Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Abandoned Dependencies

The following dependencies have not received updates for an extended period and may be unmaintained.

View abandoned dependencies (1)

[!NOTE]
Packages are marked as abandoned when they exceed the abandonmentThreshold since their last release. Unlike deprecated packages with official notices, abandonment is detected by release inactivity.

Datasource	Package	Last Updated
github-actions	vespa-engine/setup-vespa-cli-action	2024-08-12

Pending Approval

The following branches are pending approval. To create them, click on a checkbox below.

• Pin dependencies (actions/checkout, actions/create-github-app-token, actions/github-script, actions/setup-java, actions/upload-artifact, docker/build-push-action, docker/login-action, docker/metadata-action, docker/setup-buildx-action, docker/setup-qemu-action, github/codeql-action, vespa-engine/setup-vespa-cli-action)
• Update dependency ruby to v4
• 🔐 Create all pending approval PRs at once 🔐

Vulnerabilities

Renovate has not found any CVEs on osv.dev.

Detected Dependencies

github-actions (11)

.github/workflows/docker-publish.yml (7)

• actions/checkout v6 → [Updates: v6]
• actions/checkout v6 → [Updates: v6]
• docker/login-action v4 → [Updates: v4]
• docker/setup-qemu-action v4 → [Updates: v4]
• docker/setup-buildx-action v4 → [Updates: v4]
• docker/metadata-action v6 → [Updates: v6]
• docker/build-push-action v7 → [Updates: v7]

.github/workflows/jekyll-link-checker.yml (4)

• actions/checkout v6 → [Updates: v6]
• ruby/setup-ruby v1
• actions/create-github-app-token v3 → [Updates: v3]
• ruby 3.4.9 → [Updates: 4.0.5]

.github/workflows/lint.yml (1)

• actions/checkout v6 → [Updates: v6]

.github/workflows/sync-codeowners.yml (1)

• actions/checkout v6 → [Updates: v6]

.github/workflows/test-get-github-job-info.yml (2)

• actions/checkout v6 → [Updates: v6]
• actions/checkout v6 → [Updates: v6]

.github/workflows/test-mend-inventory.yml (2)

• actions/checkout v6 → [Updates: v6]
• actions/upload-artifact v7@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f → [Updates: v7]

.github/workflows/tf-tag-release.yml (1)

• actions/checkout v6 → [Updates: v6]

.github/workflows/tf-version-check.yml (1)

• actions/checkout v6 → [Updates: v6]

.github/workflows/verify-markdown-guides.yml (3)

• actions/checkout v6 → [Updates: v6]
• actions/setup-java v5 → [Updates: v5]
• vespa-engine/setup-vespa-cli-action v1 → [Updates: v1]

get-github-job-info/action.yml (1)

• actions/github-script v9 → [Updates: v9]

mend-sast/action.yml (1)

• github/codeql-action v4.35.3@e46ed2cbd01164d986452f91f178727624ae40d7 → [Updates: v4.35.5]

renovate-config (1)

renovate.json

---

• Check this box to trigger a request for Renovate to run again on this repository