chore(deps): update all non-major dependencies #335
Merged
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v4.1.6
->v4.1.7
v4.3.2
->v4.3.3
v3.25.5
->v3.25.10
v2.7.1
->v2.8.1
Release Notes
actions/checkout (actions/checkout)
v4.1.7
Compare Source
actions/dependency-review-action (actions/dependency-review-action)
v4.3.3
: Notes for v4.3.3Compare Source
What's Changed
New Contributors
Full Changelog: actions/dependency-review-action@v4.3.2...v4.3.3
github/codeql-action (github/codeql-action)
v3.25.10
Compare Source
v3.25.9
Compare Source
v3.25.8
Compare Source
v3.25.7
Compare Source
v3.25.6
Compare Source
step-security/harden-runner (step-security/harden-runner)
v2.8.1
Compare Source
What's Changed
The previous implementation incorrectly identified large GitHub-hosted runners as self-hosted runners. As a result, harden-runner was not executing on these large GitHub-hosted runners.
Full Changelog: step-security/harden-runner@v2...v2.8.1
v2.8.0
Compare Source
What's Changed
Release v2.8.0 by @h0x0er and @varunsh-coder in https://github.com/step-security/harden-runner/pull/416
This release includes:
These enhancements are based on insights from the XZ Utils incident, aimed at improving observability and detections during the build process.
Full Changelog: step-security/harden-runner@v2...v2.8.0
Configuration
📅 Schedule: Branch creation - "before 4am on the first day of the month" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Mend Renovate. View repository job log here.