Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Pending Status Checks

The following updates await pending status checks. To force their creation now, click on a checkbox below.

• build(deps): update github actions (github/codeql-action, oxsecurity/megalinter, step-security/harden-runner)

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• build(deps): update actions/checkout digest to 93cb6ef
• build(deps): update ghcr.io/siderolabs/conform docker digest to a7240d9
• build(deps): update actions/checkout action to v6
• build(deps): update actions/dependency-review-action action to v5
• build(deps): update actions/upload-artifact action to v7
• build(deps): update crazy-max/ghaction-import-gpg action to v7
• Click on this checkbox to rebase all open PRs at once

Vulnerabilities

Renovate has not found any CVEs on osv.dev.

Detected Dependencies

github-actions (6)

.github/workflows/commit-lint.yml (2)

• actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd → [Updates: v6.0.2]
• ghcr.io/siderolabs/conform sha256:f7e72122d4296b90285ac51964361295adf1f2018420a8547cb2b069f94a776d → [Updates: undefined]

.github/workflows/dependency-review.yml (2)

• actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd → [Updates: v6.0.2]
• actions/dependency-review-action v4.9.0@2031cfc080254a8a887f58cffee85186f0e49e48 → [Updates: v5.0.0]

.github/workflows/license-lint.yml (2)

• actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd → [Updates: v6.0.2]
• fsfe/reuse-action v6.0.0@676e2d560c9a403aa252096d99fcab3e1132b0f5

.github/workflows/mega-lint.yml (5)

• step-security/harden-runner v2.19.1@a5ad31d6a139d249332a2605b85202e8c0b78450 → [Updates: v2.19.3]
• actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd → [Updates: v6.0.2]
• oxsecurity/megalinter v9.4.0@8fbdead70d1409964ab3d5afa885e18ee85388bb → [Updates: v9.5.0]
• actions/upload-artifact v5.0.0@330a01c490aca151604b8cf639adc76d48f6c5d4 → [Updates: v7.0.1]
• github/codeql-action v4.35.4@68bde559dea0fdcac2102bfdf6230c5f70eb485e → [Updates: v4.35.5]

.github/workflows/openssf-scorecard.yml (5)

• step-security/harden-runner v2.19.1@a5ad31d6a139d249332a2605b85202e8c0b78450 → [Updates: v2.19.3]
• actions/checkout v5.0.1@93cb6efe18208431cddfb8368fd83d5badbf9bfd → [Updates: v6.0.2]
• ossf/scorecard-action v2.4.3@4eaacf0543bb3f2c246792bd56e8cdeffafb205a
• actions/upload-artifact v5.0.0@330a01c490aca151604b8cf639adc76d48f6c5d4 → [Updates: v7.0.1]
• github/codeql-action v4.35.4@68bde559dea0fdcac2102bfdf6230c5f70eb485e → [Updates: v4.35.5]

.github/workflows/version-bump-changelog.yml (6)

• step-security/harden-runner v2.19.1@a5ad31d6a139d249332a2605b85202e8c0b78450 → [Updates: v2.19.3]
• actions/checkout v5@08c6903cd8c0fde910a37f88322edcfb5dd907a8 → [Updates: v6, v5]
• crazy-max/ghaction-import-gpg v6.3.0@e89d40939c28e39f97cf32126055eeae86ba74ec → [Updates: v7.0.0]
• orhun/git-cliff-action v4.8.0@f50e11560dce63f7c33227798f90b924471a88b5
• orhun/git-cliff-action v4.8.0@f50e11560dce63f7c33227798f90b924471a88b5
• stefanzweifel/git-auto-commit-action v7.1.0@04702edda442b2e678b25b537cec683a1493fcb9

renovate-config (1)

renovate.json

---

• Check this box to trigger a request for Renovate to run again on this repository