redis-semaphore icon indicating copy to clipboard operation
redis-semaphore copied to clipboard

Published 20 hours ago verified publisher icon swarthy

build(deps-dev): bump snyk from 1.1296.0 to 1.1297.1

Open dependabot[bot] opened this issue 6 months ago • 0 comments

Bumps snyk from 1.1296.0 to 1.1297.1.

Release notes

Sourced from snyk's releases.

v1.1297.1

1.1297.1 (2025-05-16)

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Bug Fixes

  • test: Rollbacked a regression introduced by a change in gradle module resolution in version 1.1297.0 (7991133)

v1.1297.0

1.1297.0 (2025-05-14)

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Features

  • container: Support scanning container images from tar files without specifying a type (58b0861)
  • iac: Improve IaC deployment to avoid on the fly downloads (5108f58)
  • sbom: Introduce sbom monitor command (24e96c3)
  • test: Improve gradle module resolution (7991133)
  • language-server: Introduce explanation of AI fixes in IDEs (74fa322)

Bug Fixes

  • container: Fix issue when scanning invalid node manifest files (ceb8020)
  • code: Fix hash mismatches for files containing non-UTF-8 content (33d33e9)
  • iac: Ensure to use the correct org id when sharing results for v2 (1c4094a)
  • iac: Ensure to use target-name (2201f0a)
  • sbom: Fix issues when generating sboms based on NuGet .sln (80c43d9)
  • test: Fix issues when scanning gradle projects on Windows (11586cc)
  • test: Improve error messages when using fail-fast, all-projects and json (a396bd6)
  • test: Fix yarn 2 out of sync issues (18aee45)
  • test: Fix pnpm out of sync issue for duplicated peer and dev dependencies (2581e16)
  • test: Ensure internal dependencies are represented correctly when normalizing Gradle dependencies (c7e2713)
  • test: Fix testing composer-based PHP projects (39e3379)
  • language-server: Fix and improve issue filtering in IDEs (a474d67)
  • language-server: Fix unmanaged C/C++ scans with '—unmanaged' flag in additional parameters (01f53e3)
  • language-server: Fix applying Snyk Code AI fixes on the wrong lines (01f53e3)

v1.1296.2

1.1296.2 (2025-04-16)

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

News

  • mcp: Add experimental Model Context Protocol server for agentic workflow support (3b5f494)

Bug Fixes

... (truncated)

Commits
  • 1068a17 Merge pull request #5897 from snyk/chore/update-release-notes
  • 80bb699 chore: update RELEASE_NOTES.md
  • 90c2cf6 Merge pull request #5896 from snyk/fix/revert_gradle_plugin
  • f36e11e fix(test): Revert gradle changes to fix android builds
  • 1fcd6de Merge pull request #5890 from snyk/chore/cherry-pick-rc
  • 9a56ff6 feat: automatic integration of language server 44a941375f2b27d2881d8fe22ccc61...
  • ab145f9 Merge pull request #5886 from snyk/chore/pick-rc-changes
  • 3cb7e89 chore: update commit links to point at 'snyk/cli'
  • da94bb3 chore: add missing release note links
  • 5555005 chore: update release notes
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] avatar Jun 01 '25 11:06 dependabot[bot]