4 Commits

Author	SHA1	Message	Date
Niels de Vos	ce26b0e212	ci: allow CVE-2019-11255 in Kubernetes module dependency ... It is unclear how a module for utility functions can have the same problem as a separate side-car that is expected to do the input validation. The side-cars have been fixed already, no further details are in the CVE description (from 2019). See-also: https://github.com/advisories/GHSA-f4w6-3rh6-6q4 Signed-off-by: Niels de Vos <ndevos@ibm.com>	2023-07-26 13:34:23 +00:00
dependabot[bot]	f0cc5a0ef8	rebase: bump actions/dependency-review-action from 2 to 3 ... Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 2 to 3. - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](https://github.com/actions/dependency-review-action/compare/v2...v3) --- updated-dependencies: - dependency-name: actions/dependency-review-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2022-11-17 13:00:22 +00:00
dependabot[bot]	05ccb31a45	rebase: bump actions/dependency-review-action from 1 to 2 ... Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 1 to 2. - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](https://github.com/actions/dependency-review-action/compare/v1...v2) --- updated-dependencies: - dependency-name: actions/dependency-review-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2022-06-24 08:17:57 +00:00
Naveen	60281fab40	ci: included dependency review ... Dependency Review GitHub Action in your repository to enforce dependency reviews on your pull requests. Signed-off-by: Naveen <172697+naveensrinivasan@users.noreply.github.com>	2022-05-24 06:48:22 +00:00