Merged
Conversation
✅
|
| Descriptor | Linter | Files | Fixed | Errors | Warnings | Elapsed time |
|---|---|---|---|---|---|---|
| ✅ ACTION | actionlint | 4 | 0 | 0 | 0.16s | |
| ✅ BASH | bash-exec | 5 | 0 | 0 | 0.03s | |
| ✅ BASH | shellcheck | 5 | 0 | 0 | 0.2s | |
| ✅ BASH | shfmt | 5 | 0 | 0 | 0.01s | |
| ✅ EDITORCONFIG | editorconfig-checker | 265 | 0 | 0 | 0.31s | |
| ✅ JSON | jsonlint | 2 | 0 | 0 | 0.33s | |
| ✅ JSON | prettier | 2 | 0 | 0 | 0.61s | |
| ✅ MARKDOWN | markdownlint | 15 | 0 | 0 | 1.74s | |
| ✅ REPOSITORY | checkov | yes | no | no | 31.72s | |
| ✅ REPOSITORY | dustilock | yes | no | no | 0.03s | |
| ✅ REPOSITORY | gitleaks | yes | no | no | 1.11s | |
| ✅ REPOSITORY | git_diff | yes | no | no | 0.02s | |
| ✅ REPOSITORY | grype | yes | no | no | 43.65s | |
| ✅ REPOSITORY | secretlint | yes | no | no | 3.15s | |
| ✅ REPOSITORY | syft | yes | no | no | 2.08s | |
| ✅ REPOSITORY | trivy | yes | no | no | 11.66s | |
| ✅ REPOSITORY | trivy-sbom | yes | no | no | 0.25s | |
| ✅ REPOSITORY | trufflehog | yes | no | no | 4.88s | |
| prettier | 177 | 1 | 10 | 1.71s | ||
| ✅ YAML | yamllint | 177 | 0 | 0 | 1.54s |
Detailed Issues
⚠️ YAML / prettier - 1 error
Checking formatting...
[warn] charts/blaze/values.yaml
[warn] charts/fhir-gateway/values.yaml
[warn] charts/fhir-pseudonymizer/values.yaml
[warn] charts/hive-metastore/values.yaml
[warn] charts/opal/values.yaml
[warn] charts/recruit/Chart.yaml
[warn] charts/recruit/values.yaml
[warn] charts/stream-processors/values.yaml
[warn] charts/vfps/values.yaml
[warn] Code style issues found in 9 files. Run Prettier with --write to fix.
See detailed reports in MegaLinter artifacts
You could have the same capabilities but better runtime performances if you use a MegaLinter flavor:
- oxsecurity/megalinter/flavors/documentation@v9.2.0 (49 linters)
- oxsecurity/megalinter/flavors/ruby@v9.2.0 (50 linters)
- oxsecurity/megalinter/flavors/rust@v9.2.0 (50 linters)
Your project could benefit from a custom flavor, which would allow you to run only the linters you need, and thus improve runtime performances. (Skip this info by defining FLAVOR_SUGGESTIONS: false)
- Documentation: Custom Flavors
- Command:
npx mega-linter-runner@9.2.0 --custom-flavor-setup --custom-flavor-linters ACTION_ACTIONLINT,BASH_EXEC,BASH_SHELLCHECK,BASH_SHFMT,EDITORCONFIG_EDITORCONFIG_CHECKER,JSON_JSONLINT,JSON_PRETTIER,MARKDOWN_MARKDOWNLINT,REPOSITORY_CHECKOV,REPOSITORY_DUSTILOCK,REPOSITORY_GIT_DIFF,REPOSITORY_GITLEAKS,REPOSITORY_GRYPE,REPOSITORY_SECRETLINT,REPOSITORY_SYFT,REPOSITORY_TRIVY,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,YAML_PRETTIER,YAML_YAMLLINT
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v7.0.0→v8.0.0v6.0.0→v7.0.0Release Notes
actions/download-artifact (actions/download-artifact)
v8.0.0Compare Source
v8 - What's new
Direct downloads
To support direct uploads in
actions/upload-artifact, the action will no longer attempt to unzip all downloaded files. Instead, the action checks theContent-Typeheader ahead of unzipping and skips non-zipped files. Callers wishing to download a zipped file as-is can also set the newskip-decompressparameter tofalse.Enforced checks (breaking)
A previous release introduced digest checks on the download. If a download hash didn't match the expected hash from the server, the action would log a warning. Callers can now configure the behavior on mismatch with the
digest-mismatchparameter. To be secure by default, we are now defaulting the behavior toerrorwhich will fail the workflow run.ESM
To support new versions of the @actions/* packages, we've upgraded the package to ESM.
What's Changed
errorby @danwkennedy in #461Full Changelog: actions/download-artifact@v7...v8.0.0
actions/upload-artifact (actions/upload-artifact)
v7.0.0Compare Source
v7 What's new
Direct Uploads
Adds support for uploading single files directly (unzipped). Callers can set the new
archiveparameter tofalseto skip zipping the file during upload. Right now, we only support single files. The action will fail if the glob passed resolves to multiple files. Thenameparameter is also ignored with this setting. Instead, the name of the artifact will be the name of the uploaded file.ESM
To support new versions of the
@actions/*packages, we've upgraded the package to ESM.What's Changed
New Contributors
Full Changelog: actions/upload-artifact@v6...v7.0.0
Configuration
📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, on day 1 of the month ( * 0-3 1 * * ) (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Renovate Bot.