chore(deps): update lycheeverse/lychee-action action to v2

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
lycheeverse/lychee-action	action	major	v1.10.0 -> v2.2.0

---

Release Notes

lycheeverse/lychee-action (lycheeverse/lychee-action)

v2.2.0: Version 2.2.0

Compare Source

What's Changed

• Fix if expressions in GitHub actions by @​YDX-2147483647 in https://github.com/lycheeverse/lychee-action/pull/265
• Update README.md to include continue-on-error: true in action by @​psobolewskiPhD in https://github.com/lycheeverse/lychee-action/pull/267
• Bump default version to latest (0.18.0) by @​trask in https://github.com/lycheeverse/lychee-action/pull/269

New Contributors

• @​psobolewskiPhD made their first contribution in https://github.com/lycheeverse/lychee-action/pull/267
• @​trask made their first contribution in https://github.com/lycheeverse/lychee-action/pull/269

Full Changelog: lycheeverse/lychee-action@v2...v2.2.0

v2.1.0: Version 2.1.0

Compare Source

What's Changed

• Add missing argument failIfEmpty by @​LitoMore in https://github.com/lycheeverse/lychee-action/pull/261
• Fix bugs about the exit code by @​YDX-2147483647 in https://github.com/lycheeverse/lychee-action/pull/262
• Bump lychee version to 0.17.0 by @​mre in https://github.com/lycheeverse/lychee-action/pull/263

New Contributors

• @​LitoMore made their first contribution in https://github.com/lycheeverse/lychee-action/pull/261
• @​YDX-2147483647 made their first contribution in https://github.com/lycheeverse/lychee-action/pull/262

Full Changelog: lycheeverse/lychee-action@v2...v2.1.0

v2.0.2: Version 2.0.2

Compare Source

What's Changed

• Fix a typos by @​szepeviktor in https://github.com/lycheeverse/lychee-action/pull/257
• Document and use correct permissions in the GitHub workflows by @​dscho in https://github.com/lycheeverse/lychee-action/pull/258
• Add security policy by @​mondeja in https://github.com/lycheeverse/lychee-action/pull/259

New Contributors

• @​szepeviktor made their first contribution in https://github.com/lycheeverse/lychee-action/pull/257
• @​mondeja made their first contribution in https://github.com/lycheeverse/lychee-action/pull/259

Full Changelog: lycheeverse/lychee-action@v2...v2.0.2

v2.0.1: Version 2.0.1

Compare Source

What's Changed

• Don't remove the lychee config file by @​dmathieu in https://github.com/lycheeverse/lychee-action/pull/255
• Bump lycheeverse/lychee-action from 1 to 2 by @​dependabot in https://github.com/lycheeverse/lychee-action/pull/252
• Fix variable name in docs by @​kdeldycke in https://github.com/lycheeverse/lychee-action/pull/253

New Contributors

• @​dmathieu made their first contribution in https://github.com/lycheeverse/lychee-action/pull/255

Full Changelog: lycheeverse/lychee-action@v2...v2.0.1

v2.0.0: Version 2.0.0

Compare Source

Breaking Changes

Note: This release improves the action's robustness by changing default behaviors. Changes are only required if you want to opt out of the new failure conditions. Most users won't need to modify their existing configurations.

Fail pipeline on error by default

We've changed the default behavior: pipelines will now fail on broken links automatically. This addresses user feedback that not failing on broken links was unexpected (see issue #​71).

What you need to do:

• Update to version 2 of this action to apply this change.
• Users of the lychee-action@master branch don't need to make any changes, as fail: true has been the default there for a while.
• If you prefer the old behavior, explicitly set fail to false when updating:

- name: Link Checker
  id: lychee
  uses: lycheeverse/lychee-action@v2
  with:
    fail: false  # Don't fail action on broken links

Fail pipeline if no links were found

Similar to the above change, we now fail the pipeline if no links are found during a run. This helps warn users about potential configuration issues.

What you need to do:

• If you expect links to be found in your pipeline run, you don't need to do anything.
• If you expect no links in your pipeline run, you can opt out like this:

- name: Link Checker
  id: lychee
  uses: lycheeverse/lychee-action@v2
  with:
    failIfEmpty: false  # Don't fail action if no links were found

For a more detailed description of the technical aspects behind these changes, please see the full changelog below.

What's Changed

• feat: change to use the full version tag with v-* prefix by @​kemingy in https://github.com/lycheeverse/lychee-action/pull/204
• Add failIfEmpty argument (fixes #​84) by @​mre in https://github.com/lycheeverse/lychee-action/pull/86
• Fail pipeline on error by default (fixes #​71) by @​mre in https://github.com/lycheeverse/lychee-action/pull/85
• Exit in case output is set in args and action input by @​mre in https://github.com/lycheeverse/lychee-action/pull/227
• v1 will automatically use latest version by @​jacobdalamb in https://github.com/lycheeverse/lychee-action/pull/228
• Remove unneeded text by @​jacobdalamb in https://github.com/lycheeverse/lychee-action/pull/229
• Clarify README.md defaults by @​paddyroddy in https://github.com/lycheeverse/lychee-action/pull/230
• Adjust for new asset naming scheme by @​dscho in https://github.com/lycheeverse/lychee-action/pull/234
• Test various lychee versions by @​mre in https://github.com/lycheeverse/lychee-action/pull/235
• Better cleanup of old lychee assets by @​mre in https://github.com/lycheeverse/lychee-action/pull/237
• Bump peter-evans/create-issue-from-file from v4 to v5 by @​AndreiCherniaev in https://github.com/lycheeverse/lychee-action/pull/241
• Remove dots from table by @​AndreiCherniaev in https://github.com/lycheeverse/lychee-action/pull/242
• README: update actions/cache to v4 by @​sebastiaanspeck in https://github.com/lycheeverse/lychee-action/pull/243
• Set exit_code correctly as output by @​sebastiaanspeck in https://github.com/lycheeverse/lychee-action/pull/245
• action: fix failing CI by @​sebastiaanspeck in https://github.com/lycheeverse/lychee-action/pull/246
• Split up steps in action by @​mre in https://github.com/lycheeverse/lychee-action/pull/248
• Bump version to 0.16.x, respect new tag names by @​mre in https://github.com/lycheeverse/lychee-action/pull/249
• Test latest lychee version tag by @​mre in https://github.com/lycheeverse/lychee-action/pull/236

New Contributors

• @​kemingy made their first contribution in https://github.com/lycheeverse/lychee-action/pull/204
• @​paddyroddy made their first contribution in https://github.com/lycheeverse/lychee-action/pull/230
• @​dscho made their first contribution in https://github.com/lycheeverse/lychee-action/pull/234
• @​AndreiCherniaev made their first contribution in https://github.com/lycheeverse/lychee-action/pull/241
• @​sebastiaanspeck made their first contribution in https://github.com/lycheeverse/lychee-action/pull/243

Full Changelog: lycheeverse/lychee-action@v1...v1.11.0

---

Configuration

📅 Schedule: Branch creation - "* 0-3 1 * *" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

🦙 MegaLinter status: ✅ SUCCESS

Descriptor	Linter	Files	Fixed	Errors	Elapsed time
✅ ACTION	actionlint	7		0	0.1s
✅ COPYPASTE	jscpd	yes		no	1.1s
✅ DOCKERFILE	hadolint	1		0	0.09s
✅ JSON	jsonlint	3		0	0.37s
✅ JSON	prettier	3		0	0.51s
✅ JSON	v8r	3		0	3.3s
✅ PYTHON	bandit	1		0	1.21s
✅ PYTHON	black	1		0	1.45s
✅ PYTHON	flake8	1		0	0.8s
✅ PYTHON	isort	1		0	0.27s
✅ PYTHON	mypy	1		0	3.01s
✅ PYTHON	pylint	1		0	3.08s
✅ PYTHON	pyright	1		0	7.0s
✅ PYTHON	ruff	1		0	0.02s
✅ REPOSITORY	checkov	yes		no	20.09s
✅ REPOSITORY	devskim	yes		no	1.3s
✅ REPOSITORY	dustilock	yes		no	0.01s
✅ REPOSITORY	gitleaks	yes		no	0.17s
✅ REPOSITORY	git_diff	yes		no	0.0s
✅ REPOSITORY	grype	yes		no	16.24s
✅ REPOSITORY	kics	yes		no	3.51s
✅ REPOSITORY	secretlint	yes		no	0.94s
✅ REPOSITORY	syft	yes		no	3.2s
✅ REPOSITORY	trivy	yes		no	7.76s
✅ REPOSITORY	trivy-sbom	yes		no	0.13s
✅ REPOSITORY	trufflehog	yes		no	3.02s
✅ YAML	prettier	9		0	1.07s
✅ YAML	v8r	9		0	8.63s
✅ YAML	yamllint	9		0	0.64s

See detailed report in MegaLinter reports

You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.

• Click here to request the new flavor

MegaLinter is graciously provided by

[github-actions]

Trivy image scan report

ghcr.io/miracum/github-reusable-workflow-without-test-image:pr-95 (debian 12.8)

15 known vulnerabilities found (LOW: 3 CRITICAL: 0 HIGH: 3 MEDIUM: 9)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
libpython3.11-minimal	CVE-2024-7592	HIGH	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-minimal	CVE-2023-27043	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-minimal	CVE-2024-6923	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-minimal	CVE-2024-9287	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-minimal	CVE-2024-11168	LOW	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2024-7592	HIGH	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2023-27043	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2024-6923	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2024-9287	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2024-11168	LOW	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2024-7592	HIGH	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2023-27043	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2024-6923	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2024-9287	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2024-11168	LOW	3.11.2-6+deb12u4	3.11.2-6+deb12u5

No Misconfigurations found

[github-actions]

Trivy image scan report

ghcr.io/miracum/github-reusable-workflow:pr-95 (debian 12.8)

15 known vulnerabilities found (HIGH: 3 MEDIUM: 9 LOW: 3 CRITICAL: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
libpython3.11-minimal	CVE-2024-7592	HIGH	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-minimal	CVE-2023-27043	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-minimal	CVE-2024-6923	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-minimal	CVE-2024-9287	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-minimal	CVE-2024-11168	LOW	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2024-7592	HIGH	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2023-27043	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2024-6923	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2024-9287	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2024-11168	LOW	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2024-7592	HIGH	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2023-27043	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2024-6923	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2024-9287	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2024-11168	LOW	3.11.2-6+deb12u4	3.11.2-6+deb12u5

No Misconfigurations found

[github-actions]

Trivy image scan report

ghcr.io/miracum/github-reusable-workflow-with-fixed-image-tags:v1.2.3-beta.123 (debian 12.8)

15 known vulnerabilities found (LOW: 3 CRITICAL: 0 HIGH: 3 MEDIUM: 9)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
libpython3.11-minimal	CVE-2024-7592	HIGH	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-minimal	CVE-2023-27043	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-minimal	CVE-2024-6923	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-minimal	CVE-2024-9287	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-minimal	CVE-2024-11168	LOW	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2024-7592	HIGH	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2023-27043	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2024-6923	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2024-9287	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
libpython3.11-stdlib	CVE-2024-11168	LOW	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2024-7592	HIGH	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2023-27043	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2024-6923	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2024-9287	MEDIUM	3.11.2-6+deb12u4	3.11.2-6+deb12u5
python3.11-minimal	CVE-2024-11168	LOW	3.11.2-6+deb12u4	3.11.2-6+deb12u5

No Misconfigurations found