Skip to content

workflows: bump ossf/scorecard-action from 1.1.2 to 2.0.3 #6

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

workflows: bump ossf/scorecard-action from 1.1.2 to 2.0.3 #6

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Sep 12, 2022
edited
Loading

Bumps ossf/scorecard-action from 1.1.2 to 2.0.3.

Release notes

Sourced from ossf/scorecard-action's releases.

v2.0.3

Patch for fix in #898

v2.0.2

Fixes ossf/scorecard-action#895

v2.0.1

Fix for #856

v2.0.0

What's Changed

... (truncated)

Commits
  • 865b409 Create v2.0.3 patch (#927)
  • 60f6d77 🌱 Bump github.com/google/go-cmp from 0.5.8 to 0.5.9 (#855)
  • a73c72a bug: always use the default GITHUB_TOKEN for signing (#898)
  • 68bf5b3 🐛 Fixes Run all checks on a BranchProtection event - failing tests (#897)
  • f437b3c Downgrade to scorecard:v4.5.0 to fix breakage (#894)
  • 13ec8c7 🌱 Release v2.0.0 (#854)
  • 183420b 🌱 Included License (#852)
  • 9347866 🌱 Bump github/codeql-action from 2.1.21 to 2.1.22 (#853)
  • d4f9a7a Add docs for API (#849)
  • 9b15950 🌱 Bump actions/cache from 3.0.7 to 3.0.8 (#836)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
workflows: bump ossf/scorecard-action from 1.1.2 to 2.0.3
b115132 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 1.1.2 to 2.0.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](ossf/scorecard-action@ce330fd...865b409)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Sep 12, 2022
@dependabot dependabot bot mentioned this pull request Sep 12, 2022
Closed
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Sep 26, 2022

Looks like ossf/scorecard-action is up-to-date now, so this is no longer needed.

@dependabot dependabot bot closed this Sep 26, 2022
@dependabot dependabot bot deleted the dependabot/github_actions/ossf/scorecard-action-2.0.3 branch September 26, 2022 12:41
seveas pushed a commit that referenced this pull request Nov 7, 2024
@zecke
core: fix crash when running dry test mode (fluent#8872)
9af65e2 
The tls variable for out_flush_params is not initialized as the
flb_start function is not called during the dry run. Call flb_init
directly and then shutdown the engine.

configuration test is successful
=================================================================
==63633==ERROR: AddressSanitizer: attempting free on address which was not malloc()-ed: 0x0001f71b3ac0 in thread T0
    #0 0x103c9f260 in wrap_free+0x98 (libclang_rt.asan_osx_dynamic.dylib:arm64e+0x53260)
    #1 0x100179d9c in flb_free flb_mem.h:127
    #2 0x10017f4a0 in flb_output_exit flb_output.c:481
    #3 0x1001cb038 in flb_engine_shutdown flb_engine.c:1119
    #4 0x10010d45c in flb_destroy flb_lib.c:240
    #5 0x100008c40 in flb_main fluent-bit.c:1348
    #6 0x10000c644 in main fluent-bit.c:1456
    #7 0x18f11e0dc  (<unknown module>)

frame #6: 0x000000010017f4a4 fluent-bit`flb_output_exit(config=0x0000000102b00200) at flb_output.c:481:9
   478
   479 	    params = FLB_TLS_GET(out_flush_params);
   480 	    if (params) {
-> 481 	        flb_free(params);
   482 	    }
   483 	}

Signed-off-by: Holger Hans Peter Freyther <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant