New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat(build): automatically apply security updates for release branches #5758
feat(build): automatically apply security updates for release branches #5758
Conversation
… release branches Signed-off-by: slonka <slonka@users.noreply.github.com>
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This is a great initiative!
Was this considered as an option: https://github.com/G-Rath/check-with-osv-detector ?
I think it's just a different CLI and I'm just using the official one. From what I saw the action does not do anything interesting just spits out the scan result, we'd still have to parse it and attempt dependency update. |
Signed-off-by: slonka <slonka@users.noreply.github.com>
Co-authored-by: Charly Molter <charly@molter.io> Signed-off-by: Krzysztof Słonka <slonka@users.noreply.github.com>
Signed-off-by: slonka <slonka@users.noreply.github.com>
NICE! |
Example PRs:
Example output:
Once the PR is merged a new one won't be created. Also running action multiple times just updates the PR if there are things to update.
Signed-off-by: slonka slonka@users.noreply.github.com
Checklist prior to review
syscall.Mkfifo
have equivalent implementation on the other OS --UPGRADE.md
? --> Changelog:
entry here or add aci/
label to run fewer/more tests?