secure-repo

secure-repo copied to clipboard

[KB] Add GitHub token permissions for akhilerm/tag-push-action Action

1

Knowledge Base is missing for akhilerm/tag-push-action.

step-security-bot

Bump aws-actions/amazon-ecr-login from 1.3.3 to 1.5.1

1

Bumps [aws-actions/amazon-ecr-login](https://github.com/aws-actions/amazon-ecr-login) from 1.3.3 to 1.5.1. Release notes Sourced from aws-actions/amazon-ecr-login's releases. v1.5.1 See the changelog for details about the changes included in this release. v1.5.0 See the changelog for...

dependabot[bot]

Bump step-security/harden-runner from 1.4.5 to 1.5.0

1

Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 1.4.5 to 1.5.0. Release notes Sourced from step-security/harden-runner's releases. v1.5.0 What's Changed Add cache endpoint to allowed list automatically by @​h0x0er and @​varunsh-coder in step-security/harden-runner#186 Improve annotation...

dependabot[bot]

Bumps [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) from 0.8.0 to 0.11.0. Release notes Sourced from github.com/google/go-containerregistry's releases. v0.11.0 Changelog b7b4eada Add unit test covering .dockerconfigjson secrets (#1335) 31786c6c Bump deps using ./hack/bump-deps.sh (#1410) f79ec219 Deprecate...

dependabot[bot]

Bumps [github.com/aws/aws-lambda-go](https://github.com/aws/aws-lambda-go) from 1.30.0 to 1.34.1. Release notes Sourced from github.com/aws/aws-lambda-go's releases. v1.34.1 What's Changed fix godoc typo in example for WithEnableSIGTERM by @​bmoffatt in aws/aws-lambda-go#461 Full Changelog: https://github.com/aws/aws-lambda-go/compare/v1.34.0...v1.34.1 v1.34.0...

dependabot[bot]

Bumps [github.com/jarcoal/httpmock](https://github.com/jarcoal/httpmock) from 1.1.0 to 1.2.0. Release notes Sourced from github.com/jarcoal/httpmock's releases. v1.2.0 New features: NewNotFoundResponder helps to detect a possible path mistake (final / or double / cases); add...

dependabot[bot]

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.0.0 to 3.1.0. Release notes Sourced from actions/upload-artifact's releases. v3.1.0 What's Changed Bump @​actions/artifact to v1.1.0 (actions/upload-artifact#327) Adds checksum headers on artifact upload (actions/toolkit#1095) (actions/toolkit#1063) Commits 3cea537...

dependabot[bot]

Bumps lambda/provided from `474828b` to `d1a684c`. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...

dependabot[bot]

This PR adds a YAML file to describe token permissions needed for Action: ifaxity/wait-on-action. Fixes #1232

step-security-bot

[KB] Add GitHub token permissions for ifaxity/wait-on-action Action

1

Knowledge Base is missing for ifaxity/wait-on-action.

step-security-bot