dependabot[bot]
57218d3e19
deps(docker): bump yoheimuta/protolint from 0.47.2 to 0.47.3 ( #5052 )
...
Bumps yoheimuta/protolint from 0.47.2 to 0.47.3.
---
updated-dependencies:
- dependency-name: yoheimuta/protolint
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-24 14:13:13 +00:00
dependabot[bot]
ebeeae9e85
deps(dev-docker): bump node in /dev-dependencies ( #5051 )
...
Bumps node from 21.4.0-bookworm to 21.5.0-bookworm.
---
updated-dependencies:
- dependency-name: node
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-24 14:12:53 +00:00
dependabot[bot]
125c610d00
deps(python): bump checkov from 3.1.38 to 3.1.43 in /dependencies/python ( #5054 )
...
Bumps [checkov](https://github.com/bridgecrewio/checkov ) from 3.1.38 to 3.1.43.
- [Release notes](https://github.com/bridgecrewio/checkov/releases )
- [Changelog](https://github.com/bridgecrewio/checkov/blob/main/CHANGELOG.md )
- [Commits](https://github.com/bridgecrewio/checkov/compare/3.1.38...3.1.43 )
---
updated-dependencies:
- dependency-name: checkov
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-24 14:12:50 +00:00
Marco Ferrari
fa7cb563d8
feat: automatically handle ktlint updates ( #5049 )
2023-12-24 14:47:34 +01:00
Marco Ferrari
b214a59ca7
fix: fix file list when looking for changes ( #5044 )
...
- Fix the file diff function on push events.
- Implement a test for the file diff function
2023-12-23 19:33:53 +01:00
Marco Ferrari
9d7268fb99
feat: add support for checkov to lint iac files ( #4925 )
...
- Add support to run Checkov against infrastructure as code descriptors
that are in a given (configurable) directory. Defaults to lint the
whole workspace.
- Establish a baseline for our own codebase so we don't have to fix
issues right away with this change.
2023-12-22 13:22:15 +01:00
Marco Ferrari
61d0c6992b
feat: redact gitleaks secrets from output ( #5040 )
2023-12-22 09:24:16 +01:00
dependabot[bot]
3434940f2c
build(java): bump com.google.googlejavaformat:google-java-format ( #5020 )
...
Bumps [com.google.googlejavaformat:google-java-format](https://github.com/google/google-java-format ) from 1.18.1 to 1.19.1.
- [Release notes](https://github.com/google/google-java-format/releases )
- [Commits](https://github.com/google/google-java-format/compare/v1.18.1...v1.19.1 )
---
updated-dependencies:
- dependency-name: com.google.googlejavaformat:google-java-format
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-21 20:09:18 +00:00
Marco Ferrari
60983d395f
fix: fail if r package installation fails ( #4994 )
...
- Fail if the installation of a R package fails.
- Install the remotes package once during the image build, and not when we scan
files at runtime.
- Reuse the default R library directory instead of moving it to /home/r-library
2023-12-21 20:52:57 +01:00
dependabot[bot]
a2cf1807a7
build(npm): bump eslint-plugin-jsonc in /dependencies ( #5024 )
...
Bumps [eslint-plugin-jsonc](https://github.com/ota-meshi/eslint-plugin-jsonc ) from 2.11.1 to 2.11.2.
- [Release notes](https://github.com/ota-meshi/eslint-plugin-jsonc/releases )
- [Changelog](https://github.com/ota-meshi/eslint-plugin-jsonc/blob/master/CHANGELOG.md )
- [Commits](https://github.com/ota-meshi/eslint-plugin-jsonc/compare/v2.11.1...v2.11.2 )
---
updated-dependencies:
- dependency-name: eslint-plugin-jsonc
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-21 14:42:47 +00:00
dependabot[bot]
f655d9222f
build(npm): bump npm-groovy-lint from 14.0.0 to 14.0.1 in /dependencies ( #5023 )
...
Bumps [npm-groovy-lint](https://github.com/nvuillam/npm-groovy-lint ) from 14.0.0 to 14.0.1.
- [Release notes](https://github.com/nvuillam/npm-groovy-lint/releases )
- [Changelog](https://github.com/nvuillam/npm-groovy-lint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/nvuillam/npm-groovy-lint/compare/v14.0.0...v14.0.1 )
---
updated-dependencies:
- dependency-name: npm-groovy-lint
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-21 14:18:15 +00:00
dependabot[bot]
579274a690
deps(npm): bump eslint-plugin-prettier in /dependencies ( #5038 )
...
Bumps [eslint-plugin-prettier](https://github.com/prettier/eslint-plugin-prettier ) from 5.0.1 to 5.1.0.
- [Release notes](https://github.com/prettier/eslint-plugin-prettier/releases )
- [Changelog](https://github.com/prettier/eslint-plugin-prettier/blob/master/CHANGELOG.md )
- [Commits](https://github.com/prettier/eslint-plugin-prettier/compare/v5.0.1...v5.1.0 )
---
updated-dependencies:
- dependency-name: eslint-plugin-prettier
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-21 14:15:59 +00:00
dependabot[bot]
1299982895
deps(npm): bump renovate from 37.102.0 to 37.105.0 in /dependencies ( #5037 )
...
Bumps [renovate](https://github.com/renovatebot/renovate ) from 37.102.0 to 37.105.0.
- [Release notes](https://github.com/renovatebot/renovate/releases )
- [Changelog](https://github.com/renovatebot/renovate/blob/main/.releaserc )
- [Commits](https://github.com/renovatebot/renovate/compare/37.102.0...37.105.0 )
---
updated-dependencies:
- dependency-name: renovate
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-21 14:15:26 +00:00
dependabot[bot]
7327ca7c51
deps(npm): bump gherkin-lint from 4.2.2 to 4.2.4 in /dependencies ( #5036 )
...
Bumps [gherkin-lint](https://github.com/vsiakka/gherkin-lint ) from 4.2.2 to 4.2.4.
- [Release notes](https://github.com/vsiakka/gherkin-lint/releases )
- [Commits](https://github.com/vsiakka/gherkin-lint/compare/v4.2.2...v4.2.4 )
---
updated-dependencies:
- dependency-name: gherkin-lint
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-21 14:14:24 +00:00
dependabot[bot]
17d5a62cc0
build(docker): bump yoheimuta/protolint from 0.47.0 to 0.47.2 ( #5034 )
...
Bumps yoheimuta/protolint from 0.47.0 to 0.47.2.
---
updated-dependencies:
- dependency-name: yoheimuta/protolint
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-21 14:14:14 +00:00
Marco Ferrari
641c65a8c4
ci: configure release-please dry-run and changelog ( #5039 )
...
- Implement a job to preview the release notes
- Include build, ci, and dependency updates
- Add emoji to section headings to match the existing release notes
- Add documentation about how to run release-please from the CLI
2023-12-21 15:03:14 +01:00
Marco Ferrari
0bb35c3e60
ci: update prefix for dependency updates ( #5035 )
2023-12-20 19:01:01 +01:00
Marco Ferrari
d8ca23519b
build: use a base image ( #5033 )
...
- Refactor Dockerfile to use a base image so that we can reuse the cache
for the standard image and not just the base image.
- Simplify the cd workflow to take into account the Production
environment only for latest images.
2023-12-20 17:45:35 +01:00
Marco Ferrari
43dc36860c
ci: fix build cache in the cd workflow ( #5032 )
2023-12-20 16:39:19 +01:00
Marco Ferrari
238caec66e
ci: set current version to 5.7.2 ( #5031 )
...
- Set the current version to 5.7.2 in release-please manifest
- Enable cache load in cd workflow
2023-12-20 16:33:53 +01:00
Marco Ferrari
9c7046864f
ci: fix release workflow ( #5030 )
...
- Don't run the Release job with a matrix because we don't want to run
release-please and the git tag steps more than once.
- Don't get release metadata if release-please didn't create the release
yet.
- Populate the container image build cache.
- Set the starting version and commit for release-please.
2023-12-20 15:55:53 +01:00
Marco Ferrari
93b5ede1e8
ci: configure release-please ( #5016 )
...
- Configure release-please to automatically create pull requests and
releases.
- Run release-please and tag update in the CD workflow.
- Update Git tags pointing to latest, major.minor, and major versions as
part of the CD workflow.
- Remove workflows (draft-release, release) that are not necessary
anymore, and related configuration files.
- Handle automatic updates to README.md, action.yml, and action.yaml
- Mount .github to /tmp/lint/.github so super-linter finds config files,
and the GitHub Actions to lint.
2023-12-20 14:58:25 +01:00
Marco Ferrari
117318f55c
ci: don't validate dependabot commits ( #5026 )
...
Dependabot doesn't allow configuring the max commit message line length
until https://github.com/dependabot/dependabot-core/issues/2445 is
resolved, so we cannot validate Dependabot commits at this time.
2023-12-20 09:12:02 +01:00
Marco Ferrari
9db632f0e1
ci: configure commitlint ( #5014 )
...
- Check if the PR contains a single commit, and fail otherwise.
- Enable commitlint to check if commits adhere to the
conventialcommits.org spec.
- Update the the pull request template to point to the conventional
commit spec.
- Update the dependabot configuration to add the "build(...)" prefix to
commits.
2023-12-19 19:37:16 +01:00
Marco Ferrari
2d303aab53
Don't update the deployment if we didn't start it ( #4995 )
2023-12-19 11:10:53 +01:00
dependabot[bot]
088bfe8e7e
Bump golang.org/x/crypto in /test/linters/go_modules/go_modules_good ( #5018 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.14.0 to 0.17.0.
- [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-19 09:08:19 +00:00
dependabot[bot]
c33189a3d3
Bump golang.org/x/crypto in /test/linters/go_modules/go_modules_bad ( #5017 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.14.0 to 0.17.0.
- [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-19 09:08:10 +00:00
dependabot[bot]
59d73472ae
Bump react-router-dom from 6.20.1 to 6.21.0 in /dependencies ( #5001 )
...
Bumps [react-router-dom](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom ) from 6.20.1 to 6.21.0.
- [Release notes](https://github.com/remix-run/react-router/releases )
- [Changelog](https://github.com/remix-run/react-router/blob/main/packages/react-router-dom/CHANGELOG.md )
- [Commits](https://github.com/remix-run/react-router/commits/react-router-dom@6.21.0/packages/react-router-dom )
---
updated-dependencies:
- dependency-name: react-router-dom
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 20:23:52 +00:00
dependabot[bot]
a574fdc634
Bump tenable/terrascan from 1.18.5 to 1.18.9 ( #5005 )
...
Bumps tenable/terrascan from 1.18.5 to 1.18.9.
---
updated-dependencies:
- dependency-name: tenable/terrascan
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 20:23:33 +00:00
dependabot[bot]
63a1f0520b
Bump eslint-plugin-jsonc from 2.10.0 to 2.11.1 in /dependencies ( #5002 )
...
Bumps [eslint-plugin-jsonc](https://github.com/ota-meshi/eslint-plugin-jsonc ) from 2.10.0 to 2.11.1.
- [Release notes](https://github.com/ota-meshi/eslint-plugin-jsonc/releases )
- [Changelog](https://github.com/ota-meshi/eslint-plugin-jsonc/blob/master/CHANGELOG.md )
- [Commits](https://github.com/ota-meshi/eslint-plugin-jsonc/compare/v2.10.0...v2.11.1 )
---
updated-dependencies:
- dependency-name: eslint-plugin-jsonc
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:30:41 +00:00
dependabot[bot]
1121c36aff
Bump react-redux from 9.0.3 to 9.0.4 in /dependencies ( #5000 )
...
Bumps [react-redux](https://github.com/reduxjs/react-redux ) from 9.0.3 to 9.0.4.
- [Release notes](https://github.com/reduxjs/react-redux/releases )
- [Changelog](https://github.com/reduxjs/react-redux/blob/master/CHANGELOG.md )
- [Commits](https://github.com/reduxjs/react-redux/compare/v9.0.3...v9.0.4 )
---
updated-dependencies:
- dependency-name: react-redux
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:30:05 +00:00
dependabot[bot]
8502410fe9
Bump renovate from 37.89.7 to 37.102.0 in /dependencies ( #4999 )
...
Bumps [renovate](https://github.com/renovatebot/renovate ) from 37.89.7 to 37.102.0.
- [Release notes](https://github.com/renovatebot/renovate/releases )
- [Changelog](https://github.com/renovatebot/renovate/blob/main/.releaserc )
- [Commits](https://github.com/renovatebot/renovate/compare/37.89.7...37.102.0 )
---
updated-dependencies:
- dependency-name: renovate
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:29:05 +00:00
dependabot[bot]
8a983cfc8a
Bump npm-groovy-lint from 13.0.2 to 14.0.0 in /dependencies ( #4997 )
...
Bumps [npm-groovy-lint](https://github.com/nvuillam/npm-groovy-lint ) from 13.0.2 to 14.0.0.
- [Release notes](https://github.com/nvuillam/npm-groovy-lint/releases )
- [Changelog](https://github.com/nvuillam/npm-groovy-lint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/nvuillam/npm-groovy-lint/compare/v13.0.2...v14.0.0 )
---
updated-dependencies:
- dependency-name: npm-groovy-lint
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:28:35 +00:00
dependabot[bot]
dc139bef43
Bump eslint from 8.55.0 to 8.56.0 in /dependencies ( #4996 )
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.55.0 to 8.56.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.55.0...v8.56.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:28:03 +00:00
dependabot[bot]
7803a7c4f9
Bump hashicorp/terraform from 1.6.5 to 1.6.6 ( #5003 )
...
Bumps hashicorp/terraform from 1.6.5 to 1.6.6.
---
updated-dependencies:
- dependency-name: hashicorp/terraform
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:27:27 +00:00
dependabot[bot]
96f9115f12
Bump terraform-linters/tflint from v0.48.0 to v0.49.0 ( #5004 )
...
Bumps [terraform-linters/tflint](https://github.com/terraform-linters/tflint ) from v0.48.0 to v0.49.0.
- [Release notes](https://github.com/terraform-linters/tflint/releases )
- [Changelog](https://github.com/terraform-linters/tflint/blob/master/CHANGELOG.md )
- [Commits](https://github.com/terraform-linters/tflint/compare/v0.48.0...v0.49.0 )
---
updated-dependencies:
- dependency-name: terraform-linters/tflint
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:26:59 +00:00
dependabot[bot]
06fd2a9f45
Bump yoheimuta/protolint from 0.46.3 to 0.47.0 ( #5006 )
...
Bumps yoheimuta/protolint from 0.46.3 to 0.47.0.
---
updated-dependencies:
- dependency-name: yoheimuta/protolint
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:25:32 +00:00
dependabot[bot]
8cda5efa9c
Bump alpine/terragrunt from 1.6.5 to 1.6.6 ( #5007 )
...
Bumps alpine/terragrunt from 1.6.5 to 1.6.6.
---
updated-dependencies:
- dependency-name: alpine/terragrunt
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:25:14 +00:00
dependabot[bot]
48bca128a1
Bump black from 23.11.0 to 23.12.0 in /dependencies/python ( #5008 )
...
Bumps [black](https://github.com/psf/black ) from 23.11.0 to 23.12.0.
- [Release notes](https://github.com/psf/black/releases )
- [Changelog](https://github.com/psf/black/blob/main/CHANGES.md )
- [Commits](https://github.com/psf/black/compare/23.11.0...23.12.0 )
---
updated-dependencies:
- dependency-name: black
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:24:44 +00:00
dependabot[bot]
7b4b4642b4
Bump cfn-lint from 0.83.4 to 0.83.6 in /dependencies/python ( #5009 )
...
Bumps [cfn-lint](https://github.com/aws-cloudformation/cfn-python-lint ) from 0.83.4 to 0.83.6.
- [Release notes](https://github.com/aws-cloudformation/cfn-python-lint/releases )
- [Changelog](https://github.com/aws-cloudformation/cfn-lint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/aws-cloudformation/cfn-python-lint/compare/v0.83.4...v0.83.6 )
---
updated-dependencies:
- dependency-name: cfn-lint
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:24:03 +00:00
dependabot[bot]
00cb9a77d8
Bump isort from 5.13.0 to 5.13.2 in /dependencies/python ( #5010 )
...
Bumps [isort](https://github.com/pycqa/isort ) from 5.13.0 to 5.13.2.
- [Release notes](https://github.com/pycqa/isort/releases )
- [Changelog](https://github.com/PyCQA/isort/blob/main/CHANGELOG.md )
- [Commits](https://github.com/pycqa/isort/compare/5.13.0...5.13.2 )
---
updated-dependencies:
- dependency-name: isort
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:21:03 +00:00
dependabot[bot]
8af4c4ef24
Bump rubocop-minitest from 0.33.0 to 0.34.1 in /dependencies ( #5011 )
...
Bumps [rubocop-minitest](https://github.com/rubocop/rubocop-minitest ) from 0.33.0 to 0.34.1.
- [Release notes](https://github.com/rubocop/rubocop-minitest/releases )
- [Changelog](https://github.com/rubocop/rubocop-minitest/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rubocop/rubocop-minitest/compare/v0.33.0...v0.34.1 )
---
updated-dependencies:
- dependency-name: rubocop-minitest
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:20:39 +00:00
dependabot[bot]
277e5a3b76
Bump rubocop-rails from 2.22.2 to 2.23.0 in /dependencies ( #5012 )
...
Bumps [rubocop-rails](https://github.com/rubocop/rubocop-rails ) from 2.22.2 to 2.23.0.
- [Release notes](https://github.com/rubocop/rubocop-rails/releases )
- [Changelog](https://github.com/rubocop/rubocop-rails/blob/master/CHANGELOG.md )
- [Commits](https://github.com/rubocop/rubocop-rails/compare/v2.22.2...v2.23.0 )
---
updated-dependencies:
- dependency-name: rubocop-rails
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:20:16 +00:00
dependabot[bot]
54d4ca17ed
Bump github/codeql-action from 2 to 3 ( #5013 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2 to 3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-18 18:19:50 +00:00
Marco Ferrari
ae7081660b
Validate local git repo when ignoring files ( #4965 )
...
Co-authored-by: Zack Koppert <zkoppert@github.com>
2023-12-18 19:31:06 +01:00
Marco Ferrari
30317804b1
Lint Go modules ( #4984 )
...
* Lint Go projects by directory
* Search for Go modules
* Fix test path
* Add test cases and fix command
* Change workdir
* Add a warning about false positives
* fatal instead of warn
* Move tests to the test directory
* Close group on fatal
* Don't fail in test mode
2023-12-16 08:30:33 +00:00
Marco Ferrari
22b8624f61
Simplify container image build ( #4962 )
2023-12-15 11:59:36 +01:00
Marco Ferrari
22564fb65c
Switch to tflint image because tflint-bundle is deprecated ( #4990 )
...
* Switch to tflint image because tflint-bundle is deprecated
* Fix version string
* Don't copy plugins
* Don't copy plugins
* Set terraform log vars globally
* Fix tflint error
2023-12-15 09:29:34 +00:00
Marco Ferrari
e6cf8d3845
Move tests to the test directory ( #4985 )
...
* Move tests to the test directory
* Fix linting errors
* Add states back
* Add xml back
2023-12-15 08:50:35 +00:00
Marco Ferrari
e73e1bfdc3
Populate the cache with the latest image ( #4988 )
...
* Pull the latest image and print info
* Pull latest from registry to populate the cache
* Don't pull image
2023-12-15 08:22:13 +00:00