dependabot[bot]
8c2dc80590
Bump actions/upload-artifact from 4.3.5 to 4.3.6
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.3.5 to 4.3.6.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](89ef406dd8...834a144ee9
2024-08-07 08:51:38 +00:00
dependabot[bot]
f9314be9a2
Bump docker/build-push-action from 6.4.1 to 6.6.0
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 6.4.1 to 6.6.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](1ca370b3a9...4f7cdeb0f0
2024-08-07 08:51:34 +00:00
dependabot[bot]
5c9d7e2db2
Bump github/codeql-action from 3.25.15 to 3.26.0
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.15 to 3.26.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](afb54ba388...eb055d739a
2024-08-07 08:51:32 +00:00
dependabot[bot]
c8a1bd5589
Bump step-security/harden-runner from 2.9.0 to 2.9.1
...
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner ) from 2.9.0 to 2.9.1.
- [Release notes](https://github.com/step-security/harden-runner/releases )
- [Commits](0d381219dd...5c7944e73c
2024-08-06 08:33:05 +00:00
dependabot[bot]
35c0c73558
Bump actions/upload-artifact from 4.3.4 to 4.3.5
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.3.4 to 4.3.5.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](0b2256b8c0...89ef406dd8
2024-08-05 08:46:06 +00:00
dependabot[bot]
71826fc06b
Bump golangci/golangci-lint-action from 6.0.1 to 6.1.0
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 6.0.1 to 6.1.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](a4f60bb28d...aaa42aa062
2024-07-30 08:46:47 +00:00
dependabot[bot]
54537057f0
Bump docker/setup-buildx-action from 3.4.0 to 3.6.1
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 3.4.0 to 3.6.1.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](4fd812986e...988b5a0280
2024-07-30 08:46:44 +00:00
6cc36477ef
Merge pull request #88 from wneessen/dependabot/github_actions/github/codeql-action-3.25.15
...
Bump github/codeql-action from 3.25.14 to 3.25.15
2024-07-29 10:36:28 +02:00
dependabot[bot]
0cbc1fc8e7
Bump ossf/scorecard-action from 2.3.3 to 2.4.0
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.3.3 to 2.4.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](dc50aa9510...62b2cac7ed
2024-07-29 08:35:32 +00:00
dependabot[bot]
d6cf29b69f
Bump github/codeql-action from 3.25.14 to 3.25.15
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.14 to 3.25.15.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](5cf07d8b70...afb54ba388
2024-07-29 08:35:29 +00:00
dependabot[bot]
e11587750e
Bump github/codeql-action from 3.25.13 to 3.25.14
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.13 to 3.25.14.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](2d790406f5...5cf07d8b70
2024-07-26 08:40:34 +00:00
ef08a6ec15
Merge pull request #83 from wneessen/dependabot/github_actions/docker/login-action-3.3.0
...
Bump docker/login-action from 3.2.0 to 3.3.0
2024-07-22 11:13:43 +02:00
dependabot[bot]
55242a8a95
Bump docker/login-action from 3.2.0 to 3.3.0
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](0d4c9c5ea7...9780b0c442
2024-07-22 09:08:01 +00:00
dependabot[bot]
3d7c571bdf
Bump github/codeql-action from 3.25.12 to 3.25.13
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.12 to 3.25.13.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](4fa2a79536...2d790406f5
2024-07-22 09:07:58 +00:00
dependabot[bot]
f318845a64
Bump step-security/harden-runner from 2.8.1 to 2.9.0
...
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner ) from 2.8.1 to 2.9.0.
- [Release notes](https://github.com/step-security/harden-runner/releases )
- [Commits](17d0e2bd7d...0d381219dd
2024-07-19 08:10:54 +00:00
dependabot[bot]
f017e2141b
Bump docker/build-push-action from 6.4.0 to 6.4.1
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 6.4.0 to 6.4.1.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](a254f8ca60...1ca370b3a9
2024-07-18 09:08:33 +00:00
dependabot[bot]
d5c9644bb6
Bump docker/build-push-action from 6.3.0 to 6.4.0
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 6.3.0 to 6.4.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](1a162644f9...a254f8ca60
2024-07-16 09:07:58 +00:00
ca41e6f41c
Merge pull request #77 from wneessen/dependabot/github_actions/github/codeql-action-3.25.12
...
Bump github/codeql-action from 3.25.11 to 3.25.12
2024-07-12 11:05:05 +02:00
dependabot[bot]
270f606919
Bump actions/dependency-review-action from 4.3.3 to 4.3.4
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 4.3.3 to 4.3.4.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](72eb03d02c...5a2ce3f5b9
2024-07-12 08:51:25 +00:00
dependabot[bot]
0fd01318a1
Bump github/codeql-action from 3.25.11 to 3.25.12
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.11 to 3.25.12.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b611370bb5...4fa2a79536
2024-07-12 08:51:22 +00:00
dependabot[bot]
e7d4b82bc2
Bump actions/setup-go from 5.0.1 to 5.0.2
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.0.1 to 5.0.2.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](cdcb360436...0a12ed9d6a
2024-07-11 09:02:53 +00:00
dependabot[bot]
79de4c464a
Bump actions/upload-artifact from 4.3.3 to 4.3.4
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.3.3 to 4.3.4.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](65462800fd...0b2256b8c0
2024-07-08 08:45:11 +00:00
079112c30a
Merge pull request #73 from wneessen/dependabot/github_actions/docker/setup-buildx-action-3.4.0
...
Bump docker/setup-buildx-action from 3.3.0 to 3.4.0
2024-07-04 10:35:54 +02:00
dependabot[bot]
cb40eb9759
Bump docker/setup-buildx-action from 3.3.0 to 3.4.0
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 3.3.0 to 3.4.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](d70bba72b1...4fd812986e
2024-07-04 08:34:56 +00:00
dependabot[bot]
aff120e39b
Bump fsfe/reuse-action from 3.0.0 to 4.0.0
...
Bumps [fsfe/reuse-action](https://github.com/fsfe/reuse-action ) from 3.0.0 to 4.0.0.
- [Release notes](https://github.com/fsfe/reuse-action/releases )
- [Commits](a46482ca36...3ae3c6bdf1
2024-07-04 08:34:51 +00:00
510e099190
Merge pull request #69 from wneessen/dependabot/github_actions/sonarsource/sonarqube-scan-action-2.3.0
...
Bump sonarsource/sonarqube-scan-action from 2.2.0 to 2.3.0
2024-07-03 11:05:17 +02:00
dependabot[bot]
f6a8b38a67
Bump docker/build-push-action from 6.2.0 to 6.3.0
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 6.2.0 to 6.3.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](15560696de...1a162644f9
2024-07-03 08:32:27 +00:00
dependabot[bot]
fe99161641
Bump sonarsource/sonarqube-scan-action from 2.2.0 to 2.3.0
...
Bumps [sonarsource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action ) from 2.2.0 to 2.3.0.
- [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases )
- [Commits](540792c588...aecaf43ae5
2024-07-03 08:32:23 +00:00
dependabot[bot]
d1a432ffd4
Bump github/codeql-action from 3.25.10 to 3.25.11
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.10 to 3.25.11.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](23acc5c183...b611370bb5
2024-07-01 09:01:29 +00:00
dependabot[bot]
537f026658
Bump docker/build-push-action from 6.1.0 to 6.2.0
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 6.1.0 to 6.2.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](31159d49c0...15560696de
2024-06-27 08:12:43 +00:00
dependabot[bot]
19a66a644a
Bump docker/build-push-action from 6.0.1 to 6.1.0
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 6.0.1 to 6.1.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](94f8f8c2ee...31159d49c0
2024-06-21 08:26:41 +00:00
dependabot[bot]
90d5ed8ee8
Bump docker/build-push-action from 6.0.0 to 6.0.1
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 6.0.0 to 6.0.1.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](c382f710d3...94f8f8c2ee
2024-06-19 08:09:49 +00:00
dependabot[bot]
6e89b69571
Bump docker/build-push-action from 5.4.0 to 6.0.0
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 5.4.0 to 6.0.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](ca052bb54a...c382f710d3
2024-06-18 08:39:55 +00:00
6420a79aaa
Merge pull request #59 from wneessen/dependabot/github_actions/github/codeql-action-3.25.10
...
Bump github/codeql-action from 3.25.9 to 3.25.10
2024-06-14 11:01:52 +02:00
dependabot[bot]
9c52b8810f
Bump sonarsource/sonarqube-scan-action from 2.1.0 to 2.2
...
Bumps [sonarsource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action ) from 2.1.0 to 2.2.
- [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases )
- [Commits](86fe817756...540792c588
2024-06-14 09:00:14 +00:00
dependabot[bot]
9b55a1f6ea
Bump github/codeql-action from 3.25.9 to 3.25.10
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.9 to 3.25.10.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](530d4feaa9...23acc5c183
2024-06-14 09:00:10 +00:00
5493cf76d4
Merge pull request #57 from wneessen/dependabot/github_actions/github/codeql-action-3.25.9
...
Bump github/codeql-action from 3.25.7 to 3.25.9
2024-06-13 10:14:49 +02:00
dependabot[bot]
d86e3a5443
Bump actions/checkout from 4.1.6 to 4.1.7
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.6 to 4.1.7.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](a5ac7e51b4...692973e3d9
2024-06-13 08:13:29 +00:00
dependabot[bot]
d2bc8c612c
Bump github/codeql-action from 3.25.7 to 3.25.9
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.7 to 3.25.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f079b84933...530d4feaa9
2024-06-13 08:13:22 +00:00
374eb6bf53
Merge pull request #55 from wneessen/dependabot/github_actions/step-security/harden-runner-2.8.1
...
Bump step-security/harden-runner from 2.8.0 to 2.8.1
2024-06-10 10:59:49 +02:00
dependabot[bot]
7fc238ab99
Bump docker/build-push-action from 5.3.0 to 5.4.0
...
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 5.3.0 to 5.4.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](2cdde995de...ca052bb54a
2024-06-10 08:58:35 +00:00
dependabot[bot]
f328e6b367
Bump step-security/harden-runner from 2.8.0 to 2.8.1
...
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner ) from 2.8.0 to 2.8.1.
- [Release notes](https://github.com/step-security/harden-runner/releases )
- [Commits](f086349bfa...17d0e2bd7d
2024-06-10 08:58:30 +00:00
dependabot[bot]
3e2d19aa75
Bump actions/dependency-review-action from 4.3.2 to 4.3.3
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 4.3.2 to 4.3.3.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](0c155c5e85...72eb03d02c
2024-06-06 08:54:03 +00:00
dependabot[bot]
323bf438bd
Bump github/codeql-action from 3.25.6 to 3.25.7
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.6 to 3.25.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](9fdb3e4972...f079b84933
2024-05-31 08:46:57 +00:00
dependabot[bot]
de808b05f3
Bump docker/login-action from 3.1.0 to 3.2.0
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](e92390c5fb...0d4c9c5ea7
2024-05-28 08:14:13 +00:00
dependabot[bot]
86949a7f90
Bump sonarsource/sonarqube-scan-action from 2.0.2 to 2.1.0
...
Bumps [sonarsource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action ) from 2.0.2 to 2.1.0.
- [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases )
- [Commits](53c3e3207f...86fe817756
2024-05-24 08:13:20 +00:00
dependabot[bot]
cd649364d4
---
...
updated-dependencies:
- dependency-name: step-security/harden-runner
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-05-22 08:16:34 +00:00
dependabot[bot]
6bd30f6b12
---
...
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-05-21 08:16:14 +00:00
dependabot[bot]
95d16edfff
Bump actions/checkout from 4.1.5 to 4.1.6
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.5 to 4.1.6.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](44c2b7a8a4...a5ac7e51b4
2024-05-17 08:58:40 +00:00
dependabot[bot]
378e87291d
Bump github/codeql-action from 3.25.4 to 3.25.5
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.4 to 3.25.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](ccf74c9479...b7cec75265
2024-05-15 08:29:13 +00:00
dependabot[bot]
53833df20c
Bump ossf/scorecard-action from 2.3.1 to 2.3.3
...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) from 2.3.1 to 2.3.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](0864cf1902...dc50aa9510
2024-05-10 08:10:32 +00:00
dependabot[bot]
a1232909b7
Bump github/codeql-action from 3.25.3 to 3.25.4
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.3 to 3.25.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](d39d31e687...ccf74c9479
2024-05-09 08:29:31 +00:00
dependabot[bot]
3a63f9ae94
Bump golangci/golangci-lint-action from 6.0.0 to 6.0.1
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 6.0.0 to 6.0.1.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](23faadfdeb...a4f60bb28d
2024-05-08 08:28:21 +00:00
95560ca44c
Merge pull request #34 from wneessen/dependabot/github_actions/actions/checkout-4.1.5
...
Bump actions/checkout from 4.1.4 to 4.1.5
2024-05-07 11:09:16 +02:00
dependabot[bot]
a0d850a541
Bump golangci/golangci-lint-action from 5.3.0 to 6.0.0
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 5.3.0 to 6.0.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](38e1018663...23faadfdeb
2024-05-07 08:52:34 +00:00
dependabot[bot]
21617455f2
Bump actions/checkout from 4.1.4 to 4.1.5
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.4 to 4.1.5.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](0ad4b8fada...44c2b7a8a4
2024-05-07 08:52:28 +00:00
dependabot[bot]
78e4eb0edf
Bump golangci/golangci-lint-action from 5.1.0 to 5.3.0
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 5.1.0 to 5.3.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](9d1e0624a7...38e1018663
2024-05-06 08:37:01 +00:00
dependabot[bot]
a6527636ad
Bump actions/setup-go from 5.0.0 to 5.0.1
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.0.0 to 5.0.1.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](0c52d547c9...cdcb360436
2024-05-03 08:53:16 +00:00
dependabot[bot]
7ebec9aa02
Bump actions/dependency-review-action from 4.3.1 to 4.3.2
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 4.3.1 to 4.3.2.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](e58c696e52...0c155c5e85
2024-05-01 08:37:57 +00:00
499df38991
Merge pull request #28 from wneessen/dependabot/github_actions/golangci/golangci-lint-action-5.1.0
...
Bump golangci/golangci-lint-action from 5.0.0 to 5.1.0
2024-04-30 11:49:41 +02:00
6736ea0439
Merge pull request #29 from wneessen/dependabot/github_actions/step-security/harden-runner-2.7.1
...
Bump step-security/harden-runner from 2.7.0 to 2.7.1
2024-04-30 11:49:27 +02:00
dependabot[bot]
4c4d53cdfa
Bump actions/dependency-review-action from 4.2.5 to 4.3.1
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 4.2.5 to 4.3.1.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](5bbc3ba658...e58c696e52
2024-04-30 08:34:30 +00:00
dependabot[bot]
e42a66bdd6
Bump step-security/harden-runner from 2.7.0 to 2.7.1
...
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner ) from 2.7.0 to 2.7.1.
- [Release notes](https://github.com/step-security/harden-runner/releases )
- [Commits](63c24ba6bd...a4aa98b93c
2024-04-30 08:34:21 +00:00
dependabot[bot]
fb7a210c15
Bump golangci/golangci-lint-action from 5.0.0 to 5.1.0
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 5.0.0 to 5.1.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](82d40c283a...9d1e0624a7
2024-04-30 08:34:04 +00:00
dependabot[bot]
b025b67248
Bump github/codeql-action from 3.25.2 to 3.25.3
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.2 to 3.25.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](8f596b4ae3...d39d31e687
2024-04-26 08:16:26 +00:00
a41869a6de
Merge pull request #23 from wneessen/dependabot/github_actions/github/codeql-action-3.25.2
...
Bump github/codeql-action from 3.25.1 to 3.25.2
2024-04-25 11:11:59 +02:00
3e59d3b8c2
Merge pull request #24 from wneessen/dependabot/github_actions/actions/upload-artifact-4.3.3
...
Bump actions/upload-artifact from 4.3.2 to 4.3.3
2024-04-25 11:11:49 +02:00
6504019ef7
Merge pull request #26 from wneessen/dependabot/github_actions/actions/checkout-4.1.4
...
Bump actions/checkout from 4.1.2 to 4.1.4
2024-04-25 11:11:40 +02:00
dependabot[bot]
7d6aae2ece
Bump actions/checkout from 4.1.2 to 4.1.4
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.2 to 4.1.4.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](9bb56186c3...0ad4b8fada
2024-04-25 08:59:45 +00:00
dependabot[bot]
025ff32fd1
Bump golangci/golangci-lint-action from 4.0.0 to 5.0.0
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 4.0.0 to 5.0.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](3cfe3a4abb...82d40c283a
2024-04-25 08:59:35 +00:00
dependabot[bot]
faf921dc6c
Bump actions/upload-artifact from 4.3.2 to 4.3.3
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.3.2 to 4.3.3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](1746f4ab65...65462800fd
2024-04-23 08:15:05 +00:00
dependabot[bot]
2f89ea9ae7
Bump github/codeql-action from 3.25.1 to 3.25.2
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.1 to 3.25.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](c7f9125735...8f596b4ae3
2024-04-23 08:15:01 +00:00
dependabot[bot]
912eb0eeb8
Bump actions/upload-artifact from 4.3.1 to 4.3.2
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.3.1 to 4.3.2.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](5d5d22a312...1746f4ab65
2024-04-19 08:23:26 +00:00
dependabot[bot]
242a86b8e7
Bump github/codeql-action from 3.25.0 to 3.25.1
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.25.0 to 3.25.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](df5a14dc28...c7f9125735
2024-04-18 08:51:00 +00:00
dependabot[bot]
bc7a021e33
Bump github/codeql-action from 3.24.10 to 3.25.0
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.10 to 3.25.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](4355270be1...df5a14dc28
2024-04-16 08:36:02 +00:00
dependabot[bot]
fea2280875
Bump sigstore/cosign-installer from 3.4.0 to 3.5.0
...
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ) from 3.4.0 to 3.5.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases )
- [Commits](e1523de757...59acb6260d
2024-04-11 08:54:14 +00:00
be61815ff9
Merge pull request #16 from wneessen/dependabot/github_actions/docker/setup-buildx-action-3.3.0
...
Bump docker/setup-buildx-action from 3.2.0 to 3.3.0
2024-04-08 11:10:14 +02:00
dependabot[bot]
c22aac210b
Bump github/codeql-action from 3.24.9 to 3.24.10
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.9 to 3.24.10.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](1b1aada464...4355270be1
2024-04-08 09:08:17 +00:00
dependabot[bot]
b80694f5df
Bump docker/setup-buildx-action from 3.2.0 to 3.3.0
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](2b51285047...d70bba72b1
2024-04-08 09:08:12 +00:00
dependabot[bot]
31beff9e47
Bump sonarsource/sonarqube-scan-action
...
Bumps [sonarsource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action ) from 9ad16418d1dd6d28912bc0047ee387e90181ce1c to 53c3e3207fe4b8d52e2f1ac9d6eb1d2506f626c0.
- [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases )
- [Commits](9ad16418d1...53c3e3207f
2024-03-29 08:52:42 +00:00
dependabot[bot]
1919eabc08
Bump actions/dependency-review-action from 4.2.4 to 4.2.5
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 4.2.4 to 4.2.5.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](733dd5d4a5...5bbc3ba658
2024-03-26 08:57:51 +00:00
795f9671b5
Merge pull request #12 from wneessen/dependabot/github_actions/github/codeql-action-3.24.9
...
Bump github/codeql-action from 3.24.8 to 3.24.9
2024-03-25 09:24:09 +01:00
dependabot[bot]
b7f7997861
Bump github/codeql-action from 3.24.8 to 3.24.9
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.24.8 to 3.24.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](05963f47d8...1b1aada464
2024-03-25 08:20:03 +00:00
dependabot[bot]
615b3eb5a4
Bump actions/dependency-review-action from 4.2.3 to 4.2.4
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 4.2.3 to 4.2.4.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](0fa40c3c10...733dd5d4a5
2024-03-25 08:19:50 +00:00
f0e0b94307
Add SPDX license headers to workflows and Dependabot config
...
Added SPDX license headers to the GitHub workflows and the Dependabot configuration file, specifying the license as MIT. Also, minor formatting changes have been made to the dependency review workflow file.
2024-03-21 16:35:03 +01:00
7b6edf1c31
Merge pull request #3 from wneessen/dependabot/github_actions/actions/checkout-4.1.2
...
Bump actions/checkout from 2.7.0 to 4.1.2
2024-03-21 16:33:27 +01:00
dependabot[bot]
9a7db0fb90
Bump actions/checkout from 2.7.0 to 4.1.2
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2.7.0 to 4.1.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2.7.0...9bb56186c3b09b4f86b1c65136769dd318469633 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-03-21 15:33:13 +00:00
fc1ca00262
Merge pull request #4 from wneessen/dependabot/github_actions/github/codeql-action-3.24.8
...
Bump github/codeql-action from 2.24.8 to 3.24.8
2024-03-21 16:33:08 +01:00
f54f539549
Merge pull request #5 from wneessen/dependabot/github_actions/actions/setup-go-5.0.0
...
Bump actions/setup-go from 3.5.0 to 5.0.0
2024-03-21 16:32:47 +01:00
0fb013853b
Merge pull request #6 from wneessen/dependabot/github_actions/fsfe/reuse-action-3.0.0
...
Bump fsfe/reuse-action from 1.3.0 to 3.0.0
2024-03-21 16:32:37 +01:00
dependabot[bot]
3f4a9c23cc
Bump golangci/golangci-lint-action from 3.7.0 to 4.0.0
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 3.7.0 to 4.0.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](3a91952989...3cfe3a4abb
2024-03-21 15:31:34 +00:00
dependabot[bot]
4967c82d92
Bump fsfe/reuse-action from 1.3.0 to 3.0.0
...
Bumps [fsfe/reuse-action](https://github.com/fsfe/reuse-action ) from 1.3.0 to 3.0.0.
- [Release notes](https://github.com/fsfe/reuse-action/releases )
- [Commits](28cf8f33bc...a46482ca36
2024-03-21 15:31:31 +00:00
dependabot[bot]
08a58e25ad
Bump actions/setup-go from 3.5.0 to 5.0.0
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 3.5.0 to 5.0.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](6edd4406fa...0c52d547c9
2024-03-21 15:31:29 +00:00
dependabot[bot]
8d6a02c386
Bump github/codeql-action from 2.24.8 to 3.24.8
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.24.8 to 3.24.8.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v2.24.8...05963f47d870e2cb19a537396c1f668a348c7d8f )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-03-21 15:31:25 +00:00
StepSecurity Bot
5897a4ece0
[StepSecurity] Apply security best practices
...
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
2024-03-21 15:21:39 +00:00
5c41bef4dc
Remove CodeQL
2024-03-21 16:13:37 +01:00
df58859a4f
Update language matrix in codeql workflow
...
The language matrix in the .github/workflows/codeql.yml file has been updated to only include 'go'. This change removes the 'javascript-typescript' option to focus solely on Go code analysis and enhance the efficiency of the workflow process.
2024-03-21 16:10:38 +01:00
38661b29ae
Disable Autobuild and add new build commands in workflow
...
The Autobuild command in the .github/workflows/codeql.yml file has been commented out due to possible build failure. Instead, a new run command is added to manually build the application using Go. This change allows for more control and reliability on the build process.
2024-03-21 16:08:38 +01:00
ddc62a9a04
Add CC0-1.0 license and update workflow files
...
A new file, LICENSES/CC0-1.0.txt, has been created to provide the Creative Commons Zero v1.0 Universal license for the project. Additionally, SPDX headers specifying the MIT license and copyright details have been added to each of the GitHub workflow files, enhancing the clarity and compliance of the project's license utilization.
2024-03-21 16:02:13 +01:00
42e89bc2bb
Implement security improvements and workflow updates
...
Added SECURITY.md with details for vulnerability reporting and encryption. Introduced new workflows for dependency review, Scorecard supply-chain security, and CodeQL analysis. Made amendments to docker-publish.yml for better Docker build and publishing process. These enhancements are aimed towards improving the security stance and the efficiency of CI/CD workflows.
2024-03-21 15:47:46 +01:00
