Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump super-linter/super-linter from 7.1.0 to 7.2.1 #555

Merged
merged 3 commits into from
Jan 16, 2025
Merged

Bump super-linter/super-linter from 7.1.0 to 7.2.1 #555

merged 3 commits into from
Jan 16, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 16, 2024
edited
Loading

Bumps super-linter/super-linter from 7.1.0 to 7.2.1.

Release notes

Sourced from super-linter/super-linter's releases.

v7.2.1

7.2.1 (2024-12-12)

🐛 Bugfixes

  • define command options function before use (#6375) (6b60f4c), closes #6372
  • downgrade npm-groovy-lint to 15.0.0 (#6373) (ffccf2d)
  • ensure setting /github/workdir as Git safe directory works always (#6242) (ec05515)
  • make git conflict markers check more precise (#6379) (d929d04)

⬆️ Dependency updates

  • bundler: bump standard from 1.42.0 to 1.42.1 in /dependencies (#6383) (6776692)
  • docker: bump the docker group across 1 directory with 4 updates (#6381) (0fe8b07)
  • npm: bump @​stoplight/spectral-cli in /dependencies (#6389) (39b1577)
  • npm: bump renovate from 39.15.4 to 39.31.3 in /dependencies (#6397) (70a684d)
  • npm: bump renovate from 39.31.3 to 39.58.1 in /dependencies (#6432) (71cc525)
  • php: bump phpstan/phpstan (#6419) (24a53df)
  • php: bump the composer group across 1 directory with 2 updates (#6365) (de5f8a4)

🧰 Maintenance

v7.2.0

7.2.0 (2024-11-17)

🚀 Features

🐛 Bugfixes

⬆️ Dependency updates

  • bundler: bump standard from 1.40.0 to 1.40.1 in /dependencies (#6239) (75fb343)
  • bundler: bump standard from 1.41.0 to 1.41.1 in /dependencies (#6291) (54782ec)

... (truncated)

Changelog

Sourced from super-linter/super-linter's changelog.

Changelog

7.2.1 (2024-12-12)

🐛 Bugfixes

  • define command options function before use (#6375) (6b60f4c), closes #6372
  • downgrade npm-groovy-lint to 15.0.0 (#6373) (ffccf2d)
  • ensure setting /github/workdir as Git safe directory works always (#6242) (ec05515)
  • make git conflict markers check more precise (#6379) (d929d04)

⬆️ Dependency updates

  • bundler: bump standard from 1.42.0 to 1.42.1 in /dependencies (#6383) (6776692)
  • docker: bump the docker group across 1 directory with 4 updates (#6381) (0fe8b07)
  • npm: bump @​stoplight/spectral-cli in /dependencies (#6389) (39b1577)
  • npm: bump renovate from 39.15.4 to 39.31.3 in /dependencies (#6397) (70a684d)
  • npm: bump renovate from 39.31.3 to 39.58.1 in /dependencies (#6432) (71cc525)
  • php: bump phpstan/phpstan (#6419) (24a53df)
  • php: bump the composer group across 1 directory with 2 updates (#6365) (de5f8a4)

🧰 Maintenance

7.2.0 (2024-11-17)

🚀 Features

🐛 Bugfixes

⬆️ Dependency updates

  • bundler: bump standard from 1.40.0 to 1.40.1 in /dependencies (#6239) (75fb343)
  • bundler: bump standard from 1.41.0 to 1.41.1 in /dependencies (#6291) (54782ec)

... (truncated)

Commits
  • 85f7611 chore(main): release 7.2.1 (#6404)
  • ec05515 fix: ensure setting /github/workdir as Git safe directory works always (#6242)
  • 24a53df deps(php): bump phpstan/phpstan (#6419)
  • 71cc525 deps(npm): bump renovate from 39.31.3 to 39.58.1 in /dependencies (#6432)
  • d929d04 fix: make git conflict markers check more precise (#6379)
  • 6b60f4c fix: define command options function before use (#6375)
  • de5f8a4 deps(php): bump the composer group across 1 directory with 2 updates (#6365)
  • 0fe8b07 deps(docker): bump the docker group across 1 directory with 4 updates (#6381)
  • 6776692 deps(bundler): bump standard from 1.42.0 to 1.42.1 in /dependencies (#6383)
  • 39b1577 deps(npm): bump @​stoplight/spectral-cli in /dependencies (#6389)
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Dec 16, 2024
@dependabot dependabot bot requested a review from sramakintel as a code owner December 16, 2024 13:15
@dependabot dependabot bot added the github_actions Pull requests that update GitHub Actions code label Dec 16, 2024
@dependabot dependabot bot mentioned this pull request Dec 16, 2024
Closed
@github-actions GitHub Actions
Copy link

github-actions bot commented Dec 16, 2024
edited
Loading

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

PackageVersionScoreDetails
actions/super-linter/super-linter/slim 85f7611e0f7b53c8573cca84aa0ed4344f6f6a4d 🟢 5.9
Details
CheckScoreReason
Maintained🟢 1030 commit(s) and 18 issue activity found in the last 90 days -- score normalized to 10
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Code-Review🟢 3Found 3/10 approved changesets -- score normalized to 3
Security-Policy🟢 10security policy file detected
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
Binary-Artifacts🟢 10no binaries found in the repo
Fuzzing⚠️ 0project is not fuzzed
License🟢 10license file detected
Branch-Protection⚠️ -1internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Signed-Releases⚠️ -1no releases found
Packaging🟢 10packaging workflow detected
SAST⚠️ 0SAST tool is not run on all commits -- score normalized to 0
Pinned-Dependencies⚠️ 0dependency not pinned by hash detected -- score normalized to 0
Vulnerabilities🟢 82 existing vulnerabilities detected

Scanned Files

  • .github/workflows/lint.yaml

@dependabot dependabot bot force-pushed the dependabot/github_actions/super-linter/super-linter-7.2.1 branch from 6f4c9db to f03435a Compare December 16, 2024 15:47
@dependabot dependabot bot force-pushed the dependabot/github_actions/super-linter/super-linter-7.2.1 branch from f03435a to e890cdd Compare January 3, 2025 22:13
@dependabot
Bump super-linter/super-linter from 7.1.0 to 7.2.1
238127c 
Bumps [super-linter/super-linter](https://github.com/super-linter/super-linter) from 7.1.0 to 7.2.1.
- [Release notes](https://github.com/super-linter/super-linter/releases)
- [Changelog](https://github.com/super-linter/super-linter/blob/main/CHANGELOG.md)
- [Commits](super-linter/super-linter@b92721f...85f7611)

---
updated-dependencies:
- dependency-name: super-linter/super-linter
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/github_actions/super-linter/super-linter-7.2.1 branch from e890cdd to 238127c Compare January 3, 2025 22:14
@sharvil10 sharvil10 requested a review from jafraustro as a code owner January 16, 2025 19:06
@coveralls-official Coveralls Official
Copy link

coveralls-official bot commented Jan 16, 2025
edited
Loading

Pull Request Test Coverage Report for Build 12815842068

Details

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • No unchanged relevant lines lost coverage.
  • Overall coverage remained the same at 88.485%
Totals Coverage Status
Change from base Build 12796971133: 0.0%
Covered Lines: 146
Relevant Lines: 165
💛 - Coveralls

sharvil10
sharvil10 approved these changes Jan 16, 2025
View reviewed changes
Copy link
Contributor

@sharvil10 sharvil10 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@sharvil10 sharvil10 enabled auto-merge (squash) January 16, 2025 19:17
@jitendra42 jitendra42 disabled auto-merge January 16, 2025 19:20
@jitendra42 jitendra42 merged commit 9662f0d into main Jan 16, 2025
32 checks passed
@jitendra42 jitendra42 deleted the dependabot/github_actions/super-linter/super-linter-7.2.1 branch January 16, 2025 19:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jitendra42 jitendra42 jitendra42 approved these changes

@sharvil10 sharvil10 sharvil10 approved these changes

@sramakintel sramakintel Awaiting requested review from sramakintel sramakintel is a code owner

@jafraustro jafraustro Awaiting requested review from jafraustro jafraustro is a code owner

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@sharvil10 @jitendra42