chore(deps): update reviewdog/action-trivy action to v1.14.0 #25

renovate · 2025-09-12T13:04:44Z

This PR contains the following updates:

Package	Type	Update	Change
reviewdog/action-trivy	action	minor	`v1.13.10` -> `v1.14.0`

Release Notes

reviewdog/action-trivy (reviewdog/action-trivy)

`v1.14.0`

Compare Source

v1.14.0: PR #104 - chore(deps): update reviewdog to 0.21.0

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

github-actions · 2025-09-12T13:04:55Z

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package

Version

Score

Details

actions/reviewdog/action-trivy

1.14.0

🟢 3.3

Details

Check	Score	Reason
Maintained	⚠️ 0	0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Code-Review	⚠️ 0	Found 0/3 approved changesets -- score normalized to 0
Binary-Artifacts	🟢 10	no binaries found in the repo
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Packaging	⚠️ -1	packaging workflow not detected
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Pinned-Dependencies	🟢 9	dependency not pinned by hash detected -- score normalized to 9
Fuzzing	⚠️ 0	project is not fuzzed
License	🟢 10	license file detected
Branch-Protection	⚠️ 0	branch protection not enabled on development/release branches
Signed-Releases	⚠️ -1	no releases found
Security-Policy	⚠️ 0	security policy file not detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Vulnerabilities	🟢 3	7 existing vulnerabilities detected

actions/reviewdog/action-trivy

1.14.0

🟢 3.3

Details

Check	Score	Reason
Maintained	⚠️ 0	0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Code-Review	⚠️ 0	Found 0/3 approved changesets -- score normalized to 0
Binary-Artifacts	🟢 10	no binaries found in the repo
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Packaging	⚠️ -1	packaging workflow not detected
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Pinned-Dependencies	🟢 9	dependency not pinned by hash detected -- score normalized to 9
Fuzzing	⚠️ 0	project is not fuzzed
License	🟢 10	license file detected
Branch-Protection	⚠️ 0	branch protection not enabled on development/release branches
Signed-Releases	⚠️ -1	no releases found
Security-Policy	⚠️ 0	security policy file not detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Vulnerabilities	🟢 3	7 existing vulnerabilities detected

Scanned Files

.github/workflows/docker.yml
.github/workflows/security.yml

github-actions

Remaining comments which cannot be posted as a review comment to avoid GitHub Rate Limit

yamllint

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (143 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/docker.yml

Line 165 in 9ae0095

    
           file: ./${{ matrix.service == 'unrealircd-webpanel' && 'web/webpanel/Containerfile' || format('{0}/Containerfile', matrix.service) }}

[yamllint] _{reported by reviewdog 🐶}
[warning] truthy value should be one of [false, true] (truthy)

irc.atl.chat/.github/workflows/security.yml

Line 3 in 9ae0095

on:

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (131 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/security.yml

Line 54 in 9ae0095

    
           if: (needs.changes.outputs.shell == 'true' || needs.changes.outputs.yaml == 'true' || github.event_name == 'workflow_dispatch')

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (92 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/security.yml

Line 98 in 9ae0095

    
           if: (needs.changes.outputs.docker == 'true' || github.event_name == 'workflow_dispatch')

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (92 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/security.yml

Line 114 in 9ae0095

    
           context: ./${{ matrix.service == 'unrealircd-webpanel' && '.' || matrix.service }}

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (143 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/security.yml

Line 115 in 9ae0095

    
           file: ./${{ matrix.service == 'unrealircd-webpanel' && 'web/webpanel/Containerfile' || format('{0}/Containerfile', matrix.service) }}

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (91 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/security.yml

Line 135 in 9ae0095

    
           if: (needs.changes.outputs.shell == 'true' || github.event_name == 'workflow_dispatch')

[yamllint] _{reported by reviewdog 🐶}
[error] trailing spaces (trailing-spaces)

irc.atl.chat/.github/workflows/security.yml

Line 146 in 9ae0095

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (109 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/security.yml

Line 148 in 9ae0095

    
                     SHELL_SCRIPTS=$(find . -name "*.sh" -o -name "*.bash" -o -name "*.zsh" | grep -v ".git" || echo "")

[yamllint] _{reported by reviewdog 🐶}
[error] trailing spaces (trailing-spaces)

irc.atl.chat/.github/workflows/security.yml

Line 149 in 9ae0095

[yamllint] _{reported by reviewdog 🐶}
[error] trailing spaces (trailing-spaces)

irc.atl.chat/.github/workflows/security.yml

Line 154 in 9ae0095

[yamllint] _{reported by reviewdog 🐶}
[error] trailing spaces (trailing-spaces)

irc.atl.chat/.github/workflows/security.yml

Line 158 in 9ae0095

[yamllint] _{reported by reviewdog 🐶}
[error] trailing spaces (trailing-spaces)

irc.atl.chat/.github/workflows/security.yml

Line 162 in 9ae0095

[yamllint] _{reported by reviewdog 🐶}
[error] trailing spaces (trailing-spaces)

irc.atl.chat/.github/workflows/security.yml

Line 165 in 9ae0095

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (148 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/security.yml

Line 167 in 9ae0095

    
                       if grep -n -i "password\|secret\|key\|token" "$script" | grep -v "#.*password\|#.*secret" | grep -v "echo.*password\|echo.*secret"; then

[yamllint] _{reported by reviewdog 🐶}
[error] trailing spaces (trailing-spaces)

irc.atl.chat/.github/workflows/security.yml

Line 172 in 9ae0095

[yamllint] _{reported by reviewdog 🐶}
[error] trailing spaces (trailing-spaces)

irc.atl.chat/.github/workflows/security.yml

Line 179 in 9ae0095

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (103 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/security.yml

Line 181 in 9ae0095

    
                       if grep -n "\$[a-zA-Z_][a-zA-Z0-9_]*[^\"' ]" "$script" | grep -v "echo\|printf\|test"; then

[yamllint] _{reported by reviewdog 🐶}
[error] trailing spaces (trailing-spaces)

irc.atl.chat/.github/workflows/security.yml

Line 186 in 9ae0095

[yamllint] _{reported by reviewdog 🐶}
[error] trailing spaces (trailing-spaces)

irc.atl.chat/.github/workflows/security.yml

Line 193 in 9ae0095

[yamllint] _{reported by reviewdog 🐶}
[error] trailing spaces (trailing-spaces)

irc.atl.chat/.github/workflows/security.yml

Line 200 in 9ae0095

[yamllint] _{reported by reviewdog 🐶}
[error] trailing spaces (trailing-spaces)

irc.atl.chat/.github/workflows/security.yml

Line 206 in 9ae0095

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (101 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/security.yml

Line 209 in 9ae0095

    
                       DANGEROUS_PERMS=$(find . -type f -perm /o+w -not -path "./.git/*" 2>/dev/null || echo "")

[yamllint] _{reported by reviewdog 🐶}
[error] trailing spaces (trailing-spaces)

irc.atl.chat/.github/workflows/security.yml

Line 216 in 9ae0095

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (118 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/security.yml

Line 218 in 9ae0095

    
                       SUID_FILES=$(find . -type f \( -perm -4000 -o -perm -2000 \) -not -path "./.git/*" 2>/dev/null || echo "")

[yamllint] _{reported by reviewdog 🐶}
[error] trailing spaces (trailing-spaces)

irc.atl.chat/.github/workflows/security.yml

Line 225 in 9ae0095

github-actions · 2025-09-12T13:05:21Z

.github/workflows/docker.yml

            BUILD_DATE=$(date -u +'%Y-%m-%dT%H:%M:%SZ')
      - name: Complete ${{ matrix.service }}
        run: |
          echo "✅ Docker build validation for ${{ matrix.service }} completed successfully"


[yamllint] _{reported by reviewdog 🐶}
[error] line too long (91 > 80 characters) (line-length)

github-actions · 2025-09-12T13:05:22Z

.github/workflows/docker.yml

[yamllint] _{reported by reviewdog 🐶}
[warning] truthy value should be one of [false, true] (truthy)

irc.atl.chat/.github/workflows/docker.yml

Line 3 in 9ae0095

on:

github-actions · 2025-09-12T13:05:23Z

.github/workflows/docker.yml

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (92 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/docker.yml

Line 44 in 9ae0095

if: (needs.changes.outputs.docker == 'true' || github.event_name == 'workflow_dispatch')

github-actions · 2025-09-12T13:05:24Z

.github/workflows/docker.yml

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (105 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/docker.yml

Line 67 in 9ae0095

org.opencontainers.image.description=IRC server infrastructure for All Things Linux Community

github-actions · 2025-09-12T13:05:24Z

.github/workflows/docker.yml

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (92 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/docker.yml

Line 77 in 9ae0095

PR_VERSION="pr-${{ github.event.number }}-$(echo "${{ github.sha }}" | cut -c1-7)"

github-actions · 2025-09-12T13:05:25Z

.github/workflows/docker.yml

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (92 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/docker.yml

Line 84 in 9ae0095

context: ./${{ matrix.service == 'unrealircd-webpanel' && '.' || matrix.service }}

github-actions · 2025-09-12T13:05:26Z

.github/workflows/docker.yml

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (143 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/docker.yml

Line 85 in 9ae0095

file: ./${{ matrix.service == 'unrealircd-webpanel' && 'web/webpanel/Containerfile' || format('{0}/Containerfile', matrix.service) }}

github-actions · 2025-09-12T13:05:28Z

.github/workflows/docker.yml

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (151 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/docker.yml

Line 106 in 9ae0095

trivy_target: ./${{ matrix.service == 'unrealircd-webpanel' && 'web/webpanel/Containerfile' || format('{0}/Containerfile', matrix.service) }}

github-actions · 2025-09-12T13:05:28Z

.github/workflows/docker.yml

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (81 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/docker.yml

Line 139 in 9ae0095

images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}-${{ matrix.service }}

github-actions · 2025-09-12T13:05:29Z

.github/workflows/docker.yml

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (105 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/docker.yml

Line 146 in 9ae0095

org.opencontainers.image.description=IRC server infrastructure for All Things Linux Community

github-actions · 2025-09-12T13:05:30Z

.github/workflows/docker.yml

[yamllint] _{reported by reviewdog 🐶}
[error] line too long (92 > 80 characters) (line-length)

irc.atl.chat/.github/workflows/docker.yml

Line 164 in 9ae0095

context: ./${{ matrix.service == 'unrealircd-webpanel' && '.' || matrix.service }}

chore(deps): update reviewdog/action-trivy action to v1.14.0

9ae0095

github-actions bot reviewed Sep 12, 2025

View reviewed changes

kzndotsh merged commit 2c4a0c9 into main Sep 14, 2025
16 checks passed

kzndotsh deleted the renovate/reviewdog-action-trivy-1.x branch September 14, 2025 07:23

Uh oh!

chore(deps): update reviewdog/action-trivy action to v1.14.0 #25

chore(deps): update reviewdog/action-trivy action to v1.14.0 #25

Uh oh!

Conversation

renovate bot commented Sep 12, 2025

Release Notes

v1.14.0

Configuration

Uh oh!

github-actions bot commented Sep 12, 2025

Dependency Review

OpenSSF Scorecard

Scanned Files

Uh oh!

github-actions bot left a comment

Choose a reason for hiding this comment

Uh oh!

github-actions bot Sep 12, 2025

Choose a reason for hiding this comment

Uh oh!

github-actions bot Sep 12, 2025

Choose a reason for hiding this comment

Uh oh!

github-actions bot Sep 12, 2025

Choose a reason for hiding this comment

Uh oh!

github-actions bot Sep 12, 2025

Choose a reason for hiding this comment

Uh oh!

github-actions bot Sep 12, 2025

Choose a reason for hiding this comment

Uh oh!

github-actions bot Sep 12, 2025

Choose a reason for hiding this comment

Uh oh!

github-actions bot Sep 12, 2025

Choose a reason for hiding this comment

Uh oh!

github-actions bot Sep 12, 2025

Choose a reason for hiding this comment

Uh oh!

github-actions bot Sep 12, 2025

Choose a reason for hiding this comment

Uh oh!

github-actions bot Sep 12, 2025

Choose a reason for hiding this comment

Uh oh!

github-actions bot Sep 12, 2025

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

`v1.14.0`