Skip to content

chore(deps): update all non-major dependencies #690

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): update all non-major dependencies #690

wants to merge 1 commit into from

Conversation

renovate-bot
Copy link
Contributor

@renovate-bot renovate-bot commented May 1, 2025
edited
Loading

This PR contains the following updates:

Package Type Update Change Age Adoption Passing Confidence
actions/dependency-review-action action minor v4.6.0 -> v4.7.0 age adoption passing confidence
github/codeql-action action patch v3.28.15 -> v3.28.17 age adoption passing confidence
pack-n-play devDependencies patch 3.0.0 -> 3.0.1 age adoption passing confidence
step-security/harden-runner action minor v2.11.1 -> v2.12.0 age adoption passing confidence

Release Notes

actions/dependency-review-action (actions/dependency-review-action)

v4.7.0

Compare Source

github/codeql-action (github/codeql-action)

v3.28.17

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.17 - 02 May 2025
  • Update default CodeQL bundle version to 2.21.2. #​2872

See the full CHANGELOG.md for more information.

v3.28.16

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.16 - 23 Apr 2025
  • Update default CodeQL bundle version to 2.21.1. #​2863

See the full CHANGELOG.md for more information.

googleapis/pack-n-play (pack-n-play)

v3.0.1

Compare Source

Bug Fixes
  • Update pack-n-play to 2023 compiler option to match gts (#​210) (259c14c)
step-security/harden-runner (step-security/harden-runner)

v2.12.0

Compare Source

What's Changed

  1. A new option, disable-sudo-and-containers, is now available to replace the disable-sudo policy, addressing Docker-based privilege escalation (CVE-2025-32955). More details can be found in this blog post.

  2. New detections have been added based on insights from the tj-actions and reviewdog actions incidents.

Full Changelog: step-security/harden-runner@v2...v2.12.0

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, on day 1 of the month ( * 0-3 1 * * ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate-bot renovate-bot force-pushed the renovate/all-minor-patch branch from 710dbec to fd2c231 Compare May 2, 2025 12:41
@renovate-bot renovate-bot force-pushed the renovate/all-minor-patch branch from fd2c231 to 0bd6ad9 Compare May 8, 2025 20:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@renovate-bot