Skip to content

Commit 6ddcebd

Browse files
webbertakkenwebbertakken
committed
chore(deps): bump @actions/github 5 -> 6 + force undici >=6.24
Snyk flagged 9 transitive vulnerabilities (3 high, 6 moderate) through the old toolchain. @actions/github@5.x carries an outdated @octokit/* + undici 5.29 chain. Bumping to v6 picks up the patched @octokit/* and pinning undici via yarn resolutions clears the remaining WebSocket / HTTP-smuggling advisories. After: 'yarn npm audit --recursive' reports no audit suggestions. @actions/github v6's typings tightened the createCheck() call: the 'status' and 'conclusion' fields are string-literal unions now, not free strings. results-check.ts widens those with 'as const' so the typecheck stays clean. Also: lint-staged globs now exclude dist/ explicitly so pre-commit hooks don't fail with 'Expected at least one target file' when the only staged files are in the dist/ ignore-patterned tree.
1 parent fccae18 commit 6ddcebd

3 files changed

Lines changed: 99 additions & 143 deletions

File tree

package.json

Lines changed: 9 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -21,17 +21,18 @@
2121
"prepare": "husky"
2222
},
2323
"lint-staged": {
24-
"*.@(ts|tsx|mts|js|jsx|mjs|cjs)": [
25-
"oxlint --fix --quiet",
24+
"!(dist)/**/*.@(ts|tsx|mts|js|jsx|mjs|cjs)": [
25+
"oxlint --fix --quiet --no-error-on-unmatched-pattern",
2626
"oxfmt --write"
2727
],
28-
"*.@(json|jsonc|json5|md|mdx|yaml|yml|css|scss|sass|html|toml)": "oxfmt --write",
28+
"!(dist)/**/*.@(json|jsonc|json5|md|mdx|yaml|yml|css|scss|sass|html|toml)": "oxfmt --write",
29+
"package.json": "oxfmt --write",
2930
".github/workflows/*.@(yml|yaml)": "actionlint"
3031
},
3132
"dependencies": {
3233
"@actions/core": "^1.10.0",
3334
"@actions/exec": "^1.1.0",
34-
"@actions/github": "^5.0.0",
35+
"@actions/github": "^6",
3536
"@octokit/openapi-types": "^11.2.0",
3637
"handlebars": "^4.7.7",
3738
"xml-js": "^1.6.11"
@@ -53,5 +54,8 @@
5354
"vite": "^7",
5455
"vitest": "^4"
5556
},
56-
"packageManager": "yarn@4.14.1"
57+
"packageManager": "yarn@4.14.1",
58+
"resolutions": {
59+
"undici": "^6.24.0"
60+
}
5761
}

src/model/results-check.ts

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -98,8 +98,8 @@ const ResultsCheck = {
9898
...github.context.repo,
9999
name: checkName,
100100
head_sha: headSha,
101-
status: 'completed',
102-
conclusion: 'neutral',
101+
status: 'completed' as const,
102+
conclusion: 'neutral' as const,
103103
output,
104104
};
105105

yarn.lock

Lines changed: 88 additions & 136 deletions
Original file line numberDiff line numberDiff line change
@@ -24,19 +24,22 @@ __metadata:
2424
languageName: node
2525
linkType: hard
2626

27-
"@actions/github@npm:^5.0.0":
28-
version: 5.1.1
29-
resolution: "@actions/github@npm:5.1.1"
27+
"@actions/github@npm:^6":
28+
version: 6.0.1
29+
resolution: "@actions/github@npm:6.0.1"
3030
dependencies:
31-
"@actions/http-client": "npm:^2.0.1"
32-
"@octokit/core": "npm:^3.6.0"
33-
"@octokit/plugin-paginate-rest": "npm:^2.17.0"
34-
"@octokit/plugin-rest-endpoint-methods": "npm:^5.13.0"
35-
checksum: 10/2210bd7f8e1e8b407b7df74a259523dc4c63f4ad3a6bfcc0d7867b6e9c3499bd3e25d7de7a9a1bbd0de3be441a8832d5c0b5c0cff3036cd477378c0ec5502434
31+
"@actions/http-client": "npm:^2.2.0"
32+
"@octokit/core": "npm:^5.0.1"
33+
"@octokit/plugin-paginate-rest": "npm:^9.2.2"
34+
"@octokit/plugin-rest-endpoint-methods": "npm:^10.4.0"
35+
"@octokit/request": "npm:^8.4.1"
36+
"@octokit/request-error": "npm:^5.1.1"
37+
undici: "npm:^5.28.5"
38+
checksum: 10/ba6a162a5727dea2f3f3fc450e02c5b336ceb65a0e26ba9ad9c62b20f4f5b2625ca347a9311a4905ef3c92378ca022caba841a283cb7f2e4175d79e3d1ecaf12
3639
languageName: node
3740
linkType: hard
3841

39-
"@actions/http-client@npm:^2.0.1":
42+
"@actions/http-client@npm:^2.0.1, @actions/http-client@npm:^2.2.0":
4043
version: 2.2.3
4144
resolution: "@actions/http-client@npm:2.2.3"
4245
dependencies:
@@ -502,13 +505,6 @@ __metadata:
502505
languageName: node
503506
linkType: hard
504507

505-
"@fastify/busboy@npm:^2.0.0":
506-
version: 2.1.1
507-
resolution: "@fastify/busboy@npm:2.1.1"
508-
checksum: 10/2bb8a7eca8289ed14c9eb15239bc1019797454624e769b39a0b90ed204d032403adc0f8ed0d2aef8a18c772205fa7808cf5a1b91f21c7bfc7b6032150b1062c5
509-
languageName: node
510-
linkType: hard
511-
512508
"@humanfs/core@npm:^0.19.2":
513509
version: 0.19.2
514510
resolution: "@humanfs/core@npm:0.19.2"
@@ -622,49 +618,46 @@ __metadata:
622618
languageName: node
623619
linkType: hard
624620

625-
"@octokit/auth-token@npm:^2.4.4":
626-
version: 2.5.0
627-
resolution: "@octokit/auth-token@npm:2.5.0"
628-
dependencies:
629-
"@octokit/types": "npm:^6.0.3"
630-
checksum: 10/95d7928b6fcddf8960c7da27678e1cb425b4eaef2e6be615abb1f2b076b617dade72e0bf220c28bc5f106d8c029d5d064496657369d6d75372eb0c3b8d766380
621+
"@octokit/auth-token@npm:^4.0.0":
622+
version: 4.0.0
623+
resolution: "@octokit/auth-token@npm:4.0.0"
624+
checksum: 10/60e42701e341d700f73c518c7a35675d36d79fa9d5e838cc3ade96d147e49f5ba74db2e07b2337c2b95aaa540aa42088116df2122daa25633f9e70a2c8785c44
631625
languageName: node
632626
linkType: hard
633627

634-
"@octokit/core@npm:^3.6.0":
635-
version: 3.6.0
636-
resolution: "@octokit/core@npm:3.6.0"
628+
"@octokit/core@npm:^5.0.1":
629+
version: 5.2.2
630+
resolution: "@octokit/core@npm:5.2.2"
637631
dependencies:
638-
"@octokit/auth-token": "npm:^2.4.4"
639-
"@octokit/graphql": "npm:^4.5.8"
640-
"@octokit/request": "npm:^5.6.3"
641-
"@octokit/request-error": "npm:^2.0.5"
642-
"@octokit/types": "npm:^6.0.3"
632+
"@octokit/auth-token": "npm:^4.0.0"
633+
"@octokit/graphql": "npm:^7.1.0"
634+
"@octokit/request": "npm:^8.4.1"
635+
"@octokit/request-error": "npm:^5.1.1"
636+
"@octokit/types": "npm:^13.0.0"
643637
before-after-hook: "npm:^2.2.0"
644638
universal-user-agent: "npm:^6.0.0"
645-
checksum: 10/71e153cf93694f84fe2e3e78d2ebc7cab175c12c1a96b76a0c65c8965e46df39e3547b6340e87dcf5473dc572dfaf3ecbe800358ad572e120509ba0744a1cb9c
639+
checksum: 10/0c39b43e562a8acf8f1d563a85f3c0e55e6d678ae16a4b3d6341060b3d5315c021dfa1bd15dc818fa4cc5612eb5cd518b13cb7c194e3c92ca3da9c0dc6a854b5
646640
languageName: node
647641
linkType: hard
648642

649-
"@octokit/endpoint@npm:^6.0.1":
650-
version: 6.0.12
651-
resolution: "@octokit/endpoint@npm:6.0.12"
643+
"@octokit/endpoint@npm:^9.0.6":
644+
version: 9.0.6
645+
resolution: "@octokit/endpoint@npm:9.0.6"
652646
dependencies:
653-
"@octokit/types": "npm:^6.0.3"
654-
is-plain-object: "npm:^5.0.0"
647+
"@octokit/types": "npm:^13.1.0"
655648
universal-user-agent: "npm:^6.0.0"
656-
checksum: 10/d1b55a94aa3058f840f89cc8d353ef1c294c061c5a36fe05f09c375a62f82af3068b23ce531cc1802e36ee4a52359862523e454e9d2a81c99a5c09dddffb2925
649+
checksum: 10/2bf776423365ee926bf3f722a664e52f1070758eff4a176279fb132103fd0c76e3541f83ace49bbad9a64f9c9b8de453be565ca8d6136989e9514dea65380ecf
657650
languageName: node
658651
linkType: hard
659652

660-
"@octokit/graphql@npm:^4.5.8":
661-
version: 4.8.0
662-
resolution: "@octokit/graphql@npm:4.8.0"
653+
"@octokit/graphql@npm:^7.1.0":
654+
version: 7.1.1
655+
resolution: "@octokit/graphql@npm:7.1.1"
663656
dependencies:
664-
"@octokit/request": "npm:^5.6.0"
665-
"@octokit/types": "npm:^6.0.3"
657+
"@octokit/request": "npm:^8.4.1"
658+
"@octokit/types": "npm:^13.0.0"
666659
universal-user-agent: "npm:^6.0.0"
667-
checksum: 10/e03a3a05b792eee833357a8ed514ebf9bdb7c9e6037c60dc42b13bef83d13b53b6bb5955d24a49321f78e0ef2cb1611ae5cf00eaaa6abd8415884d89f9df6b8b
660+
checksum: 10/9a7a65fa84df795b0acb5315dae5a4a5a042a01dde0c88974df180a1c02b9b8e61cae013be32461b11ee1d507a8f778f3b7f37dfa3b371771332cb8efcd01f29
668661
languageName: node
669662
linkType: hard
670663

@@ -675,67 +668,80 @@ __metadata:
675668
languageName: node
676669
linkType: hard
677670

678-
"@octokit/openapi-types@npm:^12.11.0":
679-
version: 12.11.0
680-
resolution: "@octokit/openapi-types@npm:12.11.0"
681-
checksum: 10/579bbbafe816ab02441d3088c04a7728f13b73aafbe306bbdd4deac374b345b453e520c343e45db454ae6091b75a7b3ce5b7f8434d3e53e45d0802023fcb84e0
671+
"@octokit/openapi-types@npm:^20.0.0":
672+
version: 20.0.0
673+
resolution: "@octokit/openapi-types@npm:20.0.0"
674+
checksum: 10/9f60572af1201dd92626c412253d83d986b8ab1956250b95f417013ee8e7baf25870eeb801d16672cabc2c420544bc9c2f0a979e07603ff5997eff038c71a8c3
675+
languageName: node
676+
linkType: hard
677+
678+
"@octokit/openapi-types@npm:^24.2.0":
679+
version: 24.2.0
680+
resolution: "@octokit/openapi-types@npm:24.2.0"
681+
checksum: 10/000897ebc6e247c2591049d6081e95eb5636f73798dadd695ee6048496772b58065df88823e74a760201828545a7ac601dd3c1bcd2e00079a62a9ee9d389409c
682682
languageName: node
683683
linkType: hard
684684

685-
"@octokit/plugin-paginate-rest@npm:^2.17.0":
686-
version: 2.21.3
687-
resolution: "@octokit/plugin-paginate-rest@npm:2.21.3"
685+
"@octokit/plugin-paginate-rest@npm:^9.2.2":
686+
version: 9.2.2
687+
resolution: "@octokit/plugin-paginate-rest@npm:9.2.2"
688688
dependencies:
689-
"@octokit/types": "npm:^6.40.0"
689+
"@octokit/types": "npm:^12.6.0"
690690
peerDependencies:
691-
"@octokit/core": ">=2"
692-
checksum: 10/446d5776953ca7e4eddd4f0b9aa35b7bf6bb61991cacdabad321ae8742ccde573d4ecd4e4e6786a673a94fe82ca180bdc22fbb8e17d961c17d2afec67e59e36a
691+
"@octokit/core": 5
692+
checksum: 10/9afdd61d24a276ed7c2a8e436f735066d1b71601177deb97afa204a1f224257ca9c02681bc94dcda921d37c288a342124f7dfdd88393817306fe0b1ad1f0690f
693693
languageName: node
694694
linkType: hard
695695

696-
"@octokit/plugin-rest-endpoint-methods@npm:^5.13.0":
697-
version: 5.16.2
698-
resolution: "@octokit/plugin-rest-endpoint-methods@npm:5.16.2"
696+
"@octokit/plugin-rest-endpoint-methods@npm:^10.4.0":
697+
version: 10.4.1
698+
resolution: "@octokit/plugin-rest-endpoint-methods@npm:10.4.1"
699699
dependencies:
700-
"@octokit/types": "npm:^6.39.0"
701-
deprecation: "npm:^2.3.1"
700+
"@octokit/types": "npm:^12.6.0"
702701
peerDependencies:
703-
"@octokit/core": ">=3"
704-
checksum: 10/e2f2f3189245737c54d50efee5a33e94c8f030c5e53386d38e7c32b4026e0beffaf4e0706d11d175980b9f6cef000c73794d0ac91d2e4645565b8c26c40ea6bb
702+
"@octokit/core": 5
703+
checksum: 10/1090fc5a1bebb7b48c512e178f8ad69a3ef8332e583274972f3a3035e9be9200093e22a5dbfe0f71aa1a7a8817e54bb915af3c2a3f88db1311a2873cef176552
705704
languageName: node
706705
linkType: hard
707706

708-
"@octokit/request-error@npm:^2.0.5, @octokit/request-error@npm:^2.1.0":
709-
version: 2.1.0
710-
resolution: "@octokit/request-error@npm:2.1.0"
707+
"@octokit/request-error@npm:^5.1.1":
708+
version: 5.1.1
709+
resolution: "@octokit/request-error@npm:5.1.1"
711710
dependencies:
712-
"@octokit/types": "npm:^6.0.3"
711+
"@octokit/types": "npm:^13.1.0"
713712
deprecation: "npm:^2.0.0"
714713
once: "npm:^1.4.0"
715-
checksum: 10/baec2b5700498be01b4d958f9472cb776b3f3b0ea52924323a07e7a88572e24cac2cdf7eb04a0614031ba346043558b47bea2d346e98f0e8385b4261f138ef18
714+
checksum: 10/6ad98626407ba57bb33fa197611be74bee1dd9abc8d5d845648d6a2a04aa6840c0eb7f4be341d55dfcab5bc19181ad5fd25194869a7aaac6245f74b3a14d9662
716715
languageName: node
717716
linkType: hard
718717

719-
"@octokit/request@npm:^5.6.0, @octokit/request@npm:^5.6.3":
720-
version: 5.6.3
721-
resolution: "@octokit/request@npm:5.6.3"
718+
"@octokit/request@npm:^8.4.1":
719+
version: 8.4.1
720+
resolution: "@octokit/request@npm:8.4.1"
722721
dependencies:
723-
"@octokit/endpoint": "npm:^6.0.1"
724-
"@octokit/request-error": "npm:^2.1.0"
725-
"@octokit/types": "npm:^6.16.1"
726-
is-plain-object: "npm:^5.0.0"
727-
node-fetch: "npm:^2.6.7"
722+
"@octokit/endpoint": "npm:^9.0.6"
723+
"@octokit/request-error": "npm:^5.1.1"
724+
"@octokit/types": "npm:^13.1.0"
728725
universal-user-agent: "npm:^6.0.0"
729-
checksum: 10/0e5dbe6a335d8b1a5064a5305bd23cec20ba2bc9648749b5ab8b31e51e6f4ebbe363c23842fd702ca22f50e434ba963e2883a78604d97b3ddbc2439aeeed3d8c
726+
checksum: 10/2b2c9131cc9b608baeeef8ce2943768cc9db5fbe36a665f734a099bd921561c760e4391fbdf39d5aefb725db26742db1488c65624940ef7cec522e10863caa5e
727+
languageName: node
728+
linkType: hard
729+
730+
"@octokit/types@npm:^12.6.0":
731+
version: 12.6.0
732+
resolution: "@octokit/types@npm:12.6.0"
733+
dependencies:
734+
"@octokit/openapi-types": "npm:^20.0.0"
735+
checksum: 10/19b77a8d25af2a5df4561f8750f807edfc9fca5b07cfa9fb21dce4665e1b188c966688f5ed5e08089404428100dfe44ad353f8d8532f1d30fe47e61c5faa1440
730736
languageName: node
731737
linkType: hard
732738

733-
"@octokit/types@npm:^6.0.3, @octokit/types@npm:^6.16.1, @octokit/types@npm:^6.39.0, @octokit/types@npm:^6.40.0":
734-
version: 6.41.0
735-
resolution: "@octokit/types@npm:6.41.0"
739+
"@octokit/types@npm:^13.0.0, @octokit/types@npm:^13.1.0":
740+
version: 13.10.0
741+
resolution: "@octokit/types@npm:13.10.0"
736742
dependencies:
737-
"@octokit/openapi-types": "npm:^12.11.0"
738-
checksum: 10/905c8553e46e1a32b27f3f8c665c6a390648204f0b05c23693cd22a874e0bf654534ae2e51de3e09a794c07cc67cfd7f067b57f93cea0f658a369767537a72f0
743+
"@octokit/openapi-types": "npm:^24.2.0"
744+
checksum: 10/32f8f5010d7faae128b0cdd0c221f0ca8c3781fe44483ecd87162b3da507db667f7369acda81340f6e2c9c374d9a938803409c6085c2c01d98210b6c58efb99a
739745
languageName: node
740746
linkType: hard
741747

@@ -1820,7 +1826,7 @@ __metadata:
18201826
languageName: node
18211827
linkType: hard
18221828

1823-
"deprecation@npm:^2.0.0, deprecation@npm:^2.3.1":
1829+
"deprecation@npm:^2.0.0":
18241830
version: 2.3.1
18251831
resolution: "deprecation@npm:2.3.1"
18261832
checksum: 10/f56a05e182c2c195071385455956b0c4106fe14e36245b00c689ceef8e8ab639235176a96977ba7c74afb173317fac2e0ec6ec7a1c6d1e6eaa401c586c714132
@@ -2387,13 +2393,6 @@ __metadata:
23872393
languageName: node
23882394
linkType: hard
23892395

2390-
"is-plain-object@npm:^5.0.0":
2391-
version: 5.0.0
2392-
resolution: "is-plain-object@npm:5.0.0"
2393-
checksum: 10/e32d27061eef62c0847d303125440a38660517e586f2f3db7c9d179ae5b6674ab0f469d519b2e25c147a1a3bc87156d0d5f4d8821e0ce4a9ee7fe1fcf11ce45c
2394-
languageName: node
2395-
linkType: hard
2396-
23972396
"isexe@npm:^2.0.0":
23982397
version: 2.0.0
23992398
resolution: "isexe@npm:2.0.0"
@@ -2792,20 +2791,6 @@ __metadata:
27922791
languageName: node
27932792
linkType: hard
27942793

2795-
"node-fetch@npm:^2.6.7":
2796-
version: 2.7.0
2797-
resolution: "node-fetch@npm:2.7.0"
2798-
dependencies:
2799-
whatwg-url: "npm:^5.0.0"
2800-
peerDependencies:
2801-
encoding: ^0.1.0
2802-
peerDependenciesMeta:
2803-
encoding:
2804-
optional: true
2805-
checksum: 10/b24f8a3dc937f388192e59bcf9d0857d7b6940a2496f328381641cb616efccc9866e89ec43f2ec956bbd6c3d3ee05524ce77fe7b29ccd34692b3a16f237d6676
2806-
languageName: node
2807-
linkType: hard
2808-
28092794
"node-gyp@npm:latest":
28102795
version: 12.3.0
28112796
resolution: "node-gyp@npm:12.3.0"
@@ -3516,13 +3501,6 @@ __metadata:
35163501
languageName: node
35173502
linkType: hard
35183503

3519-
"tr46@npm:~0.0.3":
3520-
version: 0.0.3
3521-
resolution: "tr46@npm:0.0.3"
3522-
checksum: 10/8f1f5aa6cb232f9e1bdc86f485f916b7aa38caee8a778b378ffec0b70d9307873f253f5cbadbe2955ece2ac5c83d0dc14a77513166ccd0a0c7fe197e21396695
3523-
languageName: node
3524-
linkType: hard
3525-
35263504
"tslib@npm:^2.4.0":
35273505
version: 2.8.1
35283506
resolution: "tslib@npm:2.8.1"
@@ -3582,16 +3560,7 @@ __metadata:
35823560
languageName: node
35833561
linkType: hard
35843562

3585-
"undici@npm:^5.25.4":
3586-
version: 5.29.0
3587-
resolution: "undici@npm:5.29.0"
3588-
dependencies:
3589-
"@fastify/busboy": "npm:^2.0.0"
3590-
checksum: 10/0ceca8924a32acdcc0cfb8dd2d368c217840970aa3f5e314fc169608474be6341c5b8e50cad7bd257dbe3b4e432bc5d0a0d000f83644b54fa11a48735ec52b93
3591-
languageName: node
3592-
linkType: hard
3593-
3594-
"undici@npm:^6.25.0":
3563+
"undici@npm:^6.24.0":
35953564
version: 6.25.0
35963565
resolution: "undici@npm:6.25.0"
35973566
checksum: 10/a475e45da3e1d1073283bb70531666f09a432eabff2b857bd7063d469a1ee1486192ff61dc0dadbb526673ce1120fee14d66a59b6b17d1e0bd3a4d5f0a52d0a6
@@ -3604,7 +3573,7 @@ __metadata:
36043573
dependencies:
36053574
"@actions/core": "npm:^1.10.0"
36063575
"@actions/exec": "npm:^1.1.0"
3607-
"@actions/github": "npm:^5.0.0"
3576+
"@actions/github": "npm:^6"
36083577
"@octokit/openapi-types": "npm:^11.2.0"
36093578
"@types/node": "npm:^20.8.10"
36103579
"@types/semver": "npm:^7.3.5"
@@ -3836,23 +3805,6 @@ __metadata:
38363805
languageName: node
38373806
linkType: hard
38383807

3839-
"webidl-conversions@npm:^3.0.0":
3840-
version: 3.0.1
3841-
resolution: "webidl-conversions@npm:3.0.1"
3842-
checksum: 10/b65b9f8d6854572a84a5c69615152b63371395f0c5dcd6729c45789052296df54314db2bc3e977df41705eacb8bc79c247cee139a63fa695192f95816ed528ad
3843-
languageName: node
3844-
linkType: hard
3845-
3846-
"whatwg-url@npm:^5.0.0":
3847-
version: 5.0.0
3848-
resolution: "whatwg-url@npm:5.0.0"
3849-
dependencies:
3850-
tr46: "npm:~0.0.3"
3851-
webidl-conversions: "npm:^3.0.0"
3852-
checksum: 10/f95adbc1e80820828b45cc671d97da7cd5e4ef9deb426c31bcd5ab00dc7103042291613b3ef3caec0a2335ed09e0d5ed026c940755dbb6d404e2b27f940fdf07
3853-
languageName: node
3854-
linkType: hard
3855-
38563808
"which@npm:^2.0.1":
38573809
version: 2.0.2
38583810
resolution: "which@npm:2.0.2"

0 commit comments

Comments
 (0)