chore(deps): update github-actions #60

renovate · 2024-06-01T00:25:35Z

This PR contains the following updates:

Package	Type	Update	Change
actions/checkout	action	patch	`v4.1.6` -> `v4.1.7`
actions/dependency-review-action	action	patch	`v4.3.2` -> `v4.3.3`
aquasecurity/trivy-action	action	minor	`0.21.0` -> `0.22.0`
docker/build-push-action	action	digest	`2cdde99` -> `ca052bb`
github/codeql-action	action	patch	`v3.25.6` -> `v3.25.9`
oxsecurity/megalinter	action	minor	`v7.11.1` -> `v7.12.0`

Release Notes

actions/checkout (actions/checkout)

`v4.1.7`

Compare Source

Bump the minor-npm-dependencies group across 1 directory with 4 updates by @dependabot in https://github.com/actions/checkout/pull/1739
Bump actions/checkout from 3 to 4 by @dependabot in https://github.com/actions/checkout/pull/1697
Check out other refs/* by commit by @orhantoy in https://github.com/actions/checkout/pull/1774
Pin actions/checkout's own workflows to a known, good, stable version. by @jww3 in https://github.com/actions/checkout/pull/1776

actions/dependency-review-action (actions/dependency-review-action)

aquasecurity/trivy-action (aquasecurity/trivy-action)

`v0.22.0`

Compare Source

What's Changed

chore(docs): Reference the use of a pinned version by @simar7 in https://github.com/aquasecurity/trivy-action/pull/356
Upgrade trivy to v0.52.0 by @Keralin in https://github.com/aquasecurity/trivy-action/pull/364

New Contributors

@Keralin made their first contribution in https://github.com/aquasecurity/trivy-action/pull/364

Full Changelog: aquasecurity/trivy-action@0.21.0...0.22.0

github/codeql-action (github/codeql-action)

`v3.25.9`

Compare Source

`v3.25.8`

Compare Source

`v3.25.7`

Compare Source

oxsecurity/megalinter (oxsecurity/megalinter)

`v7.12.0`

Compare Source

Core
- Add new logs (at debug level) on each linter activation/deactivation
- Clean MegaLinter own CVE exceptions and order the remaining ones with links to related issues
- Upgrade to Java 21 except for npm-groovy-lint that requires Java 17
Media
- Add blog post 5 ways MegaLinter upped our DevSecOps game to the list of English articles by @wesley-dean-flexion in #3596
Linters
- Add PHP fixer by @llaville in #3598
- API_SPECTRAL was added as replacement for OPENAPI_SPECTRAL (deprecated), supporting AsyncAPI and OpenAPI by default. Uses Spectral's standard config file name .spectral.yaml instead of .openapirc.yml with a default config with rulesets for AsyncAPI and OpenAPI enabled. Fixes #3387
- Disable SQL_TSQLLINT until security issues are solved. Related to tsqllint/tsqllint#333
- PHP linters (PHP_PHPCS, PHP_PHPLINT, PHP_PHPSTAN) add support to SARIF report output format with help of https://github.com/llaville/sarif-php-sdk
- Php psalm improvement by @llaville in #3541
- KOTLIN_KTLINT now supports list_of_files mode, and has better error counting
- Upgrade KOTLIN_DETEKT and make it work with cli_lint_mode = project
Reporters
Fixes
- Change golangci-lint lint mode to project, by @wandering-tales in #3509
- Disable sql-lint as it is no longer maintained
- Add new entries findUnusedCode and findUnusedBaselineEntry in default psalm.xml configuration file for PHP_PSALM linter. Related to #3538
- fix(pylint): overgeneral-exceptions fully qualified name by @gardar in #3576
- Update ktlint descriptor to support list_of_files and better error counting by @Yann-J in #3575
- Sync PowerShell version in arm.megalinter-descriptor.yml by @echoix in #3586
- Adjust find commands to clean up files in same step by @echoix in #3588
- Upgrade KOTLIN_DETEKT and make it work with cli_lint_mode = project by @nvuillam in #3590
Doc
- Handle disabled_reason property in descriptors
- Sort enums in json schema, by @echoix in #3595
Flavors
CI
- Build: take in account disabled linters for workflow auto-update
- Remove useless package-lock.json that was in python tests folder
- Fix SARIF_REPORTER that was wrongly sent to true to format & fix test methods
- Build: Write ARG lines at the top of Dockerfiles if they are used by FROM variables
- Remove Github Actions Workflow telemetry to improve performances
- Update Docker image for Gitpod to run on Ubuntu Noble, by @echoix
- Update makefile bootstrap config (gitpod or local) to use uv for package installation, by @echoix
- Use uv to install Python deps for CI by @echoix in #3561
- Use a single find command to delete pycache files by @echoix in #3562
- Sort schema enums by @echoix in #3595
Linter versions upgrades
- actionlint from 1.6.27 to 1.7.1 on 2024-05-28
- ansible-lint from 24.2.2 to 24.2.3 on 2024-05-20
- bicep_linter from 0.26.170 to 0.27.1 on 2024-05-07
- black from 24.4.0 to 24.4.2 on 2024-04-26
- cfn-lint from 0.86.4 to 0.87.4 on 2024-05-28
- checkov from 3.2.74 to 3.2.122 on 2024-05-04
- checkstyle from 10.15.0 to 10.17.0 on 2024-05-27
- clippy from 0.1.77 to 0.1.78 on 2024-05-04
- clj-kondo from 2024.03.13 to 2024.05.24 on 2024-05-25
- csharpier from 0.28.1 to 0.28.2 on 2024-04-26
- cspell from 8.7.0 to 8.8.3 on 2024-05-24
- detekt from 1.23.5 to 1.23.6 on 2024-05-28
- dotnet-format from 8.0.104 to 8.0.106 on 2024-06-01
- editorconfig-checker from 2.7.2 to 3.0.1 on 2024-04-30
- git_diff from 2.43.0 to 2.43.4 on 2024-05-18
- golangci-lint from 1.57.2 to 1.59.0 on 2024-05-27
- grype from 0.77.0 to 0.78.0 on 2024-05-28
- jscpd from 3.5.10 to 4.0.4 on 2024-05-28
- kics from 2.0.0 to 2.0.1 on 2024-05-04
- kubeconform from 0.6.4 to 0.6.6 on 2024-05-12
- lightning-flow-scanner from 2.22.0 to 2.24.0 on 2024-05-20
- luacheck from 1.1.2 to 1.2.0 on 2024-05-25
- lychee from 0.14.3 to 0.15.1 on 2024-05-13
- markdown-link-check from 3.12.1 to 3.12.2 on 2024-05-22
- markdown-table-formatter from 1.5.0 to 1.6.0 on 2024-04-27
- markdownlint from 0.39.0 to 0.41.0 on 2024-05-26
- mypy from 1.9.0 to 1.10.0 on 2024-04-26
- npm-groovy-lint from 14.4.1 to 14.6.0 on 2024-05-12
- phpcs from 3.9.1 to 3.10.1 on 2024-04-23
- phplint from 9.1.2 to 9.3.1 on 2024-05-18
- phpstan from 1.10.67 to 1.11.0 to 1.11.3 on 2024-05-31
- pmd from 6.55.0 to 7.1.0 on 2024-04-28
- powershell from 7.4.1 to 7.4.2 on 2024-04-28
- powershell_formatter from 7.4.1 to 7.4.2 on 2024-04-28
- prettier from 3.2.5 to 3.3.0 on 2024-06-01
- proselint from 0.13.0 to 0.14.0 on 2024-05-24
- protolint from 0.49.6 to 0.49.7 on 2024-05-04
- psalm from Psalm.5.23.1@ to Psalm.5.24.0@ on 2024-05-04
- pylint from 3.1.0 to 3.2.2 on 2024-05-20
- pyright from 1.1.359 to 1.1.365 on 2024-05-31
- roslynator from 0.8.6.0 to 0.8.9.0 on 2024-06-01
- rubocop from 1.63.3 to 1.64.1 on 2024-05-31
- ruff from 0.4.1 to 0.4.7 on 2024-05-31
- scalafix from 0.12.0 to 0.12.1 on 2024-05-04
- secretlint from 8.2.3 to 8.2.4 on 2024-04-29
- sfdx-scanner-apex from 3.23.0 to 3.25.0 on 2024-05-28
- sfdx-scanner-aura from 3.23.0 to 3.25.0 on 2024-05-28
- sfdx-scanner-lwc from 3.23.0 to 3.25.0 on 2024-05-28
- snakefmt from 0.10.1 to 0.10.2 on 2024-05-12
- snakemake from 8.10.8 to 8.12.0 on 2024-05-27
- sqlfluff from 3.0.5 to 3.0.7 on 2024-05-24
- stylelint from 16.4.0 to 16.6.1 on 2024-05-28
- syft from 1.2.0 to 1.5.0 on 2024-05-28
- tekton-lint from 1.0.2 to 1.1.0 on 2024-05-25
- terraform-fmt from 1.8.1 to 1.8.4 on 2024-05-25
- terragrunt from 0.57.5 to 0.58.10 on 2024-05-27
- tflint from 0.50.3 to 0.51.1 on 2024-06-02
- trivy-sbom from 0.50.2 to 0.51.4 on 2024-05-25
- trivy from 0.50.2 to 0.51.4 on 2024-05-25
- trufflehog from 3.73.0 to 3.77.0 on 2024-05-28
- vale from 3.4.0 to 3.4.2 on 2024-05-04
- xmllint from 21107 to 21108 on 2024-05-18

Configuration

📅 Schedule: Branch creation - "before 4am on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

github-actions · 2024-06-01T00:28:33Z

🦙 MegaLinter status: ✅ SUCCESS

Descriptor	Linter	Files	Errors	Elapsed time
✅ ACTION	actionlint	6	0	0.05s
✅ COPYPASTE	jscpd	yes	no	1.14s
✅ DOCKERFILE	hadolint	1	0	0.06s
✅ JSON	jsonlint	3	0	0.19s
✅ JSON	prettier	3	0	0.39s
✅ JSON	v8r	3	0	3.58s
✅ PYTHON	bandit	1	0	1.31s
✅ PYTHON	black	1	0	1.24s
✅ PYTHON	flake8	1	0	1.06s
✅ PYTHON	isort	1	0	0.22s
✅ PYTHON	mypy	1	0	1.97s
✅ PYTHON	pylint	1	0	1.75s
✅ PYTHON	pyright	1	0	6.42s
✅ PYTHON	ruff	1	0	0.01s
✅ REPOSITORY	checkov	yes	no	11.77s
✅ REPOSITORY	devskim	yes	no	1.58s
✅ REPOSITORY	dustilock	yes	no	0.0s
✅ REPOSITORY	gitleaks	yes	no	0.07s
✅ REPOSITORY	git_diff	yes	no	0.0s
✅ REPOSITORY	grype	yes	no	13.93s
✅ REPOSITORY	kics	yes	no	3.79s
✅ REPOSITORY	secretlint	yes	no	0.74s
✅ REPOSITORY	syft	yes	no	0.41s
✅ REPOSITORY	trivy	yes	no	7.4s
✅ REPOSITORY	trivy-sbom	yes	no	5.99s
✅ REPOSITORY	trufflehog	yes	no	2.99s
✅ YAML	prettier	8	0	0.8s
✅ YAML	v8r	8	0	8.18s
✅ YAML	yamllint	8	0	0.48s

See detailed report in MegaLinter reports

You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.

Click here to request the new flavor

MegaLinter is graciously provided by

github-actions · 2024-06-12T22:04:36Z

Trivy image scan report

`ghcr.io/miracum/github-reusable-workflow-without-test-image:pr-60 (debian 12.5)`

72 known vulnerabilities found (LOW: 21 CRITICAL: 1 HIGH: 18 MEDIUM: 32)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`libc6`	CVE-2024-2961	HIGH	2.36-9+deb12u4	2.36-9+deb12u6
`libc6`	CVE-2024-33599	HIGH	2.36-9+deb12u4	2.36-9+deb12u7
`libc6`	CVE-2024-33600	MEDIUM	2.36-9+deb12u4	2.36-9+deb12u7
`libc6`	CVE-2024-33601	MEDIUM	2.36-9+deb12u4	2.36-9+deb12u7
`libc6`	CVE-2024-33602	MEDIUM	2.36-9+deb12u4	2.36-9+deb12u7
`libc6`	CVE-2010-4756	LOW	2.36-9+deb12u4
`libc6`	CVE-2018-20796	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010022	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010023	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010024	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010025	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-9192	LOW	2.36-9+deb12u4
`libexpat1`	CVE-2023-52425	HIGH	2.5.0-1
`libexpat1`	CVE-2023-52426	LOW	2.5.0-1
`libexpat1`	CVE-2024-28757	LOW	2.5.0-1
`libgcc-s1`	CVE-2023-4039	MEDIUM	12.2.0-14
`libgcc-s1`	CVE-2022-27943	LOW	12.2.0-14
`libgomp1`	CVE-2023-4039	MEDIUM	12.2.0-14
`libgomp1`	CVE-2022-27943	LOW	12.2.0-14
`libgssapi-krb5-2`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libncursesw6`	CVE-2023-50495	MEDIUM	6.4-4
`libncursesw6`	CVE-2023-45918	LOW	6.4-4
`libpython3.11-minimal`	CVE-2023-24329	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-41105	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-6597	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-27043	MEDIUM	3.11.2-6
`libpython3.11-minimal`	CVE-2023-40217	MEDIUM	3.11.2-6
`libpython3.11-minimal`	CVE-2024-0450	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-24329	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-41105	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-6597	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-27043	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-40217	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2024-0450	MEDIUM	3.11.2-6
`libsqlite3-0`	CVE-2023-7104	HIGH	3.40.1-2
`libsqlite3-0`	CVE-2024-0232	MEDIUM	3.40.1-2
`libsqlite3-0`	CVE-2021-45346	LOW	3.40.1-2
`libssl3`	CVE-2023-5678	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2023-6129	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2023-6237	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-0727	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-4603	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-4741	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-2511	LOW	3.0.11-1~deb12u2
`libstdc++6`	CVE-2023-4039	MEDIUM	12.2.0-14
`libstdc++6`	CVE-2022-27943	LOW	12.2.0-14
`libtinfo6`	CVE-2023-50495	MEDIUM	6.4-4
`libtinfo6`	CVE-2023-45918	LOW	6.4-4
`libuuid1`	CVE-2024-28085	HIGH	2.38.1-5+b1	2.38.1-5+deb12u1
`libuuid1`	CVE-2022-0563	LOW	2.38.1-5+b1
`python3.11-minimal`	CVE-2023-24329	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-41105	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-6597	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-27043	MEDIUM	3.11.2-6
`python3.11-minimal`	CVE-2023-40217	MEDIUM	3.11.2-6
`python3.11-minimal`	CVE-2024-0450	MEDIUM	3.11.2-6
`zlib1g`	CVE-2023-45853	CRITICAL	1:1.2.13.dfsg-1

No Misconfigurations found

github-actions · 2024-06-12T22:04:45Z

Trivy image scan report

`ghcr.io/miracum/github-reusable-workflow-without-test-image:v1.2.3-beta.123 (debian 12.5)`

72 known vulnerabilities found (CRITICAL: 1 HIGH: 18 MEDIUM: 32 LOW: 21)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`libc6`	CVE-2024-2961	HIGH	2.36-9+deb12u4	2.36-9+deb12u6
`libc6`	CVE-2024-33599	HIGH	2.36-9+deb12u4	2.36-9+deb12u7
`libc6`	CVE-2024-33600	MEDIUM	2.36-9+deb12u4	2.36-9+deb12u7
`libc6`	CVE-2024-33601	MEDIUM	2.36-9+deb12u4	2.36-9+deb12u7
`libc6`	CVE-2024-33602	MEDIUM	2.36-9+deb12u4	2.36-9+deb12u7
`libc6`	CVE-2010-4756	LOW	2.36-9+deb12u4
`libc6`	CVE-2018-20796	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010022	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010023	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010024	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010025	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-9192	LOW	2.36-9+deb12u4
`libexpat1`	CVE-2023-52425	HIGH	2.5.0-1
`libexpat1`	CVE-2023-52426	LOW	2.5.0-1
`libexpat1`	CVE-2024-28757	LOW	2.5.0-1
`libgcc-s1`	CVE-2023-4039	MEDIUM	12.2.0-14
`libgcc-s1`	CVE-2022-27943	LOW	12.2.0-14
`libgomp1`	CVE-2023-4039	MEDIUM	12.2.0-14
`libgomp1`	CVE-2022-27943	LOW	12.2.0-14
`libgssapi-krb5-2`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libncursesw6`	CVE-2023-50495	MEDIUM	6.4-4
`libncursesw6`	CVE-2023-45918	LOW	6.4-4
`libpython3.11-minimal`	CVE-2023-24329	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-41105	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-6597	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-27043	MEDIUM	3.11.2-6
`libpython3.11-minimal`	CVE-2023-40217	MEDIUM	3.11.2-6
`libpython3.11-minimal`	CVE-2024-0450	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-24329	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-41105	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-6597	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-27043	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-40217	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2024-0450	MEDIUM	3.11.2-6
`libsqlite3-0`	CVE-2023-7104	HIGH	3.40.1-2
`libsqlite3-0`	CVE-2024-0232	MEDIUM	3.40.1-2
`libsqlite3-0`	CVE-2021-45346	LOW	3.40.1-2
`libssl3`	CVE-2023-5678	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2023-6129	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2023-6237	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-0727	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-4603	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-4741	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-2511	LOW	3.0.11-1~deb12u2
`libstdc++6`	CVE-2023-4039	MEDIUM	12.2.0-14
`libstdc++6`	CVE-2022-27943	LOW	12.2.0-14
`libtinfo6`	CVE-2023-50495	MEDIUM	6.4-4
`libtinfo6`	CVE-2023-45918	LOW	6.4-4
`libuuid1`	CVE-2024-28085	HIGH	2.38.1-5+b1	2.38.1-5+deb12u1
`libuuid1`	CVE-2022-0563	LOW	2.38.1-5+b1
`python3.11-minimal`	CVE-2023-24329	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-41105	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-6597	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-27043	MEDIUM	3.11.2-6
`python3.11-minimal`	CVE-2023-40217	MEDIUM	3.11.2-6
`python3.11-minimal`	CVE-2024-0450	MEDIUM	3.11.2-6
`zlib1g`	CVE-2023-45853	CRITICAL	1:1.2.13.dfsg-1

No Misconfigurations found

github-actions · 2024-06-12T22:05:05Z

Trivy image scan report

`ghcr.io/miracum/github-reusable-workflow:pr-60 (debian 12.5)`

72 known vulnerabilities found (HIGH: 18 MEDIUM: 32 LOW: 21 CRITICAL: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`libc6`	CVE-2024-2961	HIGH	2.36-9+deb12u4	2.36-9+deb12u6
`libc6`	CVE-2024-33599	HIGH	2.36-9+deb12u4	2.36-9+deb12u7
`libc6`	CVE-2024-33600	MEDIUM	2.36-9+deb12u4	2.36-9+deb12u7
`libc6`	CVE-2024-33601	MEDIUM	2.36-9+deb12u4	2.36-9+deb12u7
`libc6`	CVE-2024-33602	MEDIUM	2.36-9+deb12u4	2.36-9+deb12u7
`libc6`	CVE-2010-4756	LOW	2.36-9+deb12u4
`libc6`	CVE-2018-20796	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010022	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010023	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010024	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-1010025	LOW	2.36-9+deb12u4
`libc6`	CVE-2019-9192	LOW	2.36-9+deb12u4
`libexpat1`	CVE-2023-52425	HIGH	2.5.0-1
`libexpat1`	CVE-2023-52426	LOW	2.5.0-1
`libexpat1`	CVE-2024-28757	LOW	2.5.0-1
`libgcc-s1`	CVE-2023-4039	MEDIUM	12.2.0-14
`libgcc-s1`	CVE-2022-27943	LOW	12.2.0-14
`libgomp1`	CVE-2023-4039	MEDIUM	12.2.0-14
`libgomp1`	CVE-2022-27943	LOW	12.2.0-14
`libgssapi-krb5-2`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libgssapi-krb5-2`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libk5crypto3`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libkrb5-3`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26462	HIGH	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26458	MEDIUM	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2024-26461	MEDIUM	1.20.1-2+deb12u1
`libkrb5support0`	CVE-2018-5709	LOW	1.20.1-2+deb12u1
`libncursesw6`	CVE-2023-50495	MEDIUM	6.4-4
`libncursesw6`	CVE-2023-45918	LOW	6.4-4
`libpython3.11-minimal`	CVE-2023-24329	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-41105	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-6597	HIGH	3.11.2-6
`libpython3.11-minimal`	CVE-2023-27043	MEDIUM	3.11.2-6
`libpython3.11-minimal`	CVE-2023-40217	MEDIUM	3.11.2-6
`libpython3.11-minimal`	CVE-2024-0450	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-24329	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-41105	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-6597	HIGH	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-27043	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2023-40217	MEDIUM	3.11.2-6
`libpython3.11-stdlib`	CVE-2024-0450	MEDIUM	3.11.2-6
`libsqlite3-0`	CVE-2023-7104	HIGH	3.40.1-2
`libsqlite3-0`	CVE-2024-0232	MEDIUM	3.40.1-2
`libsqlite3-0`	CVE-2021-45346	LOW	3.40.1-2
`libssl3`	CVE-2023-5678	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2023-6129	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2023-6237	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-0727	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-4603	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-4741	MEDIUM	3.0.11-1~deb12u2
`libssl3`	CVE-2024-2511	LOW	3.0.11-1~deb12u2
`libstdc++6`	CVE-2023-4039	MEDIUM	12.2.0-14
`libstdc++6`	CVE-2022-27943	LOW	12.2.0-14
`libtinfo6`	CVE-2023-50495	MEDIUM	6.4-4
`libtinfo6`	CVE-2023-45918	LOW	6.4-4
`libuuid1`	CVE-2024-28085	HIGH	2.38.1-5+b1	2.38.1-5+deb12u1
`libuuid1`	CVE-2022-0563	LOW	2.38.1-5+b1
`python3.11-minimal`	CVE-2023-24329	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-41105	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-6597	HIGH	3.11.2-6
`python3.11-minimal`	CVE-2023-27043	MEDIUM	3.11.2-6
`python3.11-minimal`	CVE-2023-40217	MEDIUM	3.11.2-6
`python3.11-minimal`	CVE-2024-0450	MEDIUM	3.11.2-6
`zlib1g`	CVE-2023-45853	CRITICAL	1:1.2.13.dfsg-1

No Misconfigurations found

github-actions · 2024-06-12T22:39:55Z

🎉 This PR is included in version 1.9.2 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

renovate bot changed the title ~~chore(deps): update github/codeql-action action to v3.25.7~~ chore(deps): update github-actions Jun 5, 2024

renovate bot force-pushed the renovate/github-actions branch 4 times, most recently from 7e6d5c4 to 62df140 Compare June 12, 2024 17:27

chore(deps): update github-actions

1f7744b

renovate bot force-pushed the renovate/github-actions branch from 62df140 to 1f7744b Compare June 12, 2024 22:03

chgl approved these changes Jun 12, 2024

View reviewed changes

chgl merged commit dee5806 into master Jun 12, 2024
24 checks passed

renovate bot deleted the renovate/github-actions branch June 12, 2024 22:37

github-actions bot added the released label Jun 12, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update github-actions #60

chore(deps): update github-actions #60

renovate bot commented Jun 1, 2024 •

edited

Loading

github-actions bot commented Jun 1, 2024 •

edited

Loading

github-actions bot commented Jun 12, 2024

github-actions bot commented Jun 12, 2024

github-actions bot commented Jun 12, 2024

github-actions bot commented Jun 12, 2024

chore(deps): update github-actions #60

chore(deps): update github-actions #60

Conversation

renovate bot commented Jun 1, 2024 • edited Loading

Release Notes

v4.1.7

v4.3.3: Notes for v4.3.3

What's Changed

New Contributors

v0.22.0

What's Changed

New Contributors

v3.25.9

v3.25.8

v3.25.7

v7.12.0

Configuration

github-actions bot commented Jun 1, 2024 • edited Loading

🦙 MegaLinter status: ✅ SUCCESS

github-actions bot commented Jun 12, 2024

Trivy image scan report

ghcr.io/miracum/github-reusable-workflow-without-test-image:pr-60 (debian 12.5)

72 known vulnerabilities found (LOW: 21 CRITICAL: 1 HIGH: 18 MEDIUM: 32)

No Misconfigurations found

github-actions bot commented Jun 12, 2024

Trivy image scan report

ghcr.io/miracum/github-reusable-workflow-without-test-image:v1.2.3-beta.123 (debian 12.5)

72 known vulnerabilities found (CRITICAL: 1 HIGH: 18 MEDIUM: 32 LOW: 21)

No Misconfigurations found

github-actions bot commented Jun 12, 2024

Trivy image scan report

ghcr.io/miracum/github-reusable-workflow:pr-60 (debian 12.5)

72 known vulnerabilities found (HIGH: 18 MEDIUM: 32 LOW: 21 CRITICAL: 1)

No Misconfigurations found

github-actions bot commented Jun 12, 2024

renovate bot commented Jun 1, 2024 •

edited

Loading

`v4.1.7`

`v4.3.3`: Notes for v4.3.3

`v0.22.0`

`v3.25.9`

`v3.25.8`

`v3.25.7`

`v7.12.0`

github-actions bot commented Jun 1, 2024 •

edited

Loading

`ghcr.io/miracum/github-reusable-workflow-without-test-image:pr-60 (debian 12.5)`

`ghcr.io/miracum/github-reusable-workflow-without-test-image:v1.2.3-beta.123 (debian 12.5)`

`ghcr.io/miracum/github-reusable-workflow:pr-60 (debian 12.5)`