22dd573154
Merge pull request #53 from wneessen/dependabot/github_actions/codecov/codecov-action-5.0.7
...
Bump codecov/codecov-action from 5.0.3 to 5.0.7
2024-11-21 02:22:24 +01:00
dependabot[bot]
54c79b8622
Bump github/codeql-action from 3.27.4 to 3.27.5
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.4 to 3.27.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](ea9e4e3799...f09c1c0a94
2024-11-21 00:44:57 +00:00
dependabot[bot]
000bede414
Bump codecov/codecov-action from 5.0.3 to 5.0.7
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 5.0.3 to 5.0.7.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](05f5a9cfad...015f24e681
2024-11-21 00:44:51 +00:00
dependabot[bot]
6498f9f216
Bump codecov/codecov-action from 5.0.2 to 5.0.3
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 5.0.2 to 5.0.3.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](5c47607acb...05f5a9cfad
2024-11-20 01:09:55 +00:00
dependabot[bot]
1b69a59cfc
Bump step-security/harden-runner from 2.10.1 to 2.10.2
...
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner ) from 2.10.1 to 2.10.2.
- [Release notes](https://github.com/step-security/harden-runner/releases )
- [Commits](91182cccc0...0080882f6c
2024-11-19 01:10:13 +00:00
dependabot[bot]
211dbb3f9d
Bump codecov/codecov-action from 5.0.0 to 5.0.2
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 5.0.0 to 5.0.2.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](968872560f...5c47607acb
2024-11-18 00:31:43 +00:00
422bbf2536
Merge pull request #46 from wneessen/dependabot/github_actions/codecov/codecov-action-5.0.0
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 1s
Govulncheck Security Scan / test (push) Failing after 1s
REUSE Compliance Check / test (push) Failing after 1s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 1s
SonarQube / Build and analyze (push) Failing after 1s
Bump codecov/codecov-action from 4.6.0 to 5.0.0
2024-11-15 09:24:23 +01:00
0512317c9f
Merge pull request #47 from wneessen/dependabot/github_actions/fsfe/reuse-action-5.0.0
...
Bump fsfe/reuse-action from 4.0.0 to 5.0.0
2024-11-15 09:24:04 +01:00
dependabot[bot]
d01d28d63f
Bump github/codeql-action from 3.27.3 to 3.27.4
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.3 to 3.27.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](396bb3e453...ea9e4e3799
2024-11-15 00:23:21 +00:00
dependabot[bot]
04e10d720c
Bump fsfe/reuse-action from 4.0.0 to 5.0.0
...
Bumps [fsfe/reuse-action](https://github.com/fsfe/reuse-action ) from 4.0.0 to 5.0.0.
- [Release notes](https://github.com/fsfe/reuse-action/releases )
- [Commits](3ae3c6bdf1...bb774aa972
2024-11-15 00:23:13 +00:00
dependabot[bot]
cd056140f1
Bump codecov/codecov-action from 4.6.0 to 5.0.0
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.6.0 to 5.0.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](b9fd7d16f6...968872560f
2024-11-15 00:23:11 +00:00
af87386921
Merge pull request #45 from wneessen/dependabot/github_actions/sonarsource/sonarqube-scan-action-4.0.0
...
CodeQL / Analyze (push) Failing after 1s
golangci-lint / lint (push) Failing after 1s
Govulncheck Security Scan / test (push) Failing after 1s
REUSE Compliance Check / test (push) Failing after 1s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 1s
SonarQube / Build and analyze (push) Failing after 2s
Bump sonarsource/sonarqube-scan-action from 3.1.0 to 4.0.0
2024-11-13 09:57:59 +01:00
dependabot[bot]
373c6f4c37
Bump sonarsource/sonarqube-scan-action from 3.1.0 to 4.0.0
...
Bumps [sonarsource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action ) from 3.1.0 to 4.0.0.
- [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases )
- [Commits](13990a6956...94d4f8ac4a
2024-11-13 00:22:41 +00:00
dependabot[bot]
52cdf57f7a
Bump github/codeql-action from 3.27.1 to 3.27.3
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.1 to 3.27.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](4f3212b617...396bb3e453
2024-11-13 00:22:38 +00:00
95022bbd13
Merge pull request #42 from wneessen/dependabot/github_actions/github/codeql-action-3.27.1
...
CodeQL / Analyze (push) Failing after 1s
golangci-lint / lint (push) Failing after 1s
Govulncheck Security Scan / test (push) Failing after 1s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 2s
Bump github/codeql-action from 3.27.0 to 3.27.1
2024-11-11 02:16:33 +01:00
dependabot[bot]
675ec4839c
Bump sonarsource/sonarqube-scan-action from 3.0.0 to 3.1.0
...
Bumps [sonarsource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action ) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases )
- [Commits](884b79409b...13990a6956
2024-11-11 00:41:00 +00:00
dependabot[bot]
af82b9f850
Bump github/codeql-action from 3.27.0 to 3.27.1
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.0 to 3.27.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](662472033e...4f3212b617
2024-11-11 00:40:57 +00:00
dependabot[bot]
70cfa30b98
Bump sonarsource/sonarqube-quality-gate-action
...
Bumps [sonarsource/sonarqube-quality-gate-action](https://github.com/sonarsource/sonarqube-quality-gate-action ) from dc2f7b0dd95544cd550de3028f89193576e958b9 to 8406f4f1edaffef38e9fb9c53eb292fc1d7684fa.
- [Release notes](https://github.com/sonarsource/sonarqube-quality-gate-action/releases )
- [Commits](dc2f7b0dd9...8406f4f1ed
2024-10-30 00:38:40 +00:00
dependabot[bot]
211421aa0e
Bump actions/dependency-review-action from 4.3.5 to 4.4.0
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 4.3.5 to 4.4.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](a6993e2c61...4081bf99e2
2024-10-29 00:39:38 +00:00
dependabot[bot]
3feea6de53
Bump actions/setup-go from 5.0.2 to 5.1.0
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.0.2 to 5.1.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](0a12ed9d6a...41dfa10bad
2024-10-25 00:59:30 +00:00
dependabot[bot]
48966ce3be
Bump github/codeql-action from 3.26.13 to 3.27.0
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.13 to 3.27.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f779452ac5...662472033e
2024-10-23 00:54:21 +00:00
dependabot[bot]
3aa951c317
Bump actions/dependency-review-action from 4.3.4 to 4.3.5
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 4.3.4 to 4.3.5.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](5a2ce3f5b9...a6993e2c61
2024-10-22 00:56:03 +00:00
dependabot[bot]
ffbd9fb5b9
Bump github/codeql-action from 3.26.12 to 3.26.13
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.12 to 3.26.13.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](c36620d31a...f779452ac5
2024-10-15 01:08:12 +00:00
dependabot[bot]
1db87cf875
Bump actions/upload-artifact from 4.4.2 to 4.4.3
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.2 to 4.4.3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](84480863f2...b4b15b8c7c
2024-10-10 00:49:20 +00:00
dependabot[bot]
ab96743759
Bump actions/upload-artifact from 4.4.1 to 4.4.2
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.1 to 4.4.2.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](604373da63...84480863f2
2024-10-09 00:16:14 +00:00
709a715648
Merge pull request #32 from wneessen/dependabot/github_actions/actions/upload-artifact-4.4.1
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 1s
REUSE Compliance Check / test (push) Failing after 1s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 1s
SonarQube / Build and analyze (push) Failing after 1s
Bump actions/upload-artifact from 4.4.0 to 4.4.1
2024-10-08 09:16:21 +02:00
dependabot[bot]
eab391e4a7
Bump github/codeql-action from 3.26.11 to 3.26.12
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.11 to 3.26.12.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](6db8d6351f...c36620d31a
2024-10-08 00:52:27 +00:00
dependabot[bot]
cf48d9a86b
Bump actions/upload-artifact from 4.4.0 to 4.4.1
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.0 to 4.4.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](50769540e7...604373da63
2024-10-08 00:52:20 +00:00
28d5a437ad
Merge pull request #30 from wneessen/dependabot/github_actions/github/codeql-action-3.26.11
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 1s
REUSE Compliance Check / test (push) Failing after 1s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 1s
SonarQube / Build and analyze (push) Failing after 1s
Bump github/codeql-action from 3.26.10 to 3.26.11
2024-10-04 10:22:28 +02:00
dependabot[bot]
aeaaba351e
Bump golangci/golangci-lint-action from 6.1.0 to 6.1.1
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 6.1.0 to 6.1.1.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](aaa42aa062...971e284b60
2024-10-04 01:11:09 +00:00
dependabot[bot]
73dd2cfae9
Bump github/codeql-action from 3.26.10 to 3.26.11
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.10 to 3.26.11.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](e2b3eafc8d...6db8d6351f
2024-10-04 01:11:06 +00:00
9fc59f0cab
Merge pull request #28 from wneessen/dependabot/github_actions/golang/govulncheck-action-1.0.4
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 2s
Bump golang/govulncheck-action from 1.0.3 to 1.0.4
2024-10-02 09:03:40 +02:00
dependabot[bot]
2c47cc79d7
Bump codecov/codecov-action from 4.5.0 to 4.6.0
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.5.0 to 4.6.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](e28ff129e5...b9fd7d16f6
2024-10-02 00:46:25 +00:00
dependabot[bot]
227ddf2d05
Bump golang/govulncheck-action from 1.0.3 to 1.0.4
...
Bumps [golang/govulncheck-action](https://github.com/golang/govulncheck-action ) from 1.0.3 to 1.0.4.
- [Release notes](https://github.com/golang/govulncheck-action/releases )
- [Commits](dd0578b371...b625fbe08f
2024-10-02 00:46:22 +00:00
dependabot[bot]
590afd0176
Bump github/codeql-action from 3.26.9 to 3.26.10
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.9 to 3.26.10.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](461ef6c76d...e2b3eafc8d
2024-10-01 00:29:10 +00:00
b64310d8dc
Merge pull request #25 from wneessen/dependabot/github_actions/sonarsource/sonarqube-scan-action-884b79409bbd464b2a59edc326a4b77dc56b2195
...
CodeQL / Analyze (push) Failing after 3s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 2s
Bump sonarsource/sonarqube-scan-action from f885e52a7572cf7943f28637e75730227df2dbf2 to 884b79409bbd464b2a59edc326a4b77dc56b2195
2024-09-25 09:23:20 +02:00
dependabot[bot]
5ac4195794
Bump github/codeql-action from 3.26.8 to 3.26.9
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.8 to 3.26.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](294a9d9291...461ef6c76d
2024-09-25 01:07:50 +00:00
dependabot[bot]
be3c36e2b7
Bump sonarsource/sonarqube-scan-action
...
Bumps [sonarsource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action ) from f885e52a7572cf7943f28637e75730227df2dbf2 to 884b79409bbd464b2a59edc326a4b77dc56b2195.
- [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases )
- [Commits](f885e52a75...884b79409b
2024-09-25 01:07:42 +00:00
03292ed215
Merge pull request #23 from wneessen/dependabot/github_actions/github/codeql-action-3.26.8
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 2s
Bump github/codeql-action from 3.26.7 to 3.26.8
2024-09-20 09:15:32 +02:00
dependabot[bot]
8af84294dc
Bump sonarsource/sonarqube-scan-action
...
Bumps [sonarsource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action ) from 2af7c4bea3abd8c236b5edb80998f31374896f09 to f885e52a7572cf7943f28637e75730227df2dbf2.
- [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases )
- [Commits](2af7c4bea3...f885e52a75
2024-09-20 01:05:07 +00:00
dependabot[bot]
315cb2f506
Bump github/codeql-action from 3.26.7 to 3.26.8
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.7 to 3.26.8.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](8214744c54...294a9d9291
2024-09-20 01:05:04 +00:00
b0b7b07a8a
Set permissions to read for workflow
...
Add 'contents: read' permissions to the GitHub Actions workflow configuration. This change enhances security by only allowing read access to the repository contents.
2024-09-16 09:56:04 +02:00
f2f653eeb6
Merge pull request #17 from wneessen/dependabot/github_actions/github/codeql-action-3.26.7
...
CodeQL / Analyze (push) Failing after 23s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 2s
Bump github/codeql-action from 3.26.6 to 3.26.7
2024-09-13 20:33:58 +02:00
7559b1e956
Merge pull request #12 from wneessen/dependabot/github_actions/fsfe/reuse-action-4.0.0
...
Bump fsfe/reuse-action from 1.3.0 to 4.0.0
2024-09-13 20:32:33 +02:00
dependabot[bot]
b1e14a709b
Bump github/codeql-action from 3.26.6 to 3.26.7
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.6 to 3.26.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v3.26.6...8214744c546c1e5c8f03dde8fab3a7353211988d )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-09-13 18:32:22 +00:00
a74296b2d2
Merge pull request #13 from wneessen/dependabot/github_actions/codecov/codecov-action-4.5.0
...
Bump codecov/codecov-action from 3.1.6 to 4.5.0
2024-09-13 20:32:20 +02:00
7140fed74b
Merge pull request #14 from wneessen/dependabot/github_actions/golangci/golangci-lint-action-6.1.0
...
Bump golangci/golangci-lint-action from 3.7.0 to 6.1.0
2024-09-13 20:32:10 +02:00
2848da6c7b
Merge pull request #15 from wneessen/dependabot/github_actions/step-security/harden-runner-2.10.1
...
Bump step-security/harden-runner from 2.9.1 to 2.10.1
2024-09-13 20:31:59 +02:00
cb0ddc90ce
Merge pull request #16 from wneessen/dependabot/github_actions/actions/setup-go-5.0.2
...
Bump actions/setup-go from 4.1.0 to 5.0.2
2024-09-13 20:31:48 +02:00
8b2121841f
Add SPDX license headers to workflow files
...
Included appropriate SPDX headers to ensure clear licensing information in both CodeQL and Dependabot workflow files. This improves compliance and transparency across the repository.
2024-09-13 20:30:57 +02:00
