Skip to content

Commit 3a34bc5

Browse files
renovate-bottymzd
authored andcommitted
chore(deps): update submodules (google#4940)
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [gcp/api/googleapis](https://redirect.github.com/googleapis/googleapis) ([changelog](https://redirect.github.com/googleapis/googleapis/compare/c662840a94dbdf708caa44893a2d49119cdd391c..798823426715215eccca4d7e7ee4c814843045d7)) | | digest | `c662840` → `7988234` | | [github/codeql-action](https://redirect.github.com/github/codeql-action) | action | patch | `v4.32.5` → `v4.32.6` | | [ossf/osv-schema](https://redirect.github.com/ossf/osv-schema) | | patch | `1.7.3` → `1.7.5` | | osv-schema | | digest | `09a17f8` → `62cec4e` | | [osv/osv-schema](https://redirect.github.com/ossf/osv-schema.git) ([changelog](https://redirect.github.com/ossf/osv-schema.git/compare/09a17f85b44a24ec25d29f5b482ea57667b71f48..62cec4e773c3e701dd0cf3e4a81ae686e452e719)) | | digest | `09a17f8` → `62cec4e` | | [zizmorcore/zizmor-action](https://redirect.github.com/zizmorcore/zizmor-action) | action | patch | `v0.5.0` → `v0.5.2` | --- ### Release Notes <details> <summary>github/codeql-action (github/codeql-action)</summary> ### [`v4.32.6`](https://redirect.github.com/github/codeql-action/releases/tag/v4.32.6) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v4.32.5...v4.32.6) - Update default CodeQL bundle version to [2.24.3](https://redirect.github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3). [#&#8203;3548](https://redirect.github.com/github/codeql-action/pull/3548) </details> <details> <summary>ossf/osv-schema (ossf/osv-schema)</summary> ### [`v1.7.5`](https://redirect.github.com/ossf/osv-schema/releases/tag/v1.7.5) [Compare Source](https://redirect.github.com/ossf/osv-schema/compare/v1.7.4...v1.7.5) #### Schema Changes ##### **New ecosystems added:** - `opam` for the OCaml package manager ecosystem. - `FreeBSD` (including `FreeBSD:base`, `FreeBSD:kernel`, and `FreeBSD:ports`) for the FreeBSD operating system. - `DHI` for Docker Hardened Images. - `CleanStart` for the CleanStart ecosystem. ##### **Schema clarification & updates:** - **Debian:** Updated ecosystem description to explicitly support the `sid` (unstable) and `experimental` suites. - **VSCode:** Updated description to allow for registries to be specified within the ecosystem field. #### New Contributors - [@&#8203;cleanstart-community-admin](https://redirect.github.com/cleanstart-community-admin) made their first contribution in [#&#8203;447](https://redirect.github.com/ossf/osv-schema/pull/447) - [@&#8203;illuusio](https://redirect.github.com/illuusio) made their first contribution in [#&#8203;448](https://redirect.github.com/ossf/osv-schema/pull/448) - [@&#8203;taladrane](https://redirect.github.com/taladrane) made their first contribution in [#&#8203;458](https://redirect.github.com/ossf/osv-schema/pull/458) - [@&#8203;cdupuis](https://redirect.github.com/cdupuis) made their first contribution in [#&#8203;455](https://redirect.github.com/ossf/osv-schema/pull/455) - [@&#8203;hannesm](https://redirect.github.com/hannesm) made their first contribution in [#&#8203;473](https://redirect.github.com/ossf/osv-schema/pull/473) - [@&#8203;chait-slim](https://redirect.github.com/chait-slim) made their first contribution in [#&#8203;459](https://redirect.github.com/ossf/osv-schema/pull/459) **Full Changelog**: <ossf/osv-schema@v1.7.4...v1.7.5> ### [`v1.7.4`](https://redirect.github.com/ossf/osv-schema/releases/tag/v1.7.4) [Compare Source](https://redirect.github.com/ossf/osv-schema/compare/v1.7.3...v1.7.4) #### Schema Changes - New database prefixes added: - DEBIAN for the Debian Security Tracker. - ALPINE for the Alpine Security Database. - JLSEC for the Julia Security Advisory Database. - EEF for the Erlang Ecosystem Foundation CNA Vulnerabilities. - New ecosystems added: - Julia for the Julia programming language. - VSCode for Visual Studio Code extensions. - Schema clarification: - A note was added to clarify that version strings in affected ranges might not exactly match upstream package versions, as they can be normalized or have build metadata stripped. #### New Contributors - [@&#8203;mbauman](https://redirect.github.com/mbauman) made their first contribution in [#&#8203;434](https://redirect.github.com/ossf/osv-schema/pull/434) - [@&#8203;rhalar](https://redirect.github.com/rhalar) made their first contribution in [#&#8203;357](https://redirect.github.com/ossf/osv-schema/pull/357) - [@&#8203;maennchen](https://redirect.github.com/maennchen) made their first contribution in [#&#8203;441](https://redirect.github.com/ossf/osv-schema/pull/441) **Full Changelog**: <ossf/osv-schema@v1.7.3...v1.7.4> </details> <details> <summary>zizmorcore/zizmor-action (zizmorcore/zizmor-action)</summary> ### [`v0.5.2`](https://redirect.github.com/zizmorcore/zizmor-action/releases/tag/v0.5.2) [Compare Source](https://redirect.github.com/zizmorcore/zizmor-action/compare/v0.5.1...v0.5.2) #### What's Changed - zizmor 1.23.1 is now the default used by this action. **Full Changelog**: <zizmorcore/zizmor-action@v0.5.1...v0.5.2> ### [`v0.5.1`](https://redirect.github.com/zizmorcore/zizmor-action/releases/tag/v0.5.1) [Compare Source](https://redirect.github.com/zizmorcore/zizmor-action/compare/v0.5.0...v0.5.1) #### What's Changed - zizmor 1.23.0 is now the default used by this action. **Full Changelog**: <zizmorcore/zizmor-action@v0.5.0...v0.5.1> </details> --- ### Configuration 📅 **Schedule**: Branch creation - "before 6am on wednesday" in timezone Australia/Sydney, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://redirect.github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/google/osv.dev). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My40OC4xIiwidXBkYXRlZEluVmVyIjoiNDMuNTkuMCIsInRhcmdldEJyYW5jaCI6Im1hc3RlciIsImxhYmVscyI6WyJkZXBlbmRlbmNpZXMiXX0=-->
1 parent e58b533 commit 3a34bc5

7 files changed

Lines changed: 9 additions & 9 deletions

File tree

.github/workflows/codeql-analysis.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -43,7 +43,7 @@ jobs:
4343

4444
# Initializes the CodeQL tools for scanning.
4545
- name: Initialize CodeQL
46-
uses: github/codeql-action/init@c793b717bc78562f491db7b0e93a3a178b099162 # v4.32.5
46+
uses: github/codeql-action/init@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
4747
with:
4848
languages: ${{ matrix.language }}
4949
# If you wish to specify custom queries, you can do so here or in a config file.
@@ -54,7 +54,7 @@ jobs:
5454
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
5555
# If this step fails, then you should remove it and run the build manually (see below)
5656
- name: Autobuild
57-
uses: github/codeql-action/autobuild@c793b717bc78562f491db7b0e93a3a178b099162 # v4.32.5
57+
uses: github/codeql-action/autobuild@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
5858

5959
# ℹ️ Command-line programs to run using the OS shell.
6060
# 📚 https://git.io/JvXDl
@@ -68,4 +68,4 @@ jobs:
6868
# make release
6969

7070
- name: Perform CodeQL Analysis
71-
uses: github/codeql-action/analyze@c793b717bc78562f491db7b0e93a3a178b099162 # v4.32.5
71+
uses: github/codeql-action/analyze@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6

.github/workflows/scorecards.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -50,6 +50,6 @@ jobs:
5050

5151
# Upload the results to GitHub's code scanning dashboard.
5252
- name: "Upload to code-scanning"
53-
uses: github/codeql-action/upload-sarif@c793b717bc78562f491db7b0e93a3a178b099162 # v4.32.5
53+
uses: github/codeql-action/upload-sarif@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
5454
with:
5555
sarif_file: results.sarif

.github/workflows/zizmor.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,4 +20,4 @@ jobs:
2020
persist-credentials: false
2121

2222
- name: Run zizmor 🌈
23-
uses: zizmorcore/zizmor-action@0dce2577a4760a2749d8cfb7a84b7d5585ebcb7d # v0.5.0
23+
uses: zizmorcore/zizmor-action@71321a20a9ded102f6e9ce5718a2fcec2c4f70d8 # v0.5.2

gcp/api/googleapis

Submodule googleapis updated 2642 files

gcp/workers/linter/Dockerfile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,7 +20,7 @@ RUN apk add --no-cache git
2020
WORKDIR /src
2121

2222
# Using osv-schema v1.7.3+
23-
RUN git clone https://github.com/ossf/osv-schema.git osv-schema && cd osv-schema && git checkout 09a17f85b44a24ec25d29f5b482ea57667b71f48
23+
RUN git clone https://github.com/ossf/osv-schema.git osv-schema && cd osv-schema && git checkout 62cec4e773c3e701dd0cf3e4a81ae686e452e719
2424

2525
WORKDIR /src/osv-schema/tools/osv-linter
2626

osv/models.py

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -41,7 +41,7 @@
4141
from . import sources
4242
from . import vulnerability_pb2
4343

44-
SCHEMA_VERSION = '1.7.3'
44+
SCHEMA_VERSION = '1.7.5'
4545

4646
_MAX_GIT_VERSIONS_TO_INDEX = 5000
4747

0 commit comments

Comments
 (0)