Commit 664248f
authored
Bump snyk/actions from 0.4.0 to 1.0.0 (#910)
Bumps [snyk/actions](https://github.com/snyk/actions) from 0.4.0 to
1.0.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/snyk/actions/releases">snyk/actions's
releases</a>.</em></p>
<blockquote>
<h2>v1.0.0</h2>
<h2>What's Changed</h2>
<ul>
<li>feat: release stable v1.0.0 by <a
href="https://github.com/thisislawatts"><code>@thisislawatts</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/201">snyk/actions#201</a></li>
</ul>
<p>The GitHub Action should be considered ready for use in production
pipelines. To formally signal this status we are releasing a v1.0.0</p>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/snyk/actions/compare/v0...v1.0.0">https://github.com/snyk/actions/compare/v0...v1.0.0</a></p>
<h2>v0.5.0</h2>
<h2>What's Changed</h2>
<ul>
<li>feat: add ability for customer to specify custom docker image by <a
href="https://github.com/nathan-roys"><code>@nathan-roys</code></a> in
<a
href="https://redirect.github.com/snyk/actions/pull/122">snyk/actions#122</a></li>
<li>Revert "feat: add ability for customer to specify custom docker
image" by <a
href="https://github.com/nathan-roys"><code>@nathan-roys</code></a> in
<a
href="https://redirect.github.com/snyk/actions/pull/123">snyk/actions#123</a></li>
<li>feat: add actions for maven jdk 17 and 20 by <a
href="https://github.com/bmvermeer"><code>@bmvermeer</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/124">snyk/actions#124</a></li>
<li>feat: add actions for maven jdk 17 and 20 by <a
href="https://github.com/bmvermeer"><code>@bmvermeer</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/125">snyk/actions#125</a></li>
<li>chore: secrets scanning by <a
href="https://github.com/dragos-cojocari"><code>@dragos-cojocari</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/127">snyk/actions#127</a></li>
<li>chore: remove unused Dockerfile by <a
href="https://github.com/dragos-cojocari"><code>@dragos-cojocari</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/128">snyk/actions#128</a></li>
<li>Add contributing.md and code of conduct by <a
href="https://github.com/torgo"><code>@torgo</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/126">snyk/actions#126</a></li>
<li>chore: asset classification by <a
href="https://github.com/dragos-cojocari"><code>@dragos-cojocari</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/130">snyk/actions#130</a></li>
<li>fix: add safe directory to git, change creds for generation by <a
href="https://github.com/bastiandoetsch"><code>@bastiandoetsch</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/131">snyk/actions#131</a></li>
<li>chore: update codeowners with new team identifer
(<code>@snyk/cli</code>) by <a
href="https://github.com/thisislawatts"><code>@thisislawatts</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/136">snyk/actions#136</a></li>
<li>feat: re-org labels and security gates by <a
href="https://github.com/bikochan"><code>@bikochan</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/137">snyk/actions#137</a></li>
<li>feat: add actions for maven jdk 21 and 22 by <a
href="https://github.com/bmvermeer"><code>@bmvermeer</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/138">snyk/actions#138</a></li>
<li>fix: add fallback set up command using the env variable by <a
href="https://github.com/bastiandoetsch"><code>@bastiandoetsch</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/140">snyk/actions#140</a></li>
<li>Revert "fix: add fallback set up command using the env
variable" by <a
href="https://github.com/bastiandoetsch"><code>@bastiandoetsch</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/141">snyk/actions#141</a></li>
<li>fix: add test & env variable for setup by <a
href="https://github.com/bastiandoetsch"><code>@bastiandoetsch</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/142">snyk/actions#142</a></li>
<li>fix: In setup action check if sudo is available by <a
href="https://github.com/PeterSchafer"><code>@PeterSchafer</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/143">snyk/actions#143</a></li>
<li>feat(scalaSBT): add new Scala SBT action [CLI-382] by <a
href="https://github.com/j-luong"><code>@j-luong</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/144">snyk/actions#144</a></li>
<li>feat: add alpine support by <a
href="https://github.com/PeterSchafer"><code>@PeterSchafer</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/145">snyk/actions#145</a></li>
<li>feat: change downloadurl and add fallback on setup action by <a
href="https://github.com/sandor-trombitas"><code>@sandor-trombitas</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/146">snyk/actions#146</a></li>
<li>revert "feat: change downloadurl and add fallback on setup
action by <a
href="https://github.com/j-luong"><code>@j-luong</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/147">snyk/actions#147</a></li>
<li>feat: change downloadurl and add fallback on setup action by <a
href="https://github.com/j-luong"><code>@j-luong</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/148">snyk/actions#148</a></li>
<li>chore: add better logging to setup action script by <a
href="https://github.com/j-luong"><code>@j-luong</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/153">snyk/actions#153</a></li>
<li>Update README.md by <a
href="https://github.com/azamat-aminov"><code>@azamat-aminov</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/152">snyk/actions#152</a></li>
<li>Mitigate script injection attack in snyk/actions/setup by <a
href="https://github.com/fabasoad"><code>@fabasoad</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/157">snyk/actions#157</a></li>
<li>Bump gitleaks pre-commit hook from 8.17.0 to 8.27.2 by <a
href="https://github.com/fabasoad"><code>@fabasoad</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/158">snyk/actions#158</a></li>
<li>chore: adding PR housekeeping by <a
href="https://github.com/dotkas"><code>@dotkas</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/161">snyk/actions#161</a></li>
<li>Housekeeping: Fixing broken synchronization script by <a
href="https://github.com/dotkas"><code>@dotkas</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/162">snyk/actions#162</a></li>
<li>fix: synchronizing Github actions templates by <a
href="https://github.com/team-cli-bot"><code>@team-cli-bot</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/164">snyk/actions#164</a></li>
<li>Housekeeping: Updating Ruby script, fixing more typos by <a
href="https://github.com/dotkas"><code>@dotkas</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/165">snyk/actions#165</a></li>
<li>fix: synchronizing Github actions templates by <a
href="https://github.com/team-cli-bot"><code>@team-cli-bot</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/167">snyk/actions#167</a></li>
<li>feat: adding Gradle JDK 21 by <a
href="https://github.com/dotkas"><code>@dotkas</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/168">snyk/actions#168</a></li>
<li>feat: adding Python 3.11 by <a
href="https://github.com/dotkas"><code>@dotkas</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/169">snyk/actions#169</a></li>
<li>chore: update codeowners [CLI-1037] by <a
href="https://github.com/prodsec-github-automation"><code>@prodsec-github-automation</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/173">snyk/actions#173</a></li>
<li>chore: adding warnings to generated files by <a
href="https://github.com/dotkas"><code>@dotkas</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/178">snyk/actions#178</a></li>
<li>fix: synchronizing Github actions templates by <a
href="https://github.com/team-cli-bot"><code>@team-cli-bot</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/180">snyk/actions#180</a></li>
<li>feat: adding elixir to actions by <a
href="https://github.com/dotkas"><code>@dotkas</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/170">snyk/actions#170</a></li>
<li>fix: automatically deprecate actions from deprecated snyk images by
<a href="https://github.com/dotkas"><code>@dotkas</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/182">snyk/actions#182</a></li>
<li>fix: synchronize actions with the snyk-images repository by <a
href="https://github.com/team-cli-bot"><code>@team-cli-bot</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/187">snyk/actions#187</a></li>
<li>chore: adding deprecation warning to <code>README</code>s as well by
<a href="https://github.com/dotkas"><code>@dotkas</code></a> in <a
href="https://redirect.github.com/snyk/actions/pull/188">snyk/actions#188</a></li>
<li>fix: synchronizing Github actions templates by <a
href="https://github.com/team-cli-bot"><code>@team-cli-bot</code></a>
in <a
href="https://redirect.github.com/snyk/actions/pull/189">snyk/actions#189</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/snyk/actions/commit/9adf32b1121593767fc3c057af55b55db032dc04"><code>9adf32b</code></a>
chore(ci): adjust to build release based on current branch (<a
href="https://redirect.github.com/snyk/actions/issues/202">#202</a>)</li>
<li><a
href="https://github.com/snyk/actions/commit/ce71ff9eda12bc48837b2855bca31364cdfa93e2"><code>ce71ff9</code></a>
feat: release stable v1.0.0 (<a
href="https://redirect.github.com/snyk/actions/issues/201">#201</a>)</li>
<li><a
href="https://github.com/snyk/actions/commit/de2dda699bf7276d103ed6a72a5bc5a1871ad658"><code>de2dda6</code></a>
chore(ci): pin action to immutable sha (<a
href="https://redirect.github.com/snyk/actions/issues/199">#199</a>)</li>
<li><a
href="https://github.com/snyk/actions/commit/6f870866d3f252f020f6397f01c40ad61f5069cd"><code>6f87086</code></a>
chore(ci): generate GitHub releases based on commits (<a
href="https://redirect.github.com/snyk/actions/issues/198">#198</a>)</li>
<li><a
href="https://github.com/snyk/actions/commit/e2221410bff24446ba09102212d8bc75a567237d"><code>e222141</code></a>
fix: update upload-sarif documentations (<a
href="https://redirect.github.com/snyk/actions/issues/196">#196</a>)</li>
<li><a
href="https://github.com/snyk/actions/commit/42be729e2071b5ae341ef325acdfaf4b7357a068"><code>42be729</code></a>
chore: add security.md [PRODSEC-5886] (<a
href="https://redirect.github.com/snyk/actions/issues/197">#197</a>)</li>
<li><a
href="https://github.com/snyk/actions/commit/10a13eb1b556d09c820d6dbc05233e68b30f10b0"><code>10a13eb</code></a>
fix: synchronizing Github actions templates (<a
href="https://redirect.github.com/snyk/actions/issues/195">#195</a>)</li>
<li><a
href="https://github.com/snyk/actions/commit/7d78c83a6a903e3f882a5f839ef6b576801a2e81"><code>7d78c83</code></a>
chore: fixing wrong github warning markdown</li>
<li><a
href="https://github.com/snyk/actions/commit/2f3c869154a3036de8e53db79251b67d10cfb91f"><code>2f3c869</code></a>
docs: add contributing and support sections (<a
href="https://redirect.github.com/snyk/actions/issues/194">#194</a>)</li>
<li><a
href="https://github.com/snyk/actions/commit/ae57bdf611f027808b07a5dc3baa99fb34e69854"><code>ae57bdf</code></a>
fix: synchronize actions with the snyk-images repository (<a
href="https://redirect.github.com/snyk/actions/issues/193">#193</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/snyk/actions/compare/b98d498629f1c368650224d6d212bf7dfa89e4bf...9adf32b1121593767fc3c057af55b55db032dc04">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
You can trigger a rebase of this PR by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
> **Note**
> Automatic rebases have been disabled on this pull request as it has
been open for over 30 days.1 file changed
+1
-1
lines changed| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
35 | 35 | | |
36 | 36 | | |
37 | 37 | | |
38 | | - | |
| 38 | + | |
39 | 39 | | |
40 | 40 | | |
0 commit comments