Eric Sorenson
f5b971718e
Merge pull request #1067 from ahpook/ahpook/custom-instructions
...
CodeQL / Analyze (actions) (push) Has been cancelled
CodeQL / Analyze (javascript-typescript) (push) Has been cancelled
CodeQL / Analyze (ruby) (push) Has been cancelled
Add .github/copilot-instructions.md for Copilot coding agent
2026-03-06 14:41:37 -08:00
Eric Sorenson
f51df6d455
Updates from code review
2026-03-05 20:39:09 -08:00
Eric Sorenson
cffae74507
Add .github/copilot-instructions.md for Copilot coding agent
...
Add instructions file to help Copilot coding agent work efficiently with
this repository. Includes build/validation commands, project layout,
CI checks, style rules, testing patterns, and important notes about
the codebase conventions.
2026-03-05 18:46:42 -08:00
Eric Sorenson
2031cfc080
Merge pull request #1064 from actions/ahpook/release-4.9.0
...
Updates for release 4.9.0
2026-03-03 14:08:16 -08:00
Eric Sorenson
d02fa39f79
Updates for release 4.9.0
...
- Bumps dependencies to fix vulnerabilities, supersedes dependabot PRs
- New version in package.json
- Slight correction to the release process in CONTRIBUTING.md
- Rebuilds dist/ packaged files
Closes #1062 #1063 #1028 #972 #971 #970
2026-03-02 16:15:13 -08:00
Eric Sorenson
4038a34c4b
Merge pull request #1021 from actions/dependabot/github_actions/actions/checkout-6
...
Bump actions/checkout from 4 to 6
2026-03-02 16:00:21 -08:00
Eric Sorenson
a632b8386b
Merge pull request #1058 from actions/dependabot/github_actions/actions/stale-10.2.0
...
Bump actions/stale from 10.1.0 to 10.2.0
2026-03-02 15:59:31 -08:00
Eric Sorenson
57a3d46a7b
Merge pull request #1060 from jantiebot/main
...
fix: only get scorecard levels if user wants to see the OpenSSF scorecard
2026-02-27 15:05:18 -08:00
Eric Sorenson
5ecdc4b578
Merge pull request #1045 from forks-felickz/main
...
Feat: Add `Patched Version` to `Vulnerabilities` summary
2026-02-27 15:03:52 -08:00
Chad Bentz
e8c2f9a12c
fix: remove inferrable type annotation to pass eslint
2026-02-27 22:58:04 +00:00
Chad Bentz
0e129e113c
Prettier - Refactor summary table rendering for improved readability
2026-02-27 22:30:03 +00:00
Chad Bentz
aa60746a92
Add 'show-patched-versions' option to configuration and update summary handling
...
- Introduced 'show-patched-versions' input in action.yml to control visibility of patched versions in vulnerability summaries.
- Updated default configuration and related functions to handle the new option.
- Enhanced tests to verify behavior with and without the patched version column.
2026-02-27 14:58:54 -05:00
Chad Bentz
e404798400
Merge upstream actions/dependency-review-action main
...
Syncs fork with upstream, resolving conflicts in package.json
(keeping semver + upgrading spdx-expression-parse to ^4.0.0),
regenerating package-lock.json and dist/ folder.
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com >
2026-02-27 14:04:27 -05:00
jantiebot
24398f008e
chore: revert dist changes
2026-02-27 12:41:22 +01:00
jantiebot
7863651912
fix: only get scorecard levels if user wants to see the OpenSSF scorecard
2026-02-26 18:16:44 +01:00
dependabot[bot]
17d14c08d9
Bump actions/stale from 10.1.0 to 10.2.0
...
Bumps [actions/stale](https://github.com/actions/stale ) from 10.1.0 to 10.2.0.
- [Release notes](https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/stale/compare/v10.1.0...v10.2.0 )
---
updated-dependencies:
- dependency-name: actions/stale
dependency-version: 10.2.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-02-23 01:42:33 +00:00
Justin Holguín
dea54b4342
Merge pull request #1057 from actions/juxtin/case-sensitivity
...
Make purl comparisons case insensitive
2026-02-20 14:09:58 -08:00
Justin Holguín
8cf743c0ea
Make purl comparisons case insensitive
2026-02-20 22:01:04 +00:00
Justin Holguín
b49f407d39
Merge pull request #1056 from actions/juxtin/fix-exclusion-match
...
Compare normalized purls to account for encoding quirks
2026-02-20 10:27:39 -08:00
Justin Holguín
f68b94a696
Merge remote-tracking branch 'origin/main' into juxtin/fix-exclusion-match
2026-02-20 16:33:25 +00:00
Eric Sorenson
05fe457637
Merge pull request #1054 from actions/ahpook/release-4.8.3
...
Changes for Release 4.8.3
2026-02-19 17:25:10 -08:00
Justin Holguín
2ced98cbe8
Compare normalized purls to account for encoding quirks
2026-02-20 00:02:42 +00:00
Eric Sorenson
3a8496cb71
Update generated package files for v4.8.3
2026-02-18 21:56:46 -08:00
Eric Sorenson
0f22a01592
Update CONTRIBUTING for new release process
...
Fixes some newline damage, grammatical errors, and includes new instructions for pushing a major version branch instead of force-pushing a tag.
2026-02-18 21:54:45 -08:00
Eric Sorenson
58be34364d
Updating package versions for 4.8.3
2026-02-18 21:45:59 -08:00
Eric Sorenson
9284e0c621
Merge pull request #931 from actions/dependabot/npm_and_yarn/spdx-licenses-208b55449f
...
Bump spdx-expression-parse from 3.0.1 to 4.0.0 in the spdx-licenses group across 1 directory
2026-02-18 21:31:42 -08:00
dependabot[bot]
8b766562f0
Bump spdx-expression-parse in the spdx-licenses group across 1 directory
...
Bumps the spdx-licenses group with 1 update in the / directory: [spdx-expression-parse](https://github.com/jslicense/spdx-expression-parse.js ).
Updates `spdx-expression-parse` from 3.0.1 to 4.0.0
- [Commits](https://github.com/jslicense/spdx-expression-parse.js/compare/v3.0.1...v4.0.0 )
---
updated-dependencies:
- dependency-name: spdx-expression-parse
dependency-version: 4.0.0
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: spdx-licenses
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-02-19 05:22:14 +00:00
Eric Sorenson
43f5f029f5
Merge pull request #1052 from actions/juxtin/fix-long-summaries
...
Properly truncate long summaries and catch errors
2026-02-18 21:18:45 -08:00
Eric Sorenson
f0033fc4d6
Merge pull request #1053 from actions/dependabot/npm_and_yarn/fast-xml-parser-5.3.6
...
Bump fast-xml-parser from 5.3.5 to 5.3.6
2026-02-18 08:49:06 -08:00
Copilot
a6c34d8785
Address review feedback: deterministic tests, cached normalization, simplified promisePool ( #9 )
...
* Initial plan
* Apply PR review comments: deterministic delays, cached normalization, simplified promisePool
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Improve comment clarity for ecoLower field
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
---------
Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com >
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
2026-02-18 06:33:39 -05:00
dependabot[bot]
b379e2e05f
Bump fast-xml-parser from 5.3.5 to 5.3.6
...
Bumps [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser ) from 5.3.5 to 5.3.6.
- [Release notes](https://github.com/NaturalIntelligence/fast-xml-parser/releases )
- [Changelog](https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md )
- [Commits](https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.5...v5.3.6 )
---
updated-dependencies:
- dependency-name: fast-xml-parser
dependency-version: 5.3.6
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-02-18 05:07:50 +00:00
Justin Holguín
2e1cf54a50
Properly truncate long summaries and catch errors
2026-02-17 22:46:59 +00:00
Lewis Jones
68e9887ce6
Merge pull request #1050 from actions/dependabot/npm_and_yarn/fast-xml-parser-5.3.5
...
Bump fast-xml-parser from 5.3.3 to 5.3.5
2026-02-17 15:10:48 +00:00
dependabot[bot]
a7c7f3b9b1
Bump fast-xml-parser from 5.3.3 to 5.3.5
...
Bumps [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser ) from 5.3.3 to 5.3.5.
- [Release notes](https://github.com/NaturalIntelligence/fast-xml-parser/releases )
- [Changelog](https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md )
- [Commits](https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.3...v5.3.5 )
---
updated-dependencies:
- dependency-name: fast-xml-parser
dependency-version: 5.3.5
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-02-11 19:21:05 +00:00
Copilot
539c79be65
Implement review feedback: concurrency limiting, semver coercion, logging improvements, and test coverage ( #8 )
...
* Initial plan
* Implement PR review comments: concurrency limiting, semver coerce, improved logging, test fixes
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Fix promise pool race condition and remove .then() usage
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Add tests for semver coercion and promise pool concurrency, simplify Map to Set
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
---------
Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com >
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
2026-02-09 14:28:09 -05:00
Copilot
ee66ea100d
Implement review fixes: semver library, scoping, case-insensitive matching, error logging, and configurable fail behavior ( #7 )
...
* Initial plan
* Implement PR review comment fixes: semver library, error handling, case-insensitive matching, and rows scoping
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Fix formatting and rebuild dist folder
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Fix fail-closed logic and remove redundant @types/semver
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Apply review feedback: fix empty range handling, add trimming, implement range check caching
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Apply review feedback: align fail-closed behavior for empty version, fix TypeScript typing, normalize cache keys
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Fix linter errors, optimize cache keys, and improve trimming logic
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Add fail-open option for patch selection and optimize with preTrimmed flag
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Enforce fail-closed with explicit validation, fix debug messages, normalize cache keys
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Fix unreachable ternary in debug message and eliminate duplicate trim operation
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Normalize eco comparison and add preNormalized option to avoid duplicate range conversion
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Remove unnecessary cache, fix function signature, and correct semver comment
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Make includePrerelease conditional based on version type to preserve range semantics
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Improve debug message to report both invalid version and range when applicable
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Convert to JSDoc, add explicit type annotation, and remove redundant initializer
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
---------
Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com >
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
2026-02-08 16:05:04 -05:00
Copilot
2af9bac14d
Add patched version column to vulnerability summary with multi-range support ( #5 )
...
* Initial plan
* Initial plan for adding patched versions to vulnerability summary
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Add patched version column to vulnerability summary table
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Optimize API calls to use Set and Promise.all for better performance
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Remove type assertions and optimize ecosystem lookups with normalization
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Extract patch version type checking into helper function for clarity
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Support multiple version ranges per package in advisory lookup
Handle scenarios where the same package has multiple vulnerable version ranges
with different patched versions (e.g., GHSA-gwq6-fmvp-qp68 with .NET packages).
- Store all vulnerability entries with version ranges, not just one per ecosystem
- Implement version range matching to select correct patch version
- Match package by ecosystem, name, AND version range
- Add comprehensive test for multi-range scenario
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Fix first_patched_version extraction to handle string format
The GitHub Advisory API returns first_patched_version as a simple string
(e.g., "112.0.0"), not an object with an identifier field. Updated
extractPatchVersionId to handle string format primarily while maintaining
backward compatibility with object format.
- Fixed extractPatchVersionId to check for string first
- Updated test mocks to match actual API response format
- Added specific test for RestSharp GHSA-4rr6-2v9v-wcpc case
- Verified with actual API responses from multiple advisories
Fixes issue where patched versions were showing as "N/A" instead of
the actual version number.
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Rebuild dist with patched version fix
The previous fix to extractPatchVersionId wasn't deployed because the dist/
folder (compiled JavaScript) wasn't rebuilt. This commit rebuilds and packages
the action with npm run build && npm run package to include the fix.
Changes in dist/:
- Updated extractPatchVersionId to handle string format first
- Includes all async vulnerability summary logic with API calls
- Properly extracts patched versions from GitHub Advisory API
This should resolve the issue where patched versions showed as "N/A" in
actual GitHub Actions runs.
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
* Add comprehensive debug logging for patch version lookup
Added detailed debug logging to help troubleshoot patch version issues:
- Log when fetching advisory data from API
- Log number of vulnerability entries found
- Log each patch info entry added with details
- Log when no patch version is found
- Log during lookup phase with package details
- Log when patch version is found vs not found
- Log available entries when no match is found
This will make it much easier to diagnose issues in GitHub Actions debug mode.
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
---------
Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com >
Co-authored-by: felickz <1760475+felickz@users.noreply.github.com >
2026-02-06 18:12:20 -05:00
Ahmed ElMallah
98884d411b
Merge pull request #1036 from actions/ae/vuln-fixes
...
Addressing vulnerabilities
2026-01-06 08:12:33 -08:00
ahmed3lmallah
76bfce5cd7
optimize import
2026-01-05 15:50:21 -08:00
ahmed3lmallah
d45151f498
Addressing vulnerabilities
2026-01-05 15:39:34 -08:00
Barry Gordon
774d14bf50
Merge pull request #1020 from actions/dependabot/npm_and_yarn/multi-75e6bc5210
...
Bump js-yaml
2025-11-28 12:56:19 +00:00
Barry Gordon
20b998d4e2
Merge pull request #1024 from actions/brrygrdn/update-glob
...
Upgrade glob to address a vulnerability
2025-11-28 11:46:08 +00:00
Barry Gordon
ad048f729f
Upgrade glob to a fixed version
2025-11-27 18:26:19 +00:00
dependabot[bot]
1d60e0d095
Bump actions/checkout from 4 to 6
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4 to 6.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v4...v6 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: '6'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-11-27 18:20:43 +00:00
Barry Gordon
35ccfd2548
Merge pull request #1005 from actions/dependabot/github_actions/actions/setup-node-6
...
Bump actions/setup-node from 4 to 6
2025-11-27 18:19:46 +00:00
Barry Gordon
a2014a181b
Merge pull request #1003 from actions/dependabot/github_actions/github/codeql-action-4
...
Bump github/codeql-action from 3 to 4
2025-11-27 18:19:21 +00:00
Barry Gordon
1a0268586f
Merge pull request #995 from actions/dependabot/github_actions/actions/stale-10.1.0
...
Bump actions/stale from 9.1.0 to 10.1.0
2025-11-27 18:18:38 +00:00
dependabot[bot]
14edcb1b2a
Bump js-yaml
...
Bumps [js-yaml](https://github.com/nodeca/js-yaml ) to 3.14.2 and updates ancestor dependency . These dependencies need to be updated together.
Updates `js-yaml` from 3.14.1 to 3.14.2
- [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md )
- [Commits](https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2 )
Updates `js-yaml` from 4.1.0 to 4.1.1
- [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md )
- [Commits](https://github.com/nodeca/js-yaml/compare/3.14.1...3.14.2 )
---
updated-dependencies:
- dependency-name: js-yaml
dependency-version: 3.14.2
dependency-type: indirect
- dependency-name: js-yaml
dependency-version: 4.1.1
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-11-17 22:03:38 +00:00
dependabot[bot]
805c0b2856
Bump actions/setup-node from 4 to 6
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 4 to 6.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](https://github.com/actions/setup-node/compare/v4...v6 )
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-version: '6'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-11-11 00:20:49 +00:00
Kevin Dangoor
125b995082
Merge pull request #1017 from actions/remove-non-working-workflow
...
GitHub Actions can't push to our protected main
2025-11-10 19:16:56 -05:00
Kevin Dangoor
289863a7c4
GitHub Actions can't push to our protected main
...
Our main branch is protected, which means that our Actions workflow
cannot push changes directly to main. This removes the non-functional
workflow.
2025-11-10 17:46:39 -05:00
Kevin Dangoor
3c4e3dcb1a
Merge pull request #1016 from actions/dra-release
...
4.8.2 release
2025-11-10 17:45:29 -05:00
Kevin Dangoor
02930b2072
Update CONTRIBUTING to reflect new guidelines
...
External contributors should not build the project and commit
the build output any more.
2025-11-10 17:35:58 -05:00
Kevin Dangoor
49ffd9f636
Update CONTRIBUTING to reflect the need to build
...
Builds aren't happening automatically (or required to happen
manually), so we need to update the release steps to include
building the project.
2025-11-10 14:45:40 -05:00
Kevin Dangoor
70cb25ec56
4.8.2 release
2025-11-10 14:44:24 -05:00
Kevin Dangoor
ebabd31cea
Merge pull request #1008 from danielhardej/danielhardej-patch-20251023
...
Fix PURL parsing to prevent mismatch for scoped packages
2025-11-07 18:20:38 -05:00
Dan Hardej
19f9360983
Update package-lock.json
2025-11-08 07:15:17 +08:00
Dan Hardej
5fd2f98b4f
Bump @types/jest to version 29.5.14
2025-11-07 12:39:28 +08:00
Dan Hardej
28647f4804
Fix PURL parsing by removing encodeURI
2025-11-07 12:32:03 +08:00
Kevin Dangoor
f620fd175c
Merge pull request #1013 from actions/dangoor/token-fix
...
Remove bad token reference
2025-11-06 08:40:41 -08:00
Kevin Dangoor
9b42b7e9a9
Remove bad token reference
2025-11-05 20:29:51 -05:00
Kevin Dangoor
4004cfa3a2
Merge pull request #1012 from actions/dangoor/saner-workflows
...
Generate dist files on main branch
2025-11-05 17:23:09 -08:00
Kevin Dangoor
94004c3444
Remove dist directory change blocking
...
We don't really need to prevent changes to the dist directory
being committed. If someone does push a change to the dist directory,
they'd be able to test with that. Plus the files will be regenerated
on main, so that we know the final dist files are correct.
This also fixes up some paths in the ci-update-dist.yml workflow
which generates the dist files on main.
2025-11-05 18:04:42 -05:00
Kevin Dangoor
75e65b4d81
Generate dist files on main branch
...
This adapts an approach taken by the Gradle actions in order to
generate the dist files on the main branch rather than having
every contributor need to generate them. (In fact, people will no
longer be able to submit PRs with the dist files updated). This
change is important because the current approach means that
people encounter merge conflicts all the time and will need to
keep regenerating the dist files in order to land their change.
2025-11-05 17:30:02 -05:00
Kevin Dangoor
355d25e5a7
Merge pull request #921 from jsoref/spelling
...
Spelling
2025-11-04 18:48:20 -08:00
Josh Soref
d456baec30
spelling: vulnerabilities
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-11-04 21:39:50 -05:00
Josh Soref
66054da10b
spelling: vuln
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-11-04 21:39:50 -05:00
Josh Soref
247f07b0c8
spelling: summary
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-11-04 21:39:50 -05:00
Josh Soref
5975520ad2
spelling: statement
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-11-04 20:17:52 -05:00
Josh Soref
b4849e7628
spelling: lodash
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-11-04 20:17:52 -05:00
Josh Soref
752c04656e
spelling: github
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-11-04 20:17:52 -05:00
Josh Soref
4fa8b92807
Add alt text for screen to create a PAT
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-11-04 20:17:44 -05:00
Josh Soref
3660056ed3
Add alt text for screen showing Release Action
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-11-04 20:17:34 -05:00
Josh Soref
5f8348ab03
Add alt text for screen to create arelease
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-11-04 20:16:44 -05:00
Josh Soref
6b5a983daf
link: full list of configuration options
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-11-04 20:08:49 -05:00
Josh Soref
8fd9b22286
link: the configuration
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-11-04 20:08:49 -05:00
Josh Soref
c4b82d3047
Reword comment-summary-in-pr description
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-11-04 20:08:49 -05:00
Josh Soref
622445f2a8
Remove unused import
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-11-04 20:08:49 -05:00
Kevin Dangoor
3f464ea511
Merge pull request #1009 from danielhardej/patch-1
...
Update README to include `allow-dependencies-licenses` example
2025-11-04 14:35:46 -08:00
Lewis Jones
8e51299cdf
Merge pull request #1007 from gitulisca/gitulisca/summary-size-limit
...
Make handleLargeSummary also update core.summary
2025-10-27 12:51:46 +00:00
Art Leo
7a990117b1
Add dist files
2025-10-27 17:41:42 +11:00
Dan Hardej
99ce29f02e
Update README with allowed-dependencies-licenses example
2025-10-23 16:31:35 +08:00
gitulisca
140b44b7bf
Remove trailing whitespace from blank line
...
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com >
2025-10-22 19:12:18 +11:00
Art Leo
4603a62e00
Make handleLargeSummary also update core.summary
2025-10-22 17:52:52 +11:00
Eric Sorenson
07b91577a3
Merge pull request #920 from jsoref/issue-919
2025-10-17 14:30:12 -07:00
Josh Soref
3084754c49
Scope warning about private repositories
2025-10-15 14:16:01 -04:00
dependabot[bot]
0f943b29ae
Bump github/codeql-action from 3 to 4
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 3 to 4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: '4'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-10-13 01:01:57 +00:00
Eric Sorenson
40c09b7dc9
Merge pull request #1001 from actions/ahpook/v4.8.1-release
2025-10-10 14:06:00 -07:00
Eric Sorenson
45529485b5
Bump version for 4.8.1 release
2025-10-10 12:55:32 -07:00
Eric Sorenson
e63da9a041
Merge pull request #1000 from actions/ahpook/deprecation-redux
2025-10-10 12:21:31 -07:00
Eric Sorenson
71365c76bc
(bug) Fix spamming link test in deprecation warning (again)
...
We'd thought that the syntax in #974 would avoid auto-linking
but didn't check closely enough, and now the deprecation issue
it links to cannot be loaded due to having too many references.
This updates the text to point to a new issue in a way that...
I hope... will not be auto-linked.
2025-10-10 09:37:13 -07:00
dependabot[bot]
2440f520c8
Bump actions/stale from 9.1.0 to 10.1.0
...
Bumps [actions/stale](https://github.com/actions/stale ) from 9.1.0 to 10.1.0.
- [Release notes](https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/stale/compare/v9.1.0...v10.1.0 )
---
updated-dependencies:
- dependency-name: actions/stale
dependency-version: 10.1.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-10-06 01:01:54 +00:00
Barry Gordon
56339e523c
Merge pull request #988 from actions/brrygrdn/rc-4.8.0
...
Bump to 4.8.0
2025-09-26 16:05:17 +01:00
Barry Gordon
1688b745f3
Bump to a 4.8.0
2025-09-26 15:45:28 +01:00
Barry Gordon
31c9f175b9
Merge pull request #987 from actions/rc-4.7.4
...
Prepare release of v4.7.4
2025-09-26 15:20:06 +01:00
Barry Gordon
eacde7836e
Update version
2025-09-26 14:42:22 +01:00
Barry Gordon
81510090e4
Merge pull request #986 from actions/brrygrdn/rc-4.7.4
...
Batch some contributions for release
2025-09-26 14:32:46 +01:00
Barry Gordon
b472ec914b
Add a quick regression test for the artefact summary
2025-09-26 13:34:03 +01:00
Matt Mencel
e0cedc52dc
feat: add large summary handling with artifact upload
...
When the dependency review summary exceeds GitHub's size limit (1024k), upload it as an artifact and provide a link in the comment. This ensures users can still access the full review details even when the summary is too large to display directly.
2025-09-26 12:55:14 +01:00
Jasper Kamerling
e3fdf0f899
This ensures large allow or deny lists don't create huge comments
2025-09-26 12:49:38 +01:00
Lewis Jones
6fad417932
Merge pull request #978 from actions/ljones140/make-ruby-code-scannable
...
Make Ruby Code Scannable
2025-08-29 10:39:17 +01:00
Lewis Jones
e86e9692ad
Update scripts/scan_pr_lib.rb
...
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com >
2025-08-28 16:24:02 +01:00
Lewis Jones
85c8e53ab7
Scan ruby
2025-08-28 16:12:23 +01:00
Lewis Jones
c6a7eb7252
Extract ruby code
...
So can be scanned by code scanning
2025-08-28 16:11:56 +01:00
Claire Song
595b5aeba7
Update package version ( #975 )
2025-08-26 13:00:34 -07:00
Claire Song
fc5fd661aa
Claire153/fix spamming mentioned issue ( #974 )
...
* Keep the issue number and remove the url to avoid linking every PR running the action to that issue
2025-08-26 12:46:02 -07:00
Ashely Tenesaca
d38d1a4f40
Merge pull request #965 from actions/dependabot/npm_and_yarn/multi-c22e25d29b
...
Bump brace-expansion
2025-08-20 17:40:22 -04:00
Ashely Tenesaca
8d420b827c
Merge branch 'main' into dependabot/npm_and_yarn/multi-c22e25d29b
2025-08-20 17:28:38 -04:00
Ashely Tenesaca
bde01290d3
Merge pull request #966 from actions/ashelytc/add-permissions
...
Add explicit permissions to workflow files
2025-08-20 09:33:56 -04:00
Ashely Tenesaca
ab524903e8
remove ruby
2025-08-19 17:11:41 -04:00
Ashely Tenesaca
ef00a0afbb
add permissions to workflows
2025-08-19 20:55:24 +00:00
dependabot[bot]
74c8179d39
Bump brace-expansion
...
Bumps and [brace-expansion](https://github.com/juliangruber/brace-expansion ). These dependencies needed to be updated together.
Updates `brace-expansion` from 1.1.11 to 1.1.12
- [Release notes](https://github.com/juliangruber/brace-expansion/releases )
- [Commits](https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12 )
Updates `brace-expansion` from 2.0.1 to 2.0.2
- [Release notes](https://github.com/juliangruber/brace-expansion/releases )
- [Commits](https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12 )
---
updated-dependencies:
- dependency-name: brace-expansion
dependency-version: 1.1.12
dependency-type: indirect
- dependency-name: brace-expansion
dependency-version: 2.0.2
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-08-18 22:33:26 +00:00
Claire Song
bc41886e18
Cut 4.7.2 version release ( #964 )
...
* Cut 4.7.2 version release
* Bump dependency minor versions
2025-08-18 11:17:54 -07:00
Kevin Dangoor
1c73553e36
Merge pull request #960 from ahpook/ahpook/address-docs-dashes
...
Address discrepancy between docs and reality
2025-08-18 14:02:19 -04:00
dependabot[bot]
fac3d41a58
Bump the minor-updates group across 1 directory with 5 updates ( #956 )
...
Bumps the minor-updates group with 5 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [ts-jest](https://github.com/kulshekhar/ts-jest ) | `29.4.0` | `29.4.1` |
| [yaml](https://github.com/eemeli/yaml ) | `2.8.0` | `2.8.1` |
| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) | `20.19.7` | `20.19.10` |
| [eslint-plugin-prettier](https://github.com/prettier/eslint-plugin-prettier ) | `5.5.1` | `5.5.4` |
| [typescript](https://github.com/microsoft/TypeScript ) | `5.8.3` | `5.9.2` |
Updates `ts-jest` from 29.4.0 to 29.4.1
- [Release notes](https://github.com/kulshekhar/ts-jest/releases )
- [Changelog](https://github.com/kulshekhar/ts-jest/blob/main/CHANGELOG.md )
- [Commits](https://github.com/kulshekhar/ts-jest/compare/v29.4.0...v29.4.1 )
Updates `yaml` from 2.8.0 to 2.8.1
- [Release notes](https://github.com/eemeli/yaml/releases )
- [Commits](https://github.com/eemeli/yaml/compare/v2.8.0...v2.8.1 )
Updates `@types/node` from 20.19.7 to 20.19.10
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
Updates `eslint-plugin-prettier` from 5.5.1 to 5.5.4
- [Release notes](https://github.com/prettier/eslint-plugin-prettier/releases )
- [Changelog](https://github.com/prettier/eslint-plugin-prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/eslint-plugin-prettier/compare/v5.5.1...v5.5.4 )
Updates `typescript` from 5.8.3 to 5.9.2
- [Release notes](https://github.com/microsoft/TypeScript/releases )
- [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release-publish.yml )
- [Commits](https://github.com/microsoft/TypeScript/compare/v5.8.3...v5.9.2 )
---
updated-dependencies:
- dependency-name: ts-jest
dependency-version: 29.4.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: minor-updates
- dependency-name: yaml
dependency-version: 2.8.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: minor-updates
- dependency-name: "@types/node"
dependency-version: 20.19.10
dependency-type: direct:development
update-type: version-update:semver-patch
dependency-group: minor-updates
- dependency-name: eslint-plugin-prettier
dependency-version: 5.5.4
dependency-type: direct:development
update-type: version-update:semver-patch
dependency-group: minor-updates
- dependency-name: typescript
dependency-version: 5.9.2
dependency-type: direct:development
update-type: version-update:semver-minor
dependency-group: minor-updates
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-18 10:31:31 -07:00
Claire Song
d8073c4b76
Merge pull request #958 from actions/claire153/deprecate-deny-lists
...
Deprecate deny lists
2025-08-18 12:33:17 -04:00
Claire Song
77184c6339
Fix tests
2025-08-18 15:10:48 +00:00
Eric Sorenson
5558c35bb3
Address discrepancy between docs and reality
...
The documentation used to say that you needed to transform keys
in external config files from using `-` to `_`, but in reality
the code transforms `-` to `_` regardless of where they occur.
See 4b4ec08f7b
Closes #909
2025-08-15 17:16:55 -07:00
Claire Song
e85d57a50e
Remove test code
2025-08-15 16:15:02 +00:00
Claire Song
3eb62794c5
Re-add test package. Only show warning in summary if option is used. Update copy.
2025-08-15 15:49:35 +00:00
Claire Song
7cf33ac2f2
Remove test deny list
2025-08-14 17:58:31 +00:00
Claire Song
493bee0560
Remove test package
2025-08-14 17:46:53 +00:00
Claire Song
659a1e1bd0
Update copy and styling
2025-08-14 17:44:34 +00:00
Claire Song
6e80be31cd
Add one more line break
2025-08-14 16:39:53 +00:00
Claire Song
3fb5c613f0
Add one more line break
2025-08-14 16:32:20 +00:00
Claire Song
7d16ba5d7e
Add one more line break
2025-08-14 15:43:03 +00:00
Claire Song
a92a9da9c8
Add one more line break
2025-08-14 15:39:37 +00:00
Claire Song
c1fa9df06b
Build
2025-08-14 14:43:45 +00:00
Claire Song
6e2bbef080
Add deprecation warning, fix lint issues
2025-08-14 14:25:52 +00:00
Claire Song
9ca24b6906
Add new package
2025-08-13 21:22:20 +00:00
Claire Song
70e1d26338
Test deny list
2025-08-13 21:07:58 +00:00
Roman Iakovlev
89c7383074
Merge pull request #946 from actions/dependabot/npm_and_yarn/minor-updates-9b599382cb
...
Bump the minor-updates group across 1 directory with 10 updates
2025-07-22 16:15:34 +02:00
Roman Iakovlev
40f2ab01b7
Update dist
2025-07-22 14:06:49 +00:00
Roman Iakovlev
2bedf4a221
Update dist
2025-07-22 14:01:55 +00:00
dependabot[bot]
87052cdc7b
Bump the minor-updates group across 1 directory with 10 updates
...
Bumps the minor-updates group with 10 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core ) | `1.10.1` | `1.11.1` |
| [@actions/github](https://github.com/actions/toolkit/tree/HEAD/packages/github ) | `6.0.0` | `6.0.1` |
| [got](https://github.com/sindresorhus/got ) | `14.4.5` | `14.4.7` |
| [ts-jest](https://github.com/kulshekhar/ts-jest ) | `29.2.5` | `29.4.0` |
| [yaml](https://github.com/eemeli/yaml ) | `2.3.4` | `2.8.0` |
| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) | `20.16.0` | `20.19.7` |
| [eslint-plugin-prettier](https://github.com/prettier/eslint-plugin-prettier ) | `5.1.3` | `5.5.1` |
| [nodemon](https://github.com/remy/nodemon ) | `3.1.9` | `3.1.10` |
| [prettier](https://github.com/prettier/prettier ) | `3.2.5` | `3.6.2` |
| [typescript](https://github.com/microsoft/TypeScript ) | `5.4.5` | `5.8.3` |
Updates `@actions/core` from 1.10.1 to 1.11.1
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/core/RELEASES.md )
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/core )
Updates `@actions/github` from 6.0.0 to 6.0.1
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/github/RELEASES.md )
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/github )
Updates `got` from 14.4.5 to 14.4.7
- [Release notes](https://github.com/sindresorhus/got/releases )
- [Commits](https://github.com/sindresorhus/got/compare/v14.4.5...v14.4.7 )
Updates `ts-jest` from 29.2.5 to 29.4.0
- [Release notes](https://github.com/kulshekhar/ts-jest/releases )
- [Changelog](https://github.com/kulshekhar/ts-jest/blob/main/CHANGELOG.md )
- [Commits](https://github.com/kulshekhar/ts-jest/compare/v29.2.5...v29.4.0 )
Updates `yaml` from 2.3.4 to 2.8.0
- [Release notes](https://github.com/eemeli/yaml/releases )
- [Commits](https://github.com/eemeli/yaml/compare/v2.3.4...v2.8.0 )
Updates `@types/node` from 20.16.0 to 20.19.7
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
Updates `eslint-plugin-prettier` from 5.1.3 to 5.5.1
- [Release notes](https://github.com/prettier/eslint-plugin-prettier/releases )
- [Changelog](https://github.com/prettier/eslint-plugin-prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/eslint-plugin-prettier/compare/v5.1.3...v5.5.1 )
Updates `nodemon` from 3.1.9 to 3.1.10
- [Release notes](https://github.com/remy/nodemon/releases )
- [Commits](https://github.com/remy/nodemon/compare/v3.1.9...v3.1.10 )
Updates `prettier` from 3.2.5 to 3.6.2
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/3.2.5...3.6.2 )
Updates `typescript` from 5.4.5 to 5.8.3
- [Release notes](https://github.com/microsoft/TypeScript/releases )
- [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release-publish.yml )
- [Commits](https://github.com/microsoft/TypeScript/compare/v5.4.5...v5.8.3 )
---
updated-dependencies:
- dependency-name: "@actions/core"
dependency-version: 1.11.1
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: minor-updates
- dependency-name: "@actions/github"
dependency-version: 6.0.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: minor-updates
- dependency-name: got
dependency-version: 14.4.7
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: minor-updates
- dependency-name: ts-jest
dependency-version: 29.4.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: minor-updates
- dependency-name: yaml
dependency-version: 2.8.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: minor-updates
- dependency-name: "@types/node"
dependency-version: 20.19.7
dependency-type: direct:development
update-type: version-update:semver-minor
dependency-group: minor-updates
- dependency-name: eslint-plugin-prettier
dependency-version: 5.5.1
dependency-type: direct:development
update-type: version-update:semver-minor
dependency-group: minor-updates
- dependency-name: nodemon
dependency-version: 3.1.10
dependency-type: direct:development
update-type: version-update:semver-patch
dependency-group: minor-updates
- dependency-name: prettier
dependency-version: 3.6.2
dependency-type: direct:development
update-type: version-update:semver-minor
dependency-group: minor-updates
- dependency-name: typescript
dependency-version: 5.8.3
dependency-type: direct:development
update-type: version-update:semver-minor
dependency-group: minor-updates
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-07-22 13:56:08 +00:00
Roman Iakovlev
47d790678f
Merge pull request #934 from actions/dependabot/npm_and_yarn/undici-5.29.0
...
Bump undici from 5.28.5 to 5.29.0
2025-07-21 19:12:52 +02:00
Roman Iakovlev
1e946feb37
Update dist
2025-07-21 13:53:37 +00:00
Kevin Dangoor
8a1ad91c0a
Merge pull request #945 from KyFaSt/patch-1
...
Add Missing Languages to CodeQL Advanced Configuration
2025-07-11 13:47:35 -04:00
Kylie Stradley
8296deda21
Add Missing Languages to CodeQL Advanced Configuration
2025-07-10 09:22:28 -04:00
dependabot[bot]
733ef0ab01
Bump undici from 5.28.5 to 5.29.0
...
Bumps [undici](https://github.com/nodejs/undici ) from 5.28.5 to 5.29.0.
- [Release notes](https://github.com/nodejs/undici/releases )
- [Commits](https://github.com/nodejs/undici/compare/v5.28.5...v5.29.0 )
---
updated-dependencies:
- dependency-name: undici
dependency-version: 5.29.0
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-05-15 16:32:05 +00:00
Kevin Dangoor
da24556b54
Merge pull request #933 from actions/dangoor/471-release
...
Bump version number for 4.7.1
2025-05-13 12:46:37 -04:00
Kevin Dangoor
9af0caf0e5
Bump version number for 4.7.1
2025-05-13 11:20:20 -04:00
Kevin Dangoor
d8f2df20d5
Merge pull request #932 from actions/907-disallow-expression
...
Discard allow list entries that are not SPDX IDs
2025-05-13 10:28:49 -04:00
Kevin Dangoor
6e9307a3d4
Discard allow list entries that are not SPDX IDs
...
The allow-licenses list is expected (and documented) to be a list of
SPDX license IDs (LicenseRefs are also valid). If someone puts an
expression in the list (e.g. "GPL-3.0-only OR MIT"), it should be
discarded so that the whole list does not become invalid.
Fixes #907
2025-05-12 18:58:58 -04:00
Kevin Dangoor
8805179dc9
Merge pull request #930 from actions/889-allow-no-license
...
Allowing dependencies works with no licenses
2025-05-08 17:38:03 -04:00
Kevin Dangoor
014300b08c
Update build
2025-05-08 17:19:56 -04:00
Kevin Dangoor
34486f306e
Check namespaces when excluding license checks
...
The `allow-dependencies-licenses` option was not checking the namespace
part of the PURL to make sure it matched.
2025-05-08 17:17:08 -04:00
Kevin Dangoor
9b155d6432
Update build
2025-05-08 16:37:11 -04:00
Kevin Dangoor
f199659a6a
Allowing dependencies works with no licenses
...
When using the `allow-dependencies-licenses` option, the packages listed
there should be allowed even if they have no license. This wasn't
working because the filtering for allowed dependencies was done
specifically on the list of packages that had licenses, leaving a
separate list (unfiltered) for packages with no licenses. With this
change, we filter out any changes for packages that have been allowed
_before_ we retrieve licenses.
Fixes #889
2025-05-08 16:31:46 -04:00
Kevin Dangoor
38ecb5b593
Merge pull request #929 from actions/dangoor/4.7-release
...
Version 4.7.0 release
2025-05-08 14:14:35 -04:00
Kevin Dangoor
0e9e935cc8
Version 4.7.0 release
...
Also add a note about the new `LicenseRef-clearlydefined-OTHER`
to the README.
2025-05-08 13:58:56 -04:00
Kevin Dangoor
69d2faa365
Merge pull request #926 from dangoor/dangoor/replace-other
...
Replace OTHER with a LicenseRef
2025-05-07 13:25:04 -04:00
Kevin Dangoor
7e14978e0e
Merge branch 'actions:main' into dangoor/replace-other
2025-05-07 13:08:00 -04:00
Kevin Dangoor
8477905b0e
Merge pull request #927 from dangoor/dangoor/multilicense
...
Handle complex licenses (e.g. X AND Y)
2025-05-07 13:06:06 -04:00
Kevin Dangoor
f3ff3564fa
Update dist
2025-05-06 12:26:28 -04:00
Kevin Dangoor
c7565d44ec
Fix tests and respond to review feedback
2025-05-06 12:25:30 -04:00
Kevin Dangoor
82299c3bbe
Replace OTHER with a LicenseRef
...
ClearlyDefined uses the string `OTHER` for the declared license when
a human has reviewed `NOASSERTION` text and found it to be a valid
license, but one without an SPDX identifier. `OTHER`, unlike
`NOASSERTION`, is not valid. With this change, when `OTHER` appears
in a license string, we'll replace it with
`LicenseRef-clearlydefined-OTHER`, which _is_ valid and will allow
the expressions to parse.
2025-05-06 11:22:50 -04:00
Kevin Dangoor
2013ccccfe
Update type definition for spdx-satisfies
...
I have a PR in with DefinitelyTyped, but this change should allow CI
to pass while that goes through the process.
2025-05-06 11:02:54 -04:00
Kevin Dangoor
3a2b68706a
Handle complex licenses (e.g. X AND Y)
...
There are many packages that are dual-licensed, offering a choice
of licenses (e.g. `MIT OR Apache-2.0`). There are some that include
code from multiple sources and require multiple licenses
(e.g. `MIT AND Apache-2.0`). There are also complex combinations that
can exist for a variety of reasons, such as
`MIT AND (Apache-2.0 OR BSD-3-Clause)`.
The most straightforward approach to handle these is to have an
allow list. As long as the licenses on the allow list can satisfy
the license expression of the package in question, it should pass.
To implement this, I the newest release of spdx-satisfies
which changed the interface to be exactly as described
`satisfies(license, allowList)` (see
https://github.com/jslicense/spdx-satisfies.js/pull/17 ).
Fixes https://github.com/actions/dependency-review-action/issues/263
2025-05-05 19:06:50 -04:00
Kevin Dangoor
a87294d992
Revert "Merge pull request #916 from jebeaudet/spdx-support"
...
This reverts commit 5a5d4df8ad , reversing
changes made to 67d4f4bd7a .
2025-05-05 18:43:46 -04:00
Ashely Tenesaca
5a5d4df8ad
Merge pull request #916 from jebeaudet/spdx-support
...
Support SPDX expressions with operators in allow/deny license lists
2025-04-15 11:33:49 -04:00
Jacques-Etienne Beaudet
4eb8182aba
Support SPDX expressions in allow/deny lists
...
This change updates license validation to support full SPDX expressions
(such as 'EPL-1.0 AND LGPL-2.1') in both allow-lists and deny-lists. This
enables the action to correctly validate packages that declare multiple
licenses using SPDX conjunctions like AND/OR, which are common in complex
open-source projects.
Previously, only simple license identifiers were supported, which caused
multi-licensed packages to be improperly flagged as invalid even when
they matched the intent of the allow-list.
The new logic uses `spdx.satisfies()` to evaluate whether a package’s
declared license satisfies any expression in the allow/deny list, and
comprehensive tests have been added to verify behavior for various SPDX
combinations.
This improves compatibility with projects using compound SPDX license
expressions and ensures more accurate license policy enforcement.
2025-04-09 12:19:46 -04:00
Barry Gordon
67d4f4bd7a
Merge pull request #911 from actions/brrygrdn/handle-spdx-updates-as-priority
...
Handle any SPDX dependencies as a priority Dependabot PR
2025-04-04 13:00:44 +01:00
Barry Gordon
d2e453a37e
Handle any SPDX dependencies as a priority PR
2025-04-01 13:52:16 +01:00
Barry Gordon
ce3cf9537a
Merge pull request #910 from actions/brrygrdn/4.6.0-release-candidate
...
Prepare 4.6.0 Release candidate
2025-04-01 12:33:27 +01:00
Barry Gordon
479b69732e
Prepare 4.6.0
2025-04-01 12:22:08 +01:00
Barry Gordon
aee95908ea
Merge pull request #902 from Pantelis-Santorinios/patch-1
...
Clarify comment-summary-in-pr behaviour
2025-04-01 11:40:30 +01:00
Barry Gordon
080ada6281
Merge pull request #883 from fabasoad/fix/ci
...
Improve usage of this action in dependency-review.yml
2025-04-01 11:36:38 +01:00
Barry Gordon
430e5f0bbf
Merge pull request #884 from fabasoad/fix/863
...
To not print OpenSSF Scorecard section if no dependencies scanned
2025-04-01 11:35:58 +01:00
Barry Gordon
51699b6461
Merge pull request #855 from ailox/ailox/fix/invalid-new-licenses
...
Update transitive dependency spdx-license-ids
2025-04-01 11:33:12 +01:00
Roman Iakovlev
ac9b193beb
Merge pull request #899 from actions/dependabot/npm_and_yarn/octokit/plugin-paginate-rest-9.2.2
...
Bump @octokit/plugin-paginate-rest from 9.1.5 to 9.2.2
2025-03-13 15:37:55 +01:00
Roman Iakovlev
d630451aa0
Pin @octokit/types version for compatibility
2025-03-13 14:34:23 +00:00
Roman Iakovlev
c8dafca32b
Add dist for @octokit/plugin-paginate-rest version bump
2025-03-12 16:55:30 +00:00
dependabot[bot]
bc858b5649
Bump @octokit/plugin-paginate-rest from 9.1.5 to 9.2.2
...
Bumps [@octokit/plugin-paginate-rest](https://github.com/octokit/plugin-paginate-rest.js ) from 9.1.5 to 9.2.2.
- [Release notes](https://github.com/octokit/plugin-paginate-rest.js/releases )
- [Commits](https://github.com/octokit/plugin-paginate-rest.js/compare/v9.1.5...v9.2.2 )
---
updated-dependencies:
- dependency-name: "@octokit/plugin-paginate-rest"
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-03-12 16:53:26 +00:00
Roman Iakovlev
cd1541ea8d
Merge pull request #905 from actions/dependabot/npm_and_yarn/babel/helpers-7.26.10
...
Bump @babel/helpers from 7.23.2 to 7.26.10
2025-03-12 15:43:04 +01:00
dependabot[bot]
7bce095f93
Bump @babel/helpers from 7.23.2 to 7.26.10
...
Bumps [@babel/helpers](https://github.com/babel/babel/tree/HEAD/packages/babel-helpers ) from 7.23.2 to 7.26.10.
- [Release notes](https://github.com/babel/babel/releases )
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md )
- [Commits](https://github.com/babel/babel/commits/v7.26.10/packages/babel-helpers )
---
updated-dependencies:
- dependency-name: "@babel/helpers"
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-03-12 11:42:46 +00:00
Roman Iakovlev
195b0c2e88
Merge pull request #904 from actions/roman/upd
...
Bump octokit and related dependencies
2025-03-12 12:41:41 +01:00
Roman Iakovlev
cdee0bc8c3
Bump octokit and related dependencies
2025-03-12 10:57:15 +00:00
Lewis Jones
0e562a634b
Merge pull request #900 from actions/dependabot/npm_and_yarn/esbuild-0.25.0
...
Bump esbuild from 0.19.5 to 0.25.0
2025-03-07 11:49:50 +00:00
Pantelis
3d00aed36d
Update README.md
2025-03-06 14:43:51 +01:00
dependabot[bot]
2c5ec1eea8
Bump esbuild from 0.19.5 to 0.25.0
...
Bumps [esbuild](https://github.com/evanw/esbuild ) from 0.19.5 to 0.25.0.
- [Release notes](https://github.com/evanw/esbuild/releases )
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG-2023.md )
- [Commits](https://github.com/evanw/esbuild/compare/v0.19.5...v0.25.0 )
---
updated-dependencies:
- dependency-name: esbuild
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-02-26 20:54:18 +00:00
Eric Sorenson
bf0431a342
Merge pull request #893 from omahs/patch-1
...
Fix typos
2025-02-07 14:27:22 -08:00
omahs
c26b132baa
fix typos
2025-02-07 13:22:20 +01:00
omahs
3ffdd4d73e
fix typos
2025-02-07 13:20:46 +01:00
Ashely Tenesaca
ea2cae5127
Merge pull request #888 from ellenfieldn/allow-deny-package-removal
...
Allow deny package removal
2025-02-06 17:18:15 -05:00
Nathan Ellenfield
dfe560420d
fix formatting and dist
2025-02-05 15:50:50 -05:00
Nathan Ellenfield
e4033dcc29
Merge remote-tracking branch 'origin/main' into allow-deny-package-removal
2025-02-04 13:33:03 -05:00
Ashely Tenesaca
92129e58e4
Merge pull request #891 from actions/ashelytc/server-url-fix
...
DR Action should link to the proxima stamp when appropriate in error messages
2025-02-03 14:46:11 -05:00
Ashely Tenesaca
bf9bc3f2a6
generate dist code
2025-02-03 17:25:46 +00:00
Ashely Tenesaca
d703cf58c3
replace server url with variable
2025-02-03 15:57:21 +00:00
Nathan Ellenfield
c80eb9894b
fixit
2025-01-27 16:01:10 -05:00
Nathan Ellenfield
5e7a6ffc7d
fix: Allow removal denied packages
2025-01-27 16:00:09 -05:00
fabasoad
c665328b35
Make 'None' to be a text instead of list
2025-01-26 22:36:42 +09:00
fabasoad
5370d75f36
To not print OpenSSF Scorecard section if no dependencies scanned
2025-01-25 23:28:54 +09:00
fabasoad
7f3cd87ec0
Fix usage of this action in dependency-review.yml
2025-01-25 23:11:35 +09:00
Ahmed ElMallah
67ca5cc413
Merge pull request #877 from actions/dependabot/npm_and_yarn/undici-5.28.5
...
Bump undici from 5.28.4 to 5.28.5
2025-01-24 12:04:24 -08:00
Ahmed ElMallah
8992b0e1c7
updating dist code
2025-01-24 20:01:21 +00:00
Ahmed ElMallah
5e9a56c6de
Merge pull request #878 from actions/dependabot/github_actions/actions/stale-9.1.0
...
Bump actions/stale from 9.0.0 to 9.1.0
2025-01-24 11:58:00 -08:00
dependabot[bot]
9cd1f01f7f
Bump actions/stale from 9.0.0 to 9.1.0
...
Bumps [actions/stale](https://github.com/actions/stale ) from 9.0.0 to 9.1.0.
- [Release notes](https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/stale/compare/v9.0.0...v9.1.0 )
---
updated-dependencies:
- dependency-name: actions/stale
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-01-24 19:52:48 +00:00
Ahmed ElMallah
a0be92bfc2
Merge pull request #876 from actions/ahmed3lmallah/dependabot-updates
...
Grouping minor and patch dependabot updates to lessen the number of PRs
2025-01-24 11:52:11 -08:00
dependabot[bot]
6ec8e13b9a
Bump undici from 5.28.4 to 5.28.5
...
Bumps [undici](https://github.com/nodejs/undici ) from 5.28.4 to 5.28.5.
- [Release notes](https://github.com/nodejs/undici/releases )
- [Commits](https://github.com/nodejs/undici/compare/v5.28.4...v5.28.5 )
---
updated-dependencies:
- dependency-name: undici
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-01-24 17:39:09 +00:00
Ahmed ElMallah
c9bb42fdbf
grouping minor and patch updates to lessen the number of PRs
2025-01-23 23:01:53 +00:00
Ahmed ElMallah
b109bc8c95
Merge pull request #870 from actions/ahmed3lmallah/updating-dependencies
...
Updating multiple dependency versions
2025-01-23 14:00:10 -08:00
Ahmed ElMallah
5f24a51147
Updating dist folder
2025-01-23 21:07:48 +00:00
Ahmed ElMallah
ef281d4e24
Updating multiple dependency versions
2025-01-23 21:07:39 +00:00
Paul Scheunemann
67fc6dd646
Update compiled assets
2025-01-09 15:15:28 +01:00
Paul Scheunemann
2caab057ed
Update transitive dependency spdx-license-ids
2024-12-06 16:36:10 +01:00
Ahmed ElMallah
3b139cfc5f
Merge pull request #851 from actions/ahmed3lmallah/prepare-for-4.5.0-release
...
Prepare for 4.5.0 release
2024-11-20 13:49:04 -08:00
Ahmed ElMallah
d6807b6643
updating generated code
2024-11-20 21:42:05 +00:00
Ahmed ElMallah
c89b41fdc6
addressing lint issues
2024-11-20 21:41:54 +00:00
Ahmed ElMallah
eee97d8b03
incrementing project version
2024-11-20 21:41:43 +00:00
Ahmed ElMallah
9d101822a3
Merge pull request #827 from ebickle/fix/comment-warn-only
...
fix: add summary comment on failure when warn-only: true
2024-11-20 13:28:17 -08:00
Ahmed ElMallah
9192be9c72
Merge pull request #850 from actions/ahmed3lmallah/adressing-CVE-2024-21538
...
Overriding the cross-spawn dependency to use a safe version
2024-11-19 14:42:32 -08:00
Ahmed ElMallah
2fc8e23b12
Using cross-spawn safe version
2024-11-19 22:26:34 +00:00
Eric Bickle
fb86db2043
fix: resolve race conditions in async core.group calls
2024-11-19 14:17:06 -08:00
Eric Bickle
0a198ab3ed
fix: replace integer failureCount with boolean
2024-11-19 13:15:15 -08:00
Eric Bickle
fc499fc13a
Merge branch 'main' into fix/comment-warn-only
2024-11-19 12:51:47 -08:00
Ahmed ElMallah
b02ea3a88b
Merge pull request #849 from actions/dependabot/npm_and_yarn/vercel/ncc-0.38.3
...
Bump @vercel/ncc from 0.38.1 to 0.38.3
2024-11-18 15:14:46 -08:00
Ahmed ElMallah
612e96e757
updating dist code
2024-11-18 22:36:35 +00:00
Ahmed ElMallah
0adc9b8215
Merge pull request #847 from actions/dependabot/npm_and_yarn/nodemon-3.1.7
...
Bump nodemon from 3.1.0 to 3.1.7
2024-11-18 13:05:25 -08:00
dependabot[bot]
591cbf9044
Bump @vercel/ncc from 0.38.1 to 0.38.3
...
Bumps [@vercel/ncc](https://github.com/vercel/ncc ) from 0.38.1 to 0.38.3.
- [Release notes](https://github.com/vercel/ncc/releases )
- [Commits](https://github.com/vercel/ncc/compare/0.38.1...0.38.3 )
---
updated-dependencies:
- dependency-name: "@vercel/ncc"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-11-18 01:28:26 +00:00
dependabot[bot]
c0a5e20c51
Bump nodemon from 3.1.0 to 3.1.7
...
Bumps [nodemon](https://github.com/remy/nodemon ) from 3.1.0 to 3.1.7.
- [Release notes](https://github.com/remy/nodemon/releases )
- [Commits](https://github.com/remy/nodemon/compare/v3.1.0...v3.1.7 )
---
updated-dependencies:
- dependency-name: nodemon
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-11-04 01:59:13 +00:00
Eli Reisman
c82883d789
Merge pull request #844 from actions/dependabot/npm_and_yarn/got-14.4.3
...
Bump got from 14.4.2 to 14.4.3
2024-10-28 16:23:56 -07:00
Ahmed ElMallah
4081bf99e2
Merge pull request #846 from actions/merge-group-bug-fix
...
Fix for merge_group event bug
2024-10-28 11:42:18 -07:00
ahmed3lmallah
03e585eea7
fixing minor typo
2024-10-27 23:34:29 -07:00
ahmed3lmallah
08b4117924
updating dist code
2024-10-27 23:30:45 -07:00
ahmed3lmallah
9c3441f7ee
updating dist code
2024-10-27 23:12:50 -07:00
ahmed3lmallah
304a544dca
updating tests
2024-10-27 23:11:58 -07:00
ahmed3lmallah
e99353b1e1
fixing merge_group schema bug
2024-10-27 22:56:44 -07:00
dependabot[bot]
d8ae44e2a0
Bump got from 14.4.2 to 14.4.3
...
Bumps [got](https://github.com/sindresorhus/got ) from 14.4.2 to 14.4.3.
- [Release notes](https://github.com/sindresorhus/got/releases )
- [Commits](https://github.com/sindresorhus/got/compare/v14.4.2...v14.4.3 )
---
updated-dependencies:
- dependency-name: got
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-10-28 01:10:40 +00:00
Ahmed ElMallah
a6993e2c61
Merge pull request #840 from actions/dependabot-updates
...
Bump eslint-plugin-jest and ts-jest
2024-10-21 15:29:33 -07:00
ahmed3lmallah
d92f08b3ff
Bump eslint-plugin-jest and ts-jest
2024-10-21 15:16:32 -07:00
Barry Gordon
3e334b7ca7
Merge pull request #822 from actions/dependabot/npm_and_yarn/got-14.4.2
...
Bump got from 14.4.1 to 14.4.2
2024-09-30 16:17:18 +01:00
Jon Janego
32b7d886d5
Merge pull request #832 from actions/jonjanego-patch-3
...
Update stale.yaml
2024-09-26 12:51:51 -05:00
Jon Janego
14b94f8fbc
Update stale.yaml
...
adding closure messages
2024-09-26 11:47:03 -05:00
Eli Reisman
6ea3b24563
Merge pull request #828 from actions/hm/summary
...
Do not list changed dependencies in summary
2024-09-16 15:28:19 -07:00
Eli Reisman
05042db2b6
update dist packaging
2024-09-16 12:42:52 -07:00
Eli Reisman
6aacbe0934
add a warning message if there is room in the summary prior to cutoff
2024-09-16 12:42:35 -07:00
Eli Reisman
293ccdb6e9
add truncation escape valve to new file summary to avoid overflow
2024-09-16 12:26:36 -07:00
Henri Maurer
83c7cc6aa7
Do not list changes dependencies in summary
2024-09-16 11:29:47 -07:00
Eli Reisman
b3559aa82e
Merge pull request #829 from actions/elireisman/sec-findings-update
...
Upgrade transitive micromatch library
2024-09-16 10:04:59 -07:00
Eli Reisman
8179e6abd6
upgrade micromatch within given dependent parent pkg bounds but past security vuln
2024-09-16 09:53:44 -07:00
Eric Bickle
ac1d2d7d35
fix: add summary comment on failure when warn-only: true
2024-09-06 12:24:42 -07:00
dependabot[bot]
fe833075f3
Bump got from 14.4.1 to 14.4.2
...
Bumps [got](https://github.com/sindresorhus/got ) from 14.4.1 to 14.4.2.
- [Release notes](https://github.com/sindresorhus/got/releases )
- [Commits](https://github.com/sindresorhus/got/compare/v14.4.1...v14.4.2 )
---
updated-dependencies:
- dependency-name: got
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-08-26 01:38:54 +00:00
Eli Reisman
526b7f2f9b
Merge pull request #815 from actions/dependabot/npm_and_yarn/types/node-20.16.0
...
Bump @types/node from 20.11.28 to 20.16.0
2024-08-19 10:31:48 -07:00
dependabot[bot]
e5cb30f678
Bump @types/node from 20.11.28 to 20.16.0
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 20.11.28 to 20.16.0.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-08-19 01:33:46 +00:00
Jon Janego
90820aba8c
Merge pull request #793 from actions/jonjanego-patch-1
...
Update CONTRIBUTING.md
2024-07-12 16:13:55 -05:00
Jon Janego
7367319600
Merge pull request #794 from actions/jonjanego-patch-2
...
Create pull_request_template.md
2024-07-12 16:11:24 -05:00
Jon Janego
affc3a4f15
Create pull_request_template.md
2024-07-12 16:07:23 -05:00
Jon Janego
07d3c7257a
Update CONTRIBUTING.md
...
minor wording
2024-07-12 15:58:13 -05:00
Justin Holguín
a2dda6f539
Merge pull request #766 from louis-bompart/main
...
fix: getRefs function to handle merge_group events
2024-07-12 12:55:37 -07:00
Louis Bompart
45dc50cabe
fix: getRefs function to handle merge_group events
2024-07-12 14:22:20 +02:00
Justin Holguín
5a2ce3f5b9
Merge pull request #791 from actions/juxtin/update-version
...
Prepare even more for v4.3.4
2024-07-11 13:47:10 -07:00
Justin Holguín
ac6a6adece
Prepare even more for v4.3.4
2024-07-11 20:39:43 +00:00
Justin Holguín
3e2b91798f
Merge pull request #790 from actions/juxtin/update-version
...
Prepare for v4.3.4 release
2024-07-11 13:38:12 -07:00
Justin Holguín
d9ab9c8c45
Update version in package.json
2024-07-11 18:57:29 +00:00
Justin Holguín
8c152c7a0f
Merge pull request #769 from actions/dependabot/npm_and_yarn/zod-3.23.8
...
Bump zod from 3.22.4 to 3.23.8
2024-07-10 10:50:09 -07:00
Justin Holguín
0085d30a6f
Update dist
2024-07-10 17:47:42 +00:00
dependabot[bot]
08b5bf2921
Bump zod from 3.22.4 to 3.23.8
...
Bumps [zod](https://github.com/colinhacks/zod ) from 3.22.4 to 3.23.8.
- [Release notes](https://github.com/colinhacks/zod/releases )
- [Changelog](https://github.com/colinhacks/zod/blob/master/CHANGELOG.md )
- [Commits](https://github.com/colinhacks/zod/compare/v3.22.4...v3.23.8 )
---
updated-dependencies:
- dependency-name: zod
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-07-10 17:43:18 +00:00
Justin Holguín
986fce9040
Merge pull request #784 from actions/dependabot/npm_and_yarn/got-14.4.1
...
Bump got from 14.2.0 to 14.4.1
2024-07-10 10:41:24 -07:00
Justin Holguín
28743f8570
Merge pull request #719 from actions/change-spdx-parser
...
Update SPDX Expression Parsing
2024-07-10 10:06:31 -07:00
Justin Holguín
d6f34c3a26
Merge pull request #789 from actions/dependabot/npm_and_yarn/braces-3.0.3
...
Bump braces from 3.0.2 to 3.0.3
2024-07-08 14:53:16 -07:00
dependabot[bot]
465867cec8
Bump braces from 3.0.2 to 3.0.3
...
Bumps [braces](https://github.com/micromatch/braces ) from 3.0.2 to 3.0.3.
- [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md )
- [Commits](https://github.com/micromatch/braces/compare/3.0.2...3.0.3 )
---
updated-dependencies:
- dependency-name: braces
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-07-08 21:49:13 +00:00
Justin Holguín
b4ae47ca2c
Properly display test failures using jest
2024-06-10 23:07:07 +00:00
Eli Reisman
d85edeb45d
remove redundant declaration from TS types module registration
2024-06-10 10:11:00 -07:00
Eli Reisman
f60d59372e
npm run package
2024-06-10 09:52:17 -07:00
Eli Reisman
ed624dba72
more SPDX unit tests to illustrate matching behavior
2024-06-10 09:51:01 -07:00
Eli Reisman
bbed6f340a
update licenses pkg and tests
2024-06-10 09:51:01 -07:00
Eli Reisman
2e4eaa490e
complete test suite conversions; simplify fn name
2024-06-10 09:51:00 -07:00
Eli Reisman
ecd706f525
register spdx lib as ES Module, start converting call sites to use new spdx pkg - TODO: update tests
2024-06-10 09:51:00 -07:00
Eli Reisman
bc5b235cf6
move jest to dev dependencies
2024-06-10 09:51:00 -07:00
Eli Reisman
154c1500f3
add @onebeyond/spdx-license-satisfies to DR Action project
2024-06-10 09:51:00 -07:00
dependabot[bot]
2115d9eeea
Bump got from 14.2.0 to 14.4.1
...
Bumps [got](https://github.com/sindresorhus/got ) from 14.2.0 to 14.4.1.
- [Release notes](https://github.com/sindresorhus/got/releases )
- [Commits](https://github.com/sindresorhus/got/compare/v14.2.0...v14.4.1 )
---
updated-dependencies:
- dependency-name: got
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-06-10 01:18:26 +00:00
Eli Reisman
df5d74f5d3
Merge pull request #783 from actions/elireisman/all-changes-to-scorecard
...
Include all added dependencies in scorecard entries
2024-06-07 14:15:00 -07:00
Eli Reisman
1e5b2e69a2
npm run package
2024-06-07 10:00:47 -07:00
Eli Reisman
e69288dbec
only filter out removed changes from the original PR diff when adding scorecard entries in DR Action report
2024-06-07 10:00:37 -07:00
Eli Reisman
8285e75fb2
Merge pull request #782 from actions/dependabot/npm_and_yarn/undici-5.28.4
...
Bump undici from 5.28.3 to 5.28.4
2024-06-07 09:44:10 -07:00
Eli Reisman
2224c7c05a
npm run package to update dist
2024-06-07 09:35:26 -07:00
dependabot[bot]
c0630c2a88
Bump undici from 5.28.3 to 5.28.4
...
Bumps [undici](https://github.com/nodejs/undici ) from 5.28.3 to 5.28.4.
- [Release notes](https://github.com/nodejs/undici/releases )
- [Commits](https://github.com/nodejs/undici/compare/v5.28.3...v5.28.4 )
---
updated-dependencies:
- dependency-name: undici
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-06-06 18:28:02 +00:00
Eli Reisman
72eb03d02c
Merge pull request #781 from actions/release-v4.3.3
...
Bump project version to 4.3.3 in prep for a release
2024-06-05 12:15:21 -07:00
Eli Reisman
137d8b42ce
bump to version v4.3.3
2024-06-05 10:26:55 -07:00
Eli Reisman
e6b618ed05
Merge pull request #767 from actions/max-comment-length
...
Fix the max comment length issue
2024-06-04 13:03:31 -07:00
Eli Reisman
3c42649204
fix ws for linter
2024-06-04 12:33:48 -07:00
Eli Reisman
8e6ea8d29b
update packaging
2024-06-04 12:30:34 -07:00
Eli Reisman
1b3d2772d0
post-review: add PR comment full summary test case
2024-06-04 12:30:05 -07:00
Eli Reisman
220872c81a
Update src/main.ts
...
Co-authored-by: Brandon Teng <bteng22@github.com >
2024-06-04 12:14:40 -07:00
Eli Reisman
087d0f81a5
repackage to update dist
2024-06-04 11:50:22 -07:00
Eli Reisman
4531204be7
whitespace
2024-06-04 11:50:21 -07:00
Eli Reisman
df1ca890c5
appease linter
2024-06-04 11:50:21 -07:00
Eli Reisman
97c6dd59c3
run prettier to clear linter warnings
2024-06-04 11:50:21 -07:00
Eli Reisman
0bec1ca5b4
clean up list formatting for PR comment
2024-06-04 11:21:15 -07:00
Eli Reisman
5460632ba9
WIP: summary test
2024-06-04 11:21:15 -07:00
Eli Reisman
f7aca4f481
refactor to dedup min summary generation
2024-06-04 11:21:14 -07:00
Eli Reisman
1988567896
re-apply set output for comment-content
2024-06-04 11:20:29 -07:00
Justin Hutchings
1e26117d02
Fix extra whitespace in list
2024-06-04 11:20:27 -07:00
Justin Hutchings
b1e704b9d6
Fix bug where I replaced the comment in the wrong spot
2024-06-04 11:20:19 -07:00
Justin Hutchings
48fae2e703
Add min-comment to fix max-comment length issue
2024-06-04 11:20:10 -07:00
Jon Janego
8d625cd32e
Merge pull request #777 from actions/jonjanego-issue-templates
...
Create issue templates
2024-06-04 11:41:12 -05:00
Jon Janego
3afc0d4eaa
Merge pull request #778 from actions/jonjanego-contribution-updates
...
Updates to the contribution guidelines
2024-06-04 09:59:36 -05:00
Jon Janego
bc8dee91fe
Update CONTRIBUTING.md
...
being consistent about using forks, minor style updates
2024-06-04 09:58:59 -05:00
Jon Janego
0669e2939d
Update CONTRIBUTING.md
...
Co-authored-by: Barry Gordon <896971+brrygrdn@users.noreply.github.com >
2024-06-04 09:45:14 -05:00
Jon Janego
fd46ab736e
Update CONTRIBUTING.md
...
fixing example code for consistency
2024-06-04 09:01:11 -05:00
Jon Janego
551e0b82bd
Update CONTRIBUTING.md
...
fixing a sentence fragment
2024-06-04 08:59:20 -05:00
Jon Janego
fbfa3f19c8
Update SECURITY.md
...
linking to the main bounty site instead of h1
2024-06-03 16:59:30 -05:00
Jon Janego
89204de987
Create config.yml
2024-06-03 16:48:33 -05:00
Jon Janego
6d4e634e06
Create issue templates
...
issue templates for bugs and feature requests
2024-06-03 16:43:33 -05:00
Jon Janego
4c5eeccebb
Update CONTRIBUTING.md
...
Adding some explanations about contribution standards and local development
2024-06-03 16:18:38 -05:00
Jon Janego
f6e67d2f8d
Merge pull request #776 from ramann/patch-1
...
fix show-openssf-scorecard-levels input
2024-06-03 12:54:46 -05:00
robert
eb0576373a
fix show-openssf-scorecard-levels input
...
The input in the README was wrong, I have fixed it to match action.yml.
2024-06-03 12:20:08 -04:00
Jon Janego
981e960c8c
Merge pull request #773 from am-stead/am-stead-patch-1
...
PR with suggestions - [Improvement]: Help streamline / simplify dependency review action README
2024-05-30 09:23:53 -05:00
Anne-Marie
87b53ae475
add line break
2024-05-30 11:10:36 +00:00
Anne-Marie
c601a5a741
combining Output notes
2024-05-30 11:02:59 +00:00
Jon Janego
5751523f41
Update README.md
2024-05-29 13:21:44 -05:00
Anne-Marie
3fe3159bb9
Indenting to match vulnerable-changes
2024-05-27 09:15:58 +02:00
Anne-Marie
2d3c93c0e0
Update README.md
...
Co-authored-by: Jon Janego <jonjanego@github.com >
2024-05-27 09:14:01 +02:00
Anne-Marie
9770b8da2c
Update README.md
...
Co-authored-by: Jon Janego <jonjanego@github.com >
2024-05-27 09:13:46 +02:00
Anne-Marie
d5b8317942
edits
2024-05-24 07:35:18 +00:00
Anne-Marie
d3670a3e49
updating GHES links
2024-05-23 10:38:06 +00:00
Anne-Marie
f38966fbec
updating overview
2024-05-23 10:26:42 +00:00
Anne-Marie
9eb0dccbc9
editing configuration and remaining sections
2024-05-23 10:03:57 +00:00
Anne-Marie
258a2295c6
installation section
2024-05-23 09:37:47 +00:00
Anne-Marie
4c0a483c95
Update README.md
2024-05-23 10:22:01 +02:00
Eli Reisman
339e2e1bfc
Merge pull request #741 from josieang/deps-dev-v3
...
use the v3 version of the deps.dev API
2024-05-10 14:23:17 -07:00
Josie Anugerah
40cd879447
npm install && npm run build && npm run package
2024-05-07 08:11:58 +10:00
Josie Anugerah
d11eeb39d8
Merge branch 'main' into deps-dev-v3
2024-05-06 17:26:48 +10:00
Justin Holguín
82ab8f69c7
Merge pull request #765 from actions/juxtin/allow-slashes-in-purls
...
Allow slashes in purl package names
2024-05-02 13:30:20 -07:00
Justin Holguín
432d8e7efe
Allow slashes in purl package names
2024-05-02 19:11:08 +00:00
Justin Holguín
0c155c5e85
Merge pull request #762 from actions/juxtin/prepare-4.3.2
...
Update version number to 4.3.2
2024-04-30 09:39:04 -07:00
Justin Holguín
f3dac32d35
Merge pull request #761 from actions/juxtin/fix-allow-dependencies-licenses
...
Fix package-url parsing for allow-dependencies-licenses
2024-04-30 09:38:44 -07:00
Justin Holguín
d0d5cc3ec4
Update version number to 4.3.2
2024-04-30 16:30:51 +00:00
Justin Holguín
49fbbe0acb
Fix package-url parsing for allow-dependencies-licenses
2024-04-29 23:24:15 +00:00
Justin Holguín
e58c696e52
Merge pull request #758 from actions/juxtin/prepare-4.3.1
...
Change version to 4.3.1
2024-04-29 10:48:18 -07:00
Justin Holguín
9b7c72ddcd
Change version to 4.3.1
2024-04-29 17:45:21 +00:00
Justin Holguín
7dcfabfea2
Merge pull request #753 from actions/juxtin/debug-purl
...
Parse purls cautiously in getDeniedChanges
2024-04-29 10:43:30 -07:00
Justin Holguín
5f0808ffb1
Validate that deny-packages purls are complete
2024-04-29 16:46:21 +00:00
Justin Holguín
fcc66c23b3
Refine purl parsing and tests
2024-04-28 20:33:37 +00:00
Justin Holguín
1dd418bcb3
Basic tests for PURL validation in config
2024-04-27 22:16:46 +00:00
Justin Holguín
640617990f
Replace packageurl-js with our own implementation
2024-04-27 21:26:06 +00:00
Justin Holguín
2034babb6b
Bypass purls (mostly) for deny checks
2024-04-26 23:17:11 +00:00
Justin Holguín
7e773b1e98
Log offending purl
2024-04-26 21:50:12 +00:00
Justin Holguín
a3460920cc
Parse purls cautiously in getDeniedChanges
2024-04-26 21:28:24 +00:00
Justin Holguín
0659a74c94
Merge pull request #751 from actions/juxtin/release
...
Update version to 4.3.0 in preparation for release
2024-04-26 10:26:45 -07:00
Justin Holguín
28facf5722
Update release instructions
2024-04-26 17:11:57 +00:00
Justin Holguín
5ab7b74146
Update package-lock.json
2024-04-26 17:11:46 +00:00
Josie Anugerah
2a28e93881
Merge branch 'main' into deps-dev-v3
2024-04-26 14:10:34 +10:00
Justin Holguín
95b6fa4e6b
Update version to 4.3.0
2024-04-25 22:41:44 +00:00
Brandon Teng
2dba7fdde1
Merge pull request #733 from actions/deny-list-version
...
deny-packages configuration option can deny specified version or all packages
2024-04-24 20:38:16 -05:00
Brandon Teng
7d44c7c392
building package with latest typescript version
2024-04-24 20:36:47 -05:00
Brandon Teng
ce31ee8325
Merge branch 'main' into deny-list-version
2024-04-24 18:16:35 -05:00
Justin Holguín
df1b3661fd
Merge pull request #750 from actions/juxtin/fix-deny-icon
...
Show denied packages with red X
2024-04-24 15:37:25 -07:00
Brandon Teng
71c57a6108
Merge branch 'main' into deny-list-version
2024-04-24 17:19:53 -05:00
Justin Holguín
7e2c3c347b
Show denied packages with red X
2024-04-24 22:11:24 +00:00
Justin Holguín
f456418f6a
Merge pull request #737 from actions/dependabot/npm_and_yarn/eslint-plugin-github-4.10.2
...
Bump eslint-plugin-github from 4.10.1 to 4.10.2
2024-04-24 14:59:31 -07:00
Justin Holguín
19bd35e07b
Merge pull request #744 from actions/dependabot/npm_and_yarn/typescript-5.4.5
...
Bump typescript from 5.3.3 to 5.4.5
2024-04-24 14:57:23 -07:00
Justin Holguín
ff97293707
Update dist
2024-04-24 21:55:26 +00:00
dependabot[bot]
5498b6c4c3
Bump typescript from 5.3.3 to 5.4.5
...
Bumps [typescript](https://github.com/Microsoft/TypeScript ) from 5.3.3 to 5.4.5.
- [Release notes](https://github.com/Microsoft/TypeScript/releases )
- [Changelog](https://github.com/microsoft/TypeScript/blob/main/azure-pipelines.release.yml )
- [Commits](https://github.com/Microsoft/TypeScript/compare/v5.3.3...v5.4.5 )
---
updated-dependencies:
- dependency-name: typescript
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-04-24 21:39:33 +00:00
Brandon Teng
80116a4564
Merge branch 'main' into deny-list-version
2024-04-24 16:35:05 -05:00
Justin Holguín
68488bcecb
Merge pull request #748 from actions/issue-738
...
Fix extra https:// in summary
2024-04-24 13:54:40 -07:00
Justin Hutchings
16a0212a77
Build source
2024-04-23 17:31:55 +00:00
Justin Hutchings
6d3fba9bf2
Remove extra https://
2024-04-23 17:26:55 +00:00
Josie Anugerah
671683931a
run npm run all
2024-04-17 13:31:49 -07:00
Brandon Teng
c6cc8585a0
building and packaging action
2024-04-16 16:25:58 -05:00
Brandon Teng
c32a0148b3
throwing parsing error up instead of swallowing it
2024-04-16 16:25:28 -05:00
Brandon Teng
67d0214607
simplifying tests
2024-04-16 16:04:25 -05:00
Brandon Teng
3ca15314ff
transforming package URLs during zod parsing
2024-04-16 16:04:11 -05:00
Brandon Teng
a318e62c6c
using packageurl-js to parse packages and groups from config
2024-04-16 12:44:51 -05:00
Josie Anugerah
b0986c2fe0
use the v3 version of the deps.dev API
2024-04-09 16:11:32 +10:00
Brandon Teng
061f471b83
updating docs
2024-04-04 15:48:24 -05:00
Brandon Teng
012eca3d4d
building and packaging action
2024-04-04 15:35:28 -05:00
Brandon Teng
8739aa4bb3
Merge branch 'main' into deny-list-version
2024-04-04 15:26:19 -05:00
Brandon Teng
a323510dae
more refactoring for getDeniedChanges
2024-04-04 15:18:51 -05:00
Brandon Teng
7cebd9d64d
refactoring getDeniedChanges
2024-04-04 15:04:45 -05:00
Brandon Teng
f8ca44e2de
updating README
2024-04-04 13:26:08 -05:00
Brandon Teng
411e5ec44f
updating deny-packages config option to deny exact version or wildcard
2024-04-04 13:25:54 -05:00
dependabot[bot]
72aedfc147
Bump eslint-plugin-github from 4.10.1 to 4.10.2
...
Bumps [eslint-plugin-github](https://github.com/github/eslint-plugin-github ) from 4.10.1 to 4.10.2.
- [Release notes](https://github.com/github/eslint-plugin-github/releases )
- [Commits](https://github.com/github/eslint-plugin-github/compare/v4.10.1...v4.10.2 )
---
updated-dependencies:
- dependency-name: eslint-plugin-github
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-04-01 01:25:22 +00:00
Federico Builes
2ce029c676
Fix another incidence of the OpenSSF config name.
2024-03-28 06:54:16 +01:00
Federico Builes
1c949fbe77
Merge pull request #735 from StacklokLabs/rename-openssf-scorecard
...
Readme action variable name for scorecard is wrong
2024-03-28 06:52:47 +01:00
Luke Hinds
bddd13d857
Readme action variable name for scorecard is wrong
...
The actual name from action.yaml is `show-openssf-scorecard`
and not `show-openssf-scorecard-levels`
Signed-off-by: Luke Hinds <luke@stacklok.com >
2024-03-27 17:18:17 -07:00
Federico Builes
0e665bf3ac
Adding a failing test.
...
Co-authored-by: Brandon Teng <bteng22@github.com >
2024-03-27 15:05:17 +01:00
Federico Builes
5bbc3ba658
bumping version
2024-03-26 08:04:16 +01:00
Federico Builes
c59184aa7f
Merge pull request #722 from actions/remove-warn-default
...
Revert default values in action.yml to fix external configs
2024-03-26 07:55:00 +01:00
Federico Builes
54c06574f4
Merge pull request #728 from actions/dependabot/npm_and_yarn/eslint-8.57.0
...
Bump eslint from 8.56.0 to 8.57.0
2024-03-25 06:27:19 +01:00
dependabot[bot]
21941b530b
Bump eslint from 8.56.0 to 8.57.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.56.0 to 8.57.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.56.0...v8.57.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-03-25 01:27:32 +00:00
Federico Builes
733dd5d4a5
bumping to 4.2.4
2024-03-24 14:59:17 +01:00
Federico Builes
9093495859
Merge pull request #725 from actions/issue-718
...
Bug fixes to #718
2024-03-24 14:56:57 +01:00
Justin Hutchings
35b83b4207
Fix prettier issues
2024-03-22 21:59:08 +00:00
Justin Hutchings
e057056594
Add packaged code update
2024-03-22 21:31:00 +00:00
Justin Hutchings
d684d038b2
Add trailing slash to tests
2024-03-22 21:21:52 +00:00
Justin Hutchings
2b0aaf1638
Fix extra slash issue
2024-03-22 21:20:15 +00:00
Justin Hutchings
d9209374af
Fix repositoryUrl issues around GitHub Actions
2024-03-22 21:00:38 +00:00
Federico Builes
651d22c5d5
Revert default values in action.yml to fix external configs.
2024-03-22 08:29:26 +01:00
Eli Reisman
02b13f6b52
Merge pull request #721 from sporkmonger/patch-1
...
Typo fixes in README
2024-03-21 17:18:11 -07:00
Bob Aman
6e0fa26ac3
Typo fixes
...
Fixed a couple spelling errors.
2024-03-21 16:37:36 -07:00
Federico Builes
0fa40c3c10
bumping to 4.2.3.
2024-03-20 17:57:26 +01:00
Federico Builes
1f6240f54c
Merge pull request #707 from laughedelic/feat/data-outputs
...
Add outputs for the changes data
2024-03-20 17:47:40 +01:00
Federico Builes
b751d41e7e
Merge pull request #702 from actions/dependabot/npm_and_yarn/nodemon-3.1.0
...
Bump nodemon from 3.0.3 to 3.1.0
2024-03-20 06:48:20 +01:00
Federico Builes
6183eb9d2b
Merge pull request #703 from actions/dependabot/npm_and_yarn/eslint-plugin-jest-27.9.0
...
Bump eslint-plugin-jest from 27.6.3 to 27.9.0
2024-03-20 06:48:14 +01:00
laughedelic
6585cc5f01
fix run syntax
2024-03-19 21:23:25 +01:00
laughedelic
218a76cbd5
add clarification about output usage hygiene
2024-03-19 21:22:12 +01:00
laughedelic
d78d095945
revert changes in CI
2024-03-19 19:48:45 +01:00
Federico Builes
36297aa214
Merge pull request #716 from actions/dependabot/npm_and_yarn/types/node-20.11.28
...
Bump @types/node from 20.11.19 to 20.11.28
2024-03-18 05:01:38 +01:00
dependabot[bot]
1e69a8c24a
Bump @types/node from 20.11.19 to 20.11.28
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 20.11.19 to 20.11.28.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-03-18 02:01:11 +00:00
Jon Janego
2f10643938
Merge pull request #715 from actions/jonjanego-patch-2
...
Update README.md
2024-03-15 11:24:37 -05:00
Jon Janego
1eb83b5560
Update README.md
...
minor text clarifications to keep consistent with wording in (the docs)[https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/configuring-dependency-review ]
2024-03-15 11:22:32 -05:00
laughedelic
47b7acc8e3
update dist
2024-03-15 03:22:15 +01:00
laughedelic
16bfb3360c
Merge branch 'main' into feat/data-outputs
2024-03-15 03:21:07 +01:00
Alexey Alekhin
bc6a1f0dd4
avoid using if: always()
2024-03-15 03:01:16 +01:00
Alexey Alekhin
e38e634e54
Apply suggestions for docs
...
Co-authored-by: Federico Builes <febuiles@github.com >
2024-03-15 02:32:15 +01:00
Jon Janego
5574be321f
Merge pull request #712 from actions/jonjanego-patch-1
...
Update stale.yaml and CONTRIBUTING.md
2024-03-14 15:23:18 -05:00
Jon Janego
aef51371b7
Update CONTRIBUTING.md
...
explaining stalebot
2024-03-14 14:44:38 -05:00
Jon Janego
3b70c9966e
Update stale.yaml
...
fixing some comments, adding a keep label for issues, explicitly defining labeling behavior for issues
2024-03-14 14:43:08 -05:00
Federico Builes
adaed32746
Merge pull request #709 from jhutchings1/scorecard
...
Add support for calculating OpenSSF Scorecards
2024-03-14 06:30:21 +01:00
Justin Hutchings
4ce120135b
Fix OpenSSF Scorecard display issue
2024-03-13 16:23:23 +00:00
Justin Hutchings
0e8bc32a54
Fix prettier linting
2024-03-12 22:06:54 +00:00
Justin Hutchings
f875e6ec1d
Simplify truthiness check
2024-03-12 21:49:01 +00:00
Justin Hutchings
72666694f0
Fix broken tests, clean up dead code
2024-03-12 21:32:27 +00:00
Justin Hutchings
7dc5f537be
Add scorecard to summary and count scorecard warnings
2024-03-12 20:47:25 +00:00
Justin Hutchings
ac600387ca
Add tests
2024-03-12 17:55:10 +00:00
Justin Hutchings
d186d663df
Automatically collapse the scorecard table
2024-03-11 22:23:03 +00:00
Justin Hutchings
b7fdb4c8e2
Remove unused import
2024-03-11 22:19:09 +00:00
Justin Hutchings
ba6b805e18
Remove dead code, complete printScorecardBlock
2024-03-11 22:17:28 +00:00
Justin Hutchings
70801db78f
Revert line number implementation
2024-03-11 22:05:19 +00:00
Justin Hutchings
5bc19761c5
Add debugging
2024-03-08 03:00:15 +00:00
Justin Hutchings
5ba0d0fe17
Add debugging
2024-03-08 02:53:41 +00:00
Justin Hutchings
6a74ebd41e
Fix column number implementation
2024-03-08 02:49:15 +00:00
Justin Hutchings
250250e73d
Refactor schema, add line numbers to warnings
2024-03-08 02:31:11 +00:00
Justin Hutchings
cb0a0415fb
Update dist
2024-03-08 01:30:46 +00:00
Justin Hutchings
296bf3ab1b
Add docs, implement warning behavior
2024-03-08 01:29:53 +00:00
Justin Hutchings
59d4782b76
Add links to summary
2024-03-06 20:14:19 +00:00
Justin Hutchings
e878bf8824
Fix bug with protocol prefixes
2024-03-06 20:06:26 +00:00
Justin Hutchings
1b21f392ca
Fix scorecard bug
2024-03-06 19:44:54 +00:00
Justin Hutchings
111227a118
Refactor scorecard API implementation
2024-03-06 14:43:49 +00:00
Justin Hutchings
a1258f2a2e
Fix icon issues
2024-03-04 20:07:08 +00:00
Justin Hutchings
29b9ef447a
Fix icons and undefined/null checks
2024-03-04 20:03:39 +00:00
Justin Hutchings
b5a1aee21a
Add debugging
2024-03-04 19:45:36 +00:00
Justin Hutchings
b3d2872ac7
Update dist
2024-03-04 19:39:13 +00:00
Justin Hutchings
5bace73db3
Fix undefined/null checks
2024-03-04 19:38:52 +00:00
Justin Hutchings
f8ebb4b946
Add formatting around warning for low scorecard levels
2024-03-04 19:34:29 +00:00
laughedelic
84b80e6e84
add checks for the outputs
2024-03-04 19:53:14 +01:00
Justin Hutchings
1251834b92
Add dependencies without scorecards to scorecards table
2024-03-04 18:51:52 +00:00
Justin Hutchings
94125c4b1e
Fix formatting issues
2024-03-04 18:38:53 +00:00
Justin Hutchings
9843156266
Improve summary formatting
2024-03-04 18:28:43 +00:00
Justin Hutchings
2fcc6a1c72
Fix config implementation
2024-03-04 18:17:53 +00:00
Justin Hutchings
ea64ae9d4d
Fix config mapping issue
2024-03-04 18:11:46 +00:00
Justin Hutchings
5955069e69
Add debugging
2024-03-04 18:04:06 +00:00
laughedelic
05fcfa49e0
add a note about outputs size limit
2024-03-04 18:58:48 +01:00
laughedelic
75be7f0c0c
clarify docs, add a usage example
2024-03-04 18:53:03 +01:00
Justin Hutchings
7d2e20d06d
Stub out summary implementation for scorecards
2024-03-04 17:52:17 +00:00
Jon Janego
97f7ba06d0
Update CONTRIBUTING.md
...
some more examples of good contribution standards
2024-03-04 10:31:16 -06:00
Justin Hutchings
2bc3ecb19b
Fix type issues
2024-03-03 06:50:11 +00:00
Justin Hutchings
c286ea91b0
Add nullish to types
2024-03-03 06:08:47 +00:00
Justin Hutchings
6bcbf042ff
Fix OpenSSF Scorecard Score retrieval
2024-03-03 05:59:37 +00:00
Justin Hutchings
43286afc54
Add debugging
2024-03-03 05:48:33 +00:00
Justin Hutchings
764e39e792
Attempt to fix type issues
2024-03-03 05:43:20 +00:00
Justin Hutchings
bf2683a10c
Fixing url error
2024-03-03 05:30:49 +00:00
Justin Hutchings
f1b66d10c9
Remove dependency on PackageURL
2024-03-03 05:26:55 +00:00
Justin Hutchings
ffd129c285
Refactor types, add printing
2024-03-03 05:24:07 +00:00
Justin Hutchings
72d5b06a68
Add more error handling
2024-03-03 01:34:03 +00:00
Justin Hutchings
b2ddac1749
Remove custom type to go around errors
2024-03-03 01:27:54 +00:00
Justin Hutchings
f357c751be
fix extra slash
2024-03-03 01:21:27 +00:00
Justin Hutchings
e16e218fdc
Encode URI component to fix 404
2024-03-03 01:15:16 +00:00
Justin Hutchings
f87cc241f7
Fixing bugs
2024-03-03 01:10:08 +00:00
Justin Hutchings
d641d3a261
Fix bugs in scorecard
2024-03-03 01:05:36 +00:00
Justin Hutchings
4230610a70
Add exception handling
2024-03-03 00:46:24 +00:00
Justin Hutchings
af5438b06f
Add debugging
2024-03-03 00:31:13 +00:00
Justin Hutchings
781bff117a
Fix prettier issues, and JSON error in main
2024-03-03 00:25:40 +00:00
Justin Hutchings
7a8ce509c9
Update dist
2024-03-03 00:17:26 +00:00
Justin Hutchings
f419e37c19
Fix build breaks
2024-03-03 00:15:42 +00:00
Justin Hutchings
3d70a3cf05
Draft integration with deps.dev
2024-03-02 22:37:50 +00:00
laughedelic
e7aef164a1
chore: build and package
2024-03-02 05:10:30 +01:00
laughedelic
ab8c3848de
docs: update readme
2024-03-02 05:09:49 +01:00
laughedelic
eecc9aab88
feat: add action outputs for different types of changes
2024-03-02 04:55:58 +01:00
dependabot[bot]
7f632dbe1f
Bump eslint-plugin-jest from 27.6.3 to 27.9.0
...
Bumps [eslint-plugin-jest](https://github.com/jest-community/eslint-plugin-jest ) from 27.6.3 to 27.9.0.
- [Release notes](https://github.com/jest-community/eslint-plugin-jest/releases )
- [Changelog](https://github.com/jest-community/eslint-plugin-jest/blob/main/CHANGELOG.md )
- [Commits](https://github.com/jest-community/eslint-plugin-jest/compare/v27.6.3...v27.9.0 )
---
updated-dependencies:
- dependency-name: eslint-plugin-jest
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-26 01:35:46 +00:00
dependabot[bot]
ba18fafa8d
Bump nodemon from 3.0.3 to 3.1.0
...
Bumps [nodemon](https://github.com/remy/nodemon ) from 3.0.3 to 3.1.0.
- [Release notes](https://github.com/remy/nodemon/releases )
- [Commits](https://github.com/remy/nodemon/compare/v3.0.3...v3.1.0 )
---
updated-dependencies:
- dependency-name: nodemon
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-26 01:35:37 +00:00
Federico Builes
40eb2b8b00
Merge pull request #698 from jsoref/set-comment-as-output
...
Set comment as output
2024-02-21 12:36:50 +01:00
Josh Soref
db6a5119ce
Set comment as output
...
Move the logic from the caller as a negation instead of trying to
negate it by hand.
2024-02-20 14:19:19 -05:00
Federico Builes
9129d7d40b
don't set output on every run
2024-02-20 18:47:36 +01:00
Jon Janego
a1be843151
Update stale.yaml
...
Adding stale checks to issues
2024-02-20 10:25:09 -06:00
Federico Builes
587ff57efd
Don't use if: always() in examples.
2024-02-19 18:11:35 +01:00
Federico Builes
be8bc500ee
Merge branch 'output-comment'
2024-02-19 17:26:04 +01:00
Federico Builes
cb180bf383
Merge pull request #696 from actions/output-comment
...
Expose dependency comment content
2024-02-19 17:23:55 +01:00
Federico Builes
b2ea187fd2
bumping action version
2024-02-19 17:21:55 +01:00
Federico Builes
c94f57ba90
Add a new image for the example report.
2024-02-19 17:18:02 +01:00
Federico Builes
124fafe31e
Merge branch 'issue-250' into output-comment
2024-02-19 17:12:19 +01:00
Federico Builes
26174d80a2
Merge branch 'issue-250' of https://github.com/jsoref/dependency-review-action into issue-250
2024-02-19 17:12:08 +01:00
Federico Builes
a87338ac8a
Update example workflow.
2024-02-19 17:10:11 +01:00
Josh Soref
64f81cd2da
Expose dependency comment content
2024-02-19 11:07:56 -05:00
Josh Soref
0ca1f606a4
Report action input names
2024-02-19 11:07:42 -05:00
Josh Soref
d416fb5267
Add minimal alt text to README
2024-02-19 11:07:19 -05:00
Josh Soref
81bba5eb54
Remove /en/ from doc links
...
The docs server will redirect based on the user's browser's
preference.
2024-02-19 11:07:07 -05:00
Josh Soref
f9daaa3561
Remove obsolete reference to GHES 3.8
...
GHES 3.7 reached EOL 2024-01-04, as such all GHES versions should be supported.
2024-02-19 11:06:54 -05:00
Josh Soref
60c44a0894
Remove obsolete references to GHES 3.6
...
GHES 3.6 reached EOL 2023-09-25.
2024-02-19 11:06:54 -05:00
Federico Builes
7911825c25
Point directly to DR API.
2024-02-19 16:38:15 +01:00
Federico Builes
ad040f4b88
adding dist/
2024-02-19 16:22:53 +01:00
Josh Soref
2876926e7f
Expose dependency comment content
2024-02-19 10:09:03 -05:00
Josh Soref
47a0fcbcd4
Report action input names
2024-02-19 10:06:32 -05:00
Josh Soref
da507e61ac
Add minimal alt text to README
2024-02-19 10:06:32 -05:00
Josh Soref
0034949d8d
Remove /en/ from doc links
...
The docs server will redirect based on the user's browser's
preference.
2024-02-19 10:06:32 -05:00
Josh Soref
f1706f5a9d
Remove obsolete reference to GHES 3.8
...
GHES 3.7 reached EOL 2024-01-04, as such all GHES versions should be supported.
2024-02-19 09:49:21 -05:00
Josh Soref
a569f6fc5c
Remove obsolete references to GHES 3.6
...
GHES 3.6 reached EOL 2023-09-25.
2024-02-19 09:49:21 -05:00
Federico Builes
fd07d42ce8
bumping to 4.1.1
2024-02-19 10:03:58 +01:00
Federico Builes
77290ae4a1
bump transitive dep on undici
2024-02-19 10:03:58 +01:00
Federico Builes
9411082069
Merge pull request #693 from actions/dependabot/npm_and_yarn/types/node-20.11.19
...
Bump @types/node from 20.11.17 to 20.11.19
2024-02-19 08:54:35 +01:00
dependabot[bot]
73d8c1b981
Bump @types/node from 20.11.17 to 20.11.19
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 20.11.17 to 20.11.19.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-19 01:24:57 +00:00
Federico Builes
80f10bf419
Bump to 4.1.0.
2024-02-14 08:13:14 +01:00
Federico Builes
17728c80ab
Merge pull request #689 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.21.0
...
Bump @typescript-eslint/eslint-plugin from 6.20.0 to 6.21.0
2024-02-12 06:31:08 +01:00
dependabot[bot]
0ac4f80276
Bump @typescript-eslint/eslint-plugin from 6.20.0 to 6.21.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.20.0 to 6.21.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.21.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-12 05:29:22 +00:00
Federico Builes
1ebcf1475c
Merge pull request #690 from actions/dependabot/npm_and_yarn/types/node-20.11.17
...
Bump @types/node from 20.11.10 to 20.11.17
2024-02-12 06:28:34 +01:00
Federico Builes
5777ce6aec
Merge pull request #688 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-6.21.0
...
Bump @typescript-eslint/parser from 6.20.0 to 6.21.0
2024-02-12 06:28:19 +01:00
Federico Builes
37dd5f9e8a
Merge pull request #687 from actions/dependabot/npm_and_yarn/ts-jest-29.1.2
...
Bump ts-jest from 29.1.1 to 29.1.2
2024-02-12 06:28:12 +01:00
dependabot[bot]
6c2af06a9d
Bump @types/node from 20.11.10 to 20.11.17
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 20.11.10 to 20.11.17.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-12 01:14:23 +00:00
dependabot[bot]
58d70bd41a
Bump @typescript-eslint/parser from 6.20.0 to 6.21.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 6.20.0 to 6.21.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.21.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-12 01:14:01 +00:00
dependabot[bot]
972c2b36d8
Bump ts-jest from 29.1.1 to 29.1.2
...
Bumps [ts-jest](https://github.com/kulshekhar/ts-jest ) from 29.1.1 to 29.1.2.
- [Release notes](https://github.com/kulshekhar/ts-jest/releases )
- [Changelog](https://github.com/kulshekhar/ts-jest/blob/main/CHANGELOG.md )
- [Commits](https://github.com/kulshekhar/ts-jest/compare/v29.1.1...v29.1.2 )
---
updated-dependencies:
- dependency-name: ts-jest
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-12 01:13:48 +00:00
Justin Holguín
60f93ef4a0
Merge pull request #432 from tgrall/issue-431-fail-on-severity-none
...
Add none as option for fail-on-severity
2024-02-11 14:00:39 -08:00
tgrall
c2936a6e3e
fix reviewed done by @juxtin - bad line in yml
2024-02-10 09:20:39 +01:00
Federico Builes
ba2d570913
Merge pull request #682 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.20.0
...
Bump @typescript-eslint/eslint-plugin from 6.19.1 to 6.20.0
2024-02-05 07:57:39 +01:00
dependabot[bot]
629b4c97dd
Bump @typescript-eslint/eslint-plugin from 6.19.1 to 6.20.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.19.1 to 6.20.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.20.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-05 06:56:33 +00:00
Federico Builes
58e8c75f3b
Merge pull request #684 from actions/dependabot/npm_and_yarn/got-14.2.0
...
Bump got from 14.0.0 to 14.2.0
2024-02-05 07:55:50 +01:00
dependabot[bot]
8db04ed44f
Bump got from 14.0.0 to 14.2.0
...
Bumps [got](https://github.com/sindresorhus/got ) from 14.0.0 to 14.2.0.
- [Release notes](https://github.com/sindresorhus/got/releases )
- [Commits](https://github.com/sindresorhus/got/compare/v14.0.0...v14.2.0 )
---
updated-dependencies:
- dependency-name: got
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-05 06:55:44 +00:00
Federico Builes
b3aa197a26
Merge pull request #683 from actions/dependabot/npm_and_yarn/prettier-3.2.5
...
Bump prettier from 3.2.4 to 3.2.5
2024-02-05 07:55:42 +01:00
Federico Builes
4e78eb60ef
Merge pull request #681 from actions/dependabot/npm_and_yarn/types/jest-29.5.12
...
Bump @types/jest from 29.5.11 to 29.5.12
2024-02-05 07:54:49 +01:00
Federico Builes
65f749b96d
Merge pull request #680 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-6.20.0
...
Bump @typescript-eslint/parser from 6.18.1 to 6.20.0
2024-02-05 07:54:36 +01:00
dependabot[bot]
0043ed5ccb
Bump prettier from 3.2.4 to 3.2.5
...
Bumps [prettier](https://github.com/prettier/prettier ) from 3.2.4 to 3.2.5.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/3.2.4...3.2.5 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-05 01:24:36 +00:00
dependabot[bot]
52933765bf
Bump @types/jest from 29.5.11 to 29.5.12
...
Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest ) from 29.5.11 to 29.5.12.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest )
---
updated-dependencies:
- dependency-name: "@types/jest"
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-05 01:24:18 +00:00
dependabot[bot]
6a6f26102b
Bump @typescript-eslint/parser from 6.18.1 to 6.20.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 6.18.1 to 6.20.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.20.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-02-05 01:24:11 +00:00
tgrall
8f3df4d674
fix ci failure on format-check
2024-02-02 06:09:20 +01:00
tgrall
98e8293881
Update Readme and action.yml based on review comments
2024-02-01 06:03:53 +01:00
Justin Holguín
748888b3fd
Merge pull request #665 from actions/dependabot/npm_and_yarn/prettier-3.2.4
...
Bump prettier from 3.1.1 to 3.2.4
2024-01-31 14:19:36 -08:00
Justin Holguín
4dffb75625
Run prettier --write
2024-01-31 22:09:37 +00:00
Justin Holguín
9e50351924
Merge pull request #678 from actions/juxtin/codeql-ignore-dist
...
Use manual codeql config
2024-01-31 13:49:51 -08:00
Justin Holguín
0812876f7c
Update codeql.yml
2024-01-31 13:44:54 -08:00
Justin Holguín
4f37a60d4f
Create codeql.yml
2024-01-31 13:36:31 -08:00
dependabot[bot]
c0518321c3
Bump prettier from 3.1.1 to 3.2.4
...
Bumps [prettier](https://github.com/prettier/prettier ) from 3.1.1 to 3.2.4.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/3.1.1...3.2.4 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-31 18:57:22 +00:00
Justin Holguín
0229309241
Merge pull request #673 from actions/dependabot/npm_and_yarn/nodemon-3.0.3
...
Bump nodemon from 3.0.2 to 3.0.3
2024-01-31 10:56:20 -08:00
Jon Janego
c664fc5964
Update examples.md
...
spelling
2024-01-31 12:43:08 -06:00
Federico Builes
a7da313c35
Merge pull request #675 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.19.1
...
Bump @typescript-eslint/eslint-plugin from 6.18.1 to 6.19.1
2024-01-29 07:50:12 +01:00
Federico Builes
8953f45584
Merge pull request #674 from actions/dependabot/npm_and_yarn/types/node-20.11.10
...
Bump @types/node from 20.11.5 to 20.11.10
2024-01-29 07:49:59 +01:00
dependabot[bot]
d93026fc89
Bump @typescript-eslint/eslint-plugin from 6.18.1 to 6.19.1
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.18.1 to 6.19.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.19.1/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-29 01:35:06 +00:00
dependabot[bot]
5a2ac62566
Bump @types/node from 20.11.5 to 20.11.10
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 20.11.5 to 20.11.10.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-29 01:34:51 +00:00
dependabot[bot]
0f007f69b1
Bump nodemon from 3.0.2 to 3.0.3
...
Bumps [nodemon](https://github.com/remy/nodemon ) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/remy/nodemon/releases )
- [Commits](https://github.com/remy/nodemon/compare/v3.0.2...v3.0.3 )
---
updated-dependencies:
- dependency-name: nodemon
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-29 01:34:40 +00:00
tgrall
05d861260a
finalize testing
2024-01-28 15:54:59 +01:00
tgrall
2c526853b4
new debug test
2024-01-28 15:51:39 +01:00
tgrall
9e251a5913
dist
2024-01-28 15:00:36 +01:00
tgrall
ee5bd475ba
debug behavior
2024-01-28 14:59:04 +01:00
tgrall
b0a705da21
Fix license printing bug in main.ts
2024-01-28 14:54:28 +01:00
tgrall
0bab6ffc2c
Fix vulnerability check to print warnings instead
...
of failing
2024-01-28 14:54:14 +01:00
tgrall
f91404ca86
set status to low when warn-only is set to true
2024-01-28 14:35:44 +01:00
tgrall
d6f324d18a
fix typo in readme
2024-01-28 14:24:12 +01:00
tgrall
f1576849e6
package the action
2024-01-28 10:58:10 +01:00
tgrall
fc49851780
merge from main and fix code review comment from @juxtin
2024-01-28 10:16:07 +01:00
Jon Janego
d53388efe8
Merge pull request #671 from jonjanego/main
...
Create stale.yaml
2024-01-26 10:09:43 -06:00
Jon Janego
56991330a3
Update stale.yaml
...
assigning explicit permissions
2024-01-26 09:15:48 -06:00
Jon Janego
a824acd5d7
Create stale.yaml
2024-01-25 13:49:10 -06:00
Federico Builes
935098a950
updating @types/node to Node 20
2024-01-22 07:54:40 +01:00
Federico Builes
b658b91622
Merge pull request #669 from actions/dependabot/npm_and_yarn/eslint-plugin-jest-27.6.3
...
Bump eslint-plugin-jest from 27.6.0 to 27.6.3
2024-01-22 07:40:35 +01:00
dependabot[bot]
d16453ab26
Bump eslint-plugin-jest from 27.6.0 to 27.6.3
...
Bumps [eslint-plugin-jest](https://github.com/jest-community/eslint-plugin-jest ) from 27.6.0 to 27.6.3.
- [Release notes](https://github.com/jest-community/eslint-plugin-jest/releases )
- [Changelog](https://github.com/jest-community/eslint-plugin-jest/blob/main/CHANGELOG.md )
- [Commits](https://github.com/jest-community/eslint-plugin-jest/compare/v27.6.0...v27.6.3 )
---
updated-dependencies:
- dependency-name: eslint-plugin-jest
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-22 06:38:10 +00:00
Federico Builes
0381eac2bc
Merge pull request #667 from actions/dependabot/npm_and_yarn/eslint-plugin-prettier-5.1.3
...
Bump eslint-plugin-prettier from 5.1.2 to 5.1.3
2024-01-22 07:36:52 +01:00
dependabot[bot]
1967b21a03
Bump eslint-plugin-prettier from 5.1.2 to 5.1.3
...
Bumps [eslint-plugin-prettier](https://github.com/prettier/eslint-plugin-prettier ) from 5.1.2 to 5.1.3.
- [Release notes](https://github.com/prettier/eslint-plugin-prettier/releases )
- [Changelog](https://github.com/prettier/eslint-plugin-prettier/blob/master/CHANGELOG.md )
- [Commits](https://github.com/prettier/eslint-plugin-prettier/compare/v5.1.2...v5.1.3 )
---
updated-dependencies:
- dependency-name: eslint-plugin-prettier
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-22 01:15:42 +00:00
Federico Builes
4cd9eb2d23
Updating docs to point to v4.
2024-01-18 14:23:52 +01:00
Federico Builes
4901385134
bump to 4.0.0
2024-01-18 13:57:38 +01:00
Federico Builes
dbf82a4a5e
Merge pull request #639 from takost/takost/update-to-node-20
...
Update action to node20
2024-01-18 13:52:05 +01:00
Federico Builes
78aeb2a948
Merge pull request #663 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-6.18.1
...
Bump @typescript-eslint/parser from 6.18.0 to 6.18.1
2024-01-15 06:39:13 +01:00
dependabot[bot]
4e510006f5
Bump @typescript-eslint/parser from 6.18.0 to 6.18.1
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 6.18.0 to 6.18.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.18.1/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-15 05:38:23 +00:00
Federico Builes
9560737c5e
Merge pull request #661 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.18.1
...
Bump @typescript-eslint/eslint-plugin from 6.18.0 to 6.18.1
2024-01-15 06:37:15 +01:00
Federico Builes
4125f47f7e
Merge pull request #660 from actions/dependabot/npm_and_yarn/types/node-16.18.70
...
Bump @types/node from 16.18.62 to 16.18.70
2024-01-15 06:37:05 +01:00
dependabot[bot]
07cc93e0c8
Bump @typescript-eslint/eslint-plugin from 6.18.0 to 6.18.1
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.18.0 to 6.18.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.18.1/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-15 01:21:13 +00:00
dependabot[bot]
e2c203b8b7
Bump @types/node from 16.18.62 to 16.18.70
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.62 to 16.18.70.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-15 01:20:53 +00:00
Federico Builes
f0b304d0bc
Merge pull request #653 from actions/dependabot/npm_and_yarn/got-14.0.0
...
Bump got from 13.0.0 to 14.0.0
2024-01-09 13:24:33 +01:00
Federico Builes
e41543eaf0
Merge pull request #656 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-6.18.0
...
Bump @typescript-eslint/parser from 6.16.0 to 6.18.0
2024-01-08 11:50:44 +01:00
dependabot[bot]
8ded6194d1
Bump @typescript-eslint/parser from 6.16.0 to 6.18.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 6.16.0 to 6.18.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.18.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-08 10:46:03 +00:00
Federico Builes
b5f60d5e37
Merge pull request #657 from actions/dependabot/npm_and_yarn/typescript-5.3.3
...
Bump typescript from 5.3.2 to 5.3.3
2024-01-08 11:45:16 +01:00
Federico Builes
45fc3f5adc
Merge pull request #655 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.18.0
...
Bump @typescript-eslint/eslint-plugin from 6.15.0 to 6.18.0
2024-01-08 11:44:58 +01:00
Federico Builes
c8593625f2
Merge pull request #654 from actions/dependabot/npm_and_yarn/eslint-plugin-prettier-5.1.2
...
Bump eslint-plugin-prettier from 5.0.1 to 5.1.2
2024-01-08 11:44:42 +01:00
dependabot[bot]
d2ca024914
Bump typescript from 5.3.2 to 5.3.3
...
Bumps [typescript](https://github.com/Microsoft/TypeScript ) from 5.3.2 to 5.3.3.
- [Release notes](https://github.com/Microsoft/TypeScript/releases )
- [Commits](https://github.com/Microsoft/TypeScript/compare/v5.3.2...v5.3.3 )
---
updated-dependencies:
- dependency-name: typescript
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-08 01:27:41 +00:00
dependabot[bot]
9649fc68a8
Bump @typescript-eslint/eslint-plugin from 6.15.0 to 6.18.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.15.0 to 6.18.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.18.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-08 01:27:04 +00:00
dependabot[bot]
2ac94ccf28
Bump eslint-plugin-prettier from 5.0.1 to 5.1.2
...
Bumps [eslint-plugin-prettier](https://github.com/prettier/eslint-plugin-prettier ) from 5.0.1 to 5.1.2.
- [Release notes](https://github.com/prettier/eslint-plugin-prettier/releases )
- [Changelog](https://github.com/prettier/eslint-plugin-prettier/blob/master/CHANGELOG.md )
- [Commits](https://github.com/prettier/eslint-plugin-prettier/compare/v5.0.1...v5.1.2 )
---
updated-dependencies:
- dependency-name: eslint-plugin-prettier
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-08 01:26:42 +00:00
dependabot[bot]
925e3a5871
Bump got from 13.0.0 to 14.0.0
...
Bumps [got](https://github.com/sindresorhus/got ) from 13.0.0 to 14.0.0.
- [Release notes](https://github.com/sindresorhus/got/releases )
- [Commits](https://github.com/sindresorhus/got/compare/v13.0.0...v14.0.0 )
---
updated-dependencies:
- dependency-name: got
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-08 01:26:34 +00:00
Henri Maurer
ab6f73d40f
Merge pull request #621 from actions/dependabot/npm_and_yarn/octokit-3.1.2
...
Bump octokit from 2.1.0 to 3.1.2
2024-01-05 09:38:43 +00:00
Henri Maurer
746e9675d6
npm run package
2024-01-05 09:37:10 +00:00
Henri Maurer
3735443721
update @octokit/* and @actions/*
2024-01-05 09:36:49 +00:00
dependabot[bot]
44bab84b22
Bump octokit from 2.1.0 to 3.1.2
...
Bumps [octokit](https://github.com/octokit/octokit.js ) from 2.1.0 to 3.1.2.
- [Release notes](https://github.com/octokit/octokit.js/releases )
- [Commits](https://github.com/octokit/octokit.js/compare/v2.1.0...v3.1.2 )
---
updated-dependencies:
- dependency-name: octokit
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-04 16:51:50 +00:00
Henri Maurer
8690720eb6
Merge pull request #652 from actions/dependabot/npm_and_yarn/octokit/webhooks-10.9.2
...
Bump @octokit/webhooks from 10.9.1 to 10.9.2
2024-01-04 16:48:16 +00:00
Henri Maurer
e03c8a14eb
npm run all
2024-01-04 16:46:59 +00:00
dependabot[bot]
194e338d30
Bump @octokit/webhooks from 10.9.1 to 10.9.2
...
Bumps [@octokit/webhooks](https://github.com/octokit/webhooks.js ) from 10.9.1 to 10.9.2.
- [Release notes](https://github.com/octokit/webhooks.js/releases )
- [Commits](https://github.com/octokit/webhooks.js/compare/v10.9.1...v10.9.2 )
---
updated-dependencies:
- dependency-name: "@octokit/webhooks"
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-04 16:40:33 +00:00
Henri Maurer
1d740b64ec
Merge pull request #642 from actions/dependabot/github_actions/actions/upload-artifact-4
...
Bump actions/upload-artifact from 3 to 4
2024-01-04 16:40:31 +00:00
Henri Maurer
c74b580d73
Merge pull request #651 from actions/release-3.1.5
...
Bump version to 3.1.5
2024-01-04 15:06:44 +00:00
Henri Maurer
cc4f6536e3
Release 3.1.5
2024-01-04 15:05:38 +00:00
Henri Maurer
d2ed7c0d19
Merge pull request #649 from actions/per-page
...
Smaller `per_page` when requesting diff
2024-01-04 14:33:15 +00:00
Henri Maurer
9e77cc7329
npm run package
2024-01-04 10:49:05 +00:00
Henri Maurer
b383a9aa6e
Smaller per_page when requesting diff
2024-01-04 10:17:51 +00:00
Federico Builes
8a49820431
Merge pull request #646 from actions/dependabot/npm_and_yarn/prettier-3.1.1
...
Bump prettier from 3.1.0 to 3.1.1
2024-01-01 08:02:27 -05:00
Federico Builes
a10a70d24c
Merge pull request #645 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-6.16.0
...
Bump @typescript-eslint/parser from 6.13.1 to 6.16.0
2024-01-01 08:02:14 -05:00
dependabot[bot]
0de163860f
Bump prettier from 3.1.0 to 3.1.1
...
Bumps [prettier](https://github.com/prettier/prettier ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/3.1.0...3.1.1 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-01 01:27:06 +00:00
dependabot[bot]
522f0218d0
Bump @typescript-eslint/parser from 6.13.1 to 6.16.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 6.13.1 to 6.16.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.16.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-01-01 01:26:56 +00:00
Federico Builes
2597ca4eee
Merge pull request #640 from actions/dependabot/npm_and_yarn/eslint-8.56.0
...
Bump eslint from 8.53.0 to 8.56.0
2023-12-28 12:27:10 -05:00
dependabot[bot]
e5c6735807
Bump eslint from 8.53.0 to 8.56.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.53.0 to 8.56.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.53.0...v8.56.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-12-28 15:37:40 +00:00
Federico Builes
94f992f10e
Merge pull request #644 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.15.0
...
Bump @typescript-eslint/eslint-plugin from 6.12.0 to 6.15.0
2023-12-28 10:36:29 -05:00
dependabot[bot]
c45cbd720f
Bump @typescript-eslint/eslint-plugin from 6.12.0 to 6.15.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.12.0 to 6.15.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.15.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-12-25 01:37:54 +00:00
dependabot[bot]
5ccb7d478c
Bump actions/upload-artifact from 3 to 4
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3 to 4.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-12-18 01:54:59 +00:00
Tatyana Kostromskaya
02456f4a00
Merge branch 'main' into takost/update-to-node-20
2023-12-14 15:08:39 +00:00
Tatyana Kostromskaya
1c9a424cbc
.
2023-12-14 15:06:21 +00:00
Federico Builes
2425542aca
Merge pull request #638 from actions/fix-purls
...
Replace pip -> pypi in PURL examples
2023-12-11 17:25:43 +01:00
Federico Builes
b39e17ba5e
Replace pip -> pypi in PURL examples
2023-12-11 17:23:19 +01:00
Federico Builes
b8a398b675
Merge pull request #636 from actions/dependabot/npm_and_yarn/nodemon-3.0.2
...
Bump nodemon from 3.0.1 to 3.0.2
2023-12-11 06:04:47 +01:00
Federico Builes
1612de9646
Merge pull request #637 from actions/dependabot/npm_and_yarn/types/jest-29.5.11
...
Bump @types/jest from 29.5.8 to 29.5.11
2023-12-11 06:04:33 +01:00
dependabot[bot]
53de591348
Bump @types/jest from 29.5.8 to 29.5.11
...
Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest ) from 29.5.8 to 29.5.11.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest )
---
updated-dependencies:
- dependency-name: "@types/jest"
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-12-11 01:51:35 +00:00
dependabot[bot]
288d543806
Bump nodemon from 3.0.1 to 3.0.2
...
Bumps [nodemon](https://github.com/remy/nodemon ) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/remy/nodemon/releases )
- [Commits](https://github.com/remy/nodemon/compare/v3.0.1...v3.0.2 )
---
updated-dependencies:
- dependency-name: nodemon
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-12-11 01:51:24 +00:00
Federico Builes
359e1ffa80
Merge pull request #629 from actions/dependabot/npm_and_yarn/prettier-3.1.0
...
Bump prettier from 3.0.3 to 3.1.0
2023-12-04 08:58:13 +01:00
Federico Builes
63e1558807
Merge pull request #630 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-6.13.1
...
Bump @typescript-eslint/parser from 6.10.0 to 6.13.1
2023-12-04 08:57:52 +01:00
dependabot[bot]
069cbabe02
Bump @typescript-eslint/parser from 6.10.0 to 6.13.1
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 6.10.0 to 6.13.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.13.1/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-12-04 01:25:07 +00:00
dependabot[bot]
2e3c709016
Bump prettier from 3.0.3 to 3.1.0
...
Bumps [prettier](https://github.com/prettier/prettier ) from 3.0.3 to 3.1.0.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/3.0.3...3.1.0 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-12-04 01:24:49 +00:00
Federico Builes
01bc87099b
bumping version
2023-11-28 08:11:14 +01:00
Federico Builes
4b4f0de8e1
Merge pull request #623 from actions/fix-advisory-filters
...
Fix GHSA Filtering
2023-11-28 08:10:11 +01:00
Federico Builes
a93fa86c77
Fixing test name.
2023-11-28 08:08:29 +01:00
Federico Builes
550520e2c5
Merge pull request #624 from actions/dependabot/npm_and_yarn/typescript-5.3.2
...
Bump typescript from 5.2.2 to 5.3.2
2023-11-27 07:22:56 +01:00
Federico Builes
2d0fb60634
Merge pull request #625 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.12.0
...
Bump @typescript-eslint/eslint-plugin from 6.11.0 to 6.12.0
2023-11-27 07:22:47 +01:00
dependabot[bot]
c07c2375ed
Bump @typescript-eslint/eslint-plugin from 6.11.0 to 6.12.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.11.0 to 6.12.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.12.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-11-27 01:17:05 +00:00
dependabot[bot]
4d842d754e
Bump typescript from 5.2.2 to 5.3.2
...
Bumps [typescript](https://github.com/Microsoft/TypeScript ) from 5.2.2 to 5.3.2.
- [Release notes](https://github.com/Microsoft/TypeScript/releases )
- [Commits](https://github.com/Microsoft/TypeScript/compare/v5.2.2...v5.3.2 )
---
updated-dependencies:
- dependency-name: typescript
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-11-27 01:16:38 +00:00
Federico Builes
a6d4686316
adding dist
2023-11-24 14:40:48 +01:00
Federico Builes
4366dbae42
Advisory filters should not drop entire dependencies.
2023-11-24 14:40:18 +01:00
Federico Builes
50dafeb5e4
Tiny logic refactor.
2023-11-24 14:37:30 +01:00
Federico Builes
1cbb048907
Merge pull request #620 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.11.0
...
Bump @typescript-eslint/eslint-plugin from 6.10.0 to 6.11.0
2023-11-20 08:33:40 +01:00
dependabot[bot]
ee69e92054
Bump @typescript-eslint/eslint-plugin from 6.10.0 to 6.11.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.10.0 to 6.11.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.11.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-11-20 07:29:18 +00:00
Federico Builes
5991d7a97d
Merge pull request #619 from actions/dependabot/npm_and_yarn/types/node-16.18.62
...
Bump @types/node from 16.18.61 to 16.18.62
2023-11-20 08:27:56 +01:00
dependabot[bot]
c409735e58
Bump @types/node from 16.18.61 to 16.18.62
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.61 to 16.18.62.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-11-20 01:46:41 +00:00
Federico Builes
7bbfa034e7
bumping to 3.1.3
2023-11-13 17:57:44 +01:00
Federico Builes
26f1ad9120
Merge pull request #617 from theztefan/purl-encoding-error
...
Fixes purl "version must be percent-encoded"
2023-11-13 17:55:23 +01:00
Stefan Petrushevski
152d8e2def
Prettier
2023-11-13 17:45:48 +01:00
Stefan Petrushevski
b99756ecd3
encode string for pUrl
2023-11-13 17:19:24 +01:00
Federico Builes
fde92acd08
Merge pull request #611 from actions/fix-https-proxy
...
Fix proxy failures in 3.1.1
2023-11-08 09:14:57 +01:00
Federico Builes
a89dd96450
adding dist
2023-11-08 08:49:49 +01:00
Federico Builes
76891836b1
revert octokit changes
2023-11-08 08:47:43 +01:00
Federico Builes
fc5e2db757
go back to Node 16 to skip using fetch API
2023-11-08 08:36:27 +01:00
Federico Builes
ded987cb3b
Downgrade usage of retries.
...
This commit reverts:
f7363549ac
76b050a607
8dc52cdbed
2023-11-08 08:35:44 +01:00
Federico Builes
9f45b2463b
bumping to 3.1.1
2023-11-06 08:03:41 +01:00
Federico Builes
559513a56c
Merge pull request #606 from actions/dependabot/npm_and_yarn/actions/github-6.0.0
...
Bump @actions/github from 5.1.1 to 6.0.0
2023-11-06 07:55:54 +01:00
Federico Builes
8edc431d7d
Merge branch 'main' into dependabot/npm_and_yarn/actions/github-6.0.0
2023-11-06 07:52:53 +01:00
Federico Builes
3e8322e4bb
Merge pull request #605 from actions/dependabot/npm_and_yarn/yaml-2.3.4
...
Bump yaml from 2.3.3 to 2.3.4
2023-11-06 07:51:31 +01:00
Federico Builes
5a55885447
adding dist
2023-11-06 07:50:51 +01:00
Federico Builes
f952b5a2c5
Merge branch 'main' into dependabot/npm_and_yarn/yaml-2.3.4
2023-11-06 07:48:24 +01:00
Federico Builes
8678cfac42
Merge pull request #607 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.9.1
...
Bump @typescript-eslint/eslint-plugin from 6.9.0 to 6.9.1
2023-11-06 07:47:08 +01:00
Federico Builes
aa8e70d588
adding dist
2023-11-06 07:46:52 +01:00
Federico Builes
3331d25f9d
adding dist
2023-11-06 07:42:40 +01:00
dependabot[bot]
2af83f55fa
Bump @actions/github from 5.1.1 to 6.0.0
...
Bumps [@actions/github](https://github.com/actions/toolkit/tree/HEAD/packages/github ) from 5.1.1 to 6.0.0.
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/github/RELEASES.md )
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/github )
---
updated-dependencies:
- dependency-name: "@actions/github"
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-11-06 06:42:18 +00:00
dependabot[bot]
0d3cf5ba9e
Bump @typescript-eslint/eslint-plugin from 6.9.0 to 6.9.1
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.9.0 to 6.9.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.9.1/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-11-06 06:42:16 +00:00
Federico Builes
b2a5ead1f7
Merge pull request #604 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-6.9.1
...
Bump @typescript-eslint/parser from 6.8.0 to 6.9.1
2023-11-06 07:41:16 +01:00
Federico Builes
79f0a0b62b
Merge pull request #603 from actions/dependabot/npm_and_yarn/actions/core-1.10.1
...
Bump @actions/core from 1.10.0 to 1.10.1
2023-11-06 07:40:58 +01:00
Federico Builes
fc44602899
adding dist
2023-11-06 07:40:46 +01:00
dependabot[bot]
7177991451
Bump yaml from 2.3.3 to 2.3.4
...
Bumps [yaml](https://github.com/eemeli/yaml ) from 2.3.3 to 2.3.4.
- [Release notes](https://github.com/eemeli/yaml/releases )
- [Commits](https://github.com/eemeli/yaml/compare/v2.3.3...v2.3.4 )
---
updated-dependencies:
- dependency-name: yaml
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-11-06 01:17:54 +00:00
dependabot[bot]
90fe789d91
Bump @typescript-eslint/parser from 6.8.0 to 6.9.1
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 6.8.0 to 6.9.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.9.1/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-11-06 01:17:45 +00:00
dependabot[bot]
5cbf74f675
Bump @actions/core from 1.10.0 to 1.10.1
...
Bumps [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core ) from 1.10.0 to 1.10.1.
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/core/RELEASES.md )
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/core )
---
updated-dependencies:
- dependency-name: "@actions/core"
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-11-06 01:17:31 +00:00
Federico Builes
11e0dead9a
Merge pull request #598 from actions/dependabot/npm_and_yarn/packageurl-js-1.2.0
...
Bump packageurl-js from 1.0.2 to 1.2.0
2023-10-30 09:43:41 +01:00
Federico Builes
3c1cb72dcd
updating dist
2023-10-30 09:31:26 +01:00
Federico Builes
570a2b5dcd
Merge pull request #597 from actions/dependabot/npm_and_yarn/eslint-8.52.0
...
Bump eslint from 8.51.0 to 8.52.0
2023-10-30 09:28:21 +01:00
Federico Builes
a7e01b8d9c
Merge pull request #599 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.9.0
...
Bump @typescript-eslint/eslint-plugin from 6.8.0 to 6.9.0
2023-10-30 09:28:05 +01:00
dependabot[bot]
168567cd17
Bump eslint from 8.51.0 to 8.52.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.51.0 to 8.52.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.51.0...v8.52.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-30 08:25:08 +00:00
dependabot[bot]
1d86ff759b
Bump @typescript-eslint/eslint-plugin from 6.8.0 to 6.9.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.8.0 to 6.9.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.9.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-30 08:25:07 +00:00
Federico Builes
0631089c32
Merge pull request #596 from actions/dependabot/npm_and_yarn/eslint-plugin-jest-27.6.0
...
Bump eslint-plugin-jest from 27.4.2 to 27.6.0
2023-10-30 09:24:44 +01:00
Federico Builes
0b8ffde994
Merge pull request #600 from actions/dependabot/npm_and_yarn/types/spdx-satisfies-0.1.1
...
Bump @types/spdx-satisfies from 0.1.0 to 0.1.1
2023-10-30 09:23:36 +01:00
Federico Builes
68d57cd360
Merge pull request #601 from actions/dependabot/github_actions/actions/setup-node-4
...
Bump actions/setup-node from 3 to 4
2023-10-30 09:22:44 +01:00
dependabot[bot]
7314a0c1f5
Bump actions/setup-node from 3 to 4
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 3 to 4.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](https://github.com/actions/setup-node/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-30 01:40:15 +00:00
dependabot[bot]
cfeea91bf4
Bump @types/spdx-satisfies from 0.1.0 to 0.1.1
...
Bumps [@types/spdx-satisfies](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/spdx-satisfies ) from 0.1.0 to 0.1.1.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/spdx-satisfies )
---
updated-dependencies:
- dependency-name: "@types/spdx-satisfies"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-30 01:08:35 +00:00
dependabot[bot]
c8515ab391
Bump packageurl-js from 1.0.2 to 1.2.0
...
Bumps [packageurl-js](https://github.com/package-url/packageurl-js ) from 1.0.2 to 1.2.0.
- [Changelog](https://github.com/package-url/packageurl-js/blob/master/CHANGELOG.md )
- [Commits](https://github.com/package-url/packageurl-js/compare/v1.0.2...v1.2.0 )
---
updated-dependencies:
- dependency-name: packageurl-js
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-30 01:07:56 +00:00
dependabot[bot]
cff52fd316
Bump eslint-plugin-jest from 27.4.2 to 27.6.0
...
Bumps [eslint-plugin-jest](https://github.com/jest-community/eslint-plugin-jest ) from 27.4.2 to 27.6.0.
- [Release notes](https://github.com/jest-community/eslint-plugin-jest/releases )
- [Changelog](https://github.com/jest-community/eslint-plugin-jest/blob/main/CHANGELOG.md )
- [Commits](https://github.com/jest-community/eslint-plugin-jest/compare/v27.4.2...v27.6.0 )
---
updated-dependencies:
- dependency-name: eslint-plugin-jest
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-30 01:07:31 +00:00
Federico Builes
e65eb02ccf
Merge pull request #591 from actions/dependabot/npm_and_yarn/typescript-5.2.2
...
Bump typescript from 4.9.5 to 5.2.2
2023-10-23 12:27:41 +02:00
Federico Builes
88953c2b16
updating dist
2023-10-23 12:26:03 +02:00
Federico Builes
d97416955e
Merge pull request #594 from actions/dependabot/npm_and_yarn/babel/traverse-7.23.2
...
Bump @babel/traverse from 7.23.0 to 7.23.2
2023-10-23 06:57:28 +02:00
dependabot[bot]
523c9a28aa
Bump @babel/traverse from 7.23.0 to 7.23.2
...
Bumps [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse ) from 7.23.0 to 7.23.2.
- [Release notes](https://github.com/babel/babel/releases )
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md )
- [Commits](https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse )
---
updated-dependencies:
- dependency-name: "@babel/traverse"
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-23 04:56:30 +00:00
dependabot[bot]
f85d4d5bc2
Bump typescript from 4.9.5 to 5.2.2
...
Bumps [typescript](https://github.com/Microsoft/TypeScript ) from 4.9.5 to 5.2.2.
- [Release notes](https://github.com/Microsoft/TypeScript/releases )
- [Commits](https://github.com/Microsoft/TypeScript/compare/v4.9.5...v5.2.2 )
---
updated-dependencies:
- dependency-name: typescript
dependency-type: direct:development
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-23 03:19:39 +00:00
Federico Builes
89ff65dbf7
Merge pull request #589 from actions/dependabot/npm_and_yarn/eslint-plugin-github-4.10.1
...
Bump eslint-plugin-github from 4.9.2 to 4.10.1
2023-10-23 05:18:52 +02:00
Federico Builes
c3c32181a9
Merge pull request #592 from actions/dependabot/npm_and_yarn/types/spdx-expression-parse-3.0.4
...
Bump @types/spdx-expression-parse from 3.0.3 to 3.0.4
2023-10-23 05:18:42 +02:00
Federico Builes
ead6e4616f
Merge pull request #593 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-6.8.0
...
Bump @typescript-eslint/parser from 6.7.3 to 6.8.0
2023-10-23 05:18:25 +02:00
dependabot[bot]
a265e18106
Bump @types/spdx-expression-parse from 3.0.3 to 3.0.4
...
Bumps [@types/spdx-expression-parse](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/spdx-expression-parse ) from 3.0.3 to 3.0.4.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/spdx-expression-parse )
---
updated-dependencies:
- dependency-name: "@types/spdx-expression-parse"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-23 03:13:32 +00:00
dependabot[bot]
a8759965d7
Bump @typescript-eslint/parser from 6.7.3 to 6.8.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 6.7.3 to 6.8.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.8.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-23 03:13:20 +00:00
Federico Builes
954314c2b1
Merge pull request #590 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.8.0
...
Bump @typescript-eslint/eslint-plugin from 6.7.5 to 6.8.0
2023-10-23 05:11:58 +02:00
dependabot[bot]
5b62f3bc06
Bump @typescript-eslint/eslint-plugin from 6.7.5 to 6.8.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.7.5 to 6.8.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.8.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-23 01:57:41 +00:00
dependabot[bot]
fddf4c3474
Bump eslint-plugin-github from 4.9.2 to 4.10.1
...
Bumps [eslint-plugin-github](https://github.com/github/eslint-plugin-github ) from 4.9.2 to 4.10.1.
- [Release notes](https://github.com/github/eslint-plugin-github/releases )
- [Commits](https://github.com/github/eslint-plugin-github/compare/v4.9.2...v4.10.1 )
---
updated-dependencies:
- dependency-name: eslint-plugin-github
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-23 01:57:14 +00:00
Federico Builes
04e56a4409
Merge pull request #586 from actions/dependabot/npm_and_yarn/yaml-2.3.3
...
Bump yaml from 2.3.2 to 2.3.3
2023-10-16 05:39:42 +02:00
Federico Builes
af51c4b700
adding dist
2023-10-16 03:44:04 +02:00
dependabot[bot]
bd3b04e194
Bump yaml from 2.3.2 to 2.3.3
...
Bumps [yaml](https://github.com/eemeli/yaml ) from 2.3.2 to 2.3.3.
- [Release notes](https://github.com/eemeli/yaml/releases )
- [Commits](https://github.com/eemeli/yaml/compare/v2.3.2...v2.3.3 )
---
updated-dependencies:
- dependency-name: yaml
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-16 01:43:15 +00:00
Federico Builes
382d2873a9
Merge pull request #585 from actions/dependabot/npm_and_yarn/types/spdx-expression-parse-3.0.3
...
Bump @types/spdx-expression-parse from 3.0.2 to 3.0.3
2023-10-16 03:42:54 +02:00
dependabot[bot]
500120a761
Bump @types/spdx-expression-parse from 3.0.2 to 3.0.3
...
Bumps [@types/spdx-expression-parse](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/spdx-expression-parse ) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/spdx-expression-parse )
---
updated-dependencies:
- dependency-name: "@types/spdx-expression-parse"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-16 01:41:27 +00:00
Federico Builes
212ded88b2
Merge pull request #584 from actions/dependabot/npm_and_yarn/eslint-plugin-prettier-5.0.1
...
Bump eslint-plugin-prettier from 5.0.0 to 5.0.1
2023-10-16 03:41:10 +02:00
Federico Builes
7ec89343e1
Merge pull request #587 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.7.5
...
Bump @typescript-eslint/eslint-plugin from 6.7.2 to 6.7.5
2023-10-16 03:40:22 +02:00
Federico Builes
536cc3d4b6
Merge pull request #588 from actions/dependabot/npm_and_yarn/types/node-16.18.58
...
Bump @types/node from 16.18.54 to 16.18.58
2023-10-16 03:40:11 +02:00
dependabot[bot]
2bc52c6348
Bump @types/node from 16.18.54 to 16.18.58
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.54 to 16.18.58.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-16 01:17:28 +00:00
dependabot[bot]
fe9d8a52c4
Bump @typescript-eslint/eslint-plugin from 6.7.2 to 6.7.5
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.7.2 to 6.7.5.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.7.5/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-16 01:17:14 +00:00
dependabot[bot]
bd251cc9eb
Bump eslint-plugin-prettier from 5.0.0 to 5.0.1
...
Bumps [eslint-plugin-prettier](https://github.com/prettier/eslint-plugin-prettier ) from 5.0.0 to 5.0.1.
- [Release notes](https://github.com/prettier/eslint-plugin-prettier/releases )
- [Changelog](https://github.com/prettier/eslint-plugin-prettier/blob/master/CHANGELOG.md )
- [Commits](https://github.com/prettier/eslint-plugin-prettier/compare/v5.0.0...v5.0.1 )
---
updated-dependencies:
- dependency-name: eslint-plugin-prettier
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-16 01:16:34 +00:00
Federico Builes
7e65a9bb48
Merge branch 'update-octokit'
2023-10-09 13:39:21 +02:00
Federico Builes
b91ea51364
updating dist.
2023-10-09 13:34:29 +02:00
Federico Builes
76b050a607
Use octokit-rest for the PR comments client.
2023-10-09 13:34:14 +02:00
Federico Builes
e6d6badddb
Update jest.
2023-10-09 13:33:55 +02:00
Federico Builes
f7363549ac
use octokit plugins
2023-10-09 13:20:24 +02:00
Federico Builes
f71a906c2e
Update plugins.
2023-10-09 13:17:54 +02:00
Federico Builes
03ace23f96
Update Node JS version.
2023-10-09 12:36:16 +02:00
Federico Builes
0564d6f4de
adding dist
2023-10-09 11:41:16 +02:00
dependabot[bot]
cd09f857a3
Bump octokit from 2.1.0 to 3.1.1
...
Bumps [octokit](https://github.com/octokit/octokit.js ) from 2.1.0 to 3.1.1.
- [Release notes](https://github.com/octokit/octokit.js/releases )
- [Commits](https://github.com/octokit/octokit.js/compare/v2.1.0...v3.1.1 )
---
updated-dependencies:
- dependency-name: octokit
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-09 09:38:02 +00:00
Federico Builes
69a61b613b
updating dist
2023-10-09 11:36:34 +02:00
Federico Builes
53eb1ebcf5
Merge branch 'update-request-errors'
2023-10-09 11:36:00 +02:00
Federico Builes
8dc52cdbed
update tests
2023-10-09 11:23:53 +02:00
Federico Builes
e8634671a4
Merge pull request #583 from actions/dependabot/npm_and_yarn/eslint-plugin-jest-27.4.2
...
Bump eslint-plugin-jest from 27.2.3 to 27.4.2
2023-10-09 10:25:41 +02:00
Federico Builes
69ecf4db79
Merge pull request #582 from actions/dependabot/npm_and_yarn/eslint-8.51.0
...
Bump eslint from 8.48.0 to 8.51.0
2023-10-09 10:25:28 +02:00
dependabot[bot]
70835908ea
Bump eslint-plugin-jest from 27.2.3 to 27.4.2
...
Bumps [eslint-plugin-jest](https://github.com/jest-community/eslint-plugin-jest ) from 27.2.3 to 27.4.2.
- [Release notes](https://github.com/jest-community/eslint-plugin-jest/releases )
- [Changelog](https://github.com/jest-community/eslint-plugin-jest/blob/main/CHANGELOG.md )
- [Commits](https://github.com/jest-community/eslint-plugin-jest/compare/v27.2.3...v27.4.2 )
---
updated-dependencies:
- dependency-name: eslint-plugin-jest
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-09 01:37:39 +00:00
dependabot[bot]
f704f55fa1
Bump eslint from 8.48.0 to 8.51.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.48.0 to 8.51.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.48.0...v8.51.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-09 01:37:24 +00:00
Federico Builes
e51d18ae1e
updating dist
2023-10-05 17:15:27 +02:00
Federico Builes
62f26a66d6
bumping zod
2023-10-05 17:14:25 +02:00
Federico Builes
2f836bbce6
Merge pull request #580 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-6.7.3
...
Bump @typescript-eslint/parser from 6.6.0 to 6.7.3
2023-10-01 21:21:28 -05:00
dependabot[bot]
75dbba1acf
Bump @typescript-eslint/parser from 6.6.0 to 6.7.3
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 6.6.0 to 6.7.3.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.7.3/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-02 02:15:09 +00:00
Federico Builes
8325453339
Merge pull request #579 from actions/dependabot/npm_and_yarn/vercel/ncc-0.38.0
...
Bump @vercel/ncc from 0.36.1 to 0.38.0
2023-10-01 21:13:34 -05:00
dependabot[bot]
353956d50d
Bump @vercel/ncc from 0.36.1 to 0.38.0
...
Bumps [@vercel/ncc](https://github.com/vercel/ncc ) from 0.36.1 to 0.38.0.
- [Release notes](https://github.com/vercel/ncc/releases )
- [Commits](https://github.com/vercel/ncc/compare/0.36.1...0.38.0 )
---
updated-dependencies:
- dependency-name: "@vercel/ncc"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-10-02 01:59:34 +00:00
Federico Builes
4e41165d4b
Merge pull request #577 from jsoref/modernize-versions
...
Modernize versions
2023-09-27 13:46:13 -05:00
Josh Soref
cf3393ef0a
Drop references to v2 from README
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2023-09-27 12:53:32 -04:00
Josh Soref
8213a1db10
Use checkout@v4
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2023-09-27 12:53:32 -04:00
Federico Builes
64a6d1a0b8
Merge pull request #571 from actions/dependabot/npm_and_yarn/types/node-16.18.54
...
Bump @types/node from 16.18.48 to 16.18.54
2023-09-26 12:24:33 -05:00
Federico Builes
364de25b16
Merge pull request #573 from actions/dependabot/npm_and_yarn/prettier-3.0.3
...
Bump prettier from 3.0.2 to 3.0.3
2023-09-26 12:24:18 -05:00
dependabot[bot]
ad34390f92
Bump @octokit/request-error from 2.1.0 to 5.0.1
...
Bumps [@octokit/request-error](https://github.com/octokit/request-error.js ) from 2.1.0 to 5.0.1.
- [Release notes](https://github.com/octokit/request-error.js/releases )
- [Commits](https://github.com/octokit/request-error.js/compare/v2.1.0...v5.0.1 )
---
updated-dependencies:
- dependency-name: "@octokit/request-error"
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-09-25 01:31:40 +00:00
dependabot[bot]
1f5e4f1cd9
Bump prettier from 3.0.2 to 3.0.3
...
Bumps [prettier](https://github.com/prettier/prettier ) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/3.0.2...3.0.3 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-09-25 01:30:59 +00:00
dependabot[bot]
fcb0293419
Bump @types/node from 16.18.48 to 16.18.54
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.48 to 16.18.54.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-09-25 01:30:38 +00:00
Federico Builes
6c530dbedd
Merge pull request #570 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.7.2
...
Bump @typescript-eslint/eslint-plugin from 6.4.0 to 6.7.2
2023-09-18 14:42:50 -05:00
dependabot[bot]
e5c6ae035a
Bump @typescript-eslint/eslint-plugin from 6.4.0 to 6.7.2
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.4.0 to 6.7.2.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.7.2/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-09-18 19:41:12 +00:00
Federico Builes
9c66f1b1b1
Merge pull request #569 from actions/dependabot/npm_and_yarn/esbuild-register-3.5.0
...
Bump esbuild-register from 3.4.2 to 3.5.0
2023-09-18 14:39:13 -05:00
dependabot[bot]
9add2f12fa
Bump esbuild-register from 3.4.2 to 3.5.0
...
Bumps esbuild-register from 3.4.2 to 3.5.0.
---
updated-dependencies:
- dependency-name: esbuild-register
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-09-18 01:47:43 +00:00
Federico Builes
079b962af9
Merge pull request #564 from actions/dependabot/npm_and_yarn/zod-3.22.2
...
Bump zod from 3.21.4 to 3.22.2
2023-09-11 07:17:25 -05:00
Federico Builes
e6b5e83d4e
adding dist
2023-09-11 07:16:56 -05:00
Federico Builes
3c40a50e4b
Merge pull request #565 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-6.6.0
...
Bump @typescript-eslint/parser from 6.2.1 to 6.6.0
2023-09-11 07:13:54 -05:00
Federico Builes
886d1fcf5f
Merge pull request #563 from actions/dependabot/github_actions/actions/checkout-4
...
Bump actions/checkout from 3 to 4
2023-09-11 07:13:45 -05:00
dependabot[bot]
615671754c
Bump @typescript-eslint/parser from 6.2.1 to 6.6.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 6.2.1 to 6.6.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.6.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-09-11 01:42:06 +00:00
dependabot[bot]
cd1bb8895d
Bump zod from 3.21.4 to 3.22.2
...
Bumps [zod](https://github.com/colinhacks/zod ) from 3.21.4 to 3.22.2.
- [Release notes](https://github.com/colinhacks/zod/releases )
- [Changelog](https://github.com/colinhacks/zod/blob/master/CHANGELOG.md )
- [Commits](https://github.com/colinhacks/zod/compare/v3.21.4...v3.22.2 )
---
updated-dependencies:
- dependency-name: zod
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-09-11 01:41:45 +00:00
dependabot[bot]
7095391667
Bump actions/checkout from 3 to 4
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-09-11 01:14:30 +00:00
Justin Holguín
6c5ccdad46
Merge pull request #562 from actions/juxtin/v3.0.9
...
Update version to 3.1.0
2023-09-07 14:46:08 -07:00
Federico Builes
51da82b3f5
updating package-lock.json
2023-09-07 16:44:36 -05:00
Justin Holguín
ca13810d94
Update version to 3.1.0
2023-09-07 21:42:29 +00:00
Justin Holguín
8447b31d38
Merge pull request #561 from actions/juxtin/dr-snaps-readme
...
Add new Dr Snaps config options to readme
2023-09-07 14:19:42 -07:00
Justin Holguín
85df23de2c
Update readme with new parameters
2023-09-07 21:17:45 +00:00
Justin Holguín
5da6fdbdf9
Clean up markdown formatting
2023-09-07 21:11:56 +00:00
Justin Holguín
92837b0ca8
Merge pull request #560 from actions/juxtin/improve-warnings
...
Improve display of snapshot warnings
2023-09-07 14:09:36 -07:00
Justin Holguín
35a52fd146
Minor tweaks to snapshot warnings
2023-09-07 18:00:57 +00:00
Justin Holguín
bed9726f78
Make snapshot warning messages clearer and more actionable
2023-09-07 17:54:42 +00:00
Justin Holguín
e4d20ce9ad
Merge pull request #556 from actions/juxtin/dr-snaps-pre-launch
...
Dr Snaps launch PR
2023-09-07 10:18:47 -07:00
Justin Holguín
bb0ca79fcd
Update action.yml to show retry default
2023-09-07 17:08:20 +00:00
Justin Holguín
07f52ce621
Add example with retry-on-snapshot-warnings to docs
2023-09-07 17:07:50 +00:00
Justin Holguín
c7e8727af4
Update action.yml
...
Co-authored-by: Federico Builes <febuiles@github.com >
2023-09-07 09:50:44 -07:00
Federico Builes
5e4b90e080
add dist
2023-09-07 09:06:46 -05:00
Federico Builes
7d0e0f61e8
Update src/dependency-graph.ts
...
Co-authored-by: Justin Holguín <juxtin@github.com >
2023-09-07 07:08:21 -05:00
Justin Holguín
ffaf251c92
update dist
2023-09-06 20:38:47 +00:00
Justin Holguín
726ffc8aa8
Merge remote-tracking branch 'origin/main' into juxtin/dr-snaps-pre-launch
2023-09-06 20:26:55 +00:00
Justin Holguín
fcef41f1e0
Add docs link to snapshot warnings
2023-09-06 19:07:18 +00:00
Justin Holguín
e81e6e582f
Default retry-on-snapshot-warnings to false
...
Keeping this true by default means wasting actions minutes for
the vast majority of DR users
2023-09-06 18:04:16 +00:00
Federico Builes
511675e747
Merge pull request #558 from actions/dependabot/npm_and_yarn/types/node-16.18.48
...
Bump @types/node from 16.18.41 to 16.18.48
2023-09-05 16:15:52 -04:00
Federico Builes
dcdbff2f84
Merge pull request #557 from actions/dependabot/npm_and_yarn/yaml-2.3.2
...
Bump yaml from 2.3.1 to 2.3.2
2023-09-05 11:55:49 -04:00
Federico Builes
29513b58ad
updating dist
2023-09-05 08:28:43 -05:00
dependabot[bot]
347cb43687
Bump @types/node from 16.18.41 to 16.18.48
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.41 to 16.18.48.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-09-04 01:44:52 +00:00
dependabot[bot]
dfe37bb356
Bump yaml from 2.3.1 to 2.3.2
...
Bumps [yaml](https://github.com/eemeli/yaml ) from 2.3.1 to 2.3.2.
- [Release notes](https://github.com/eemeli/yaml/releases )
- [Commits](https://github.com/eemeli/yaml/compare/v2.3.1...v2.3.2 )
---
updated-dependencies:
- dependency-name: yaml
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-09-04 01:44:44 +00:00
Justin Holguín
ada103783f
Merge remote-tracking branch 'origin/retry-on-snapshot-warnings' into juxtin/dr-snaps-pre-launch
2023-08-31 16:31:44 +00:00
Justin Holguín
abc80cf6a0
Merge branch 'juxtin/snapshot-warnings' into juxtin/dr-snaps-pre-launch
2023-08-31 16:06:14 +00:00
Federico Builes
15e91a3980
Merge pull request #554 from actions/dependabot/npm_and_yarn/eslint-8.48.0
...
Bump eslint from 8.47.0 to 8.48.0
2023-08-28 08:52:43 -05:00
Federico Builes
c7d2795410
Merge pull request #553 from actions/dependabot/npm_and_yarn/prettier-3.0.2
...
Bump prettier from 3.0.1 to 3.0.2
2023-08-28 08:52:32 -05:00
dependabot[bot]
eb07c6d763
Bump eslint from 8.47.0 to 8.48.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.47.0 to 8.48.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.47.0...v8.48.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-08-28 01:52:04 +00:00
dependabot[bot]
4d8fe1e464
Bump prettier from 3.0.1 to 3.0.2
...
Bumps [prettier](https://github.com/prettier/prettier ) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/3.0.1...3.0.2 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-08-28 01:51:43 +00:00
Justin Holguín
ee86529290
Show all non-empty snapshot warnings
2023-08-23 18:45:35 +00:00
Federico Builes
c17dea4c51
Merge pull request #549 from actions/dependabot/npm_and_yarn/types/node-16.18.41
...
Bump @types/node from 16.18.39 to 16.18.41
2023-08-23 15:16:07 +02:00
Federico Builes
727ca667a3
Merge pull request #550 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.4.0
...
Bump @typescript-eslint/eslint-plugin from 6.3.0 to 6.4.0
2023-08-23 15:15:56 +02:00
Federico Builes
84cd472b61
Merge pull request #551 from oerd/update-inputs-documentation-and-links
...
Fix(docs): Correct action input name
2023-08-22 17:02:07 +02:00
Oerd Cukalla
366fffb717
Fix(docs): Correct article use.
2023-08-22 00:28:34 +02:00
Oerd Cukalla
62a1d2d370
Fix(docs): Correct action input name
...
Change input name used for passing the personal access token to
`external-repo-token`.
2023-08-22 00:20:26 +02:00
dependabot[bot]
42c2f7100f
Bump @typescript-eslint/eslint-plugin from 6.3.0 to 6.4.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.3.0 to 6.4.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.4.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-08-21 01:04:16 +00:00
dependabot[bot]
608049acca
Bump @types/node from 16.18.39 to 16.18.41
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.39 to 16.18.41.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-08-21 01:03:36 +00:00
Federico Builes
32037a1d97
bumping to 3.0.8
2023-08-15 10:11:44 +02:00
Federico Builes
f6fff72a32
Merge pull request #540 from sgmurphy/comment-on-failure
...
Add `on-failure` option to `comment-summary-in-pr` setting
2023-08-15 10:08:44 +02:00
Federico Builes
61ee12c097
Merge pull request #548 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.3.0
...
Bump @typescript-eslint/eslint-plugin from 6.2.0 to 6.3.0
2023-08-14 06:39:45 +02:00
Federico Builes
7d5babfc38
Merge pull request #547 from actions/dependabot/npm_and_yarn/eslint-8.47.0
...
Bump eslint from 8.46.0 to 8.47.0
2023-08-14 06:39:28 +02:00
dependabot[bot]
ddb1b9361c
Bump @typescript-eslint/eslint-plugin from 6.2.0 to 6.3.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 6.2.0 to 6.3.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.3.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-08-14 01:26:56 +00:00
dependabot[bot]
7c3177d3c2
Bump eslint from 8.46.0 to 8.47.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.46.0 to 8.47.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.46.0...v8.47.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-08-14 01:26:22 +00:00
Sean Murphy
31afeba06d
Add unit tests
2023-08-09 21:10:48 -04:00
Sean Murphy
7ef37f3853
Merge branch 'main' into comment-on-failure
2023-08-09 17:31:16 -04:00
Sean Murphy
2e59943778
Parse boolean to enum
2023-08-09 15:57:03 -04:00
Federico Builes
7d90b4f05f
bumping to 3.0.7
2023-08-09 15:27:02 +02:00
Federico Builes
02aa4b66a7
Merge pull request #544 from adrienpessu/main
...
Add an option to deny packages or groups of packages
2023-08-09 15:25:21 +02:00
Federico Builes
fe2a482baf
Apply suggestions from code review
2023-08-09 15:24:26 +02:00
Adrien Pessu
ce14e1f894
improve example
2023-08-08 17:21:30 +02:00
Adrien Pessu
eacc0328b1
improve example
2023-08-08 17:10:23 +02:00
Adrien Pessu
98aae180cb
debug
2023-08-08 16:56:01 +02:00
Adrien Pessu
c280c303e6
debug
2023-08-08 16:51:40 +02:00
Adrien Pessu
1db9156f85
change from name of the package to the package url to avoid conflict between 2 dependencies with the same name but for different ecosystems
2023-08-08 16:34:23 +02:00
Adrien Pessu
c462e2e50e
add example
2023-08-08 10:12:55 +02:00
Adrien Pessu
0796abb9cf
add changes on js.map file
2023-08-07 17:17:27 +02:00
Adrien Pessu
eab07548a7
Merge remote-tracking branch 'upstream/main'
2023-08-07 14:25:57 +02:00
Adrien Pessu
00f1f5b642
add tests and docs
2023-08-07 14:07:46 +02:00
Adrien Pessu
6862f6f65f
add groups
2023-08-07 14:07:26 +02:00
Adrien Pessu
2f38ecd3fd
add deny_list as paramter
2023-08-07 14:07:26 +02:00
Adrien Pessu
309d082d5f
initial commit
2023-08-07 14:07:26 +02:00
Federico Builes
0e6dece6c7
update more dependencies
2023-08-07 14:07:26 +02:00
dependabot[bot]
942409c937
Bump @typescript-eslint/eslint-plugin from 5.60.1 to 6.2.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.60.1 to 6.2.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.2.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-08-07 14:07:26 +02:00
Federico Builes
6af66592ad
dependbot updates
2023-08-07 14:07:26 +02:00
dependabot[bot]
d5a7e34e39
Bump prettier from 2.8.8 to 3.0.0
...
Bumps [prettier](https://github.com/prettier/prettier ) from 2.8.8 to 3.0.0.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/2.8.8...3.0.0 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-08-07 14:07:25 +02:00
Federico Builes
328a08ea42
Merge pull request #541 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-6.2.1
...
Bump @typescript-eslint/parser from 6.2.0 to 6.2.1
2023-08-07 10:20:46 +02:00
Federico Builes
3f88e84ced
Merge pull request #542 from actions/dependabot/npm_and_yarn/prettier-3.0.1
...
Bump prettier from 3.0.0 to 3.0.1
2023-08-07 10:07:55 +02:00
dependabot[bot]
4463280ae5
Bump prettier from 3.0.0 to 3.0.1
...
Bumps [prettier](https://github.com/prettier/prettier ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/3.0.0...3.0.1 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-08-07 01:49:54 +00:00
dependabot[bot]
ae11b24682
Bump @typescript-eslint/parser from 6.2.0 to 6.2.1
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 6.2.0 to 6.2.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.2.1/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-08-07 01:49:41 +00:00
Sean Murphy
902e86c6f5
Add on-failure option to comment-summary-in-pr setting
2023-08-04 22:37:51 -04:00
Federico Builes
1e70f06e66
Merge pull request #537 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-6.2.0
...
Bump @typescript-eslint/eslint-plugin from 5.60.1 to 6.2.0
2023-07-31 18:03:04 +02:00
Federico Builes
0ea885e7c5
update more dependencies
2023-07-31 18:01:31 +02:00
dependabot[bot]
498c8717d3
Bump @typescript-eslint/eslint-plugin from 5.60.1 to 6.2.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.60.1 to 6.2.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.2.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-07-31 06:42:19 +00:00
Federico Builes
fc8a06c798
Merge pull request #526 from actions/dependabot/npm_and_yarn/prettier-3.0.0
...
Bump prettier from 2.8.8 to 3.0.0
2023-07-31 08:40:45 +02:00
Federico Builes
8c593e9822
dependbot updates
2023-07-31 08:39:38 +02:00
Federico Builes
98d4fd7247
Merge pull request #534 from rajbos/main
...
Make GHES support / setup more clear
2023-07-19 16:27:05 +02:00
Federico Builes
0a68c5dfa6
Update README.md
2023-07-19 16:26:44 +02:00
Federico Builes
f015f96b55
Update README.md
2023-07-19 16:26:39 +02:00
Rob Bos
3290c85b0f
Make GHES support more clear
2023-07-19 13:05:42 +02:00
dependabot[bot]
6b0d5029d1
Bump prettier from 2.8.8 to 3.0.0
...
Bumps [prettier](https://github.com/prettier/prettier ) from 2.8.8 to 3.0.0.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/2.8.8...3.0.0 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-07-10 01:39:16 +00:00
cnagadya
090b9fe2a1
Merge pull request #524 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.60.1
...
Bump @typescript-eslint/eslint-plugin from 5.60.0 to 5.60.1
2023-07-03 10:32:12 +02:00
dependabot[bot]
c5e57016d8
Bump @typescript-eslint/eslint-plugin from 5.60.0 to 5.60.1
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.60.0 to 5.60.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.60.1/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-07-03 08:18:28 +00:00
cnagadya
8cf6fcb693
Merge pull request #523 from actions/dependabot/npm_and_yarn/eslint-8.44.0
...
Bump eslint from 8.43.0 to 8.44.0
2023-07-03 10:17:48 +02:00
cnagadya
9bf5053b8a
Merge pull request #522 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.60.1
...
Bump @typescript-eslint/parser from 5.60.0 to 5.60.1
2023-07-03 10:17:36 +02:00
cnagadya
a213934318
Merge pull request #521 from actions/dependabot/npm_and_yarn/types/node-16.18.38
...
Bump @types/node from 16.18.36 to 16.18.38
2023-07-03 10:17:27 +02:00
dependabot[bot]
e301b1bd30
Bump eslint from 8.43.0 to 8.44.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.43.0 to 8.44.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.43.0...v8.44.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-07-03 01:29:06 +00:00
dependabot[bot]
c730d72f23
Bump @typescript-eslint/parser from 5.60.0 to 5.60.1
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.60.0 to 5.60.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.60.1/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-07-03 01:28:46 +00:00
dependabot[bot]
a65c766d12
Bump @types/node from 16.18.36 to 16.18.38
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.36 to 16.18.38.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-07-03 01:28:23 +00:00
Federico Builes
7599c4bc8e
Merge pull request #519 from actions/dependabot/npm_and_yarn/octokit/plugin-retry-5.0.4
...
Bump @octokit/plugin-retry from 5.0.2 to 5.0.4
2023-06-26 15:38:01 +02:00
Federico Builes
0f4e96f7e8
adding build files
2023-06-26 15:36:01 +02:00
dependabot[bot]
a234018432
Bump @octokit/plugin-retry from 5.0.2 to 5.0.4
...
Bumps [@octokit/plugin-retry](https://github.com/octokit/plugin-retry.js ) from 5.0.2 to 5.0.4.
- [Release notes](https://github.com/octokit/plugin-retry.js/releases )
- [Commits](https://github.com/octokit/plugin-retry.js/compare/v5.0.2...v5.0.4 )
---
updated-dependencies:
- dependency-name: "@octokit/plugin-retry"
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-26 13:29:15 +00:00
Federico Builes
328eb79003
Merge pull request #518 from actions/dependabot/npm_and_yarn/octokit-2.1.0
...
Bump octokit from 2.0.19 to 2.1.0
2023-06-26 15:28:32 +02:00
Federico Builes
5bb28e508e
npm i
2023-06-26 15:26:17 +02:00
Federico Builes
11a4a75728
Merge pull request #516 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.60.0
...
Bump @typescript-eslint/eslint-plugin from 5.59.11 to 5.60.0
2023-06-26 07:10:03 +02:00
dependabot[bot]
c5ac6e1eba
Bump @typescript-eslint/eslint-plugin from 5.59.11 to 5.60.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.59.11 to 5.60.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.60.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-26 05:08:33 +00:00
Federico Builes
a3753ba2c6
Merge pull request #520 from actions/dependabot/npm_and_yarn/eslint-plugin-jest-27.2.2
...
Bump eslint-plugin-jest from 27.2.1 to 27.2.2
2023-06-26 07:03:16 +02:00
Federico Builes
ec3136c4ba
Merge pull request #517 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.60.0
...
Bump @typescript-eslint/parser from 5.59.11 to 5.60.0
2023-06-26 07:03:01 +02:00
dependabot[bot]
38b79e2fbe
Bump eslint-plugin-jest from 27.2.1 to 27.2.2
...
Bumps [eslint-plugin-jest](https://github.com/jest-community/eslint-plugin-jest ) from 27.2.1 to 27.2.2.
- [Release notes](https://github.com/jest-community/eslint-plugin-jest/releases )
- [Changelog](https://github.com/jest-community/eslint-plugin-jest/blob/main/CHANGELOG.md )
- [Commits](https://github.com/jest-community/eslint-plugin-jest/compare/v27.2.1...v27.2.2 )
---
updated-dependencies:
- dependency-name: eslint-plugin-jest
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-26 01:30:13 +00:00
dependabot[bot]
01a70a14e2
Bump octokit from 2.0.19 to 2.1.0
...
Bumps [octokit](https://github.com/octokit/octokit.js ) from 2.0.19 to 2.1.0.
- [Release notes](https://github.com/octokit/octokit.js/releases )
- [Commits](https://github.com/octokit/octokit.js/compare/v2.0.19...v2.1.0 )
---
updated-dependencies:
- dependency-name: octokit
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-26 01:29:16 +00:00
dependabot[bot]
d32ada785e
Bump @typescript-eslint/parser from 5.59.11 to 5.60.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.59.11 to 5.60.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.60.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-26 01:28:47 +00:00
Federico Builes
c61b0a3941
Merge pull request #510 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.59.11
...
Bump @typescript-eslint/eslint-plugin from 5.59.9 to 5.59.11
2023-06-19 07:54:57 +02:00
Federico Builes
38c1dbdffa
Merge branch 'main' into dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.59.11
2023-06-19 07:00:21 +02:00
Federico Builes
84fe280943
Merge pull request #512 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.59.11
...
Bump @typescript-eslint/parser from 5.59.9 to 5.59.11
2023-06-19 06:58:36 +02:00
Federico Builes
cf65a75df3
Merge pull request #511 from actions/dependabot/npm_and_yarn/eslint-8.43.0
...
Bump eslint from 8.41.0 to 8.43.0
2023-06-19 06:58:17 +02:00
dependabot[bot]
3d532eeb2e
Bump @typescript-eslint/eslint-plugin from 5.59.9 to 5.59.11
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.59.9 to 5.59.11.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.11/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-19 04:52:17 +00:00
dependabot[bot]
2a14180549
Bump @typescript-eslint/parser from 5.59.9 to 5.59.11
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.59.9 to 5.59.11.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.11/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-19 04:52:17 +00:00
dependabot[bot]
3958f9d2c8
Bump eslint from 8.41.0 to 8.43.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.41.0 to 8.43.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.41.0...v8.43.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-19 04:52:12 +00:00
Federico Builes
d561324ef9
Merge pull request #509 from actions/dependabot/npm_and_yarn/types/node-16.18.36
...
Bump @types/node from 16.18.35 to 16.18.36
2023-06-19 06:51:36 +02:00
dependabot[bot]
5c03808159
Bump @types/node from 16.18.35 to 16.18.36
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.35 to 16.18.36.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-19 01:58:19 +00:00
Henri Maurer
d3fa764646
fix
2023-06-14 10:38:45 +01:00
Henri Maurer
1856a6de19
fix
2023-06-14 10:26:22 +01:00
Henri Maurer
5573b58443
better logging
2023-06-14 10:24:40 +01:00
Henri Maurer
c3c3c2e746
fix retry until
2023-06-14 10:12:19 +01:00
tgrall
3b37a4ef1c
update documentation
2023-06-14 09:17:26 +02:00
tgrall
13c4496f31
update doc
2023-06-14 09:12:19 +02:00
tgrall
7ed3405bdc
warn_only_test_
2023-06-14 08:55:38 +02:00
tgrall
9b290a185a
fix ini of warn-only param
2023-06-13 09:44:03 +02:00
tgrall
995bb847a3
new dev
2023-06-13 09:34:12 +02:00
tgrall
f1e6d67732
wan only
2023-06-13 09:29:10 +02:00
tgrall
d833109d4d
new build
2023-06-13 08:54:16 +02:00
tgrall
a3a8a9c756
new build
2023-06-12 13:56:53 +02:00
tgrall
0b053fccb4
add new parameter warn_only
2023-06-12 11:26:44 +02:00
Federico Builes
9617594ce4
Merge pull request #506 from actions/dependabot/npm_and_yarn/octokit-2.0.19
...
update octokit, regenerate dist
2023-06-12 07:29:57 +02:00
Federico Builes
c10600ad00
update octokit, regenerate dist
2023-06-12 07:28:23 +02:00
Federico Builes
86477f1ea0
Merge pull request #504 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.59.9
...
Bump @typescript-eslint/eslint-plugin from 5.59.8 to 5.59.9
2023-06-12 07:19:03 +02:00
Federico Builes
b6ef88155e
Merge pull request #505 from actions/dependabot/npm_and_yarn/types/node-16.18.35
...
Bump @types/node from 16.18.34 to 16.18.35
2023-06-12 07:18:49 +02:00
Federico Builes
1c01b75438
Merge pull request #503 from actions/dependabot/npm_and_yarn/octokit/plugin-retry-5.0.2
...
Bump @octokit/plugin-retry from 5.0.0 to 5.0.2
2023-06-12 07:18:36 +02:00
dependabot[bot]
1590d3f795
Bump @typescript-eslint/eslint-plugin from 5.59.8 to 5.59.9
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.59.8 to 5.59.9.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.9/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-12 05:17:03 +00:00
Federico Builes
90de8e47b4
adding dist
2023-06-12 07:16:52 +02:00
Federico Builes
6d3699baca
Merge pull request #502 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.59.9
...
Bump @typescript-eslint/parser from 5.59.8 to 5.59.9
2023-06-12 07:15:59 +02:00
dependabot[bot]
87e767d41f
Bump @types/node from 16.18.34 to 16.18.35
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.34 to 16.18.35.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-12 01:59:53 +00:00
dependabot[bot]
554d5fa52b
Bump @octokit/plugin-retry from 5.0.0 to 5.0.2
...
Bumps [@octokit/plugin-retry](https://github.com/octokit/plugin-retry.js ) from 5.0.0 to 5.0.2.
- [Release notes](https://github.com/octokit/plugin-retry.js/releases )
- [Commits](https://github.com/octokit/plugin-retry.js/compare/v5.0.0...v5.0.2 )
---
updated-dependencies:
- dependency-name: "@octokit/plugin-retry"
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-12 01:59:03 +00:00
dependabot[bot]
983fa12c36
Bump @typescript-eslint/parser from 5.59.8 to 5.59.9
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.59.8 to 5.59.9.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.9/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-12 01:58:41 +00:00
Henri Maurer
f6f94a23a4
fix
2023-06-09 10:44:43 +01:00
Henri Maurer
50954e6a9a
fix
2023-06-09 10:30:56 +01:00
Henri Maurer
66b6f67835
Add configs
2023-06-09 10:26:24 +01:00
Henri Maurer
1644401f8d
rewrite retry logic
2023-06-08 18:11:13 +01:00
Henri Maurer
1a326fc7fa
proceed even if warnings
2023-06-08 17:04:40 +01:00
Henri Maurer
a82096e68a
fix
2023-06-07 16:51:53 +01:00
Henri Maurer
90d3a94eb7
fix
2023-06-07 16:48:32 +01:00
Henri Maurer
9dde5949a8
retry every 10s
2023-06-07 16:39:16 +01:00
Henri Maurer
cff142b535
includes_dependency_snapshots
2023-06-07 14:04:29 +01:00
Henri Maurer
a4c5ac881a
disable caching
2023-06-07 10:10:21 +01:00
Henri Maurer
d35955ebf6
Prototype re-try on snapshot warnings
2023-06-06 16:44:27 +01:00
Federico Builes
0342e75832
Merge pull request #500 from actions/dependabot/npm_and_yarn/octokit/plugin-retry-5.0.0
...
Bump @octokit/plugin-retry from 4.1.3 to 5.0.0
2023-06-05 07:14:34 +02:00
Federico Builes
3daf1c6551
Updating dist
2023-06-05 07:13:53 +02:00
Federico Builes
16cbdf9d97
Merge pull request #498 from actions/dependabot/npm_and_yarn/eslint-plugin-github-4.8.0
...
Bump eslint-plugin-github from 4.7.0 to 4.8.0
2023-06-05 07:09:55 +02:00
Federico Builes
59a0ce5dc2
Merge pull request #497 from actions/dependabot/npm_and_yarn/got-13.0.0
...
Bump got from 12.6.0 to 13.0.0
2023-06-05 07:08:54 +02:00
dependabot[bot]
6cc98d3032
Bump @octokit/plugin-retry from 4.1.3 to 5.0.0
...
Bumps [@octokit/plugin-retry](https://github.com/octokit/plugin-retry.js ) from 4.1.3 to 5.0.0.
- [Release notes](https://github.com/octokit/plugin-retry.js/releases )
- [Commits](https://github.com/octokit/plugin-retry.js/compare/v4.1.3...v5.0.0 )
---
updated-dependencies:
- dependency-name: "@octokit/plugin-retry"
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-05 01:59:54 +00:00
dependabot[bot]
617fd3907e
Bump eslint-plugin-github from 4.7.0 to 4.8.0
...
Bumps [eslint-plugin-github](https://github.com/github/eslint-plugin-github ) from 4.7.0 to 4.8.0.
- [Release notes](https://github.com/github/eslint-plugin-github/releases )
- [Commits](https://github.com/github/eslint-plugin-github/compare/v4.7.0...v4.8.0 )
---
updated-dependencies:
- dependency-name: eslint-plugin-github
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-05 01:59:21 +00:00
dependabot[bot]
537fc8f28d
Bump got from 12.6.0 to 13.0.0
...
Bumps [got](https://github.com/sindresorhus/got ) from 12.6.0 to 13.0.0.
- [Release notes](https://github.com/sindresorhus/got/releases )
- [Commits](https://github.com/sindresorhus/got/compare/v12.6.0...v13.0.0 )
---
updated-dependencies:
- dependency-name: got
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-06-05 01:58:58 +00:00
Federico Builes
1360a344cc
Merge pull request #494 from actions/fix-purl-bug
...
Empty PURLs should not block the action from running
2023-05-31 17:11:07 +02:00
Federico Builes
123b58703a
bumping to 3.0.6
2023-05-31 17:10:00 +02:00
Federico Builes
cd559bc984
adding dist
2023-05-31 17:09:53 +02:00
Federico Builes
70f8094bec
adding a test for empty PURLs
2023-05-31 16:24:19 +02:00
Federico Builes
0b306aef97
Don't try to create PURLs from empty strings.
2023-05-31 16:14:02 +02:00
Federico Builes
554aaf5c3d
Merge pull request #423 from theztefan/allow-list-dependencies
...
Exclude dependencies from license checks
2023-05-31 14:24:05 +02:00
Federico Builes
c6e94c1336
External config files should use underscores, not dashes
2023-05-31 14:21:57 +02:00
Stefan Petrushevski
88d6af3d4a
latest build
2023-05-31 12:54:16 +02:00
Stefan Petrushevski
f1c8401a59
resolve merge conflicts
2023-05-30 18:04:26 +02:00
Stefan Petrushevski
ef8ebf0eef
rebuild
2023-05-30 17:33:40 +02:00
Federico Builes
1f7c838fcb
Merge pull request #492 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.59.8
...
Bump @typescript-eslint/eslint-plugin from 5.59.6 to 5.59.8
2023-05-30 08:10:28 +02:00
dependabot[bot]
1ee07d8652
Bump @typescript-eslint/eslint-plugin from 5.59.6 to 5.59.8
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.59.6 to 5.59.8.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.8/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-30 05:32:06 +00:00
Federico Builes
861f696c44
Merge pull request #491 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.59.8
...
Bump @typescript-eslint/parser from 5.59.7 to 5.59.8
2023-05-30 07:31:16 +02:00
dependabot[bot]
ce9db3928f
Bump @typescript-eslint/parser from 5.59.7 to 5.59.8
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.59.7 to 5.59.8.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.8/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-30 05:25:32 +00:00
Federico Builes
854aa8a142
Merge pull request #485 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.59.7
...
Bump @typescript-eslint/parser from 5.59.6 to 5.59.7
2023-05-30 07:24:55 +02:00
Federico Builes
9fbf14f620
Merge pull request #484 from actions/dependabot/npm_and_yarn/types/node-16.18.34
...
Bump @types/node from 16.18.32 to 16.18.34
2023-05-30 07:24:43 +02:00
Federico Builes
64222d2efe
Merge pull request #483 from actions/dependabot/npm_and_yarn/yaml-2.3.1
...
Bump yaml from 2.2.2 to 2.3.1
2023-05-30 07:24:34 +02:00
Federico Builes
f2a3e1af33
updating dist
2023-05-30 07:23:40 +02:00
dependabot[bot]
e3de7a00a8
Bump @typescript-eslint/parser from 5.59.6 to 5.59.7
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.59.6 to 5.59.7.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.7/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-29 02:01:45 +00:00
dependabot[bot]
627344199b
Bump @types/node from 16.18.32 to 16.18.34
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.32 to 16.18.34.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-29 02:01:13 +00:00
dependabot[bot]
2406ed1539
Bump yaml from 2.2.2 to 2.3.1
...
Bumps [yaml](https://github.com/eemeli/yaml ) from 2.2.2 to 2.3.1.
- [Release notes](https://github.com/eemeli/yaml/releases )
- [Commits](https://github.com/eemeli/yaml/compare/v2.2.2...v2.3.1 )
---
updated-dependencies:
- dependency-name: yaml
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-29 02:00:41 +00:00
Stefan
20f1bbadfc
Update README.md
...
Co-authored-by: Justin Holguín <juxtin@github.com >
2023-05-26 20:20:06 +02:00
Stefan
32e5b32ec4
Update docs/examples.md
...
Co-authored-by: Justin Holguín <juxtin@github.com >
2023-05-26 20:19:52 +02:00
Federico Builes
4ee0db82cc
Merge pull request #480 from actions/dependabot/npm_and_yarn/octokit-2.0.16
...
Bump octokit from 2.0.14 to 2.0.16
2023-05-22 07:35:59 +02:00
Federico Builes
f303e9cd65
adding dist
2023-05-22 07:31:33 +02:00
Federico Builes
fa8ddf1781
Merge pull request #482 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.59.6
...
Bump @typescript-eslint/parser from 5.59.2 to 5.59.6
2023-05-22 07:26:50 +02:00
dependabot[bot]
70422dcfbd
Bump @typescript-eslint/parser from 5.59.2 to 5.59.6
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.59.2 to 5.59.6.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.6/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-22 05:25:44 +00:00
Federico Builes
fe724aebb5
Merge pull request #481 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.59.6
...
Bump @typescript-eslint/eslint-plugin from 5.59.2 to 5.59.6
2023-05-22 07:25:14 +02:00
Federico Builes
6ab307aa49
Merge pull request #479 from actions/dependabot/npm_and_yarn/types/node-16.18.32
...
Bump @types/node from 16.18.26 to 16.18.32
2023-05-22 07:24:49 +02:00
Federico Builes
7b02d77054
Merge pull request #478 from actions/dependabot/npm_and_yarn/eslint-8.41.0
...
Bump eslint from 8.40.0 to 8.41.0
2023-05-22 07:24:40 +02:00
dependabot[bot]
98717099a1
Bump @typescript-eslint/eslint-plugin from 5.59.2 to 5.59.6
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.59.2 to 5.59.6.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.6/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-22 02:02:05 +00:00
dependabot[bot]
b582a7ae96
Bump octokit from 2.0.14 to 2.0.16
...
Bumps [octokit](https://github.com/octokit/octokit.js ) from 2.0.14 to 2.0.16.
- [Release notes](https://github.com/octokit/octokit.js/releases )
- [Commits](https://github.com/octokit/octokit.js/compare/v2.0.14...v2.0.16 )
---
updated-dependencies:
- dependency-name: octokit
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-22 02:01:13 +00:00
dependabot[bot]
894a896fb1
Bump @types/node from 16.18.26 to 16.18.32
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.26 to 16.18.32.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-22 01:59:51 +00:00
dependabot[bot]
eb565747bb
Bump eslint from 8.40.0 to 8.41.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.40.0 to 8.41.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.40.0...v8.41.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-22 01:59:24 +00:00
Stefan Petrushevski
7b5fa84cfc
added tests; docs and cleanup
2023-05-19 10:47:59 +02:00
Stefan
8ef2903f61
Update action.yml
...
Co-authored-by: Justin Holguín <juxtin@github.com >
2023-05-17 09:45:02 +02:00
Stefan
16c0c13a8b
Update README.md
...
Co-authored-by: Justin Holguín <juxtin@github.com >
2023-05-17 09:44:49 +02:00
Stefan
b36110c8a0
Update docs/examples.md
...
Co-authored-by: Justin Holguín <juxtin@github.com >
2023-05-17 09:44:33 +02:00
Stefan Petrushevski
0574926a14
document; code style;
2023-05-16 16:50:04 +02:00
Federico Builes
57c07f037a
Merge pull request #473 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.59.2
...
Bump @typescript-eslint/parser from 5.59.1 to 5.59.2
2023-05-08 06:16:13 +02:00
dependabot[bot]
8fba746b74
Bump @typescript-eslint/parser from 5.59.1 to 5.59.2
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.59.1 to 5.59.2.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.2/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-08 04:16:03 +00:00
Federico Builes
632eabaaf6
Merge pull request #474 from actions/dependabot/npm_and_yarn/eslint-8.40.0
...
Bump eslint from 8.39.0 to 8.40.0
2023-05-08 06:15:33 +02:00
Federico Builes
d1f8348e2e
Merge pull request #472 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.59.2
...
Bump @typescript-eslint/eslint-plugin from 5.59.1 to 5.59.2
2023-05-08 06:15:13 +02:00
Federico Builes
66da8857a8
Merge pull request #471 from actions/dependabot/npm_and_yarn/types/node-16.18.26
...
Bump @types/node from 16.18.25 to 16.18.26
2023-05-08 06:15:06 +02:00
dependabot[bot]
9fe22cbd4d
Bump eslint from 8.39.0 to 8.40.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.39.0 to 8.40.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.39.0...v8.40.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-08 02:01:40 +00:00
dependabot[bot]
192b846247
Bump @typescript-eslint/eslint-plugin from 5.59.1 to 5.59.2
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.59.1 to 5.59.2.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.2/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-08 02:00:42 +00:00
dependabot[bot]
faed3d989f
Bump @types/node from 16.18.25 to 16.18.26
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.25 to 16.18.26.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-08 01:59:37 +00:00
Federico Builes
7d25be7d68
Merge pull request #467 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.59.1
...
Bump @typescript-eslint/eslint-plugin from 5.59.0 to 5.59.1
2023-05-01 13:47:42 +02:00
Federico Builes
57e6a1aeb8
Merge pull request #469 from actions/dependabot/npm_and_yarn/yaml-2.2.2
...
Bump yaml from 2.2.1 to 2.2.2
2023-05-01 13:47:23 +02:00
Federico Builes
8450611ed5
adding dist
2023-05-01 13:47:13 +02:00
dependabot[bot]
adc7610fb4
Bump @typescript-eslint/eslint-plugin from 5.59.0 to 5.59.1
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.59.0 to 5.59.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.1/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-01 11:45:43 +00:00
dependabot[bot]
b81c2dfce6
Bump yaml from 2.2.1 to 2.2.2
...
Bumps [yaml](https://github.com/eemeli/yaml ) from 2.2.1 to 2.2.2.
- [Release notes](https://github.com/eemeli/yaml/releases )
- [Commits](https://github.com/eemeli/yaml/compare/v2.2.1...v2.2.2 )
---
updated-dependencies:
- dependency-name: yaml
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-01 11:45:32 +00:00
Federico Builes
70370c1727
Merge pull request #468 from actions/dependabot/npm_and_yarn/types/node-16.18.25
...
Bump @types/node from 16.18.24 to 16.18.25
2023-05-01 13:44:58 +02:00
Federico Builes
1e46123a48
Merge pull request #466 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.59.1
...
Bump @typescript-eslint/parser from 5.59.0 to 5.59.1
2023-05-01 13:44:30 +02:00
dependabot[bot]
de626ab5bc
Bump @types/node from 16.18.24 to 16.18.25
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.24 to 16.18.25.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-01 02:03:23 +00:00
dependabot[bot]
5907e06ae4
Bump @typescript-eslint/parser from 5.59.0 to 5.59.1
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.59.0 to 5.59.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.1/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-05-01 02:01:40 +00:00
Federico Builes
9bc0593cb7
Merge pull request #462 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.59.0
...
Bump @typescript-eslint/eslint-plugin from 5.57.1 to 5.59.0
2023-04-24 13:32:54 +02:00
dependabot[bot]
7070612acc
Bump @typescript-eslint/eslint-plugin from 5.57.1 to 5.59.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.57.1 to 5.59.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-24 11:31:30 +00:00
Federico Builes
f6e0fab375
Merge pull request #465 from actions/dependabot/npm_and_yarn/prettier-2.8.8
...
Bump prettier from 2.8.7 to 2.8.8
2023-04-24 13:31:03 +02:00
Federico Builes
51fa253565
Merge pull request #464 from actions/dependabot/npm_and_yarn/eslint-8.39.0
...
Bump eslint from 8.38.0 to 8.39.0
2023-04-24 13:30:54 +02:00
Federico Builes
2dffe8e22c
Merge pull request #463 from actions/dependabot/npm_and_yarn/types/node-16.18.24
...
Bump @types/node from 16.18.23 to 16.18.24
2023-04-24 13:30:43 +02:00
Federico Builes
e263d60b8b
Merge pull request #461 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.59.0
...
Bump @typescript-eslint/parser from 5.57.1 to 5.59.0
2023-04-24 13:30:07 +02:00
dependabot[bot]
bf512683a2
Bump prettier from 2.8.7 to 2.8.8
...
Bumps [prettier](https://github.com/prettier/prettier ) from 2.8.7 to 2.8.8.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/2.8.7...2.8.8 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-24 02:01:16 +00:00
dependabot[bot]
6c9f94c4e5
Bump eslint from 8.38.0 to 8.39.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.38.0 to 8.39.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.38.0...v8.39.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-24 02:01:05 +00:00
dependabot[bot]
8321ca9367
Bump @types/node from 16.18.23 to 16.18.24
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.23 to 16.18.24.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-24 02:00:45 +00:00
dependabot[bot]
00ef46c947
Bump @typescript-eslint/parser from 5.57.1 to 5.59.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.57.1 to 5.59.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.59.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-24 01:59:58 +00:00
Federico Builes
b206cbf92e
Merge pull request #453 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.57.1
...
Bump @typescript-eslint/eslint-plugin from 5.57.0 to 5.57.1
2023-04-10 07:48:03 +02:00
dependabot[bot]
d482d746c3
Bump @typescript-eslint/eslint-plugin from 5.57.0 to 5.57.1
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.57.0 to 5.57.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.57.1/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-10 05:47:39 +00:00
Federico Builes
041e4f1437
Merge pull request #454 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.57.1
...
Bump @typescript-eslint/parser from 5.57.0 to 5.57.1
2023-04-10 07:47:09 +02:00
Federico Builes
c883e5a202
Merge pull request #455 from actions/dependabot/npm_and_yarn/eslint-8.38.0
...
Bump eslint from 8.37.0 to 8.38.0
2023-04-10 07:46:57 +02:00
Federico Builes
8938bd9ef0
Merge pull request #451 from actions/fix-external-config
...
Fix default values for fail-on-severity
2023-04-10 07:41:00 +02:00
dependabot[bot]
35a369d1cd
Bump eslint from 8.37.0 to 8.38.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.37.0 to 8.38.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.37.0...v8.38.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-10 02:03:04 +00:00
dependabot[bot]
0a9f43e15a
Bump @typescript-eslint/parser from 5.57.0 to 5.57.1
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.57.0 to 5.57.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.57.1/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-10 02:02:19 +00:00
Justin Holguín
e0ec35dfb0
Merge pull request #439 from actions/juxtin/snapshot-warnings
...
Show snapshot warnings in the summary
2023-04-06 13:27:46 -07:00
Federico Builes
73625ad716
Merge branch 'allow-list-dependencies' of github.com:theztefan/dependency-review-action into allow-list-dependencies
2023-04-06 22:01:49 +02:00
Federico Builes
654eb5ca1c
Updating README.md
2023-04-06 21:42:26 +02:00
Federico Builes
9885d0c74c
Remove default values in action.yml
2023-04-06 21:33:35 +02:00
Federico Builes
cebb5b1214
Don't use underscore for inline configs.
2023-04-06 21:33:24 +02:00
Federico Builes
50b918791f
Update README.
2023-04-06 17:59:34 +02:00
Federico Builes
3f6a17c81c
Update examples to use underscores instead of dashes.
2023-04-06 17:58:58 +02:00
Federico Builes
2c065db296
Add a test-helpers file.
2023-04-06 17:32:42 +02:00
Federico Builes
ff46a4b16e
Fixing failing test.
2023-04-06 17:11:29 +02:00
Federico Builes
153f274eb4
Mock octokit.
2023-04-06 17:11:16 +02:00
Federico Builes
0041d7fa41
Add a failing test.
2023-04-06 16:21:52 +02:00
Stefan Petrushevski
1896d6f936
Clean up; updated docs
2023-04-06 10:49:30 +02:00
Stefan Petrushevski
39dca1ce09
Adjusted output
2023-04-06 10:04:48 +02:00
Stefan Petrushevski
d3fdbc93c5
Build and updated README
2023-04-06 09:58:14 +02:00
Stefan Petrushevski
9ad7edb033
switched to purl format
2023-04-06 09:37:42 +02:00
Federico Builes
97c9465751
separate tests for external configs
2023-04-05 15:14:57 +02:00
Courtney Claessens
78f160dece
Update README.md
...
swap order to follow what's in the table
2023-04-03 15:57:39 -04:00
Federico Builes
8b0d4b3327
Merge pull request #446 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.57.0
...
Bump @typescript-eslint/eslint-plugin from 5.56.0 to 5.57.0
2023-04-03 11:05:13 +02:00
Federico Builes
8c24360582
Merge pull request #448 from actions/dependabot/npm_and_yarn/eslint-plugin-github-4.7.0
...
Bump eslint-plugin-github from 4.6.1 to 4.7.0
2023-04-03 11:04:36 +02:00
dependabot[bot]
80be5a7079
Bump @typescript-eslint/eslint-plugin from 5.56.0 to 5.57.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.56.0 to 5.57.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.57.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-03 05:10:30 +00:00
dependabot[bot]
35bd59fb9e
Bump eslint-plugin-github from 4.6.1 to 4.7.0
...
Bumps [eslint-plugin-github](https://github.com/github/eslint-plugin-github ) from 4.6.1 to 4.7.0.
- [Release notes](https://github.com/github/eslint-plugin-github/releases )
- [Commits](https://github.com/github/eslint-plugin-github/compare/v4.6.1...v4.7.0 )
---
updated-dependencies:
- dependency-name: eslint-plugin-github
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-03 05:09:05 +00:00
Federico Builes
b7ce9d546d
Merge pull request #447 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.57.0
...
Bump @typescript-eslint/parser from 5.56.0 to 5.57.0
2023-04-03 07:02:10 +02:00
Federico Builes
5875c70f8f
Merge pull request #449 from actions/dependabot/npm_and_yarn/types/node-16.18.23
...
Bump @types/node from 16.18.21 to 16.18.23
2023-04-03 07:01:49 +02:00
Federico Builes
43274f6899
Merge pull request #450 from actions/dependabot/npm_and_yarn/eslint-8.37.0
...
Bump eslint from 8.36.0 to 8.37.0
2023-04-03 07:01:31 +02:00
dependabot[bot]
81d482fe7f
Bump eslint from 8.36.0 to 8.37.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.36.0 to 8.37.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.36.0...v8.37.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-03 02:02:13 +00:00
dependabot[bot]
420f61c64a
Bump @types/node from 16.18.21 to 16.18.23
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.21 to 16.18.23.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-03 02:01:46 +00:00
dependabot[bot]
866b422c9e
Bump @typescript-eslint/parser from 5.56.0 to 5.57.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.56.0 to 5.57.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.57.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-03 02:00:49 +00:00
Justin Holguín
76b8e83d1a
Use 'Unnamed Manifest' as catchall bucket
2023-03-28 16:06:07 +00:00
Federico Builes
91eae64e0c
Merge pull request #442 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.56.0
...
Bump @typescript-eslint/eslint-plugin from 5.55.0 to 5.56.0
2023-03-27 07:57:20 +02:00
Federico Builes
f5f2eae995
Merge pull request #441 from actions/dependabot/npm_and_yarn/nodemon-2.0.22
...
Bump nodemon from 2.0.21 to 2.0.22
2023-03-27 07:37:18 +02:00
dependabot[bot]
355bcf860e
Bump @typescript-eslint/eslint-plugin from 5.55.0 to 5.56.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.55.0 to 5.56.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.56.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-27 05:32:56 +00:00
dependabot[bot]
5726b20f6c
Bump nodemon from 2.0.21 to 2.0.22
...
Bumps [nodemon](https://github.com/remy/nodemon ) from 2.0.21 to 2.0.22.
- [Release notes](https://github.com/remy/nodemon/releases )
- [Commits](https://github.com/remy/nodemon/compare/v2.0.21...v2.0.22 )
---
updated-dependencies:
- dependency-name: nodemon
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-27 05:32:36 +00:00
Federico Builes
4d05b525ee
Merge pull request #444 from actions/dependabot/npm_and_yarn/prettier-2.8.7
...
Bump prettier from 2.8.4 to 2.8.7
2023-03-27 07:32:04 +02:00
Federico Builes
81ee3a8dc8
Merge pull request #443 from actions/dependabot/npm_and_yarn/types/node-16.18.21
...
Bump @types/node from 16.18.16 to 16.18.21
2023-03-27 07:31:53 +02:00
Federico Builes
3b871daeea
Merge pull request #440 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.56.0
...
Bump @typescript-eslint/parser from 5.55.0 to 5.56.0
2023-03-27 07:31:31 +02:00
dependabot[bot]
3f5b40d019
Bump prettier from 2.8.4 to 2.8.7
...
Bumps [prettier](https://github.com/prettier/prettier ) from 2.8.4 to 2.8.7.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/2.8.4...2.8.7 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-27 02:06:07 +00:00
dependabot[bot]
89b3ba9416
Bump @types/node from 16.18.16 to 16.18.21
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.16 to 16.18.21.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-27 02:05:34 +00:00
dependabot[bot]
a44d7c538d
Bump @typescript-eslint/parser from 5.55.0 to 5.56.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.55.0 to 5.56.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.56.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-27 02:01:38 +00:00
Justin Holguín
7e1f7be1f6
Handle dependencies with an empty manifest field
...
This happens sometimes with snapshots. We just want them to be displayed properly in the HTML output.
2023-03-24 19:07:22 +00:00
Justin Holguín
0c01e947d6
Flesh out the warnings section a tiny bit
2023-03-23 23:26:23 +00:00
Justin Holguín
782549c724
Ignore snapshot_warnings for missing head snapshots
2023-03-23 22:59:07 +00:00
Justin Holguín
419396de41
Show snapshot warnings in the summary
2023-03-22 21:30:12 +00:00
tgrall
cc302f4c2b
fix linter/format
2023-03-20 09:07:07 +01:00
Federico Builes
f46c48ed6d
bumping version
2023-03-20 07:22:20 +01:00
Federico Builes
1ac6f5d754
Merge pull request #437 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.55.0
...
Bump @typescript-eslint/eslint-plugin from 5.54.1 to 5.55.0
2023-03-20 06:47:27 +01:00
dependabot[bot]
30049aaf02
Bump @typescript-eslint/eslint-plugin from 5.54.1 to 5.55.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.54.1 to 5.55.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.55.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-20 05:45:47 +00:00
Federico Builes
02b3fbad1c
Merge pull request #436 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.55.0
...
Bump @typescript-eslint/parser from 5.54.1 to 5.55.0
2023-03-20 06:44:51 +01:00
Federico Builes
5c5feeb63d
Merge pull request #435 from actions/dependabot/npm_and_yarn/types/node-16.18.16
...
Bump @types/node from 16.18.14 to 16.18.16
2023-03-20 06:44:19 +01:00
dependabot[bot]
85bb8372bf
Bump @typescript-eslint/parser from 5.54.1 to 5.55.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.54.1 to 5.55.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.55.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-20 02:15:06 +00:00
dependabot[bot]
463aece43a
Bump @types/node from 16.18.14 to 16.18.16
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.14 to 16.18.16.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-20 02:14:20 +00:00
tgrall
621d03bf3a
Add none as option for fail-on-severity
2023-03-18 05:21:58 +01:00
Stefan Petrushevski
e17845d155
README changes as per PR comments
2023-03-16 11:23:57 +01:00
Federico Builes
e3fb5152be
Merge pull request #426 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.54.1
...
Bump @typescript-eslint/eslint-plugin from 5.54.0 to 5.54.1
2023-03-13 09:29:06 +01:00
Federico Builes
4b088f072a
Merge pull request #427 from actions/dependabot/npm_and_yarn/zod-3.21.4
...
Bump zod from 3.21.0 to 3.21.4
2023-03-13 09:28:51 +01:00
dependabot[bot]
e46d65f438
Bump @typescript-eslint/eslint-plugin from 5.54.0 to 5.54.1
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.54.0 to 5.54.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.54.1/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-13 07:08:40 +00:00
Federico Builes
75222ed640
adding dist
2023-03-13 08:02:02 +01:00
Federico Builes
f46bc4dbf8
Merge pull request #428 from actions/dependabot/npm_and_yarn/eslint-8.36.0
...
Bump eslint from 8.35.0 to 8.36.0
2023-03-13 08:00:22 +01:00
Federico Builes
e0a5088fd6
Merge pull request #429 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.54.1
...
Bump @typescript-eslint/parser from 5.53.0 to 5.54.1
2023-03-13 08:00:01 +01:00
dependabot[bot]
f1f8f2bf88
Bump @typescript-eslint/parser from 5.53.0 to 5.54.1
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.53.0 to 5.54.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.54.1/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-13 02:06:48 +00:00
dependabot[bot]
453f5e3690
Bump eslint from 8.35.0 to 8.36.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.35.0 to 8.36.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.35.0...v8.36.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-13 02:06:12 +00:00
dependabot[bot]
6a47644794
Bump zod from 3.21.0 to 3.21.4
...
Bumps [zod](https://github.com/colinhacks/zod ) from 3.21.0 to 3.21.4.
- [Release notes](https://github.com/colinhacks/zod/releases )
- [Changelog](https://github.com/colinhacks/zod/blob/master/CHANGELOG.md )
- [Commits](https://github.com/colinhacks/zod/compare/v3.21.0...v3.21.4 )
---
updated-dependencies:
- dependency-name: zod
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-13 02:05:51 +00:00
Stefan Petrushevski
f0bda66bbf
updated README
2023-03-08 15:44:01 +01:00
Stefan Petrushevski
1d7d9a2c93
new builds
2023-03-08 15:24:23 +01:00
Stefan Petrushevski
d5c2f70a7f
no inline config options due to limitations
2023-03-08 15:23:57 +01:00
Stefan Petrushevski
f92376010c
inline config options
2023-03-08 15:05:16 +01:00
Stefan Petrushevski
c2303c3070
builds
2023-03-08 14:30:37 +01:00
Stefan Petrushevski
884b7abd2d
updated summary output; create_summary.ts script
2023-03-08 13:02:59 +01:00
Stefan Petrushevski
600458c5dd
licenses check exclusion list
2023-03-08 12:38:34 +01:00
Federico Builes
d11e757f70
No support for custom branches note in README.
2023-03-06 09:13:40 +01:00
Federico Builes
63e5e62dba
Merge pull request #416 from davelosert/adjust_summary_format
...
Adjust summary format
2023-03-06 09:10:58 +01:00
Federico Builes
5951e7db04
Merge branch 'main' into adjust_summary_format
2023-03-06 09:08:35 +01:00
Federico Builes
4f537bf170
Merge pull request #417 from actions/dependabot/npm_and_yarn/zod-3.21.0
...
Bump zod from 3.20.6 to 3.21.0
2023-03-06 08:25:25 +01:00
Federico Builes
25f22ad0c7
dist files
2023-03-06 08:25:10 +01:00
Federico Builes
2878425083
Merge pull request #419 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.54.0
...
Bump @typescript-eslint/eslint-plugin from 5.53.0 to 5.54.0
2023-03-06 05:56:03 +01:00
Federico Builes
862b667fee
Merge pull request #421 from actions/dependabot/npm_and_yarn/nodemon-2.0.21
...
Bump nodemon from 2.0.20 to 2.0.21
2023-03-06 05:55:16 +01:00
dependabot[bot]
f7c42c00ca
Bump @typescript-eslint/eslint-plugin from 5.53.0 to 5.54.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.53.0 to 5.54.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.54.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-06 04:48:15 +00:00
dependabot[bot]
00dbe9df8d
Bump nodemon from 2.0.20 to 2.0.21
...
Bumps [nodemon](https://github.com/remy/nodemon ) from 2.0.20 to 2.0.21.
- [Release notes](https://github.com/remy/nodemon/releases )
- [Commits](https://github.com/remy/nodemon/compare/v2.0.20...v2.0.21 )
---
updated-dependencies:
- dependency-name: nodemon
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-06 04:47:54 +00:00
Federico Builes
f89a053f16
Merge pull request #420 from actions/dependabot/npm_and_yarn/types/node-16.18.14
...
Bump @types/node from 16.18.13 to 16.18.14
2023-03-06 05:47:25 +01:00
Federico Builes
700f66ed8f
Merge pull request #418 from actions/dependabot/npm_and_yarn/got-12.6.0
...
Bump got from 12.5.3 to 12.6.0
2023-03-06 05:47:11 +01:00
dependabot[bot]
fc5eaef91a
Bump @types/node from 16.18.13 to 16.18.14
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.13 to 16.18.14.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-06 02:15:36 +00:00
dependabot[bot]
087d445ca8
Bump got from 12.5.3 to 12.6.0
...
Bumps [got](https://github.com/sindresorhus/got ) from 12.5.3 to 12.6.0.
- [Release notes](https://github.com/sindresorhus/got/releases )
- [Commits](https://github.com/sindresorhus/got/compare/v12.5.3...v12.6.0 )
---
updated-dependencies:
- dependency-name: got
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-06 02:14:13 +00:00
dependabot[bot]
95fa321e74
Bump zod from 3.20.6 to 3.21.0
...
Bumps [zod](https://github.com/colinhacks/zod ) from 3.20.6 to 3.21.0.
- [Release notes](https://github.com/colinhacks/zod/releases )
- [Changelog](https://github.com/colinhacks/zod/blob/master/CHANGELOG.md )
- [Commits](https://github.com/colinhacks/zod/compare/v3.20.6...v3.21.0 )
---
updated-dependencies:
- dependency-name: zod
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-03-06 02:13:53 +00:00
David Losert
429d317ccc
Rebuilt dist files
2023-03-02 07:52:41 +00:00
David Losert
6b34d93738
Skips dependency review if no changes detected
2023-03-02 07:47:09 +00:00
David Losert
b7a25f4e9b
Makes License Issues a single table per manifest
2023-03-02 07:43:23 +00:00
David Losert
9f0792541a
Rebuilt dist files
2023-03-02 06:57:41 +00:00
David Losert
5e6910e937
Built the library in it's current state
2023-03-01 07:43:17 +00:00
David Losert
715956774a
Adds some explanation on how to use the script
2023-03-01 07:43:08 +00:00
David Losert
94e6fb6deb
Fixes build to only include src folder
2023-03-01 07:43:00 +00:00
David Losert
1090cda9d5
Adjusts headlines and formatting for license issues
2023-02-28 12:28:20 +00:00
David Losert
6315b3822f
Renames variable to be more speaking
2023-02-28 12:27:55 +00:00
David Losert
c5dab80dd4
Adds script to generate test-markdown files
2023-02-28 11:08:48 +00:00
David Losert
b089c5b002
Adds conditional license summary
2023-02-28 11:08:39 +00:00
David Losert
6e66d136ec
Reformats vulnerability section
2023-02-27 16:05:59 +00:00
David Losert
1b9faef957
Fixes ESLint to also incldue tests and fixes eslint errors in tests
2023-02-27 16:05:03 +00:00
Federico Builes
748b8a5c33
Merge pull request #414 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.53.0
...
Bump @typescript-eslint/parser from 5.52.0 to 5.53.0
2023-02-27 08:13:40 +01:00
dependabot[bot]
1639aef23d
Bump @typescript-eslint/parser from 5.52.0 to 5.53.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.52.0 to 5.53.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.53.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-27 07:11:29 +00:00
Federico Builes
f5f33b0c33
Merge pull request #415 from actions/dependabot/npm_and_yarn/types/node-16.18.13
...
Bump @types/node from 16.18.12 to 16.18.13
2023-02-27 08:08:52 +01:00
Federico Builes
2d8dd98fa8
Merge pull request #413 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.53.0
...
Bump @typescript-eslint/eslint-plugin from 5.52.0 to 5.53.0
2023-02-27 08:08:23 +01:00
Federico Builes
182833caa3
Merge pull request #412 from actions/dependabot/npm_and_yarn/eslint-8.35.0
...
Bump eslint from 8.34.0 to 8.35.0
2023-02-27 08:08:09 +01:00
dependabot[bot]
b0bc193e06
Bump @types/node from 16.18.12 to 16.18.13
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.12 to 16.18.13.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-27 02:53:14 +00:00
dependabot[bot]
f3146217d6
Bump @typescript-eslint/eslint-plugin from 5.52.0 to 5.53.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.52.0 to 5.53.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.53.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-27 02:51:25 +00:00
dependabot[bot]
c5b1778acb
Bump eslint from 8.34.0 to 8.35.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.34.0 to 8.35.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.34.0...v8.35.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-27 02:50:27 +00:00
David Losert
19ee172e7e
feat: Adjusts the formatting and content for the status header
2023-02-22 14:05:52 +00:00
Federico Builes
23c92ea3fe
Merge pull request #407 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.52.0
...
Bump @typescript-eslint/eslint-plugin from 5.51.0 to 5.52.0
2023-02-20 09:58:01 +01:00
dependabot[bot]
1af3349db2
Bump @typescript-eslint/eslint-plugin from 5.51.0 to 5.52.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.51.0 to 5.52.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.52.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-20 06:08:25 +00:00
Federico Builes
2238302e66
Merge pull request #408 from actions/dependabot/npm_and_yarn/eslint-plugin-github-4.6.1
...
Bump eslint-plugin-github from 4.6.0 to 4.6.1
2023-02-20 07:03:23 +01:00
Federico Builes
e4158c9844
Merge pull request #405 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.52.0
...
Bump @typescript-eslint/parser from 5.51.0 to 5.52.0
2023-02-20 07:02:50 +01:00
dependabot[bot]
7f874fd2fb
Bump eslint-plugin-github from 4.6.0 to 4.6.1
...
Bumps [eslint-plugin-github](https://github.com/github/eslint-plugin-github ) from 4.6.0 to 4.6.1.
- [Release notes](https://github.com/github/eslint-plugin-github/releases )
- [Commits](https://github.com/github/eslint-plugin-github/compare/v4.6.0...v4.6.1 )
---
updated-dependencies:
- dependency-name: eslint-plugin-github
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-20 02:27:53 +00:00
dependabot[bot]
9928099802
Bump @typescript-eslint/parser from 5.51.0 to 5.52.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.51.0 to 5.52.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.52.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-20 02:26:07 +00:00
Federico Builes
d9d1c4ba24
adding dist
2023-02-16 14:44:46 +01:00
Federico Builes
a3ee6a76df
Merge pull request #393 from davelosert/write-summary-to-pr
...
Add Feature: Write Summary as comment to the pull request
2023-02-16 14:44:03 +01:00
David Losert
f69167c9be
Build files for current version
2023-02-16 10:04:56 +00:00
David Losert
1c85e9db8d
Adds option to write summary into a pr comment
2023-02-16 10:03:16 +00:00
Federico Builes
5c771993de
doing npm audit fix
2023-02-13 07:07:59 +01:00
Federico Builes
3f5300728c
Merge pull request #403 from actions/dependabot/npm_and_yarn/zod-3.20.6
...
Bump zod from 3.20.2 to 3.20.6
2023-02-13 07:06:20 +01:00
Federico Builes
221de4a420
add dist
2023-02-13 07:06:09 +01:00
Federico Builes
9aa2640fd4
Merge pull request #401 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.51.0
...
Bump @typescript-eslint/parser from 5.50.0 to 5.51.0
2023-02-13 07:04:32 +01:00
dependabot[bot]
d5ff038b8b
Bump @typescript-eslint/parser from 5.50.0 to 5.51.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.50.0 to 5.51.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.51.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-13 06:02:15 +00:00
Federico Builes
63d79cae5c
Merge pull request #402 from actions/dependabot/npm_and_yarn/eslint-8.34.0
...
Bump eslint from 8.33.0 to 8.34.0
2023-02-13 07:00:32 +01:00
Federico Builes
ee7fefc22c
Merge pull request #399 from actions/dependabot/npm_and_yarn/prettier-2.8.4
...
Bump prettier from 2.8.3 to 2.8.4
2023-02-13 06:59:53 +01:00
dependabot[bot]
fa8de14daa
Bump eslint from 8.33.0 to 8.34.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.33.0 to 8.34.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.33.0...v8.34.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-13 05:55:49 +00:00
Federico Builes
eb8231dc40
Merge pull request #400 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.51.0
...
Bump @typescript-eslint/eslint-plugin from 5.50.0 to 5.51.0
2023-02-13 06:55:02 +01:00
dependabot[bot]
fff46df8ec
Bump zod from 3.20.2 to 3.20.6
...
Bumps [zod](https://github.com/colinhacks/zod ) from 3.20.2 to 3.20.6.
- [Release notes](https://github.com/colinhacks/zod/releases )
- [Changelog](https://github.com/colinhacks/zod/blob/master/CHANGELOG.md )
- [Commits](https://github.com/colinhacks/zod/compare/v3.20.2...v3.20.6 )
---
updated-dependencies:
- dependency-name: zod
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-13 02:52:22 +00:00
dependabot[bot]
9613501c27
Bump @typescript-eslint/eslint-plugin from 5.50.0 to 5.51.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.50.0 to 5.51.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.51.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-13 02:50:50 +00:00
dependabot[bot]
08d6d26179
Bump prettier from 2.8.3 to 2.8.4
...
Bumps [prettier](https://github.com/prettier/prettier ) from 2.8.3 to 2.8.4.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/2.8.3...2.8.4 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-13 02:49:57 +00:00
Federico Builes
96d0e9ac03
Merge pull request #396 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.50.0
...
Bump @typescript-eslint/parser from 5.49.0 to 5.50.0
2023-02-06 06:34:53 +01:00
dependabot[bot]
189bf7bc26
Bump @typescript-eslint/parser from 5.49.0 to 5.50.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.49.0 to 5.50.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.50.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-06 05:32:26 +00:00
Federico Builes
a2165983d1
Merge pull request #397 from actions/dependabot/npm_and_yarn/types/node-16.18.12
...
Bump @types/node from 16.18.11 to 16.18.12
2023-02-06 06:32:08 +01:00
Federico Builes
0a618d4025
Merge pull request #395 from actions/dependabot/npm_and_yarn/typescript-4.9.5
...
Bump typescript from 4.9.4 to 4.9.5
2023-02-06 06:31:45 +01:00
Federico Builes
71acb8773c
Merge pull request #394 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.50.0
...
Bump @typescript-eslint/eslint-plugin from 5.48.2 to 5.50.0
2023-02-06 06:31:34 +01:00
dependabot[bot]
8ae3c6ccb4
Bump @types/node from 16.18.11 to 16.18.12
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.11 to 16.18.12.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-06 02:04:54 +00:00
dependabot[bot]
2ad07a3006
Bump typescript from 4.9.4 to 4.9.5
...
Bumps [typescript](https://github.com/Microsoft/TypeScript ) from 4.9.4 to 4.9.5.
- [Release notes](https://github.com/Microsoft/TypeScript/releases )
- [Commits](https://github.com/Microsoft/TypeScript/compare/v4.9.4...v4.9.5 )
---
updated-dependencies:
- dependency-name: typescript
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-06 02:03:23 +00:00
dependabot[bot]
5d0265a143
Bump @typescript-eslint/eslint-plugin from 5.48.2 to 5.50.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.48.2 to 5.50.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.50.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-02-06 02:02:45 +00:00
Federico Builes
9aeec9038b
Merge pull request #388 from actions/dependabot/npm_and_yarn/octokit/plugin-retry-4.1.1
...
Bump @octokit/plugin-retry from 4.0.4 to 4.1.1
2023-01-30 08:36:50 +01:00
Federico Builes
579f2338ab
update dist
2023-01-30 08:34:58 +01:00
dependabot[bot]
2cf5e60887
Bump @octokit/plugin-retry from 4.0.4 to 4.1.1
...
Bumps [@octokit/plugin-retry](https://github.com/octokit/plugin-retry.js ) from 4.0.4 to 4.1.1.
- [Release notes](https://github.com/octokit/plugin-retry.js/releases )
- [Commits](https://github.com/octokit/plugin-retry.js/compare/v4.0.4...v4.1.1 )
---
updated-dependencies:
- dependency-name: "@octokit/plugin-retry"
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-30 07:30:33 +00:00
Federico Builes
4e761fd545
Merge pull request #387 from actions/dependabot/npm_and_yarn/octokit-2.0.14
...
Bump octokit from 2.0.13 to 2.0.14
2023-01-30 08:29:58 +01:00
Federico Builes
51951998f5
really gotta make a script out of this
2023-01-30 08:29:48 +01:00
Federico Builes
b87919684c
Merge pull request #389 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.49.0
...
Bump @typescript-eslint/parser from 5.48.2 to 5.49.0
2023-01-30 08:28:46 +01:00
dependabot[bot]
5cc528819d
Bump @typescript-eslint/parser from 5.48.2 to 5.49.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.48.2 to 5.49.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.49.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-30 05:59:00 +00:00
Federico Builes
e8bb60680f
Merge pull request #390 from actions/dependabot/npm_and_yarn/eslint-8.33.0
...
Bump eslint from 8.32.0 to 8.33.0
2023-01-30 06:58:27 +01:00
Federico Builes
916da45422
Merge pull request #391 from actions/dependabot/npm_and_yarn/vercel/ncc-0.36.1
...
Bump @vercel/ncc from 0.36.0 to 0.36.1
2023-01-30 06:58:12 +01:00
dependabot[bot]
00c58871a0
Bump @vercel/ncc from 0.36.0 to 0.36.1
...
Bumps [@vercel/ncc](https://github.com/vercel/ncc ) from 0.36.0 to 0.36.1.
- [Release notes](https://github.com/vercel/ncc/releases )
- [Commits](https://github.com/vercel/ncc/compare/0.36.0...0.36.1 )
---
updated-dependencies:
- dependency-name: "@vercel/ncc"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-30 01:49:32 +00:00
dependabot[bot]
5232f0766f
Bump eslint from 8.32.0 to 8.33.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.32.0 to 8.33.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.32.0...v8.33.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-30 01:49:16 +00:00
dependabot[bot]
649dad513a
Bump octokit from 2.0.13 to 2.0.14
...
Bumps [octokit](https://github.com/octokit/octokit.js ) from 2.0.13 to 2.0.14.
- [Release notes](https://github.com/octokit/octokit.js/releases )
- [Commits](https://github.com/octokit/octokit.js/compare/v2.0.13...v2.0.14 )
---
updated-dependencies:
- dependency-name: octokit
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-30 01:47:40 +00:00
Federico Builes
1a5397226b
Merge pull request #384 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.48.2
...
Bump @typescript-eslint/eslint-plugin from 5.48.1 to 5.48.2
2023-01-23 06:20:32 +01:00
Federico Builes
83db3fd780
Merge pull request #383 from actions/dependabot/npm_and_yarn/octokit/plugin-retry-4.0.4
...
Bump @octokit/plugin-retry from 4.0.3 to 4.0.4
2023-01-23 06:20:13 +01:00
Federico Builes
2bdc2cf95f
Merge branch 'main' into dependabot/npm_and_yarn/octokit/plugin-retry-4.0.4
2023-01-23 06:19:03 +01:00
dependabot[bot]
cebddc8ad2
Bump @typescript-eslint/eslint-plugin from 5.48.1 to 5.48.2
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.48.1 to 5.48.2.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.48.2/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-23 05:18:48 +00:00
Federico Builes
caa6381bae
add dist
2023-01-23 06:17:33 +01:00
Federico Builes
31520dc391
Merge pull request #382 from actions/dependabot/npm_and_yarn/octokit-2.0.13
...
Bump octokit from 2.0.11 to 2.0.13
2023-01-23 06:16:38 +01:00
Federico Builes
4f412af8fc
adding dist
2023-01-23 06:16:21 +01:00
Federico Builes
5703934fec
Merge pull request #381 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.48.2
...
Bump @typescript-eslint/parser from 5.48.1 to 5.48.2
2023-01-23 06:15:00 +01:00
dependabot[bot]
e78e4ce152
Bump @octokit/plugin-retry from 4.0.3 to 4.0.4
...
Bumps [@octokit/plugin-retry](https://github.com/octokit/plugin-retry.js ) from 4.0.3 to 4.0.4.
- [Release notes](https://github.com/octokit/plugin-retry.js/releases )
- [Commits](https://github.com/octokit/plugin-retry.js/compare/v4.0.3...v4.0.4 )
---
updated-dependencies:
- dependency-name: "@octokit/plugin-retry"
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-23 02:23:06 +00:00
dependabot[bot]
a4da452f33
Bump octokit from 2.0.11 to 2.0.13
...
Bumps [octokit](https://github.com/octokit/octokit.js ) from 2.0.11 to 2.0.13.
- [Release notes](https://github.com/octokit/octokit.js/releases )
- [Commits](https://github.com/octokit/octokit.js/compare/v2.0.11...v2.0.13 )
---
updated-dependencies:
- dependency-name: octokit
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-23 02:22:40 +00:00
dependabot[bot]
d92ca08767
Bump @typescript-eslint/parser from 5.48.1 to 5.48.2
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.48.1 to 5.48.2.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.48.2/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-23 02:22:13 +00:00
Federico Builes
0b30e242cd
Merge pull request #379 from actions/dependabot/npm_and_yarn/eslint-8.32.0
...
Bump eslint from 8.31.0 to 8.32.0
2023-01-16 09:19:54 +01:00
Federico Builes
f668822520
Merge pull request #378 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.48.1
...
Bump @typescript-eslint/parser from 5.48.0 to 5.48.1
2023-01-16 09:19:40 +01:00
Federico Builes
898008ba83
Merge pull request #377 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.48.1
...
Bump @typescript-eslint/eslint-plugin from 5.47.1 to 5.48.1
2023-01-16 09:19:28 +01:00
Federico Builes
4105edb24b
Merge pull request #376 from actions/dependabot/npm_and_yarn/prettier-2.8.3
...
Bump prettier from 2.8.2 to 2.8.3
2023-01-16 09:19:12 +01:00
dependabot[bot]
2f20ab0305
Bump eslint from 8.31.0 to 8.32.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.31.0 to 8.32.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.31.0...v8.32.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-16 02:05:01 +00:00
dependabot[bot]
fa94fed3e7
Bump @typescript-eslint/parser from 5.48.0 to 5.48.1
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.48.0 to 5.48.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.48.1/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-16 02:04:23 +00:00
dependabot[bot]
65e82f802d
Bump @typescript-eslint/eslint-plugin from 5.47.1 to 5.48.1
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.47.1 to 5.48.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.48.1/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-16 02:03:33 +00:00
dependabot[bot]
06d9a244cc
Bump prettier from 2.8.2 to 2.8.3
...
Bumps [prettier](https://github.com/prettier/prettier ) from 2.8.2 to 2.8.3.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/2.8.2...2.8.3 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-16 02:02:24 +00:00
Federico Builes
c090f4e553
release for 3.0.3
2023-01-09 08:21:47 +01:00
Federico Builes
42ee3c8f53
Merge pull request #370 from felickz/fix-request-error-handling
...
Fix Dependency Review API response error handling
2023-01-09 08:18:23 +01:00
Federico Builes
6855e6ed4e
Merge branch 'main' of gh into fix-request-error-handling
2023-01-09 08:16:48 +01:00
Federico Builes
efd78809f9
Merge pull request #375 from actions/dependabot/npm_and_yarn/octokit-2.0.11
...
Bump octokit from 2.0.10 to 2.0.11
2023-01-09 08:02:36 +01:00
Federico Builes
e91b527bcb
add json5 too
2023-01-09 08:02:24 +01:00
Federico Builes
f508195cbc
Merge pull request #374 from actions/dependabot/npm_and_yarn/prettier-2.8.2
...
Bump prettier from 2.8.1 to 2.8.2
2023-01-09 08:00:58 +01:00
Federico Builes
ef8bfcec89
linter suggestions
2023-01-09 07:59:55 +01:00
Federico Builes
31cb4e05f7
Merge branch 'main' into dependabot/npm_and_yarn/prettier-2.8.2
2023-01-09 07:57:09 +01:00
Federico Builes
7920884bc8
Merge pull request #373 from actions/dependabot/npm_and_yarn/eslint-plugin-jest-27.2.1
...
Bump eslint-plugin-jest from 27.1.7 to 27.2.1
2023-01-09 07:56:01 +01:00
dependabot[bot]
aae0422a7f
Bump eslint-plugin-jest from 27.1.7 to 27.2.1
...
Bumps [eslint-plugin-jest](https://github.com/jest-community/eslint-plugin-jest ) from 27.1.7 to 27.2.1.
- [Release notes](https://github.com/jest-community/eslint-plugin-jest/releases )
- [Changelog](https://github.com/jest-community/eslint-plugin-jest/blob/main/CHANGELOG.md )
- [Commits](https://github.com/jest-community/eslint-plugin-jest/compare/v27.1.7...v27.2.1 )
---
updated-dependencies:
- dependency-name: eslint-plugin-jest
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-09 06:55:47 +00:00
Federico Builes
46d2ba8805
Merge pull request #372 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.48.0
...
Bump @typescript-eslint/parser from 5.47.1 to 5.48.0
2023-01-09 07:55:20 +01:00
Federico Builes
7c07c1da42
Merge pull request #371 from actions/dependabot/npm_and_yarn/eslint-8.31.0
...
Bump eslint from 8.30.0 to 8.31.0
2023-01-09 07:54:56 +01:00
dependabot[bot]
6e3a1cfe9e
Bump octokit from 2.0.10 to 2.0.11
...
Bumps [octokit](https://github.com/octokit/octokit.js ) from 2.0.10 to 2.0.11.
- [Release notes](https://github.com/octokit/octokit.js/releases )
- [Commits](https://github.com/octokit/octokit.js/compare/v2.0.10...v2.0.11 )
---
updated-dependencies:
- dependency-name: octokit
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-09 01:43:52 +00:00
dependabot[bot]
3190101729
Bump prettier from 2.8.1 to 2.8.2
...
Bumps [prettier](https://github.com/prettier/prettier ) from 2.8.1 to 2.8.2.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/2.8.1...2.8.2 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-09 01:42:48 +00:00
dependabot[bot]
3576f26c76
Bump @typescript-eslint/parser from 5.47.1 to 5.48.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.47.1 to 5.48.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.48.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-09 01:41:54 +00:00
dependabot[bot]
97fef8f979
Bump eslint from 8.30.0 to 8.31.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.30.0 to 8.31.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.30.0...v8.31.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-09 01:41:16 +00:00
Chad Bentz
60e20b95c9
npm run build && npm run package
2023-01-05 17:41:37 +00:00
Chad Bentz
e6aba92fb0
Enhance failure message to include GHAS note
2023-01-05 17:26:46 +00:00
Chad Bentz
4b2cf01947
integration test to ensure RequestError catch
2023-01-05 17:22:27 +00:00
Chad Bentz
33b11b63b3
downgrade octokit/request-error to ^2.1.0
...
- supported by actions/core ^1.10.0
2023-01-04 20:55:58 +00:00
Federico Builes
90014ebf46
Merge pull request #368 from actions/dependabot/npm_and_yarn/yaml-2.2.1
...
Bump yaml from 2.1.3 to 2.2.1
2023-01-02 05:36:29 -05:00
Federico Builes
c0fcb40fb5
dist
2023-01-02 11:35:30 +01:00
Federico Builes
6213daabf8
Merge branch 'main' into dependabot/npm_and_yarn/yaml-2.2.1
2023-01-02 11:34:56 +01:00
Federico Builes
6c62d64ea3
Merge pull request #366 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.47.1
...
Bump @typescript-eslint/eslint-plugin from 5.45.0 to 5.47.1
2023-01-02 05:32:26 -05:00
Federico Builes
6154af02da
updating dist files
2023-01-02 11:23:18 +01:00
Federico Builes
df40ce1edc
fixing package.json conflict
2023-01-02 11:21:05 +01:00
dependabot[bot]
a033837e12
Bump yaml from 2.1.3 to 2.2.1
...
Bumps [yaml](https://github.com/eemeli/yaml ) from 2.1.3 to 2.2.1.
- [Release notes](https://github.com/eemeli/yaml/releases )
- [Commits](https://github.com/eemeli/yaml/compare/v2.1.3...v2.2.1 )
---
updated-dependencies:
- dependency-name: yaml
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-02 10:20:01 +00:00
Federico Builes
d79457303f
adding dist
2023-01-02 11:19:49 +01:00
Federico Builes
b2f83f35c7
adding dist
2023-01-02 11:17:39 +01:00
Federico Builes
389b38eb1a
Merge pull request #367 from actions/dependabot/npm_and_yarn/zod-3.20.2
...
Bump zod from 3.19.1 to 3.20.2
2023-01-02 05:17:04 -05:00
Federico Builes
e3926a59f5
adding dist
2023-01-02 11:16:52 +01:00
Federico Builes
54656aadd8
Merge pull request #365 from actions/dependabot/npm_and_yarn/esbuild-register-3.4.2
...
Bump esbuild-register from 3.4.1 to 3.4.2
2023-01-02 05:13:23 -05:00
Federico Builes
f02b9fb886
Merge pull request #364 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.47.1
...
Bump @typescript-eslint/parser from 5.47.0 to 5.47.1
2023-01-02 05:12:50 -05:00
dependabot[bot]
6587f9feee
Bump zod from 3.19.1 to 3.20.2
...
Bumps [zod](https://github.com/colinhacks/zod ) from 3.19.1 to 3.20.2.
- [Release notes](https://github.com/colinhacks/zod/releases )
- [Changelog](https://github.com/colinhacks/zod/blob/master/CHANGELOG.md )
- [Commits](https://github.com/colinhacks/zod/compare/v3.19.1...v3.20.2 )
---
updated-dependencies:
- dependency-name: zod
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-02 01:18:52 +00:00
dependabot[bot]
cab2d5f36f
Bump @typescript-eslint/eslint-plugin from 5.45.0 to 5.47.1
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.45.0 to 5.47.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.47.1/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-02 01:18:14 +00:00
dependabot[bot]
ef411f3a4c
Bump esbuild-register from 3.4.1 to 3.4.2
...
Bumps esbuild-register from 3.4.1 to 3.4.2.
---
updated-dependencies:
- dependency-name: esbuild-register
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-02 01:17:15 +00:00
dependabot[bot]
589f46e5a2
Bump @typescript-eslint/parser from 5.47.0 to 5.47.1
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.47.0 to 5.47.1.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.47.1/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-01-02 01:16:48 +00:00
Federico Builes
a482eabd84
Merge pull request #362 from actions/dependabot/npm_and_yarn/types/node-16.18.11
...
Bump @types/node from 16.18.8 to 16.18.11
2022-12-27 09:42:24 -05:00
Federico Builes
c63a70f2bb
Merge pull request #358 from actions/dependabot/npm_and_yarn/typescript-4.9.4
...
Bump typescript from 4.9.3 to 4.9.4
2022-12-27 09:41:58 -05:00
Federico Builes
ea081cab93
Merge pull request #357 from actions/dependabot/npm_and_yarn/eslint-8.30.0
...
Bump eslint from 8.29.0 to 8.30.0
2022-12-27 09:41:47 -05:00
dependabot[bot]
78231376d4
Bump typescript from 4.9.3 to 4.9.4
...
Bumps [typescript](https://github.com/Microsoft/TypeScript ) from 4.9.3 to 4.9.4.
- [Release notes](https://github.com/Microsoft/TypeScript/releases )
- [Commits](https://github.com/Microsoft/TypeScript/compare/v4.9.3...v4.9.4 )
---
updated-dependencies:
- dependency-name: typescript
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-27 14:40:46 +00:00
Federico Builes
ea38797bf9
Merge pull request #359 from jongwooo/chore/use-cache-in-check-dist
...
Use cache in check-dist.yml
2022-12-27 09:40:44 -05:00
dependabot[bot]
383b34b013
Bump eslint from 8.29.0 to 8.30.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.29.0 to 8.30.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.29.0...v8.30.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-27 14:40:20 +00:00
Federico Builes
234f1c3e6b
Merge pull request #355 from actions/dependabot/npm_and_yarn/eslint-plugin-jest-27.1.7
...
Bump eslint-plugin-jest from 27.1.6 to 27.1.7
2022-12-27 09:39:34 -05:00
dependabot[bot]
1aca439347
Bump @types/node from 16.18.8 to 16.18.11
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.8 to 16.18.11.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-27 14:37:29 +00:00
Federico Builes
f5231a7139
Merge pull request #361 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.47.0
...
Bump @typescript-eslint/parser from 5.46.0 to 5.47.0
2022-12-27 09:36:32 -05:00
dependabot[bot]
872c5e3689
Bump @typescript-eslint/parser from 5.46.0 to 5.47.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.46.0 to 5.47.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.47.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-26 01:43:00 +00:00
Jongwoo Han
86e4c38e88
Use cache in check-dist.yml
...
Signed-off-by: jongwooo <jongwooo.han@gmail.com >
2022-12-20 03:17:46 +09:00
dependabot[bot]
70a13ae7e3
Bump eslint-plugin-jest from 27.1.6 to 27.1.7
...
Bumps [eslint-plugin-jest](https://github.com/jest-community/eslint-plugin-jest ) from 27.1.6 to 27.1.7.
- [Release notes](https://github.com/jest-community/eslint-plugin-jest/releases )
- [Changelog](https://github.com/jest-community/eslint-plugin-jest/blob/main/CHANGELOG.md )
- [Commits](https://github.com/jest-community/eslint-plugin-jest/compare/v27.1.6...v27.1.7 )
---
updated-dependencies:
- dependency-name: eslint-plugin-jest
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-19 01:42:28 +00:00
cnagadya
0ff3da6f81
3.0.2 patch release
2022-12-16 13:45:58 +00:00
cnagadya
6d88398316
Merge pull request #350 from actions/dependabot/npm_and_yarn/types/node-16.18.8
...
Bump @types/node from 16.18.4 to 16.18.8
2022-12-16 14:09:01 +01:00
cnagadya
29022577bf
Merge pull request #352 from actions/dependabot/npm_and_yarn/eslint-plugin-github-4.6.0
...
Bump eslint-plugin-github from 4.4.1 to 4.6.0
2022-12-12 11:35:37 +01:00
dependabot[bot]
a4bf690c47
Bump eslint-plugin-github from 4.4.1 to 4.6.0
...
Bumps [eslint-plugin-github](https://github.com/github/eslint-plugin-github ) from 4.4.1 to 4.6.0.
- [Release notes](https://github.com/github/eslint-plugin-github/releases )
- [Commits](https://github.com/github/eslint-plugin-github/compare/v4.4.1...v4.6.0 )
---
updated-dependencies:
- dependency-name: eslint-plugin-github
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-12 09:22:23 +00:00
cnagadya
3f67248108
Merge pull request #351 from actions/dependabot/npm_and_yarn/vercel/ncc-0.36.0
...
Bump @vercel/ncc from 0.34.0 to 0.36.0
2022-12-12 10:19:33 +01:00
cnagadya
e82e9497cb
Fix dist
2022-12-12 09:14:19 +00:00
dependabot[bot]
945cb4d00a
Bump @types/node from 16.18.4 to 16.18.8
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.4 to 16.18.8.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-12 08:35:38 +00:00
dependabot[bot]
459b39211c
Bump @vercel/ncc from 0.34.0 to 0.36.0
...
Bumps [@vercel/ncc](https://github.com/vercel/ncc ) from 0.34.0 to 0.36.0.
- [Release notes](https://github.com/vercel/ncc/releases )
- [Commits](https://github.com/vercel/ncc/compare/0.34.0...0.36.0 )
---
updated-dependencies:
- dependency-name: "@vercel/ncc"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-12 08:35:37 +00:00
cnagadya
c109d3f46d
Merge pull request #349 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.46.0
...
Bump @typescript-eslint/parser from 5.45.0 to 5.46.0
2022-12-12 09:34:54 +01:00
cnagadya
706aa54d76
Merge pull request #353 from actions/dependabot/npm_and_yarn/prettier-2.8.1
...
Bump prettier from 2.8.0 to 2.8.1
2022-12-12 09:34:29 +01:00
dependabot[bot]
12cfe866a8
Bump prettier from 2.8.0 to 2.8.1
...
Bumps [prettier](https://github.com/prettier/prettier ) from 2.8.0 to 2.8.1.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/2.8.0...2.8.1 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-12 01:24:53 +00:00
dependabot[bot]
0caa632377
Bump @typescript-eslint/parser from 5.45.0 to 5.46.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.45.0 to 5.46.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.46.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-12 01:23:08 +00:00
Eli Reisman
df02ee7d42
Merge pull request #348 from jsoref/spelling
...
Spelling
2022-12-09 13:23:18 -08:00
Josh Soref
38e9237630
Update dist/
2022-12-08 20:03:56 -05:00
Josh Soref
03c7962be5
spelling: vulnerabilities
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2022-12-08 11:04:05 -05:00
Josh Soref
cff3674e25
spelling: the
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2022-12-08 11:04:05 -05:00
Josh Soref
a184554be2
spelling: minimum
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2022-12-08 11:04:05 -05:00
Josh Soref
660812709b
spelling: github
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2022-12-08 11:04:05 -05:00
cnagadya
d8b4cd80d5
Merge pull request #345 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.45.0
...
Bump @typescript-eslint/parser from 5.44.0 to 5.45.0
2022-12-05 11:01:36 +01:00
dependabot[bot]
8e5d487bb8
Bump @typescript-eslint/parser from 5.44.0 to 5.45.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.44.0 to 5.45.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.45.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-05 09:58:32 +00:00
cnagadya
3e6e055a26
Merge pull request #344 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.45.0
...
Bump @typescript-eslint/eslint-plugin from 5.44.0 to 5.45.0
2022-12-05 10:57:43 +01:00
dependabot[bot]
1f8d096c90
Bump @typescript-eslint/eslint-plugin from 5.44.0 to 5.45.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.44.0 to 5.45.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.45.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-05 09:56:10 +00:00
cnagadya
0247f51a25
Merge pull request #346 from actions/dependabot/npm_and_yarn/types/node-16.18.4
...
Bump @types/node from 16.18.3 to 16.18.4
2022-12-05 10:55:16 +01:00
cnagadya
f599dc7887
Merge pull request #347 from actions/dependabot/npm_and_yarn/eslint-8.29.0
...
Bump eslint from 8.28.0 to 8.29.0
2022-12-05 10:54:24 +01:00
dependabot[bot]
6919a4885f
Bump eslint from 8.28.0 to 8.29.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.28.0 to 8.29.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.28.0...v8.29.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-05 01:44:27 +00:00
dependabot[bot]
8f97494d2e
Bump @types/node from 16.18.3 to 16.18.4
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 16.18.3 to 16.18.4.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
---
updated-dependencies:
- dependency-name: "@types/node"
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-05 01:44:05 +00:00
Federico Builes
08ec176670
Merge pull request #341 from actions/dependabot/npm_and_yarn/eslint-plugin-jest-27.1.6
...
Bump eslint-plugin-jest from 27.1.5 to 27.1.6
2022-11-28 17:40:48 +01:00
dependabot[bot]
40a9da4614
Bump eslint-plugin-jest from 27.1.5 to 27.1.6
...
Bumps [eslint-plugin-jest](https://github.com/jest-community/eslint-plugin-jest ) from 27.1.5 to 27.1.6.
- [Release notes](https://github.com/jest-community/eslint-plugin-jest/releases )
- [Changelog](https://github.com/jest-community/eslint-plugin-jest/blob/main/CHANGELOG.md )
- [Commits](https://github.com/jest-community/eslint-plugin-jest/compare/v27.1.5...v27.1.6 )
---
updated-dependencies:
- dependency-name: eslint-plugin-jest
dependency-type: direct:development
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-11-28 01:45:07 +00:00
Federico Builes
9ad1f84ed2
Dependabot Updates should only happen once a week.
2022-11-24 10:57:01 +01:00
Federico Builes
464e6ac735
Merge pull request #337 from actions/dependabot/npm_and_yarn/prettier-2.8.0
...
Bump prettier from 2.7.1 to 2.8.0
2022-11-24 06:57:46 +01:00
dependabot[bot]
141e2dae22
Bump prettier from 2.7.1 to 2.8.0
...
Bumps [prettier](https://github.com/prettier/prettier ) from 2.7.1 to 2.8.0.
- [Release notes](https://github.com/prettier/prettier/releases )
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md )
- [Commits](https://github.com/prettier/prettier/compare/2.7.1...2.8.0 )
---
updated-dependencies:
- dependency-name: prettier
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-11-24 01:05:35 +00:00
Federico Builes
37bb7a46dd
Merge pull request #336 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.44.0
...
Bump @typescript-eslint/parser from 5.43.0 to 5.44.0
2022-11-23 08:13:04 +01:00
dependabot[bot]
5abb42a215
Bump @typescript-eslint/parser from 5.43.0 to 5.44.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.43.0 to 5.44.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.44.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-11-23 07:08:38 +00:00
Federico Builes
5aafbe4a32
Merge pull request #335 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.44.0
...
Bump @typescript-eslint/eslint-plugin from 5.43.0 to 5.44.0
2022-11-23 08:07:40 +01:00
dependabot[bot]
d623612924
Bump @typescript-eslint/eslint-plugin from 5.43.0 to 5.44.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.43.0 to 5.44.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.44.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-11-23 01:36:15 +00:00
Federico Builes
08fe899167
Merge pull request #334 from actions/dependabot/npm_and_yarn/eslint-8.28.0
...
Bump eslint from 8.27.0 to 8.28.0
2022-11-21 07:16:29 +01:00
dependabot[bot]
067e030d27
Bump eslint from 8.27.0 to 8.28.0
...
Bumps [eslint](https://github.com/eslint/eslint ) from 8.27.0 to 8.28.0.
- [Release notes](https://github.com/eslint/eslint/releases )
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md )
- [Commits](https://github.com/eslint/eslint/compare/v8.27.0...v8.28.0 )
---
updated-dependencies:
- dependency-name: eslint
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-11-21 01:51:38 +00:00
Federico Builes
6b47d2662b
Merge pull request #333 from actions/dependabot/npm_and_yarn/got-12.5.3
...
Bump got from 12.5.2 to 12.5.3
2022-11-17 07:17:03 +01:00
dependabot[bot]
290634fe98
Bump got from 12.5.2 to 12.5.3
...
Bumps [got](https://github.com/sindresorhus/got ) from 12.5.2 to 12.5.3.
- [Release notes](https://github.com/sindresorhus/got/releases )
- [Commits](https://github.com/sindresorhus/got/compare/v12.5.2...v12.5.3 )
---
updated-dependencies:
- dependency-name: got
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-11-17 01:14:38 +00:00
Federico Builes
352f50a80e
Update contribution instructions with v3 for easier copy/pasting.
2022-11-16 11:36:08 +01:00
Federico Builes
11310527b4
bumping version
2022-11-16 11:31:19 +01:00
Federico Builes
ea0f46928b
Merge pull request #330 from actions/errors-for-external-configs
...
Improve error messages for external config files
2022-11-16 11:26:15 +01:00
Federico Builes
369356e2e7
Fixing merge conflict in dist/
...
# Conflicts:
# dist/index.js.map
2022-11-16 11:24:44 +01:00
cnagadya
13fe21bc0a
Merge pull request #331 from actions/octokit/enterprise
...
Set octokit baseurl for GHES
2022-11-16 10:03:07 +01:00
Federico Builes
136c0838bf
Merge pull request #332 from actions/dependabot/npm_and_yarn/typescript-4.9.3
...
Bump typescript from 4.8.4 to 4.9.3
2022-11-16 07:04:34 +01:00
dependabot[bot]
8ed85b3757
Bump typescript from 4.8.4 to 4.9.3
...
Bumps [typescript](https://github.com/Microsoft/TypeScript ) from 4.8.4 to 4.9.3.
- [Release notes](https://github.com/Microsoft/TypeScript/releases )
- [Commits](https://github.com/Microsoft/TypeScript/commits )
---
updated-dependencies:
- dependency-name: typescript
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-11-16 01:11:56 +00:00
Federico Builes
a952d7b1b7
adding dist
2022-11-15 22:34:15 +01:00
Federico Builes
b8e622f102
Move test out of failing block.
2022-11-15 22:33:31 +01:00
Federico Builes
ac059c649c
Checkpoint!
2022-11-15 22:29:00 +01:00
Federico Builes
93652d7af0
Fix failing tests.
2022-11-15 22:28:50 +01:00
Federico Builes
ba127cac5e
Adding a test to confirm lists work properly in config files.
2022-11-15 22:25:26 +01:00
Federico Builes
1dd7392739
Adding fixture for testing config file string lists.
2022-11-15 22:25:13 +01:00
Federico Builes
2d265aa7cc
Updating dist.
2022-11-15 07:50:53 +01:00
Federico Builes
c57c602135
Force error casting to get messages!
2022-11-15 07:50:45 +01:00
Federico Builes
c2097b2a9b
Updating copy in a test.
2022-11-15 07:50:32 +01:00
Federico Builes
0a055a6a13
Improve error messages for external config files.
2022-11-15 07:45:29 +01:00
Federico Builes
3417e62ba2
Merge pull request #328 from actions/dependabot/npm_and_yarn/typescript-eslint/parser-5.43.0
...
Bump @typescript-eslint/parser from 5.42.1 to 5.43.0
2022-11-15 05:38:42 +01:00
dependabot[bot]
49fecaf158
Bump @typescript-eslint/parser from 5.42.1 to 5.43.0
...
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser ) from 5.42.1 to 5.43.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.43.0/packages/parser )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-11-15 04:33:19 +00:00
Federico Builes
173a4b8d96
Merge pull request #329 from actions/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.43.0
...
Bump @typescript-eslint/eslint-plugin from 5.42.1 to 5.43.0
2022-11-15 05:32:34 +01:00
dependabot[bot]
db1829cd87
Bump @typescript-eslint/eslint-plugin from 5.42.1 to 5.43.0
...
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin ) from 5.42.1 to 5.43.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases )
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md )
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.43.0/packages/eslint-plugin )
---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
dependency-type: direct:development
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-11-15 01:05:54 +00:00