Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We鈥檒l occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency snyk to v2 - autoclosed #22

Closed
wants to merge 1 commit into from
Closed

Update dependency snyk to v2 - autoclosed #22

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jul 24, 2019
edited

This PR contains the following updates:

Package Type Update Change
snyk devDependencies major 1.136.3 -> 2.0.0

Release Notes

snyk/snyk

v2.0.0

Compare Source

Features
  • send graph instead of tree in case of ff and npm (00c3330)
  • use windows compatible && not ; in scripts (e3c54b0)
BREAKING CHANGES
  • This will fail running the script if snyk-protect fails.

v1.198.0

Compare Source

Bug Fixes
  • only send targetFile on test when needed (b99e974)
Features
  • send api version number in header to API (a08cd5f)
  • support project name option in test command (3fbf139)

v1.197.0

Compare Source

Features
  • update the sbt plugin to accommodate a github issue (88a4b68)

v1.196.0

Compare Source

Features
  • add check for for monitor (b5aba48)

v1.195.1

Compare Source

Bug Fixes
  • revert to nodejs8 on standalone binaries (68ada6a)

v1.195.0

Compare Source

Features
  • docker images based on nodejs10 (5010531)
  • standalone binaries based on nodejs 10 (f6acf66)

v1.194.0

Compare Source

Bug Fixes
  • upgrade sbt-plugin to support native packager (76326e4)
Features

v1.193.3

Compare Source

Bug Fixes
  • add build-essential for Python (35eec56)

v1.193.2

Compare Source

Bug Fixes
  • Updating lodash to latest version (8bea435)

v1.193.1

Compare Source

Bug Fixes
  • install git in snyk docker files (dedc7f0)

v1.193.0

Compare Source

Features
  • update sbt plugin, so output will contain packageFormatVersion (ebf3915)

v1.192.6

Compare Source

Bug Fixes
  • protect: only patch when version on disk satisfies vuln (153e070)
  • do not assume patch ranges are pure semver notation (598ca96)
  • eslint issues (c1c259f)
  • only match original vuln snapshot compatible versions (80c3717)
  • properly fail on patch failure (170126b)
  • skip patch when dep package.json is malformed (3f617b6)

v1.192.5

Compare Source

Bug Fixes
  • update mvn and php plugins to get rid of vuln lodash (8ebdc1a)
  • update vulnerable lodash (c9281cb)

v1.192.4

Compare Source

Bug Fixes
  • Upgrade Python3 to 3.7 instead of 3.5 (ca6958b)
  • Use pip instead of pip3 in both images (b2f7176)

v1.192.3

Compare Source

Bug Fixes
  • isDocker is a boolean flag in analytics (8dfee30)

v1.192.2

Compare Source

Bug Fixes

v1.192.1

Compare Source

Bug Fixes
  • reinstate missing tests (c28d85e)

v1.192.0

Compare Source

Features
  • refactor snyk test http errors (0b8baa7)

v1.191.0

Compare Source

Features

v1.190.0

Compare Source

Features

v1.189.0

Compare Source

Features

v1.188.0

Compare Source

Bug Fixes
Features
  • upgrade sbt plugin to use custom dependency generation plugin (e5c8864)

v1.187.1

Compare Source

Bug Fixes
  • send depgraph as a bool (aba32fa)

v1.187.0

Compare Source

Features
  • send analytics for docker and depgraph (bfb38b2)

v1.186.0

Compare Source

Features
  • Missing policy and failed to load policy errors. (4ada94b)

v1.185.6

Compare Source

Bug Fixes
  • remove unuseed function prop (239de91)

v1.185.5

Compare Source

Bug Fixes
  • alpine binary built just as any other (3ecb38c)
  • make sure binaries are built on node8 (40d0599)

v1.185.4

Compare Source

Bug Fixes
  • scan all Gradle subprojects when computing config attributes (44da7f5)

v1.185.3

Compare Source

Bug Fixes
  • add alpine platform to standalone binary release assets (fd44fc0)
  • preserve all additional deptree fields when pruning (040b328)
  • publishing container cannot run with TTY (2a83dd1)

v1.185.2

Compare Source

Bug Fixes
  • apt update after adding docker repository (5f62bec)

v1.185.1

Compare Source

Bug Fixes
  • add docker image for Gradle 5 (82e3527)
  • make docker images smaller (a692570)

v1.185.0

Compare Source

Bug Fixes
  • fix undefined in error for node_modules traversal (2f70dc5)
Features
  • pruning of big-trees if a flag is specified (7d93b5d)
  • remove isOutdated functionality from snyk test (92e95e4)

v1.184.0

Compare Source

Features

v1.183.0

Compare Source

Bug Fixes
Features
  • add isDocker to monitor analytics (2ee3d41)

v1.182.0

Compare Source

Features
  • Add branch analytics back (5f71703)

v1.181.0

Compare Source

Features
  • Add more analytics around monitor (acb34dd)

v1.180.2

Compare Source

Bug Fixes
  • use let/const instead of var (43f416c)

v1.180.1

Compare Source

Bug Fixes
  • add alpine platform to standalone binary release assets (82ef58c)

v1.180.0

Compare Source

Features
  • Release typescripted sbt with timeout handling (6ea9891)

v1.179.1

Compare Source

Bug Fixes
  • name and version in gomodules (7cbc9e1)

v1.179.0

Compare Source

Bug Fixes
  • align go modules package manager naming with backend (63f4597)
Features
  • allow monitor for go modules (4a9149d)

v1.178.1

Compare Source

Bug Fixes
  • sbt-plugin stdin hanging (5602d4a)

v1.178.0

Compare Source

Features
  • experimental command line flag to print the dependency tree (c431bc4)

v1.177.1

Compare Source

Bug Fixes
  • add logging to sbt-plugin (c724c17)

v1.177.0

Compare Source

Features
  • update snyk-php-plugin version (ce6474b)

v1.176.0

Compare Source

Bug Fixes
  • show stacktrace only when in debug mode (31c42d9)
Features

v1.175.4

Compare Source

Bug Fixes
  • drop empty dependencies (payload size optimization) (dd4f623)

v1.175.3

Compare Source

Bug Fixes
  • remove auto authentication on all commands other than auth (4e0c35f)

v1.175.2

Compare Source

Bug Fixes
  • better error message when scanning Python projects (b4dba65)

v1.175.1

Compare Source

Bug Fixes
  • typescriptify request.js (a75c021)

v1.175.0

Compare Source

Features
  • Gradle improvements: Android config selection, verified Gradle 2.x support (c8bad2d)

v1.174.2

Compare Source

Bug Fixes

v1.174.1

Compare Source

Bug Fixes
  • temporarily remove new Gradle configuration options from help (d2d4fa7)

v1.174.0

Compare Source

Features
  • revert gradle plugin to undo breaking change (49405e9)

v1.173.2

Compare Source

Bug Fixes
  • added a link to the Gradle documentation (f0abc1f)
  • gradle legacy --configuration flag and scanning from child project (c6dfaa0)

v1.173.1

Compare Source

Bug Fixes
  • Improve dockerfile instruction parser (2d4471f)

v1.173.0

Compare Source

Features
  • preparation for go modules support (de23aa3)

v1.172.0

Compare Source

Features
  • select Gradle confugiration via name/attributes, simplify analytics (41d9d56)

v1.171.1

Compare Source

Bug Fixes
  • Revert auth refactor which made snyk protect require auth (e34a6fb)

v1.171.0

Compare Source

Features
  • add branch and pkg name to monitor analytics (b91d2ae)

v1.170.0

Compare Source

Features
  • make human-readable err message when --file was passed incorrectly (6e2336a)

v1.169.2

Compare Source

Bug Fixes
  • remove incorrect Gradle logging (d1bc261)

v1.169.1

Compare Source

Bug Fixes
  • enable debug output from Gradle plugin (c4ab5f6)

v1.169.0

Compare Source

Features
  • Vulns to use exit code 1, errors 2 (2053048)

v1.168.0

Compare Source

Features
  • display dockerfile instructions in the web UI (953c822)

v1.167.2

Compare Source

Bug Fixes
  • use actual package manager for analytics (b86288c)

v1.167.1

Compare Source

Bug Fixes
  • oracle linux version detection (86bb4e0)

v1.167.0

Compare Source

Features
  • allow passing color for docker cli response (165c29d)

v1.166.1

Compare Source

Bug Fixes
  • bump python plugin to fix bug with urls in req.txt (cd8f34e)

v1.166.0

Compare Source

Features
  • pass dockerfileLayers in metadata (1c5d925)

v1.165.2

Compare Source

Bug Fixes
  • do not scan all Gradle subprojects unless requested (4c303b7)

v1.165.1

Compare Source

Bug Fixes
  • better wording for the "revisit policy" prompt. (d7d5ce4)

v1.165.0

Compare Source

Bug Fixes
  • optimize scanning of large Go projects (bfef4fa)
Features
  • Check for mandatory targetFile to avoid runtime errors (21b3fa1)
  • release coursier suport fot for sbt (8312e85)

v1.164.0

Compare Source

Features
  • improve error handling when no files detected (49c7fb9)

v1.163.3

Compare Source

Bug Fixes
  • correct remediation broken after last refactoring (42c2341)

v1.163.2

Compare Source

Bug Fixes
  • switch to openjdk in java-related docker images (67f0582)

v1.163.1

Compare Source

Bug Fixes
  • display the actual name of the missing file during failed remediation patch (25acf41)
  • reinstate injecting remediation hints into snyk-test response (c6527e8)

v1.163.0

Compare Source

Features
  • use depGraph lib for npm and yarn snyk-test path (a085a05)

v1.162.2

Compare Source

Bug Fixes
  • remove debug logging from the code (a4e9e8b)
  • Removing shell options causing too verbose output (9cccce4)
  • support Gradle wrapper projects with whitespaces in path (20335e5)

v1.162.1

Compare Source

Bug Fixes
  • display monitor error code in the error message (e19969d)

v1.162.0

Compare Source

Features
  • send target data on monitor to registry (868a907)

v1.161.2

Compare Source

Bug Fixes
  • Add package manager data to scratch images (ebd3b4a)

v1.161.1

Compare Source

Bug Fixes
  • improve the performance of Go scans (c81bfe1)

v1.161.0

Compare Source

Features
  • release new python plugin version that handlers markers better (f3c8c52)

v1.160.0

Compare Source

Features
  • if a non-existing Gradle config is specified, suggest existing ones (fd49ee4)

v1.159.0

Compare Source

Features
  • release mvn plugin with better test matrix (a688e5b)

v1.158.0

Compare Source

Features

v1.157.2

Compare Source

Bug Fixes
  • newline formatting for the suggestion to use --all-sub-projects (f2ffa95)

v1.157.1

Compare Source

Bug Fixes
  • do not offer remediation advice when scanning a non-local package (df104e3)

v1.157.0

Compare Source

Features
  • suggests --all-sub-projects flag for multi-project gradle builds (af339ac)

v1.156.0

Compare Source

Features
  • Release gradle plugin with improved tests per Java versions (ec33221)

v1.155.0

Compare Source

Features
  • Bumping snyk-docker-plugin version (096b470)

v1.154.1

Compare Source

Bug Fixes
  • handle PHP projects with interdependent packages (efc1006)
  • improve gzip compression of the payloads to handle some larger ones (f762374)

v1.154.0

Compare Source

Features
  • Release improved project naming for csproj behind a flag (49ad843)

v1.153.0

Compare Source

Features
  • new debug logs around plugin's inspect (cc957d0)

v1.152.0

Compare Source

Features
  • upgrade go-plugin with more logs and error handling (faeec34)

v1.151.2

Compare Source

Bug Fixes
  • do not fail if csproj not found (6bb10a1)

v1.151.1

Compare Source

Bug Fixes
  • handle dependency cycles in Gradle projects (95bd1e6)

v1.151.0

Compare Source

Features
  • better handling of .NET projects, not failing on an empty projects list in packages.config files (8793a30)

v1.150.1

Compare Source

Bug Fixes
  • enable a workaround for Gradle Android configuration resolution problem (c7cbf12)

v1.150.0

Compare Source

v1.149.0

Compare Source

v1.148.0

Compare Source

v1.147.4

Compare Source

v1.147.3

Compare Source

v1.147.2

Compare Source

v1.147.1

Compare Source

v1.147.0

Compare Source

v1.146.0

Compare Source

v1.145.0

Compare Source

v1.144.0

Compare Source

v1.143.6

Compare Source

v1.143.5

Compare Source

v1.143.4

Compare Source

v1.143.3

Compare Source

v1.143.2

Compare Source

v1.143.1

Compare Source

v1.143.0

Compare Source

v1.142.0

Compare Source

v1.141.0

Compare Source

v1.140.0

Compare Source

v1.139.0

Compare Source

v1.138.0

Compare Source

v1.137.0

Compare Source

Renovate configuration

馃搮 Schedule: At any time (no schedule defined).

馃殾 Automerge: Disabled by config. Please merge this manually once you are satisfied.

鈾伙笍 Rebasing: Whenever PR becomes conflicted, or if you modify the PR title to begin with "rebase!".

馃敃 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot. View repository job log here.

@renovate renovate bot changed the title Update dependency snyk to v2 Update dependency snyk to v2 - autoclosed Jul 24, 2019
@renovate renovate bot closed this Jul 24, 2019
@renovate renovate bot deleted the renovate/snyk-2.x branch July 24, 2019 17:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@renovate-bot