fix: release latest changes (#1595)

* chore: update team name and alerts channels

* fix: semantic release

* fix: package.json & package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-SHESCAPE-9515254

* bump snyk-docker-plugin to latest version 

* fix: bump snyk-docker-plugin to latest version

* chore: remove expired ignores

* fix: add temporary ignore

* fix: package.json & package-lock.json to reduce vulnerabilities (#1594)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-SHESCAPE-9515254

Co-authored-by: snyk-bot <[email protected]>

* chore: pr lint add (#1593)

---------

Co-authored-by: Katie Armstrong <[email protected]>
Co-authored-by: snyk-bot <[email protected]>
Co-authored-by: Tyler Catlin <[email protected]>
Co-authored-by: agatakrajewska <[email protected]>
Co-authored-by: Parker Kuivila <[email protected]>

Author: 6 people

.circleci/config.yml

@@ -13,9 +13,9 @@ commands:
         steps:
             - slack/notify:
                   branch_pattern: master,staging
-                  channel: team-test-enrichment-deployment
+                  channel: team-container-pipeline-info
                   event: fail
-                  mentions: '@testenrichers'
+                #   mentions: '@testenrichers'
                   custom: |
                       {
                           "blocks": [
@@ -309,16 +309,15 @@ workflows:
             - security-scans:
                   name: Security Scans
                   context:
-                      - analysis_test-enrichment
+                      - infrasec_container
                   filters:
                       branches:
                           only:
                               - master
             - publish:
                   context:
-                      - analysis_test-enrichment
+                      - infrasec_container
                       - snyk-bot-slack
-                      - team-container-integration
                       - team-container-integration-docker-hub
                   requires:
                       - Security Scans
@@ -341,7 +340,7 @@ workflows:
         jobs:
             - build_image:
                   context:
-                      - analysis_test-enrichment
+                      - infrasec_container
                       - go-private-modules
                       - snyk-bot-slack
                       - team-container-integration-docker-hub
@@ -351,7 +350,7 @@ workflows:
                               - staging
             - unit_tests:
                   context:
-                      - analysis_test-enrichment
+                      - infrasec_container
                       - snyk-bot-slack
                   filters:
                       branches:
@@ -367,7 +366,7 @@ workflows:
             - tag_and_push:
                   context:
                       - snyk-bot-slack
-                      - team-container-integration
+                      - infrasec_container
                       - team-container-integration-docker-hub
                   filters:
                       branches:
@@ -381,7 +380,7 @@ workflows:
                   context:
                       - kubernetes-monitor
                       - snyk-bot-slack
-                      - team-container-integration
+                      - infrasec_container
                       - team-container-integration-circleci
                   filters:
                       branches:
@@ -396,7 +395,7 @@ workflows:
                   trusted-branch: main
                   context:
                       - snyk-bot-slack
-                  channel: snyk-on-snyk-analysis_test-enrichment
+                  channel: snyk-on-snyk-infrasec_container
                   filters:
                       branches:
                           ignore:
@@ -405,7 +404,7 @@ workflows:
             - security-scans:
                   name: Security Scans
                   context:
-                      - analysis_test-enrichment
+                      - infrasec_container
                       - snyk-bot-slack
                   filters:
                       branches:
@@ -414,7 +413,7 @@ workflows:
                               - master
             - build_image:
                   context:
-                      - analysis_test-enrichment
+                      - infrasec_container
                       - go-private-modules
                       - snyk-bot-slack
                       - team-container-integration-docker-hub
@@ -428,7 +427,7 @@ workflows:
                               - master
             - unit_tests:
                   context:
-                      - analysis_test-enrichment
+                      - infrasec_container
                       - snyk-bot-slack
                   filters:
                       branches:

.commitlintrc.json

@@ -1,6 +1,6 @@
 {
   "rules": {
-    "header-max-length": [2, "always", 72],
+    "header-max-length": [2, "always", 100],
     "body-leading-blank": [2, "always"],
     "type-empty": [2, "never"],
     "type-enum": [

.github/CODEOWNERS

@@ -1 +1 @@
-* @snyk/test-enrichment
+* @snyk/infrasec_container

.github/workflows/pr-title-check.yml

@@ -0,0 +1,30 @@
+name: PR Title Check
+
+on:
+  pull_request:
+    types: [opened, edited, synchronize]
+
+jobs:
+  pr-title-check:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Check PR Title
+        uses: amannn/action-semantic-pull-request@v5
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        with:
+          # Configure the action to use conventional commit types
+          types: |
+            feat
+            fix
+            docs
+            style
+            refactor
+            perf
+            test
+            chore
+            ci
+            build
+            revert
+          # Don't require scopes
+          requireScope: false

.snyk

@@ -1,7 +1,12 @@
 # Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
 version: v1.25.0
 # ignores vulnerabilities until expiry date; change duration by modifying expiry date
-ignore: 
+ignore:
+    SNYK-JS-FORMDATA-10841150:
+    - '*':
+        reason: Waiting for @kubernetes/client-node upgrade to 1.0.0
+        expires: 2025-12-01T12:00:00.000Z
+        created: 2025-07-31T12:00:00.000Z
     SNYK-JS-BRACES-6838727:
     - '*':
         reason: devDependency
@@ -26,16 +31,4 @@ ignore:
           https://github.com/kubernetes-client/javascript/blob/master/FETCH_MIGRATION.md
         expires: 2025-01-10T12:00:00.000Z
         created: 2024-10-23T12:00:00.000Z
-    SNYK-JS-CROSSSPAWN-8303230:
-    - '*':
-        reason: >-
-          No upstream fix available
-        expires: 2024-12-08T12:00:00.000Z
-        created: 2024-11-08T12:00:00.000Z
-    SNYK-JS-JSONPATHPLUS-7945884:
-    - '*':
-        reason: >-
-          Waiting for @kubernetes/client-node upgrade
-        expires: 2024-12-08T12:00:00.000Z
-        created: 2024-11-20T12:00:00.000Z
 patch: {}

catalog-info.yaml

@@ -4,8 +4,8 @@ metadata:
   name: kubernetes-monitor
   annotations:
     github.com/project-slug: snyk/kubernetes-monitor
-    github.com/team-slug: snyk/test-enrichment
+    github.com/team-slug: snyk/infrasec_container
 spec:
   type: external-tooling
   lifecycle: "-"
-  owner: test-enrichment
+  owner: container