Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v4.1.1
->v4.1.7
v4.3.1
->v4.3.3
v2.2.3
->v2.3.0
^8.3.0
->^9.0.0
^27.0.0
->^28.0.0
v3.24.9
->v3.25.10
v2.3.1
->v2.3.3
v2.7.0
->v2.8.1
Release Notes
actions/checkout (actions/checkout)
v4.1.7
Compare Source
v4.1.6
Compare Source
v4.1.5
Compare Source
What's Changed
user.email
to be41898282+github-actions[bot]@​users.noreply.github.com
by @cory-miller in https://github.com/actions/checkout/pull/1707Full Changelog: actions/checkout@v4.1.4...v4.1.5
v4.1.4
Compare Source
extensions.worktreeConfig
when disablingsparse-checkout
by @jww3 in https://github.com/actions/checkout/pull/1692v4.1.3
Compare Source
What's Changed
actions/checkout
version inupdate-main-version.yml
by @jww3 in https://github.com/actions/checkout/pull/1650sparse-checkout
by @jww3 in https://github.com/actions/checkout/pull/1656Full Changelog: actions/checkout@v4.1.2...v4.1.3
v4.1.2
Compare Source
sparse-checkout
option is not present @dscho in https://github.com/actions/checkout/pull/1598actions/upload-artifact (actions/upload-artifact)
v4.3.3
Compare Source
What's Changed
@actions/artifact
dependency to v2.1.6 by @eggyhead in https://github.com/actions/upload-artifact/pull/565Full Changelog: actions/upload-artifact@v4.3.2...v4.3.3
v4.3.2
Compare Source
What's Changed
@actions/artifact
dependency to v2.1.5 and@actions/core
to v1.0.1 by @eggyhead in https://github.com/actions/upload-artifact/pull/562New Contributors
Full Changelog: actions/upload-artifact@v4.3.1...v4.3.2
coverallsapp/github-action (coverallsapp/github-action)
v2.3.0
Compare Source
What's Changed
New Contributors
Full Changelog: coverallsapp/github-action@v2.2.3...v2.3.0
eslint/eslint (eslint)
v9.4.0
Compare Source
v9.3.0
Compare Source
v9.2.0
Compare Source
v9.1.1
Compare Source
v9.1.0
Compare Source
v9.0.0
Compare Source
jest-community/eslint-plugin-jest (eslint-plugin-jest)
v28.6.0
Compare Source
Features
v28.5.0
Compare Source
Features
@typescript-eslint/utils
v7 as a direct dependency (#1567) (1476f10)v28.4.0
Compare Source
Features
await
in some cases (#1574) (a407098)v28.3.0
Compare Source
Features
v28.2.0
Compare Source
Features
@jest/globals
package (#1543) (744d4f6)28.1.1 (2024-04-06)
Bug Fixes
v28.1.1
Compare Source
Bug Fixes
v28.1.0
Compare Source
Features
prefer-importing-jest-globals
rule (#1490) (37478d8), closes #1101v28.0.0
Compare Source
Bug Fixes
instanceof RegExp
check for ESLint v9 compatibility (#1542) (af4a9c9)Features
@typescript-eslint/eslint-plugin
v5 (#1530) (150e355)no-if
rule (#1528) (f976fc8)snapshot
processor andflat/snapshot
config (#1532) (98087f9)@typescript-eslint/utils
to v6 (#1508) (dc6e8cd)BREAKING CHANGES
snapshot
processor andflat/snapshot
config@typescript-eslint/eslint-plugin
v5no-if
in favor ofno-conditional-in-test
github/codeql-action (github/codeql-action)
v3.25.10
Compare Source
v3.25.9
Compare Source
v3.25.8
Compare Source
v3.25.7
Compare Source
v3.25.6
Compare Source
v3.25.5
Compare Source
v3.25.4
Compare Source
v3.25.3
Compare Source
v3.25.2
Compare Source
v3.25.1
Compare Source
v3.25.0
Compare Source
v3.24.11
Compare Source
v3.24.10
Compare Source
ossf/scorecard-action (ossf/scorecard-action)
v2.3.3
Compare Source
What's Changed
For a full changelist of what these include, see the v5.0.0-rc1 and v5.0.0-rc2 release notes.
Documentation
ossf/scorecard
workflow instead of maintaining an example by @spencerschrock in https://github.com/ossf/scorecard-action/pull/1352Full Changelog: ossf/scorecard-action@v2.3.1...v2.3.3
v2.3.2
Compare Source
step-security/harden-runner (step-security/harden-runner)
v2.8.1
Compare Source
What's Changed
The previous implementation incorrectly identified large GitHub-hosted runners as self-hosted runners. As a result, harden-runner was not executing on these large GitHub-hosted runners.
Full Changelog: step-security/harden-runner@v2...v2.8.1
v2.8.0
Compare Source
What's Changed
Release v2.8.0 by @h0x0er and @varunsh-coder in https://github.com/step-security/harden-runner/pull/416
This release includes:
These enhancements are based on insights from the XZ Utils incident, aimed at improving observability and detections during the build process.
Full Changelog: step-security/harden-runner@v2...v2.8.0
v2.7.1
Compare Source
What's Changed
Release v2.7.1 by @varunsh-coder, @h0x0er, @ashishkurmi in https://github.com/step-security/harden-runner/pull/397
This release:
Full Changelog: step-security/harden-runner@v2.7.0...v2.7.1
Configuration
📅 Schedule: Branch creation - "before 4am on the first day of the month" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Mend Renovate. View repository job log here.