chore(deps): bump Kong/public-shared-actions from 2.3.0 to 2.4.0 #11139

dependabot · 2024-08-19T15:35:46Z

Bumps Kong/public-shared-actions from 2.3.0 to 2.4.0.

Release notes

Sourced from Kong/public-shared-actions's releases.

v2.4.0

What's Changed

github-actions(deps): bump anchore/scan-action from 3.6.4 to 4.1.1 in /security-actions/sca by @dependabot in Kong/public-shared-actions#138

github-actions(deps): bump anchore/scan-action from 3.6.4 to 4.1.1 in /security-actions/scan-docker-image by @dependabot in Kong/public-shared-actions#136

github-actions(deps): bump anchore/sbom-action from 0.16.0 to 0.17.1 in /security-actions/sca by @dependabot in Kong/public-shared-actions#139

github-actions(deps): bump anchore/sbom-action from 0.16.0 to 0.17.1 in /security-actions/scan-docker-image by @dependabot in Kong/public-shared-actions#137

github-actions(deps): bump docker/login-action from 3.1.0 to 3.2.0 in /security-actions/sign-docker-image by @dependabot in Kong/public-shared-actions#124

github-actions(deps): bump sigstore/cosign-installer from 3.5.0 to 3.6.0 in /security-actions/sign-docker-image by @dependabot in Kong/public-shared-actions#135

Run CVE analysis when DB cache or upstream cdn is live by @saisatishkarra in Kong/public-shared-actions#141

Full Changelog: Kong/public-shared-actions@v2.3.0...v2.4.0

Commits

a213265 Run CVE analysis when DB cache or upstream cdn is live (#141)
7a3a7bd github-actions(deps): bump sigstore/cosign-installer (#135)
ce6527b github-actions(deps): bump docker/login-action (#124)
d435f04 github-actions(deps): bump anchore/sbom-action (#137)
ef17bd6 github-actions(deps): bump anchore/sbom-action in /security-actions/sca (#139)
2d93f42 github-actions(deps): bump anchore/scan-action (#136)
e322167 github-actions(deps): bump anchore/scan-action in /security-actions/sca (#138)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [Kong/public-shared-actions](https://github.com/kong/public-shared-actions) from 2.3.0 to 2.4.0. - [Release notes](https://github.com/kong/public-shared-actions/releases) - [Commits](Kong/public-shared-actions@62643b7...a213265) --- updated-dependencies: - dependency-name: Kong/public-shared-actions dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

github-actions · 2024-08-20T09:10:46Z

backporting to release-2.6 with action

backporting to release-2.4 with action
backporting to release-2.5 with action
backporting to release-2.7 with action

) Bumps [Kong/public-shared-actions](https://github.com/kong/public-shared-actions) from 2.3.0 to 2.4.0. - [Release notes](https://github.com/kong/public-shared-actions/releases) - [Commits](Kong/public-shared-actions@62643b7...a213265) --- updated-dependencies: - dependency-name: Kong/public-shared-actions dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…kport of #11139) (#11147) chore(deps): bump Kong/public-shared-actions from 2.3.0 to 2.4.0 (#11139) Bumps [Kong/public-shared-actions](https://github.com/kong/public-shared-actions) from 2.3.0 to 2.4.0. - [Release notes](https://github.com/kong/public-shared-actions/releases) - [Commits](Kong/public-shared-actions@62643b7...a213265) --- updated-dependencies: - dependency-name: Kong/public-shared-actions dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…kport of #11139) (#11150) chore(deps): bump Kong/public-shared-actions from 2.3.0 to 2.4.0 (#11139) Bumps [Kong/public-shared-actions](https://github.com/kong/public-shared-actions) from 2.3.0 to 2.4.0. - [Release notes](https://github.com/kong/public-shared-actions/releases) - [Commits](Kong/public-shared-actions@62643b7...a213265) --- updated-dependencies: - dependency-name: Kong/public-shared-actions dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

dependabot bot requested a review from a team as a code owner August 19, 2024 15:35

dependabot bot added ci/skip-test PR: Don't run unit and e2e tests (maybe this is just a doc change) dependencies Pull requests that update a dependency file labels Aug 19, 2024

dependabot bot requested review from slonka and lobkovilya and removed request for a team August 19, 2024 15:35

lukidzi approved these changes Aug 19, 2024

View reviewed changes

lukidzi merged commit fa4fde3 into master Aug 19, 2024
15 checks passed

lukidzi deleted the dependabot/github_actions/Kong/public-shared-actions-2.4.0 branch August 19, 2024 16:18

lukidzi added the backport label Aug 20, 2024

kumahq bot mentioned this pull request Aug 20, 2024

chore(deps): bump Kong/public-shared-actions from 2.3.0 to 2.4.0 (backport of #11139) #11146

Closed

This was referenced Aug 20, 2024

chore(deps): bump Kong/public-shared-actions from 2.3.0 to 2.4.0 (backport of #11139) #11148

Closed

chore(deps): bump Kong/public-shared-actions from 2.3.0 to 2.4.0 (backport of #11139) #11147

Merged

kumahq bot mentioned this pull request Aug 20, 2024

chore(deps): bump Kong/public-shared-actions from 2.3.0 to 2.4.0 (backport of #11139) #11149

Closed

kumahq bot mentioned this pull request Aug 20, 2024

chore(deps): bump Kong/public-shared-actions from 2.3.0 to 2.4.0 (backport of #11139) #11150

Merged

This pull request was closed.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump Kong/public-shared-actions from 2.3.0 to 2.4.0 #11139

chore(deps): bump Kong/public-shared-actions from 2.3.0 to 2.4.0 #11139

dependabot bot commented on behalf of github Aug 19, 2024

github-actions bot commented Aug 20, 2024 •

edited

Loading

chore(deps): bump Kong/public-shared-actions from 2.3.0 to 2.4.0 #11139

chore(deps): bump Kong/public-shared-actions from 2.3.0 to 2.4.0 #11139

Conversation

dependabot bot commented on behalf of github Aug 19, 2024

v2.4.0

What's Changed

github-actions bot commented Aug 20, 2024 • edited Loading

github-actions bot commented Aug 20, 2024 •

edited

Loading