Releases: NodeSecure/ci
Releases · NodeSecure/ci
v1.7.0
What's Changed
- chore: remove permanently package-lock.json by @fraxken in #41
- chore(StepSecurity): Apply security best practices by @step-security-bot in #42
- chore(deps): bump ossf/scorecard-action from 2.0.6 to 2.1.2 by @dependabot in #45
- chore(deps): bump actions/upload-artifact from 3.1.0 to 3.1.2 by @dependabot in #44
- chore(deps): bump actions/setup-node from 2.5.1 to 3.6.0 by @dependabot in #43
- chore(deps-dev): bump @types/node from 16.18.11 to 18.11.18 by @dependabot in #46
- chore(deps-dev): bump @types/mocha from 9.1.1 to 10.0.1 by @dependabot in #47
- chore(deps): bump pretty-ms from 7.0.1 to 8.0.0 by @dependabot in #48
- chore(deps-dev): bump mocha from 9.2.2 to 10.2.0 by @dependabot in #51
- chore(deps-dev): bump rimraf from 3.0.2 to 4.1.2 by @dependabot in #50
- chore(deps-dev): bump eslint-import-resolver-typescript from 2.7.1 to 3.5.3 by @dependabot in #49
- chore(deps): bump ts-pattern from 3.3.5 to 4.1.3 by @dependabot in #53
- chore(deps): bump github/codeql-action from 2.1.39 to 2.2.1 by @dependabot in #55
- chore(deps): bump step-security/harden-runner from 2.1.0 to 2.2.0 by @dependabot in #59
- chore(deps): bump github/codeql-action from 2.2.1 to 2.2.4 by @dependabot in #58
- Update dependabot frequency by @fabnguess in #61
- docs: add fabnguess as a contributor for maintenance by @allcontributors in #62
- chore(deps): bump github/codeql-action from 2.2.4 to 2.2.5 by @dependabot in #60
- fix(security): add missing workflow top level permissions by @fraxken in #66
- added CI banner in readme by @Ashish0926 in #67
- chore: bump js-x-ray and scanner by @antoine-coulon in #76
- chore(deps-dev): bump typescript from 4.9.5 to 5.0.4 by @dependabot in #78
- chore(deps-dev): bump rimraf from 4.4.1 to 5.0.0 by @dependabot in #77
- chore(deps): bump actions/checkout from 3.3.0 to 3.5.0 by @dependabot in #73
- chore(deps): bump github/codeql-action from 2.2.5 to 2.2.9 by @dependabot in #72
- chore(deps): bump ossf/scorecard-action from 2.1.2 to 2.1.3 by @dependabot in #71
- chore(deps): bump step-security/harden-runner from 2.2.0 to 2.2.1 by @dependabot in #70
- fix: commit activity link by @PierreDemailly in #69
- docs: add antoine-coulon as a contributor for doc, and maintenance by @allcontributors in #81
- docs: add SofianD as a contributor for maintenance by @allcontributors in #80
- docs: add PierreDemailly as a contributor for maintenance by @allcontributors in #79
- chore(deps-dev): bump @types/node from 18.16.16 to 20.2.5 by @dependabot in #88
- chore(deps): bump github/codeql-action from 2.2.9 to 2.3.2 by @dependabot in #84
- chore(deps): bump step-security/harden-runner from 2.2.1 to 2.3.1 by @dependabot in #83
- chore(deps): bump actions/checkout from 3.5.0 to 3.5.2 by @dependabot in #82
- chore: update license badge by @fabnguess in #93
- chore(deps): bump ts-pattern from 4.3.0 to 5.0.1 by @dependabot in #91
- chore(deps): bump step-security/harden-runner from 2.3.1 to 2.4.0 by @dependabot in #90
- chore(deps): bump github/codeql-action from 2.3.2 to 2.3.6 by @dependabot in #89
- feat: Add capability to display all types of warnings handled and the… by @halcin in #92
- docs: add halcin as a contributor for code by @allcontributors in #94
New Contributors
- @step-security-bot made their first contribution in #42
- @Ashish0926 made their first contribution in #67
- @halcin made their first contribution in #92
Full Changelog: v1.6.0...v1.7.0
v1.6.0
What's Changed
- chore: add license by @antoine-coulon in #22
- docs: add fraxken as a contributor for maintenance, review by @allcontributors in #23
- [Snyk] Upgrade sade from 1.7.4 to 1.8.1 by @snyk-bot in #24
- [Snyk] Upgrade kleur from 4.1.4 to 4.1.5 by @snyk-bot in #25
- [Snyk] Upgrade @nodesecure/js-x-ray from 5.0.1 to 5.1.0 by @snyk-bot in #27
- Update type definitions with latest versions of @nodesecure/scanner @nodesecure/js-x-ray by @antoine-coulon in #28
- chore: upgrade to @nodesecure/vulnera by @antoine-coulon in #29
- [Snyk] Upgrade table from 6.8.0 to 6.8.1 by @fraxken in #31
Full Changelog: v1.5.0...v1.6.0
v1.5.0
What's Changed
- refactor: use js-x-ray warnings values and type definitions by @antoine-coulon in #20
- feat: change fallback to sonatype by @PierreDemailly in #17
- fix: make the reporting console ui consistent by @antoine-coulon in #14
- chore: add linter in CI by @tony-go in #11
- chore: update ns deps by @tony-go in #10
- chore: add contribution guideline by @antoine-coulon in #9
- feat: ignore warnings via .nsci-ignore file by @tony-go in #7
- feat: plug NodeSecure runtime configuration by @antoine-coulon in #3
Full Changelog: https://github.com/NodeSecure/ci/commits/v1.5.0