diff --git a/.github/dependabot.yml b/.github/dependabot.yml index 405cb25..ba60212 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -14,6 +14,8 @@ updates: day: "friday" time: "19:00" timezone: "America/Chicago" + cooldown: + default-days: 7 - package-ecosystem: "github-actions" directory: "/" @@ -28,6 +30,8 @@ updates: day: "friday" time: "19:00" timezone: "America/Chicago" + cooldown: + default-days: 7 - package-ecosystem: "docker" directory: "/" @@ -35,6 +39,8 @@ updates: interval: "daily" time: "13:00" timezone: "America/Chicago" + cooldown: + default-days: 7 - package-ecosystem: "npm" directory: "/" @@ -49,3 +55,5 @@ updates: day: "friday" time: "19:00" timezone: "America/Chicago" + cooldown: + default-days: 7 diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index c26d4b4..be04798 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -8,12 +8,17 @@ on: # Allow manual triggering workflow_dispatch: +permissions: + contents: read + jobs: build-and-push: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 #v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + with: + persist-credentials: false - name: Set up Docker Buildx uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 #v3.11.1 diff --git a/.github/workflows/pre-commit.yml b/.github/workflows/pre-commit.yml index 48b09f1..357531d 100644 --- a/.github/workflows/pre-commit.yml +++ b/.github/workflows/pre-commit.yml @@ -17,4 +17,4 @@ permissions: jobs: precommit-reusable: - uses: esacteksab/.github/.github/workflows/pre-commit.yml@390e5fb886c6fac8e275fb1ed5c6b4124cb48b32 #v0.70.1 + uses: esacteksab/.github/.github/workflows/pre-commit.yml@eb585e0fbc1ff2d4923c5d4ca35de0241fc497fb # v0.70.4 diff --git a/.github/workflows/spelling.yml b/.github/workflows/spelling.yml index a6666e9..2760c75 100644 --- a/.github/workflows/spelling.yml +++ b/.github/workflows/spelling.yml @@ -16,4 +16,4 @@ concurrency: jobs: typos-reusable: - uses: esacteksab/.github/.github/workflows/spelling.yml@390e5fb886c6fac8e275fb1ed5c6b4124cb48b32 #v0.70.1 + uses: esacteksab/.github/.github/workflows/spelling.yml@eb585e0fbc1ff2d4923c5d4ca35de0241fc497fb # v0.70.4 diff --git a/.mise.toml b/.mise.toml index 18dcd37..da92fa1 100644 --- a/.mise.toml +++ b/.mise.toml @@ -11,6 +11,6 @@ [tools] golang = "1.25.5" nodejs = "22.15.1" - pnpm = "10.19.0" + pnpm = "10.24.0" python = "3.12.10" uv = "latest" diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml index 0b9b38a..b236605 100644 --- a/.pre-commit-config.yaml +++ b/.pre-commit-config.yaml @@ -23,7 +23,7 @@ repos: name: "Check Merge Conflicts" - repo: https://github.com/gitleaks/gitleaks - rev: v8.28.0 + rev: v8.30.0 hooks: - id: gitleaks name: "Git Leaks" @@ -35,7 +35,7 @@ repos: name: "Keep Sorted" - repo: https://github.com/python-jsonschema/check-jsonschema - rev: 0.34.1 + rev: 0.35.0 hooks: - id: check-github-workflows - id: check-dependabot @@ -90,7 +90,7 @@ repos: - mdformat-footnote - repo: https://github.com/crate-ci/typos - rev: v1.38.1 + rev: v1.40.0 hooks: - id: typos args: [--force-exclude] @@ -103,7 +103,7 @@ repos: name: "Shell Check" - repo: https://github.com/DavidAnson/markdownlint-cli2 - rev: v0.18.1 + rev: v0.19.1 hooks: - id: markdownlint-cli2 name: "Markdown Lint" diff --git a/package.json b/package.json index 8fc1486..51caa69 100644 --- a/package.json +++ b/package.json @@ -1,10 +1,10 @@ { "devDependencies": { "npm": "^11.6.4", - "prettier": "^3.7.2", + "prettier": "^3.7.4", "prettier-plugin-pkg": "^0.21.2", "prettier-plugin-sh": "^0.18.0", "prettier-plugin-toml": "^2.0.6" }, - "packageManager": "pnpm@10.19.0" + "packageManager": "pnpm@10.24.0" } diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml index b707801..759b4b1 100644 --- a/pnpm-lock.yaml +++ b/pnpm-lock.yaml @@ -12,17 +12,17 @@ importers: specifier: ^11.6.4 version: 11.6.4 prettier: - specifier: ^3.7.2 - version: 3.7.2 + specifier: ^3.7.4 + version: 3.7.4 prettier-plugin-pkg: specifier: ^0.21.2 - version: 0.21.2(prettier@3.7.2) + version: 0.21.2(prettier@3.7.4) prettier-plugin-sh: specifier: ^0.18.0 - version: 0.18.0(prettier@3.7.2) + version: 0.18.0(prettier@3.7.4) prettier-plugin-toml: specifier: ^2.0.6 - version: 2.0.6(prettier@3.7.2) + version: 2.0.6(prettier@3.7.4) packages: @@ -126,8 +126,8 @@ packages: peerDependencies: prettier: ^3.0.3 - prettier@3.7.2: - resolution: {integrity: sha512-n3HV2J6QhItCXndGa3oMWvWFAgN1ibnS7R9mt6iokScBOC0Ul9/iZORmU2IWUMcyAQaMPjTlY3uT34TqocUxMA==} + prettier@3.7.4: + resolution: {integrity: sha512-v6UNi1+3hSlVvv8fSaoUbggEM5VErKmmpGA7Pl3HF8V6uKY7rvClBOJlH6yNwQtfTueNkGVpOv/mtWL9L4bgRA==} engines: {node: '>=14'} hasBin: true @@ -150,22 +150,22 @@ snapshots: npm@11.6.4: {} - prettier-plugin-pkg@0.21.2(prettier@3.7.2): + prettier-plugin-pkg@0.21.2(prettier@3.7.4): dependencies: - prettier: 3.7.2 + prettier: 3.7.4 - prettier-plugin-sh@0.18.0(prettier@3.7.2): + prettier-plugin-sh@0.18.0(prettier@3.7.4): dependencies: '@reteps/dockerfmt': 0.3.6 - prettier: 3.7.2 + prettier: 3.7.4 sh-syntax: 0.5.8 - prettier-plugin-toml@2.0.6(prettier@3.7.2): + prettier-plugin-toml@2.0.6(prettier@3.7.4): dependencies: '@taplo/lib': 0.5.0 - prettier: 3.7.2 + prettier: 3.7.4 - prettier@3.7.2: {} + prettier@3.7.4: {} sh-syntax@0.5.8: dependencies: diff --git a/requirements.txt b/requirements.txt index 47ee285..917f195 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,9 +1 @@ -cfgv==3.5.0 -distlib==0.4.0 -filelock==3.20.0 -identify==2.6.15 -nodeenv==1.9.1 -platformdirs==4.5.0 pre-commit==4.5.0 -pyyaml==6.0.3 -virtualenv==20.35.4