Skip to content

Dependency Dashboard #6

Open
Open
Dependency Dashboard#6
@renovate

Description

@renovate
renovate
bot
opened on Oct 23, 2023

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Abandoned Dependencies

The following dependencies have not received updates for an extended period and may be unmaintained.

View abandoned dependencies (3)

[!NOTE]
Packages are marked as abandoned when they exceed the abandonmentThreshold since their last release. Unlike deprecated packages with official notices, abandonment is detected by release inactivity.

Datasource Package Last Updated
github-actions micalevisk/last-issue-action 2023-12-30
github-actions rlespinasse/slugify-value 2022-10-31
github-actions slsa-framework/slsa-github-generator 2025-02-24

Awaiting Schedule

The following updates are awaiting their schedule. To get an update now, click on a checkbox below.

  • chore(deps): update all digest updates (docker.io/library/python, gcr.io/distroless/python3-debian12)
  • chore(deps): update github-actions (docker/login-action, github/codeql-action, gradle/actions, sigstore/cosign-installer, step-security/harden-runner)
  • 🔐 Create all awaiting schedule PRs at once 🔐

Pending Status Checks

The following updates await pending status checks. To force their creation now, click on a checkbox below.

  • chore(deps): update softprops/action-gh-release action to v3

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

Detected Dependencies

dockerfile (1)
Dockerfile (2)
  • docker.io/library/python 3.14.3-slim@sha256:6a27522252aef8432841f224d9baaa6e9fce07b07584154fa0b9a96603af7456 → [Updates: 3.14.4-slim, 3.14.3-slim]
  • gcr.io/distroless/python3-debian12 nonroot@sha256:3aa5d1eb6e9f83a4ed806174bb40296e04758ab95f53b61f976d3df2b57ca289 → [Updates: nonroot]
github-actions (6)
.github/workflows/ci.yaml (4)
  • docker/setup-buildx-action v4.0.0@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd
  • actions/download-artifact v8.0.1@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c
  • actions/download-artifact v8.0.1@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c
  • ubuntu 24.04
.github/workflows/scorecard.yaml (4)
  • actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
  • ossf/scorecard-action v2.4.3@4eaacf0543bb3f2c246792bd56e8cdeffafb205a
  • actions/upload-artifact v7.0.0@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f → [Updates: v7.0.1]
  • github/codeql-action v4.34.1@38697555549f1db7851b81482ff19f1fa5c4fedc → [Updates: v4.35.1]
.github/workflows/standard-build.yaml (35)
  • step-security/harden-runner v2.16.0@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 → [Updates: v2.16.1]
  • actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
  • docker/setup-buildx-action v4.0.0@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd
  • docker/setup-qemu-action v4.0.0@ce360397dd3f832beb865e1373c09c0e9f86d70a
  • endersonmenezes/free-disk-space v3.2.2@7901478139cff6e9d44df5972fd8ab8fcade4db1
  • docker/login-action v4.0.0@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 → [Updates: v4.1.0]
  • docker/metadata-action v6.0.0@030e881283bb7a6894de51c315a6bfe6a94e05cf
  • docker/metadata-action v6.0.0@030e881283bb7a6894de51c315a6bfe6a94e05cf
  • docker/build-push-action v7.0.0@d08e5c354a6adb9ed34480a06d141179aa583294 → [Updates: v7.1.0]
  • rlespinasse/slugify-value v1.4.0@a4879db1eb3db9bbee01dca36f98a8236c2b8239
  • actions/upload-artifact v7.0.0@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f → [Updates: v7.0.1]
  • docker/build-push-action v7.0.0@d08e5c354a6adb9ed34480a06d141179aa583294 → [Updates: v7.1.0]
  • actions/upload-artifact v7.0.0@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f → [Updates: v7.0.1]
  • actions/upload-artifact v7.0.0@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f → [Updates: v7.0.1]
  • marocchino/sticky-pull-request-comment v3.0.2@70d2764d1a7d5d9560b100cbea0077fc8f633987 → [Updates: v3.0.4]
  • actions/upload-artifact v7.0.0@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f → [Updates: v7.0.1]
  • slsa-framework/slsa-github-generator v2.1.0
  • step-security/harden-runner v2.16.0@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 → [Updates: v2.16.1]
  • docker/login-action v4.0.0@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 → [Updates: v4.1.0]
  • sigstore/cosign-installer v4.1.0@ba7bc0a3fef59531c69a25acd34668d6d3fe6f22 → [Updates: v4.1.1]
  • step-security/harden-runner v2.16.0@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 → [Updates: v2.16.1]
  • docker/login-action v4.0.0@b45d80f862d83dbcd57f89517bcf500b2ab88fb2 → [Updates: v4.1.0]
  • actions/download-artifact v8.0.1@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c
  • sigstore/cosign-installer v4.1.0@ba7bc0a3fef59531c69a25acd34668d6d3fe6f22 → [Updates: v4.1.1]
  • step-security/harden-runner v2.16.0@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 → [Updates: v2.16.1]
  • sigstore/cosign-installer v4.1.0@ba7bc0a3fef59531c69a25acd34668d6d3fe6f22 → [Updates: v4.1.1]
  • softprops/action-gh-release v2.6.1@153bb8e04406b158c6c84fc1615b65b24149a1fe → [Updates: v2.6.2, v3.0.0]
  • step-security/harden-runner v2.16.0@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 → [Updates: v2.16.1]
  • actions/download-artifact v8.0.1@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c
  • softprops/action-gh-release v2.6.1@153bb8e04406b158c6c84fc1615b65b24149a1fe → [Updates: v2.6.2, v3.0.0]
  • ubuntu 24.04
  • ubuntu 24.04
  • ubuntu 24.04
  • ubuntu 24.04
  • ubuntu 24.04
.github/workflows/standard-lint.yaml (24)
  • actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
  • oxsecurity/megalinter v9.4.0@8fbdead70d1409964ab3d5afa885e18ee85388bb
  • actions/upload-artifact v7.0.0@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f → [Updates: v7.0.1]
  • actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
  • actions/dependency-review-action v4.9.0@2031cfc080254a8a887f58cffee85186f0e49e48
  • actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
  • gradle/actions v6.0.0@0f4528296b4bc09e8ae0fc7be30185a4ab435545 → [Updates: v6.1.0]
  • actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
  • sigstore/cosign-installer v4.1.0@ba7bc0a3fef59531c69a25acd34668d6d3fe6f22 → [Updates: v4.1.1]
  • actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
  • actions/setup-java v5.2.0@be666c2fcd27ec809703dec50e508c2fdc7f6654
  • actions/setup-dotnet v5.2.0@c2fa09f4bde5ebb9d1777cf28262a3eb3db3ced7
  • github/codeql-action v4.34.1@38697555549f1db7851b81482ff19f1fa5c4fedc → [Updates: v4.35.1]
  • github/codeql-action v4.34.1@38697555549f1db7851b81482ff19f1fa5c4fedc → [Updates: v4.35.1]
  • github/codeql-action v4.34.1@38697555549f1db7851b81482ff19f1fa5c4fedc → [Updates: v4.35.1]
  • actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
  • astral-sh/setup-uv v8.0.0@cec208311dfd045dd5311c1add060b2062131d57 → [Updates: v8.1.0]
  • github/codeql-action v4.34.1@38697555549f1db7851b81482ff19f1fa5c4fedc → [Updates: v4.35.1]
  • ubuntu 24.04
  • ubuntu 24.04
  • ubuntu 24.04
  • ubuntu 24.04
  • ubuntu 24.04
  • ubuntu 24.04
.github/workflows/standard-release.yaml (7)
  • step-security/harden-runner v2.16.0@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 → [Updates: v2.16.1]
  • actions/create-github-app-token v3.0.0@f8d387b68d61c58ab83c6c016672934102569859 → [Updates: v3.1.1]
  • actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
  • actions/setup-node v6.3.0@53b83947a5a98c8d113130e565377fae1a50d02f
  • cycjimmy/semantic-release-action v6.0.0@b12c8f6015dc215fe37bc154d4ad456dd3833c90
  • ubuntu 24.04
  • node 24
.github/workflows/standard-schedule.yaml (9)
  • actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
  • actions/cache v5.0.4@668228422ae6a00e4ad889ee87cd7109ec5666a7 → [Updates: v5.0.5]
  • lycheeverse/lychee-action v2.8.0@8646ba30535128ac92d33dfc9133794bfdd9b411
  • micalevisk/last-issue-action v2.3.0@0d40124cc99ac8601c2516007f0c98ef3d27537b
  • peter-evans/create-issue-from-file v6.0.0@fca9117c27cdc29c6c4db3b86c48e4115a786710
  • aquasecurity/trivy-action 0.35.0@57a97c7e7821a5776cebc9bb87c984fa69cba8f1
  • github/codeql-action v4.34.1@38697555549f1db7851b81482ff19f1fa5c4fedc → [Updates: v4.35.1]
  • ubuntu 24.04
  • ubuntu 24.04
gradle-wrapper (1)
gradle/wrapper/gradle-wrapper.properties (1)
  • gradle 9.4.0 → [Updates: 9.4.1]
regex (2)
.github/workflows/standard-build.yaml (1)
  • aquasecurity/trivy 0.69.3 → [Updates: 0.70.0]
.github/workflows/standard-lint.yaml (1)
  • zizmor 1.22.0 → [Updates: 1.23.1]
renovate-config-presets (1)
.renovaterc.json
  • Check this box to trigger a request for Renovate to run again on this repository

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions