actions/upload-artifact)

`v4.3.3`

Compare Source

What's Changed

updating @actions/artifact dependency to v2.1.6 by @eggyhead in https://github.com/actions/upload-artifact/pull/565

Full Changelog: actions/upload-artifact@v4.3.2...v4.3.3

`v4.3.2`

Compare Source

What's Changed

Update release-new-action-version.yml by @konradpabjan in https://github.com/actions/upload-artifact/pull/516
Minor fix to the migration readme by @andrewakim in https://github.com/actions/upload-artifact/pull/523
Update readme with v3/v2/v1 deprecation notice by @robherley in https://github.com/actions/upload-artifact/pull/561
updating @actions/artifact dependency to v2.1.5 and @actions/core to v1.0.1 by @eggyhead in https://github.com/actions/upload-artifact/pull/562

New Contributors

@andrewakim made their first contribution in https://github.com/actions/upload-artifact/pull/523

Full Changelog: actions/upload-artifact@v4.3.1...v4.3.2

github/codeql-action (github/codeql-action)

`v3.25.3`

Compare Source

`v3.25.2`

Compare Source

`v3.25.1`

Compare Source

lycheeverse/lychee-action (lycheeverse/lychee-action)

`v1.10.0`

Compare Source

What's Changed

Update actions/checkout to version 4 by @jacobdalamb in https://github.com/lycheeverse/lychee-action/pull/224
Bump lychee to 0.15.0 by @mre in https://github.com/lycheeverse/lychee-action/pull/226

New Contributors

@jacobdalamb made their first contribution in https://github.com/lycheeverse/lychee-action/pull/224

Full Changelog: lycheeverse/lychee-action@v1.9.3...v1.10.0

oxsecurity/megalinter (oxsecurity/megalinter)

`v7.11.1`

Compare Source

Fixes
- Implement fallback in case git diff does not work with merge-base
Linter versions upgrades
- stylelint from 16.3.1 to 16.4.0

`v7.11.0`

Compare Source

Core
- Allow to override the number of parallel cores used, with variable PARALLEL_PROCESS_NUMBER, by @nvuillam in #3428
- Upgrade base python image from 3.12.2-alpine3.19 to 3.12.3-alpine3.19
- Upgrade PHP 8.1 to 8.3 by @llaville in #3464
- Add descriptor pre / post commands, by @bdovaz in #3468
- Allow merge lists with EXTENDS, by @bdovaz in #3469
Media
New linters
- Add Kotlin detekt linter, by @enciyo in #3408
Reporters
- Add ruff sarif support, by @Skitionek in #3486
Fixes
- Fix listing of modified files, by @vkucera in #3472. Fixes #2125.
- Fix conflict between prettier and yamllint about spaces, by @apeyrat in #3426
- Ensure trufflehog does not auto-update itself, by @wandering-tales in #3430
- Salesforce linters: use sf + default Flow Scanner rules, by @nvuillam in #3435
- Disable JSON_ESLINT_PLUGIN_JSONC until ota-meshi/eslint-plugin-jsonc#328 is fixed
- Upgrade tar in mega-linter-runner
- secretlint: remove default .secretlintignore that was never used but .gitignore is used instead. Fixes #3328
- Add jpeg, xlsx to .gitleaks.toml, by @rasa in #3434
- Fix Json Schema, by @nvuillam in #3470
- Remove TEMPLATES/.secretlintignore, by @pjungermann in #3476
Doc
- Update R2DevOps logo, by @nvuillam in #3436
- Update Roslynator repo url and logo, by @TommyE123 in #3444
- Fix clang-format documentation links to point to the correct version. Fixes #3452, by @daltonv in #3453
- Add copy to clipboard button in code block (documentation), by @nikkii86 in #3491
Flavors
- Add C & C++ linters in Python flavor by @nvuillam in #3456
CI
- Make SPELL_LYCHEE non blocking for internal CI jobs
- Remove old unused automerge workflows by @echoix in #3432
- Add consistent python3/python handling at build.sh, by @pjungermann in #3475
Linter versions upgrades
- ansible-lint from 24.2.0 to 24.2.2
- bicep_linter from 0.25.53 to 0.26.170
- black from 24.2.0 to 24.4.0
- cfn-lint from 0.86.0 to 0.86.4
- checkov from 3.2.34 to 3.2.74
- checkstyle from 10.14.0 to 10.15.0
- clippy from 0.1.76 to 0.1.77
- clj-kondo from 2024.03.05 to 2024.03.13
- csharpier from 0.27.3 to 0.28.1
- cspell from 8.6.0 to 8.7.0
- devskim from 1.0.32 to 1.0.33
- dotnet-format from 8.0.102 to 8.0.104
- eslint-plugin-jsonc from 2.13.0 to 2.15.1
- golangci-lint from 1.56.2 to 1.57.2
- grype from 0.74.7 to 0.77.0
- kics from 1.7.13 to 2.0.0
- lightning-flow-scanner from 2.18.0 to 2.22.0
- markdown-link-check from 3.11.2 to 3.12.1
- npm-groovy-lint from 14.2.3 to 14.4.1
- phpcs from 3.9.0 to 3.9.1
- phpstan from 1.10.60 to 1.10.67
- protolint from 0.48.0 to 0.49.6
- psalm from Psalm.5.23.0@ to Psalm.5.23.1@
- pyright from 1.1.353 to 1.1.359
- roslynator from 0.8.3.0 to 0.8.6.0
- rstcheck from 6.2.0 to 6.2.1
- rubocop from 1.62.0 to 1.63.3
- ruff from 0.3.2 to 0.4.1
- secretlint from 8.1.2 to 8.2.3
- sfdx-scanner-apex from 3.21.0 to 3.23.0
- sfdx-scanner-aura from 3.21.0 to 3.23.0
- sfdx-scanner-lwc from 3.21.0 to 3.23.0
- snakefmt from 0.10.0 to 0.10.1
- snakemake from 8.5.5 to 8.10.8
- spectral from 6.11.0 to 6.11.1
- sqlfluff from 2.3.5 to 3.0.5
- stylelint from 16.2.1 to 16.3.1
- syft from 1.0.1 to 1.2.0
- tekton-lint from 1.0.0 to 1.0.2
- terraform-fmt from 1.7.4 to 1.8.1
- terragrunt from 0.55.13 to 0.57.5
- trivy-sbom from 0.49.1 to 0.50.2
- trivy from 0.49.1 to 0.50.2
- trufflehog from 3.69.0 to 3.73.0
- vale from 3.2.2 to 3.4.0

Configuration

📅 Schedule: Branch creation - "before 4am on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

github-actions · 2024-04-29T08:36:43Z

🦙 MegaLinter status: ✅ SUCCESS

Descriptor	Linter	Files	Errors	Elapsed time
✅ ACTION	actionlint	6	0	0.07s
✅ COPYPASTE	jscpd	yes	no	1.24s
✅ DOCKERFILE	hadolint	1	0	0.08s
✅ JSON	jsonlint	3	0	0.24s
✅ JSON	prettier	3	0	0.7s
✅ JSON	v8r	3	0	3.49s
✅ PYTHON	bandit	1	0	1.06s
✅ PYTHON	black	1	0	1.06s
✅ PYTHON	flake8	1	0	0.8s
✅ PYTHON	isort	1	0	0.33s
✅ PYTHON	mypy	1	0	2.07s
✅ PYTHON	pylint	1	0	1.56s
✅ PYTHON	pyright	1	0	6.95s
✅ PYTHON	ruff	1	0	0.05s
✅ REPOSITORY	checkov	yes	no	12.58s
✅ REPOSITORY	devskim	yes	no	1.78s
✅ REPOSITORY	dustilock	yes	no	0.03s
✅ REPOSITORY	gitleaks	yes	no	0.16s
✅ REPOSITORY	git_diff	yes	no	0.01s
✅ REPOSITORY	grype	yes	no	13.28s
✅ REPOSITORY	kics	yes	no	3.81s
✅ REPOSITORY	secretlint	yes	no	1.12s
✅ REPOSITORY	syft	yes	no	0.42s
✅ REPOSITORY	trivy	yes	no	7.52s
✅ REPOSITORY	trivy-sbom	yes	no	6.3s
✅ REPOSITORY	trufflehog	yes	no	3.75s
✅ YAML	prettier	8	0	1.08s
✅ YAML	v8r	8	0	8.11s
✅ YAML	yamllint	8	0	0.75s

See detailed report in MegaLinter reports

You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.

Click here to request the new flavor

MegaLinter is graciously provided by

github-actions · 2024-04-29T08:37:36Z

Target `ghcr.io/miracum/github-reusable-workflow-without-test-image:pr-54 (debian 12.5)`

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`libc6`	CVE-2024-2961	HIGH	2.36-9+deb12u4	2.36-9+deb12u6
`libc6`	CVE-2024-33599	HIGH	2.36-9+deb12u4
`libc6`	CVE-2024-33600	MEDIUM	2.36-9+deb12u4
`libc6`	CVE-2024-33601	MEDIUM	2.36-9+deb12u4
`libc6`	CVE-2024-33602	MEDIUM	2.36-9+deb12u4
`libc6`	CVE-2010-4756	LOW	2.36-9+deb12u4
`libc6`	CVE-2018-20796	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010022	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010023	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010024	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010025	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-9192	LOW	2.36-9+deb12u4
`libexpat1`	CVE-2023-52425	HIGH	2.5.0-1
`libexpat1`	CVE-2023-52426	LOW	2.5.0-1
`libexpat1`	CVE-2024-28757	LOW	2.5.0-1
`libgcc-s1`	CVE-2023-4039	MEDIUM	12.2.0-14
`libgcc-s1`	CVE-2022-27943	LOW	12.2.0-14
`libgomp1`	CVE-2023-4039	MEDIUM	12.2.0-14
`libgomp1`	CVE-2022-27943	LOW	12.2.0-14
`libgssapi-krb5-2`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libncursesw6`	CVE-2023-50495	MEDIUM	6.4-4
`libncursesw6`	CVE-2023-45918	LOW	6.4-4
`libpython3.11-minimal`	CVE-2023-24329	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-41105	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-6597	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-27043	MEDIUM	3.11.2-6
`libpython3.11-minimal`	CVE-2023-40217	MEDIUM	3.11.2-6
`libpython3.11-minimal`	CVE-2024-0450	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-24329	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-41105	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-6597	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-27043	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-40217	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2024-0450	MEDIUM	3.11.2-6
`libsqlite3-0`	CVE-2023-7104	HIGH	3.40.1-2
`libsqlite3-0`	CVE-2024-0232	MEDIUM	3.40.1-2
`libsqlite3-0`	CVE-2021-45346	LOW	3.40.1-2
`libssl3`	CVE-2023-5678	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2023-6129	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2023-6237	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-0727	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2007-6755	LOW	3.0.11-1~deb12u2
`libssl3`	CVE-2010-0928	LOW	3.0.11-1~deb12u2
`libssl3`	CVE-2024-2511	LOW	3.0.11-1~deb12u2
`libstdc++6`	CVE-2023-4039	MEDIUM	12.2.0-14
`libstdc++6`	CVE-2022-27943	LOW	12.2.0-14
`libtinfo6`	CVE-2023-50495	MEDIUM	6.4-4
`libtinfo6`	CVE-2023-45918	LOW	6.4-4
`libuuid1`	CVE-2024-28085	HIGH	2.38.1-5+b1	2.38.1-5+deb12u1
`libuuid1`	CVE-2022-0563	LOW	2.38.1-5+b1
`python3.11-minimal`	CVE-2023-24329	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-41105	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-6597	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-27043	MEDIUM	3.11.2-6
`python3.11-minimal`	CVE-2023-40217	MEDIUM	3.11.2-6
`python3.11-minimal`	CVE-2024-0450	MEDIUM	3.11.2-6
`zlib1g`	CVE-2023-45853	CRITICAL	1:1.2.13.dfsg-1

No Misconfigurations found

github-actions · 2024-04-29T08:37:44Z

Target `ghcr.io/miracum/github-reusable-workflow-without-test-image:v1.2.3-beta.123 (debian 12.5)`

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`libc6`	CVE-2024-2961	HIGH	2.36-9+deb12u4	2.36-9+deb12u6
`libc6`	CVE-2024-33599	HIGH	2.36-9+deb12u4
`libc6`	CVE-2024-33600	MEDIUM	2.36-9+deb12u4
`libc6`	CVE-2024-33601	MEDIUM	2.36-9+deb12u4
`libc6`	CVE-2024-33602	MEDIUM	2.36-9+deb12u4
`libc6`	CVE-2010-4756	LOW	2.36-9+deb12u4
`libc6`	CVE-2018-20796	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010022	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010023	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010024	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010025	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-9192	LOW	2.36-9+deb12u4
`libexpat1`	CVE-2023-52425	HIGH	2.5.0-1
`libexpat1`	CVE-2023-52426	LOW	2.5.0-1
`libexpat1`	CVE-2024-28757	LOW	2.5.0-1
`libgcc-s1`	CVE-2023-4039	MEDIUM	12.2.0-14
`libgcc-s1`	CVE-2022-27943	LOW	12.2.0-14
`libgomp1`	CVE-2023-4039	MEDIUM	12.2.0-14
`libgomp1`	CVE-2022-27943	LOW	12.2.0-14
`libgssapi-krb5-2`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libncursesw6`	CVE-2023-50495	MEDIUM	6.4-4
`libncursesw6`	CVE-2023-45918	LOW	6.4-4
`libpython3.11-minimal`	CVE-2023-24329	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-41105	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-6597	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-27043	MEDIUM	3.11.2-6
`libpython3.11-minimal`	CVE-2023-40217	MEDIUM	3.11.2-6
`libpython3.11-minimal`	CVE-2024-0450	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-24329	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-41105	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-6597	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-27043	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-40217	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2024-0450	MEDIUM	3.11.2-6
`libsqlite3-0`	CVE-2023-7104	HIGH	3.40.1-2
`libsqlite3-0`	CVE-2024-0232	MEDIUM	3.40.1-2
`libsqlite3-0`	CVE-2021-45346	LOW	3.40.1-2
`libssl3`	CVE-2023-5678	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2023-6129	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2023-6237	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-0727	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2007-6755	LOW	3.0.11-1~deb12u2
`libssl3`	CVE-2010-0928	LOW	3.0.11-1~deb12u2
`libssl3`	CVE-2024-2511	LOW	3.0.11-1~deb12u2
`libstdc++6`	CVE-2023-4039	MEDIUM	12.2.0-14
`libstdc++6`	CVE-2022-27943	LOW	12.2.0-14
`libtinfo6`	CVE-2023-50495	MEDIUM	6.4-4
`libtinfo6`	CVE-2023-45918	LOW	6.4-4
`libuuid1`	CVE-2024-28085	HIGH	2.38.1-5+b1	2.38.1-5+deb12u1
`libuuid1`	CVE-2022-0563	LOW	2.38.1-5+b1
`python3.11-minimal`	CVE-2023-24329	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-41105	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-6597	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-27043	MEDIUM	3.11.2-6
`python3.11-minimal`	CVE-2023-40217	MEDIUM	3.11.2-6
`python3.11-minimal`	CVE-2024-0450	MEDIUM	3.11.2-6
`zlib1g`	CVE-2023-45853	CRITICAL	1:1.2.13.dfsg-1

No Misconfigurations found

github-actions · 2024-04-29T08:37:52Z

Target `ghcr.io/miracum/github-reusable-workflow:pr-54 (debian 12.5)`

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`libc6`	CVE-2024-2961	HIGH	2.36-9+deb12u4	2.36-9+deb12u6
`libc6`	CVE-2024-33599	HIGH	2.36-9+deb12u4
`libc6`	CVE-2024-33600	MEDIUM	2.36-9+deb12u4
`libc6`	CVE-2024-33601	MEDIUM	2.36-9+deb12u4
`libc6`	CVE-2024-33602	MEDIUM	2.36-9+deb12u4
`libc6`	CVE-2010-4756	LOW	2.36-9+deb12u4
`libc6`	CVE-2018-20796	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010022	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010023	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010024	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010025	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-9192	LOW	2.36-9+deb12u4
`libexpat1`	CVE-2023-52425	HIGH	2.5.0-1
`libexpat1`	CVE-2023-52426	LOW	2.5.0-1
`libexpat1`	CVE-2024-28757	LOW	2.5.0-1
`libgcc-s1`	CVE-2023-4039	MEDIUM	12.2.0-14
`libgcc-s1`	CVE-2022-27943	LOW	12.2.0-14
`libgomp1`	CVE-2023-4039	MEDIUM	12.2.0-14
`libgomp1`	CVE-2022-27943	LOW	12.2.0-14
`libgssapi-krb5-2`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libncursesw6`	CVE-2023-50495	MEDIUM	6.4-4
`libncursesw6`	CVE-2023-45918	LOW	6.4-4
`libpython3.11-minimal`	CVE-2023-24329	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-41105	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-6597	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-27043	MEDIUM	3.11.2-6
`libpython3.11-minimal`	CVE-2023-40217	MEDIUM	3.11.2-6
`libpython3.11-minimal`	CVE-2024-0450	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-24329	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-41105	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-6597	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-27043	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-40217	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2024-0450	MEDIUM	3.11.2-6
`libsqlite3-0`	CVE-2023-7104	HIGH	3.40.1-2
`libsqlite3-0`	CVE-2024-0232	MEDIUM	3.40.1-2
`libsqlite3-0`	CVE-2021-45346	LOW	3.40.1-2
`libssl3`	CVE-2023-5678	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2023-6129	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2023-6237	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-0727	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2007-6755	LOW	3.0.11-1~deb12u2
`libssl3`	CVE-2010-0928	LOW	3.0.11-1~deb12u2
`libssl3`	CVE-2024-2511	LOW	3.0.11-1~deb12u2
`libstdc++6`	CVE-2023-4039	MEDIUM	12.2.0-14
`libstdc++6`	CVE-2022-27943	LOW	12.2.0-14
`libtinfo6`	CVE-2023-50495	MEDIUM	6.4-4
`libtinfo6`	CVE-2023-45918	LOW	6.4-4
`libuuid1`	CVE-2024-28085	HIGH	2.38.1-5+b1	2.38.1-5+deb12u1
`libuuid1`	CVE-2022-0563	LOW	2.38.1-5+b1
`python3.11-minimal`	CVE-2023-24329	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-41105	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-6597	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-27043	MEDIUM	3.11.2-6
`python3.11-minimal`	CVE-2023-40217	MEDIUM	3.11.2-6
`python3.11-minimal`	CVE-2024-0450	MEDIUM	3.11.2-6
`zlib1g`	CVE-2023-45853	CRITICAL	1:1.2.13.dfsg-1

No Misconfigurations found

github-actions · 2024-04-29T08:43:21Z

🎉 This PR is included in version 1.8.3 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

chore(deps): update github-actions

37c2d15

renovate bot force-pushed the renovate/github-actions branch from ee51552 to 37c2d15 Compare April 29, 2024 08:36

chgl approved these changes Apr 29, 2024

View reviewed changes

chgl merged commit 392030c into master Apr 29, 2024
24 checks passed

renovate bot deleted the renovate/github-actions branch April 29, 2024 08:41

github-actions bot added the released label Apr 29, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update github-actions #54

chore(deps): update github-actions #54

renovate bot commented Apr 29, 2024

github-actions bot commented Apr 29, 2024 •

edited

Loading

github-actions bot commented Apr 29, 2024

github-actions bot commented Apr 29, 2024

github-actions bot commented Apr 29, 2024

github-actions bot commented Apr 29, 2024

chore(deps): update github-actions #54

chore(deps): update github-actions #54

Conversation

renovate bot commented Apr 29, 2024

Release Notes

What's Changed

What's Changed

What's Changed

What's Changed

What's Changed

What's Changed

New Contributors

What's Changed

New Contributors

Configuration

github-actions bot commented Apr 29, 2024 • edited Loading

🦙 MegaLinter status: ✅ SUCCESS

github-actions bot commented Apr 29, 2024

Target ghcr.io/miracum/github-reusable-workflow-without-test-image:pr-54 (debian 12.5)

No Misconfigurations found

github-actions bot commented Apr 29, 2024

Target ghcr.io/miracum/github-reusable-workflow-without-test-image:v1.2.3-beta.123 (debian 12.5)

No Misconfigurations found

github-actions bot commented Apr 29, 2024

Target ghcr.io/miracum/github-reusable-workflow:pr-54 (debian 12.5)

No Misconfigurations found

github-actions bot commented Apr 29, 2024

github-actions bot commented Apr 29, 2024 •

edited

Loading

Target `ghcr.io/miracum/github-reusable-workflow-without-test-image:pr-54 (debian 12.5)`

Target `ghcr.io/miracum/github-reusable-workflow-without-test-image:v1.2.3-beta.123 (debian 12.5)`

Target `ghcr.io/miracum/github-reusable-workflow:pr-54 (debian 12.5)`