ceph-csi

mirror of https://github.com/ceph/ceph-csi.git synced 2024-11-10 00:10:20 +00:00

Author	SHA1	Message	Date
dependabot[bot]	43d2f86dc7	rebase: bump actions/dependency-review-action from 3 to 4 Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3 to 4. - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](https://github.com/actions/dependency-review-action/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/dependency-review-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2024-01-24 08:48:11 +00:00
dependabot[bot]	b3ef8672a4	rebase: Bump actions/checkout from 3 to 4 Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-05 08:47:25 +00:00
Niels de Vos	ce26b0e212	ci: allow CVE-2019-11255 in Kubernetes module dependency It is unclear how a module for utility functions can have the same problem as a separate side-car that is expected to do the input validation. The side-cars have been fixed already, no further details are in the CVE description (from 2019). See-also: https://github.com/advisories/GHSA-f4w6-3rh6-6q4 Signed-off-by: Niels de Vos <ndevos@ibm.com>	2023-07-26 13:34:23 +00:00
dependabot[bot]	f0cc5a0ef8	rebase: bump actions/dependency-review-action from 2 to 3 Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 2 to 3. - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](https://github.com/actions/dependency-review-action/compare/v2...v3) --- updated-dependencies: - dependency-name: actions/dependency-review-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2022-11-17 13:00:22 +00:00
dependabot[bot]	05ccb31a45	rebase: bump actions/dependency-review-action from 1 to 2 Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 1 to 2. - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](https://github.com/actions/dependency-review-action/compare/v1...v2) --- updated-dependencies: - dependency-name: actions/dependency-review-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2022-06-24 08:17:57 +00:00
Naveen	60281fab40	ci: included dependency review Dependency Review GitHub Action in your repository to enforce dependency reviews on your pull requests. Signed-off-by: Naveen <172697+naveensrinivasan@users.noreply.github.com>	2022-05-24 06:48:22 +00:00

6 Commits