mirror of
https://github.com/gradle/actions.git
synced 2026-04-19 18:12:58 +08:00
Update dependencies and resolve npm vulnerabilities (#933)
This pull request includes dependency updates, a minor bug fix, and a workflow update. The most significant changes are grouped below: Dependency Updates: * Updated several development dependencies in `sources/package.json`, including `@typescript-eslint/eslint-plugin` to 8.58.0, `esbuild` to 0.28.0, and `ts-jest` to 29.4.9, to keep the project up to date with the latest features and bug fixes. Bug Fix: * Fixed a typo in the import statement for `deprecation-collector` in `sources/src/configuration.ts`, correcting the import from `de cator` to `deprecator`. CI/CD Workflow Update: * Updated the commit hashes for the `github/codeql-action/init` and `github/codeql-action/analyze` steps in `.github/workflows/ci-codeql.yml` to use a newer commit, ensuring the workflow uses the latest patches for these actions. --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
This commit is contained in:
Daz DeBoer
@@ -35,7 +35,7 @@ jobs:
|
|||||||
|
|
||||||
# Initializes the CodeQL tools for scanning.
|
# Initializes the CodeQL tools for scanning.
|
||||||
- name: Initialize CodeQL
|
- name: Initialize CodeQL
|
||||||
uses: github/codeql-action/init@38697555549f1db7851b81482ff19f1fa5c4fedc # v3.29.5
|
uses: github/codeql-action/init@c10b8064de6f491fea524254123dbe5e09572f13 # v3.29.5
|
||||||
with:
|
with:
|
||||||
languages: ${{ matrix.language }}
|
languages: ${{ matrix.language }}
|
||||||
config: |
|
config: |
|
||||||
@@ -43,4 +43,4 @@ jobs:
|
|||||||
- sources/src
|
- sources/src
|
||||||
|
|
||||||
- name: Perform CodeQL Analysis
|
- name: Perform CodeQL Analysis
|
||||||
uses: github/codeql-action/analyze@38697555549f1db7851b81482ff19f1fa5c4fedc # v3.29.5
|
uses: github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v3.29.5
|
||||||
|
|||||||
Generated
+286
-465
File diff suppressed because it is too large
Load Diff
@@ -57,16 +57,16 @@
|
|||||||
"@types/semver": "7.7.1",
|
"@types/semver": "7.7.1",
|
||||||
"@types/unzipper": "0.10.11",
|
"@types/unzipper": "0.10.11",
|
||||||
"@types/which": "3.0.4",
|
"@types/which": "3.0.4",
|
||||||
"@typescript-eslint/eslint-plugin": "8.57.2",
|
"@typescript-eslint/eslint-plugin": "8.58.0",
|
||||||
"dedent": "1.7.2",
|
"dedent": "1.7.2",
|
||||||
"esbuild": "0.27.4",
|
"esbuild": "0.28.0",
|
||||||
"eslint": "10.1.0",
|
"eslint": "10.1.0",
|
||||||
"globals": "17.4.0",
|
"globals": "17.4.0",
|
||||||
"jest": "30.3.0",
|
"jest": "30.3.0",
|
||||||
"nock": "15.0.0",
|
"nock": "15.0.0",
|
||||||
"npm-run-all": "4.1.5",
|
"npm-run-all": "4.1.5",
|
||||||
"prettier": "3.8.1",
|
"prettier": "3.8.1",
|
||||||
"ts-jest": "29.4.6",
|
"ts-jest": "29.4.9",
|
||||||
"typescript": "5.9.3"
|
"typescript": "5.9.3"
|
||||||
},
|
},
|
||||||
"overrides": {
|
"overrides": {
|
||||||
|
|||||||
@@ -1,7 +1,7 @@
|
|||||||
import * as core from '@actions/core'
|
import * as core from '@actions/core'
|
||||||
import * as github from '@actions/github'
|
import * as github from '@actions/github'
|
||||||
import * as cache from '@actions/cache'
|
import * as cache from '@actions/cache'
|
||||||
import * as de cator from './deprecation-collector'
|
import * as deprecator from './deprecation-collector'
|
||||||
|
|
||||||
import * as path from 'path'
|
import * as path from 'path'
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user