From 439bd0a99985f834f10141223ae23abb67e2d7fd Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 13 Oct 2025 03:01:50 +0000 Subject: [PATCH 1/4] chore(deps): bump github/codeql-action from 3 to 4 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3 to 4. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v3...v4) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/codeql-analysis.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 9d515c7..26cbedc 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -34,7 +34,7 @@ jobs: - name: Initialize CodeQL id: initialize - uses: github/codeql-action/init@v3 + uses: github/codeql-action/init@v4 with: config-file: .github/codeql/codeql-config.yml languages: ${{ matrix.language }} @@ -42,8 +42,8 @@ jobs: - name: Autobuild id: autobuild - uses: github/codeql-action/autobuild@v3 + uses: github/codeql-action/autobuild@v4 - name: Perform CodeQL Analysis id: analyze - uses: github/codeql-action/analyze@v3 + uses: github/codeql-action/analyze@v4 From 84e9608e59a9c8a403b2c4a5696feaa00c3395c9 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 30 Oct 2025 20:11:37 +0000 Subject: [PATCH 2/4] chore(deps): bump actions/setup-node from 5 to 6 Bumps [actions/setup-node](https://github.com/actions/setup-node) from 5 to 6. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v5...v6) --- updated-dependencies: - dependency-name: actions/setup-node dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/check-dist.yml | 2 +- .github/workflows/ci.yml | 2 +- .github/workflows/licensed.yml | 2 +- .github/workflows/linter.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/check-dist.yml b/.github/workflows/check-dist.yml index c86c87b..855547e 100644 --- a/.github/workflows/check-dist.yml +++ b/.github/workflows/check-dist.yml @@ -32,7 +32,7 @@ jobs: - name: Setup Node.js id: setup-node - uses: actions/setup-node@v5 + uses: actions/setup-node@v6 with: node-version-file: .node-version cache: npm diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 86f6eaf..dfe3319 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -23,7 +23,7 @@ jobs: - name: Setup Node.js id: setup-node - uses: actions/setup-node@v5 + uses: actions/setup-node@v6 with: node-version-file: .node-version cache: npm diff --git a/.github/workflows/licensed.yml b/.github/workflows/licensed.yml index 00be788..9de7f57 100644 --- a/.github/workflows/licensed.yml +++ b/.github/workflows/licensed.yml @@ -31,7 +31,7 @@ jobs: - name: Setup Node.js id: setup-node - uses: actions/setup-node@v5 + uses: actions/setup-node@v6 with: node-version-file: .node-version cache: npm diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml index ee667ca..6b9ef0f 100644 --- a/.github/workflows/linter.yml +++ b/.github/workflows/linter.yml @@ -32,7 +32,7 @@ jobs: - name: Setup Node.js id: setup-node - uses: actions/setup-node@v5 + uses: actions/setup-node@v6 with: node-version-file: .node-version cache: npm From 12194717724b7eca72660811ff086f80bdaab9a8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 30 Oct 2025 20:11:40 +0000 Subject: [PATCH 3/4] chore(deps): bump actions/upload-artifact from 4 to 5 Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4 to 5. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/v4...v5) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/check-dist.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/check-dist.yml b/.github/workflows/check-dist.yml index c86c87b..ace6b5b 100644 --- a/.github/workflows/check-dist.yml +++ b/.github/workflows/check-dist.yml @@ -66,7 +66,7 @@ jobs: - if: ${{ failure() && steps.diff.outcome == 'failure' }} name: Upload Artifact id: upload - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v5 with: name: dist path: dist/ From 4028d4fba3215c45ab752971e3da7a1e4aa37cc5 Mon Sep 17 00:00:00 2001 From: Nick Alteen Date: Thu, 30 Oct 2025 16:24:29 -0400 Subject: [PATCH 4/4] Add custom checkov config --- .checkov.yml | 7 +++++++ .github/workflows/linter.yml | 1 + 2 files changed, 8 insertions(+) create mode 100644 .checkov.yml diff --git a/.checkov.yml b/.checkov.yml new file mode 100644 index 0000000..63bfa27 --- /dev/null +++ b/.checkov.yml @@ -0,0 +1,7 @@ +# See: https://www.checkov.io/1.Welcome/Quick%20Start.html + +compact: true +quiet: true +skip-path: + - coverage + - node_modules diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml index ee667ca..4ffb0ce 100644 --- a/.github/workflows/linter.yml +++ b/.github/workflows/linter.yml @@ -45,6 +45,7 @@ jobs: id: super-linter uses: super-linter/super-linter/slim@v8 env: + CHECKOV_FILE_NAME: .checkov.yml DEFAULT_BRANCH: main FILTER_REGEX_EXCLUDE: dist/**/* GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}