{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":475327114,"defaultBranch":"develop","name":"blm2","ownerLogin":"bratkartoffel","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2022-03-29T07:23:11.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/1867163?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1718682365.0","currentOid":""},"activityList":{"items":[{"before":"c81e1bb472cd2fb3a296cb665f2cd2a650137a08","after":null,"ref":"refs/heads/dependabot/github_actions/actions/checkout-4.1.7","pushedAt":"2024-06-18T03:46:11.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"}},{"before":"0b8de628c264f2675b07b2259fb2cd5ff28aecdb","after":"a0d6260b32bba887631be50d6789594a6324d076","ref":"refs/heads/develop","pushedAt":"2024-06-18T03:46:11.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"},"commit":{"message":"Bump actions/checkout from 4.1.6 to 4.1.7 (#143)\n\nBumps [actions/checkout](https://github.com/actions/checkout) from 4.1.6\r\nto 4.1.7.\r\n
\r\nRelease notes\r\n

Sourced from actions/checkout's\r\nreleases.

\r\n
\r\n

v4.1.7

\r\n

What's Changed

\r\n\r\n

New Contributors

\r\n\r\n

Full Changelog: https://github.com/actions/checkout/compare/v4.1.6...v4.1.7

\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from actions/checkout's\r\nchangelog.

\r\n
\r\n

Changelog

\r\n

v4.1.7

\r\n\r\n

v4.1.6

\r\n\r\n

v4.1.5

\r\n\r\n

v4.1.4

\r\n\r\n

v4.1.3

\r\n\r\n

v4.1.2

\r\n\r\n

v4.1.1

\r\n\r\n

v4.1.0

\r\n\r\n

v4.0.0

\r\n\r\n

v3.6.0

\r\n\r\n

v3.5.3

\r\n\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/checkout&package-manager=github_actions&previous-version=4.1.6&new-version=4.1.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"Bump actions/checkout from 4.1.6 to 4.1.7 (#143)"}},{"before":"c56158571f338d463926ce9f90d136c9ad785e29","after":null,"ref":"refs/heads/dependabot/github_actions/gradle/actions-3.4.1","pushedAt":"2024-06-18T03:46:05.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"}},{"before":"b4f91b0676ab49fbe1e37be1bf4f19c116383b03","after":"0b8de628c264f2675b07b2259fb2cd5ff28aecdb","ref":"refs/heads/develop","pushedAt":"2024-06-18T03:46:04.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"},"commit":{"message":"Bump gradle/actions from 3.3.2 to 3.4.1 (#144)\n\nBumps [gradle/actions](https://github.com/gradle/actions) from 3.3.2 to\r\n3.4.1.\r\n
\r\nRelease notes\r\n

Sourced from gradle/actions's\r\nreleases.

\r\n
\r\n

v3.4.1

\r\n

This patch release fixes a bug introduced in v3.4.0, that prevents\r\nbuild scan publication to Develocity.\r\nThe bug results in the removal of the DEVELOCITY_ACCESS_KEY\r\nvariable being removed, so that Gradle cannot authenticate with the\r\nDevelocity server.

\r\n

What's Changed

\r\n\r\n

Full Changelog: https://github.com/gradle/actions/compare/v3.4.0...v3.4.1

\r\n

v3.4.0

\r\n

This release improves the integration with Gradle Develocity®, as\r\nwell as updating a number of key dependencies.

\r\n\r\n

What's Changed

\r\n\r\n

New Contributors

\r\n\r\n

Full Changelog: https://github.com/gradle/actions/compare/v3.3.2...v3.4.0

\r\n
\r\n
\r\n
\r\nCommits\r\n\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gradle/actions&package-manager=github_actions&previous-version=3.3.2&new-version=3.4.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"Bump gradle/actions from 3.3.2 to 3.4.1 (#144)"}},{"before":null,"after":"c56158571f338d463926ce9f90d136c9ad785e29","ref":"refs/heads/dependabot/github_actions/gradle/actions-3.4.1","pushedAt":"2024-06-17T07:12:20.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump gradle/actions from 3.3.2 to 3.4.1\n\nBumps [gradle/actions](https://github.com/gradle/actions) from 3.3.2 to 3.4.1.\n- [Release notes](https://github.com/gradle/actions/releases)\n- [Commits](https://github.com/gradle/actions/compare/db19848a5fa7950289d3668fb053140cf3028d43...31ae3562f68c96d481c31bc1a8a55cc1be162f83)\n\n---\nupdated-dependencies:\n- dependency-name: gradle/actions\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump gradle/actions from 3.3.2 to 3.4.1"}},{"before":null,"after":"c81e1bb472cd2fb3a296cb665f2cd2a650137a08","ref":"refs/heads/dependabot/github_actions/actions/checkout-4.1.7","pushedAt":"2024-06-17T07:12:11.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump actions/checkout from 4.1.6 to 4.1.7\n\nBumps [actions/checkout](https://github.com/actions/checkout) from 4.1.6 to 4.1.7.\n- [Release notes](https://github.com/actions/checkout/releases)\n- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/actions/checkout/compare/a5ac7e51b41094c92402da3b24376905380afc29...692973e3d937129bcbf40652eb9f2f61becf3332)\n\n---\nupdated-dependencies:\n- dependency-name: actions/checkout\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump actions/checkout from 4.1.6 to 4.1.7"}},{"before":"ddf460ee4b1a045646772e5c9ee15b159bffd4c9","after":null,"ref":"refs/heads/dependabot/github_actions/step-security/harden-runner-2.8.1","pushedAt":"2024-06-11T03:39:11.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"}},{"before":"de0a03654aea7866a4790b1238f1ffaf20b939ce","after":"b4f91b0676ab49fbe1e37be1bf4f19c116383b03","ref":"refs/heads/develop","pushedAt":"2024-06-11T03:39:11.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"},"commit":{"message":"Bump step-security/harden-runner from 2.8.0 to 2.8.1 (#142)\n\nBumps\r\n[step-security/harden-runner](https://github.com/step-security/harden-runner)\r\nfrom 2.8.0 to 2.8.1.\r\n
\r\nRelease notes\r\n

Sourced from step-security/harden-runner's\r\nreleases.

\r\n
\r\n

v2.8.1

\r\n

What's Changed

\r\n
    \r\n
  • Bug fix: Update isGitHubHosted implementation by @​varunsh-coder\r\nin step-security/harden-runner#425\r\nThe previous implementation incorrectly identified large GitHub-hosted\r\nrunners as self-hosted runners. As a result, harden-runner was not\r\nexecuting on these large GitHub-hosted runners.
    • \r\n
\r\n

Full Changelog: https://github.com/step-security/harden-runner/compare/v2...v2.8.1

\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 17d0e2b\r\nMerge pull request #425\r\nfrom step-security/rc-9
    • \r\n
  • bb112d0\r\nUpdate isGitHubHosted implementation
    • \r\n
  • f4f3f44\r\nMerge pull request #407\r\nfrom step-security/dependabot/github_actions/actions/...
    • \r\n
  • 7a946b5\r\nBump actions/dependency-review-action from 3.1.3 to 4.3.2
    • \r\n
  • 75a01c2\r\nMerge pull request #417\r\nfrom step-security/dependabot/github_actions/step-sec...
    • \r\n
  • 53413f1\r\nBump step-security/harden-runner from 2.7.1 to 2.8.0
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=step-security/harden-runner&package-manager=github_actions&previous-version=2.8.0&new-version=2.8.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"Bump step-security/harden-runner from 2.8.0 to 2.8.1 (#142)"}},{"before":null,"after":"ddf460ee4b1a045646772e5c9ee15b159bffd4c9","ref":"refs/heads/dependabot/github_actions/step-security/harden-runner-2.8.1","pushedAt":"2024-06-10T07:44:49.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump step-security/harden-runner from 2.8.0 to 2.8.1\n\nBumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.8.0 to 2.8.1.\n- [Release notes](https://github.com/step-security/harden-runner/releases)\n- [Commits](https://github.com/step-security/harden-runner/compare/f086349bfa2bd1361f7909c78558e816508cdc10...17d0e2bd7d51742c71671bd19fa12bdc9d40a3d6)\n\n---\nupdated-dependencies:\n- dependency-name: step-security/harden-runner\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump step-security/harden-runner from 2.8.0 to 2.8.1"}},{"before":"1e228d7a26af5ba4fafe12cb306b8cb86cecbd34","after":null,"ref":"refs/heads/dependabot/github_actions/mikepenz/action-junit-report-4.2.2","pushedAt":"2024-06-04T03:30:52.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"}},{"before":"d228feb73180c45d145127c6350619da3a17105d","after":"de0a03654aea7866a4790b1238f1ffaf20b939ce","ref":"refs/heads/develop","pushedAt":"2024-06-04T03:30:51.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"},"commit":{"message":"Bump mikepenz/action-junit-report from 4.2.1 to 4.2.2 (#141)\n\nBumps\r\n[mikepenz/action-junit-report](https://github.com/mikepenz/action-junit-report)\r\nfrom 4.2.1 to 4.2.2.\r\n
\r\nRelease notes\r\n

Sourced from mikepenz/action-junit-report's\r\nreleases.

\r\n
\r\n

v4.2.2

\r\n

🚀 Features

\r\n
    \r\n
  • Add classname to check_title_template\r\n
      \r\n
    • PR: #1095
      • \r\n
    • Thanks @​valentin-demange
      • \r\n
    \r\n
    • \r\n
\r\n

📦 Dependencies

\r\n
    \r\n
  • Dependency upgrades\r\n
      \r\n
    • PR: #1101
      • \r\n
    \r\n
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • ac30be7\r\nMerge pull request #1101\r\nfrom mikepenz/feature/dependency_updates_20240530
    • \r\n
  • fdfd21a\r\n- add eslint import
    • \r\n
  • 15fd1d8\r\n```
    • \r\n
  • 0405bc6\r\nMerge branch 'feature/add-classname-to-check-title-template'
    • \r\n
  • a40320b\r\n- slightly additional handling for class name
    • \r\n
  • 8c4af8b\r\nFix main
    • \r\n
  • 092d949\r\nFix readme
    • \r\n
  • c55f2d4\r\nAdd classname to check_title_template
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=mikepenz/action-junit-report&package-manager=github_actions&previous-version=4.2.1&new-version=4.2.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"Bump mikepenz/action-junit-report from 4.2.1 to 4.2.2 (#141)"}},{"before":null,"after":"1e228d7a26af5ba4fafe12cb306b8cb86cecbd34","ref":"refs/heads/dependabot/github_actions/mikepenz/action-junit-report-4.2.2","pushedAt":"2024-06-03T08:00:12.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump mikepenz/action-junit-report from 4.2.1 to 4.2.2\n\nBumps [mikepenz/action-junit-report](https://github.com/mikepenz/action-junit-report) from 4.2.1 to 4.2.2.\n- [Release notes](https://github.com/mikepenz/action-junit-report/releases)\n- [Commits](https://github.com/mikepenz/action-junit-report/compare/9379f0ccddcab154835d4e2487555ee79614fe95...ac30be7acb0a361e5492575ab42e47fcadec4928)\n\n---\nupdated-dependencies:\n- dependency-name: mikepenz/action-junit-report\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump mikepenz/action-junit-report from 4.2.1 to 4.2.2"}},{"before":"5412f6df86139df7f930879bd879b926fa351175","after":null,"ref":"refs/heads/dependabot/github_actions/step-security/harden-runner-2.8.0","pushedAt":"2024-05-28T03:48:26.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"}},{"before":"b6df5b585dd579c079f568c356f46f7b7c193091","after":"d228feb73180c45d145127c6350619da3a17105d","ref":"refs/heads/develop","pushedAt":"2024-05-28T03:48:25.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"},"commit":{"message":"Bump step-security/harden-runner from 2.7.1 to 2.8.0 (#140)\n\nBumps\r\n[step-security/harden-runner](https://github.com/step-security/harden-runner)\r\nfrom 2.7.1 to 2.8.0.\r\n
\r\nRelease notes\r\n

Sourced from step-security/harden-runner's\r\nreleases.

\r\n
\r\n

v2.8.0

\r\n

What's Changed

\r\n

Release v2.8.0 by @​h0x0er and @​varunsh-coder\r\nin step-security/harden-runner#416\r\nThis release includes:

\r\n
    \r\n
  • File Monitoring Enhancements: Adds the capability to view the name\r\nand path of every file written during the build process.
    • \r\n
  • Process Tracking Enhancements: Adds the capability to view process\r\nnames and arguments of processes run during the build process.
    • \r\n
\r\n

These enhancements are based on insights from the XZ Utils incident,\r\naimed at improving observability and detections during the build\r\nprocess.

\r\n

Full Changelog: https://github.com/step-security/harden-runner/compare/v2...v2.8.0

\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • f086349\r\nMerge pull request #416\r\nfrom step-security/rc-8
    • \r\n
  • b9c325d\r\nUpdate image
    • \r\n
  • 808a771\r\nAdd info about file and process events
    • \r\n
  • 7171429\r\nUpdate agent
    • \r\n
  • 9ff9d14\r\nMerge pull request #406\r\nfrom step-security/dependabot/github_actions/step-sec...
    • \r\n
  • ac5fa01\r\nBump step-security/harden-runner from 2.7.0 to 2.7.1
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=step-security/harden-runner&package-manager=github_actions&previous-version=2.7.1&new-version=2.8.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"Bump step-security/harden-runner from 2.7.1 to 2.8.0 (#140)"}},{"before":null,"after":"5412f6df86139df7f930879bd879b926fa351175","ref":"refs/heads/dependabot/github_actions/step-security/harden-runner-2.8.0","pushedAt":"2024-05-27T07:18:02.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump step-security/harden-runner from 2.7.1 to 2.8.0\n\nBumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.7.1 to 2.8.0.\n- [Release notes](https://github.com/step-security/harden-runner/releases)\n- [Commits](https://github.com/step-security/harden-runner/compare/a4aa98b93cab29d9b1101a6143fb8bce00e2eac4...f086349bfa2bd1361f7909c78558e816508cdc10)\n\n---\nupdated-dependencies:\n- dependency-name: step-security/harden-runner\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump step-security/harden-runner from 2.7.1 to 2.8.0"}},{"before":"e95b38901e34555f42b3cd81483fa97b594f9d67","after":"b6df5b585dd579c079f568c356f46f7b7c193091","ref":"refs/heads/develop","pushedAt":"2024-05-20T16:16:38.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"},"commit":{"message":"Bump org.seleniumhq.selenium:selenium-java from 4.20.0 to 4.21.0 in /tests (#139)\n\nBumps\r\n[org.seleniumhq.selenium:selenium-java](https://github.com/SeleniumHQ/selenium)\r\nfrom 4.20.0 to 4.21.0.\r\n
\r\nRelease notes\r\n

Sourced from org.seleniumhq.selenium:selenium-java's\r\nreleases.

\r\n
\r\n

Selenium 4.21.0

\r\n

Changelog

\r\n

For each component's detailed changelog, please check:

\r\n
    \r\n
  • Ruby
    • \r\n
  • Python
    • \r\n
  • JavaScript
    • \r\n
  • Java
    • \r\n
  • DotNet
    • \r\n
  • IEDriverServer
    • \r\n
\r\n

Commits in this release

\r\n\r\n
    \r\n
  • f034dc5d32\r\n- [rb] Setting nightly version :: Diego Molina
    • \r\n
  • 480ce7060f\r\n- [dotnet] Setting nightly version :: Diego Molina
    • \r\n
  • d9c33f4478\r\n- [js] Setting nightly version :: Diego Molina
    • \r\n
  • be5d67c97b\r\n- [py] Setting nightly version :: Diego Molina
    • \r\n
  • 0d620d2be4\r\n- [java] Setting snapshot version :: Diego Molina
    • \r\n
  • 057323db14\r\n- [nightly] Fixing typo :: Diego Molina
    • \r\n
  • 3e3cf89fb6\r\n- Update mirror info (Thu Apr 25 00:16:21 UTC 2024) :: Selenium CI\r\nBot
    • \r\n
  • 6ded247bd3\r\n- [js] Fixing wrongly updated package-lock.json :: Diego Molina
    • \r\n
  • 8723d04809\r\n- [dotnet][rb][java][js][py] Automated Browser Version Update (#13841)\r\n:: Selenium CI Bot
    • \r\n
  • dbd9ff3eed\r\n- Update mirror info (Fri Apr 26 00:15:49 UTC 2024) :: Selenium CI\r\nBot
    • \r\n
  • cf5393b050\r\n- [rb] Return and deprecate DriverFinder.path :: Alex Rodionov
    • \r\n
  • 7ca4f5e4d8\r\n- [ci] Don't run on macOS ARM :: Alex Rodionov
    • \r\n
  • 3296fdf449\r\n- [rb] Release 4.20.1 :: Alex Rodionov
    • \r\n
  • f2b68137f6\r\n- [rb] Update version for nightly :: Alex Rodionov
    • \r\n
  • 6ece8d7aee\r\n- Ensure rules_proto comes from the module file (#13879)\r\n:: Simon Stewart
    • \r\n
  • 7f25fd1e61\r\n- [dotnet][rb][java][js][py] Automated Browser Version Update (#13878)\r\n:: Selenium CI Bot
    • \r\n
  • ffb03bde4d\r\n- [bidi][java] Add methods to allow all parameters for script\r\ncallFunction and evaluate method (#13873)\r\n:: Puja Jagani
    • \r\n
  • 9c8133a8bf\r\n- [dotnet][rb][java][js][py] Automated Browser Version Update (#13886)\r\n:: Selenium CI Bot
    • \r\n
  • 2f7ac69252\r\n- [java] Setting a connection timeout for the WS connection :: Diego\r\nMolina
    • \r\n
  • 9de36e29dd\r\n- Bump rules_jvm_external to 6.1 (#13890)\r\n:: Simon Stewart
    • \r\n
  • d5ff4315f5\r\n- Bump to Bazel 7.1.1 (#13891)\r\n:: Simon Stewart
    • \r\n
  • ac93fab589\r\n- Add MODULE.bazel.lock to the gitignore file until it is stable between\r\nplatforms :: Simon Stewart
    • \r\n
  • 1bcc79f8a8\r\n- [bazel + js] Allow bazel build //javascript/... to work\r\n(#13893)\r\n:: Simon Stewart
    • \r\n
  • ef96a7b184\r\n- [bazel] Update rules_jvm_external to 6.1 :: Alex Rodionov
    • \r\n
  • 8688ad2d0d\r\n- [rb] Fix Chromium tests on Windows :: Alex Rodionov
    • \r\n
  • b456e6089d\r\n- [rb] Use Bazel JDK in remote tests :: Alex Rodionov
    • \r\n
  • 020521aa5c\r\n- [rb] Safari window minimize tests are passing :: Alex Rodionov
    • \r\n
  • 7fc9a12d28\r\n- [rb] Allow focusing tests w/o extra args :: Alex Rodionov
    • \r\n
  • f54ba8ba00\r\n- [rb] Fix syntax error in BUILD file :: Alex Rodionov
    • \r\n
  • 8d94b342a3\r\n- [rb] Use no-sandbox on non-Windows :: Alex Rodionov
    • \r\n
  • 1e0cde199c\r\n- [dotnet][rb][java][js][py] Automated Browser Version Update (#13895)\r\n:: Selenium CI Bot
    • \r\n
  • 5d4cfc1e1e\r\n- [java] Improving error message for BiDi connection :: Diego\r\nMolina
    • \r\n
  • 86fd063330\r\n- [py] removed unused logger object from\r\nfirefox/webdriver.py (#13892)\r\n:: Sandeep Suryaprasad
    • \r\n
  • a0a3914845\r\n- [java] Improving logging to understand why "Value must be\r\nset" is raised. :: Diego Molina
    • \r\n
  • c114dbd530\r\n- [js] Ensure 'selectVisibleByText' method is same as other languages\r\n(#13899)\r\n:: Puja Jagani
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 79ed462\r\nRelease 4.21.0 (#13948)
    • \r\n
  • 518496c\r\n[rb] Support using custom element classes
    • \r\n
  • 02381bf\r\n[rb] Support registering custom finders for SearchContext
    • \r\n
  • 991a653\r\n[rb] Support overriding default locator conversion
    • \r\n
  • 4cf9aeb\r\n[rb] Support registering extra bridge commands
    • \r\n
  • 3ec3cef\r\n[rb] Support overriding User-Agent in HTTP client
    • \r\n
  • 4f72e3f\r\n[rb] Support registering extra headers in HTTP client
    • \r\n
  • 6978ea8\r\n[dotnet] Allow to run tests w/o pinned browsers
    • \r\n
  • 03f626f\r\n[js] Expose individual test targets to Bazel
    • \r\n
  • fd56c3a\r\nUsing macos-13 for now until we adapt to macos-latest
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.seleniumhq.selenium:selenium-java&package-manager=gradle&previous-version=4.20.0&new-version=4.21.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"Bump org.seleniumhq.selenium:selenium-java from 4.20.0 to 4.21.0 in /…"}},{"before":"0f052041b51c21cd7f55934122377ba61f9f911c","after":null,"ref":"refs/heads/dependabot/gradle/tests/org.seleniumhq.selenium-selenium-java-4.21.0","pushedAt":"2024-05-20T16:16:38.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"}},{"before":"3fd80209de1dde52492d073acc1b0c75513a9f69","after":null,"ref":"refs/heads/dependabot/github_actions/actions/checkout-4.1.6","pushedAt":"2024-05-20T16:16:30.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"}},{"before":"d59b30a9297ca377965495c25aad1703c6e0e250","after":"e95b38901e34555f42b3cd81483fa97b594f9d67","ref":"refs/heads/develop","pushedAt":"2024-05-20T16:16:29.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"},"commit":{"message":"Bump actions/checkout from 4.1.5 to 4.1.6 (#138)\n\nBumps [actions/checkout](https://github.com/actions/checkout) from 4.1.5\r\nto 4.1.6.\r\n
\r\nRelease notes\r\n

Sourced from actions/checkout's\r\nreleases.

\r\n
\r\n

v4.1.6

\r\n

What's Changed

\r\n
    \r\n
  • Check platform to set archive extension appropriately by @​cory-miller in\r\nactions/checkout#1732
    • \r\n
  • Update for 4.1.6 release by @​cory-miller in\r\nactions/checkout#1733
    • \r\n
\r\n

Full Changelog: https://github.com/actions/checkout/compare/v4.1.5...v4.1.6

\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from actions/checkout's\r\nchangelog.

\r\n
\r\n

Changelog

\r\n

v4.1.6

\r\n
    \r\n
  • Check platform to set archive extension appropriately by @​cory-miller in\r\nactions/checkout#1732
    • \r\n
\r\n

v4.1.5

\r\n
    \r\n
  • Update NPM dependencies by @​cory-miller in\r\nactions/checkout#1703
    • \r\n
  • Bump github/codeql-action from 2 to 3 by @​dependabot in actions/checkout#1694
    • \r\n
  • Bump actions/setup-node from 1 to 4 by @​dependabot in actions/checkout#1696
    • \r\n
  • Bump actions/upload-artifact from 2 to 4 by @​dependabot in actions/checkout#1695
    • \r\n
  • README: Suggest user.email to be\r\n41898282+github-actions[bot]@users.noreply.github.com by @​cory-miller in\r\nactions/checkout#1707
    • \r\n
\r\n

v4.1.4

\r\n
    \r\n
  • Disable extensions.worktreeConfig when disabling\r\nsparse-checkout by @​jww3 in actions/checkout#1692
    • \r\n
  • Add dependabot config by @​cory-miller in\r\nactions/checkout#1688
    • \r\n
  • Bump the minor-actions-dependencies group with 2 updates by @​dependabot in actions/checkout#1693
    • \r\n
  • Bump word-wrap from 1.2.3 to 1.2.5 by @​dependabot in actions/checkout#1643
    • \r\n
\r\n

v4.1.3

\r\n
    \r\n
  • Check git version before attempting to disable\r\nsparse-checkout by @​jww3 in actions/checkout#1656
    • \r\n
  • Add SSH user parameter by @​cory-miller in\r\nactions/checkout#1685
    • \r\n
  • Update actions/checkout version in\r\nupdate-main-version.yml by @​jww3 in actions/checkout#1650
    • \r\n
\r\n

v4.1.2

\r\n
    \r\n
  • Fix: Disable sparse checkout whenever sparse-checkout\r\noption is not present @​dscho in actions/checkout#1598
    • \r\n
\r\n

v4.1.1

\r\n
    \r\n
  • Correct link to GitHub Docs by @​peterbe in actions/checkout#1511
    • \r\n
  • Link to release page from what's new section by @​cory-miller in\r\nactions/checkout#1514
    • \r\n
\r\n

v4.1.0

\r\n\r\n

v4.0.0

\r\n
    \r\n
  • Support\r\nfetching without the --progress option
    • \r\n
  • Update to\r\nnode20
    • \r\n
\r\n

v3.6.0

\r\n\r\n

v3.5.3

\r\n\r\n

v3.5.2

\r\n\r\n

v3.5.1

\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • a5ac7e5\r\nUpdate for 4.1.6 release (#1733)
    • \r\n
  • 24ed1a3\r\nCheck platform for extension (#1732)
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/checkout&package-manager=github_actions&previous-version=4.1.5&new-version=4.1.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"Bump actions/checkout from 4.1.5 to 4.1.6 (#138)"}},{"before":null,"after":"0f052041b51c21cd7f55934122377ba61f9f911c","ref":"refs/heads/dependabot/gradle/tests/org.seleniumhq.selenium-selenium-java-4.21.0","pushedAt":"2024-05-20T07:37:24.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump org.seleniumhq.selenium:selenium-java in /tests\n\nBumps [org.seleniumhq.selenium:selenium-java](https://github.com/SeleniumHQ/selenium) from 4.20.0 to 4.21.0.\n- [Release notes](https://github.com/SeleniumHQ/selenium/releases)\n- [Commits](https://github.com/SeleniumHQ/selenium/compare/selenium-4.20.0...selenium-4.21.0)\n\n---\nupdated-dependencies:\n- dependency-name: org.seleniumhq.selenium:selenium-java\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump org.seleniumhq.selenium:selenium-java in /tests"}},{"before":null,"after":"3fd80209de1dde52492d073acc1b0c75513a9f69","ref":"refs/heads/dependabot/github_actions/actions/checkout-4.1.6","pushedAt":"2024-05-20T07:35:55.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump actions/checkout from 4.1.5 to 4.1.6\n\nBumps [actions/checkout](https://github.com/actions/checkout) from 4.1.5 to 4.1.6.\n- [Release notes](https://github.com/actions/checkout/releases)\n- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/actions/checkout/compare/44c2b7a8a4ea60a981eaca3cf939b5f4305c123b...a5ac7e51b41094c92402da3b24376905380afc29)\n\n---\nupdated-dependencies:\n- dependency-name: actions/checkout\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump actions/checkout from 4.1.5 to 4.1.6"}},{"before":"782ab7e929e3c61a403dc0d9c4173ec6f6c6d386","after":null,"ref":"refs/heads/dependabot/github_actions/actions/checkout-4.1.5","pushedAt":"2024-05-14T04:20:59.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"}},{"before":"e1e44106a9d67cc32ec5e75d460c6c48020a0ab7","after":"d59b30a9297ca377965495c25aad1703c6e0e250","ref":"refs/heads/develop","pushedAt":"2024-05-14T04:20:58.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"},"commit":{"message":"Bump actions/checkout from 4.1.4 to 4.1.5 (#137)\n\nBumps [actions/checkout](https://github.com/actions/checkout) from 4.1.4\r\nto 4.1.5.\r\n
\r\nRelease notes\r\n

Sourced from actions/checkout's\r\nreleases.

\r\n
\r\n

v4.1.5

\r\n

What's Changed

\r\n
    \r\n
  • Update NPM dependencies by @​cory-miller in\r\nactions/checkout#1703
    • \r\n
  • Bump github/codeql-action from 2 to 3 by @​dependabot in actions/checkout#1694
    • \r\n
  • Bump actions/setup-node from 1 to 4 by @​dependabot in actions/checkout#1696
    • \r\n
  • Bump actions/upload-artifact from 2 to 4 by @​dependabot in actions/checkout#1695
    • \r\n
  • README: Suggest user.email to be\r\n41898282+github-actions[bot]@users.noreply.github.com by @​cory-miller in\r\nactions/checkout#1707
    • \r\n
\r\n

Full Changelog: https://github.com/actions/checkout/compare/v4.1.4...v4.1.5

\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 44c2b7a\r\nREADME: Suggest user.email to be\r\n`41898282+github-actions[bot]@​users.norepl...
    • \r\n
  • 8459bc0\r\nBump actions/upload-artifact from 2 to 4 (#1695)
    • \r\n
  • 3f603f6\r\nBump actions/setup-node from 1 to 4 (#1696)
    • \r\n
  • fd084cd\r\nBump github/codeql-action from 2 to 3 (#1694)
    • \r\n
  • 9c1e94e\r\nUpdate NPM dependencies (#1703)
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/checkout&package-manager=github_actions&previous-version=4.1.4&new-version=4.1.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"Bump actions/checkout from 4.1.4 to 4.1.5 (#137)"}},{"before":null,"after":"782ab7e929e3c61a403dc0d9c4173ec6f6c6d386","ref":"refs/heads/dependabot/github_actions/actions/checkout-4.1.5","pushedAt":"2024-05-13T07:12:12.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump actions/checkout from 4.1.4 to 4.1.5\n\nBumps [actions/checkout](https://github.com/actions/checkout) from 4.1.4 to 4.1.5.\n- [Release notes](https://github.com/actions/checkout/releases)\n- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/actions/checkout/compare/0ad4b8fadaa221de15dcec353f45205ec38ea70b...44c2b7a8a4ea60a981eaca3cf939b5f4305c123b)\n\n---\nupdated-dependencies:\n- dependency-name: actions/checkout\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump actions/checkout from 4.1.4 to 4.1.5"}},{"before":"ae42e4b3fa7eea828e74144bd9b1913bcc4c968b","after":null,"ref":"refs/heads/dependabot/github_actions/step-security/harden-runner-2.7.1","pushedAt":"2024-05-06T08:12:09.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"}},{"before":"9a7f751943a782b6c2141eca4c7d4a9aafaf567b","after":"e1e44106a9d67cc32ec5e75d460c6c48020a0ab7","ref":"refs/heads/develop","pushedAt":"2024-05-06T08:12:08.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"},"commit":{"message":"Bump step-security/harden-runner from 2.7.0 to 2.7.1 (#136)\n\nBumps\r\n[step-security/harden-runner](https://github.com/step-security/harden-runner)\r\nfrom 2.7.0 to 2.7.1.\r\n
\r\nRelease notes\r\n

Sourced from step-security/harden-runner's\r\nreleases.

\r\n
\r\n

v2.7.1

\r\n

What's Changed

\r\n

Release v2.7.1 by @​varunsh-coder,\r\n@​h0x0er, @​ashishkurmi in\r\nstep-security/harden-runner#397\r\nThis release:

\r\n
    \r\n
  • Improves the capability to inspect\r\noutbound HTTPS traffic on GitHub-hosted and self-hosted VM\r\nrunners
    • \r\n
  • Updates README to add link to case study video\r\non how Harden-Runner detected a supply chain attack on a Google\r\nopen-source project
    • \r\n
  • Addresses minor bugs
    • \r\n
\r\n

Full Changelog: https://github.com/step-security/harden-runner/compare/v2.7.0...v2.7.1

\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • a4aa98b\r\nRelease v2.7.1 (#397)
    • \r\n
  • 6c3b1c9\r\nMerge pull request #379\r\nfrom step-security/dependabot/github_actions/step-sec...
    • \r\n
  • 3498091\r\nBump step-security/harden-runner from 2.6.1 to 2.7.0
    • \r\n
  • 63a88e2\r\nMerge pull request #378\r\nfrom step-security/update-readme3
    • \r\n
  • 07e5965\r\nUpdate README
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=step-security/harden-runner&package-manager=github_actions&previous-version=2.7.0&new-version=2.7.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"Bump step-security/harden-runner from 2.7.0 to 2.7.1 (#136)"}},{"before":"3dad05c61c952c970c485ec781f756c4fe59fd77","after":null,"ref":"refs/heads/dependabot/github_actions/browser-actions/setup-firefox-1.5.1","pushedAt":"2024-05-06T08:12:03.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"}},{"before":"6da0d5d0d7c197d939cda574050e484057ee526a","after":"9a7f751943a782b6c2141eca4c7d4a9aafaf567b","ref":"refs/heads/develop","pushedAt":"2024-05-06T08:12:02.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"bratkartoffel","name":"Simon F","path":"/bratkartoffel","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1867163?s=80&v=4"},"commit":{"message":"Bump browser-actions/setup-firefox from 1.5.0 to 1.5.1 (#135)\n\nBumps\r\n[browser-actions/setup-firefox](https://github.com/browser-actions/setup-firefox)\r\nfrom 1.5.0 to 1.5.1.\r\n
\r\nRelease notes\r\n

Sourced from browser-actions/setup-firefox's\r\nreleases.

\r\n
\r\n

setup-firefox: v1.5.1

\r\n

1.5.1\r\n(2024-05-04)

\r\n

Bug Fixes

\r\n
    \r\n
  • Adding arm64 to osx for macos-14 (#546)\r\n(d880b17)
    • \r\n
\r\n

v1.5.1

\r\n

1.5.1\r\n(2024-05-04)

\r\n

Bug Fixes

\r\n
    \r\n
  • Adding arm64 to osx for macos-14 (#546)\r\n(d880b17)
    • \r\n
\r\n

Full Changelog: https://github.com/browser-actions/setup-firefox/compare/setup-firefox-v1.5.0...setup-firefox-v1.5.1

\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from browser-actions/setup-firefox's\r\nchangelog.

\r\n
\r\n

Changelog

\r\n

1.5.1\r\n(2024-05-04)

\r\n

Bug Fixes

\r\n
    \r\n
  • Adding arm64 to osx for macos-14 (#546)\r\n(d880b17)
    • \r\n
\r\n

1.5.0\r\n(2024-02-29)

\r\n

Features

\r\n
    \r\n
  • firefox devedition archive versions (#517)\r\n(eb151a7)
    • \r\n
\r\n

1.4.1\r\n(2024-02-17)

\r\n

Bug Fixes

\r\n
    \r\n
  • using node20 (#520)\r\n(b7d1295)
    • \r\n
\r\n

1.4.0\r\n(2023-11-11)

\r\n

Features

\r\n
    \r\n
  • output installed binary path (#493)\r\n(e16c07e)
    • \r\n
\r\n

1.3.0\r\n(2023-09-18)

\r\n

Features

\r\n
    \r\n
  • firefox nightly (#455)\r\n(b638071)
    • \r\n
\r\n

1.2.0\r\n(2023-09-17)

\r\n

Features

\r\n
    \r\n
  • restore Windows support (#422)\r\n(6013839)
    • \r\n
\r\n

Bug Fixes

\r\n
    \r\n
  • deps: bump the actions group with 1 update (#448)\r\n(b7727a2)
    • \r\n
\r\n

1.1.1\r\n(2023-03-16)

\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 7eb6921\r\nRelease v1.5.1 at 35c5cfe15e6f7a8cb69ea775ff7f7160b1dc5bd5
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=browser-actions/setup-firefox&package-manager=github_actions&previous-version=1.5.0&new-version=1.5.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
","shortMessageHtmlLink":"Bump browser-actions/setup-firefox from 1.5.0 to 1.5.1 (#135)"}},{"before":null,"after":"ae42e4b3fa7eea828e74144bd9b1913bcc4c968b","ref":"refs/heads/dependabot/github_actions/step-security/harden-runner-2.7.1","pushedAt":"2024-05-06T07:33:07.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump step-security/harden-runner from 2.7.0 to 2.7.1\n\nBumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.7.0 to 2.7.1.\n- [Release notes](https://github.com/step-security/harden-runner/releases)\n- [Commits](https://github.com/step-security/harden-runner/compare/63c24ba6bd7ba022e95695ff85de572c04a18142...a4aa98b93cab29d9b1101a6143fb8bce00e2eac4)\n\n---\nupdated-dependencies:\n- dependency-name: step-security/harden-runner\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump step-security/harden-runner from 2.7.0 to 2.7.1"}},{"before":null,"after":"3dad05c61c952c970c485ec781f756c4fe59fd77","ref":"refs/heads/dependabot/github_actions/browser-actions/setup-firefox-1.5.1","pushedAt":"2024-05-06T07:33:04.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump browser-actions/setup-firefox from 1.5.0 to 1.5.1\n\nBumps [browser-actions/setup-firefox](https://github.com/browser-actions/setup-firefox) from 1.5.0 to 1.5.1.\n- [Release notes](https://github.com/browser-actions/setup-firefox/releases)\n- [Changelog](https://github.com/browser-actions/setup-firefox/blob/master/CHANGELOG.md)\n- [Commits](https://github.com/browser-actions/setup-firefox/compare/233224b712fc07910ded8c15fb95a555c86da76f...7eb6921a7449833b6356d5b61f7bba79b4e65ed3)\n\n---\nupdated-dependencies:\n- dependency-name: browser-actions/setup-firefox\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump browser-actions/setup-firefox from 1.5.0 to 1.5.1"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEaAJsMAA","startCursor":null,"endCursor":null}},"title":"Activity · bratkartoffel/blm2"}