Skip to content

chore(deps): bump the all group with 2 updates #1455

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
egibs merged 2 commits into from
Apr 10, 2026
Merged

chore(deps): bump the all group with 2 updates #1455

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
bf720a4
chore(deps): bump the all group with 2 updates
dependabot[bot] Apr 10, 2026
877fc80
Merge branch 'main' into dependabot/github_actions/all-145f954132
egibs Apr 10, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 2 additions & 2 deletions .github/workflows/actionlint.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,7 @@ jobs:
name: Action lint
runs-on: ubuntu-latest
steps:
- uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1
- uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0
with:
egress-policy: block
allowed-endpoints: >
Expand All @@ -48,7 +48,7 @@ jobs:
echo "files=${yamls[*]}" >> "${GITHUB_OUTPUT}"

- name: Action lint
uses: step-security/action-actionlint@d364e70a116a460ed220d67b1ca2f2579c48a40a # v1.69.1
uses: step-security/action-actionlint@c3aa382d371c6b05513ae5907d4f77713e21813c # v1.72.0
env:
SHELLCHECK_OPTS: "--exclude=SC2129"
with:
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/codeql.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,14 +19,14 @@
jobs:
analyze:
if: ${{ github.repository == 'chainguard-dev/malcontent' }}
runs-on: ubuntu-latest-16-core

Check failure on line 22 in .github/workflows/codeql.yaml

View workflow job for this annotation

GitHub Actions / Action lint 

[actionlint] reported by reviewdog 🐶
label "ubuntu-latest-16-core" is unknown. available labels are "windows-latest", "windows-latest-8-cores", "windows-2025", "windows-2025-vs2026", "windows-2022", "windows-11-arm", "ubuntu-slim", "ubuntu-latest", "ubuntu-latest-4-cores", "ubuntu-latest-8-cores", "ubuntu-latest-16-cores", "ubuntu-24.04", "ubuntu-24.04-arm", "ubuntu-22.04", "ubuntu-22.04-arm", "macos-latest", "macos-latest-xlarge", "macos-latest-large", "macos-26-intel", "macos-26-xlarge", "macos-26-large", "macos-26", "macos-15-intel", "macos-15-xlarge", "macos-15-large", "macos-15", "macos-14-xlarge", "macos-14-large", "macos-14", "self-hosted", "x64", "arm", "arm64", "linux", "macos", "windows". if it is a custom label for self-hosted runner, set list of labels in actionlint.yaml config file [runner-label]

Raw Output:
e:.github/workflows/codeql.yaml:22:14: label "ubuntu-latest-16-core" is unknown. available labels are "windows-latest", "windows-latest-8-cores", "windows-2025", "windows-2025-vs2026", "windows-2022", "windows-11-arm", "ubuntu-slim", "ubuntu-latest", "ubuntu-latest-4-cores", "ubuntu-latest-8-cores", "ubuntu-latest-16-cores", "ubuntu-24.04", "ubuntu-24.04-arm", "ubuntu-22.04", "ubuntu-22.04-arm", "macos-latest", "macos-latest-xlarge", "macos-latest-large", "macos-26-intel", "macos-26-xlarge", "macos-26-large", "macos-26", "macos-15-intel", "macos-15-xlarge", "macos-15-large", "macos-15", "macos-14-xlarge", "macos-14-large", "macos-14", "self-hosted", "x64", "arm", "arm64", "linux", "macos", "windows". if it is a custom label for self-hosted runner, set list of labels in actionlint.yaml config file [runner-label]
permissions:
actions: read
contents: read
packages: read
security-events: write
steps:
- uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1
- uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0
with:
egress-policy: block
allowed-endpoints: >
Expand Down Expand Up @@ -114,7 +114,7 @@
packages: read
security-events: write
steps:
- uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1
- uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0
with:
egress-policy: block
allowed-endpoints: >
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/fuzz.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -45,7 +45,7 @@ jobs:
targets: ${{ steps.find.outputs.targets }}
steps:
- name: Harden the runner (Audit all outbound calls)
uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1
uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0
with:
egress-policy: block
allowed-endpoints: >
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/release.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,7 @@ jobs:
id-token: write
contents: write
steps:
- uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1
- uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0
with:
egress-policy: block
allowed-endpoints: >
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/scorecard.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,7 @@ jobs:

steps:
- name: Harden the runner (Audit all outbound calls)
uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1
uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0
with:
egress-policy: block
allowed-endpoints: >
Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/style.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,7 @@
contents: read
steps:
- name: Harden Runner
uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1
uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0
with:
egress-policy: block
allowed-endpoints: >
Expand Down Expand Up @@ -62,7 +62,7 @@
contents: read
steps:
- name: Harden Runner
uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1
uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0
with:
egress-policy: block
allowed-endpoints: >
Expand Down Expand Up @@ -91,7 +91,7 @@
run: |
yr --version
- name: Run yr fmt
run: |

Check warning on line 94 in .github/workflows/style.yaml

View workflow job for this annotation

GitHub Actions / Action lint 

[actionlint] reported by reviewdog 🐶
shellcheck reported issue in this script: SC2038:warning:1:1: Use 'find .. -print0 | xargs -0 ..' or 'find .. -exec .. +' to allow non-alphanumeric filenames [shellcheck]

Raw Output:
w:.github/workflows/style.yaml:94:9: shellcheck reported issue in this script: SC2038:warning:1:1: Use 'find .. -print0 | xargs -0 ..' or 'find .. -exec .. +' to allow non-alphanumeric filenames [shellcheck]
find rules -type f -name "*.yara" | xargs -n 1 -I {} yr fmt {}
if [[ -n $(git status -s) ]]; then
echo "Rule files updated; please run yr fmt locally and commit the changes"
Expand All @@ -105,7 +105,7 @@
contents: read
steps:
- name: Harden Runner
uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1
uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0
with:
egress-policy: block
allowed-endpoints: >
Expand Down Expand Up @@ -143,7 +143,7 @@
contents: read
steps:
- name: Harden Runner
uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1
uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0
with:
egress-policy: block
allowed-endpoints: >
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/update-yara-x.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@ jobs:
new_version: ${{ steps.check.outputs.new_version }}
steps:
- name: Harden Runner
uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1
uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0
with:
egress-policy: block
allowed-endpoints: >
Expand Down Expand Up @@ -88,7 +88,7 @@ jobs:
pull-requests: write
steps:
- name: Harden Runner
uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1
uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0
with:
egress-policy: block
allowed-endpoints: >
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/version.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,7 @@
id-token: write
pull-requests: write
steps:
- uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1
- uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0
with:
egress-policy: block
allowed-endpoints: >
Expand All @@ -51,7 +51,7 @@
id: update
env:
UPDATE_TYPE: ${{ github.event.inputs.update }}
run: |

Check warning on line 54 in .github/workflows/version.yaml

View workflow job for this annotation

GitHub Actions / Action lint 

[actionlint] reported by reviewdog 🐶
shellcheck reported issue in this script: SC2086:info:18:54: Double quote to prevent globbing and word splitting [shellcheck]

Raw Output:
i:.github/workflows/version.yaml:54:9: shellcheck reported issue in this script: SC2086:info:18:54: Double quote to prevent globbing and word splitting [shellcheck]

Check warning on line 54 in .github/workflows/version.yaml

View workflow job for this annotation

GitHub Actions / Action lint 

[actionlint] reported by reviewdog 🐶
shellcheck reported issue in this script: SC2086:info:18:34: Double quote to prevent globbing and word splitting [shellcheck]

Raw Output:
i:.github/workflows/version.yaml:54:9: shellcheck reported issue in this script: SC2086:info:18:34: Double quote to prevent globbing and word splitting [shellcheck]

Check warning on line 54 in .github/workflows/version.yaml

View workflow job for this annotation

GitHub Actions / Action lint 

[actionlint] reported by reviewdog 🐶
shellcheck reported issue in this script: SC2086:info:15:33: Double quote to prevent globbing and word splitting [shellcheck]

Raw Output:
i:.github/workflows/version.yaml:54:9: shellcheck reported issue in this script: SC2086:info:15:33: Double quote to prevent globbing and word splitting [shellcheck]

Check failure on line 54 in .github/workflows/version.yaml

View workflow job for this annotation

GitHub Actions / Action lint 

[actionlint] reported by reviewdog 🐶
shellcheck reported issue in this script: SC2004:style:18:77: $/${} is unnecessary on arithmetic variables [shellcheck]

Raw Output:
e:.github/workflows/version.yaml:54:9: shellcheck reported issue in this script: SC2004:style:18:77: $/${} is unnecessary on arithmetic variables [shellcheck]

Check failure on line 54 in .github/workflows/version.yaml

View workflow job for this annotation

GitHub Actions / Action lint 

[actionlint] reported by reviewdog 🐶
shellcheck reported issue in this script: SC2004:style:15:56: $/${} is unnecessary on arithmetic variables [shellcheck]

Raw Output:
e:.github/workflows/version.yaml:54:9: shellcheck reported issue in this script: SC2004:style:15:56: $/${} is unnecessary on arithmetic variables [shellcheck]

Check failure on line 54 in .github/workflows/version.yaml

View workflow job for this annotation

GitHub Actions / Action lint 

[actionlint] reported by reviewdog 🐶
shellcheck reported issue in this script: SC2004:style:12:35: $/${} is unnecessary on arithmetic variables [shellcheck]

Raw Output:
e:.github/workflows/version.yaml:54:9: shellcheck reported issue in this script: SC2004:style:12:35: $/${} is unnecessary on arithmetic variables [shellcheck]
CURRENT_VERSION=$(awk -F'"' '/ID string =/ {print $2}' "${VERSION_FILE}")

if [[ ! "${CURRENT_VERSION}" =~ ^v[0-9]+\.[0-9]+\.[0-9]+$ ]]; then
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/zizmor.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,7 @@ jobs:
contents: read # Clone the repository
security-events: write # Upload SARIF results to Code Scanning
steps:
- uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1
- uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0
with:
egress-policy: block
allowed-endpoints: >
Expand Down
Loading