Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

renovate/38.52.0 package update #27039

Merged
merged 1 commit into from
Aug 24, 2024
Merged

renovate/38.52.0 package update #27039

merged 1 commit into from
Aug 24, 2024

Conversation

octo-sts[bot]
Copy link
Contributor

@octo-sts octo-sts bot commented Aug 24, 2024

@wolfi-bot
renovate/38.52.0 package update
956f8e2 
Signed-off-by: wolfi-bot <121097084+wolfi-bot@users.noreply.github.com>
@octo-sts octo-sts bot added request-version-update request for a newer version of a package automated pr labels Aug 24, 2024
@octo-sts octo-sts bot mentioned this pull request Aug 24, 2024
Closed
@github-actions GitHub Actions
Copy link
Contributor

Package renovate: Click to expand/collapse

Package renovate:

.PKGINFO metadata:

  (
  	"""
  	# Generated by melange
  	pkgname = renovate
- 	pkgver = 38.48.0-r0
+ 	pkgver = 38.52.0-r0
  	arch = x86_64
- 	size = 241084545
+ 	size = 243439730
  	origin = renovate
  	pkgdesc = Automated dependency updates. Multi-platform and multi-language.
  	url = 
- 	commit = 205eecbaa81e07d628a623f012f2bc9672fd57ac
- 	builddate = 1724356997
+ 	commit = 50231a5289fa38ff6da18f4bff7b936c98ee1580
  	license = AGPL-3.0-only
  	depend = git
  	... // 4 identical lines
  	depend = so:libstdc++.so.6
  	# vendored = so:better_sqlite3.node=0
- 	datahash = 0b19d8f3ab870eb739bf31755aed7c9368c99bf95a6e33da290ef3e47157e13a
+ 	datahash = 5d82cd96bf650b496eeeae2b44878fad673bd972ccc91ac4ea6e205a077dd16f
  	"""
  )

Added: /usr/local/lib/node_modules/renovate/dist/modules/manager/bazel-module/parser/maven.d.ts
Added: /usr/local/lib/node_modules/renovate/dist/modules/manager/bazel-module/parser/maven.js
Added: /usr/local/lib/node_modules/renovate/dist/modules/manager/bazel-module/parser/maven.js.map
Added: /usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/light/protobuf.js
Added: /usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/light/protobuf.js.map
Added: /usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/light/protobuf.min.js
Added: /usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/light/protobuf.min.js.map
Added: /usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/minimal/protobuf.js
Added: /usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/minimal/protobuf.js.map
Added: /usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/minimal/protobuf.min.js
Added: /usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/minimal/protobuf.min.js.map
Added: /usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/protobuf.js
Added: /usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/protobuf.js.map
Added: /usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/protobuf.min.js
Added: /usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/protobuf.min.js.map
Modified: /usr/local/lib/node_modules/renovate/dist/data/monorepo.json
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/bazel-module/extract.js
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/bazel-module/extract.js.map
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/bazel-module/fragments.d.ts
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/bazel-module/fragments.js
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/bazel-module/fragments.js.map
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/bazel-module/index.js
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/bazel-module/index.js.map
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/bazel-module/parser/index.js
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/bazel-module/parser/index.js.map
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/bazel-module/parser/module.js
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/bazel-module/parser/module.js.map
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/fingerprint.generated.js
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/fingerprint.generated.js.map
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/git-submodules/extract.js
Modified: /usr/local/lib/node_modules/renovate/dist/modules/manager/git-submodules/extract.js.map
Modified: /usr/local/lib/node_modules/renovate/dist/util/template/index.d.ts
Modified: /usr/local/lib/node_modules/renovate/dist/util/template/index.js
Modified: /usr/local/lib/node_modules/renovate/dist/util/template/index.js.map
Modified: /usr/local/lib/node_modules/renovate/dist/workers/repository/update/branch/get-updated.js
Modified: /usr/local/lib/node_modules/renovate/dist/workers/repository/update/branch/get-updated.js.map
Modified: /usr/local/lib/node_modules/renovate/node_modules/micromatch/README.md
Modified: /usr/local/lib/node_modules/renovate/node_modules/micromatch/index.js
Modified: /usr/local/lib/node_modules/renovate/node_modules/micromatch/package.json
Modified: /usr/local/lib/node_modules/renovate/node_modules/protobufjs/package.json
Modified: /usr/local/lib/node_modules/renovate/package.json

bincapz found differences: Click to expand/collapse

time=2024-08-24T13:56:05.613Z level=ERROR source=github.com/chainguard-dev/bincapz/pkg/action/scan.go:222 msg="unable to process /tmp/wolfictl-apk-1673690839/renovate/usr/local/lib/node_modules/renovate/node_modules/tar-fs/test/fixtures/invalid.tar: extract to temp: failed to extract /tmp/wolfictl-apk-1673690839/renovate/usr/local/lib/node_modules/renovate/node_modules/tar-fs/test/fixtures/invalid.tar: failed to create directory for file: mkdir /tmp/invalid.tar3187174814/foo: not a directory"
time=2024-08-24T13:56:17.635Z level=ERROR source=github.com/chainguard-dev/bincapz/pkg/action/scan.go:222 msg="unable to process /tmp/wolfictl-apk-882697929/renovate/usr/local/lib/node_modules/renovate/node_modules/tar-fs/test/fixtures/invalid.tar: extract to temp: failed to extract /tmp/wolfictl-apk-882697929/renovate/usr/local/lib/node_modules/renovate/node_modules/tar-fs/test/fixtures/invalid.tar: failed to create directory for file: mkdir /tmp/invalid.tar109357898/foo: not a directory"

Deleted: renovate/var/lib/db/sbom/renovate-38.48.0-r0.spdx.json [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
-MEDIUM net/download download files downloadLocation
-LOW ref/site/url contains embedded HTTPS URLs https://spdx.org/spdxdocs/chainguard/melange/b51ccadbcd131ab8f9d57f4e58e8

Added: renovate/usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/protobuf.js [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM kernel/platform get system identification process.versions
+MEDIUM ref/path/relative references and possibly executes relative path ./compiled
+MEDIUM techniques/code_eval evaluate code dynamically using eval() eval("quire"
+LOW encoding/base64 Supports base64 encoded strings base64
+LOW encoding/json/decode Decodes JSON messages JSON.parse
+LOW encoding/json/encode encodes JSON JSON.stringify
+LOW fs/file/read reads files fs.readFile
+LOW ref/site/url contains embedded HTTPS URLs https://developer.mozilla.org/en-US/docs/Web/API/XMLHttpRequest/Sending_a
https://developers.google.com/protocol-buffers/docs/proto3?hl=en
protobufjs/protobuf.js#665
https://github.com/dcodeio/protobuf.js

Added: renovate/usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/minimal/protobuf.min.js [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM kernel/platform get system identification process.versions
+MEDIUM techniques/code_eval evaluate code dynamically using eval() eval("require")(t)
+LOW encoding/base64 Supports base64 encoded strings base64
+LOW ref/site/url contains embedded HTTPS URLs https://github.com/dcodeio/protobuf.js

Added: renovate/usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/light/protobuf.js [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM kernel/platform get system identification process.versions
+MEDIUM ref/path/relative references and possibly executes relative path ./compiled
+MEDIUM techniques/code_eval evaluate code dynamically using eval() eval("quire"
+LOW encoding/base64 Supports base64 encoded strings base64
+LOW encoding/json/decode Decodes JSON messages JSON.parse
+LOW encoding/json/encode encodes JSON JSON.stringify
+LOW fs/file/read reads files fs.readFile
+LOW ref/site/url contains embedded HTTPS URLs https://developer.mozilla.org/en-US/docs/Web/API/XMLHttpRequest/Sending_a
https://developers.google.com/protocol-buffers/docs/proto3?hl=en
protobufjs/protobuf.js#665
https://github.com/dcodeio/protobuf.js

Added: renovate/usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/minimal/protobuf.js [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM kernel/platform get system identification process.versions
+MEDIUM ref/path/relative references and possibly executes relative path ./compiled
+MEDIUM techniques/code_eval evaluate code dynamically using eval() eval("quire"
+LOW encoding/base64 Supports base64 encoded strings base64
+LOW encoding/json/encode encodes JSON JSON.stringify
+LOW ref/site/url contains embedded HTTPS URLs https://developers.google.com/protocol-buffers/docs/proto3?hl=en
protobufjs/protobuf.js#665
https://github.com/dcodeio/protobuf.js

Added: renovate/usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/light/protobuf.min.js [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM kernel/platform get system identification process.versions
+MEDIUM techniques/code_eval evaluate code dynamically using eval() eval("require")(t)
+LOW encoding/base64 Supports base64 encoded strings base64
+LOW encoding/json/decode Decodes JSON messages JSON.parse
+LOW encoding/json/encode encodes JSON JSON.stringify
+LOW fs/file/read reads files fs.readFile
+LOW ref/site/url contains embedded HTTPS URLs https://github.com/dcodeio/protobuf.js

Added: renovate/usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/protobuf.min.js [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM kernel/platform get system identification process.versions
+MEDIUM techniques/code_eval evaluate code dynamically using eval() eval("require")(t)
+LOW encoding/base64 Supports base64 encoded strings base64
+LOW encoding/json/decode Decodes JSON messages JSON.parse
+LOW encoding/json/encode encodes JSON JSON.stringify
+LOW fs/file/read reads files fs.readFile
+LOW ref/site/url contains embedded HTTPS URLs https://github.com/dcodeio/protobuf.js

Added: renovate/var/lib/db/sbom/renovate-38.52.0-r0.spdx.json [⚠️ MEDIUM]

RISK KEY DESCRIPTION EVIDENCE
+MEDIUM net/download download files downloadLocation
+LOW ref/site/url contains embedded HTTPS URLs https://spdx.org/spdxdocs/chainguard/melange/246a64195a3bf24e2a2b09564b97

Changed: /tmp/wolfictl-apk-882697929/renovate/usr/local/lib/node_modules/renovate/node_modules/@smithy/core/dist-es/submodules/cbor/cbor-encode.js

Changed: /tmp/wolfictl-apk-882697929/renovate/usr/local/lib/node_modules/renovate/node_modules/@smithy/core/dist-cjs/submodules/cbor/index.js

@octo-sts octo-sts bot enabled auto-merge (squash) August 24, 2024 14:00
@octo-sts octo-sts bot merged commit edabe64 into main Aug 24, 2024
14 checks passed
@octo-sts octo-sts bot deleted the wolfictl-8fe7dd64-4684-4d82-9cd4-61cff6cbc3b8 branch August 24, 2024 14:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions GitHub Actions github-actions approved these changes

Assignees
No one assigned
Labels
auto-approver-bot/approve automated pr bincapz/pass request-version-update request for a newer version of a package
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@wolfi-bot