chore(deps): update gitlab runner support dependencies #40
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
18.6.1
->19.0.3
18.6.2
->19.0.3
v3.6.0
->v4.1.1
v2.5.1
->v4.1.3
417b9c2
->fc12e3a
v0.2.0
->v0.2.1
v0.32.3
->v0.32.4
v3.24.5
->v3.24.6
v2.24.6
->v3.24.6
Release Notes
conventional-changelog/commitlint (@commitlint/cli)
v19.0.3
Compare Source
Note: Version bump only for package @commitlint/cli
v19.0.2
Compare Source
Note: Version bump only for package @commitlint/cli
v19.0.1
Compare Source
Bug Fixes
resolve-from
,resolve-global
andimport-fresh
, resolve global packages correctly (#3939) (8793c63), closes #3938v19.0.0
Compare Source
Reverts
BREAKING CHANGES
migrate to pure ESM
feat: migrate to pure ESM
chore: update snapshot
fix: load
parserPreset
with anotherawait
test: migrate to vitest
test: remove no replacement
--runInBand
test-ci scriptchore: fix code reviews
refactor(load): rewrite resolve logic
fix(config-nx-scopes): fix syntax error
feat(resolve-extends): add resolveFrom and loadParserPreset
feat(load): use resolveFrom and loadParserPreset from resolve-extends
test: include only @commitlint/* packages src in coverage
test: explicit import vitest utilities
test: remove @jest/globals from dependencies
fix(resolve-extends):
resolveFrom
output should be platform awaretest: restore NO_COLOR to test script
chore: fix linting issues
fix: should use fileURLToPath instead of pathname for Windows compatibility
Apply suggestions from code review
fix: should reuse
cli
instead callyargs()
feat(cli): set terminalWidth as wrap to avoid work break on help
Update .eslintrc.cjs
feat: migrate @commitlint/config-conventional to pure ESM
18.6.1 (2024-02-13)
Note: Version bump only for package @commitlint/cli
conventional-changelog/commitlint (@commitlint/config-conventional)
v19.0.3
Compare Source
Note: Version bump only for package @commitlint/config-conventional
v19.0.0
Compare Source
Reverts
BREAKING CHANGES
migrate to pure ESM
feat: migrate to pure ESM
chore: update snapshot
fix: load
parserPreset
with anotherawait
test: migrate to vitest
test: remove no replacement
--runInBand
test-ci scriptchore: fix code reviews
refactor(load): rewrite resolve logic
fix(config-nx-scopes): fix syntax error
feat(resolve-extends): add resolveFrom and loadParserPreset
feat(load): use resolveFrom and loadParserPreset from resolve-extends
test: include only @commitlint/* packages src in coverage
test: explicit import vitest utilities
test: remove @jest/globals from dependencies
fix(resolve-extends):
resolveFrom
output should be platform awaretest: restore NO_COLOR to test script
chore: fix linting issues
fix: should use fileURLToPath instead of pathname for Windows compatibility
Apply suggestions from code review
fix: should reuse
cli
instead callyargs()
feat(cli): set terminalWidth as wrap to avoid work break on help
Update .eslintrc.cjs
feat: migrate @commitlint/config-conventional to pure ESM
18.6.2 (2024-02-14)
Bug Fixes
18.6.1 (2024-02-13)
Note: Version bump only for package @commitlint/config-conventional
actions/checkout (actions/checkout)
v4.1.1
Compare Source
What's Changed
New Contributors
Full Changelog: actions/checkout@v4.1.0...v4.1.1
v4.1.0
Compare Source
v4.0.0
Compare Source
actions/dependency-review-action (actions/dependency-review-action)
v4.1.3
: 4.1.3Compare Source
Fixes a bug in 4.1.2 that would introduce comments in every pull request, regardless of the user's configuration (see https://github.com/actions/dependency-review-action/issues/697).
Full Changelog: actions/dependency-review-action@v4.1.2...v4.1.3
v4.1.2
: 4.1.2Compare Source
What's Changed
Full Changelog: actions/dependency-review-action@v4.1.1...v4.1.2
v4.1.1
: 4.1.1Compare Source
What's Changed
undici
to fix GHSA-wqq4-5wpv-mx2gFull Changelog: actions/dependency-review-action@v4.1.0...v4.1.1
v4.1.0
: 4.1.0Compare Source
What's Changed
warn-only
by @tgrall in https://github.com/actions/dependency-review-action/pull/432Added a new configuration option (
warn-only
, boolean) that makes the action always succeed while still displaying found vulnerabilities in the log.New Contributors
Full Changelog: actions/dependency-review-action@v4...v4.1.0
v4.0.0
Compare Source
New Contributors
Full Changelog: actions/dependency-review-action@v3.1.5...v4.0.0
v3.1.5
: 3.1.5Compare Source
What's Changed
per_page
when requesting diff by @hmaurer in https://github.com/actions/dependency-review-action/pull/649Full Changelog: actions/dependency-review-action@v3.1.4...v3.1.5
v3.1.4
: 3.1.4Compare Source
What's Changed
Fixed a bug with severity filtering when using the
allow_ghsas
option: https://github.com/actions/dependency-review-action/pull/623.Updates dependencies:
action/pull/620
Full Changelog: actions/dependency-review-action@v3...v3.1.4
v3.1.3
: 3.1.3Compare Source
What's Changed
Full Changelog: actions/dependency-review-action@v3...v3.1.3
v3.1.2
: 3.1.2Compare Source
What's Changed
Full Changelog: actions/dependency-review-action@v3...v3.1.2
v3.1.1
: 3.1.1Compare Source
What's Changed
octokit
,@actions/github
andtypescript
.Full Changelog: actions/dependency-review-action@v3.1.0...v3.1.1
v3.1.0
: 3.1.0Compare Source
What's New
Added support for dependencies submitted through the dependency submission API. This includes two new configuration parameters:
retry-on-snapshot-warnings
andretry-on-snapshot-warnings-timeout
.What's Changed
New Contributors
Full Changelog: actions/dependency-review-action@v3...v3.1.0
v3.0.8
: 3.0.8Compare Source
What's Changed
Added
on-failure
option tocomment-summary-in-pr
setting by @sgmurphy in https://github.com/actions/dependency-review-action/pull/540Previous configuration files using
true
/false
forcomment-summary-in-pr
will be mapped automatically to the new values, but we encourage you to update toalways
/on-failure
/never
.New Contributors
Full Changelog: actions/dependency-review-action@v3...v3.0.8
v3.0.7
: 3.0.7Compare Source
What's Changed
New Contributors
Full Changelog: actions/dependency-review-action@v3...v3.0.7
v3.0.6
: 3.0.6Compare Source
Fixes a bug introduced in 3.0.5 where we raised PURL errors when Dependency Graph returns an empty
package_url
.v3.0.5
: 3.0.5Compare Source
What's Changed
Thanks to @theztefan, we now have a new
allow-dependencies-licenses
option that takes a list of dependencies that will be excluded from license checks. See the configuration options for more information on how to use it.New Contributors
Full Changelog: actions/dependency-review-action@v3...v3.0.5
v3.0.4
: 3.0.4Compare Source
What's New?
The Action can now publish a comment in the pull request if the
comment-summary-in-pr
option is set. More information can be found in the README.New Contributors
Changelog
Full Changelog: actions/dependency-review-action@v3...v3.0.4
v3.0.3
: 3.0.3Compare Source
What's Changed
New Contributors
Full Changelog: actions/dependency-review-action@v3...v3.0.3
v3.0.2
: 3.0.2Compare Source
This release fixes spelling errors https://github.com/actions/dependency-review-action/pull/348 and upgrades dependencies to fix known vulnerabilities
Full Changelog: actions/dependency-review-action@v3...v3.0.2
v3.0.1
: 3.0.1Compare Source
This release contains the following bugfixes:
Full Changelog: actions/dependency-review-action@v3...v3.0.1
v3.0.0
: 3.0.0Compare Source
Breaking Changes
By default the action now expects SPDX-compliant licenses everywhere. If you were previously using license names in the allow or deny lists make sure they're valid!
What's Changed
Support for external configuration files
You can now specify a configuration file external to your repository. This allows organizations to have a single configuration file for all their repos.
Broader license support
We've added support for a much broader set of project licenses by using GitHub's Licenses API.
SPDX Compliance
All of our license-related code now expects SPDX-compliant licenses or expressions. This allows us to standardize on a license naming scheme that already supports
OR
/AND
expressions.Disable individual checks
You can now use the boolean options
license-check
andvulnerability-check
to disable either one of the checks. More information in our configuration options.Thanks
Contributors for this release include:
Thanks everyone!
Full Changelog: actions/dependency-review-action@v2...v3.0.0
defenseunicorns/uds-common-tasks (defenseunicorns/uds-common-tasks)
v0.2.1
Compare Source
Bug Fixes
Miscellaneous
defenseunicorns/zarf (defenseunicorns/zarf)
v0.32.4
Compare Source
What's Changed
Fixes
cmd
failure messaging when no timeout or retries are given by @docandrew in https://github.com/defenseunicorns/zarf/pull/2301zarf tools registry prune
messaging by @Racer159 in https://github.com/defenseunicorns/zarf/pull/2323--registry-override
in package create by @waveywaves in https://github.com/defenseunicorns/zarf/pull/2306Dependencies
cb94e40
by @renovate in https://github.com/defenseunicorns/zarf/pull/2294, https://github.com/defenseunicorns/zarf/pull/2297 and https://github.com/defenseunicorns/zarf/pull/2300Docs
Development
New Contributors
Full Changelog: zarf-dev/zarf@v0.32.3...v0.32.4
github/codeql-action (github/codeql-action)
v3.24.6
Compare Source
Configuration
📅 Schedule: Branch creation - "after 7am and before 9am every weekday" in timezone America/New_York, Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Mend Renovate. View repository job log here.