Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update all non-major dependencies #140

Merged
merged 1 commit into from
Apr 1, 2024
Merged

chore(deps): update all non-major dependencies #140

merged 1 commit into from
Apr 1, 2024

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Apr 1, 2024

Mend Renovate

This PR contains the following updates:

Package Type Update Change Age Adoption Passing Confidence
docker.io/curlimages/curl minor 8.6.0 -> 8.7.1 age adoption passing confidence
docker.io/library/gradle stage minor 8.6.0-jdk21 -> 8.7.0-jdk21 age adoption passing confidence
ghcr.io/miracum/loinc-conversion patch v1.14.8 -> v1.14.10 age adoption passing confidence
org.springframework.cloud:spring-cloud-dependencies (source) dependencies patch 2023.0.0 -> 2023.0.1 age adoption passing confidence

Release Notes

curl/curl-container (docker.io/curlimages/curl)

v8.7.1

Compare Source

Changed
  • bump to curl 8.7.1
miracum/loinc-conversion (ghcr.io/miracum/loinc-conversion)

v1.14.10

Compare Source

Miscellaneous Chores
  • deps-dev: bump follow-redirects from 1.15.4 to 1.15.6 (#​53) (e571d59)

v1.14.9

Compare Source

Miscellaneous Chores
spring-cloud/spring-cloud-release (org.springframework.cloud:spring-cloud-dependencies)

v2023.0.1

Configuration

📅 Schedule: Branch creation - "every 3 months on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@github-actions GitHub Actions
Copy link

github-actions bot commented Apr 1, 2024

Target ghcr.io/miracum/fhir-gateway:pr-140 (debian 12.5)

Vulnerabilities (18)

Package ID Severity Installed Version Fixed Version
libc6 CVE-2010-4756 LOW 2.36-9+deb12u4
libc6 CVE-2018-20796 LOW 2.36-9+deb12u4
libc6 CVE-2019-1010022 LOW 2.36-9+deb12u4
libc6 CVE-2019-1010023 LOW 2.36-9+deb12u4
libc6 CVE-2019-1010024 LOW 2.36-9+deb12u4
libc6 CVE-2019-1010025 LOW 2.36-9+deb12u4
libc6 CVE-2019-9192 LOW 2.36-9+deb12u4
libexpat1 CVE-2023-52425 HIGH 2.5.0-1
libexpat1 CVE-2024-28757 HIGH 2.5.0-1
libexpat1 CVE-2023-52426 LOW 2.5.0-1
libgcc-s1 CVE-2023-4039 MEDIUM 12.2.0-14
libgcc-s1 CVE-2022-27943 LOW 12.2.0-14
libpng16-16 CVE-2021-4214 LOW 1.6.39-2
libstdc++6 CVE-2023-4039 MEDIUM 12.2.0-14
libstdc++6 CVE-2022-27943 LOW 12.2.0-14
libuuid1 CVE-2024-28085 HIGH 2.38.1-5+b1 2.38.1-5+deb12u1
libuuid1 CVE-2022-0563 LOW 2.38.1-5+b1
zlib1g CVE-2023-45853 CRITICAL 1:1.2.13.dfsg-1

No Misconfigurations found

@github-actions GitHub Actions
Copy link

github-actions bot commented Apr 1, 2024

🦙 MegaLinter status: ✅ SUCCESS

Descriptor Linter Files Fixed Errors Elapsed time
✅ ACTION actionlint 4 0 0.06s
✅ DOCKERFILE hadolint 2 0 0.19s
✅ EDITORCONFIG editorconfig-checker 66 0 0.36s
✅ GROOVY npm-groovy-lint 2 0 13.1s
✅ JAVA checkstyle 18 0 7.85s
✅ JSON eslint-plugin-jsonc 5 0 2.96s
✅ JSON jsonlint 5 0 0.25s
✅ JSON prettier 5 0 2.17s
✅ JSON v8r 5 0 4.0s
✅ MARKDOWN markdownlint 2 0 0.63s
✅ PYTHON bandit 1 0 1.22s
✅ PYTHON black 1 0 0.71s
✅ PYTHON flake8 1 0 0.66s
✅ PYTHON isort 1 0 0.29s
✅ PYTHON mypy 1 0 8.23s
✅ PYTHON ruff 1 0 0.01s
✅ REPOSITORY checkov yes no 16.79s
✅ REPOSITORY gitleaks yes no 0.79s
✅ REPOSITORY git_diff yes no 0.02s
✅ REPOSITORY grype yes no 13.02s
✅ REPOSITORY kics yes no 5.65s
✅ REPOSITORY secretlint yes no 1.38s
✅ REPOSITORY syft yes no 2.54s
✅ REPOSITORY trivy yes no 7.95s
✅ REPOSITORY trivy-sbom yes no 5.54s
✅ REPOSITORY trufflehog yes no 11.63s
✅ SQL sql-lint 1 0 0.35s
✅ XML xmllint 1 0 0.02s
✅ YAML prettier 17 0 1.36s
✅ YAML yamllint 17 0 0.64s

See detailed report in MegaLinter reports

You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.

MegaLinter is graciously provided by OX Security

@chgl chgl merged commit 192cc47 into master Apr 1, 2024
13 checks passed
@renovate renovate bot deleted the renovate/all-minor-patch branch April 1, 2024 14:06
miracum-bot pushed a commit that referenced this pull request Apr 1, 2024
@semantic-release-bot
chore(release): 3.12.12 [skip ci]
c836912 
## [3.12.12](v3.12.11...v3.12.12) (2024-04-01)

### Miscellaneous Chores

* **deps:** update all non-major dependencies ([#137](#137)) ([a5da826](a5da826))
* **deps:** update all non-major dependencies ([#140](#140)) ([192cc47](192cc47))
* **deps:** update docker.io/bitnami/kafka:3.7.0 docker digest to c1e54c8 ([#138](#138)) ([dc35d0a](dc35d0a))
* **deps:** update docker.io/library/gradle:8.6.0-jdk21 docker digest to a337805 ([#134](#134)) ([fc461ce](fc461ce))
* **deps:** update docker.io/library/postgres:16.2 docker digest to 6b841c8 ([#139](#139)) ([c20f312](c20f312))
* **deps:** update gcr.io/distroless/java21-debian12:nonroot docker digest to 68e1197 ([#135](#135)) ([3f2f231](3f2f231))
* **deps:** update ghcr.io/miracum/fhir-pseudonymizer docker tag to v2.21.7 ([#132](#132)) ([9758677](9758677))
* **deps:** update github-actions ([#136](#136)) ([40fa5fd](40fa5fd))
* **deps:** update miracum/.github action to v1.6.3 ([#141](#141)) ([9abfead](9abfead))
@miracum-bot
Copy link

🎉 This PR is included in version 3.12.12 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@chgl chgl chgl approved these changes

Assignees
No one assigned
Labels
released
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@miracum-bot @chgl