Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

build(deps): bump github.com/rhysd/actionlint from 1.6.25 to 1.6.26 #2026

Merged

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 25, 2023

Bumps github.com/rhysd/actionlint from 1.6.25 to 1.6.26.

Release notes

Sourced from github.com/rhysd/actionlint's releases.

v1.6.26

  • Several template fields and template actions were added. All fields and actions are listed in the document. Please read it for more details. (#311)
    • By these additions, now actionlint can output the result in the SARIF format. SARIF is a format for the output of static analysis tools used by GitHub CodeQL. the example Go template to format actionlint output in SARIF.
      actionlint -format "$(cat /path/to/sarif_template.txt)" > output.json
    • allKinds returns the kinds (lint rules) information as an array. You can include what lint rules are defined in the command output.
    • toPascalCase converts snake case (foo_bar) or kebab case (foo-bar) into pascal case (FooBar).
  • Report an error when the condition at if: is always evaluated to true. See the check document to know more details. (#272)
    # ERROR: All the following `if:` conditions are always evaluated to true
    - run: echo 'Commit is pushed'
      if: |
        ${{ github.event_name == 'push' }}
    - run: echo 'Commit is pushed'
      if: "${{ github.event_name == 'push' }} "
    - run: echo 'Commit is pushed to main'
      if: ${{ github.event_name == 'push' }} && ${{ github.ref_name == 'main' }}
  • Fix actionlint didn't understand ${{ }} placeholders in environment variable names. (#312)
    env:
      "${{ steps.x.outputs.value }}": "..."
  • Fix type of matrix row when some expression is assigned to it with ${{ }} (#285)
    strategy:
      matrix:
        test:
          # Matrix rows are assigned from JSON string
          - ${{ fromJson(inputs.matrix) }}
    steps:
      - run: echo ${{ matrix.test.foo.bar }}
  • Fix checking exclude of matrix was incorrect when some matrix row is dynamically constructed with ${{ }}. (#261)
    strategy:
      matrix:
        build-type:
          - debug
          - ${{ fromJson(inputs.custom-build-type) }}
        exclude:
          # 'release' is not listed in 'build-type' row, but it should not be reported as error
          # since the second row of 'build-type' is dynamically constructed with ${{ }}.
          - build-type: release
  • Fix checking exclude of matrix was incorrect when object is nested at row of the matrix. (#249)
    matrix:
      os:

... (truncated)

Changelog

Sourced from github.com/rhysd/actionlint's changelog.

v1.6.26 - 18 Sep 2023

  • Several template fields and template actions were added. All fields and actions are listed in the document. Please read it for more details. (#311)
    • By these additions, now actionlint can output the result in the SARIF format. SARIF is a format for the output of static analysis tools used by GitHub CodeQL. the example Go template to format actionlint output in SARIF.
      actionlint -format "$(cat /path/to/sarif_template.txt)" > output.json
    • allKinds returns the kinds (lint rules) information as an array. You can include what lint rules are defined in the command output.
    • toPascalCase converts snake case (foo_bar) or kebab case (foo-bar) into pascal case (FooBar).
  • Report an error when the condition at if: is always evaluated to true. See the check document to know more details. (#272)
    # ERROR: All the following `if:` conditions are always evaluated to true
    - run: echo 'Commit is pushed'
      if: |
        ${{ github.event_name == 'push' }}
    - run: echo 'Commit is pushed'
      if: "${{ github.event_name == 'push' }} "
    - run: echo 'Commit is pushed to main'
      if: ${{ github.event_name == 'push' }} && ${{ github.ref_name == 'main' }}
  • Fix actionlint didn't understand ${{ }} placeholders in environment variable names. (#312)
    env:
      "${{ steps.x.outputs.value }}": "..."
  • Fix type of matrix row when some expression is assigned to it with ${{ }} (#285)
    strategy:
      matrix:
        test:
          # Matrix rows are assigned from JSON string
          - ${{ fromJson(inputs.matrix) }}
    steps:
      - run: echo ${{ matrix.test.foo.bar }}
  • Fix checking exclude of matrix was incorrect when some matrix row is dynamically constructed with ${{ }}. (#261)
    strategy:
      matrix:
        build-type:
          - debug
          - ${{ fromJson(inputs.custom-build-type) }}
        exclude:
          # 'release' is not listed in 'build-type' row, but it should not be reported as error
          # since the second row of 'build-type' is dynamically constructed with ${{ }}.
          - build-type: release
  • Fix checking exclude of matrix was incorrect when object is nested at row of the matrix. (#249)
    matrix:

... (truncated)

Commits
  • ea81027 bump up version to v1.6.26
  • 4c4dd40 update Go dependencies to the latest
  • 9ef152c use Go 1.21 by default on CI
  • 7e38a88 update popular actions data set to the latest
  • 0a86b35 Merge pull request #339 from asml-mdroogle/mdroogle-secret-source
  • 0c6f98e add action/checkout@v4 to popular actions data set
  • d0b9589 cleanup Makefile
  • 6476e79 update popular actions
  • f1d4095 Merge pull request #344 from rhysd/ci/5908695077
  • 9939d17 update generated files by go generate on CI
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/rhysd/actionlint](https://github.com/rhysd/actionlint) from 1.6.25 to 1.6.26.
- [Release notes](https://github.com/rhysd/actionlint/releases)
- [Changelog](https://github.com/rhysd/actionlint/blob/main/CHANGELOG.md)
- [Commits](rhysd/actionlint@v1.6.25...v1.6.26)

---
updated-dependencies:
- dependency-name: github.com/rhysd/actionlint
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from a team as a code owner September 25, 2023 02:56
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Sep 25, 2023
@codecov
Copy link

codecov bot commented Sep 25, 2023

Codecov Report

Merging #2026 (534e53e) into master (4989f44) will increase coverage by 0.86%.
Report is 244 commits behind head on master.
The diff coverage is 61.96%.

@@            Coverage Diff             @@
##           master    #2026      +/-   ##
==========================================
+ Coverage   61.22%   62.08%   +0.86%     
==========================================
  Files          46       52       +6     
  Lines        7141     8488    +1347     
==========================================
+ Hits         4372     5270     +898     
- Misses       2462     2798     +336     
- Partials      307      420     +113     
Files Changed Coverage Δ
pkg/common/outbound_ip.go 0.00% <0.00%> (ø)
pkg/container/docker_cli.go 82.23% <ø> (ø)
pkg/container/docker_logger.go 52.08% <ø> (ø)
pkg/container/docker_volume.go 0.00% <0.00%> (ø)
pkg/container/file_collector.go 39.68% <0.00%> (+2.38%) ⬆️
pkg/container/host_environment.go 0.00% <0.00%> (ø)
...ontainer/linux_container_environment_extensions.go 23.07% <0.00%> (-1.25%) ⬇️
pkg/container/util.go 0.00% <0.00%> (ø)
pkg/exprparser/functions.go 66.32% <0.00%> (-1.04%) ⬇️
pkg/model/action.go 0.00% <0.00%> (ø)
... and 30 more

... and 2 files with indirect coverage changes

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

@github-actions
Copy link
Contributor

🦙 MegaLinter status: ✅ SUCCESS

Descriptor Linter Files Fixed Errors Elapsed time
✅ EDITORCONFIG editorconfig-checker 2 0 0.01s
✅ REPOSITORY gitleaks yes no 3.6s
✅ REPOSITORY git_diff yes no 0.23s
✅ REPOSITORY grype yes no 10.58s
✅ REPOSITORY secretlint yes no 1.28s
✅ REPOSITORY trivy-sbom yes no 0.78s
✅ REPOSITORY trufflehog yes no 27.83s

See detailed report in MegaLinter reports
Set VALIDATE_ALL_CODEBASE: true in mega-linter.yml to validate all sources, not only the diff

MegaLinter is graciously provided by OX Security

@mergify mergify bot merged commit 2be4def into master Sep 25, 2023
10 checks passed
@mergify mergify bot deleted the dependabot/go_modules/github.com/rhysd/actionlint-1.6.26 branch September 25, 2023 03:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code size/S
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants