Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

build(deps): bump the ci group across 1 directory with 7 updates #1654

Closed
wants to merge 1 commit into from

Commits on Oct 30, 2024

  1. build(deps): bump the ci group across 1 directory with 7 updates

    Bumps the ci group with 7 updates in the / directory:
    
    | Package | From | To |
    | --- | --- | --- |
    | [actions/checkout](https://github.com/actions/checkout) | `4.1.7` | `4.2.2` |
    | [actions/setup-go](https://github.com/actions/setup-go) | `5.0.2` | `5.1.0` |
    | [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `3.6.1` | `3.7.1` |
    | [docker/build-push-action](https://github.com/docker/build-push-action) | `6.7.0` | `6.9.0` |
    | [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) | `3.6.0` | `3.7.0` |
    | [anchore/sbom-action](https://github.com/anchore/sbom-action) | `0.17.2` | `0.17.6` |
    | [github/codeql-action](https://github.com/github/codeql-action) | `3.26.4` | `3.27.0` |
    
    
    
    Updates `actions/checkout` from 4.1.7 to 4.2.2
    - [Release notes](https://github.com/actions/checkout/releases)
    - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
    - [Commits](actions/checkout@692973e...11bd719)
    
    Updates `actions/setup-go` from 5.0.2 to 5.1.0
    - [Release notes](https://github.com/actions/setup-go/releases)
    - [Commits](actions/setup-go@0a12ed9...41dfa10)
    
    Updates `docker/setup-buildx-action` from 3.6.1 to 3.7.1
    - [Release notes](https://github.com/docker/setup-buildx-action/releases)
    - [Commits](docker/setup-buildx-action@988b5a0...c47758b)
    
    Updates `docker/build-push-action` from 6.7.0 to 6.9.0
    - [Release notes](https://github.com/docker/build-push-action/releases)
    - [Commits](docker/build-push-action@5cd11c3...4f58ea7)
    
    Updates `sigstore/cosign-installer` from 3.6.0 to 3.7.0
    - [Release notes](https://github.com/sigstore/cosign-installer/releases)
    - [Commits](sigstore/cosign-installer@4959ce0...dc72c7d)
    
    Updates `anchore/sbom-action` from 0.17.2 to 0.17.6
    - [Release notes](https://github.com/anchore/sbom-action/releases)
    - [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md)
    - [Commits](anchore/sbom-action@61119d4...251a468)
    
    Updates `github/codeql-action` from 3.26.4 to 3.27.0
    - [Release notes](https://github.com/github/codeql-action/releases)
    - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
    - [Commits](github/codeql-action@f0f3afe...6624720)
    
    ---
    updated-dependencies:
    - dependency-name: actions/checkout
      dependency-type: direct:production
      update-type: version-update:semver-minor
      dependency-group: ci
    - dependency-name: actions/setup-go
      dependency-type: direct:production
      update-type: version-update:semver-minor
      dependency-group: ci
    - dependency-name: docker/setup-buildx-action
      dependency-type: direct:production
      update-type: version-update:semver-minor
      dependency-group: ci
    - dependency-name: docker/build-push-action
      dependency-type: direct:production
      update-type: version-update:semver-minor
      dependency-group: ci
    - dependency-name: sigstore/cosign-installer
      dependency-type: direct:production
      update-type: version-update:semver-minor
      dependency-group: ci
    - dependency-name: anchore/sbom-action
      dependency-type: direct:production
      update-type: version-update:semver-patch
      dependency-group: ci
    - dependency-name: github/codeql-action
      dependency-type: direct:production
      update-type: version-update:semver-minor
      dependency-group: ci
    ...
    
    Signed-off-by: dependabot[bot] <[email protected]>
    dependabot[bot] authored Oct 30, 2024
    Configuration menu
    Copy the full SHA
    8b39834 View commit details
    Browse the repository at this point in the history