Releases: step-security/synthetics-ci-github-action
Releases · step-security/synthetics-ci-github-action
v4.0.0
Immutable
release. Only release title and notes can be modified.
What's Changed
- fix: Security updates by @github-actions[bot] in #27
- fix: Security updates by @github-actions[bot] in #31
- fix: Security updates by @github-actions[bot] in #36
- fix: Security updates by @github-actions[bot] in #38
- fix: Security updates by @github-actions[bot] in #42
- fix: Security updates by @github-actions[bot] in #45
- fix: upgrade packages to fix vulnerabilities by @Raj-StepSecurity in #46
- fix: Security updates by @github-actions[bot] in #48
- fix: Security updates by @github-actions[bot] in #52
- chore: Remove guarddog.yml by @anurag-stepsecurity in #56
- chore: Cherry-picked changes from upstream by @github-actions[bot] in #55
- build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.3 by @dependabot[bot] in #4
- Bump actions/upload-artifact from 4.6.2 to 6.0.0 by @dependabot[bot] in #5
- build(deps): bump actions/checkout from 4.3.1 to 6.0.2 by @dependabot[bot] in #6
- Bump github/codeql-action from 3.32.1 to 4.32.2 by @dependabot[bot] in #7
- feat: added banner and update subscription check to make maintained actions free for public repos by @anurag-stepsecurity in #57
New Contributors
- @anurag-stepsecurity made their first contribution in #56
Full Changelog: v3...v4.0.0
Contributors
dependabot, Raj-StepSecurity, and anurag-stepsecurity
Assets 7
v3.8.2
What's Changed
- ci: Create claude_review.yml by @Raj-StepSecurity in #1
- feat: onboarding synthetics-ci-github-action by @Raj-StepSecurity in #2
- [StepSecurity] Apply security best practices by @step-security-bot in #3
- Bump jws from 3.2.2 to 3.2.3 by @dependabot[bot] in #14
- Bump lodash from 4.17.21 to 4.17.23 by @dependabot[bot] in #15
- Bump form-data from 2.5.1 to 2.5.5 by @dependabot[bot] in #11
- Bump @smithy/config-resolver from 4.0.1 to 4.4.6 by @dependabot[bot] in #16
- fix: ran dedupe to remove vulnerabilities by @Raj-StepSecurity in #17
- Bump brace-expansion from 1.1.11 to 1.1.12 by @dependabot[bot] in #18
- Bump @datadog/datadog-ci from 3.21.4 to 5.6.0 by @dependabot[bot] in #8
- Bump js-yaml from 3.14.1 to 3.14.2 by @dependabot[bot] in #19
- fix: upgraded node-gyp to remove vulnerabilities by @Raj-StepSecurity in #20
- fix: Security updates by @github-actions[bot] in #21
New Contributors
- @Raj-StepSecurity made their first contribution in #1
- @step-security-bot made their first contribution in #3
- @dependabot[bot] made their first contribution in #14
- @github-actions[bot] made their first contribution in #21
Full Changelog: https://github.com/step-security/synthetics-ci-github-action/commits/v3.8.2
Contributors
dependabot, step-security-bot, and Raj-StepSecurity