Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): bump org.apache.maven.plugins:maven-checkstyle-plugin from 3.3.1 to 3.4.0 #1353

Closed
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
chore(deps): bump org.apache.maven.plugins:maven-checkstyle-plugin
Bumps [org.apache.maven.plugins:maven-checkstyle-plugin](https://github.com/apache/maven-checkstyle-plugin) from 3.3.1 to 3.4.0.
- [Commits](apache/maven-checkstyle-plugin@maven-checkstyle-plugin-3.3.1...maven-checkstyle-plugin-3.4.0)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-checkstyle-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
dependabot[bot] authored Aug 7, 2024

Verified

This commit was signed with the committer’s verified signature.
t3chguy Michael Telatynski
commit 3fc5afbf94bc18263a81dd97e4972b731a4af638
2 changes: 1 addition & 1 deletion pom.xml
Original file line number Diff line number Diff line change
@@ -48,7 +48,7 @@ SPDX-License-Identifier: Apache-2.0
<openapi-generator-maven-plugin.version>7.0.1</openapi-generator-maven-plugin.version>
<maven-jxr-plugin.version>3.3.2</maven-jxr-plugin.version>
<ascii-doctor.maven.plugin.version>3.0.0</ascii-doctor.maven.plugin.version>
<checkstyle-plugin.version>3.3.1</checkstyle-plugin.version>
<checkstyle-plugin.version>3.4.0</checkstyle-plugin.version>
<findsecbugs-plugin.version>1.13.0</findsecbugs-plugin.version>
<commons-compress.version>1.26.1</commons-compress.version>
<install-plugin.version>3.1.2</install-plugin.version>

Unchanged files with check annotations Beta

postgres:
image: "postgres:15.4"
volumes:
- postgres-data:/var/lib/postgresql/data

Check warning on line 23 in tx-backend/docker/docker-compose.yml

GitHub Actions / Analyze backend

[INFO] Shared Volumes Between Containers

Volumes shared between containers can cause data corruption or can be used to share malicious files between containers.
- ./db-init:/docker-entrypoint-initdb.d
ports:
- "127.0.0.1:5432:5432"
version: "3.9"
services:
cypress:

Check warning on line 24 in frontend/cypress/docker-compose.yml

GitHub Actions / Analyze frontend

[MEDIUM] Container Capabilities Unrestricted

Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.

Check warning on line 24 in frontend/cypress/docker-compose.yml

GitHub Actions / Analyze frontend

[MEDIUM] Healthcheck Not Set

Check containers periodically to see if they are running properly.
build:
context: ../
dockerfile: cypress/Dockerfile
security_opt:
- label:user:testuser
- no-new-privileges:true
network_mode: host # important to be able to connect to localhost url on host machine

Check warning on line 35 in frontend/cypress/docker-compose.yml

GitHub Actions / Analyze frontend

[MEDIUM] Shared Host Network Namespace

Container should not share the host network namespace
# to comply with KICS requirement:
# [MEDIUM] Memory Not Limited
# Memory limits should be defined for each container. This prevents potential resource exhaustion by ensuring that containers consume not more than the designated amount of memory
version: "3.9"
services:
keycloak:

Check warning on line 24 in frontend/docker-compose.yml

GitHub Actions / Analyze frontend

[MEDIUM] Container Capabilities Unrestricted

Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
image: "quay.io/keycloak/keycloak:18.0.0"
ports:
# Bind explicitly to 127.0.0.1
interval: 5s
timeout: 2s
retries: 15
pid: "host"

Check warning on line 45 in frontend/docker-compose.yml

GitHub Actions / Analyze frontend

[MEDIUM] Host Namespace is Shared

The hosts process namespace should not be shared by containers
deploy:
resources:
limits: