fabric8-analytics
diff --git a/‎.github/workflows/ci.yaml‎
Lines changed: 6 additions & 5 deletions b/‎.github/workflows/ci.yaml‎
Lines changed: 6 additions & 5 deletions
diff --git a/‎.github/workflows/stage.yml‎
Lines changed: 7 additions & 7 deletions b/‎.github/workflows/stage.yml‎
Lines changed: 7 additions & 7 deletions
diff --git a/‎CHANGELOG.md‎
Lines changed: 12 additions & 2 deletions b/‎CHANGELOG.md‎
Lines changed: 12 additions & 2 deletions
diff --git a/‎CONTRIBUTING.md‎
Lines changed: 6 additions & 30 deletions b/‎CONTRIBUTING.md‎
Lines changed: 6 additions & 30 deletions
@@ -1,3 +1,4 @@
+---
 name: CI
 
 on:
@@ -18,14 +19,14 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           ssh-key: ${{ secrets.DEPLOY_KEY }}
 
       - name: Setup Node.js
-        uses: actions/setup-node@v3
+        uses: actions/setup-node@v4
         with:
-          node-version: 18
+          node-version: 20
           registry-url: 'https://npm.pkg.github.com'
         env:
           NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
@@ -56,12 +57,12 @@ jobs:
           run: npm test
 
       - name: Upload coverage to Codecov
-        uses: codecov/codecov-action@v3
+        uses: codecov/codecov-action@v4
         with:
           token: ${{ secrets.CODECOV_TOKEN }}
 
       - name: Upload build artifacts
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
         with:
           name: Extension Build For PR ${{ github.event.pull_request.number }}
           path: ./*.vsix
@@ -18,14 +18,14 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           ssh-key: ${{ secrets.DEPLOY_KEY }}
 
       - name: Setup Node.js
-        uses: actions/setup-node@v3
+        uses: actions/setup-node@v4
         with:
-          node-version: 18
+          node-version: 20
           registry-url: 'https://npm.pkg.github.com'
         env:
           NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
@@ -48,7 +48,7 @@ jobs:
         run: vsce package --out fabric8-analytics-early-access.vsix
 
       - name: Upload vsix package as artifact
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
         with:
           name: vsix
           path: ./fabric8-analytics-early-access.vsix
@@ -62,7 +62,7 @@ jobs:
 
     steps:
       - name: Checkout sources
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4
         with:
           ssh-key: ${{ secrets.DEPLOY_KEY }}
 
@@ -126,7 +126,7 @@ jobs:
           fi
 
       - name: Download vsix package artifact
-        uses: actions/download-artifact@v3
+        uses: actions/download-artifact@v4
         with:
           name: vsix
           path: ./vsix
@@ -146,7 +146,7 @@ jobs:
 
       - name: Create a release
         id: new_release
-        uses: actions/github-script@v6.4.1
+        uses: actions/github-script@v7
         with:
           github-token: ${{ secrets.GITHUB_TOKEN }}
           script: |
 
@@ -1,10 +1,20 @@
 # Change Log
+## 0.9.5 (?)
+- enhancement - Added support for vulnerability analysis for Gradle build manifests.
+- enhancement - Added support for vulnerability analysis on images in Dockerfiles.
+- enhancement - Added new settings for the Python and Go ecosystems.
+- enhancement - Added support for private GitHub Registries.
+- fixes - Fixed an issue by removing a redundant `/` at the beginning of Windows URI paths that was causing some `mvn` commands to fail. See [PR#692](https://github.com/fabric8-analytics/fabric8-analytics-vscode-extension/pull/692) for details.
+- fixes - Fixed an issue with the Stack Analysis running on an open file, instead of running on an opened manifest file. See [PR#692](https://github.com/fabric8-analytics/fabric8-analytics-vscode-extension/pull/692) for details.
+- known issue - You can get an error by using the `Use Pip Dep Tree` and `Use Python Virtual Environment` options simultaneously. See the [Known Issues section](README.md#known-issues) of the README for more information.
+- known issue - Red Hat Dependency Analytics has limitations for Maven and Gradle. See the [Known Issues section](README.md#known-issues) of the README for more information.
+- informational - Added a telemetry event to track Red Hat's recommended version acceptance.
 ## 0.9.4 (Mar 25th 2024)
 - informational - Removing access to Snyk's Vulnerability Database.
 ## 0.9.3 (Mar 6th 2024)
 - enhancement - Red Hat Dependency Analytics reporting has integrated the ONGuard service by using [Open Source Vulnerability (OSV)](https://google.github.io/osv.dev/) and the [National Vulnerability Database (NVD)](https://nvd.nist.gov/) data sources for additional vulnerability information.
-- enhancement - Integrated VS Code's [Secret Storage](https://code.visualstudio.com/api/references/vscode-api#SecretStorage) feature for securing the Snyk token. See [PR689](https://github.com/fabric8-analytics/fabric8-analytics-vscode-extension/pull/689) for details.
-- fixes - Fixed an issue with displaying wrong data when the event handler for Component Analysis was triggered on a unsaved manifest file. Component Analysis is no longer triggered on unsaved manifest files. See [PR#239](https://github.com/fabric8-analytics/fabric8-analytics-lsp-server/pull/239) for details.
+- enhancement - Integrated VS Code's [Secret Storage](https://code.visualstudio.com/api/references/vscode-api#SecretStorage) feature for securing the Snyk token. See [PR#689](https://github.com/fabric8-analytics/fabric8-analytics-vscode-extension/pull/689) for details.
+- fixes - Fixed an issue with displaying wrong data when triggering the event handler for Component Analysis on a unsaved manifest file. Component Analysis is no longer triggered on unsaved manifest files. See [PR#239](https://github.com/fabric8-analytics/fabric8-analytics-lsp-server/pull/239) for details.
 - fixes - Fixed an issue where the diagnostic source name is being obscured in the View Problem panel from an inline analysis. See [PR#239](https://github.com/fabric8-analytics/fabric8-analytics-lsp-server/pull/239) for details.
 - informational - The naming convention for VS Code commands has changed from `fabric8` to `rhda`. For example, `fabric8.stackAnalysis` is now `rhda.stackAnalysis`.
 ## 0.9.2 (Feb 5th 2024)
 
@@ -1,33 +1,9 @@
-# How to contribute
+# How to give feedback and contribute
 
-Contributions are essential for keeping this extension great.
-We try to keep it as easy as possible to contribute changes and we are
-open to suggestions for making it even easier.
-There are only a few guidelines that we need contributors to follow.
+## Feedback
+<br >Your feedback is essential for keeping this extension great.
 
-## First Time Setup
-1. Install prerequisites:
-   * latest [Visual Studio Code](https://code.visualstudio.com/)
-   * [Node.js](https://nodejs.org/) v4.0.0 or higher
-2. Fork and clone the repository
-3. `cd fabric8-analytics-vscode-extension`
-4. Install the dependencies:
+If you have any questions or run into any problems, open an [issue](https://github.com/fabric8-analytics/fabric8-analytics-vscode-extension/issues), and we will be happy to help however we can.
 
-	```bash
-	$ npm install
-	```
-5. Open the folder in VS Code
-
-## Run the extension locally
-
-1. Install `vsce` - A command line tool you'll use to publish extensions to the Extension Marketplace.
-    ```bash
-    $ npm install -g [email protected]
-    ```
-2. From root folder, run the below command.
-    ```bash
-    $ vsce package
-    ```
-3. `fabric8-analytics-<version>.vsix` file is created. Install it by following the instructions [here](https://code.visualstudio.com/docs/editor/extension-gallery#_install-from-a-vsix).
-
-> If you have any questions or run into any problems, please post an issue - we'll be very happy to help.
+## Contributing
+<br >At this time, we are not opening up this project to external contributions.