From 32879be0fcfef44f35a7f2620108b26ef576865a Mon Sep 17 00:00:00 2001
From: "philips-software-forest-releaser[bot]"
<80338643+philips-software-forest-releaser[bot]@users.noreply.github.com>
Date: Mon, 6 Jan 2025 12:43:11 +0100
Subject: [PATCH 1/6] chore(deps, cpp): update sonarsource.sonarlint-vscode
(#674)
Update sonarsource.sonarlint-vscode
Co-authored-by: philips-software-forest-releaser[bot] <80338643+philips-software-forest-releaser[bot]@users.noreply.github.com>
---
.devcontainer/cpp/devcontainer-metadata-vscode.json | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/.devcontainer/cpp/devcontainer-metadata-vscode.json b/.devcontainer/cpp/devcontainer-metadata-vscode.json
index ce3b24e6..953e0d33 100644
--- a/.devcontainer/cpp/devcontainer-metadata-vscode.json
+++ b/.devcontainer/cpp/devcontainer-metadata-vscode.json
@@ -12,7 +12,7 @@
"ms-vscode.cmake-tools@1.19.52",
"ms-vscode.cpptools@1.22.11",
"ms-vsliveshare.vsliveshare@1.0.5941",
- "sonarsource.sonarlint-vscode@4.13.2"
+ "sonarsource.sonarlint-vscode@4.14.1"
],
"settings": {
"C_Cpp.intelliSenseEngine": "disabled",
From 1e65a950cd376c09c7e09ef830b7f402fbea570f Mon Sep 17 00:00:00 2001
From: Ron <45816308+rjaegers@users.noreply.github.com>
Date: Mon, 6 Jan 2025 14:54:02 +0100
Subject: [PATCH 2/6] fix: prevent GitHub at mentions in quoted release notes
(#684)
Replace instances of @... to [at]... to prevent GitHub from mentioning users that contributed fixes of automated extension updates
Closes #679
---
.../update-vscode-extensions/update-vscode-extensions.sh | 6 +++++-
1 file changed, 5 insertions(+), 1 deletion(-)
diff --git a/.github/actions/update-vscode-extensions/update-vscode-extensions.sh b/.github/actions/update-vscode-extensions/update-vscode-extensions.sh
index bba0bd37..6e235cf4 100755
--- a/.github/actions/update-vscode-extensions/update-vscode-extensions.sh
+++ b/.github/actions/update-vscode-extensions/update-vscode-extensions.sh
@@ -14,6 +14,10 @@ prevent_github_backlinks() {
sed 's|https://github.com|https://www.github.com|g'
}
+prevent_github_at_mentions() {
+ sed 's| @| [at]|g'
+}
+
get_github_releasenotes() {
local GITHUB_URL=${1:?}
local CURRENT_RELEASE=${2:?}
@@ -43,7 +47,7 @@ for EXTENSION in $(echo $JSON | jq -r '.customizations.vscode.extensions | flatt
then
GITHUB_URL=$(echo $LATEST_NON_PRERELEASE_VERSION_JSON | jq -r '.properties | map(select(.key == "Microsoft.VisualStudio.Services.Links.GitHub"))[] | .value')
- RELEASE_DETAILS=$(get_github_releasenotes $GITHUB_URL $CURRENT_VERSION | prevent_github_backlinks)
+ RELEASE_DETAILS=$(get_github_releasenotes $GITHUB_URL $CURRENT_VERSION | prevent_github_backlinks | prevent_github_at_mentions)
UPDATE_DETAILS_MARKDOWN=$(printf "Updates \`%s\` from %s to %s\n\nRelease notes
\n\n\n%s\n
\n \n\n%s" $NAME $CURRENT_VERSION $LATEST_NON_PRERELEASE_VERSION "$RELEASE_DETAILS" "$UPDATE_DETAILS_MARKDOWN")
UPDATED_EXTENSIONS_JSON=$(echo $UPDATED_EXTENSIONS_JSON | jq -c '. += ["'$NAME'"]')
fi
From 51f90875abd4a3be5be1e6548d2c05127f1aff76 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 6 Jan 2025 13:19:38 +0100
Subject: [PATCH 3/6] test(deps): bump playwright-bdd from 7.5.0 to 8.0.1
(#678)
Bumps [playwright-bdd](https://github.com/vitalets/playwright-bdd) from 7.5.0 to 8.0.1.
- [Changelog](https://github.com/vitalets/playwright-bdd/blob/main/CHANGELOG.md)
- [Commits](https://github.com/vitalets/playwright-bdd/compare/v7.5.0...v8.0.1)
---
updated-dependencies:
- dependency-name: playwright-bdd
dependency-type: direct:development
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Ron <45816308+rjaegers@users.noreply.github.com>
---
package-lock.json | 90 +++++++++++++++++++++++++++++++----------------
package.json | 2 +-
2 files changed, 61 insertions(+), 31 deletions(-)
diff --git a/package-lock.json b/package-lock.json
index f659131d..c3c47e70 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -13,7 +13,7 @@
"dotenv": "^16.4.7",
"nodemon": "^3.1.9",
"otpauth": "^9.3.6",
- "playwright-bdd": "^7.5.0"
+ "playwright-bdd": "^8.0.1"
}
},
"node_modules/@colors/colors": {
@@ -28,11 +28,10 @@
}
},
"node_modules/@cucumber/cucumber-expressions": {
- "version": "17.1.0",
- "resolved": "https://registry.npmjs.org/@cucumber/cucumber-expressions/-/cucumber-expressions-17.1.0.tgz",
- "integrity": "sha512-PCv/ppsPynniKPWJr5v566daCVe+pbxQpHGrIu/Ev57cCH9Rv+X0F6lio4Id3Z64TaG7btCRLUGewIgLwmrwOA==",
+ "version": "18.0.1",
+ "resolved": "https://registry.npmjs.org/@cucumber/cucumber-expressions/-/cucumber-expressions-18.0.1.tgz",
+ "integrity": "sha512-NSid6bI+7UlgMywl5octojY5NXnxR9uq+JisjOrO52VbFsQM6gTWuQFE8syI10KnIBEdPzuEUSVEeZ0VFzRnZA==",
"dev": true,
- "license": "MIT",
"dependencies": {
"regexp-match-indices": "1.0.2"
}
@@ -170,6 +169,7 @@
"resolved": "https://registry.npmjs.org/@cucumber/messages/-/messages-26.0.1.tgz",
"integrity": "sha512-DIxSg+ZGariumO+Lq6bn4kOUIUET83A4umrnWmidjGFl8XxkBieUZtsmNbLYgH/gnsmP07EfxxdTr0hOchV1Sg==",
"dev": true,
+ "peer": true,
"dependencies": {
"@types/uuid": "10.0.0",
"class-transformer": "0.5.1",
@@ -181,7 +181,8 @@
"version": "10.0.0",
"resolved": "https://registry.npmjs.org/@types/uuid/-/uuid-10.0.0.tgz",
"integrity": "sha512-7gqG38EyHgyP1S+7+xomFtL+ZNHcKv6DwNaCZmJmo1vgMugyF3TCnXVg4t1uk89mLNwnLtnY3TpOpCOyp1/xHQ==",
- "dev": true
+ "dev": true,
+ "peer": true
},
"node_modules/@cucumber/messages/node_modules/uuid": {
"version": "10.0.0",
@@ -192,16 +193,16 @@
"https://github.com/sponsors/broofa",
"https://github.com/sponsors/ctavan"
],
+ "peer": true,
"bin": {
"uuid": "dist/bin/uuid"
}
},
"node_modules/@cucumber/tag-expressions": {
- "version": "6.1.0",
- "resolved": "https://registry.npmjs.org/@cucumber/tag-expressions/-/tag-expressions-6.1.0.tgz",
- "integrity": "sha512-+3DwRumrCJG27AtzCIL37A/X+A/gSfxOPLg8pZaruh5SLumsTmpvilwroVWBT2fPzmno/tGXypeK5a7NHU4RzA==",
- "dev": true,
- "license": "MIT"
+ "version": "6.1.1",
+ "resolved": "https://registry.npmjs.org/@cucumber/tag-expressions/-/tag-expressions-6.1.1.tgz",
+ "integrity": "sha512-0oj5KTzf2DsR3DhL3hYeI9fP3nyKzs7TQdpl54uJelJ3W3Hlyyet2Hib+8LK7kNnqJsXENnJg9zahRYyrtvNEg==",
+ "dev": true
},
"node_modules/@noble/hashes": {
"version": "1.6.1",
@@ -758,18 +759,18 @@
}
},
"node_modules/playwright-bdd": {
- "version": "7.5.0",
- "resolved": "https://registry.npmjs.org/playwright-bdd/-/playwright-bdd-7.5.0.tgz",
- "integrity": "sha512-z6rBqVqlvkaGCR6hS5yuLmNg2dn/AaQlguc96U7Xl2OvHgeiP6wZMU8CEdnp2VYU35qnYSW1xngH0EHI9/ZF2A==",
+ "version": "8.0.1",
+ "resolved": "https://registry.npmjs.org/playwright-bdd/-/playwright-bdd-8.0.1.tgz",
+ "integrity": "sha512-45r8a3QFm6iteElEWIf7n5FpiT8quRehkJT2aMDwgY9BaYNodhA1lO/DGqAUXcjXSxsMX1bCKMegVbWXCx3KFQ==",
"dev": true,
"dependencies": {
- "@cucumber/cucumber-expressions": "17.1.0",
- "@cucumber/gherkin": "29.0.0",
+ "@cucumber/cucumber-expressions": "18.0.1",
+ "@cucumber/gherkin": "30.0.4",
"@cucumber/gherkin-streams": "5.0.1",
"@cucumber/gherkin-utils": "9.0.0",
"@cucumber/html-formatter": "21.7.0",
- "@cucumber/messages": "26.0.1",
- "@cucumber/tag-expressions": "6.1.0",
+ "@cucumber/messages": "27.0.2",
+ "@cucumber/tag-expressions": "6.1.1",
"cli-table3": "0.6.5",
"commander": "12.1.0",
"fast-glob": "^3.3.2",
@@ -786,28 +787,59 @@
"url": "https://github.com/sponsors/vitalets"
},
"peerDependencies": {
- "@playwright/test": ">=1.35"
+ "@playwright/test": ">=1.41"
}
},
"node_modules/playwright-bdd/node_modules/@cucumber/gherkin": {
- "version": "29.0.0",
- "resolved": "https://registry.npmjs.org/@cucumber/gherkin/-/gherkin-29.0.0.tgz",
- "integrity": "sha512-6t3V7fFsLlyhLSj4FS+fPz22pPVcFhFZ3QOP7otFYmkhZ4g1ierj5pf7fxJWvEsI555hGatg+Iql6cqK93RFUg==",
+ "version": "30.0.4",
+ "resolved": "https://registry.npmjs.org/@cucumber/gherkin/-/gherkin-30.0.4.tgz",
+ "integrity": "sha512-pb7lmAJqweZRADTTsgnC3F5zbTh3nwOB1M83Q9ZPbUKMb3P76PzK6cTcPTJBHWy3l7isbigIv+BkDjaca6C8/g==",
"dev": true,
"dependencies": {
- "@cucumber/messages": "<=25"
+ "@cucumber/messages": ">=19.1.4 <=26"
}
},
"node_modules/playwright-bdd/node_modules/@cucumber/gherkin/node_modules/@cucumber/messages": {
- "version": "25.0.1",
- "resolved": "https://registry.npmjs.org/@cucumber/messages/-/messages-25.0.1.tgz",
- "integrity": "sha512-RjjhmzcauX5eYfcKns5pgenefDJQcfXE3ZDrVWdUDGcoaoyFVDmj+ZzQZWRWqFrfMjP3lKHJss6LtvIP/z+h8g==",
+ "version": "26.0.1",
+ "resolved": "https://registry.npmjs.org/@cucumber/messages/-/messages-26.0.1.tgz",
+ "integrity": "sha512-DIxSg+ZGariumO+Lq6bn4kOUIUET83A4umrnWmidjGFl8XxkBieUZtsmNbLYgH/gnsmP07EfxxdTr0hOchV1Sg==",
"dev": true,
"dependencies": {
- "@types/uuid": "9.0.8",
+ "@types/uuid": "10.0.0",
"class-transformer": "0.5.1",
"reflect-metadata": "0.2.2",
- "uuid": "9.0.1"
+ "uuid": "10.0.0"
+ }
+ },
+ "node_modules/playwright-bdd/node_modules/@cucumber/messages": {
+ "version": "27.0.2",
+ "resolved": "https://registry.npmjs.org/@cucumber/messages/-/messages-27.0.2.tgz",
+ "integrity": "sha512-jo2B+vYXmpuLOKh6Gc8loHl2E8svCkLvEXLVgFwVHqKWZJWBTa9yTRCPmZIxrz4fnO7Pr3N3vKQCPu73/gjlVQ==",
+ "dev": true,
+ "dependencies": {
+ "@types/uuid": "10.0.0",
+ "class-transformer": "0.5.1",
+ "reflect-metadata": "0.2.2",
+ "uuid": "10.0.0"
+ }
+ },
+ "node_modules/playwright-bdd/node_modules/@types/uuid": {
+ "version": "10.0.0",
+ "resolved": "https://registry.npmjs.org/@types/uuid/-/uuid-10.0.0.tgz",
+ "integrity": "sha512-7gqG38EyHgyP1S+7+xomFtL+ZNHcKv6DwNaCZmJmo1vgMugyF3TCnXVg4t1uk89mLNwnLtnY3TpOpCOyp1/xHQ==",
+ "dev": true
+ },
+ "node_modules/playwright-bdd/node_modules/uuid": {
+ "version": "10.0.0",
+ "resolved": "https://registry.npmjs.org/uuid/-/uuid-10.0.0.tgz",
+ "integrity": "sha512-8XkAphELsDnEGrDxUOHB3RGvXz6TeuYSGEZBOjtTtPm2lwhGBjLgOzLHB63IUWfBpNucQjND6d3AOudO+H3RWQ==",
+ "dev": true,
+ "funding": [
+ "https://github.com/sponsors/broofa",
+ "https://github.com/sponsors/ctavan"
+ ],
+ "bin": {
+ "uuid": "dist/bin/uuid"
}
},
"node_modules/playwright-core": {
@@ -875,7 +907,6 @@
"resolved": "https://registry.npmjs.org/regexp-match-indices/-/regexp-match-indices-1.0.2.tgz",
"integrity": "sha512-DwZuAkt8NF5mKwGGER1EGh2PRqyvhRhhLviH+R8y8dIuaQROlUfXjt4s9ZTXstIsSkptf06BSvwcEmmfheJJWQ==",
"dev": true,
- "license": "Apache-2.0",
"dependencies": {
"regexp-tree": "^0.1.11"
}
@@ -885,7 +916,6 @@
"resolved": "https://registry.npmjs.org/regexp-tree/-/regexp-tree-0.1.27.tgz",
"integrity": "sha512-iETxpjK6YoRWJG5o6hXLwvjYAoW+FEZn9os0PD/b6AP6xQwsa/Y7lCVgIixBbUPMfhu+i2LtdeAqVTgGlQarfA==",
"dev": true,
- "license": "MIT",
"bin": {
"regexp-tree": "bin/regexp-tree"
}
diff --git a/package.json b/package.json
index a8815035..15e4ee4f 100644
--- a/package.json
+++ b/package.json
@@ -7,7 +7,7 @@
"dotenv": "^16.4.7",
"nodemon": "^3.1.9",
"otpauth": "^9.3.6",
- "playwright-bdd": "^7.5.0"
+ "playwright-bdd": "^8.0.1"
},
"scripts": {
"test": "cd $INIT_CWD && npx bddgen && npx playwright test",
From 0663172806eac9270e690a2dc0c0a0b2cc094bf0 Mon Sep 17 00:00:00 2001
From: "philips-software-forest-releaser[bot]"
<80338643+philips-software-forest-releaser[bot]@users.noreply.github.com>
Date: Mon, 6 Jan 2025 15:10:08 +0100
Subject: [PATCH 4/6] chore(deps, rust): update rust-lang.rust-analyzer,
tamasfe.even-better-toml, usernamehw.errorlens (#675)
Update rust-lang.rust-analyzer, tamasfe.even-better-toml, usernamehw.errorlens
Co-authored-by: philips-software-forest-releaser[bot] <80338643+philips-software-forest-releaser[bot]@users.noreply.github.com>
Co-authored-by: Ron <45816308+rjaegers@users.noreply.github.com>
---
.devcontainer/rust/devcontainer-metadata-vscode.json | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/.devcontainer/rust/devcontainer-metadata-vscode.json b/.devcontainer/rust/devcontainer-metadata-vscode.json
index 5ba64ade..bba9260b 100644
--- a/.devcontainer/rust/devcontainer-metadata-vscode.json
+++ b/.devcontainer/rust/devcontainer-metadata-vscode.json
@@ -7,9 +7,9 @@
"extensions": [
"mhutchie.git-graph@1.30.0",
"ms-vsliveshare.vsliveshare@1.0.5941",
- "rust-lang.rust-analyzer@0.3.2212",
- "tamasfe.even-better-toml@0.19.2",
- "usernamehw.errorlens@3.20.0"
+ "rust-lang.rust-analyzer@0.3.2237",
+ "tamasfe.even-better-toml@0.21.2",
+ "usernamehw.errorlens@3.22.0"
]
}
}
From 506e668597f105e9b4d70ad3ec6d293afcfa73cc Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 6 Jan 2025 15:17:34 +0100
Subject: [PATCH 5/6] test(deps): bump @types/node from 22.10.2 to 22.10.5 in
the npm group (#683)
Bumps the npm group with 1 update: [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node).
Updates `@types/node` from 22.10.2 to 22.10.5
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
dependency-group: npm
...
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
package-lock.json | 8 ++++----
package.json | 2 +-
2 files changed, 5 insertions(+), 5 deletions(-)
diff --git a/package-lock.json b/package-lock.json
index c3c47e70..2ef75276 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -9,7 +9,7 @@
"version": "1.0.0",
"devDependencies": {
"@playwright/test": "^1.49.1",
- "@types/node": "^22.10.2",
+ "@types/node": "^22.10.5",
"dotenv": "^16.4.7",
"nodemon": "^3.1.9",
"otpauth": "^9.3.6",
@@ -280,9 +280,9 @@
}
},
"node_modules/@types/node": {
- "version": "22.10.2",
- "resolved": "https://registry.npmjs.org/@types/node/-/node-22.10.2.tgz",
- "integrity": "sha512-Xxr6BBRCAOQixvonOye19wnzyDiUtTeqldOOmj3CkeblonbccA12PFwlufvRdrpjXxqnmUaeiU5EOA+7s5diUQ==",
+ "version": "22.10.5",
+ "resolved": "https://registry.npmjs.org/@types/node/-/node-22.10.5.tgz",
+ "integrity": "sha512-F8Q+SeGimwOo86fiovQh8qiXfFEh2/ocYv7tU5pJ3EXMSSxk1Joj5wefpFK2fHTf/N6HKGSxIDBT9f3gCxXPkQ==",
"dev": true,
"dependencies": {
"undici-types": "~6.20.0"
diff --git a/package.json b/package.json
index 15e4ee4f..fcb49574 100644
--- a/package.json
+++ b/package.json
@@ -3,7 +3,7 @@
"version": "1.0.0",
"devDependencies": {
"@playwright/test": "^1.49.1",
- "@types/node": "^22.10.2",
+ "@types/node": "^22.10.5",
"dotenv": "^16.4.7",
"nodemon": "^3.1.9",
"otpauth": "^9.3.6",
From c3fb7a4f82452c8f9861bb0e604b7bb86e3b2609 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 6 Jan 2025 15:20:52 +0100
Subject: [PATCH 6/6] ci(deps): bump the github-actions group across 1
directory with 5 updates (#681)
Bumps the github-actions group with 5 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4.4.3` | `4.5.0` |
| [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `3.7.1` | `3.8.0` |
| [github/codeql-action](https://github.com/github/codeql-action) | `3.27.9` | `3.28.0` |
| [actions/create-github-app-token](https://github.com/actions/create-github-app-token) | `1.11.0` | `1.11.1` |
| [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) | `7.0.5` | `7.0.6` |
Updates `actions/upload-artifact` from 4.4.3 to 4.5.0
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882...6f51ac03b9356f520e9adb1b1b7802705f340c2b)
Updates `docker/setup-buildx-action` from 3.7.1 to 3.8.0
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/c47758b77c9736f4b2ef4073d4d51994fabfe349...6524bf65af31da8d45b59e8c27de4bd072b392f5)
Updates `github/codeql-action` from 3.27.9 to 3.28.0
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/df409f7d9260372bd5f19e5b04e83cb3c43714ae...48ab28a6f5dbc2a99bf1e0131198dd8f1df78169)
Updates `actions/create-github-app-token` from 1.11.0 to 1.11.1
- [Release notes](https://github.com/actions/create-github-app-token/releases)
- [Commits](https://github.com/actions/create-github-app-token/compare/5d869da34e18e7287c1daad50e0b8ea0f506ce69...c1a285145b9d317df6ced56c09f525b5c2b6f755)
Updates `peter-evans/create-pull-request` from 7.0.5 to 7.0.6
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](https://github.com/peter-evans/create-pull-request/compare/5e914681df9dc83aa4e4905692ca88beb2f9e91f...67ccf781d68cd99b580ae25a5c18a1cc84ffff1f)
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: github-actions
- dependency-name: docker/setup-buildx-action
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: github-actions
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: github-actions
- dependency-name: actions/create-github-app-token
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: github-actions
- dependency-name: peter-evans/create-pull-request
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: github-actions
...
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Ron <45816308+rjaegers@users.noreply.github.com>
---
.github/workflows/acceptance-test.yml | 2 +-
.github/workflows/build-push.yml | 2 +-
.github/workflows/ci.yml | 4 ++--
.github/workflows/linting-formatting.yml | 4 ++--
.github/workflows/ossf-scorecard.yml | 2 +-
.github/workflows/prime-cache.yml | 2 +-
.github/workflows/release-please.yml | 2 +-
.github/workflows/update-dependencies.yml | 8 ++++----
.github/workflows/vulnerability-scan.yml | 2 +-
9 files changed, 14 insertions(+), 14 deletions(-)
diff --git a/.github/workflows/acceptance-test.yml b/.github/workflows/acceptance-test.yml
index f62e3d2d..25471018 100644
--- a/.github/workflows/acceptance-test.yml
+++ b/.github/workflows/acceptance-test.yml
@@ -68,7 +68,7 @@ jobs:
GITHUB_USER: ${{ secrets.TEST_GITHUB_USER }}
GITHUB_PASSWORD: ${{ secrets.TEST_GITHUB_PASSWORD }}
GITHUB_TOTP_SECRET: ${{ secrets.TEST_GITHUB_TOTP_SECRET }}
- - uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
+ - uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0
if: always()
with:
name: playwright-artifacts
diff --git a/.github/workflows/build-push.yml b/.github/workflows/build-push.yml
index b2b39f1d..5133f2d1 100644
--- a/.github/workflows/build-push.yml
+++ b/.github/workflows/build-push.yml
@@ -41,7 +41,7 @@ jobs:
persist-credentials: false
- uses: sigstore/cosign-installer@dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da # v3.7.0
if: github.event_name != 'merge_group'
- - uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3.7.1
+ - uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 # v3.8.0
- uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
if: github.event_name != 'merge_group'
with:
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 16e78985..82d8fdca 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -25,7 +25,7 @@ jobs:
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with:
persist-credentials: false
- - uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3.7.1
+ - uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 # v3.8.0
- uses: docker/build-push-action@48aba3b46d1b1fec4febb7c5d0c644b249a11355 # v6.10.0
with:
file: .devcontainer/${{ matrix.flavor }}/Dockerfile
@@ -43,7 +43,7 @@ jobs:
run: |
set -Eeuo pipefail
docker run --rm --mount type=bind,src=/var/run/docker.sock,dst=/var/run/docker.sock --mount type=bind,src="${{ github.workspace }}/test/${{ matrix.flavor }}",dst=/ws -w /ws ${{ github.repository }}-${{ matrix.flavor }}:test bats --formatter junit integration-tests.bats | tee test-report-${{ matrix.flavor }}.xml
- - uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
+ - uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0
if: always()
with:
name: test-results-${{ matrix.flavor }}
diff --git a/.github/workflows/linting-formatting.yml b/.github/workflows/linting-formatting.yml
index dd29e248..b55dc174 100644
--- a/.github/workflows/linting-formatting.yml
+++ b/.github/workflows/linting-formatting.yml
@@ -31,11 +31,11 @@ jobs:
APPLY_FIXES: all
VALIDATE_ALL_CODEBASE: true
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- - uses: github/codeql-action/upload-sarif@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9
+ - uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0
if: success() || failure()
with:
sarif_file: megalinter-reports/megalinter-report.sarif
- - uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
+ - uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0
if: success() || failure()
with:
name: Linter Report
diff --git a/.github/workflows/ossf-scorecard.yml b/.github/workflows/ossf-scorecard.yml
index a9e5c4c3..49b7f187 100644
--- a/.github/workflows/ossf-scorecard.yml
+++ b/.github/workflows/ossf-scorecard.yml
@@ -27,6 +27,6 @@ jobs:
results_format: sarif
repo_token: ${{ secrets.SCORECARD_TOKEN }}
publish_results: true
- - uses: github/codeql-action/upload-sarif@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9
+ - uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0
with:
sarif_file: results.sarif
diff --git a/.github/workflows/prime-cache.yml b/.github/workflows/prime-cache.yml
index 33cfa8f0..3d25db9b 100644
--- a/.github/workflows/prime-cache.yml
+++ b/.github/workflows/prime-cache.yml
@@ -19,7 +19,7 @@ jobs:
matrix:
flavor: ["cpp", "rust"]
steps:
- - uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3.7.1
+ - uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 # v3.8.0
- uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
if: matrix.flavor == 'cpp'
id: buildkit-cache
diff --git a/.github/workflows/release-please.yml b/.github/workflows/release-please.yml
index 82832775..0c3fc4a7 100644
--- a/.github/workflows/release-please.yml
+++ b/.github/workflows/release-please.yml
@@ -16,7 +16,7 @@ jobs:
create-release:
runs-on: ubuntu-latest
steps:
- - uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v1.11.0
+ - uses: actions/create-github-app-token@c1a285145b9d317df6ced56c09f525b5c2b6f755 # v1.11.1
id: token
with:
app-id: ${{ vars.FOREST_RELEASER_APP_ID }}
diff --git a/.github/workflows/update-dependencies.yml b/.github/workflows/update-dependencies.yml
index ea2a16d9..a63452dc 100644
--- a/.github/workflows/update-dependencies.yml
+++ b/.github/workflows/update-dependencies.yml
@@ -29,12 +29,12 @@ jobs:
id: update-packages
with:
input-file: .devcontainer/${{ matrix.flavor }}/apt-requirements-*.json
- - uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v1.11.0
+ - uses: actions/create-github-app-token@c1a285145b9d317df6ced56c09f525b5c2b6f755 # v1.11.1
id: token
with:
app-id: ${{ vars.FOREST_RELEASER_APP_ID }}
private-key: ${{ secrets.FOREST_RELEASER_APP_PRIVATE_KEY }}
- - uses: peter-evans/create-pull-request@5e914681df9dc83aa4e4905692ca88beb2f9e91f # v7.0.5
+ - uses: peter-evans/create-pull-request@67ccf781d68cd99b580ae25a5c18a1cc84ffff1f # v7.0.6
with:
commit-message: "Update ${{ join(fromJson(steps.update-packages.outputs.updated-dependencies), ', ') }}"
branch: feature/amp-devcontainer-${{ matrix.flavor }}/update-apt-packages
@@ -58,12 +58,12 @@ jobs:
id: update-extensions
with:
input-file: .devcontainer/${{ matrix.flavor }}/devcontainer-metadata-vscode.json
- - uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v1.11.0
+ - uses: actions/create-github-app-token@c1a285145b9d317df6ced56c09f525b5c2b6f755 # v1.11.1
id: token
with:
app-id: ${{ vars.FOREST_RELEASER_APP_ID }}
private-key: ${{ secrets.FOREST_RELEASER_APP_PRIVATE_KEY }}
- - uses: peter-evans/create-pull-request@5e914681df9dc83aa4e4905692ca88beb2f9e91f # v7.0.5
+ - uses: peter-evans/create-pull-request@67ccf781d68cd99b580ae25a5c18a1cc84ffff1f # v7.0.6
with:
commit-message: "Update ${{ join(fromJson(steps.update-extensions.outputs.updated-dependencies), ', ') }}"
branch: feature/amp-devcontainer-${{ matrix.flavor }}/update-vscode-extensions
diff --git a/.github/workflows/vulnerability-scan.yml b/.github/workflows/vulnerability-scan.yml
index 7c7dd61d..7f9a9faf 100644
--- a/.github/workflows/vulnerability-scan.yml
+++ b/.github/workflows/vulnerability-scan.yml
@@ -22,7 +22,7 @@ jobs:
with:
image: ghcr.io/${{ github.repository }}-${{ matrix.flavor }}:latest
dockerfile: .devcontainer/Dockerfile
- - uses: github/codeql-action/upload-sarif@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9
+ - uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0
if: steps.scan.outputs.sarif != ''
with:
sarif_file: ${{ steps.scan.outputs.sarif }}