Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Config Migration Needed

• Select this checkbox to let Renovate create an automated Config Migration PR.

Rate-Limited

The following updates are currently rate-limited. To force their creation now, click on a checkbox below.

• chore(deps): update reviewdog/action-misspell action to v1.26.3
• chore(deps): update reviewdog/action-shellcheck action to v1.32.0
• chore(deps): update snapcore/action-publish action to v1.2.0
• chore(deps): update step-security/harden-runner action to v2.13.1
• chore(deps): update super-linter/super-linter action to v6.9.0
• chore(deps): update actions/add-to-project action to v1
• chore(deps): update actions/checkout action to v5
• chore(deps): update actions/download-artifact action to v5
• chore(deps): update actions/setup-go action to v6
• chore(deps): update actions/stale action to v10
• chore(deps): update github/codeql-action action to v4
• chore(deps): update super-linter/super-linter action to v8
• 🔐 Create all rate-limited PRs at once 🔐

---

Warning

Renovate failed to look up the following dependencies: Could not determine new digest for update (github-tags package snapcore/action-publish), Could not determine new digest for update (github-tags package github/codeql-action).

Files affected: .github/workflows/reusable-builder-snap.yml, .github/workflows/reusable-codeql.yml

---

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• chore(deps): update softprops/action-gh-release digest to 6da8fa9
• chore(deps): update actions/upload-artifact action to v4.6.2
• chore(deps): update actions/cache action to v4.3.0
• chore(deps): update actions/dependency-review-action action to v4.8.1
• chore(deps): update actions/setup-go action to v5.5.0
• chore(deps): update aquasecurity/trivy-action action to v0.33.1
• chore(deps): update docker/setup-buildx-action action to v3.11.1
• chore(deps): update fossas/fossa-action action to v1.7.0
• chore(deps): update ossf/scorecard-action action to v2.4.3
• chore(deps): update reviewdog/action-alex action to v1.16.0
• Click on this checkbox to rebase all open PRs at once

Ignored or Blocked

The following updates are blocked by an existing closed PR. To recreate the PR, click on a checkbox below.

• chore(deps): update sonatype-nexus-community/nancy-github-action action to v1.0.3
• chore(deps): update actions/add-to-project action to v0.6.1
• chore(deps): update actions/checkout action to v3.6.0
• chore(deps): update actions/stale action to v9.1.0
• chore(deps): update apache/skywalking-eyes action to v0.7.0
• chore(deps): update docker/setup-qemu-action action to v3.6.0
• chore(deps): update github/codeql-action action to v2.28.1

Detected dependencies

github-actions

.github/workflows/reusable-add-to-project.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/add-to-project v0.4.0@960fbad431afda394cfcf8743445e741acd19e85
• actions/add-to-project v0.4.0@960fbad431afda394cfcf8743445e741acd19e85

.github/workflows/reusable-alex.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• reviewdog/action-alex v1.13.0@f95df9e356d97e67e4626f04ad125c4a99a906a9

.github/workflows/reusable-builder-aur.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/upload-artifact v4.6.0@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08

.github/workflows/reusable-builder-deb.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• docker/setup-qemu-action v3.0.0@68827325e0b33c7199eb31dd4e31fbe9023e06e3
• docker/setup-buildx-action v3.3.0@d70bba72b1f3fd22344832f00baa16ece964efeb
• actions/upload-artifact v4.6.0@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08

.github/workflows/reusable-builder-flatpak.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/setup-go v5.4.0@0aaccfd150d50ccaeb58ebd88d36e91967a5f35b
• actions/upload-artifact v4.6.0@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08
• go ^1.19

.github/workflows/reusable-builder-go.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/setup-go v5.4.0@0aaccfd150d50ccaeb58ebd88d36e91967a5f35b
• actions/cache v4.2.3@5a3ec84eff668545956fd18022155c47e93e2684
• actions/upload-artifact v4.6.0@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08

.github/workflows/reusable-builder-rpm.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/upload-artifact v4.6.0@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08

.github/workflows/reusable-builder-snap.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• docker/setup-qemu-action v3.0.0@68827325e0b33c7199eb31dd4e31fbe9023e06e3
• snapcore/action-build v1.3.0@3bdaa03e1ba6bf59a65f84a751d943d549a54e79
• snapcore/action-publish v1.1.1@0a8d537ae06f4a292e8b4ef1084cd5631b3c6871
• actions/upload-artifact v4.6.0@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08

.github/workflows/reusable-codeql.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• github/codeql-action v2.11.2@f0a12816612c7306b485a22cb164feb43c6df818
• github/codeql-action v2.11.2@f0a12816612c7306b485a22cb164feb43c6df818
• github/codeql-action v2.11.2@f0a12816612c7306b485a22cb164feb43c6df818

.github/workflows/reusable-dependency-review.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/dependency-review-action v4.3.4@5a2ce3f5b92ee19cbb1541a4984c76d921601d7c
• actions/dependency-review-action v4.3.4@5a2ce3f5b92ee19cbb1541a4984c76d921601d7c

.github/workflows/reusable-fossa.yml

• step-security/harden-runner v2.6.0@1b05615854632b887b69ae1be8cbefe72d3ae423
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• fossas/fossa-action v1.3.1@f61a4c0c263690f2ddb54b9822a719c25a7b608f

.github/workflows/reusable-golangci.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/setup-go v5.4.0@0aaccfd150d50ccaeb58ebd88d36e91967a5f35b
• golangci/golangci-lint-action v8.0.0@4afd733a84b1f43292c63897423277bb7f4313a9
• go ^1.18

.github/workflows/reusable-goreportcard.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab

.github/workflows/reusable-license.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• apache/skywalking-eyes v0.4.0@438e4ea5682269933ea2c8b5608662e52af26959
• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• apache/skywalking-eyes v0.4.0@438e4ea5682269933ea2c8b5608662e52af26959

.github/workflows/reusable-misspell.yml

• step-security/harden-runner v2.6.0@1b05615854632b887b69ae1be8cbefe72d3ae423
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• reviewdog/action-misspell v1.15.0@06d6a480724fa783c220081bbc22336a78dbbe82

.github/workflows/reusable-nancy.yml

• step-security/harden-runner v2.6.0@1b05615854632b887b69ae1be8cbefe72d3ae423
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/setup-go v5.4.0@0aaccfd150d50ccaeb58ebd88d36e91967a5f35b
• sonatype-nexus-community/nancy-github-action v1.0.2@aae196481b961d446f4bff9012e4e3b63d7921a4
• go ^1.18

.github/workflows/reusable-releaser-gemfury.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/download-artifact v3.0.2@9bc31d5ccc31df68ecc42ccf4149144866c47d8a

.github/workflows/reusable-releaser-go.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/download-artifact v3.0.2@9bc31d5ccc31df68ecc42ccf4149144866c47d8a
• softprops/action-gh-release 50195ba7f6f93d1ac97ba8332a178e008ad176aa
• softprops/action-gh-release 50195ba7f6f93d1ac97ba8332a178e008ad176aa

.github/workflows/reusable-scorecards.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• ossf/scorecard-action v2.3.1@0864cf19026789058feabb7e87baa5f140aac736
• actions/upload-artifact v4.6.0@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08
• github/codeql-action v2.1.31@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898

.github/workflows/reusable-semgrep.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab

.github/workflows/reusable-shellcheck.yml

• step-security/harden-runner v2.6.0@1b05615854632b887b69ae1be8cbefe72d3ae423
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• reviewdog/action-shellcheck v1.17.0@f52d78284b4941028952125a10c76676c3d456eb

.github/workflows/reusable-stale.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/stale v9.0.0@28ca1036281a5e5922ead5184a1bbf96e5fc984e

.github/workflows/reusable-super-linter.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• super-linter/super-linter v6.0.0@ff5037c06042e564803502feb97f8a686f3b0171
• super-linter/super-linter v6.0.0@ff5037c06042e564803502feb97f8a686f3b0171

.github/workflows/reusable-trivy.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• aquasecurity/trivy-action 0.14.0@2b6a709cf9c4025c5438138008beaddbb02086f0
• actions/upload-artifact v4.6.0@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08
• github/codeql-action v2.1.31@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898
• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• aquasecurity/trivy-action 0.14.0@2b6a709cf9c4025c5438138008beaddbb02086f0
• actions/upload-artifact v4.6.0@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08
• github/codeql-action v2.1.31@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898

.github/workflows/reusable-urlcheck.yml

• step-security/harden-runner v2.9.1@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• actions/checkout v3.5.2@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
• urlstechie/urlchecker-action 0.0.34@b643b43e2ac605e1475331c7b67247d242b7dce4

---

• Check this box to trigger a request for Renovate to run again on this repository

[welcome]

Thanks for opening this issue. We should be by to give feedback soon. In the meantime, please check out the contributing guidelines.