Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update all non-major dependencies #93

Merged
merged 1 commit into from
Nov 17, 2024
Merged

chore(deps): update all non-major dependencies #93

merged 1 commit into from
Nov 17, 2024

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Nov 1, 2024
edited
Loading

This PR contains the following updates:

Package Type Update Change
docker.io/library/python stage minor 3.12.7-slim -> 3.13.0-slim
gradle (source) minor 8.10.2 -> 8.11

Release Notes

gradle/gradle (gradle)

v8.11

Compare Source

Configuration

📅 Schedule: Branch creation - "before 4am on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@github-actions GitHub Actions
Copy link

github-actions bot commented Nov 1, 2024
edited
Loading

🦙 MegaLinter status: ✅ SUCCESS

Descriptor Linter Files Fixed Errors Elapsed time
✅ ACTION actionlint 7 0 0.09s
✅ COPYPASTE jscpd yes no 1.14s
✅ DOCKERFILE hadolint 1 0 0.08s
✅ JSON jsonlint 3 0 0.16s
✅ JSON prettier 3 0 0.4s
✅ JSON v8r 3 0 4.05s
✅ PYTHON bandit 1 0 1.35s
✅ PYTHON black 1 0 2.36s
✅ PYTHON flake8 1 0 1.12s
✅ PYTHON isort 1 0 0.24s
✅ PYTHON mypy 1 0 2.45s
✅ PYTHON pylint 1 0 1.98s
✅ PYTHON pyright 1 0 6.88s
✅ PYTHON ruff 1 0 0.09s
✅ REPOSITORY checkov yes no 14.65s
✅ REPOSITORY devskim yes no 1.32s
✅ REPOSITORY dustilock yes no 0.0s
✅ REPOSITORY gitleaks yes no 0.08s
✅ REPOSITORY git_diff yes no 0.0s
✅ REPOSITORY grype yes no 15.12s
✅ REPOSITORY kics yes no 3.56s
✅ REPOSITORY secretlint yes no 1.02s
✅ REPOSITORY syft yes no 0.56s
✅ REPOSITORY trivy yes no 8.89s
✅ REPOSITORY trivy-sbom yes no 0.14s
✅ REPOSITORY trufflehog yes no 3.52s
✅ YAML prettier 9 0 0.86s
✅ YAML v8r 9 0 8.74s
✅ YAML yamllint 9 0 0.6s

See detailed report in MegaLinter reports

You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.

MegaLinter is graciously provided by OX Security

@renovate renovate bot changed the title chore(deps): update docker.io/library/python docker tag to v3.13.0 chore(deps): update all non-major dependencies Nov 11, 2024
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 6 times, most recently from 4555d5c to e0c9754 Compare November 13, 2024 05:10
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from e0c9754 to 4688fc7 Compare November 17, 2024 16:25
@chgl chgl merged commit 1853981 into master Nov 17, 2024
11 checks passed
@renovate renovate bot deleted the renovate/all-minor-patch branch November 17, 2024 16:25
@github-actions GitHub Actions
Copy link

Trivy image scan report

ghcr.io/miracum/github-reusable-workflow-without-test-image:pr-93 (debian 12.7)

6 known vulnerabilities found (CRITICAL: 0 HIGH: 4 MEDIUM: 1 LOW: 1)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
libpython3.11-minimal CVE-2024-6232 HIGH 3.11.2-6+deb12u3 3.11.2-6+deb12u4
libpython3.11-stdlib CVE-2024-6232 HIGH 3.11.2-6+deb12u3 3.11.2-6+deb12u4
libsqlite3-0 CVE-2023-7104 HIGH 3.40.1-2 3.40.1-2+deb12u1
libssl3 CVE-2024-5535 MEDIUM 3.0.14-1~deb12u2 3.0.15-1~deb12u1
libssl3 CVE-2024-9143 LOW 3.0.14-1~deb12u2 3.0.15-1~deb12u1
python3.11-minimal CVE-2024-6232 HIGH 3.11.2-6+deb12u3 3.11.2-6+deb12u4

No Misconfigurations found

@github-actions GitHub Actions
Copy link

Trivy image scan report

ghcr.io/miracum/github-reusable-workflow-with-fixed-image-tags:v1.2.3-beta.123 (debian 12.7)

6 known vulnerabilities found (MEDIUM: 1 LOW: 1 CRITICAL: 0 HIGH: 4)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
libpython3.11-minimal CVE-2024-6232 HIGH 3.11.2-6+deb12u3 3.11.2-6+deb12u4
libpython3.11-stdlib CVE-2024-6232 HIGH 3.11.2-6+deb12u3 3.11.2-6+deb12u4
libsqlite3-0 CVE-2023-7104 HIGH 3.40.1-2 3.40.1-2+deb12u1
libssl3 CVE-2024-5535 MEDIUM 3.0.14-1~deb12u2 3.0.15-1~deb12u1
libssl3 CVE-2024-9143 LOW 3.0.14-1~deb12u2 3.0.15-1~deb12u1
python3.11-minimal CVE-2024-6232 HIGH 3.11.2-6+deb12u3 3.11.2-6+deb12u4

No Misconfigurations found

@github-actions GitHub Actions
Copy link

Trivy image scan report

ghcr.io/miracum/github-reusable-workflow:pr-93 (debian 12.7)

6 known vulnerabilities found (CRITICAL: 0 HIGH: 4 MEDIUM: 1 LOW: 1)

Show detailed table of vulnerabilities
Package ID Severity Installed Version Fixed Version
libpython3.11-minimal CVE-2024-6232 HIGH 3.11.2-6+deb12u3 3.11.2-6+deb12u4
libpython3.11-stdlib CVE-2024-6232 HIGH 3.11.2-6+deb12u3 3.11.2-6+deb12u4
libsqlite3-0 CVE-2023-7104 HIGH 3.40.1-2 3.40.1-2+deb12u1
libssl3 CVE-2024-5535 MEDIUM 3.0.14-1~deb12u2 3.0.15-1~deb12u1
libssl3 CVE-2024-9143 LOW 3.0.14-1~deb12u2 3.0.15-1~deb12u1
python3.11-minimal CVE-2024-6232 HIGH 3.11.2-6+deb12u3 3.11.2-6+deb12u4

No Misconfigurations found

@github-actions GitHub Actions
Copy link

🎉 This PR is included in version 1.12.9 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@chgl chgl chgl approved these changes

Assignees
No one assigned
Labels
released
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@chgl