k8s-infra-cherrypick-robot
ef2b2668de
Bump the all group with 2 updates ( #11190 )
...
Bumps the all group with 2 updates: [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) and [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action ).
Updates `actions/dependency-review-action` from 4.2.4 to 4.2.5
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](733dd5d4a5...5bbc3ba658https://github.com/aquasecurity/trivy-action/releases )
- [Commits](062f259268...d710430a67
2024-04-01 23:33:14 -07:00
k8s-infra-cherrypick-robot
aa947f5bd4
Bump the all group with 3 updates ( #11166 )
...
Bumps the all group with 3 updates: [actions/dependency-review-action](https://github.com/actions/dependency-review-action ), [actions/add-to-project](https://github.com/actions/add-to-project ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `actions/dependency-review-action` from 4.1.3 to 4.2.4
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](9129d7d40b...733dd5d4a5https://github.com/actions/add-to-project/releases )
- [Commits](0609a2702e...1b844f0c5ahttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](3ab4101902...1b1aada464
2024-03-26 04:43:19 -07:00
k8s-infra-cherrypick-robot
13f8b28251
Bump the all group with 4 updates ( #11140 )
...
Bumps the all group with 4 updates: [actions/checkout](https://github.com/actions/checkout ), [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ), [docker/login-action](https://github.com/docker/login-action ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `actions/checkout` from 4.1.1 to 4.1.2
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](b4ffde65f4...9bb56186c3https://github.com/docker/setup-buildx-action/releases )
- [Commits](0d103c3126...2b51285047https://github.com/docker/login-action/releases )
- [Commits](343f7c4344...e92390c5fbhttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](8a470fddaf...3ab4101902
2024-03-19 14:53:20 -07:00
dependabot[bot]
7fdce1640b
Bump actions/dependency-review-action from 4.0.0 to 4.1.3 ( #11016 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 4.0.0 to 4.1.3.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](4901385134...9129d7d40b
2024-02-26 03:17:40 -08:00
dependabot[bot]
e9e70c8c3d
Bump actions/dependency-review-action from 3.1.5 to 4.0.0 ( #10894 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.1.5 to 4.0.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](c74b580d73...4901385134
2024-01-22 22:50:35 +01:00
dependabot[bot]
1fb39c92cd
Bump actions/dependency-review-action from 3.1.4 to 3.1.5 ( #10831 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.1.4 to 3.1.5.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](01bc87099b...c74b580d73
2024-01-13 15:39:35 +01:00
dependabot[bot]
45f8262d05
Bump actions/dependency-review-action from 3.1.3 to 3.1.4 ( #10725 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.1.3 to 3.1.4.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](7bbfa034e7...01bc87099b
2023-12-06 08:14:33 +01:00
dependabot[bot]
7e2e70135e
Bump actions/dependency-review-action from 3.1.2 to 3.1.3 ( #10661 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.1.2 to 3.1.3.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](fde92acd08...7bbfa034e7
2023-11-20 12:51:11 +01:00
dependabot[bot]
211e8d8eb8
Bump actions/dependency-review-action from 3.1.1 to 3.1.2 ( #10641 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](9f45b2463b...fde92acd08
2023-11-13 13:37:18 +01:00
dependabot[bot]
c32d4262e1
Bump actions/dependency-review-action from 3.1.0 to 3.1.1 ( #10619 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](6c5ccdad46...9f45b2463b
2023-11-07 04:44:02 +01:00
dependabot[bot]
15021952e1
Bump actions/checkout from 4.1.0 to 4.1.1 ( #10551 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](8ade135a41...b4ffde65f4
2023-10-24 20:55:07 +02:00
dependabot[bot]
fe4c15d7ba
Bump actions/checkout from 4.0.0 to 4.1.0 ( #10441 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](3df4ab11eb...8ade135a41
2023-09-25 05:00:58 -07:00
dependabot[bot]
64e55d461f
Bump actions/checkout from 3.5.3 to 4.0.0 ( #10425 )
...
* Bump actions/checkout from 3.5.3 to 4.0.0
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.5.3 to 4.0.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.5.3...3df4ab11eba7bda6032a0b82a6bb43b11571feac )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
* fix vesion comments
Signed-off-by: cpanato <ctadeu@gmail.com>
---------
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: cpanato <ctadeu@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: cpanato <ctadeu@gmail.com>
2023-09-18 06:40:33 -07:00
dependabot[bot]
adfb27af8d
Bump actions/dependency-review-action from 3.0.8 to 3.1.0 ( #10401 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.8 to 3.1.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](f6fff72a32...6c5ccdad46
2023-09-11 05:00:11 -07:00
dependabot[bot]
1ce25127bd
Bump actions/checkout from 3.5.3 to 3.6.0 ( #10354 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.5.3 to 3.6.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](c85c95e3d7...f43a0e5ff2
2023-08-28 04:55:43 -07:00
dependabot[bot]
300a60f724
Bump actions/dependency-review-action from 3.0.6 to 3.0.8 ( #10333 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.6 to 3.0.8.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](1360a344cc...f6fff72a32
2023-08-26 16:59:22 -07:00
dependabot[bot]
4eeee031c7
Bump actions/checkout from 3.5.2 to 3.5.3 ( #10076 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.5.2 to 3.5.3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](8e5e7e5ab8...c85c95e3d7
2023-06-12 05:35:49 -07:00
dependabot[bot]
712e10d417
Bump actions/dependency-review-action from 3.0.4 to 3.0.6 ( #10042 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.4 to 3.0.6.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](f46c48ed6d...1360a344cc
2023-06-05 14:15:06 -07:00
dependabot[bot]
156273bf39
Bump actions/checkout from 3.5.0 to 3.5.2 ( #9870 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.5.0 to 3.5.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](8f4b7f8486...8e5e7e5ab8
2023-04-22 02:21:12 -07:00
dependabot[bot]
5d4827af0c
Bump actions/checkout from 3.4.0 to 3.5.0 ( #9798 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.4.0 to 3.5.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](24cb908017...8f4b7f8486
2023-04-04 08:05:54 -07:00
dependabot[bot]
43168a7fe1
Bump actions/checkout from 3.2.0 to 3.4.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.2.0 to 3.4.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](755da8c3cf...24cb908017
2023-03-21 13:42:46 +00:00
dependabot[bot]
5c0b707643
Bump actions/dependency-review-action from 3.0.3 to 3.0.4 ( #9766 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.3 to 3.0.4.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](c090f4e553...f46c48ed6d
2023-03-21 06:33:08 -07:00
dependabot[bot]
dba7ae04f5
Bump actions/dependency-review-action from 3.0.2 to 3.0.3 ( #9727 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](0ff3da6f81...c090f4e553
2023-03-14 07:32:16 -07:00
Carlos Tadeu Panato Junior
bb60e02e96
CI updates ( #9440 )
...
* add labels to dependabot prs
Signed-off-by: cpanato <ctadeu@gmail.com>
* sync hashes and versions dependabot can update the version comment now
Signed-off-by: cpanato <ctadeu@gmail.com>
Signed-off-by: cpanato <ctadeu@gmail.com>
2022-12-22 07:37:26 -08:00
dependabot[bot]
87146d6d93
Bump actions/checkout from 3.1.0 to 3.2.0 ( #9425 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](93ea575cb5...755da8c3cf
2022-12-20 09:33:43 -08:00
dependabot[bot]
07db4997b3
Bump actions/dependency-review-action from 3.0.1 to 3.0.2 ( #9424 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](11310527b4...0ff3da6f81
2022-12-20 07:37:45 -08:00
dependabot[bot]
d24c97c63e
Bump actions/dependency-review-action from 3.0.0 to 3.0.1 ( #9319 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](30d5821115...11310527b4
2022-11-21 13:14:12 -08:00
dependabot[bot]
b6c6305523
Bump actions/dependency-review-action from 2.5.1 to 3.0.0 ( #9301 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.5.1 to 3.0.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](0efb1d1d84...30d5821115
2022-11-15 14:24:47 -08:00
dependabot[bot]
8c698778a3
Bump actions/dependency-review-action from 2.5.0 to 2.5.1 ( #9237 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.5.0 to 2.5.1.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](fd675ced9c...0efb1d1d84
2022-10-31 09:24:45 -07:00
dependabot[bot]
98505a2c19
Bump actions/dependency-review-action from 2.4.0 to 2.5.0 ( #9179 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.4.0 to 2.5.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](375c537008...fd675ced9c
2022-10-19 10:43:02 -07:00
dependabot[bot]
ea254fbcb1
Bump actions/checkout from 3.0.2 to 3.1.0 ( #9135 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.0.2 to 3.1.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](2541b1294d...93ea575cb5
2022-10-12 12:35:02 -07:00
dependabot[bot]
f192ffe302
Bump actions/dependency-review-action from 2.1.0 to 2.4.0 ( #9085 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.1.0 to 2.4.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](23d1ffffb6...375c537008
2022-09-24 08:04:03 -07:00
dependabot[bot]
d7373c9140
Bump actions/dependency-review-action from 2.0.4 to 2.1.0 ( #8954 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.0.4 to 2.1.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](94145f3150...23d1ffffb6
2022-08-22 15:28:08 -07:00
dependabot[bot]
c3d43315b0
Bump actions/dependency-review-action from 2.0.2 to 2.0.4 ( #8836 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.0.2 to 2.0.4.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](1c59cdf2a9...94145f3150
2022-07-18 05:39:16 -07:00
James Strong
0f30cb04e4
Ci pin deps ( #8720 )
...
* pinning deps for CI
* update all the actions and pin them
* missed one
* update helm to another action
* typo on step
* typo on step
* Update .github/workflows/ci.yaml
Co-authored-by: Jintao Zhang <tao12345666333@163.com>
Co-authored-by: Jintao Zhang <tao12345666333@163.com>
2022-06-23 16:55:20 -07:00
dependabot[bot]
1a24bc26a1
Bump actions/dependency-review-action from 1 to 2 ( #8703 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 1 to 2.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](https://github.com/actions/dependency-review-action/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: actions/dependency-review-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-15 15:17:10 -07:00
Ricardo Katz
43a5b7a52d
Add dependency review enforcement ( #8443 )
2022-04-07 09:31:58 -07:00
