Changes
ci: Workflow Bot -- Update Integration Snapshots (main) (#3837)
ci: Workflow Bot -- Update Integration Snapshots (main) (#3837)
Update Integration Repositories
integration-tests/config/config.json | 42 +--
.../Azure/azure-rest-api-specs/snapshot.txt | 15 +-
.../SoftwareBrothers/admin-bro/snapshot.txt | 2 +-
.../snapshots/TheAlgorithms/Python/report.yaml | 201 +++++-----
.../snapshots/TheAlgorithms/Python/snapshot.txt | 197 +++++-----
.../snapshots/aws-amplify/docs/snapshot.txt | 2 +-
.../snapshots/django/django/report.yaml | 215 +++++------
.../snapshots/django/django/snapshot.txt | 201 +++++-----
.../snapshots/eslint/eslint/report.yaml | 411 +++++++++++----------
.../snapshots/eslint/eslint/snapshot.txt | 409 ++++++++++----------
.../googleapis/google-cloud-cpp/report.yaml | 233 ++++++------
.../googleapis/google-cloud-cpp/snapshot.txt | 229 ++++++------
.../iluwatar/java-design-patterns/report.yaml | 35 +-
.../iluwatar/java-design-patterns/snapshot.txt | 31 +-
.../snapshots/php/php-src/report.yaml | 298 +++++++--------
.../snapshots/php/php-src/snapshot.txt | 298 +++++++--------
.../snapshots/shoelace-style/shoelace/snapshot.txt | 2 +-
.../snapshots/webpack/webpack/snapshot.txt | 6 +-
.../snapshots/wireapp/wire-webapp/snapshot.txt | 141 +++----
19 files changed, 1512 insertions(+), 1456 deletions(-)
Features
Fixes
fix: trie-lib - fix issue with reference radix. (#3849)
fix: trie-lib - fix issue with reference radix. (#3849)
Fixes and issue with non-base 10 radixes.
The parser assumed that the reference index was in base 10.
fix: remove look-behind from trie library. (#3848)
fix: remove look-behind from trie library. (#3848)
fix: #3847
fix: Workflow Bot -- Update Dictionaries (main) (#3834)
fix: Workflow Bot -- Update Dictionaries (main) (#3834)
Update Dictionaries (main)
.../snapshots/ktaranov/sqlserver-kit/report.yaml | 3 +--
.../snapshots/ktaranov/sqlserver-kit/snapshot.txt | 19 +++++++++----------
packages/cspell-bundled-dicts/package.json | 4 ++--
pnpm-lock.yaml | 16 ++++++++--------
4 files changed, 20 insertions(+), 22 deletions(-)
Dictionary Updates
fix: Workflow Bot -- Update Dictionaries (main) (#3834)
fix: Workflow Bot -- Update Dictionaries (main) (#3834)
Update Dictionaries (main)
.../snapshots/ktaranov/sqlserver-kit/report.yaml | 3 +--
.../snapshots/ktaranov/sqlserver-kit/snapshot.txt | 19 +++++++++----------
packages/cspell-bundled-dicts/package.json | 4 ++--
pnpm-lock.yaml | 16 ++++++++--------
4 files changed, 20 insertions(+), 22 deletions(-)
Documentation
Maintenance
ci: Workflow Bot -- Update ALL Dependencies (main) (#3845)
ci: Workflow Bot -- Update ALL Dependencies (main) (#3845)
Update ALL Dependencies (main)
pnpm-lock.yaml | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
ci: Workflow Bot -- Update ALL Dependencies (main) (#3838)
ci: Workflow Bot -- Update ALL Dependencies (main) (#3838)
Update ALL Dependencies (main)
doc-generator/package.json | 2 +-
package.json | 6 +-
packages/cspell-dictionary/package.json | 2 +-
packages/cspell-eslint-plugin/package.json | 6 +-
packages/cspell-lib/package.json | 2 +-
packages/cspell-tools/package.json | 2 +-
packages/hunspell-reader/package.json | 2 +-
pnpm-lock.yaml | 282 ++++++++++-----------
.../test-cspell-eslint-plugin/package.json | 4 +-
website/package.json | 4 +-
10 files changed, 156 insertions(+), 156 deletions(-)
ci: Workflow Bot -- Update ALL Dependencies (main) (#3836)
ci: Workflow Bot -- Update ALL Dependencies (main) (#3836)
Update ALL Dependencies (main)
integration-tests/package.json | 2 +-
packages/cspell-lib/package.json | 2 +-
packages/cspell-tools/package.json | 2 +-
pnpm-lock.yaml | 43 +++++++++++++++++++-------------------
4 files changed, 25 insertions(+), 24 deletions(-)
ci: Workflow Bot -- Update ALL Dependencies (main) (#3835)
ci: Workflow Bot -- Update ALL Dependencies (main) (#3835)
Update ALL Dependencies (main)
packages/cspell-eslint-plugin/package.json | 2 +-
packages/cspell-lib/package.json | 2 +-
packages/cspell/package.json | 2 +-
pnpm-lock.yaml | 62 +++++++++++++++---------------
4 files changed, 34 insertions(+), 34 deletions(-)
chore(deps): bump actions/dependency-review-action from 2 to 3 (#3832)
chore(deps): bump actions/dependency-review-action from 2 to 3 (#3832)
Bumps actions/dependency-review-action from 2 to 3.
Sourced from actions/dependency-review-action's releases.
By default the action now expects SPDX-compliant licenses everywhere. If you were previously using license names in the allow or deny lists make sure they're valid!
You can now specify a configuration file external to your repository. This allows organizations to have a single configuration file for all their repos.
We've added support for a much broader set of project licenses by using GitHub's Licenses API.
All of our license-related code now expects SPDX-compliant licenses or expressions. This allows us to standardize on a license naming scheme that already supports You can now use the boolean options Contributors for this release include:
Thanks everyone!
Full Changelog: actions/dependency-review-action@v2...v3.0.0
Adding some quality-of-life improvements to the local development experience. You can now pass a flag to the Example:
Fallback on GitHub Licenses API data for missing Dependency Review API Licenses. This should improve our license coverage.
This patch release fixes the bugs below:
... (truncated)
Release notes
3.0.0
Breaking Changes
What's Changed
Support for external configuration files
Broader license support
SPDX Compliance
OR/AND expressions.
Disable individual checks
license-check and vulnerability-check to disable either one of the checks. More information in our configuration options.
Thanks
2.5.1
scripts/scan_pr script using the -c/--config-file flags to use an external configuration file:
scripts/scan_pr https://github.com/actions/dependency-review-action/pull/294
2.5.0
2.4.1
Commits
30d5821 Bumping version number
6e42c33 Remove defaults from the recently added fields.
a3074cd Merge pull request #327 from actions/adding-extra-options
51a29d6 Updating action.yml to include *-check config
235a221 Merge pull request #324 from actions/readme-update
9b3a7f6 Minor README tweaks.
a476131 Add pull_request to the list of events that don't need refs.
28c7c8c Set the correct default for license-check in README.
9da0fd4 Merge pull request #325 from actions/dependabot/npm_and_yarn/eslint-plugin-je...
fe45fd6 Merge pull request #326 from actions/dependabot/npm_and_yarn/esbuild-register...
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)