Conversation
dependabot
Bot
added
dependencies
dependabot
Bot
force-pushed
the
dependabot/github_actions/aquasecurity/trivy-action-0.36.0
branch
4 times, most recently
from
6242912 to
00c3456
Compare
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.35.0 to 0.36.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@57a97c7...ed142fd) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-version: 0.36.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
force-pushed
the
dependabot/github_actions/aquasecurity/trivy-action-0.36.0
branch
from
00c3456 to
ba0deb1
Compare
rsdmike
approved these changes
May 1, 2026
rsdmike
deleted the
dependabot/github_actions/aquasecurity/trivy-action-0.36.0
branch
DevipriyaS17
pushed a commit
that referenced
this pull request
May 5, 2026
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.35.0 to 0.36.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@57a97c7...ed142fd) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-version: 0.36.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
🎉 This PR is included in version 1.24.4 🎉 The release is available on:
Your semantic-release bot 📦🚀 |
DevipriyaS17
added a commit
that referenced
this pull request
May 6, 2026
* build(deps): bump modernc.org/sqlite from 1.44.3 to 1.45.0 (#787) Bumps [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) from 1.44.3 to 1.45.0. - [Changelog](https://gitlab.com/cznic/sqlite/blob/master/CHANGELOG.md) - [Commits](https://gitlab.com/cznic/sqlite/compare/v1.44.3...v1.45.0) --- updated-dependencies: - dependency-name: modernc.org/sqlite dependency-version: 1.45.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Madhavi Losetty <madhavi.losetty@intel.com> * feat: add KVM performance timing metrics and monitoring (#761) * feat: add KVM performance timing metrics and monitoring - Add histograms to track KVM connection setup timing: - Device lookup time from database - TCP connection establishment time - WebSocket upgrade duration - Total connection time - Consent code wait time - API request durations - Add metrics for KVM data flow performance: - Device-to-browser and browser-to-device write/send durations - Payload size distributions - Receive/read block times - Create recording functions for all metrics - Add detailed timing logs with KVM_TIMING prefix - Update tests to handle new timing metrics * refactor: replace manual REST endpoint instrumentation with go-gin-prometheus Replace manual timing instrumentation in individual REST endpoints with go-gin-prometheus middleware for automatic metrics coverage across all HTTP endpoints. Changes: - Add go-gin-prometheus dependency to provide standard HTTP metrics - Integrate Prometheus middleware in router for automatic instrumentation - Remove manual timing code from features, KVM displays, and power endpoints - Remove unused kvmAPIRequestSeconds metric and RecordAPIRequest function - Clean up unused time and devices package imports Benefits: - Automatic metrics for ALL REST endpoints (not just 3) - Standard HTTP metrics (duration, status codes, request/response sizes) - Less repetitive code and improved maintainability - Keeps all custom KVM connection and data flow metrics Addresses reviewer feedback in PR #761 --------- Co-authored-by: Mike <michael.johanson@intel.com> * build(deps): bump modernc.org/sqlite from 1.45.0 to 1.46.1 (#809) Bumps [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) from 1.45.0 to 1.46.1. - [Changelog](https://gitlab.com/cznic/sqlite/blob/master/CHANGELOG.md) - [Commits](https://gitlab.com/cznic/sqlite/compare/v1.45.0...v1.46.1) --- updated-dependencies: - dependency-name: modernc.org/sqlite dependency-version: 1.46.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: DevipriyaS17 <devipriya.s@intel.com> * build(deps): bump github.com/zsais/go-gin-prometheus from 1.0.2 to 1.0.3 (#811) Bumps [github.com/zsais/go-gin-prometheus](https://github.com/zsais/go-gin-prometheus) from 1.0.2 to 1.0.3. - [Release notes](https://github.com/zsais/go-gin-prometheus/releases) - [Commits](zsais/go-gin-prometheus@v1.0.2...v1.0.3) --- updated-dependencies: - dependency-name: github.com/zsais/go-gin-prometheus dependency-version: 1.0.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github.com/gin-gonic/gin from 1.11.0 to 1.12.0 (#819) Bumps [github.com/gin-gonic/gin](https://github.com/gin-gonic/gin) from 1.11.0 to 1.12.0. - [Release notes](https://github.com/gin-gonic/gin/releases) - [Changelog](https://github.com/gin-gonic/gin/blob/master/CHANGELOG.md) - [Commits](gin-gonic/gin@v1.11.0...v1.12.0) --- updated-dependencies: - dependency-name: github.com/gin-gonic/gin dependency-version: 1.12.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump golang from 1.25.7-alpine to 1.26.1-alpine (#825) Bumps golang from 1.25.7-alpine to 1.26.1-alpine. --- updated-dependencies: - dependency-name: golang dependency-version: 1.26.1-alpine dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * feat: enables support for redirection over CIRA addresses #743 * refactor: replace mutex usage with safer connection management methods to handle concurrent CIRA connections * fix: resolve Memory Summary showing no data in Hardware Information (… (#821) * fix: resolve Memory Summary showing no data in Hardware Information (#816) Enhanced parseCIMResponse to handle typed slices using reflection. Added test for parseCIMResponse function achieving 100% coverage. Signed-off-by: C, Amarnath <amarnath.c@intel.com> Signed-off-by: S, Devipriya <devipriya.s@intel.com> * fix: replace reflection with source conversion in memory summary Convert PhysicalMemory slice to interface slice at source. * fix: rename interfaceSlice to convertPhysicalMemorySlice for clarity Address PR review feedback to use more specific function naming that reflects its single-purpose for PhysicalMemory type conversion. --------- Signed-off-by: C, Amarnath <amarnath.c@intel.com> Signed-off-by: S, Devipriya <devipriya.s@intel.com> * ci: update GitHub Actions to Node.js 24 compatible versions (#845) Node.js 20 actions are deprecated and will be forced to Node.js 24 starting June 2nd, 2026. Updated all pinned action SHAs: - actions/checkout: v4.2.2 → v5.0.0 - actions/cache: v4.2.0 → v5.0.3 - step-security/harden-runner: v2.10.2 → v2.16.0 - github/codeql-action: v3.27.9 → v4.33.0 * build(deps): bump github.com/device-management-toolkit/go-wsman-messages/v2 (#848) Bumps [github.com/device-management-toolkit/go-wsman-messages/v2](https://github.com/device-management-toolkit/go-wsman-messages) from 2.37.0 to 2.38.0. - [Release notes](https://github.com/device-management-toolkit/go-wsman-messages/releases) - [Commits](device-management-toolkit/go-wsman-messages@v2.37.0...v2.38.0) --- updated-dependencies: - dependency-name: github.com/device-management-toolkit/go-wsman-messages/v2 dependency-version: 2.38.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Madhavi Losetty <madhavi.losetty@intel.com> * build(deps): bump modernc.org/sqlite from 1.46.1 to 1.47.0 Bumps [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) from 1.46.1 to 1.47.0. - [Changelog](https://gitlab.com/cznic/sqlite/blob/master/CHANGELOG.md) - [Commits](https://gitlab.com/cznic/sqlite/compare/v1.46.1...v1.47.0) --- updated-dependencies: - dependency-name: modernc.org/sqlite dependency-version: 1.47.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * build(deps): bump github.com/jackc/pgx/v5 from 5.8.0 to 5.9.1 (#851) Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.8.0 to 5.9.1. - [Changelog](https://github.com/jackc/pgx/blob/master/CHANGELOG.md) - [Commits](jackc/pgx@v5.8.0...v5.9.1) --- updated-dependencies: - dependency-name: github.com/jackc/pgx/v5 dependency-version: 5.9.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github.com/hashicorp/vault/api from 1.22.0 to 1.23.0 (#856) Bumps [github.com/hashicorp/vault/api](https://github.com/hashicorp/vault) from 1.22.0 to 1.23.0. - [Release notes](https://github.com/hashicorp/vault/releases) - [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG-v1.10-v1.15.md) - [Commits](hashicorp/vault@api/v1.22.0...api/v1.23.0) --- updated-dependencies: - dependency-name: github.com/hashicorp/vault/api dependency-version: 1.23.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github.com/rs/zerolog from 1.34.0 to 1.35.0 (#866) Bumps [github.com/rs/zerolog](https://github.com/rs/zerolog) from 1.34.0 to 1.35.0. - [Commits](rs/zerolog@v1.34.0...v1.35.0) --- updated-dependencies: - dependency-name: github.com/rs/zerolog dependency-version: 1.35.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github.com/gin-contrib/cors from 1.7.6 to 1.7.7 (#864) Bumps [github.com/gin-contrib/cors](https://github.com/gin-contrib/cors) from 1.7.6 to 1.7.7. - [Release notes](https://github.com/gin-contrib/cors/releases) - [Commits](gin-contrib/cors@v1.7.6...v1.7.7) --- updated-dependencies: - dependency-name: github.com/gin-contrib/cors dependency-version: 1.7.7 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump modernc.org/sqlite from 1.47.0 to 1.48.0 Bumps [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) from 1.47.0 to 1.48.0. - [Changelog](https://gitlab.com/cznic/sqlite/blob/master/CHANGELOG.md) - [Commits](https://gitlab.com/cznic/sqlite/compare/v1.47.0...v1.48.0) --- updated-dependencies: - dependency-name: modernc.org/sqlite dependency-version: 1.48.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * build(deps): bump github.com/gin-contrib/pprof from 1.5.3 to 1.5.4 Bumps [github.com/gin-contrib/pprof](https://github.com/gin-contrib/pprof) from 1.5.3 to 1.5.4. - [Release notes](https://github.com/gin-contrib/pprof/releases) - [Commits](gin-contrib/pprof@v1.5.3...v1.5.4) --- updated-dependencies: - dependency-name: github.com/gin-contrib/pprof dependency-version: 1.5.4 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * refactor: adds dtos for hwinfo * build(deps): bump github.com/go-playground/validator/v10 (#869) Bumps [github.com/go-playground/validator/v10](https://github.com/go-playground/validator) from 10.30.1 to 10.30.2. - [Release notes](https://github.com/go-playground/validator/releases) - [Commits](go-playground/validator@v10.30.1...v10.30.2) --- updated-dependencies: - dependency-name: github.com/go-playground/validator/v10 dependency-version: 10.30.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 (#872) Bumps [github.com/go-jose/go-jose/v4](https://github.com/go-jose/go-jose) from 4.1.3 to 4.1.4. - [Release notes](https://github.com/go-jose/go-jose/releases) - [Commits](go-jose/go-jose@v4.1.3...v4.1.4) --- updated-dependencies: - dependency-name: github.com/go-jose/go-jose/v4 dependency-version: 4.1.4 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump modernc.org/sqlite from 1.48.0 to 1.48.1 (#873) Bumps [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) from 1.48.0 to 1.48.1. - [Changelog](https://gitlab.com/cznic/sqlite/blob/master/CHANGELOG.md) - [Commits](https://gitlab.com/cznic/sqlite/compare/v1.48.0...v1.48.1) --- updated-dependencies: - dependency-name: modernc.org/sqlite dependency-version: 1.48.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github.com/coreos/go-oidc/v3 from 3.17.0 to 3.18.0 (#879) Bumps [github.com/coreos/go-oidc/v3](https://github.com/coreos/go-oidc) from 3.17.0 to 3.18.0. - [Release notes](https://github.com/coreos/go-oidc/releases) - [Commits](coreos/go-oidc@v3.17.0...v3.18.0) --- updated-dependencies: - dependency-name: github.com/coreos/go-oidc/v3 dependency-version: 3.18.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump golang from 1.26.1-alpine to 1.26.2-alpine (#878) Bumps golang from 1.26.1-alpine to 1.26.2-alpine. --- updated-dependencies: - dependency-name: golang dependency-version: 1.26.2-alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump software.sslmate.com/src/go-pkcs12 from 0.7.0 to 0.7.1 (#883) Bumps software.sslmate.com/src/go-pkcs12 from 0.7.0 to 0.7.1. --- updated-dependencies: - dependency-name: software.sslmate.com/src/go-pkcs12 dependency-version: 0.7.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump modernc.org/sqlite from 1.48.1 to 1.48.2 (#882) Bumps [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) from 1.48.1 to 1.48.2. - [Changelog](https://gitlab.com/cznic/sqlite/blob/master/CHANGELOG.md) - [Commits](https://gitlab.com/cznic/sqlite/compare/v1.48.1...v1.48.2) --- updated-dependencies: - dependency-name: modernc.org/sqlite dependency-version: 1.48.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github.com/device-management-toolkit/go-wsman-messages/v2 (#881) Bumps [github.com/device-management-toolkit/go-wsman-messages/v2](https://github.com/device-management-toolkit/go-wsman-messages) from 2.38.0 to 2.38.1. - [Release notes](https://github.com/device-management-toolkit/go-wsman-messages/releases) - [Commits](device-management-toolkit/go-wsman-messages@v2.38.0...v2.38.1) --- updated-dependencies: - dependency-name: github.com/device-management-toolkit/go-wsman-messages/v2 dependency-version: 2.38.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore: release v1.22.9 (#884) * build(deps): bump golang from `c2a1f7b` to `27f8293` Bumps golang from `c2a1f7b` to `27f8293`. --- updated-dependencies: - dependency-name: golang dependency-version: 1.26.2-alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * feat: enable cancelling of requests * build(deps): bump github.com/device-management-toolkit/go-wsman-messages/v2 (#890) Bumps [github.com/device-management-toolkit/go-wsman-messages/v2](https://github.com/device-management-toolkit/go-wsman-messages) from 2.38.1 to 2.38.2. - [Release notes](https://github.com/device-management-toolkit/go-wsman-messages/releases) - [Commits](device-management-toolkit/go-wsman-messages@v2.38.1...v2.38.2) --- updated-dependencies: - dependency-name: github.com/device-management-toolkit/go-wsman-messages/v2 dependency-version: 2.38.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump golang from `27f8293` to `f853308` (#889) Bumps golang from `27f8293` to `f853308`. --- updated-dependencies: - dependency-name: golang dependency-version: 1.26.2-alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github.com/jackc/pgx/v5 from 5.9.1 to 5.9.2 (#892) Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.9.1 to 5.9.2. - [Changelog](https://github.com/jackc/pgx/blob/master/CHANGELOG.md) - [Commits](jackc/pgx@v5.9.1...v5.9.2) --- updated-dependencies: - dependency-name: github.com/jackc/pgx/v5 dependency-version: 5.9.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump modernc.org/sqlite from 1.48.2 to 1.49.1 (#891) Bumps [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) from 1.48.2 to 1.49.1. - [Changelog](https://gitlab.com/cznic/sqlite/blob/master/CHANGELOG.md) - [Commits](https://gitlab.com/cznic/sqlite/compare/v1.48.2...v1.49.1) --- updated-dependencies: - dependency-name: modernc.org/sqlite dependency-version: 1.49.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github.com/device-management-toolkit/go-wsman-messages/v2 (#893) Bumps [github.com/device-management-toolkit/go-wsman-messages/v2](https://github.com/device-management-toolkit/go-wsman-messages) from 2.38.2 to 2.39.0. - [Release notes](https://github.com/device-management-toolkit/go-wsman-messages/releases) - [Commits](device-management-toolkit/go-wsman-messages@v2.38.2...v2.39.0) --- updated-dependencies: - dependency-name: github.com/device-management-toolkit/go-wsman-messages/v2 dependency-version: 2.39.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github.com/rs/zerolog from 1.35.0 to 1.35.1 (#894) Bumps [github.com/rs/zerolog](https://github.com/rs/zerolog) from 1.35.0 to 1.35.1. - [Commits](rs/zerolog@v1.35.0...v1.35.1) --- updated-dependencies: - dependency-name: github.com/rs/zerolog dependency-version: 1.35.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: address issue with calls failing after being cancelled * test: add missing interfaces from upstream PR #731 * ci: ensure mocks arent modified manually * ci: fix release workflow's OpenAPI (#899) * chore: release to bundle latest ui (#903) * build(deps): bump modernc.org/sqlite from 1.49.1 to 1.50.0 (#909) Bumps [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) from 1.49.1 to 1.50.0. - [Changelog](https://gitlab.com/cznic/sqlite/blob/master/CHANGELOG.md) - [Commits](https://gitlab.com/cznic/sqlite/compare/v1.49.1...v1.50.0) --- updated-dependencies: - dependency-name: modernc.org/sqlite dependency-version: 1.50.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * feat: add wireless state get and request API (#885) * fix: update openapi spec (#915) * refactor: add cross-platform system tray support Adds optional system tray UI behind the `tray` build tag and `--tray` runtime flag. The tray pkg wraps fyne.io/systray so the tray manager can be reused by platform-specific installers. Build with: make build-tray Run with: console --tray Signed-off-by: Mike Johanson <mike.johanson@intel.com> * build(deps): bump JulienKode/pull-request-name-linter-action (#932) Bumps [JulienKode/pull-request-name-linter-action](https://github.com/julienkode/pull-request-name-linter-action) from 0.5.0 to 20.1.0. - [Release notes](https://github.com/julienkode/pull-request-name-linter-action/releases) - [Commits](JulienKode/pull-request-name-linter-action@8c05fb9...4fb4c27) --- updated-dependencies: - dependency-name: JulienKode/pull-request-name-linter-action dependency-version: 20.1.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump dotenv-linter/action-dotenv-linter (#931) Bumps [dotenv-linter/action-dotenv-linter](https://github.com/dotenv-linter/action-dotenv-linter) from 2.23.0 to 3.0.0. - [Release notes](https://github.com/dotenv-linter/action-dotenv-linter/releases) - [Commits](dotenv-linter/action-dotenv-linter@9c9a09b...afde61c) --- updated-dependencies: - dependency-name: dotenv-linter/action-dotenv-linter dependency-version: 3.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ganesh Raikhelkar <ganesh.raikhelkar@intel.com> * build(deps): bump cycjimmy/semantic-release-action from 4.1.1 to 6.0.0 (#930) Bumps [cycjimmy/semantic-release-action](https://github.com/cycjimmy/semantic-release-action) from 4.1.1 to 6.0.0. - [Release notes](https://github.com/cycjimmy/semantic-release-action/releases) - [Changelog](https://github.com/cycjimmy/semantic-release-action/blob/main/docs/CHANGELOG.md) - [Commits](cycjimmy/semantic-release-action@b1b432f...b12c8f6) --- updated-dependencies: - dependency-name: cycjimmy/semantic-release-action dependency-version: 6.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump actions/cache from 5.0.3 to 5.0.5 (#929) Bumps [actions/cache](https://github.com/actions/cache) from 5.0.3 to 5.0.5. - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](actions/cache@cdf6c1f...27d5ce7) --- updated-dependencies: - dependency-name: actions/cache dependency-version: 5.0.5 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ganesh Raikhelkar <ganesh.raikhelkar@intel.com> * build(deps): bump actions/upload-artifact from 4.5.0 to 7.0.1 (#928) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.5.0 to 7.0.1. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@6f51ac0...043fb46) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-version: 7.0.1 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump docker/login-action from 3.3.0 to 4.1.0 (#927) Bumps [docker/login-action](https://github.com/docker/login-action) from 3.3.0 to 4.1.0. - [Release notes](https://github.com/docker/login-action/releases) - [Commits](docker/login-action@9780b0c...4907a6d) --- updated-dependencies: - dependency-name: docker/login-action dependency-version: 4.1.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump reviewdog/action-yamllint from 1.20.0 to 1.21.0 (#926) Bumps [reviewdog/action-yamllint](https://github.com/reviewdog/action-yamllint) from 1.20.0 to 1.21.0. - [Release notes](https://github.com/reviewdog/action-yamllint/releases) - [Commits](reviewdog/action-yamllint@1dca3ad...f01d8a4) --- updated-dependencies: - dependency-name: reviewdog/action-yamllint dependency-version: 1.21.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github/codeql-action from 4.33.0 to 4.35.2 (#925) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.33.0 to 4.35.2. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@b1bff81...95e58e9) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.35.2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump codecov/codecov-action from 5.1.1 to 6.0.0 (#923) Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 5.1.1 to 6.0.0. - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@7f8b4b4...57e3a13) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-version: 6.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump reviewdog/action-golangci-lint from 2.8.0 to 2.10.0 (#922) Bumps [reviewdog/action-golangci-lint](https://github.com/reviewdog/action-golangci-lint) from 2.8.0 to 2.10.0. - [Release notes](https://github.com/reviewdog/action-golangci-lint/releases) - [Commits](reviewdog/action-golangci-lint@f9bba13...c76ccea) --- updated-dependencies: - dependency-name: reviewdog/action-golangci-lint dependency-version: 2.10.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github.com/device-management-toolkit/go-wsman-messages/v2 (#924) Bumps [github.com/device-management-toolkit/go-wsman-messages/v2](https://github.com/device-management-toolkit/go-wsman-messages) from 2.39.0 to 2.43.0. - [Release notes](https://github.com/device-management-toolkit/go-wsman-messages/releases) - [Commits](device-management-toolkit/go-wsman-messages@v2.39.0...v2.43.0) --- updated-dependencies: - dependency-name: github.com/device-management-toolkit/go-wsman-messages/v2 dependency-version: 2.43.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Mike <michael.johanson@intel.com> * fix: preserve omitted fields on PATCH (#917) * refactor: address newly discovered goconst findings (#945) * build(deps): bump github/codeql-action from 4.35.2 to 4.35.3 (#944) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.35.2 to 4.35.3. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@95e58e9...e46ed2c) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.35.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump wagoid/commitlint-github-action from 6.2.0 to 6.2.1 (#943) Bumps [wagoid/commitlint-github-action](https://github.com/wagoid/commitlint-github-action) from 6.2.0 to 6.2.1. - [Changelog](https://github.com/wagoid/commitlint-github-action/blob/master/CHANGELOG.md) - [Commits](wagoid/commitlint-github-action@0184f5a...b948419) --- updated-dependencies: - dependency-name: wagoid/commitlint-github-action dependency-version: 6.2.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump actions/dependency-review-action from 4.5.0 to 4.9.0 (#942) Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 4.5.0 to 4.9.0. - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](actions/dependency-review-action@3b139cf...2031cfc) --- updated-dependencies: - dependency-name: actions/dependency-review-action dependency-version: 4.9.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump actions/setup-node from 4.2.0 to 6.4.0 (#941) Bumps [actions/setup-node](https://github.com/actions/setup-node) from 4.2.0 to 6.4.0. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](actions/setup-node@1d0ff46...48b55a0) --- updated-dependencies: - dependency-name: actions/setup-node dependency-version: 6.4.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump step-security/harden-runner from 2.16.0 to 2.19.0 (#939) Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.16.0 to 2.19.0. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](step-security/harden-runner@fa2e9d6...8d3c67d) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-version: 2.19.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump aquasecurity/trivy-action from 0.35.0 to 0.36.0 (#934) Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.35.0 to 0.36.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@57a97c7...ed142fd) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-version: 0.36.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * refactor: extract DatabaseError and NotUniqueError to repoerrors package (#933) Move shared semantic repo error types out of sqldb so a future non-SQL backend can produce them without a lateral package import. Use cases and the HTTP controller continue to match these errors with errors.As; only the package qualifier changes. * build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (#938) Bumps [actions/checkout](https://github.com/actions/checkout) from 5.0.0 to 6.0.2. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@08c6903...de0fac2) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.2 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.3 (#936) Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.4.0 to 2.4.3. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](ossf/scorecard-action@62b2cac...4eaacf0) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-version: 2.4.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump fyne.io/systray from 1.12.0 to 1.12.1 (#937) Bumps [fyne.io/systray](https://github.com/fyne-io/systray) from 1.12.0 to 1.12.1. - [Changelog](https://github.com/fyne-io/systray/blob/master/CHANGELOG.md) - [Commits](fyne-io/systray@v1.12.0...v1.12.1) --- updated-dependencies: - dependency-name: fyne.io/systray dependency-version: 1.12.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github.com/getkin/kin-openapi from 0.133.0 to 0.137.0 (#935) Bumps [github.com/getkin/kin-openapi](https://github.com/getkin/kin-openapi) from 0.133.0 to 0.137.0. - [Release notes](https://github.com/getkin/kin-openapi/releases) - [Commits](getkin/kin-openapi@v0.133.0...v0.137.0) --- updated-dependencies: - dependency-name: github.com/getkin/kin-openapi dependency-version: 0.137.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump step-security/harden-runner from 2.19.0 to 2.19.1 (#946) Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.19.0 to 2.19.1. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](step-security/harden-runner@8d3c67d...a5ad31d) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-version: 2.19.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: add redfish branch to remaining workflows, fix go.mod dependencies, and fix wsman conflicts - Add redfish branch to CI, Docker build, Scorecards, and Trivy workflows - Add back missing redfish-specific dependencies (oapi-codegen/runtime, labstack/gommon) - Fix duplicate GetConnectionEntry and ensureAPFChannelStore in message.go - Add context parameter to SetupWsmanClient calls in boot.go and boot_test.go - All go vet checks now pass * fix: resolve golangci-lint warnings by extracting repeated strings into constants * fix(lint): resolve govet warning in wsman repo without exclusions --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: C, Amarnath <amarnath.c@intel.com> Signed-off-by: S, Devipriya <devipriya.s@intel.com> Signed-off-by: Mike Johanson <mike.johanson@intel.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Madhavi Losetty <madhavi.losetty@intel.com> Co-authored-by: Natalie Gaston <natalie.gaston@intel.com> Co-authored-by: Mike <michael.johanson@intel.com> Co-authored-by: Amarnath C <amarnath.c@intel.com> Co-authored-by: shaoboon <shao.boon.loh@intel.com> Co-authored-by: Ganesh Raikhelkar <ganesh.raikhelkar@intel.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps aquasecurity/trivy-action from 0.35.0 to 0.36.0.
Release notes
Sourced from aquasecurity/trivy-action's releases.
Commits
ed142fdchore: update action version to v0.36.0 in examples (#563)dea62cfchore(deps): Update trivy to v0.70.0 (#559)128d9a8chore: use GitHub Actions as git commit author in bump-trivy workflow (#561)876cf04Upgrade Trivy action version from 0.33.1 to 0.35.0 fixes #549 (#548)dada784Fix typo in GOOGLE_APPLICATION_CREDENTIALS env var name (#547)4a2deecfix: use portable shebang in entrypoint.sh (#545)1994662chore(deps): bump the actions group with 5 updates (#558)6b36659chore: add zizmor config (#557)316aa5aci: add dependabot config (#556)264c9c5test: use pinned digests for trivy-db, trivy-java-db and trivy-checks (#555)