chore(deps): update github actions #396

miracum-renovate · 2024-11-18T09:57:26Z

This PR contains the following updates:

Package	Type	Update	Change
actions/checkout	action	patch	`v4.2.1` -> `v4.2.2`
github/codeql-action	action	minor	`v3.26.13` -> `v3.27.4`
oxsecurity/megalinter	action	minor	`v8.1.0` -> `v8.2.0`
renovatebot/github-action	action	patch	`v40.3.3` -> `v40.3.6`

Release Notes

actions/checkout (actions/checkout)

`v4.2.2`

Compare Source

url-helper.ts now leverages well-known environment variables by @jww3 in https://github.com/actions/checkout/pull/1941
Expand unit test coverage for isGhes by @jww3 in https://github.com/actions/checkout/pull/1946

github/codeql-action (github/codeql-action)

`v3.27.4`

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.4 - 14 Nov 2024

No user facing changes.

See the full CHANGELOG.md for more information.

`v3.27.3`

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.3 - 12 Nov 2024

No user facing changes.

See the full CHANGELOG.md for more information.

`v3.27.2`

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.2 - 12 Nov 2024

Fixed an issue where setting up the CodeQL tools would sometimes fail with the message "Invalid value 'undefined' for header 'authorization'". #2590

See the full CHANGELOG.md for more information.

`v3.27.1`

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.1 - 08 Nov 2024

The CodeQL Action now downloads bundles compressed using Zstandard on GitHub Enterprise Server when using Linux or macOS runners. This speeds up the installation of the CodeQL tools. This feature is already available to GitHub.com users. #2573
Update default CodeQL bundle version to 2.19.3. #2576

See the full CHANGELOG.md for more information.

`v3.27.0`

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.0 - 22 Oct 2024

Bump the minimum CodeQL bundle version to 2.14.6. #2549
Fix an issue where the upload-sarif Action would fail with "upload-sarif post-action step failed: Input required and not supplied: token" when called in a composite Action that had a different set of inputs to the ones expected by the upload-sarif Action. #2557
Update default CodeQL bundle version to 2.19.2. #2552

See the full CHANGELOG.md for more information.

oxsecurity/megalinter (oxsecurity/megalinter)

`v8.2.0`

Compare Source

Media
- 10 MegaLinter Tips and Tricks Unlock its Full Potential by Wes Dean
- MegaLinter Performance Tuning for Maximum Efficiency by Wes Dean
Linters enhancements
- detekt Enable SARIF output + count errors
- lintr: Support files in subdirectories, fix unit tests
- phpcs: Activate APPLY_FIXES
- Salesforce linters: Add SF_CLI_DISABLE_AUTOUPDATE for SF CLI JIT plugins
- trivy: handle retry if failed to download Java DB is detected
- tsqllint Re-enabled after .net 8 and security updates
Fixes
- Add message in PR comment if FAIL_IF_UPDATED_SOURCES is triggered
- Fix linting errors in GitHub Actions template
Reporters
- UpdatedSourcesReporter will git commit & push fixed files to source branch if APPLY_FIXES is set
- Fix AzureCommentReporter not adding comments to PR
- Fix AzureCommentReporter fails when target repo contains spaces
Doc
- Updated documentation with Azure central pipeline use case
- Update DevSkim documentation to show a valid exclusion config file
- Note about risky rules and how to fix rule violations with PHP-CS-Fixer
CI
- Also prune volumes before pulling and pushing to docker hub
- Externalize mirroring from ghcr.io to docker hub in another workflow to avoid memory issues
- Squash docker images to have less layers and size
- Comment jobs related to GitHub Worker images, as CodeTotal is not actively maintained
- Make gitpod workflow not blocking until uv install is fixed
- Update stale comment
- Try several times to embed trivy db during Docker build, as a workaround to the random failures
- Wait 10 secondes instead of 1 before retrying a failing test method, to avoid race conditions
Linter versions upgrades (104)
- actionlint from 1.7.3 to 1.7.4
- ansible-lint from 24.9.2 to 24.10.0
- bicep_linter from 0.30.23 to 0.31.92
- cfn-lint from 1.16.1 to 1.19.0
- checkov from 3.2.257 to 3.2.298
- checkstyle from 10.18.2 to 10.20.1
- clippy from 0.1.81 to 0.1.82
- clj-kondo from 2024.09.27 to 2024.11.14
- cspell from 8.15.1 to 8.16.0
- devskim from 1.0.33 to 1.0.44
- djlint from 1.35.2 to 1.36.1
- dotnet-format from 8.0.110 to 8.0.111
- gitleaks from 8.20.1 to 8.21.2
- golangci-lint from 1.61.0 to 1.62.0
- ktlint from 1.3.1 to 1.4.1
- lightning-flow-scanner from 2.34.0 to 2.36.0
- lychee from 0.16.1 to 0.17.0
- mypy from 1.11.2 to 1.13.0
- perlcritic from 1.152 to 1.156
- phpcs from 3.10.3 to 3.11.1
- phplint from 9.5.3 to 9.5.4
- phpstan from 1.12.6 to 2.0.1
- pmd from 7.6.0 to 7.7.0
- pyright from 1.1.384 to 1.1.389
- revive from 1.4.0 to 1.5.1
- roslynator from 0.9.1.0 to 0.9.3.0
- rubocop from 1.66.1 to 1.68.0
- ruff from 0.6.9 to 0.7.4
- secretlint from 8.4.0 to 9.0.0
- sfdx-scanner-apex from 4.6.0 to 4.7.0
- sfdx-scanner-aura from 4.6.0 to 4.7.0
- sfdx-scanner-lwc from 4.6.0 to 4.7.0
- shfmt from 3.9.0 to 3.10.0
- snakemake from 8.21.0 to 8.25.3
- spectral from 6.13.1 to 6.14.1
- sqlfluff from 3.2.3 to 3.2.5
- syft from 1.14.0 to 1.16.0
- terraform-fmt from 1.9.5 to 1.9.8
- terragrunt from 0.67.5 to 0.68.14
- tflint from 0.53.0 to 0.54.0
- trivy-sbom from 0.56.2 to 0.57.0
- trivy from 0.56.2 to 0.57.0
- trufflehog from 3.82.11 to 3.83.7
- tsqllint from 1.15.3.0 to 1.16.0.0
- v8r from 4.1.0 to 4.2.0
- vale from 3.7.1 to 3.9.0

renovatebot/github-action (renovatebot/github-action)

`v40.3.6`

Compare Source

Bug Fixes

refactor: use named imports (#879) (4d91b7f)

Documentation

Fix permissions for Renovate 39 (#873) (80524aa)
update references to ghcr.io/renovatebot/renovate to v39 (fa742b7)

Miscellaneous Chores

deps: update dependency @semantic-release/github to v11 (#876) (03986b7)
deps: update dependency @types/node to v20.17.2 (9b8168b)
deps: update dependency @types/node to v20.17.3 (62e9650)
deps: update dependency @types/node to v20.17.4 (b274faf)
deps: update dependency @types/node to v20.17.5 (de0fb82)
deps: update dependency eslint-plugin-json to v4 (#874) (205c9ef)
deps: update dependency npm-run-all2 to v7 (#877) (7b3e4ff)
deps: update typescript-eslint monorepo to v8 (major) (#878) (5343762)
husky migration (#875) (c884ed2)

Continuous Integration

deps: update renovate docker tag to v38.142.7 (5bf87b6)

`v40.3.5`

Compare Source

Documentation

update references to actions/checkout to v4.2.2 (2097f2d)
update references to ghcr.io/renovatebot/renovate to v38.128.6 (41edd45)
update references to ghcr.io/renovatebot/renovate to v38.133.0 (e3f297f)
update references to ghcr.io/renovatebot/renovate to v38.142.5 (f4c795d)
update references to renovatebot/github-action to v40.3.4 (cf47d93)

Miscellaneous Chores

deps: update dependency @types/node to v20.16.12 (2e9cb53)
deps: update dependency @types/node to v20.16.13 (8232b6e)
deps: update dependency @types/node to v20.16.14 (2aef521)
deps: update dependency @types/node to v20.16.15 (7916c56)
deps: update dependency @types/node to v20.17.0 (a64d972)
deps: update dependency @types/node to v20.17.1 (f5083d0)
deps: update dependency npm-run-all2 to v6.2.4 (e788798)
deps: update dependency npm-run-all2 to v6.2.6 (ccced66)
deps: update dependency semantic-release to v24.1.3 (d6beebf)
deps: update dependency semantic-release to v24.2.0 (2b5b8b0)
deps: update pnpm to v9.12.2 (4b80937)
deps: update pnpm to v9.12.3 (550e7b3)

Build System

deps: lock file maintenance (f9b29f3)

Continuous Integration

deps: update actions/checkout action to v4.2.2 (2bf9026)
deps: update actions/setup-node action to v4.1.0 (86ad664)
deps: update renovate docker tag to v38.124.2 (695299e)
deps: update renovate docker tag to v38.124.3 (314da6d)
deps: update renovate docker tag to v38.126.0 (85ae1f5)
deps: update renovate docker tag to v38.127.0 (85e7f44)
deps: update renovate docker tag to v38.127.3 (3edbc0c)
deps: update renovate docker tag to v38.128.1 (f8211ef)
deps: update renovate docker tag to v38.128.2 (d7b8776)
deps: update renovate docker tag to v38.128.3 (2e30721)
deps: update renovate docker tag to v38.128.6 (a4b62ce)
deps: update renovate docker tag to v38.129.1 (2262e7a)
deps: update renovate docker tag to v38.129.2 (c86af21)
deps: update renovate docker tag to v38.130.0 (54af751)
deps: update renovate docker tag to v38.130.2 (000660f)
deps: update renovate docker tag to v38.130.3 (b9dda2c)
deps: update renovate docker tag to v38.130.4 (908a901)
deps: update renovate docker tag to v38.131.0 (dd7bd92)
deps: update renovate docker tag to v38.131.1 (6a73efe)
deps: update renovate docker tag to v38.131.2 (93861f0)
deps: update renovate docker tag to v38.132.1 (c3afe48)
deps: update renovate docker tag to v38.132.3 (1973fce)
deps: update renovate docker tag to v38.133.0 (4a07c50)
deps: update renovate docker tag to v38.133.1 (0e8b35d)
deps: update renovate docker tag to v38.133.2 (0b061eb)
deps: update renovate docker tag to v38.134.0 (67a9577)
deps: update renovate docker tag to v38.135.2 (14382a8)
deps: update renovate docker tag to v38.138.3 (1a12b39)
deps: update renovate docker tag to v38.138.5 (bb832ea)
deps: update renovate docker tag to v38.140.0 (1cefad4)
deps: update renovate docker tag to v38.140.2 (2d32293)
deps: update renovate docker tag to v38.141.1 (9143751)
deps: update renovate docker tag to v38.142.1 (4ed28cd)
deps: update renovate docker tag to v38.142.2 (513f3e3)
deps: update renovate docker tag to v38.142.3 (02bea1c)
deps: update renovate docker tag to v38.142.4 (7574fcb)
deps: update renovate docker tag to v38.142.5 (76eb5e4)

`v40.3.4`

Compare Source

Documentation

update references to actions/checkout to v4.2.1 (11212af)
update references to renovatebot/github-action to v40.3.3 (7bdca51)

Miscellaneous Chores

deps: update dependency @types/node to v20.16.11 (85652f0)
deps: update dependency prettier-plugin-packagejson to v2.5.3 (9347c05)
deps: update pnpm to v9.12.1 (49efd81)

Build System

deps: update dependency typescript to v5.6.3 (9c10032)

Continuous Integration

deps: update renovate docker tag to v38.120.0 (d1179fe)
deps: update renovate docker tag to v38.120.1 (7eaca7d)
deps: update renovate docker tag to v38.122.0 (5ebe74f)
deps: update renovate docker tag to v38.123.0 (398baed)
deps: update renovate docker tag to v38.124.1 (76a4553)

Configuration

📅 Schedule: Branch creation - "before 4am on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

github-actions · 2024-11-18T10:00:12Z

🦙 MegaLinter status: ⚠️ WARNING

Descriptor	Linter	Files	Errors	Elapsed time
✅ ACTION	actionlint	5	0	0.09s
✅ BASH	bash-exec	3	0	0.01s
✅ BASH	shellcheck	3	0	0.06s
✅ BASH	shfmt	3	0	0.0s
✅ EDITORCONFIG	editorconfig-checker	212	0	0.52s
✅ JSON	jsonlint	1	0	0.17s
⚠️ JSON	prettier	1	1	0.7s
✅ MARKDOWN	markdownlint	13	0	1.22s
✅ REPOSITORY	checkov	yes	no	21.15s
✅ REPOSITORY	dustilock	yes	no	0.01s
✅ REPOSITORY	gitleaks	yes	no	2.79s
✅ REPOSITORY	git_diff	yes	no	0.02s
✅ REPOSITORY	grype	yes	no	13.81s
✅ REPOSITORY	secretlint	yes	no	1.39s
✅ REPOSITORY	syft	yes	no	3.16s
✅ REPOSITORY	trivy	yes	no	6.03s
✅ REPOSITORY	trivy-sbom	yes	no	0.13s
✅ REPOSITORY	trufflehog	yes	no	3.05s
✅ YAML	prettier	145	0	2.21s
✅ YAML	yamllint	145	0	1.49s

See detailed report in MegaLinter reports

You could have the same capabilities but better runtime performances if you use a MegaLinter flavor:

oxsecurity/megalinter/flavors/[email protected] (49 linters)
oxsecurity/megalinter/flavors/[email protected] (50 linters)
oxsecurity/megalinter/flavors/[email protected] (50 linters)
oxsecurity/megalinter/flavors/[email protected] (50 linters)
oxsecurity/megalinter/flavors/[email protected] (51 linters)
oxsecurity/megalinter/flavors/[email protected] (52 linters)
oxsecurity/megalinter/flavors/[email protected] (54 linters)
oxsecurity/megalinter/flavors/[email protected] (54 linters)
oxsecurity/megalinter/flavors/[email protected] (54 linters)
oxsecurity/megalinter/flavors/[email protected] (54 linters)
oxsecurity/megalinter/flavors/[email protected] (59 linters)
oxsecurity/megalinter/flavors/[email protected] (62 linters)
oxsecurity/megalinter/flavors/[email protected] (62 linters)
oxsecurity/megalinter/flavors/[email protected] (71 linters)
oxsecurity/megalinter/flavors/[email protected] (83 linters)

MegaLinter is graciously provided by

chore(deps): update github actions

2d2bfb5

chgl merged commit c9eab73 into master Nov 18, 2024
6 checks passed

miracum-renovate bot deleted the renovate/github-actions branch November 18, 2024 10:06

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update github actions #396

chore(deps): update github actions #396

miracum-renovate bot commented Nov 18, 2024

github-actions bot commented Nov 18, 2024

chore(deps): update github actions #396

chore(deps): update github actions #396

Conversation

miracum-renovate bot commented Nov 18, 2024

Release Notes

CodeQL Action Changelog

3.27.4 - 14 Nov 2024

CodeQL Action Changelog

3.27.3 - 12 Nov 2024

CodeQL Action Changelog

3.27.2 - 12 Nov 2024

CodeQL Action Changelog

3.27.1 - 08 Nov 2024

CodeQL Action Changelog

3.27.0 - 22 Oct 2024

Bug Fixes

Documentation

Miscellaneous Chores

Continuous Integration

Documentation

Miscellaneous Chores

Build System

Continuous Integration

Documentation

Miscellaneous Chores

Build System

Continuous Integration

Configuration

github-actions bot commented Nov 18, 2024

🦙 MegaLinter status: ⚠️ WARNING