From 447bc54b9263f05e4bc86d34581200e493812501 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 29 May 2024 13:37:26 +0100 Subject: [PATCH 1/4] Bump jfrog/setup-jfrog-cli from 4.0.2 to 4.1.0 (#921) Bumps [jfrog/setup-jfrog-cli](https://github.com/jfrog/setup-jfrog-cli) from 4.0.2 to 4.1.0. - [Release notes](https://github.com/jfrog/setup-jfrog-cli/releases) - [Commits](https://github.com/jfrog/setup-jfrog-cli/compare/727b480bafd0d8adbdfdb2257a7d7c2e08eb1779...d730afd3a0551249ed4b178855aa53b36f2cca6a) --- updated-dependencies: - dependency-name: jfrog/setup-jfrog-cli dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/cacert-publish.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/cacert-publish.yml b/.github/workflows/cacert-publish.yml index cdafb3d75..d832ada04 100644 --- a/.github/workflows/cacert-publish.yml +++ b/.github/workflows/cacert-publish.yml @@ -47,7 +47,7 @@ jobs: architecture: x64 distribution: 'temurin' - - uses: jfrog/setup-jfrog-cli@727b480bafd0d8adbdfdb2257a7d7c2e08eb1779 # v4.0.2 + - uses: jfrog/setup-jfrog-cli@d730afd3a0551249ed4b178855aa53b36f2cca6a # v4.1.0 env: JF_URL: https://adoptium.jfrog.io JF_USER: ${{ secrets.ARTIFACTORY_USER }} From e417cd903e526d024dfeeb73c9df063f66907e1d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 31 May 2024 13:38:49 +1200 Subject: [PATCH 2/4] Bump jfrog/setup-jfrog-cli from 4.1.0 to 4.1.1 (#923) Bumps [jfrog/setup-jfrog-cli](https://github.com/jfrog/setup-jfrog-cli) from 4.1.0 to 4.1.1. - [Release notes](https://github.com/jfrog/setup-jfrog-cli/releases) - [Commits](https://github.com/jfrog/setup-jfrog-cli/compare/d730afd3a0551249ed4b178855aa53b36f2cca6a...1405ca8c4227d79f4c8303964f757a4e4e2369c2) --- updated-dependencies: - dependency-name: jfrog/setup-jfrog-cli dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/cacert-publish.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/cacert-publish.yml b/.github/workflows/cacert-publish.yml index d832ada04..8db583e67 100644 --- a/.github/workflows/cacert-publish.yml +++ b/.github/workflows/cacert-publish.yml @@ -47,7 +47,7 @@ jobs: architecture: x64 distribution: 'temurin' - - uses: jfrog/setup-jfrog-cli@d730afd3a0551249ed4b178855aa53b36f2cca6a # v4.1.0 + - uses: jfrog/setup-jfrog-cli@1405ca8c4227d79f4c8303964f757a4e4e2369c2 # v4.1.1 env: JF_URL: https://adoptium.jfrog.io JF_USER: ${{ secrets.ARTIFACTORY_USER }} From 50dab8793b4338a3d266163c750ff09e670b84e0 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 1 Jun 2024 17:20:03 +1200 Subject: [PATCH 3/4] Bump jfrog/setup-jfrog-cli from 4.1.1 to 4.1.2 (#925) Bumps [jfrog/setup-jfrog-cli](https://github.com/jfrog/setup-jfrog-cli) from 4.1.1 to 4.1.2. - [Release notes](https://github.com/jfrog/setup-jfrog-cli/releases) - [Commits](https://github.com/jfrog/setup-jfrog-cli/compare/1405ca8c4227d79f4c8303964f757a4e4e2369c2...7c95feb32008765e1b4e626b078dfd897c4340ad) --- updated-dependencies: - dependency-name: jfrog/setup-jfrog-cli dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/cacert-publish.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/cacert-publish.yml b/.github/workflows/cacert-publish.yml index 8db583e67..759d18515 100644 --- a/.github/workflows/cacert-publish.yml +++ b/.github/workflows/cacert-publish.yml @@ -47,7 +47,7 @@ jobs: architecture: x64 distribution: 'temurin' - - uses: jfrog/setup-jfrog-cli@1405ca8c4227d79f4c8303964f757a4e4e2369c2 # v4.1.1 + - uses: jfrog/setup-jfrog-cli@7c95feb32008765e1b4e626b078dfd897c4340ad # v4.1.2 env: JF_URL: https://adoptium.jfrog.io JF_USER: ${{ secrets.ARTIFACTORY_USER }} From 01e5a3da307d7b545b22e1a8b819b7e99201d066 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 1 Jun 2024 17:20:11 +1200 Subject: [PATCH 4/4] Bump github/codeql-action from 3.25.6 to 3.25.7 (#924) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.6 to 3.25.7. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/9fdb3e49720b44c48891d036bb502feb25684276...f079b8493333aace61c81488f8bd40919487bd9f) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecards.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index f6cefad99..f896dcdd5 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -66,6 +66,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@9fdb3e49720b44c48891d036bb502feb25684276 # v3.25.6 + uses: github/codeql-action/upload-sarif@f079b8493333aace61c81488f8bd40919487bd9f # v3.25.7 with: sarif_file: results.sarif