build(deps): bump the ci group with 4 updates #4430
Closed
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the ci group with 4 updates: Azure/login, google-github-actions/auth, anchore/sbom-action and fossa-contrib/fossa-action.
Updates
Azure/login
from 1.4.7 to 1.5.0Release notes
Sourced from Azure/login's releases.
Commits
4c88f01
prepare release 1.5.0e3b217c
Update README.md (#363)63a40dd
update pr-check workflow (#370)ed5636a
modify warning message (#358)0431fbf
disable output in CI logs (#359)4e0edd1
Secure workflow strategy for Azure CLI output configuration (#356)8bf3bde
Support Managed Identity (#348)a00376e
remove a invalid check in pr-check workflow for supporting MI PR (#352)5906929
replace GitHubActionGroup with GitHubAction_CI_RG (#349)b998d5a
Update README.md for replacing--sdk-auth
with--json-auth
(#342)Updates
google-github-actions/auth
from 1.1.1 to 1.2.0Release notes
Sourced from google-github-actions/auth's releases.
Commits
f105ef0
Release: v1.2.0 (#346)cf96593
Build latest versions (#345)292d120
Switch to more resilient testing (#343)04900d1
Drop chai and mocha deps (#342)43a5988
Update deps (#339)e607103
Update README.md (#332)87b651a
update all deps (#321)8738ec4
dependabot: only do security updates (#320)ee81b78
Update deps (#312)Updates
anchore/sbom-action
from 0.14.3 to 0.15.0Release notes
Sourced from anchore/sbom-action's releases.
Commits
fd74a6f
pin and upgrade actions/checkout (#428)c9fb15d
chore(deps): update Syft to v0.97.1 (#427)74207bd
chore: test natively on Windows (#426)ace0b97
add oss community board auto-add workflow (#421)Updates
fossa-contrib/fossa-action
from 2.0.0 to 3.0.0Release notes
Sourced from fossa-contrib/fossa-action's releases.
Changelog
Sourced from fossa-contrib/fossa-action's changelog.
... (truncated)
Commits
cdc5065
Prepare v3.0.0e0cd480
Update default runtime to node202fb4cbd
@tsconfig/node16
->@tsconfig/node20
f8e8957
Update dependency@types/node
to v20.9.479fdf90
Update dependency@types/semver
to v7.5.6feee8c0
Update dependency@types/node
to v20.9.32e41b6b
Update dependency typescript to v5.3.21c9d223
Update typescript-eslint monorepo to v6.12.0bb587f5
Lock file maintenance798c451
Update dependency@types/node
to v20.9.2Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditions