chore(deps): update all digest updates #242
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=80&v=4){kind=small}
✅
|
| Descriptor | Linter | Files | Fixed | Errors | Warnings | Elapsed time |
|---|---|---|---|---|---|---|
| ✅ ACTION | actionlint | 4 | 0 | 0 | 0.06s | |
| ✅ BASH | bash-exec | 1 | 0 | 0 | 0.01s | |
| ✅ BASH | shellcheck | 1 | 0 | 0 | 0.11s | |
| shfmt | 1 | 1 | 0 | 0.01s | ||
| ✅ DOCKERFILE | hadolint | 2 | 0 | 0 | 0.08s | |
| ✅ EDITORCONFIG | editorconfig-checker | 68 | 0 | 0 | 0.3s | |
| npm-groovy-lint | 2 | 0 | 10 | 17.38s | ||
| checkstyle | 18 | 0 | 46 | 5.23s | ||
| ✅ JSON | jsonlint | 5 | 0 | 0 | 0.2s | |
| ✅ JSON | prettier | 5 | 0 | 0 | 1.8s | |
| ✅ JSON | v8r | 5 | 0 | 0 | 4.31s | |
| markdownlint | 3 | 1 | 0 | 0.95s | ||
| ✅ PYTHON | bandit | 1 | 0 | 0 | 1.52s | |
| ✅ PYTHON | black | 1 | 0 | 0 | 0.96s | |
| ✅ PYTHON | flake8 | 1 | 0 | 0 | 0.55s | |
| ✅ PYTHON | isort | 1 | 0 | 0 | 0.42s | |
| ✅ PYTHON | mypy | 1 | 0 | 0 | 9.66s | |
| ✅ PYTHON | ruff | 1 | 0 | 0 | 0.04s | |
| ✅ REPOSITORY | gitleaks | yes | no | no | 3.12s | |
| ✅ REPOSITORY | git_diff | yes | no | no | 0.03s | |
| ✅ REPOSITORY | grype | yes | no | no | 38.15s | |
| kics | yes | no | 28 | 5.44s | ||
| ✅ REPOSITORY | secretlint | yes | no | no | 2.04s | |
| ✅ REPOSITORY | syft | yes | no | no | 3.08s | |
| ✅ REPOSITORY | trivy | yes | no | no | 10.08s | |
| ✅ REPOSITORY | trivy-sbom | yes | no | no | 0.19s | |
| ✅ REPOSITORY | trufflehog | yes | no | no | 4.7s | |
| ✅ XML | xmllint | 1 | 0 | 0 | 0.93s | |
| ✅ YAML | prettier | 18 | 0 | 0 | 0.91s | |
| ✅ YAML | yamllint | 18 | 0 | 0 | 0.99s |
Detailed Issues
⚠️ JAVA / checkstyle - 46 warnings
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Abbreviation in name 'LOG' must contain no more than '1' consecutive capital letters.
warning: Member name 'LOG' must match pattern '^[a-z][a-z0-9][a-zA-Z0-9]*$'.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Line is longer than 100 characters (found 117).
warning: Missing a Javadoc comment.
warning: Line is longer than 100 characters (found 118).
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Line is longer than 100 characters (found 114).
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: 46 warnings emitted
⚠️ REPOSITORY / kics - 28 warnings
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ dev/docker-compose.gw-deps.yml:82:1
│
82 │ fhir-db:
│ ^^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ dev/docker-compose.gw-deps.yml:31:1
│
31 │ vfps-db:
│ ^^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ dev/docker-compose.dev.yml:2:1
│
2 │ mock-data-loader:
│ ^^^^^^^^^^^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ deploy/compose.yaml:59:1
│
59 │ fhir-gateway-db:
│ ^^^^^^^^^^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Healthcheck is not defined.
┌─ deploy/compose.yaml:2:1
│
2 │ fhir-gateway:
│ ^^^^^^^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ dev/docker-compose.dev.yml:17:1
│
17 │ kafka:
│ ^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ dev/docker-compose.gw-deps.yml:82:1
│
82 │ fhir-db:
│ ^^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ dev/docker-compose.gw-deps.yml:31:1
│
31 │ vfps-db:
│ ^^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ deploy/compose.yaml:59:1
│
59 │ fhir-gateway-db:
│ ^^^^^^^^^^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ tests/e2e/docker-compose.yml:2:1
│
2 │ tester:
│ ^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ dev/docker-compose.gw-deps.yml:2:1
│
2 │ fhir-pseudonymizer:
│ ^^^^^^^^^^^^^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ dev/docker-compose.gw-deps.yml:21:1
│
21 │ loinc-converter:
│ ^^^^^^^^^^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ dev/docker-compose.yml:2:1
│
2 │ gateway:
│ ^^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ deploy/compose.yaml:82:1
│
82 │ fhir-pseudonymizer:
│ ^^^^^^^^^^^^^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ deploy/compose.yaml:35:1
│
35 │ wait-for-db:
│ ^^^^^^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ dev/docker-compose.gw-deps.yml:64:1
│
64 │ fhir-server:
│ ^^^^^^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ dev/docker-compose.gw-deps.yml:43:1
│
43 │ vfps:
│ ^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ deploy/compose.yaml:70:1
│
70 │ loinc-converter:
│ ^^^^^^^^^^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ dev/docker-compose.dev.yml:42:1
│
42 │ akhq:
│ ^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ dev/docker-compose.dev.yml:2:1
│
2 │ mock-data-loader:
│ ^^^^^^^^^^^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ dev/docker-compose.gw-deps.yml:117:1
│
117 │ vfps-init-fall:
│ ^^^^^^^^^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Healthcheck is not defined.
┌─ dev/docker-compose.gw-deps.yml:93:1
│
93 │ vfps-init-patient:
│ ^^^^^^^^^^^^^^^^^^^^
│
= Healthcheck Not Set
= Check containers periodically to see if they are running properly.
warning: Docker compose file does not have 'security_opt' attribute
┌─ dev/docker-compose.dev.yml:2:1
│
2 │ mock-data-loader:
│ ^^^^^^^^^^^^^^^^^^^
│
= Security Opt Not Set
= Attribute 'security_opt' should be defined.
warning: RUN instruction apk --no-cache add git does not use package pinning form
┌─ tests/e2e/Dockerfile:4:1
│
4 │ RUN apk --no-cache add git
│ ^^^^^^^^^^^^^^^^^^^^^^^^^^
│
= Unpinned Package Version in Apk Add
= Package version pinning reduces the range of versions that can be installed, reducing the chances of failure due to unanticipated changes
warning: The 'Dockerfile' contains the 'chown' flag
┌─ Dockerfile:4:1
│
4 │ COPY --chown=gradle:gradle . .
│ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
│
= Chown Flag Exists
= It is considered a best practice for every executable in a container to be owned by the root user even if it is executed by a non-root user, only execution permissions are required on the file, not ownership
warning: Dockerfile doesn't contain instruction 'HEALTHCHECK'
┌─ Dockerfile:17:1
│
17 │ FROM gcr.io/distroless/java21-debian12:nonroot@sha256:dfea876744f635b5fea3ea53099410cfc5d17aeea7b62887310512d78094f6f3
│ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
│
= Healthcheck Instruction Missing
= Ensure that HEALTHCHECK is being used. The HEALTHCHECK instruction tells Docker how to test a container to check that it is still working
warning: Dockerfile doesn't contain instruction 'HEALTHCHECK'
┌─ tests/e2e/Dockerfile:1:1
│
1 │ FROM docker.io/library/python:3.11-alpine@sha256:af8fef83397b3886ed93d2c81bf3b4e70d39c0789c1c6feb1ecb86ca9bc42a0a
│ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
│
= Healthcheck Instruction Missing
= Ensure that HEALTHCHECK is being used. The HEALTHCHECK instruction tells Docker how to test a container to check that it is still working
warning: There are COPY instructions that could be grouped
┌─ Dockerfile:20:1
│
20 │ COPY --from=build /home/gradle/project/dependencies/ ./
│ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
│
= Multiple RUN, ADD, COPY, Instructions Listed
= Multiple comma
(Truncated to 8000 characters out of 8109)
⚠️ MARKDOWN / markdownlint - 1 error
README.md:30:439 MD009/no-trailing-spaces Trailing spaces [Expected: 0 or 2; Actual: 1]
⚠️ GROOVY / npm-groovy-lint - 10 warnings
note: Class should be marked with one of @GrailsCompileStatic, @CompileStatic or @CompileDynamic
= Check that classes are explicitely annotated with either @GrailsCompileStatic, @CompileStatic or @CompileDynamic
note: The statement on line 15 in class None is at the incorrect indent level: Expected one of columns [5, 9, 13] but was 3
= Check indentation for class and method declarations, and initial statements.
note: The statement on line 16 in class None is at the incorrect indent level: Expected one of columns [9, 13, 17] but was 5
= Check indentation for class and method declarations, and initial statements.
note: The statement on line 63 in class None is at the incorrect indent level: Depending on your chaining style, expected one of [5, 9, 13] or one of [10, 14, 18] columns, but was 3
= Check indentation for class and method declarations, and initial statements.
note: The statement on line 67 in class None is at the incorrect indent level: Expected one of columns [5, 9, 13] but was 2
= Check indentation for class and method declarations, and initial statements.
note: The tab character is not allowed in source files
┌─ build.gradle:67:1
│
67 │ reports {
│ ^^^^^^^^^^^^^
│
= Checks that all source files do not contain the tab character
note: The statement on line 68 in class None is at the incorrect indent level: Expected one of columns [9, 13, 17] but was 3
= Check indentation for class and method declarations, and initial statements.
note: The statement on line 69 in class None is at the incorrect indent level: Expected one of columns [9, 13, 17] but was 3
= Check indentation for class and method declarations, and initial statements.
note: The statement on line 70 in class None is at the incorrect indent level: Expected one of columns [9, 13, 17] but was 3
= Check indentation for class and method declarations, and initial statements.
note: Class should be marked with one of @GrailsCompileStatic, @CompileStatic or @CompileDynamic
= Check that classes are explicitely annotated with either @GrailsCompileStatic, @CompileStatic or @CompileDynamic
⚠️ BASH / shfmt - 1 error
diff gradlew.orig gradlew
--- gradlew.orig
+++ gradlew
@@ -71,15 +71,15 @@
# Need this for daisy-chained symlinks.
while
- APP_HOME=${app_path%"${app_path##*/}"} # leaves a trailing /; empty if no leading path
- [ -h "$app_path" ]
+ APP_HOME=${app_path%"${app_path##*/}"} # leaves a trailing /; empty if no leading path
+ [ -h "$app_path" ]
do
- ls=$( ls -ld "$app_path" )
- link=${ls#*' -> '}
- case $link in #(
- /*) app_path=$link ;; #(
- *) app_path=$APP_HOME$link ;;
- esac
+ ls=$(ls -ld "$app_path")
+ link=${ls#*' -> '}
+ case $link in #(
+ /*) app_path=$link ;; #(
+ *) app_path=$APP_HOME$link ;;
+ esac
done
# This is normally unused
@@ -86,20 +86,20 @@
# shellcheck disable=SC2034
APP_BASE_NAME=${0##*/}
# Discard cd standard output in case $CDPATH is set (https://github.com/gradle/gradle/issues/25036)
-APP_HOME=$( cd -P "${APP_HOME:-./}" > /dev/null && printf '%s\n' "$PWD" ) || exit
+APP_HOME=$(cd -P "${APP_HOME:-./}" >/dev/null && printf '%s\n' "$PWD") || exit
# Use the maximum available, or set MAX_FD != -1 to use that value.
MAX_FD=maximum
-warn () {
- echo "$*"
-} >&2
-
-die () {
- echo
- echo "$*"
- echo
- exit 1
+warn() {
+ echo "$*"
+} >&2
+
+die() {
+ echo
+ echo "$*"
+ echo
+ exit 1
} >&2
# OS specific support (must be 'true' or 'false').
@@ -107,57 +107,56 @@
msys=false
darwin=false
nonstop=false
-case "$( uname )" in #(
- CYGWIN* ) cygwin=true ;; #(
- Darwin* ) darwin=true ;; #(
- MSYS* | MINGW* ) msys=true ;; #(
- NONSTOP* ) nonstop=true ;;
+case "$(uname)" in #(
+CYGWIN*) cygwin=true ;; #(
+Darwin*) darwin=true ;; #(
+MSYS* | MINGW*) msys=true ;; #(
+NONSTOP*) nonstop=true ;;
esac
-
-
# Determine the Java command to use to start the JVM.
-if [ -n "$JAVA_HOME" ] ; then
- if [ -x "$JAVA_HOME/jre/sh/java" ] ; then
- # IBM's JDK on AIX uses strange locations for the executables
- JAVACMD=$JAVA_HOME/jre/sh/java
- else
- JAVACMD=$JAVA_HOME/bin/java
- fi
- if [ ! -x "$JAVACMD" ] ; then
- die "ERROR: JAVA_HOME is set to an invalid directory: $JAVA_HOME
-
-Please set the JAVA_HOME variable in your environment to match the
-location of your Java installation."
- fi
+if [ -n "$JAVA_HOME" ]; then
+ if [ -x "$JAVA_HOME/jre/sh/java" ]; then
+ # IBM's JDK on AIX uses strange locations for the executables
+ JAVACMD=$JAVA_HOME/jre/sh/java
+ else
+ JAVACMD=$JAVA_HOME/bin/java
+ fi
+ if [ ! -x "$JAVACMD" ]; then
+ die "ERROR: JAVA_HOME is set to an invalid directory: $JAVA_HOME
+
+Please set the JAVA_HOME variable in your environment to match the
+location of your Java installation."
+ fi
else
- JAVACMD=java
- if ! command -v java >/dev/null 2>&1
- then
- die "ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
-
-Please set the JAVA_HOME variable in your environment to match the
-location of your Java installation."
- fi
+ JAVACMD=java
+ if ! command -v java >/dev/null 2>&1; then
+ die "ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
+
+Please set the JAVA_HOME variable in your environment to match the
+location of your Java installation."
+ fi
fi
# Increase the maximum file descriptors if we can.
-if ! "$cygwin" && ! "$darwin" && ! "$nonstop" ; then
- case $MAX_FD in #(
- max*)
- # In POSIX sh, ulimit -H is undefined. That's why the result is checked to see if it worked.
- # shellcheck disable=SC2039,SC3045
- MAX_FD=$( ulimit -H -n ) ||
- warn "Could not query maximum file descriptor limit"
- esac
- case $MAX_FD in #(
- '' | soft) :;; #(
- *)
- # In POSIX sh, ulimit -n is undefined. That's why the result is checked to see if it worked.
- # shellcheck disable=SC2039,SC3045
- ulimit -n "$MAX_FD" ||
- warn "Could not set maximum file descriptor limit to $MAX_FD"
- esac
+if ! "$cygwin" && ! "$darwin" && ! "$nonstop"; then
+ case $MAX_FD in #(
+ max*)
+ # In POSIX sh, ulimit -H is undefined. That's why the result is checked to see if it worked.
+ # shellcheck disable=SC2039,SC3045
+ MAX_FD=$(ulimit -H -n) ||
+ warn "Could not query maximum file descriptor limit"
+ ;;
+ esac
+ case $MAX_FD in #(
+ '' | soft) : ;; #(
+ *)
+ # In POSIX sh, ulimit -n is undefined. That's why the result is checked to see if it worked.
+ # shellcheck disable=SC2039,SC3045
+ ulimit -n "$MAX_FD" ||
+ warn "Could not set maximum file descriptor limit to $MAX_FD"
+ ;;
+ esac
fi
# Collect all arguments for the java command, stacking in reverse order:
@@ -169,35 +168,36 @@
# * DEFAULT_JVM_OPTS, JAVA_OPTS, and GRADLE_OPTS environment variables.
# For Cygwin or MSYS, switch paths to Windows format before running java
-if "$cygwin" || "$msys" ; then
- APP_HOME=$( cygpath --path --mixed "$APP_HOME" )
-
- JAVACMD=$( cygpath --unix "$JAVACMD" )
-
- # Now convert the arguments - kludge to limit ourselves to /bin/sh
- for arg do
- if
- case $arg in #(
- -*) false ;; # don't mess with options #(
- /?*) t=${arg#/} t=/${t%%/*} # looks like a POSIX filepath
- [ -e "$t" ] ;; #(
- *) false ;;
- esac
- then
- arg=$( cygpath --path --ignore --mixed "$arg" )
- fi
- # Roll the args list around exactly as many times as the number of
- # args, so each arg winds up back in the position where it started, but
- # possibly modified.
- #
- # NB: a `for` loop captures its iteration list before it begins, so
- # changing the positional parameters here affects neither the number of
- # iterations, nor the values presented in `arg`.
- shift # remove old arg
- set -- "$@" "$arg" # push replacement arg
- done
-fi
-
+if "$cygwin" || "$msys"; then
+ APP_HOME=$(cygpath --path --mixed "$APP_HOME")
+
+ JAVACMD=$(cygpath --unix "$JAVACMD")
+
+ # Now convert the arguments - kludge to limit ourselves to /bin/sh
+ for arg; do
+ if
+ case $arg in #(
+ -*) false ;; # don't mess with options #(
+ /?*)
+ t=${arg#/} t=/${t%%/*} # looks like a POSIX filepath
+ [ -e "$t" ]
+ ;; #(
+ *) false ;;
+ esac
+ then
+ arg=$(cygpath --path --ignore --mixed "$arg")
+ fi
+ # Roll the args list around exactly as many times as the number of
+ # args, so each arg winds up back in the position where it started, but
+ # possibly modified.
+ #
+ # NB: a `for` loop captures its iteration list before it begins, so
+ # changing the positional parameters here affects neither the number of
+ # iterations, nor the values presented in `arg`.
+ shift # remove old arg
+ set -- "$@" "$arg" # push replacement arg
+ done
+fi
# Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script.
DEFAULT_JVM_OPTS='"-Xmx64m" "-Xms64m"'
@@ -209,14 +209,13 @@
# treated as '${Hostname}' itself on the command line.
set -- \
- "-Dorg.gradle.appname=$APP_BASE_NAME" \
- -jar "$APP_HOME/gradle/wrapper/gradle-wrapper.jar" \
- "$@"
+ "-Dorg.gradle.appname=$APP_BASE_NAME" \
+ -jar "$APP_HOME/gradle/wrapper/gradle-wrapper.jar" \
+ "$@"
# Stop when "xargs" is not available.
-if ! command -v xargs >/dev/null 2>&1
-then
- die "xargs is not available"
+if ! command -v xargs >/dev/null 2>&1; then
+ die "xargs is not available"
fi
# Use "xargs" to parse quoted args.
@@ -239,10 +238,10 @@
#
eval "set -- $(
- printf '%s\n' "$DEFAULT_JVM_OPTS $JAVA_OPTS $GRADLE_OPTS" |
- xargs -n1 |
- sed ' s~[^-[:alnum:]+,./:=@_]~\\&~g; ' |
- tr '\n' ' '
- )" '"$@"'
+ printf '%s\n' "$DEFAULT_JVM_OPTS $JAVA_OPTS $GRADLE_OPTS" |
+
(Truncated to 8000 characters out of 8105)
See detailed reports in MegaLinter artifacts
Your project could benefit from a custom flavor, which would allow you to run only the linters you need, and thus improve runtime performances. (Skip this info by defining FLAVOR_SUGGESTIONS: false)
- Documentation: Custom Flavors
- Command:
npx [email protected] --custom-flavor-setup --custom-flavor-linters PYTHON_BLACK,PYTHON_FLAKE8,PYTHON_ISORT,PYTHON_BANDIT,PYTHON_MYPY,PYTHON_RUFF,ACTION_ACTIONLINT,BASH_EXEC,BASH_SHELLCHECK,BASH_SHFMT,DOCKERFILE_HADOLINT,EDITORCONFIG_EDITORCONFIG_CHECKER,GROOVY_NPM_GROOVY_LINT,JAVA_CHECKSTYLE,JSON_JSONLINT,JSON_V8R,JSON_PRETTIER,MARKDOWN_MARKDOWNLINT,REPOSITORY_GIT_DIFF,REPOSITORY_GITLEAKS,REPOSITORY_GRYPE,REPOSITORY_KICS,REPOSITORY_SECRETLINT,REPOSITORY_SYFT,REPOSITORY_TRIVY,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,XML_XMLLINT,YAML_PRETTIER,YAML_YAMLLINT
Code Coverage Report
|
renovate
bot
force-pushed
the
renovate/all-digest
branch
3 times, most recently
from
d13f9b8 to
2e9d27c
Compare
renovate
bot
force-pushed
the
renovate/all-digest
branch
3 times, most recently
from
e7f9397 to
4d98519
Compare
renovate
bot
force-pushed
the
renovate/all-digest
branch
from
4d98519 to
ac8cefe
Compare
renovate
bot
force-pushed
the
renovate/all-digest
branch
from
ac8cefe to
05b87ff
Compare
Trivy image scan report
|
| Package | ID | Severity | Installed Version | Fixed Version |
|---|---|---|---|---|
ch.qos.logback:logback-core |
CVE-2025-11226 | MEDIUM | 1.5.18 | 1.5.19 |
org.apache.commons:commons-lang3 |
CVE-2025-48924 | MEDIUM | 3.17.0 | 3.18.0 |
No Misconfigurations found
chgl
approved these changes
Oct 22, 2025
miracum-bot
pushed a commit
that referenced
this pull request
Oct 22, 2025
|
🎉 This PR is included in version 4.0.3 🎉 The release is available on GitHub release Your semantic-release bot 📦🚀 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
fc20fc7->db12d4767a7c38->9a2e038Warning
Some dependencies could not be looked up. Check the Dependency Dashboard for more information.
Configuration
📅 Schedule: Branch creation - On day 1 of the month, every 3 months ( * * 1 */3 * ) (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR was generated by Mend Renovate. View the repository job log.