Commit graph

4193 commits

Author SHA1 Message Date
dependabot[bot]
dc220a9460
deps(bundler): bump rubocop-minitest in /dependencies (#5148)
Bumps [rubocop-minitest](https://github.com/rubocop/rubocop-minitest) from 0.34.3 to 0.34.4.
- [Release notes](https://github.com/rubocop/rubocop-minitest/releases)
- [Changelog](https://github.com/rubocop/rubocop-minitest/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rubocop/rubocop-minitest/compare/v0.34.3...v0.34.4)

---
updated-dependencies:
- dependency-name: rubocop-minitest
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-15 14:37:12 +00:00
dependabot[bot]
996f6bed91
deps(java): bump com.pinterest.ktlint:ktlint-cli in /dependencies/ktlint (#5134)
Bumps [com.pinterest.ktlint:ktlint-cli](https://github.com/pinterest/ktlint) from 1.1.0 to 1.1.1.
- [Release notes](https://github.com/pinterest/ktlint/releases)
- [Changelog](https://github.com/pinterest/ktlint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/pinterest/ktlint/compare/1.1.0...1.1.1)

---
updated-dependencies:
- dependency-name: com.pinterest.ktlint:ktlint-cli
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-15 14:36:57 +00:00
dependabot[bot]
3765c2d619
deps(npm): bump react-redux from 9.0.4 to 9.1.0 in /dependencies (#5141)
Bumps [react-redux](https://github.com/reduxjs/react-redux) from 9.0.4 to 9.1.0.
- [Release notes](https://github.com/reduxjs/react-redux/releases)
- [Changelog](https://github.com/reduxjs/react-redux/blob/master/CHANGELOG.md)
- [Commits](https://github.com/reduxjs/react-redux/compare/v9.0.4...v9.1.0)

---
updated-dependencies:
- dependency-name: react-redux
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-15 14:36:56 +00:00
dependabot[bot]
b0ab8aed6c
deps(npm): bump eslint-plugin-prettier in /dependencies (#5136)
Bumps [eslint-plugin-prettier](https://github.com/prettier/eslint-plugin-prettier) from 5.1.2 to 5.1.3.
- [Release notes](https://github.com/prettier/eslint-plugin-prettier/releases)
- [Changelog](https://github.com/prettier/eslint-plugin-prettier/blob/master/CHANGELOG.md)
- [Commits](https://github.com/prettier/eslint-plugin-prettier/compare/v5.1.2...v5.1.3)

---
updated-dependencies:
- dependency-name: eslint-plugin-prettier
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-15 14:36:52 +00:00
dependabot[bot]
e0011b38a0
deps(docker): bump yoheimuta/protolint from 0.47.4 to 0.47.5 (#5138)
Bumps yoheimuta/protolint from 0.47.4 to 0.47.5.

---
updated-dependencies:
- dependency-name: yoheimuta/protolint
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-15 14:36:36 +00:00
dependabot[bot]
507f148ede
deps(python): bump snakefmt from 0.8.5 to 0.9.0 in /dependencies/python (#5142)
Bumps [snakefmt](https://github.com/snakemake/snakefmt) from 0.8.5 to 0.9.0.
- [Release notes](https://github.com/snakemake/snakefmt/releases)
- [Changelog](https://github.com/snakemake/snakefmt/blob/master/CHANGELOG.md)
- [Commits](https://github.com/snakemake/snakefmt/compare/v0.8.5...v0.9.0)

---
updated-dependencies:
- dependency-name: snakefmt
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-15 14:36:27 +00:00
dependabot[bot]
a0f5a76ebc
deps(npm): bump prettier from 3.1.1 to 3.2.2 in /dependencies (#5147)
Bumps [prettier](https://github.com/prettier/prettier) from 3.1.1 to 3.2.2.
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prettier/prettier/compare/3.1.1...3.2.2)

---
updated-dependencies:
- dependency-name: prettier
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-15 14:36:19 +00:00
dependabot[bot]
4f008fc34e
deps(python): bump cfn-lint in /dependencies/python (#5146)
Bumps [cfn-lint](https://github.com/aws-cloudformation/cfn-python-lint) from 0.83.7 to 0.83.8.
- [Release notes](https://github.com/aws-cloudformation/cfn-python-lint/releases)
- [Changelog](https://github.com/aws-cloudformation/cfn-lint/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws-cloudformation/cfn-python-lint/compare/v0.83.7...v0.83.8)

---
updated-dependencies:
- dependency-name: cfn-lint
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-15 14:36:07 +00:00
dependabot[bot]
16b7c50a0e
deps(docker): bump golang from 1.21.5-alpine to 1.21.6-alpine (#5137)
Bumps golang from 1.21.5-alpine to 1.21.6-alpine.

---
updated-dependencies:
- dependency-name: golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-15 14:35:31 +00:00
dependabot[bot]
83916eae6d
deps(python): bump snakemake from 8.1.0 to 8.1.3 in /dependencies/python (#5145)
Bumps [snakemake](https://github.com/snakemake/snakemake) from 8.1.0 to 8.1.3.
- [Release notes](https://github.com/snakemake/snakemake/releases)
- [Changelog](https://github.com/snakemake/snakemake/blob/main/CHANGELOG.md)
- [Commits](https://github.com/snakemake/snakemake/compare/v8.1.0...v8.1.3)

---
updated-dependencies:
- dependency-name: snakemake
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-15 13:46:26 +00:00
Marco Ferrari
877cdf4ea1
build: standard image from base_image stage (#5129)
Build the standard image starting from the base_image stage because we
don't need anything from the slim image.
2024-01-11 23:16:41 +01:00
Marco Ferrari
d5da0ceac9
build: run versions command in the slim stage (#5127)
Move the invocation of the command to build the linter versions file in
the slim stage because we run it again in the standard stage anyway, so
there's no need for the standard stage to wait for this command to run.
2024-01-11 20:30:18 +00:00
Marco Ferrari
4a28fc5e73
feat: validate variables and simplify lowercase (#5128)
- Validate variables representing boolean values.
- Group global variables in the same sections.
- Declare variables as lowercase with the 'declare -l' shell builtin for
  more clarity.
2024-01-11 20:30:00 +00:00
Marco Ferrari
5a2056d77a
fix: handle log messages in CheckFileType (#5117)
- Honor SUPPRESS_FILE_TYPE_WARN when printing messages in the
  CheckFileType function.
- Reduce duplication when handling log messages in the CheckFileType
  function.
- Don't add files to the array of files to lint with JSCPD because we
  lint the whole codebase with JSCPD anyway.
2024-01-11 20:44:16 +01:00
dependabot[bot]
fa2d870b80
deps(npm): bump renovate from 37.115.0 to 37.128.3 in /dependencies (#5125)
Bumps [renovate](https://github.com/renovatebot/renovate) from 37.115.0 to 37.128.3.
- [Release notes](https://github.com/renovatebot/renovate/releases)
- [Changelog](https://github.com/renovatebot/renovate/blob/main/.releaserc)
- [Commits](https://github.com/renovatebot/renovate/compare/37.115.0...37.128.3)

---
updated-dependencies:
- dependency-name: renovate
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-11 10:27:53 +00:00
Marco Ferrari
3a5617235c
feat!: deprecate error_on_missing_exec_bit (#5120)
Deprecate the ERROR_ON_MISSING_EXEC_BIT variable to remove a confusing
corner case, and to align the BASH_EXEC check to how super-linter
handles other linters.
2024-01-10 22:54:13 +00:00
Marco Ferrari
3a784fcfd6
fix: simplify file status checks (#5119)
- Simplify file status checks to assume that a file should be linted
  correctly unless we are running in test mode.
- Avoid the corner case of files having the 'bad' string as part of
  their file name to be wrongly assumed to fail linting.
- Move FILE_STATUS initialization where it's needed, after running the
  linters.
2024-01-10 12:35:05 +01:00
Marco Ferrari
df911171c4
build: python venvs and npm in dedicated stages (#5078)
Move the following tasks to dedicated stages so we can run these steps
in parallel with other stages:

- Build Python virtual environments
- Install npm packages
- Build clang-format
- Download and install TFlint plugins

Add missing target stage when building the container image
2024-01-10 11:09:53 +01:00
Marco Ferrari
3fb1c3467c
feat: delete temporary files and directories (#5046)
- Delete logback.log
- Delete .lintr if super-linter created it
2024-01-10 09:06:04 +00:00
Marco Ferrari
2d79d17e6e
ci: fix concurrency group name (#5121)
- Add missing '$' to github.event_name
- Default to github.head_ref (pull_request event) and fall back to github.ref
  (merge_group and push events)
2024-01-10 10:05:41 +01:00
Marco Ferrari
6f70adee89
fix: enable linting changed files with textlint (#5100)
textlint was expensive to run because we added every file in the list of
files to lint to FILE_ARRAY_NATURAL_LANGUAGE. In #5041, we mitigated
this issue but lost the ability to run textlint on changed files only.
Given that textlint ignore files for which it doesn't have a plugin
installed, and that we don't currently install additional plugins
besides the default ones to lint markdown files and text files, we let
textlint run on these files only, so we can have the feature to lint
only changed files with this linter as well, back.
2024-01-10 09:49:04 +01:00
dependabot[bot]
4e34d3daf7
deps(dev-npm): bump @commitlint/config-conventional in /dev-dependencies (#5110)
Bumps [@commitlint/config-conventional](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/config-conventional) from 18.4.3 to 18.4.4.
- [Release notes](https://github.com/conventional-changelog/commitlint/releases)
- [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/config-conventional/CHANGELOG.md)
- [Commits](https://github.com/conventional-changelog/commitlint/commits/v18.4.4/@commitlint/config-conventional)

---
updated-dependencies:
- dependency-name: "@commitlint/config-conventional"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-09 12:16:23 +00:00
dependabot[bot]
3299cfcddf
deps(dev-npm): bump @commitlint/cli in /dev-dependencies (#5111)
Bumps [@commitlint/cli](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/cli) from 18.4.3 to 18.4.4.
- [Release notes](https://github.com/conventional-changelog/commitlint/releases)
- [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/cli/CHANGELOG.md)
- [Commits](https://github.com/conventional-changelog/commitlint/commits/v18.4.4/@commitlint/cli)

---
updated-dependencies:
- dependency-name: "@commitlint/cli"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-09 10:25:51 +00:00
dependabot[bot]
0a21656417
deps(dev-npm): bump release-please in /dev-dependencies (#5112)
Bumps [release-please](https://github.com/googleapis/release-please) from 16.6.0 to 16.7.0.
- [Release notes](https://github.com/googleapis/release-please/releases)
- [Changelog](https://github.com/googleapis/release-please/blob/main/CHANGELOG.md)
- [Commits](https://github.com/googleapis/release-please/compare/v16.6.0...v16.7.0)

---
updated-dependencies:
- dependency-name: release-please
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-09 10:24:47 +00:00
dependabot[bot]
2068ecb82d
deps(python): bump checkov from 3.1.50 to 3.1.55 in /dependencies/python (#5113)
Bumps [checkov](https://github.com/bridgecrewio/checkov) from 3.1.50 to 3.1.55.
- [Release notes](https://github.com/bridgecrewio/checkov/releases)
- [Changelog](https://github.com/bridgecrewio/checkov/blob/main/CHANGELOG.md)
- [Commits](https://github.com/bridgecrewio/checkov/compare/3.1.50...3.1.55)

---
updated-dependencies:
- dependency-name: checkov
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-09 10:24:28 +00:00
dependabot[bot]
2912e51d5a
deps(python): bump flake8 from 6.0.0 to 7.0.0 in /dependencies/python (#5114)
Bumps [flake8](https://github.com/pycqa/flake8) from 6.0.0 to 7.0.0.
- [Commits](https://github.com/pycqa/flake8/compare/6.0.0...7.0.0)

---
updated-dependencies:
- dependency-name: flake8
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-09 10:24:10 +00:00
dependabot[bot]
e42ee7868d
deps(python): bump snakemake from 8.0.1 to 8.1.0 in /dependencies/python (#5115)
Bumps [snakemake](https://github.com/snakemake/snakemake) from 8.0.1 to 8.1.0.
- [Release notes](https://github.com/snakemake/snakemake/releases)
- [Changelog](https://github.com/snakemake/snakemake/blob/main/CHANGELOG.md)
- [Commits](https://github.com/snakemake/snakemake/compare/v8.0.1...v8.1.0)

---
updated-dependencies:
- dependency-name: snakemake
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-09 10:23:52 +00:00
dependabot[bot]
f15342c0cb
deps(npm): bump eslint-plugin-jest in /dependencies (#5103)
Bumps [eslint-plugin-jest](https://github.com/jest-community/eslint-plugin-jest) from 27.6.0 to 27.6.1.
- [Release notes](https://github.com/jest-community/eslint-plugin-jest/releases)
- [Changelog](https://github.com/jest-community/eslint-plugin-jest/blob/main/CHANGELOG.md)
- [Commits](https://github.com/jest-community/eslint-plugin-jest/compare/v27.6.0...v27.6.1)

---
updated-dependencies:
- dependency-name: eslint-plugin-jest
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-09 10:23:29 +00:00
dependabot[bot]
f3431d7d7c
deps(docker): bump terraform-linters/tflint from v0.50.0 to v0.50.1 (#5109)
Bumps [terraform-linters/tflint](https://github.com/terraform-linters/tflint) from v0.50.0 to v0.50.1.
- [Release notes](https://github.com/terraform-linters/tflint/releases)
- [Changelog](https://github.com/terraform-linters/tflint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/terraform-linters/tflint/compare/v0.50.0...v0.50.1)

---
updated-dependencies:
- dependency-name: terraform-linters/tflint
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-09 10:22:43 +00:00
dependabot[bot]
82cbf30a63
deps(bundler): bump rubocop-performance in /dependencies (#5108)
Bumps [rubocop-performance](https://github.com/rubocop/rubocop-performance) from 1.20.1 to 1.20.2.
- [Release notes](https://github.com/rubocop/rubocop-performance/releases)
- [Changelog](https://github.com/rubocop/rubocop-performance/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rubocop/rubocop-performance/compare/v1.20.1...v1.20.2)

---
updated-dependencies:
- dependency-name: rubocop-performance
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-09 10:22:31 +00:00
dependabot[bot]
57b175a3fd
deps(bundler): bump rubocop-rspec from 2.25.0 to 2.26.1 in /dependencies (#5106)
Bumps [rubocop-rspec](https://github.com/rubocop/rubocop-rspec) from 2.25.0 to 2.26.1.
- [Release notes](https://github.com/rubocop/rubocop-rspec/releases)
- [Changelog](https://github.com/rubocop/rubocop-rspec/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rubocop/rubocop-rspec/compare/v2.25.0...v2.26.1)

---
updated-dependencies:
- dependency-name: rubocop-rspec
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-09 10:21:43 +00:00
dependabot[bot]
09fa2cfb3e
deps(java): bump com.google.googlejavaformat:google-java-format (#5105)
Bumps [com.google.googlejavaformat:google-java-format](https://github.com/google/google-java-format) from 1.19.1 to 1.19.2.
- [Release notes](https://github.com/google/google-java-format/releases)
- [Commits](https://github.com/google/google-java-format/compare/v1.19.1...v1.19.2)

---
updated-dependencies:
- dependency-name: com.google.googlejavaformat:google-java-format
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-09 10:21:17 +00:00
Marco Ferrari
e62b382bf0
feat: don't inspect files if not needed (#5094)
Don't run potentially expensive I/O operations to check file types if
we're not going to analyze them anyway.
2024-01-06 18:39:39 +01:00
dependabot[bot]
cbbf484361
deps(bundler): bump rubocop-performance in /dependencies (#5081)
Bumps [rubocop-performance](https://github.com/rubocop/rubocop-performance) from 1.19.1 to 1.20.1.
- [Release notes](https://github.com/rubocop/rubocop-performance/releases)
- [Changelog](https://github.com/rubocop/rubocop-performance/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rubocop/rubocop-performance/compare/v1.19.1...v1.20.1)

---
updated-dependencies:
- dependency-name: rubocop-performance
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-05 23:07:53 +00:00
Marco Ferrari
f6bc05453b
ci: add event name to concurrency group (#5097)
In order to avoid unexpected workflow cancellations due to concurrency
configuration, add the event name to the concurrency group.`
2024-01-05 23:39:54 +01:00
Marco Ferrari
cf2038d903
fix: fix GITHUB_BEFORE_SHA initalization for push (#5098) 2024-01-05 23:07:39 +01:00
Marco Ferrari
1d5ed2c386
fix: fix GITHUB_BEFORE_SHA diff on push events (#5096)
- Fix GITHUB_BEFORE_SHA initialization on push events by setting the
  correct key.
- Add an additional check against setting GITHUB_BEFORE_SHA to null.
- Run the CI workflow on push events to trigger required status checks
  when using the merge queue.
2024-01-04 22:54:47 +01:00
dependabot[bot]
4fca3cf28f
deps(dev-npm): bump release-please in /dev-dependencies (#5088)
Bumps [release-please](https://github.com/googleapis/release-please) from 16.5.1 to 16.6.0.
- [Release notes](https://github.com/googleapis/release-please/releases)
- [Changelog](https://github.com/googleapis/release-please/blob/main/CHANGELOG.md)
- [Commits](https://github.com/googleapis/release-please/compare/v16.5.1...v16.6.0)

---
updated-dependencies:
- dependency-name: release-please
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-04 08:55:07 +00:00
dependabot[bot]
c292b1aaa1
deps(bundler): bump rubocop-minitest in /dependencies (#5082)
Bumps [rubocop-minitest](https://github.com/rubocop/rubocop-minitest) from 0.34.2 to 0.34.3.
- [Release notes](https://github.com/rubocop/rubocop-minitest/releases)
- [Changelog](https://github.com/rubocop/rubocop-minitest/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rubocop/rubocop-minitest/compare/v0.34.2...v0.34.3)

---
updated-dependencies:
- dependency-name: rubocop-minitest
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-04 08:54:43 +00:00
dependabot[bot]
67037d760f
deps(python): bump checkov from 3.1.43 to 3.1.50 in /dependencies/python (#5083)
Bumps [checkov](https://github.com/bridgecrewio/checkov) from 3.1.43 to 3.1.50.
- [Release notes](https://github.com/bridgecrewio/checkov/releases)
- [Changelog](https://github.com/bridgecrewio/checkov/blob/main/CHANGELOG.md)
- [Commits](https://github.com/bridgecrewio/checkov/compare/3.1.43...3.1.50)

---
updated-dependencies:
- dependency-name: checkov
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-04 08:54:38 +00:00
dependabot[bot]
c831c956b9
deps(java): bump com.puppycrawl.tools:checkstyle (#5087)
Bumps [com.puppycrawl.tools:checkstyle](https://github.com/checkstyle/checkstyle) from 10.12.6 to 10.12.7.
- [Release notes](https://github.com/checkstyle/checkstyle/releases)
- [Commits](https://github.com/checkstyle/checkstyle/compare/checkstyle-10.12.6...checkstyle-10.12.7)

---
updated-dependencies:
- dependency-name: com.puppycrawl.tools:checkstyle
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-04 08:54:32 +00:00
dependabot[bot]
542f57e2cf
deps(npm): bump renovate from 37.107.0 to 37.115.0 in /dependencies (#5085)
Bumps [renovate](https://github.com/renovatebot/renovate) from 37.107.0 to 37.115.0.
- [Release notes](https://github.com/renovatebot/renovate/releases)
- [Changelog](https://github.com/renovatebot/renovate/blob/main/.releaserc)
- [Commits](https://github.com/renovatebot/renovate/compare/37.107.0...37.115.0)

---
updated-dependencies:
- dependency-name: renovate
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-01-04 08:52:49 +00:00
Marco Ferrari
3847309eca
build: remove unneeded Node dependencies (#5093)
- Remove axios, immer, ini, lodash, node-fetch that were installed to
  run Trivy reports. We can remove them because we use the Trivy action.
- Remove the Trivy workflow that was disabled anyway.
2024-01-03 16:54:06 +01:00
Marco Ferrari
65aae17a26
build!: uninstall eslint-config-airbnb-typescript (#5077)
eslint-config-airbnb-typescript is unmaintained. Having it installed is
blocking @typescript-eslint/eslint-plugin updates
2024-01-03 10:45:39 +01:00
Chris Johnson
596dbdf22b
docs: fix README.md for slim action (#5080) 2024-01-02 19:32:45 +01:00
Marco Ferrari
37839f63f5
docs: checkstyle upgrade notes (#5091) 2024-01-02 19:24:05 +01:00
Marco Ferrari
9257ba8af3
build: use embedded checkstyle configuration files (#5089)
checkstyle embeds sun_checks.xml and google_checks.xml so we can use
them instead of shipping our own.
2024-01-02 18:47:45 +01:00
Marco Ferrari
901a901655
fix: add missing checkov configuration file (#5090)
Add a default (empty) configuration file for Checkov and a smoke test to
ensure that we catch the case where a default configuration file is not
present, and it should be.
2024-01-02 18:03:30 +01:00
Marco Ferrari
19e39e211e
build: install clang-format from OS package repo (#5071)
Build and install clang-format instead of pulling it from a (potentially)
unmaintained repository
2024-01-01 11:39:59 +01:00
Marco Ferrari
ededa44d36
fix: fail when validating as expected (#5076)
Fail when USE_FIND_ALGORITHM is true and VALIDATE_ALL_CODEBASE is false
as expected.
2023-12-30 23:02:25 +01:00