Skip to content

Bump advanced-security/component-detection-dependency-submission-action from 0.1.3 to 0.1.4 in the github-actions group across 1 directory#65

Merged
daxpedda merged 1 commit into
mainfrom
dependabot/github_actions/github-actions-c7366f1bfe
Jul 7, 2026
Merged

Bump advanced-security/component-detection-dependency-submission-action from 0.1.3 to 0.1.4 in the github-actions group across 1 directory#65
daxpedda merged 1 commit into
mainfrom
dependabot/github_actions/github-actions-c7366f1bfe

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 7, 2026

Copy link
Copy Markdown
Contributor

Bumps the github-actions group with 1 update in the / directory: advanced-security/component-detection-dependency-submission-action.

Updates advanced-security/component-detection-dependency-submission-action from 0.1.3 to 0.1.4

Release notes

Sourced from advanced-security/component-detection-dependency-submission-action's releases.

v0.1.4

What's Changed

New Contributors

Full Changelog: advanced-security/component-detection-dependency-submission-action@v0.1.3...v0.1.4

Commits
  • 31f25a8 Merge pull request #216 from advanced-security/copilot/fix-undici-memory-vuln...
  • 8100427 chore: rebuild dist after undici override update
  • d011523 fix: upgrade transitive undici deps to 6.27.0 via npm overrides (GHSA-vrm6-8v...
  • c24f5d6 Initial plan
  • e1dafa1 Merge pull request #214 from advanced-security/copilot/fix-undici-memory-cons...
  • ca82249 Merge pull request #213 from advanced-security/copilot/bump-npm-dependencies-...
  • 03b4282 fix: update undici to 6.27.0 via overrides to fix GHSA-vrm6-8vpv-qv8q
  • 5e9ca38 Merge pull request #210 from advanced-security/copilot/fix-undici-websocket-v...
  • d7e565b Initial plan
  • 9a1253d Initial plan
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jul 7, 2026
@daxpedda daxpedda enabled auto-merge (rebase) July 7, 2026 13:17
@daxpedda

daxpedda commented Jul 7, 2026

Copy link
Copy Markdown
Member

@dependabot rebase

Bumps the github-actions group with 1 update in the / directory: [advanced-security/component-detection-dependency-submission-action](https://github.com/advanced-security/component-detection-dependency-submission-action).


Updates `advanced-security/component-detection-dependency-submission-action` from 0.1.3 to 0.1.4
- [Release notes](https://github.com/advanced-security/component-detection-dependency-submission-action/releases)
- [Commits](advanced-security/component-detection-dependency-submission-action@v0.1.3...v0.1.4)

---
updated-dependencies:
- dependency-name: advanced-security/component-detection-dependency-submission-action
  dependency-version: 0.1.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title Bump advanced-security/component-detection-dependency-submission-action from 0.1.3 to 0.1.4 in the github-actions group Bump advanced-security/component-detection-dependency-submission-action from 0.1.3 to 0.1.4 in the github-actions group across 1 directory Jul 7, 2026
@dependabot dependabot Bot force-pushed the dependabot/github_actions/github-actions-c7366f1bfe branch from 22fc202 to 9097576 Compare July 7, 2026 13:18
@daxpedda daxpedda merged commit 3618045 into main Jul 7, 2026
226 of 233 checks passed
@dependabot dependabot Bot deleted the dependabot/github_actions/github-actions-c7366f1bfe branch July 7, 2026 14:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant