dependabot[bot]
52cdf57f7a
Bump github/codeql-action from 3.27.1 to 3.27.3
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.1 to 3.27.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](4f3212b617...396bb3e453
2024-11-13 00:22:38 +00:00
95022bbd13
Merge pull request #42 from wneessen/dependabot/github_actions/github/codeql-action-3.27.1
...
CodeQL / Analyze (push) Failing after 1s
golangci-lint / lint (push) Failing after 1s
Govulncheck Security Scan / test (push) Failing after 1s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 2s
Bump github/codeql-action from 3.27.0 to 3.27.1
2024-11-11 02:16:33 +01:00
059f88d073
Merge pull request #43 from wneessen/dependabot/github_actions/sonarsource/sonarqube-scan-action-3.1.0
...
Bump sonarsource/sonarqube-scan-action from 3.0.0 to 3.1.0
2024-11-11 02:16:17 +01:00
dependabot[bot]
675ec4839c
Bump sonarsource/sonarqube-scan-action from 3.0.0 to 3.1.0
...
Bumps [sonarsource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action ) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases )
- [Commits](884b79409b...13990a6956
2024-11-11 00:41:00 +00:00
dependabot[bot]
af82b9f850
Bump github/codeql-action from 3.27.0 to 3.27.1
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.27.0 to 3.27.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](662472033e...4f3212b617
2024-11-11 00:40:57 +00:00
7e87cea9e9
Merge pull request #41 from wneessen/dependabot/github_actions/sonarsource/sonarqube-quality-gate-action-8406f4f1edaffef38e9fb9c53eb292fc1d7684fa
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 1s
Bump sonarsource/sonarqube-quality-gate-action from dc2f7b0dd95544cd550de3028f89193576e958b9 to 8406f4f1edaffef38e9fb9c53eb292fc1d7684fa
2024-10-30 09:30:37 +01:00
dependabot[bot]
70cfa30b98
Bump sonarsource/sonarqube-quality-gate-action
...
Bumps [sonarsource/sonarqube-quality-gate-action](https://github.com/sonarsource/sonarqube-quality-gate-action ) from dc2f7b0dd95544cd550de3028f89193576e958b9 to 8406f4f1edaffef38e9fb9c53eb292fc1d7684fa.
- [Release notes](https://github.com/sonarsource/sonarqube-quality-gate-action/releases )
- [Commits](dc2f7b0dd9...8406f4f1ed
2024-10-30 00:38:40 +00:00
97aaefaf28
Merge pull request #40 from wneessen/dependabot/github_actions/actions/dependency-review-action-4.4.0
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 1s
SonarQube / Build and analyze (push) Failing after 1s
Bump actions/dependency-review-action from 4.3.5 to 4.4.0
2024-10-29 09:11:57 +01:00
dependabot[bot]
211421aa0e
Bump actions/dependency-review-action from 4.3.5 to 4.4.0
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 4.3.5 to 4.4.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](a6993e2c61...4081bf99e2
2024-10-29 00:39:38 +00:00
339a18cf6e
Merge pull request #39 from wneessen/dependabot/github_actions/actions/setup-go-5.1.0
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 1s
Govulncheck Security Scan / test (push) Failing after 1s
REUSE Compliance Check / test (push) Failing after 1s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 1s
SonarQube / Build and analyze (push) Failing after 2s
Bump actions/setup-go from 5.0.2 to 5.1.0
2024-10-25 09:06:33 +02:00
dependabot[bot]
3feea6de53
Bump actions/setup-go from 5.0.2 to 5.1.0
...
Bumps [actions/setup-go](https://github.com/actions/setup-go ) from 5.0.2 to 5.1.0.
- [Release notes](https://github.com/actions/setup-go/releases )
- [Commits](0a12ed9d6a...41dfa10bad
2024-10-25 00:59:30 +00:00
b0c37af879
Merge pull request #38 from wneessen/dependabot/github_actions/github/codeql-action-3.27.0
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 1s
Bump github/codeql-action from 3.26.13 to 3.27.0
2024-10-23 09:28:31 +02:00
dependabot[bot]
48966ce3be
Bump github/codeql-action from 3.26.13 to 3.27.0
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.13 to 3.27.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f779452ac5...662472033e
2024-10-23 00:54:21 +00:00
d3ec660aa6
Merge pull request #37 from wneessen/dependabot/github_actions/actions/dependency-review-action-4.3.5
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 2s
Bump actions/dependency-review-action from 4.3.4 to 4.3.5
2024-10-22 09:33:00 +02:00
dependabot[bot]
3aa951c317
Bump actions/dependency-review-action from 4.3.4 to 4.3.5
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 4.3.4 to 4.3.5.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](5a2ce3f5b9...a6993e2c61
2024-10-22 00:56:03 +00:00
a191867004
Merge pull request #36 from wneessen/dependabot/github_actions/github/codeql-action-3.26.13
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 2s
Bump github/codeql-action from 3.26.12 to 3.26.13
2024-10-15 09:15:21 +02:00
dependabot[bot]
ffbd9fb5b9
Bump github/codeql-action from 3.26.12 to 3.26.13
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.12 to 3.26.13.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](c36620d31a...f779452ac5
2024-10-15 01:08:12 +00:00
b56e2f066c
Merge pull request #35 from wneessen/dependabot/github_actions/actions/upload-artifact-4.4.3
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 2s
Bump actions/upload-artifact from 4.4.2 to 4.4.3
2024-10-10 09:15:24 +02:00
dependabot[bot]
1db87cf875
Bump actions/upload-artifact from 4.4.2 to 4.4.3
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.2 to 4.4.3.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](84480863f2...b4b15b8c7c
2024-10-10 00:49:20 +00:00
942133d1ef
Merge pull request #34 from wneessen/dependabot/github_actions/actions/upload-artifact-4.4.2
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 1s
SonarQube / Build and analyze (push) Failing after 2s
Bump actions/upload-artifact from 4.4.1 to 4.4.2
2024-10-09 09:35:17 +02:00
dependabot[bot]
ab96743759
Bump actions/upload-artifact from 4.4.1 to 4.4.2
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.1 to 4.4.2.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](604373da63...84480863f2
2024-10-09 00:16:14 +00:00
709a715648
Merge pull request #32 from wneessen/dependabot/github_actions/actions/upload-artifact-4.4.1
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 1s
REUSE Compliance Check / test (push) Failing after 1s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 1s
SonarQube / Build and analyze (push) Failing after 1s
Bump actions/upload-artifact from 4.4.0 to 4.4.1
2024-10-08 09:16:21 +02:00
1bf7195afd
Merge pull request #33 from wneessen/dependabot/github_actions/github/codeql-action-3.26.12
...
Bump github/codeql-action from 3.26.11 to 3.26.12
2024-10-08 09:16:05 +02:00
dependabot[bot]
eab391e4a7
Bump github/codeql-action from 3.26.11 to 3.26.12
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.11 to 3.26.12.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](6db8d6351f...c36620d31a
2024-10-08 00:52:27 +00:00
dependabot[bot]
cf48d9a86b
Bump actions/upload-artifact from 4.4.0 to 4.4.1
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 4.4.0 to 4.4.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](50769540e7...604373da63
2024-10-08 00:52:20 +00:00
28d5a437ad
Merge pull request #30 from wneessen/dependabot/github_actions/github/codeql-action-3.26.11
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 1s
REUSE Compliance Check / test (push) Failing after 1s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 1s
SonarQube / Build and analyze (push) Failing after 1s
Bump github/codeql-action from 3.26.10 to 3.26.11
2024-10-04 10:22:28 +02:00
d93b92a60d
Merge pull request #31 from wneessen/dependabot/github_actions/golangci/golangci-lint-action-6.1.1
...
Bump golangci/golangci-lint-action from 6.1.0 to 6.1.1
2024-10-04 10:22:15 +02:00
dependabot[bot]
aeaaba351e
Bump golangci/golangci-lint-action from 6.1.0 to 6.1.1
...
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action ) from 6.1.0 to 6.1.1.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases )
- [Commits](aaa42aa062...971e284b60
2024-10-04 01:11:09 +00:00
dependabot[bot]
73dd2cfae9
Bump github/codeql-action from 3.26.10 to 3.26.11
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.10 to 3.26.11.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](e2b3eafc8d...6db8d6351f
2024-10-04 01:11:06 +00:00
9fc59f0cab
Merge pull request #28 from wneessen/dependabot/github_actions/golang/govulncheck-action-1.0.4
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 2s
Bump golang/govulncheck-action from 1.0.3 to 1.0.4
2024-10-02 09:03:40 +02:00
05587833bd
Merge pull request #29 from wneessen/dependabot/github_actions/codecov/codecov-action-4.6.0
...
Bump codecov/codecov-action from 4.5.0 to 4.6.0
2024-10-02 09:03:17 +02:00
dependabot[bot]
2c47cc79d7
Bump codecov/codecov-action from 4.5.0 to 4.6.0
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.5.0 to 4.6.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](e28ff129e5...b9fd7d16f6
2024-10-02 00:46:25 +00:00
dependabot[bot]
227ddf2d05
Bump golang/govulncheck-action from 1.0.3 to 1.0.4
...
Bumps [golang/govulncheck-action](https://github.com/golang/govulncheck-action ) from 1.0.3 to 1.0.4.
- [Release notes](https://github.com/golang/govulncheck-action/releases )
- [Commits](dd0578b371...b625fbe08f
2024-10-02 00:46:22 +00:00
66e76792bf
Merge pull request #27 from wneessen/dependabot/github_actions/github/codeql-action-3.26.10
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 2s
Bump github/codeql-action from 3.26.9 to 3.26.10
2024-10-01 06:47:25 +02:00
dependabot[bot]
590afd0176
Bump github/codeql-action from 3.26.9 to 3.26.10
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.9 to 3.26.10.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](461ef6c76d...e2b3eafc8d
2024-10-01 00:29:10 +00:00
b64310d8dc
Merge pull request #25 from wneessen/dependabot/github_actions/sonarsource/sonarqube-scan-action-884b79409bbd464b2a59edc326a4b77dc56b2195
...
CodeQL / Analyze (push) Failing after 3s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 2s
Bump sonarsource/sonarqube-scan-action from f885e52a7572cf7943f28637e75730227df2dbf2 to 884b79409bbd464b2a59edc326a4b77dc56b2195
2024-09-25 09:23:20 +02:00
918150c98d
Merge pull request #26 from wneessen/dependabot/github_actions/github/codeql-action-3.26.9
...
Bump github/codeql-action from 3.26.8 to 3.26.9
2024-09-25 09:23:00 +02:00
dependabot[bot]
5ac4195794
Bump github/codeql-action from 3.26.8 to 3.26.9
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.8 to 3.26.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](294a9d9291...461ef6c76d
2024-09-25 01:07:50 +00:00
dependabot[bot]
be3c36e2b7
Bump sonarsource/sonarqube-scan-action
...
Bumps [sonarsource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action ) from f885e52a7572cf7943f28637e75730227df2dbf2 to 884b79409bbd464b2a59edc326a4b77dc56b2195.
- [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases )
- [Commits](f885e52a75...884b79409b
2024-09-25 01:07:42 +00:00
03292ed215
Merge pull request #23 from wneessen/dependabot/github_actions/github/codeql-action-3.26.8
...
CodeQL / Analyze (push) Failing after 2s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 2s
Bump github/codeql-action from 3.26.7 to 3.26.8
2024-09-20 09:15:32 +02:00
d07b7e42b0
Merge pull request #24 from wneessen/dependabot/github_actions/sonarsource/sonarqube-scan-action-f885e52a7572cf7943f28637e75730227df2dbf2
...
Bump sonarsource/sonarqube-scan-action from 2af7c4bea3abd8c236b5edb80998f31374896f09 to f885e52a7572cf7943f28637e75730227df2dbf2
2024-09-20 09:14:49 +02:00
dependabot[bot]
8af84294dc
Bump sonarsource/sonarqube-scan-action
...
Bumps [sonarsource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action ) from 2af7c4bea3abd8c236b5edb80998f31374896f09 to f885e52a7572cf7943f28637e75730227df2dbf2.
- [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases )
- [Commits](2af7c4bea3...f885e52a75
2024-09-20 01:05:07 +00:00
dependabot[bot]
315cb2f506
Bump github/codeql-action from 3.26.7 to 3.26.8
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.7 to 3.26.8.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](8214744c54...294a9d9291
2024-09-20 01:05:04 +00:00
1bdfdf8b56
Merge pull request #22 from wneessen/fix-21
...
CodeQL / Analyze (push) Failing after 1s
golangci-lint / lint (push) Failing after 1s
Govulncheck Security Scan / test (push) Failing after 1s
REUSE Compliance Check / test (push) Failing after 1s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 1s
SonarQube / Build and analyze (push) Failing after 1s
Add SECURITY.md for reporting vulnerabilities
2024-09-16 10:05:55 +02:00
928939afef
Add SECURITY.md for reporting vulnerabilities
...
Created a SECURITY.md file detailing how to report possible vulnerabilities in the project. Includes contact information, response expectations, and instructions for sending encrypted reports using OpenPGP/GPG.
2024-09-16 10:05:28 +02:00
b9cb716230
Merge pull request #20 from wneessen/fix-18
...
Set permissions to read for workflow
2024-09-16 09:56:53 +02:00
b0b7b07a8a
Set permissions to read for workflow
...
Add 'contents: read' permissions to the GitHub Actions workflow configuration. This change enhances security by only allowing read access to the repository contents.
2024-09-16 09:56:04 +02:00
f2f653eeb6
Merge pull request #17 from wneessen/dependabot/github_actions/github/codeql-action-3.26.7
...
CodeQL / Analyze (push) Failing after 23s
golangci-lint / lint (push) Failing after 2s
Govulncheck Security Scan / test (push) Failing after 2s
REUSE Compliance Check / test (push) Failing after 2s
Scorecard supply-chain security / Scorecard analysis (push) Failing after 2s
SonarQube / Build and analyze (push) Failing after 2s
Bump github/codeql-action from 3.26.6 to 3.26.7
2024-09-13 20:33:58 +02:00
7559b1e956
Merge pull request #12 from wneessen/dependabot/github_actions/fsfe/reuse-action-4.0.0
...
Bump fsfe/reuse-action from 1.3.0 to 4.0.0
2024-09-13 20:32:33 +02:00
dependabot[bot]
b1e14a709b
Bump github/codeql-action from 3.26.6 to 3.26.7
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3.26.6 to 3.26.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v3.26.6...8214744c546c1e5c8f03dde8fab3a7353211988d )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2024-09-13 18:32:22 +00:00
