chore(deps): update dependency pleo-io/centralized-templates to v19.0.3 #178
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
pleo-bot-renovate
added
automerge
dependencies
![kodiakhq[bot]](https://avatars.githubusercontent.com/in/29196?s=60&v=4){kind=small}
Branch automerge failureThis PR was configured for branch automerge. However, this is not possible, so it has been raised as a PR instead. |
pleo-bot-renovate
deleted the
dependencies/pleo-io-centralized-templates-19.x
branch
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v19.0.0->v19.0.3Release Notes
pleo-io/centralized-templates
v19.0.3Compare Source
Release Notes
Move vulnerable secret to organization secrets (#626)
A Slack webhook in
deploy_k8s_primary_ecr.yamlwas vulnerable, meaning anyone couldPOSTto the webhook to spam#dev-general. GitHub security analysis also notified us of this.The webhook was confirmed to lead to
#dev-generalin collaboration with Security and SRE and has also been regenerated properly in thepleoSlack workspace.The webhook in the workflow is moved to an organization secret instead of being available in plain text.
🐞 Fixes
Authors: 1
v19.0.2Compare Source
Release Notes
Ensure Docker images are only built when deployed (#627)
This ensures that Docker image builds are only performed as part of releasing a repository that should be deployed - in other words: repositories that have
deploymentEnabled: true.deploymentEnabledis currently set totrueby default, unless otherwise overridden in the.github/templates.yamlrepository configuration.This allows Kotlin libraries to release and allows moons not ready for deployment to skip a redundant build of a container image that's never pushed to ECR or deployed.
🐞 Fixes
mainAuthors: 3
v19.0.1Compare Source
🐞 Fixes
Authors: 1
Configuration
📅 Schedule: Branch creation - "after 8am and before 5pm every weekday" (UTC), Automerge - "after 8am and before 5pm every weekday" (UTC).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Renovate Bot.