Bump the version-updates group across 1 directory with 8 updates

[dependabot]

Bumps the version-updates group with 8 updates in the / directory:

Package	From	To
step-security/harden-runner	2.10.3	2.10.4
github/codeql-action	3.28.1	3.28.2
umbrelladocs/action-linkspector	1.2.4	1.2.5
fish-shop/install-fish-shell	1.0.40	1.0.41
fish-shop/indent-check	1.0.28	1.0.29
fish-shop/syntax-check	2.2.28	2.2.29
fish-shop/install-plugin	2.3.30	2.3.31
fish-shop/run-fishtape-tests	2.3.28	2.3.29

Updates step-security/harden-runner from 2.10.3 to 2.10.4

Release notes

Sourced from step-security/harden-runner's releases.

v2.10.4

What's Changed

Fixed a potential Harden-Runner post step failure that could occur when printing agent service logs. The fix gracefully handles failures without failing the post step.

Full Changelog: step-security/harden-runner@v2...v2.10.4

Commits

• cb605e5 Merge pull request #496 from step-security/fix-enobufs
• 61144dd Update log statement
• b8be370 Add try catch block
• 6f6fa07 Fix ENOBUFS issue
• 18f6947 Merge pull request #495 from AkhigbeEromo/Update-README
• 81f844e Edit docs
• 4c766de Merge branch 'Update-README' of https://github.com/AkhigbeEromo/harden-runner...
• c9c5f32 Handle Ashish reviews
• 2877824 Merge branch 'main' into Update-README
• be87de0 Clean up
• Additional commits viewable in compare view

Updates github/codeql-action from 3.28.1 to 3.28.2

Release notes

Sourced from github/codeql-action's releases.

v3.28.2

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.2 - 21 Jan 2025

No user facing changes.

See the full CHANGELOG.md for more information.

Changelog

Sourced from github/codeql-action's changelog.

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

[UNRELEASED]

No user facing changes.

3.28.2 - 21 Jan 2025

No user facing changes.

3.28.1 - 10 Jan 2025

• CodeQL Action v2 is now deprecated, and is no longer updated or supported. For better performance, improved security, and new features, upgrade to v3. For more information, see this changelog post. #2677
• Update default CodeQL bundle version to 2.20.1. #2678

3.28.0 - 20 Dec 2024

• Bump the minimum CodeQL bundle version to 2.15.5. #2655
• Don't fail in the unusual case that a file is on the search path. #2660.

3.27.9 - 12 Dec 2024

No user facing changes.

3.27.8 - 12 Dec 2024

• Fixed an issue where streaming the download and extraction of the CodeQL bundle did not respect proxy settings. #2624

3.27.7 - 10 Dec 2024

• We are rolling out a change in December 2024 that will extract the CodeQL bundle directly to the toolcache to improve performance. #2631
• Update default CodeQL bundle version to 2.20.0. #2636

3.27.6 - 03 Dec 2024

• Update default CodeQL bundle version to 2.19.4. #2626

3.27.5 - 19 Nov 2024

No user facing changes.

3.27.4 - 14 Nov 2024

No user facing changes.

3.27.3 - 12 Nov 2024

No user facing changes.

... (truncated)

Commits

• d68b2d4 Merge pull request #2708 from github/update-v3.28.2-d90e07f32
• ea23796 Update changelog for v3.28.2
• d90e07f Merge pull request #2703 from github/dependabot/npm_and_yarn/npm-cd3f77644b
• 7b7562b Update checked-in dependencies
• c168638 build(deps): bump the npm group with 3 updates
• 0f1559a Merge pull request #2699 from github/cklin/diff-informed-file-fallback
• 2d608a3 Merge branch 'main' into cklin/diff-informed-file-fallback
• 94f08f3 Merge pull request #2698 from github/cklin/diff-informed-status-report
• 071996f getDiffRanges: better fallback for absent patch
• 5889cfd Add analysis_is_diff_informed to status report
• Additional commits viewable in compare view

Updates umbrelladocs/action-linkspector from 1.2.4 to 1.2.5

Release notes

Sourced from umbrelladocs/action-linkspector's releases.

Release v1.2.5

What's Changed

• fix: disable AppArmor user namespace restrictions on the runner by @​Realiserad in UmbrellaDocs/action-linkspector#34
• chore(deps): update reviewdog/reviewdog to 0.20.3 by @​github-actions in UmbrellaDocs/action-linkspector#31
• Add fail_level argument and deprecate fail_on_error by @​bitcoin-tools in UmbrellaDocs/action-linkspector#23

New Contributors

• @​Realiserad made their first contribution in UmbrellaDocs/action-linkspector#34
• @​bitcoin-tools made their first contribution in UmbrellaDocs/action-linkspector#23

Full Changelog: UmbrellaDocs/action-linkspector@v1.2.4...UmbrellaDocs:release-1.2.5

Commits

• de84085 Merge pull request #35 from UmbrellaDocs/release-1.2.5
• c6a59a6 Added sample usage
• 21ce8cd Merge pull request #23 from bitcoin-tools/deprecate-fail-on-error
• e62bb2d Fix YAML issues
• 64e2b9b mitigate risk of untrusted inputs and define shell
• e376d76 add backwards-compatability for fail_on_error
• c6a5314 replace deprecated option with fail_level
• b8d796f Merge pull request #31 from UmbrellaDocs/depup/reviewdog/reviewdog
• cde5159 Merge pull request #34 from Realiserad/main
• d32de29 fix: disable AppArmor user namespace restrictions on the runner
• Additional commits viewable in compare view

Updates fish-shop/install-fish-shell from 1.0.40 to 1.0.41

Release notes

Sourced from fish-shop/install-fish-shell's releases.

v1.0.41

What's Changed

• Bump the version-updates group across 1 directory with 3 updates by @​dependabot in fish-shop/install-fish-shell#112
• Bump fish-shop/workflows from 1.10.2 to 1.10.3 in the version-updates group by @​dependabot in fish-shop/install-fish-shell#113

Full Changelog: fish-shop/install-fish-shell@v1.0.40...v1.0.41

Commits

• 7a8ccb8 Merge pull request #113 from fish-shop/dependabot/github_actions/version-upda...
• 410be12 Bump fish-shop/workflows in the version-updates group
• 93eb7a1 Merge pull request #112 from fish-shop/dependabot/github_actions/version-upda...
• 9513d8c Bump the version-updates group across 1 directory with 3 updates
• See full diff in compare view

Updates fish-shop/indent-check from 1.0.28 to 1.0.29

Release notes

Sourced from fish-shop/indent-check's releases.

v1.0.29

What's Changed

• Bump the version-updates group across 1 directory with 4 updates by @​dependabot in fish-shop/indent-check#83

Full Changelog: fish-shop/indent-check@v1.0.28...v1.0.29

Commits

• d304847 Merge pull request #83 from fish-shop/dependabot/github_actions/version-updat...
• 99d2f9c Bump the version-updates group across 1 directory with 4 updates
• See full diff in compare view

Updates fish-shop/syntax-check from 2.2.28 to 2.2.29

Release notes

Sourced from fish-shop/syntax-check's releases.

v2.2.29

What's Changed

• Bump the version-updates group across 1 directory with 4 updates by @​dependabot in fish-shop/syntax-check#187

Full Changelog: fish-shop/syntax-check@v2.2.28...v2.2.29

Commits

• d540601 Merge pull request #187 from fish-shop/dependabot/github_actions/version-upda...
• b513c5b Bump the version-updates group across 1 directory with 4 updates
• See full diff in compare view

Updates fish-shop/install-plugin from 2.3.30 to 2.3.31

Release notes

Sourced from fish-shop/install-plugin's releases.

v2.3.31

What's Changed

• Bump the version-updates group across 1 directory with 5 updates by @​dependabot in fish-shop/install-plugin#217

Full Changelog: fish-shop/install-plugin@v2.3.30...v2.3.31

Commits

• a8446a6 Merge pull request #217 from fish-shop/dependabot/github_actions/version-upda...
• 2a41564 Bump the version-updates group across 1 directory with 5 updates
• See full diff in compare view

Updates fish-shop/run-fishtape-tests from 2.3.28 to 2.3.29

Release notes

Sourced from fish-shop/run-fishtape-tests's releases.

v2.3.29

What's Changed

• Bump the version-updates group across 1 directory with 5 updates by @​dependabot in fish-shop/run-fishtape-tests#210

Full Changelog: fish-shop/run-fishtape-tests@v2.3.28...v2.3.29

Commits

• 99b1dfc Merge pull request #210 from fish-shop/dependabot/github_actions/version-upda...
• b11ba25 Bump the version-updates group across 1 directory with 5 updates
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
actions/github/codeql-action/analyze	d68b2d4edb4189fd2a5366ac14e72027bd4b37dd	Unknown	Unknown
actions/github/codeql-action/init	d68b2d4edb4189fd2a5366ac14e72027bd4b37dd	Unknown	Unknown
actions/step-security/harden-runner	cb605e52c26070c328afc4562f0b4ada7618a84e	🟢 8.6	Details Check Score Reason Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration CI-Tests 🟢 10 5 out of 5 merged PRs checked by a CI test -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Code-Review 🟢 10 all changesets reviewed Contributors 🟢 6 project has 2 contributing companies or organizations -- score normalized to 6 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Dependency-Update-Tool 🟢 10 update tool detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Maintained 🟢 10 30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Pinned-Dependencies 🟢 7 dependency not pinned by hash detected -- score normalized to 7 SAST 🟢 9 SAST tool detected but not run on all commits Security-Policy 🟢 10 security policy file detected Signed-Releases ⚠️ -1 no releases found Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/step-security/harden-runner	cb605e52c26070c328afc4562f0b4ada7618a84e	🟢 8.6	Details Check Score Reason Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration CI-Tests 🟢 10 5 out of 5 merged PRs checked by a CI test -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Code-Review 🟢 10 all changesets reviewed Contributors 🟢 6 project has 2 contributing companies or organizations -- score normalized to 6 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Dependency-Update-Tool 🟢 10 update tool detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Maintained 🟢 10 30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Pinned-Dependencies 🟢 7 dependency not pinned by hash detected -- score normalized to 7 SAST 🟢 9 SAST tool detected but not run on all commits Security-Policy 🟢 10 security policy file detected Signed-Releases ⚠️ -1 no releases found Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Vulnerabilities 🟢 8 2 existing vulnerabilities detected
actions/umbrelladocs/action-linkspector	de84085e0f51452a470558693d7d308fbb2fa261	Unknown	Unknown
actions/fish-shop/indent-check	d304847584160ab20775c4eb246e590b8892bad0	🟢 8.4	Details Check Score Reason Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches CI-Tests 🟢 10 15 out of 15 merged PRs checked by a CI test -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Code-Review ⚠️ -1 Found no human activity in the last 15 changesets Contributors 🟢 10 project has 3 contributing companies or organizations -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Dependency-Update-Tool 🟢 10 update tool detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Maintained 🟢 10 30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Pinned-Dependencies 🟢 10 all dependencies are pinned SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Security-Policy 🟢 10 security policy file detected Signed-Releases ⚠️ -1 no releases found Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Vulnerabilities 🟢 10 0 existing vulnerabilities detected
actions/fish-shop/install-fish-shell	7a8ccb8f572f8a14e26361cab2e05ce52fe4f274	🟢 8.4	Details Check Score Reason Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches CI-Tests 🟢 10 15 out of 15 merged PRs checked by a CI test -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Code-Review ⚠️ -1 Found no human activity in the last 15 changesets Contributors 🟢 10 project has 3 contributing companies or organizations -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Dependency-Update-Tool 🟢 10 update tool detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Maintained 🟢 10 30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Pinned-Dependencies 🟢 10 all dependencies are pinned SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Security-Policy 🟢 10 security policy file detected Signed-Releases ⚠️ -1 no releases found Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Vulnerabilities 🟢 10 0 existing vulnerabilities detected
actions/fish-shop/install-plugin	a8446a61402823033cb4af692f390f00fadfd615	🟢 7.7	Details Check Score Reason Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches CI-Tests 🟢 10 15 out of 15 merged PRs checked by a CI test -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Code-Review ⚠️ 0 Found 0/1 approved changesets -- score normalized to 0 Contributors 🟢 10 project has 3 contributing companies or organizations -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Dependency-Update-Tool 🟢 10 update tool detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Maintained 🟢 10 30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Pinned-Dependencies 🟢 10 all dependencies are pinned SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Security-Policy 🟢 10 security policy file detected Signed-Releases ⚠️ -1 no releases found Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Vulnerabilities 🟢 10 0 existing vulnerabilities detected
actions/fish-shop/run-fishtape-tests	99b1dfca93c37926ab61f9b242cb1ea5318d36d3	🟢 8.4	Details Check Score Reason Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches CI-Tests 🟢 10 15 out of 15 merged PRs checked by a CI test -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Code-Review ⚠️ -1 Found no human activity in the last 15 changesets Contributors 🟢 10 project has 3 contributing companies or organizations -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Dependency-Update-Tool 🟢 10 update tool detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Maintained 🟢 10 30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Pinned-Dependencies 🟢 10 all dependencies are pinned SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Security-Policy 🟢 10 security policy file detected Signed-Releases ⚠️ -1 no releases found Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Vulnerabilities 🟢 10 0 existing vulnerabilities detected
actions/fish-shop/syntax-check	d540601ca1e2b8cf8c57fff2a872ab8a7b9477af	🟢 8.4	Details Check Score Reason Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches CI-Tests 🟢 10 15 out of 15 merged PRs checked by a CI test -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Code-Review ⚠️ -1 Found no human activity in the last 15 changesets Contributors 🟢 10 project has 3 contributing companies or organizations -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Dependency-Update-Tool 🟢 10 update tool detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Maintained 🟢 10 30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Pinned-Dependencies 🟢 10 all dependencies are pinned SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Security-Policy 🟢 10 security policy file detected Signed-Releases ⚠️ -1 no releases found Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Vulnerabilities 🟢 10 0 existing vulnerabilities detected

Scanned Files

• .github/workflows/codeql-analysis.yml
• .github/workflows/markdown-links.yml
• .github/workflows/test.yml

[dependabot]

Superseded by #279.