Skip to content

Commit

Permalink
chore(deps): update gitlab support dependencies (#203)
Browse files Browse the repository at this point in the history
This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
| [actions/checkout](https://redirect.github.com/actions/checkout) |
action | minor | `v4.1.7` -> `v4.2.1` |
|
[actions/upload-artifact](https://redirect.github.com/actions/upload-artifact)
| action | patch | `v4.4.0` -> `v4.4.3` |
|
[defenseunicorns/uds-common](https://redirect.github.com/defenseunicorns/uds-common)
| | major | `v0.13.1` -> `v1.1.2` |
|
[defenseunicorns/uds-common](https://redirect.github.com/defenseunicorns/uds-common)
| action | major | `v0.13.1` -> `v1.1.2` |
|
[defenseunicorns/zarf](https://redirect.github.com/defenseunicorns/zarf)
| | minor | `v0.40.1` -> `v0.42.0` |
|
[github/codeql-action](https://redirect.github.com/github/codeql-action)
| action | patch | `v3.26.8` -> `v3.26.13` |
|
[pre-commit/pre-commit-hooks](https://redirect.github.com/pre-commit/pre-commit-hooks)
| repository | major | `v4.6.0` -> `v5.0.0` |
|
[python-jsonschema/check-jsonschema](https://redirect.github.com/python-jsonschema/check-jsonschema)
| repository | patch | `0.29.2` -> `0.29.4` |
|
[renovatebot/pre-commit-hooks](https://redirect.github.com/renovatebot/pre-commit-hooks)
| repository | minor | `38.94.1` -> `38.128.6` |

Note: The `pre-commit` manager in Renovate is not supported by the
`pre-commit` maintainers or community. Please do not report any problems
there, instead [create a Discussion in the Renovate
repository](https://redirect.github.com/renovatebot/renovate/discussions/new)
if you have any questions.

---

### Release Notes

<details>
<summary>actions/checkout (actions/checkout)</summary>

###
[`v4.2.1`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v421)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.2.0...v4.2.1)

- Check out other refs/\* by commit if provided, fall back to ref by
[@&#8203;orhantoy](https://redirect.github.com/orhantoy) in
[https://github.com/actions/checkout/pull/1924](https://redirect.github.com/actions/checkout/pull/1924)

###
[`v4.2.0`](https://redirect.github.com/actions/checkout/blob/HEAD/CHANGELOG.md#v420)

[Compare
Source](https://redirect.github.com/actions/checkout/compare/v4.1.7...v4.2.0)

- Add Ref and Commit outputs by
[@&#8203;lucacome](https://redirect.github.com/lucacome) in
[https://github.com/actions/checkout/pull/1180](https://redirect.github.com/actions/checkout/pull/1180)
- Dependency updates by
[@&#8203;dependabot-](https://redirect.github.com/dependabot-)
[https://github.com/actions/checkout/pull/1777](https://redirect.github.com/actions/checkout/pull/1777),
[https://github.com/actions/checkout/pull/1872](https://redirect.github.com/actions/checkout/pull/1872)

</details>

<details>
<summary>actions/upload-artifact (actions/upload-artifact)</summary>

###
[`v4.4.3`](https://redirect.github.com/actions/upload-artifact/releases/tag/v4.4.3)

[Compare
Source](https://redirect.github.com/actions/upload-artifact/compare/v4.4.2...v4.4.3)

##### What's Changed

- Undo indirect dependency updates from
[#&#8203;627](https://redirect.github.com/actions/upload-artifact/issues/627)
by [@&#8203;joshmgross](https://redirect.github.com/joshmgross) in
[https://github.com/actions/upload-artifact/pull/632](https://redirect.github.com/actions/upload-artifact/pull/632)

**Full Changelog**:
https://github.com/actions/upload-artifact/compare/v4.4.2...v4.4.3

###
[`v4.4.2`](https://redirect.github.com/actions/upload-artifact/releases/tag/v4.4.2)

[Compare
Source](https://redirect.github.com/actions/upload-artifact/compare/v4.4.1...v4.4.2)

##### What's Changed

- Bump `@actions/artifact` to 2.1.11 by
[@&#8203;robherley](https://redirect.github.com/robherley) in
[https://github.com/actions/upload-artifact/pull/627](https://redirect.github.com/actions/upload-artifact/pull/627)
    -   Includes fix for relative symlinks not resolving properly

**Full Changelog**:
https://github.com/actions/upload-artifact/compare/v4.4.1...v4.4.2

###
[`v4.4.1`](https://redirect.github.com/actions/upload-artifact/releases/tag/v4.4.1)

[Compare
Source](https://redirect.github.com/actions/upload-artifact/compare/v4.4.0...v4.4.1)

##### What's Changed

- Add a section about hidden files by
[@&#8203;joshmgross](https://redirect.github.com/joshmgross) in
[https://github.com/actions/upload-artifact/pull/607](https://redirect.github.com/actions/upload-artifact/pull/607)
- Add workflow file for publishing releases to immutable action package
by [@&#8203;Jcambass](https://redirect.github.com/Jcambass) in
[https://github.com/actions/upload-artifact/pull/621](https://redirect.github.com/actions/upload-artifact/pull/621)
- Update
[@&#8203;actions/artifact](https://redirect.github.com/actions/artifact)
to latest version, includes symlink and timeout fixes by
[@&#8203;robherley](https://redirect.github.com/robherley) in
[https://github.com/actions/upload-artifact/pull/625](https://redirect.github.com/actions/upload-artifact/pull/625)

##### New Contributors

- [@&#8203;Jcambass](https://redirect.github.com/Jcambass) made their
first contribution in
[https://github.com/actions/upload-artifact/pull/621](https://redirect.github.com/actions/upload-artifact/pull/621)

**Full Changelog**:
https://github.com/actions/upload-artifact/compare/v4.4.0...v4.4.1

</details>

<details>
<summary>defenseunicorns/uds-common
(defenseunicorns/uds-common)</summary>

###
[`v1.1.1`](https://redirect.github.com/defenseunicorns/uds-common/releases/tag/v1.1.1)

[Compare
Source](https://redirect.github.com/defenseunicorns/uds-common/compare/v1.1.0...v1.1.1)

##### Bug Fixes

- lint:deps producing unwanted file
([#&#8203;297](https://redirect.github.com/defenseunicorns/uds-common/issues/297))
([94db603](https://redirect.github.com/defenseunicorns/uds-common/commit/94db6033619ea5b62d00de52961bd7b5fa969517))
- timeout too short on test workflows - allow adjustment on test/publish
([#&#8203;314](https://redirect.github.com/defenseunicorns/uds-common/issues/314))
([6ac1587](https://redirect.github.com/defenseunicorns/uds-common/commit/6ac1587f0553ed91e1f0a2f662e59dd0839d10a7))

##### Miscellaneous

- add if to only run the clean runner task on ubuntu-latest
([#&#8203;309](https://redirect.github.com/defenseunicorns/uds-common/issues/309))
([10377e8](https://redirect.github.com/defenseunicorns/uds-common/commit/10377e875c105c69b2233cf8f0703c1951b2ebf1))
- adds check for addlicense
([#&#8203;303](https://redirect.github.com/defenseunicorns/uds-common/issues/303))
([4fef014](https://redirect.github.com/defenseunicorns/uds-common/commit/4fef014b93368ac2b2cff8b01a6ab997db12a660))
- **deps:** update uds common support dependencies
([#&#8203;305](https://redirect.github.com/defenseunicorns/uds-common/issues/305))
([429058f](https://redirect.github.com/defenseunicorns/uds-common/commit/429058f7a8a3e670ef59c0d385a4b58f90a31387))
- **deps:** update uds common support dependencies to v0.29.1
([#&#8203;313](https://redirect.github.com/defenseunicorns/uds-common/issues/313))
([bd27cc8](https://redirect.github.com/defenseunicorns/uds-common/commit/bd27cc8f5b08940626276ca338c9bf864bc5f054))
- **docs:** fix overwritten requirement for metadata
([#&#8203;296](https://redirect.github.com/defenseunicorns/uds-common/issues/296))
([07fd1d3](https://redirect.github.com/defenseunicorns/uds-common/commit/07fd1d330374a79f0ff3278d972155ef80d83313))
- improve task checks/linting and allow more options on test/publish
([#&#8203;311](https://redirect.github.com/defenseunicorns/uds-common/issues/311))
([894a2ce](https://redirect.github.com/defenseunicorns/uds-common/commit/894a2ce4d9c26015cc4842644c20eb92a9acd2a3))
- make yamllint easier to run locally
([#&#8203;312](https://redirect.github.com/defenseunicorns/uds-common/issues/312))
([f44b244](https://redirect.github.com/defenseunicorns/uds-common/commit/f44b244c96f948e1193244067307642b6e9953cb))
- update uds-package-requirements.md
([#&#8203;306](https://redirect.github.com/defenseunicorns/uds-common/issues/306))
([b7a6f09](https://redirect.github.com/defenseunicorns/uds-common/commit/b7a6f097014733e03b2f0b763e4654f3d3c89f78))

###
[`v1.1.0`](https://redirect.github.com/defenseunicorns/uds-common/releases/tag/v1.1.0)

[Compare
Source](https://redirect.github.com/defenseunicorns/uds-common/compare/v1.0.0...v1.1.0)

##### ⚠ BREAKING CHANGES

- update the license to AGPLv3 or Commercial
([#&#8203;286](https://redirect.github.com/defenseunicorns/uds-common/issues/286))

##### Bug Fixes

- modified jq command
([#&#8203;292](https://redirect.github.com/defenseunicorns/uds-common/issues/292))
([d566e86](https://redirect.github.com/defenseunicorns/uds-common/commit/d566e86c5a78f2124116113ea3ed35695caec5be))
- simplify git command for flavor checks
([#&#8203;290](https://redirect.github.com/defenseunicorns/uds-common/issues/290))
([72c4e35](https://redirect.github.com/defenseunicorns/uds-common/commit/72c4e35d5f9f6ed877c184cf748e67a77e4fa771))
- upgrade test not cloning in private repos
([#&#8203;295](https://redirect.github.com/defenseunicorns/uds-common/issues/295))
([1dde808](https://redirect.github.com/defenseunicorns/uds-common/commit/1dde808b943c554edcd401fb814d504ee74117c0))

##### Miscellaneous

- **badging:** include unicorn flavor suggstion for bronze
([#&#8203;288](https://redirect.github.com/defenseunicorns/uds-common/issues/288))
([f668b06](https://redirect.github.com/defenseunicorns/uds-common/commit/f668b06f1597efd3c701a47ce28de1d8f298b1b8))
- **deps:** update support-deps to v4.4.3
([#&#8203;282](https://redirect.github.com/defenseunicorns/uds-common/issues/282))
([13d35ef](https://redirect.github.com/defenseunicorns/uds-common/commit/13d35ef9831c71cc217ef43f2c13562f40a3ec5b))
- **deps:** update uds common package dependencies to v1.27.2
([#&#8203;229](https://redirect.github.com/defenseunicorns/uds-common/issues/229))
([5b6a722](https://redirect.github.com/defenseunicorns/uds-common/commit/5b6a7223469bddf79be079baab1e3333a01c71e5))
- disable stale PR rebasing for renovate
([#&#8203;284](https://redirect.github.com/defenseunicorns/uds-common/issues/284))
([27ca69e](https://redirect.github.com/defenseunicorns/uds-common/commit/27ca69e53d980672b655b03ee854d2e7ea0462dc))
- have addlicense ignore gitignored files
([#&#8203;294](https://redirect.github.com/defenseunicorns/uds-common/issues/294))
([1bf662e](https://redirect.github.com/defenseunicorns/uds-common/commit/1bf662e890a238bf49234e9768d5fa7078d4fdb3))
- make all Maru references local includes
([#&#8203;287](https://redirect.github.com/defenseunicorns/uds-common/issues/287))
([727db0f](https://redirect.github.com/defenseunicorns/uds-common/commit/727db0fae26a4397361bab84de18dd253a755c79))
- update the license to AGPLv3 or Commercial
([#&#8203;286](https://redirect.github.com/defenseunicorns/uds-common/issues/286))
([2a9ca00](https://redirect.github.com/defenseunicorns/uds-common/commit/2a9ca00409f3bb513d2f256bcf1a91146b94d514))

###
[`v1.0.0`](https://redirect.github.com/defenseunicorns/uds-common/releases/tag/v1.0.0)

[Compare
Source](https://redirect.github.com/defenseunicorns/uds-common/compare/v0.13.1...v1.0.0)

##### ⚠ BREAKING CHANGES

- remove with.assessment_results from oscal tasks
([#&#8203;276](https://redirect.github.com/defenseunicorns/uds-common/issues/276))
- update the publish task to avoid name collision
([#&#8203;267](https://redirect.github.com/defenseunicorns/uds-common/issues/267))
- **task:** add optional config input to create, deploy package and
bundle tasks
([#&#8203;262](https://redirect.github.com/defenseunicorns/uds-common/issues/262))
- add shell linting to uds-common linting
([#&#8203;258](https://redirect.github.com/defenseunicorns/uds-common/issues/258))
- update uds common gh actions to use uds run conditionals
([#&#8203;254](https://redirect.github.com/defenseunicorns/uds-common/issues/254))

##### Features

- **task:** add optional config input to create, deploy package and
bundle tasks
([#&#8203;262](https://redirect.github.com/defenseunicorns/uds-common/issues/262))
([3d3e9cb](https://redirect.github.com/defenseunicorns/uds-common/commit/3d3e9cb82e6664a4250782e6ae3a4e1112cfe5be))
- update uds common gh actions to use uds run conditionals
([#&#8203;254](https://redirect.github.com/defenseunicorns/uds-common/issues/254))
([c9d92f0](https://redirect.github.com/defenseunicorns/uds-common/commit/c9d92f0481d147e362d359447b487ab1c1560f31))

##### Bug Fixes

- add runner.arch to upload-artifacts name
([#&#8203;269](https://redirect.github.com/defenseunicorns/uds-common/issues/269))
([4abe414](https://redirect.github.com/defenseunicorns/uds-common/commit/4abe414fa5460bc9e98b53f2e830b41e2e01cf26))
- add test artifact uploads to callable workflows
([#&#8203;275](https://redirect.github.com/defenseunicorns/uds-common/issues/275))
([02e5c07](https://redirect.github.com/defenseunicorns/uds-common/commit/02e5c072465f1b06a05760fd4d1d12e070c22155))
- broken hyperlink in guide.md
([#&#8203;272](https://redirect.github.com/defenseunicorns/uds-common/issues/272))
([6b152a4](https://redirect.github.com/defenseunicorns/uds-common/commit/6b152a4905ce4b8d212519e3fff4ff99dbaf7e50))
- refactor top level tasks
([#&#8203;277](https://redirect.github.com/defenseunicorns/uds-common/issues/277))
([b7f6894](https://redirect.github.com/defenseunicorns/uds-common/commit/b7f68947d4082a7cb3128271476f65c61b3a9261))
- remove with.assessment_results from oscal tasks
([#&#8203;276](https://redirect.github.com/defenseunicorns/uds-common/issues/276))
([bb8bb4b](https://redirect.github.com/defenseunicorns/uds-common/commit/bb8bb4b4df897b8aa747f5fe6e3ddd3fa40017b9))
- test/publish workflow upload and default behavior
([#&#8203;279](https://redirect.github.com/defenseunicorns/uds-common/issues/279))
([1851a1c](https://redirect.github.com/defenseunicorns/uds-common/commit/1851a1cb3f532f83a70c09e8bb513fcc6bb64bd1))
- update publish permissions
([#&#8203;263](https://redirect.github.com/defenseunicorns/uds-common/issues/263))
([2e57869](https://redirect.github.com/defenseunicorns/uds-common/commit/2e57869b41d1f523ca37b2a3da035a580fc7d6d0))
- update the publish task to avoid name collision
([#&#8203;267](https://redirect.github.com/defenseunicorns/uds-common/issues/267))
([6a176ff](https://redirect.github.com/defenseunicorns/uds-common/commit/6a176ffd18ece28b759eb4e20f2e082ff0e079fb))

##### Miscellaneous

- add an ADR to document workflow/job names
([#&#8203;260](https://redirect.github.com/defenseunicorns/uds-common/issues/260))
([0685c7c](https://redirect.github.com/defenseunicorns/uds-common/commit/0685c7cac904ebe5f746770f9488210498d4463d))
- add shell linting to uds-common linting
([#&#8203;258](https://redirect.github.com/defenseunicorns/uds-common/issues/258))
([82e9137](https://redirect.github.com/defenseunicorns/uds-common/commit/82e9137642cb5dc0ba41cb33ad1ae44258549d19))
- correct the release workflow path on README
([#&#8203;265](https://redirect.github.com/defenseunicorns/uds-common/issues/265))
([62c9a5f](https://redirect.github.com/defenseunicorns/uds-common/commit/62c9a5f0a14a8215d5d7e55e1b11d0d77003c8e1))
- **deps:** update uds common support dependencies
([#&#8203;250](https://redirect.github.com/defenseunicorns/uds-common/issues/250))
([c828932](https://redirect.github.com/defenseunicorns/uds-common/commit/c82893264fffadfd0d84ca239a9459e6e55b9635))
- **docs:** restructure and introduce metadata guidelines
([#&#8203;266](https://redirect.github.com/defenseunicorns/uds-common/issues/266))
([6828f10](https://redirect.github.com/defenseunicorns/uds-common/commit/6828f10932a65d5fbbaf5994e2c23ddd1cd27255))
- refactor and improve badge verification task
([#&#8203;249](https://redirect.github.com/defenseunicorns/uds-common/issues/249))
([82e63be](https://redirect.github.com/defenseunicorns/uds-common/commit/82e63be82766a2e550a847af904b2d738c9d3478))
- update practices around maintaining the UDS Common framework
([#&#8203;253](https://redirect.github.com/defenseunicorns/uds-common/issues/253))
([a733122](https://redirect.github.com/defenseunicorns/uds-common/commit/a7331224f153532361d32d0b02de6cbe7361ffe3))
- update the codeowners for the repo
([#&#8203;264](https://redirect.github.com/defenseunicorns/uds-common/issues/264))
([6359020](https://redirect.github.com/defenseunicorns/uds-common/commit/6359020fa85b88f3360d0813f3da1d5e1f51134c))
- **deps:** update uds common support dependencies
([#&#8203;278](https://redirect.github.com/defenseunicorns/uds-common/issues/278))
([e71432f](https://redirect.github.com/defenseunicorns/uds-common/commit/e71432f261fa03b60c7bf5845e749476390e104b))

</details>

<details>
<summary>defenseunicorns/zarf (defenseunicorns/zarf)</summary>

###
[`v0.42.0`](https://redirect.github.com/zarf-dev/zarf/releases/tag/v0.42.0)

[Compare
Source](https://redirect.github.com/defenseunicorns/zarf/compare/v0.41.0...v0.42.0)

#### What's Changed

- chore(deps): bump github/codeql-action from 3.26.10 to 3.26.11 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3070](https://redirect.github.com/zarf-dev/zarf/pull/3070)
- chore(deps): bump github.com/sigstore/cosign/v2 from 2.4.0 to 2.4.1 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3072](https://redirect.github.com/zarf-dev/zarf/pull/3072)
- feat!: remove component webhooks by
[@&#8203;AustinAbro321](https://redirect.github.com/AustinAbro321) in
[https://github.com/zarf-dev/zarf/pull/3066](https://redirect.github.com/zarf-dev/zarf/pull/3066)
- chore(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3069](https://redirect.github.com/zarf-dev/zarf/pull/3069)
- chore(deps): bump actions/upload-artifact from 4.4.0 to 4.4.1 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3080](https://redirect.github.com/zarf-dev/zarf/pull/3080)
- chore(deps): bump github/codeql-action from 3.26.11 to 3.26.12 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3078](https://redirect.github.com/zarf-dev/zarf/pull/3078)
- chore(deps): bump actions/checkout from 4.2.0 to 4.2.1 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3079](https://redirect.github.com/zarf-dev/zarf/pull/3079)
- chore(deps): bump golang.org/x/crypto from 0.27.0 to 0.28.0 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3076](https://redirect.github.com/zarf-dev/zarf/pull/3076)
- chore(deps): bump github.com/moby/moby from 24.0.9+incompatible to
27.3.1+incompatible by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3018](https://redirect.github.com/zarf-dev/zarf/pull/3018)
- chore(deps): bump github.com/fairwindsops/pluto/v5 from 5.18.4 to
5.20.3 by [@&#8203;dependabot](https://redirect.github.com/dependabot)
in
[https://github.com/zarf-dev/zarf/pull/3073](https://redirect.github.com/zarf-dev/zarf/pull/3073)
- refactor: skeleton creator by
[@&#8203;phillebaba](https://redirect.github.com/phillebaba) in
[https://github.com/zarf-dev/zarf/pull/3042](https://redirect.github.com/zarf-dev/zarf/pull/3042)
- chore(deps): bump actions/upload-artifact from 4.4.1 to 4.4.2 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3084](https://redirect.github.com/zarf-dev/zarf/pull/3084)
- chore(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/aws
from 1.8.8 to 1.8.9 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3083](https://redirect.github.com/zarf-dev/zarf/pull/3083)
- feat: wait using kstatus by
[@&#8203;AustinAbro321](https://redirect.github.com/AustinAbro321) in
[https://github.com/zarf-dev/zarf/pull/3043](https://redirect.github.com/zarf-dev/zarf/pull/3043)
- chore(deps): bump github.com/anchore/syft from 1.12.2 to 1.14.0 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3077](https://redirect.github.com/zarf-dev/zarf/pull/3077)
- fix: update style-guide.mdx by
[@&#8203;schristoff](https://redirect.github.com/schristoff) in
[https://github.com/zarf-dev/zarf/pull/3086](https://redirect.github.com/zarf-dev/zarf/pull/3086)
- chore(deps): bump actions/upload-artifact from 4.4.2 to 4.4.3 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3088](https://redirect.github.com/zarf-dev/zarf/pull/3088)
- chore(deps): bump helm.sh/helm/v3 from 3.16.1 to 3.16.2 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3089](https://redirect.github.com/zarf-dev/zarf/pull/3089)
- chore(deps): bump github/codeql-action from 3.26.12 to 3.26.13 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3096](https://redirect.github.com/zarf-dev/zarf/pull/3096)
- fix: remove Go action and use Go cache for Windows by
[@&#8203;phillebaba](https://redirect.github.com/phillebaba) in
[https://github.com/zarf-dev/zarf/pull/3097](https://redirect.github.com/zarf-dev/zarf/pull/3097)
- chore(deps): bump actions/setup-go from 5.0.0 to 5.0.2 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3102](https://redirect.github.com/zarf-dev/zarf/pull/3102)
- Test checksums from package create by
[@&#8203;phillebaba](https://redirect.github.com/phillebaba) in
[https://github.com/zarf-dev/zarf/pull/3099](https://redirect.github.com/zarf-dev/zarf/pull/3099)
- chore: remove cluster wait from packages and examples by
[@&#8203;AustinAbro321](https://redirect.github.com/AustinAbro321) in
[https://github.com/zarf-dev/zarf/pull/3061](https://redirect.github.com/zarf-dev/zarf/pull/3061)
- feat: remove progressbar on image push by
[@&#8203;AustinAbro321](https://redirect.github.com/AustinAbro321) in
[https://github.com/zarf-dev/zarf/pull/3110](https://redirect.github.com/zarf-dev/zarf/pull/3110)
- feat: move pkg oci to Zarf and log during health checks by
[@&#8203;AustinAbro321](https://redirect.github.com/AustinAbro321) in
[https://github.com/zarf-dev/zarf/pull/3106](https://redirect.github.com/zarf-dev/zarf/pull/3106)
- docs: fix links for zarf-injector and zarf-seed-registry by
[@&#8203;waveywaves](https://redirect.github.com/waveywaves) in
[https://github.com/zarf-dev/zarf/pull/3093](https://redirect.github.com/zarf-dev/zarf/pull/3093)
- feat: make zarf-registry and zarf-injector pods comply with offical
restricted pod security standard by
[@&#8203;Miaoxiang-philips](https://redirect.github.com/Miaoxiang-philips)
in
[https://github.com/zarf-dev/zarf/pull/3092](https://redirect.github.com/zarf-dev/zarf/pull/3092)
- chore(deps): bump actions/setup-go from 5.0.0 to 5.0.2 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3112](https://redirect.github.com/zarf-dev/zarf/pull/3112)
- feat: add logger package and tests by
[@&#8203;mkcp](https://redirect.github.com/mkcp) in
[https://github.com/zarf-dev/zarf/pull/3108](https://redirect.github.com/zarf-dev/zarf/pull/3108)
- Fix release by removing package delete by
[@&#8203;phillebaba](https://redirect.github.com/phillebaba) in
[https://github.com/zarf-dev/zarf/pull/3117](https://redirect.github.com/zarf-dev/zarf/pull/3117)

#### New Contributors

-
[@&#8203;Miaoxiang-philips](https://redirect.github.com/Miaoxiang-philips)
made their first contribution in
[https://github.com/zarf-dev/zarf/pull/3092](https://redirect.github.com/zarf-dev/zarf/pull/3092)

**Full Changelog**:
https://github.com/zarf-dev/zarf/compare/v0.41.0...v0.42.0

###
[`v0.41.0`](https://redirect.github.com/zarf-dev/zarf/releases/tag/v0.41.0)

[Compare
Source](https://redirect.github.com/defenseunicorns/zarf/compare/v0.40.1...v0.41.0)

#### What's Changed

- chore(deps): bump github/codeql-action from 3.26.7 to 3.26.8 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3013](https://redirect.github.com/zarf-dev/zarf/pull/3013)
- chore(deps): bump actions/setup-node from 4.0.3 to 4.0.4 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3014](https://redirect.github.com/zarf-dev/zarf/pull/3014)
- chore: workflow to check that go mod tidy is run by
[@&#8203;AustinAbro321](https://redirect.github.com/AustinAbro321) in
[https://github.com/zarf-dev/zarf/pull/2963](https://redirect.github.com/zarf-dev/zarf/pull/2963)
- fix: health checks issue when crds don't exist prior to package
deploys by
[@&#8203;AustinAbro321](https://redirect.github.com/AustinAbro321) in
[https://github.com/zarf-dev/zarf/pull/3011](https://redirect.github.com/zarf-dev/zarf/pull/3011)
- refactor: remove by
[@&#8203;phillebaba](https://redirect.github.com/phillebaba) in
[https://github.com/zarf-dev/zarf/pull/3008](https://redirect.github.com/zarf-dev/zarf/pull/3008)
- fix: modify the wait condition according to return values from earlier
method call by [@&#8203;soltysh](https://redirect.github.com/soltysh) in
[https://github.com/zarf-dev/zarf/pull/3020](https://redirect.github.com/zarf-dev/zarf/pull/3020)
- refactor: packager inspect command by
[@&#8203;schristoff](https://redirect.github.com/schristoff) in
[https://github.com/zarf-dev/zarf/pull/2990](https://redirect.github.com/zarf-dev/zarf/pull/2990)
- refactor: update syft to v1 by
[@&#8203;AustinAbro321](https://redirect.github.com/AustinAbro321) in
[https://github.com/zarf-dev/zarf/pull/3021](https://redirect.github.com/zarf-dev/zarf/pull/3021)
- chore(deps): bump k8s.io/component-base from 0.30.3 to 0.31.1 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/2995](https://redirect.github.com/zarf-dev/zarf/pull/2995)
- chore(deps): bump github.com/agnivade/levenshtein from 1.1.1 to 1.2.0
by [@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3027](https://redirect.github.com/zarf-dev/zarf/pull/3027)
- chore(deps): bump k8s.io/kubectl from 0.30.3 to 0.31.1 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3028](https://redirect.github.com/zarf-dev/zarf/pull/3028)
- chore(deps): bump github/codeql-action from 3.26.8 to 3.26.9 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3025](https://redirect.github.com/zarf-dev/zarf/pull/3025)
- fix: nightly by removing logline no longer printed by
[@&#8203;schristoff](https://redirect.github.com/schristoff) in
[https://github.com/zarf-dev/zarf/pull/3038](https://redirect.github.com/zarf-dev/zarf/pull/3038)
- feat: pass context to helm install & upgrade by
[@&#8203;AustinAbro321](https://redirect.github.com/AustinAbro321) in
[https://github.com/zarf-dev/zarf/pull/3031](https://redirect.github.com/zarf-dev/zarf/pull/3031)
- chore(deps): bump actions/checkout from 4.1.7 to 4.2.0 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3035](https://redirect.github.com/zarf-dev/zarf/pull/3035)
- test: fix external git flake by
[@&#8203;AustinAbro321](https://redirect.github.com/AustinAbro321) in
[https://github.com/zarf-dev/zarf/pull/3039](https://redirect.github.com/zarf-dev/zarf/pull/3039)
- chore(deps): bump github.com/fluxcd/pkg/apis/meta from 1.5.0 to 1.6.1
by [@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3034](https://redirect.github.com/zarf-dev/zarf/pull/3034)
- chore: resolve cosign cves by
[@&#8203;AustinAbro321](https://redirect.github.com/AustinAbro321) in
[https://github.com/zarf-dev/zarf/pull/3029](https://redirect.github.com/zarf-dev/zarf/pull/3029)
- fix: nightly ecr test by
[@&#8203;schristoff](https://redirect.github.com/schristoff) in
[https://github.com/zarf-dev/zarf/pull/3041](https://redirect.github.com/zarf-dev/zarf/pull/3041)
- chore(deps): bump helm.sh/helm/v3 from 3.15.3 to 3.16.1 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3026](https://redirect.github.com/zarf-dev/zarf/pull/3026)
- chore(deps): bump github.com/prometheus/client_golang from 1.18.0 to
1.20.4 by [@&#8203;dependabot](https://redirect.github.com/dependabot)
in
[https://github.com/zarf-dev/zarf/pull/3007](https://redirect.github.com/zarf-dev/zarf/pull/3007)
- chore: cleanup errchecking in tests by
[@&#8203;mkcp](https://redirect.github.com/mkcp) in
[https://github.com/zarf-dev/zarf/pull/3040](https://redirect.github.com/zarf-dev/zarf/pull/3040)
- chore(deps): bump github.com/gofrs/flock from 0.8.1 to 0.12.1 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3033](https://redirect.github.com/zarf-dev/zarf/pull/3033)
- chore(deps): bump
github.com/sigstore/sigstore/pkg/signature/kms/hashivault from 1.8.8 to
1.8.9 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3049](https://redirect.github.com/zarf-dev/zarf/pull/3049)
- chore(deps): bump github/codeql-action from 3.26.9 to 3.26.10 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3047](https://redirect.github.com/zarf-dev/zarf/pull/3047)
- chore(deps): bump github.com/fluxcd/helm-controller/api from 1.0.1 to
1.1.0 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3045](https://redirect.github.com/zarf-dev/zarf/pull/3045)
- chore(deps): bump github.com/defenseunicorns/pkg/oci from 1.0.1 to
1.0.2 by [@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3048](https://redirect.github.com/zarf-dev/zarf/pull/3048)
- chore(deps): bump github.com/fluxcd/source-controller/api from 1.3.0
to 1.4.1 by [@&#8203;dependabot](https://redirect.github.com/dependabot)
in
[https://github.com/zarf-dev/zarf/pull/3050](https://redirect.github.com/zarf-dev/zarf/pull/3050)
- refactor: layout by
[@&#8203;phillebaba](https://redirect.github.com/phillebaba) in
[https://github.com/zarf-dev/zarf/pull/3022](https://redirect.github.com/zarf-dev/zarf/pull/3022)
- chore(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/azure
from 1.8.8 to 1.8.9 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3057](https://redirect.github.com/zarf-dev/zarf/pull/3057)
- chore(deps): bump codecov/codecov-action from 4.5.0 to 4.6.0 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3058](https://redirect.github.com/zarf-dev/zarf/pull/3058)
- feat!: remove big bang extension by
[@&#8203;AustinAbro321](https://redirect.github.com/AustinAbro321) in
[https://github.com/zarf-dev/zarf/pull/3059](https://redirect.github.com/zarf-dev/zarf/pull/3059)
- chore: directly handle ignored errs and nolint intentionally ignored
errs by [@&#8203;mkcp](https://redirect.github.com/mkcp) in
[https://github.com/zarf-dev/zarf/pull/2993](https://redirect.github.com/zarf-dev/zarf/pull/2993)
- chore(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/gcp
from 1.8.8 to 1.8.9 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3062](https://redirect.github.com/zarf-dev/zarf/pull/3062)
- chore(deps): bump sigs.k8s.io/cli-utils from 0.36.0 to 0.37.2 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3055](https://redirect.github.com/zarf-dev/zarf/pull/3055)
- chore: update flux example, tests, and docs to address upstream fix by
[@&#8203;AustinAbro321](https://redirect.github.com/AustinAbro321) in
[https://github.com/zarf-dev/zarf/pull/3052](https://redirect.github.com/zarf-dev/zarf/pull/3052)
- chore(deps): bump github.com/distribution/distribution/v3 from
3.0.0-alpha.1 to 3.0.0-beta.1 by
[@&#8203;dependabot](https://redirect.github.com/dependabot) in
[https://github.com/zarf-dev/zarf/pull/3054](https://redirect.github.com/zarf-dev/zarf/pull/3054)
- docs: remove docs for deprecated Zarf UI by
[@&#8203;AustinAbro321](https://redirect.github.com/AustinAbro321) in
[https://github.com/zarf-dev/zarf/pull/3060](https://redirect.github.com/zarf-dev/zarf/pull/3060)
- feat: add linter (2949) by
[@&#8203;mkcp](https://redirect.github.com/mkcp) in
[https://github.com/zarf-dev/zarf/pull/3053](https://redirect.github.com/zarf-dev/zarf/pull/3053)

#### New Contributors

- [@&#8203;soltysh](https://redirect.github.com/soltysh) made their
first contribution in
[https://github.com/zarf-dev/zarf/pull/3020](https://redirect.github.com/zarf-dev/zarf/pull/3020)

**Full Changelog**:
https://github.com/zarf-dev/zarf/compare/v0.40.1...v0.41.0

</details>

<details>
<summary>github/codeql-action (github/codeql-action)</summary>

###
[`v3.26.13`](https://redirect.github.com/github/codeql-action/compare/v3.26.12...v3.26.13)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.12...v3.26.13)

###
[`v3.26.12`](https://redirect.github.com/github/codeql-action/compare/v3.26.11...v3.26.12)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.11...v3.26.12)

###
[`v3.26.11`](https://redirect.github.com/github/codeql-action/compare/v3.26.10...v3.26.11)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.10...v3.26.11)

###
[`v3.26.10`](https://redirect.github.com/github/codeql-action/compare/v3.26.9...v3.26.10)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.9...v3.26.10)

###
[`v3.26.9`](https://redirect.github.com/github/codeql-action/compare/v3.26.8...v3.26.9)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.26.8...v3.26.9)

</details>

<details>
<summary>pre-commit/pre-commit-hooks
(pre-commit/pre-commit-hooks)</summary>

###
[`v5.0.0`](https://redirect.github.com/pre-commit/pre-commit-hooks/releases/tag/v5.0.0):
pre-commit-hooks v5.0.0

[Compare
Source](https://redirect.github.com/pre-commit/pre-commit-hooks/compare/v4.6.0...v5.0.0)

##### Features

-   `requirements-txt-fixer`: also remove `pkg_resources==...`.
-
[#&#8203;850](https://redirect.github.com/pre-commit/pre-commit-hooks/issues/850)
PR by
[@&#8203;ericfrederich](https://redirect.github.com/ericfrederich).
-
[#&#8203;1030](https://redirect.github.com/pre-commit/pre-commit-hooks/issues/1030)
issue by
[@&#8203;ericfrederich](https://redirect.github.com/ericfrederich).
-   `check-illegal-windows-names`: new hook!
-
[#&#8203;1044](https://redirect.github.com/pre-commit/pre-commit-hooks/issues/1044)
PR by
[@&#8203;ericfrederich](https://redirect.github.com/ericfrederich).
-
[#&#8203;589](https://redirect.github.com/pre-commit/pre-commit-hooks/issues/589)
issue by
[@&#8203;ericfrederich](https://redirect.github.com/ericfrederich).
-
[#&#8203;1049](https://redirect.github.com/pre-commit/pre-commit-hooks/issues/1049)
PR by [@&#8203;Jeffrey-Lim](https://redirect.github.com/Jeffrey-Lim).
- `pretty-format-json`: continue processing even if a file has a json
error.
-
[#&#8203;1039](https://redirect.github.com/pre-commit/pre-commit-hooks/issues/1039)
PR by [@&#8203;amarvin](https://redirect.github.com/amarvin).
-
[#&#8203;1038](https://redirect.github.com/pre-commit/pre-commit-hooks/issues/1038)
issue by [@&#8203;amarvin](https://redirect.github.com/amarvin).

##### Fixes

- `destroyed-symlinks`: set `stages` to `[pre-commit, pre-push, manual]`
- PR
[#&#8203;1085](https://redirect.github.com/pre-commit/pre-commit-hooks/issues/1085)
by [@&#8203;AdrianDC](https://redirect.github.com/AdrianDC).

##### Migrating

-   pre-commit-hooks now requires `pre-commit>=3.2.0`.
-   use non-deprecated names for `stages`.
-
[#&#8203;1093](https://redirect.github.com/pre-commit/pre-commit-hooks/issues/1093)
PR by [@&#8203;asottile](https://redirect.github.com/asottile).

</details>

<details>
<summary>python-jsonschema/check-jsonschema
(python-jsonschema/check-jsonschema)</summary>

###
[`v0.29.4`](https://redirect.github.com/python-jsonschema/check-jsonschema/blob/HEAD/CHANGELOG.rst#0294)

[Compare
Source](https://redirect.github.com/python-jsonschema/check-jsonschema/compare/0.29.3...0.29.4)

- Update vendored schemas: azure-pipelines, github-workflows, gitlab-ci,
    mergify, renovate (2024-10-06)
- Fix the renovate hook to allow for `.renovaterc.json5` as well. Thanks
    :user:`tpansino`! (:pr:`491`)
- Add Mergify schema and pre-commit hook. Thanks :user:`hofbi` and
:user:`jd`
    for the issue and feedback! (:issue:`487`)

###
[`v0.29.3`](https://redirect.github.com/python-jsonschema/check-jsonschema/blob/HEAD/CHANGELOG.rst#0293)

[Compare
Source](https://redirect.github.com/python-jsonschema/check-jsonschema/compare/0.29.2...0.29.3)

- Update vendored schemas: buildkite, circle-ci, dependabot, gitlab-ci,
    renovate, taskfile, woodpecker-ci (2024-09-29)

</details>

<details>
<summary>renovatebot/pre-commit-hooks
(renovatebot/pre-commit-hooks)</summary>

###
[`v38.128.6`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.128.6)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.128.3...38.128.6)

See https://github.com/renovatebot/renovate/releases/tag/38.128.6 for
more changes

###
[`v38.128.3`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.128.3)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.128.2...38.128.3)

See https://github.com/renovatebot/renovate/releases/tag/38.128.3 for
more changes

###
[`v38.128.2`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.128.2)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.128.1...38.128.2)

See https://github.com/renovatebot/renovate/releases/tag/38.128.2 for
more changes

###
[`v38.128.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.128.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.127.4...38.128.1)

See https://github.com/renovatebot/renovate/releases/tag/38.128.1 for
more changes

###
[`v38.127.4`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.127.4)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.127.3...38.127.4)

See https://github.com/renovatebot/renovate/releases/tag/38.127.4 for
more changes

###
[`v38.127.3`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.127.3)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.127.2...38.127.3)

See https://github.com/renovatebot/renovate/releases/tag/38.127.3 for
more changes

###
[`v38.127.2`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.127.2)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.127.1...38.127.2)

See https://github.com/renovatebot/renovate/releases/tag/38.127.2 for
more changes

###
[`v38.127.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.127.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.127.0...38.127.1)

See https://github.com/renovatebot/renovate/releases/tag/38.127.1 for
more changes

###
[`v38.127.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.127.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.126.2...38.127.0)

See https://github.com/renovatebot/renovate/releases/tag/38.127.0 for
more changes

###
[`v38.126.2`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.126.2)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.126.1...38.126.2)

See https://github.com/renovatebot/renovate/releases/tag/38.126.2 for
more changes

###
[`v38.126.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.126.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.125.0...38.126.1)

See https://github.com/renovatebot/renovate/releases/tag/38.126.1 for
more changes

###
[`v38.125.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.125.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.124.3...38.125.0)

See https://github.com/renovatebot/renovate/releases/tag/38.125.0 for
more changes

###
[`v38.124.3`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.124.3)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.124.2...38.124.3)

See https://github.com/renovatebot/renovate/releases/tag/38.124.3 for
more changes

###
[`v38.124.2`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.124.2)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.124.1...38.124.2)

See https://github.com/renovatebot/renovate/releases/tag/38.124.2 for
more changes

###
[`v38.124.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.124.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.124.0...38.124.1)

See https://github.com/renovatebot/renovate/releases/tag/38.124.1 for
more changes

###
[`v38.124.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.124.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.123.0...38.124.0)

See https://github.com/renovatebot/renovate/releases/tag/38.124.0 for
more changes

###
[`v38.123.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.123.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.122.0...38.123.0)

See https://github.com/renovatebot/renovate/releases/tag/38.123.0 for
more changes

###
[`v38.122.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.122.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.121.0...38.122.0)

See https://github.com/renovatebot/renovate/releases/tag/38.122.0 for
more changes

###
[`v38.121.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.121.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.120.1...38.121.0)

See https://github.com/renovatebot/renovate/releases/tag/38.121.0 for
more changes

###
[`v38.120.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.120.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.120.0...38.120.1)

See https://github.com/renovatebot/renovate/releases/tag/38.120.1 for
more changes

###
[`v38.120.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.120.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.119.0...38.120.0)

See https://github.com/renovatebot/renovate/releases/tag/38.120.0 for
more changes

###
[`v38.119.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.119.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.118.0...38.119.0)

See https://github.com/renovatebot/renovate/releases/tag/38.119.0 for
more changes

###
[`v38.118.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.118.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.117.1...38.118.0)

See https://github.com/renovatebot/renovate/releases/tag/38.118.0 for
more changes

###
[`v38.117.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.117.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.116.0...38.117.1)

See https://github.com/renovatebot/renovate/releases/tag/38.117.1 for
more changes

###
[`v38.116.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.116.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.115.1...38.116.0)

See https://github.com/renovatebot/renovate/releases/tag/38.116.0 for
more changes

###
[`v38.115.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.115.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.115.0...38.115.1)

See https://github.com/renovatebot/renovate/releases/tag/38.115.1 for
more changes

###
[`v38.115.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.115.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.114.0...38.115.0)

See https://github.com/renovatebot/renovate/releases/tag/38.115.0 for
more changes

###
[`v38.114.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.114.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.112.0...38.114.0)

See https://github.com/renovatebot/renovate/releases/tag/38.114.0 for
more changes

###
[`v38.112.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.112.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.111.0...38.112.0)

See https://github.com/renovatebot/renovate/releases/tag/38.112.0 for
more changes

###
[`v38.111.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.111.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.110.5...38.111.0)

See https://github.com/renovatebot/renovate/releases/tag/38.111.0 for
more changes

###
[`v38.110.5`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.110.5)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.110.4...38.110.5)

See https://github.com/renovatebot/renovate/releases/tag/38.110.5 for
more changes

###
[`v38.110.4`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.110.4)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.110.3...38.110.4)

See https://github.com/renovatebot/renovate/releases/tag/38.110.4 for
more changes

###
[`v38.110.3`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.110.3)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.110.2...38.110.3)

See https://github.com/renovatebot/renovate/releases/tag/38.110.3 for
more changes

###
[`v38.110.2`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.110.2)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.110.1...38.110.2)

See https://github.com/renovatebot/renovate/releases/tag/38.110.2 for
more changes

###
[`v38.110.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.110.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.109.0...38.110.1)

See https://github.com/renovatebot/renovate/releases/tag/38.110.1 for
more changes

###
[`v38.109.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.109.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.108.0...38.109.0)

See https://github.com/renovatebot/renovate/releases/tag/38.109.0 for
more changes

###
[`v38.108.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.108.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.107.1...38.108.0)

See https://github.com/renovatebot/renovate/releases/tag/38.108.0 for
more changes

###
[`v38.107.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.107.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.107.0...38.107.1)

See https://github.com/renovatebot/renovate/releases/tag/38.107.1 for
more changes

###
[`v38.107.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.107.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.106.4...38.107.0)

See https://github.com/renovatebot/renovate/releases/tag/38.107.0 for
more changes

###
[`v38.106.4`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.106.4)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.106.3...38.106.4)

See https://github.com/renovatebot/renovate/releases/tag/38.106.4 for
more changes

###
[`v38.106.3`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.106.3)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.106.2...38.106.3)

See https://github.com/renovatebot/renovate/releases/tag/38.106.3 for
more changes

###
[`v38.106.2`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.106.2)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.106.1...38.106.2)

See https://github.com/renovatebot/renovate/releases/tag/38.106.2 for
more changes

###
[`v38.106.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.106.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.106.0...38.106.1)

See https://github.com/renovatebot/renovate/releases/tag/38.106.1 for
more changes

###
[`v38.106.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.106.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.105.0...38.106.0)

See https://github.com/renovatebot/renovate/releases/tag/38.106.0 for
more changes

###
[`v38.105.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.105.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.103.1...38.105.0)

See https://github.com/renovatebot/renovate/releases/tag/38.105.0 for
more changes

###
[`v38.103.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.103.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.101.1...38.103.1)

See https://github.com/renovatebot/renovate/releases/tag/38.103.1 for
more changes

###
[`v38.101.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.101.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.101.0...38.101.1)

See https://github.com/renovatebot/renovate/releases/tag/38.101.1 for
more changes

###
[`v38.101.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.101.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.100.1...38.101.0)

See https://github.com/renovatebot/renovate/releases/tag/38.101.0 for
more changes

###
[`v38.100.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.100.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.100.0...38.100.1)

See https://github.com/renovatebot/renovate/releases/tag/38.100.1 for
more changes

###
[`v38.100.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.100.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.98.0...38.100.0)

See https://github.com/renovatebot/renovate/releases/tag/38.100.0 for
more changes

###
[`v38.98.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.98.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.97.1...38.98.0)

See https://github.com/renovatebot/renovate/releases/tag/38.98.0 for
more changes

###
[`v38.97.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.97.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.97.0...38.97.1)

See https://github.com/renovatebot/renovate/releases/tag/38.97.1 for
more changes

###
[`v38.97.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.97.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.96.1...38.97.0)

See https://github.com/renovatebot/renovate/releases/tag/38.97.0 for
more changes

###
[`v38.96.1`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.96.1)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.96.0...38.96.1)

See https://github.com/renovatebot/renovate/releases/tag/38.96.1 for
more changes

###
[`v38.96.0`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.96.0)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.95.4...38.96.0)

See https://github.com/renovatebot/renovate/releases/tag/38.96.0 for
more changes

###
[`v38.95.4`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.95.4)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.95.3...38.95.4)

See https://github.com/renovatebot/renovate/releases/tag/38.95.4 for
more changes

###
[`v38.95.3`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.95.3)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.94.3...38.95.3)

See https://github.com/renovatebot/renovate/releases/tag/38.95.3 for
more changes

###
[`v38.94.3`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.94.3)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.94.2...38.94.3)

See https://github.com/renovatebot/renovate/releases/tag/38.94.3 for
more changes

###
[`v38.94.2`](https://redirect.github.com/renovatebot/pre-commit-hooks/releases/tag/38.94.2)

[Compare
Source](https://redirect.github.com/renovatebot/pre-commit-hooks/compare/38.94.1...38.94.2)

See https://github.com/renovatebot/renovate/releases/tag/38.94.2 for
more changes

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "after 7am and before 9am every
weekday" in timezone America/New_York, Automerge - At any time (no
schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config
help](https://redirect.github.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR was generated by [Mend Renovate](https://mend.io/renovate/).
View the [repository job
log](https://developer.mend.io/github/defenseunicorns/uds-package-gitlab).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC44MC4wIiwidXBkYXRlZEluVmVyIjoiMzguMTIwLjEiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbInN1cHBvcnQtZGVwcyJdfQ==-->

---------

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Wayne Starr <[email protected]>
  • Loading branch information
renovate[bot] and Racer159 authored Oct 22, 2024
1 parent d086202 commit 979b39f
Show file tree
Hide file tree
Showing 61 changed files with 1,088 additions and 622 deletions.
21 changes: 11 additions & 10 deletions .github/workflows/ci-docs-shim.yaml
Original file line number Diff line number Diff line change
@@ -1,20 +1,21 @@
name: CI Docs Shim
# Copyright 2024 Defense Unicorns
# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial

name: CI Doc Shim

on:
pull_request:
branches: [main]
types: [milestoned, opened, synchronize]

jobs:
run-test:
name: ${{ matrix.type }} ${{ matrix.flavor }}
runs-on: "ubuntu-latest"
timeout-minutes: 20
validate:
strategy:
matrix:
flavor: [upstream, registry1]
type: [install, upgrade]
steps:
- name: Shim for ${{ matrix.type }} ${{ matrix.flavor }}
run: |
echo "Documentation-only change detected; marking ${{ matrix.type }} ${{ matrix.flavor }} as successful."
flavor: [upstream, registry1]
uses: defenseunicorns/uds-common/.github/workflows/callable-ci-docs-shim.yaml@c52077c870a576d01f169f96d74d1b393c6488ba # v1.1.2
with:
flavor: ${{ matrix.flavor }}
type: ${{ matrix.type }}
secrets: inherit # Inherits all secrets from the parent workflow.
12 changes: 5 additions & 7 deletions .github/workflows/commitlint.yaml
Original file line number Diff line number Diff line change
@@ -1,15 +1,13 @@
name: Metadata
# Copyright 2024 Defense Unicorns
# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial

name: PR Title Check

on:
# This workflow is triggered on pull requests to the main branch.
pull_request:
branches: [main]
types: [milestoned, opened, edited, synchronize]

# This allows other repositories to call this workflow in a reusable way
workflow_call:

jobs:
validate:
name: Validate
uses: defenseunicorns/uds-common/.github/workflows/commitlint.yaml@e3008473beab00b12a94f9fcc7340124338d5c08 # v0.13.1
uses: defenseunicorns/uds-common/.github/workflows/callable-commitlint.yaml@c52077c870a576d01f169f96d74d1b393c6488ba # v1.1.2
36 changes: 8 additions & 28 deletions .github/workflows/lint.yaml
Original file line number Diff line number Diff line change
@@ -1,35 +1,15 @@
name: Scan
# Copyright 2024 Defense Unicorns
# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial

name: Lint

on:
# This workflow is triggered on pull requests to the main branch.
pull_request:
branches: [main]
types: [milestoned, opened, synchronize]
# milestoned is added here as a workaround for release-please not triggering PR workflows (PRs should be added to a milestone to trigger the workflow).
types: [milestoned, opened, reopened, synchronize]

jobs:
validate:
runs-on: ubuntu-latest
name: Lint
permissions:
contents: read # Allows reading the repo contents

steps:
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
with:
fetch-depth: 0

- name: Environment setup
uses: defenseunicorns/uds-common/.github/actions/setup@e3008473beab00b12a94f9fcc7340124338d5c08 # v0.13.1
with:
registry1Username: ${{ secrets.IRON_BANK_ROBOT_USERNAME }}
registry1Password: ${{ secrets.IRON_BANK_ROBOT_PASSWORD }}
ghToken: ${{ secrets.GITHUB_TOKEN }}

- name: Install lint deps
run: |
uds run lint:deps --no-progress
- name: Lint the repository
run: |
uds run lint:yaml --no-progress
uses: defenseunicorns/uds-common/.github/workflows/callable-lint.yaml@c52077c870a576d01f169f96d74d1b393c6488ba # v1.1.2
secrets: inherit
49 changes: 49 additions & 0 deletions .github/workflows/release.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,49 @@
# Copyright 2024 Defense Unicorns
# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial

name: Release

on:
push:
branches:
- main

# Permissions for the GITHUB_TOKEN used by the workflow.
permissions:
contents: read # Allows reading the content of the repository.
packages: read # Allows reading the content of the repository's packages.
id-token: write

jobs:
tag-new-version:
permissions: write-all
runs-on: ubuntu-latest
outputs:
release_created: ${{ steps.release-flag.outputs.release_created }}
steps:
- name: Create Release Tag
id: tag
uses: googleapis/release-please-action@7987652d64b4581673a76e33ad5e98e3dd56832f # v4.1.3
- id: release-flag
run: echo "release_created=${{ steps.tag.outputs.release_created || false }}" >> "$GITHUB_OUTPUT"

publish:
permissions:
contents: read # Allows reading the content of the repository.
packages: write # Allows reading the content of the repository's packages.
id-token: write
needs: tag-new-version
if: ${{ needs.tag-new-version.outputs.release_created == 'true' }}
strategy:
matrix:
flavor: [upstream, registry1]
architecture: [amd64, arm64]
exclude:
- flavor: registry1
architecture: arm64
uses: defenseunicorns/uds-common/.github/workflows/callable-publish.yaml@c52077c870a576d01f169f96d74d1b393c6488ba # v1.1.2
with:
flavor: ${{ matrix.flavor }}
runsOn: ${{ matrix.architecture == 'arm64' && 'uds-swf-ubuntu-arm64-4-core' || 'uds-swf-ubuntu-big-boy-8-core' }}
timeout: 60
secrets: inherit # Inherits all secrets from the parent workflow.
50 changes: 18 additions & 32 deletions .github/workflows/scorecard.yaml
Original file line number Diff line number Diff line change
@@ -1,3 +1,6 @@
# Copyright 2024 Defense Unicorns
# SPDX-License-Identifier: AGPL-3.0-or-later OR LicenseRef-Defense-Unicorns-Commercial

name: Scorecards supply-chain security
on:
# Only the default branch is supported.
Expand All @@ -11,40 +14,23 @@ on:
permissions: read-all

jobs:
analysis:
name: Scorecards analysis
runs-on: ubuntu-latest
validate:
permissions:
actions: read
attestations: read
checks: read
contents: read
deployments: read
discussions: read
issues: read
packages: read
pages: read
pull-requests: read
repository-projects: read
statuses: read
# Needed to upload the results to code-scanning dashboard.
security-events: write
# Used to receive a badge.
id-token: write

steps:
- name: "Checkout code"
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
with:
persist-credentials: false

- name: "Run analysis"
uses: ossf/scorecard-action@62b2cac7ed8198b15735ed49ab1e5cf35480ba46 # v2.4.0
with:
results_file: results.sarif
results_format: sarif
repo_token: ${{ secrets.SCORECARD_READ_TOKEN }}
publish_results: true

# Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
# format to the repository Actions tab.
- name: "Upload artifact"
uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0
with:
name: SARIF file
path: results.sarif
retention-days: 5

# Upload the results to GitHub's code scanning dashboard.
- name: "Upload to code-scanning"
uses: github/codeql-action/upload-sarif@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8
with:
sarif_file: results.sarif
uses: defenseunicorns/uds-common/.github/workflows/callable-scorecard.yaml@c52077c870a576d01f169f96d74d1b393c6488ba # v1.1.2
secrets: inherit
76 changes: 0 additions & 76 deletions .github/workflows/tag-and-release.yaml

This file was deleted.

Loading

0 comments on commit 979b39f

Please sign in to comment.