Compare commits

...

21 Commits

Author SHA1 Message Date
CrazyMax f15c1da0d3 Merge pull request #292 from docker/dependabot/npm_and_yarn/sigstore-4.1.1
build(deps): bump sigstore from 4.1.0 to 4.1.1
2026-07-16 13:00:21 +02:00
dependabot[bot] d5a5539ef0 build(deps): bump sigstore from 4.1.0 to 4.1.1
Bumps [sigstore](https://github.com/sigstore/sigstore-js) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/sigstore/sigstore-js/releases)
- [Commits](https://github.com/sigstore/sigstore-js/compare/sigstore@4.1.0...sigstore@4.1.1)

---
updated-dependencies:
- dependency-name: sigstore
  dependency-version: 4.1.1
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-07-15 14:29:00 +00:00
CrazyMax c73af0b2a4 Merge pull request #293 from docker/dependabot/github_actions/docker/bake-action/subaction/matrix-7.3.0
build(deps): bump docker/bake-action/subaction/matrix from 7.2.0 to 7.3.0
2026-07-15 16:27:53 +02:00
CrazyMax f6114d22a8 Merge pull request #295 from docker/dependabot/github_actions/docker/bake-action-7.3.0
build(deps): bump docker/bake-action from 7.2.0 to 7.3.0
2026-07-15 16:27:46 +02:00
CrazyMax 4fc03ecc67 Merge pull request #294 from docker/dependabot/github_actions/docker/build-push-action-7.3.0
build(deps): bump docker/build-push-action from 7.2.0 to 7.3.0
2026-07-15 16:27:21 +02:00
CrazyMax 55628a5aa4 Merge pull request #298 from docker/dependabot/github_actions/docker/setup-buildx-action-4.2.0
build(deps): bump docker/setup-buildx-action from 4.1.0 to 4.2.0
2026-07-15 16:27:13 +02:00
CrazyMax ffada020d6 Merge pull request #300 from docker/dependabot/github_actions/codeql-actions-6872eef3cb
build(deps): bump the codeql-actions group across 1 directory with 2 updates
2026-07-15 16:26:47 +02:00
CrazyMax af897d3ae5 Merge pull request #304 from docker/dependabot/npm_and_yarn/docker/actions-toolkit-0.93.0
build(deps): bump @docker/actions-toolkit from 0.92.0 to 0.93.0
2026-07-15 16:25:45 +02:00
dependabot[bot] 068a24b68f build(deps): bump the codeql-actions group across 1 directory with 2 updates
Bumps the codeql-actions group with 2 updates in the / directory: [github/codeql-action/init](https://github.com/github/codeql-action) and [github/codeql-action/analyze](https://github.com/github/codeql-action).


Updates `github/codeql-action/init` from 4.36.3 to 4.37.0
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/54f647b7e1bb85c95cddabcd46b0c578ec92bc1a...99df26d4f13ea111d4ec1a7dddef6063f76b97e9)

Updates `github/codeql-action/analyze` from 4.36.3 to 4.37.0
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/54f647b7e1bb85c95cddabcd46b0c578ec92bc1a...99df26d4f13ea111d4ec1a7dddef6063f76b97e9)

---
updated-dependencies:
- dependency-name: github/codeql-action/analyze
  dependency-version: 4.37.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: codeql-actions
- dependency-name: github/codeql-action/init
  dependency-version: 4.37.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: codeql-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-07-15 10:55:02 +00:00
github-actions[bot] d264b5decd [dependabot skip] chore: update generated content 2026-07-15 10:29:10 +00:00
dependabot[bot] 1ce1eeba96 build(deps): bump @docker/actions-toolkit from 0.92.0 to 0.93.0
Bumps [@docker/actions-toolkit](https://github.com/docker/actions-toolkit) from 0.92.0 to 0.93.0.
- [Release notes](https://github.com/docker/actions-toolkit/releases)
- [Commits](https://github.com/docker/actions-toolkit/compare/v0.92.0...v0.93.0)

---
updated-dependencies:
- dependency-name: "@docker/actions-toolkit"
  dependency-version: 0.93.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-07-15 10:28:20 +00:00
CrazyMax c92adf7de8 Merge pull request #303 from docker/deps/undock-version
chore(deps): update Undock version from v0.10.0 to v0.14.0
2026-07-15 12:26:30 +02:00
docker-ghactions[bot] 9b75a73943 chore(deps): update Undock version from v0.10.0 to v0.14.0
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
2026-07-15 09:58:08 +00:00
CrazyMax 6852d5f281 Merge pull request #302 from docker/deps/regctl-version
chore(deps): update Regctl version from v0.8.3 to v0.11.5
2026-07-15 11:57:05 +02:00
docker-ghactions[bot] 62121a8f70 chore(deps): update Regctl version from v0.8.3 to v0.11.5
Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
2026-07-15 09:46:33 +00:00
CrazyMax 412f770366 Merge pull request #301 from crazy-max/update-regctl-undock-defaults
ci: add regctl and undock dependency update workflow
2026-07-15 11:44:25 +02:00
CrazyMax 7f9d88cd0b ci: add regctl and undock dependency update workflow
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
2026-07-15 11:37:36 +02:00
dependabot[bot] 0e1a7c6a5c build(deps): bump docker/setup-buildx-action from 4.1.0 to 4.2.0
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 4.1.0 to 4.2.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5...bb05f3f5519dd87d3ba754cc423b652a5edd6d2c)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-version: 4.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-07-07 10:52:40 +00:00
dependabot[bot] 737579f550 build(deps): bump docker/bake-action from 7.2.0 to 7.3.0
Bumps [docker/bake-action](https://github.com/docker/bake-action) from 7.2.0 to 7.3.0.
- [Release notes](https://github.com/docker/bake-action/releases)
- [Commits](https://github.com/docker/bake-action/compare/6614cfa25eff9a0b2b2697efb0b6159e7680d584...d3418bd7d0e9324001bca92fa8ba175ea7e6dc9b)

---
updated-dependencies:
- dependency-name: docker/bake-action
  dependency-version: 7.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-07-03 10:54:24 +00:00
dependabot[bot] 0dc6ac338c build(deps): bump docker/build-push-action from 7.2.0 to 7.3.0
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 7.2.0 to 7.3.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/f9f3042f7e2789586610d6e8b85c8f03e5195baf...53b7df96c91f9c12dcc8a07bcb9ccacbed38856a)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-version: 7.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-07-03 10:54:04 +00:00
dependabot[bot] 4053da9e9d build(deps): bump docker/bake-action/subaction/matrix
Bumps [docker/bake-action/subaction/matrix](https://github.com/docker/bake-action) from 7.2.0 to 7.3.0.
- [Release notes](https://github.com/docker/bake-action/releases)
- [Commits](https://github.com/docker/bake-action/compare/6614cfa25eff9a0b2b2697efb0b6159e7680d584...d3418bd7d0e9324001bca92fa8ba175ea7e6dc9b)

---
updated-dependencies:
- dependency-name: docker/bake-action/subaction/matrix
  dependency-version: 7.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-07-03 10:52:38 +00:00
12 changed files with 296 additions and 127 deletions
+4 -4
View File
@@ -163,13 +163,13 @@ jobs:
docker run -d -p 5000:5000 --restart=always --name registry registry:2 docker run -d -p 5000:5000 --restart=always --name registry registry:2
- -
name: Set up Docker Buildx name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0 uses: docker/setup-buildx-action@bb05f3f5519dd87d3ba754cc423b652a5edd6d2c # v4.2.0
with: with:
driver: docker driver: docker
driver-opts: network=host driver-opts: network=host
- -
name: Build and push name: Build and push
uses: docker/build-push-action@f9f3042f7e2789586610d6e8b85c8f03e5195baf # v7.2.0 uses: docker/build-push-action@53b7df96c91f9c12dcc8a07bcb9ccacbed38856a # v7.3.0
with: with:
context: ./test context: ./test
push: true push: true
@@ -202,13 +202,13 @@ jobs:
docker run -d -p 5000:5000 --restart=always --name registry registry:2 docker run -d -p 5000:5000 --restart=always --name registry registry:2
- -
name: Set up Docker Buildx name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0 uses: docker/setup-buildx-action@bb05f3f5519dd87d3ba754cc423b652a5edd6d2c # v4.2.0
with: with:
driver: docker driver: docker
driver-opts: network=host driver-opts: network=host
- -
name: Build and push name: Build and push
uses: docker/build-push-action@f9f3042f7e2789586610d6e8b85c8f03e5195baf # v7.2.0 uses: docker/build-push-action@53b7df96c91f9c12dcc8a07bcb9ccacbed38856a # v7.3.0
with: with:
context: ./test context: ./test
push: true push: true
+2 -2
View File
@@ -35,12 +35,12 @@ jobs:
node-version: ${{ env.NODE_VERSION }} node-version: ${{ env.NODE_VERSION }}
- -
name: Initialize CodeQL name: Initialize CodeQL
uses: github/codeql-action/init@54f647b7e1bb85c95cddabcd46b0c578ec92bc1a # v4.36.3 uses: github/codeql-action/init@99df26d4f13ea111d4ec1a7dddef6063f76b97e9 # v4.37.0
with: with:
languages: javascript-typescript languages: javascript-typescript
build-mode: none build-mode: none
- -
name: Perform CodeQL Analysis name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@54f647b7e1bb85c95cddabcd46b0c578ec92bc1a # v4.36.3 uses: github/codeql-action/analyze@99df26d4f13ea111d4ec1a7dddef6063f76b97e9 # v4.37.0
with: with:
category: "/language:javascript-typescript" category: "/language:javascript-typescript"
+1 -1
View File
@@ -23,7 +23,7 @@ jobs:
uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
- -
name: Test name: Test
uses: docker/bake-action@6614cfa25eff9a0b2b2697efb0b6159e7680d584 # v7.2.0 uses: docker/bake-action@d3418bd7d0e9324001bca92fa8ba175ea7e6dc9b # v7.3.0
with: with:
source: . source: .
targets: test targets: test
+168
View File
@@ -0,0 +1,168 @@
name: update-deps
permissions:
contents: read
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
on:
workflow_dispatch:
schedule:
- cron: '0 9 * * *'
push:
branches:
- 'master'
jobs:
update:
runs-on: ubuntu-24.04
environment: update-deps # secrets are gated by this environment
timeout-minutes: 10
permissions:
contents: write
pull-requests: write
strategy:
fail-fast: false
matrix:
dep:
- regctl
- undock
steps:
-
name: GitHub auth token from GitHub App
id: write-app
uses: actions/create-github-app-token@bcd2ba49218906704ab6c1aa796996da409d3eb1 # v3.2.0
with:
client-id: ${{ secrets.GHACTIONS_REPO_WRITE_APP_ID }}
private-key: ${{ secrets.GHACTIONS_REPO_WRITE_APP_PRIVATE_KEY }}
owner: docker
repositories: setup-docker-action
permission-contents: write
permission-pull-requests: write
-
name: Checkout
uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0
with:
token: ${{ steps.write-app.outputs.token }}
fetch-depth: 0
persist-credentials: false
-
name: Update dependency
id: update
uses: actions/github-script@3a2844b7e9c422d3c10d287c895573f7108da1b3 # v9.0.0
env:
INPUT_DEP: ${{ matrix.dep }}
with:
script: |
const fs = require('fs');
const path = require('path');
const dep = core.getInput('dep', {required: true});
function escapeRegExp(value) {
return value.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
}
function tsConstStringPattern(key) {
return new RegExp(`^(const ${escapeRegExp(key)} = ')([^']*)(';)$`, 'm');
}
async function readJsonFromActionsToolkit(relativePath) {
const response = await github.rest.repos.getContent({
owner: 'docker',
repo: 'actions-toolkit',
path: relativePath,
ref: 'main'
});
if (Array.isArray(response.data) || response.data.type !== 'file') {
throw new Error(`Expected ${relativePath} to be a file`);
}
return JSON.parse(Buffer.from(response.data.content, response.data.encoding).toString('utf8'));
}
async function readLatestTag(relativePath) {
const tag = (await readJsonFromActionsToolkit(relativePath))?.latest?.tag_name;
if (!tag) {
throw new Error(`Unable to resolve latest tag from ${relativePath}`);
}
return tag;
}
const dependencyConfigs = {
regctl: {
name: 'Regctl version',
branch: 'deps/regctl-version',
sourcePath: '.github/regclient-releases.json',
sourceUrl: 'https://github.com/docker/actions-toolkit/blob/main/.github/regclient-releases.json',
key: 'regctlDefaultVersion'
},
undock: {
name: 'Undock version',
branch: 'deps/undock-version',
sourcePath: '.github/undock-releases.json',
sourceUrl: 'https://github.com/docker/actions-toolkit/blob/main/.github/undock-releases.json',
key: 'undockDefaultVersion'
}
};
const config = dependencyConfigs[dep];
if (!config) {
core.setFailed(`Unknown dependency ${dep}`);
return;
}
const version = await readLatestTag(config.sourcePath);
const targetPath = 'src/main.ts';
const absolutePath = path.join(process.env.GITHUB_WORKSPACE, targetPath);
const content = fs.readFileSync(absolutePath, 'utf8');
const pattern = tsConstStringPattern(config.key);
const match = content.match(pattern);
if (!match) {
throw new Error(`Missing ${config.key} in ${targetPath}`);
}
const previousVersion = match[2];
const changed = previousVersion !== version;
if (changed) {
fs.writeFileSync(
absolutePath,
content.replace(pattern, `$1${version}$3`),
'utf8'
);
core.info(`New ${config.name} ${version} found`);
} else {
core.info(`No workspace changes needed for ${config.name}`);
}
core.info(`Resolved ${config.name} from ${config.sourceUrl}`);
core.setOutput('changed', String(changed));
core.setOutput('branch', config.branch);
core.setOutput('title', `chore(deps): update ${config.name} from ${previousVersion} to ${version}`);
core.setOutput('before', previousVersion);
core.setOutput('after', version);
core.setOutput('source-url', config.sourceUrl);
-
name: Build
if: steps.update.outputs.changed == 'true'
uses: docker/bake-action@6614cfa25eff9a0b2b2697efb0b6159e7680d584 # v7.2.0
with:
source: .
targets: build
-
name: Create pull request
uses: peter-evans/create-pull-request@5f6978faf089d4d20b00c7766989d076bb2fc7f1 # v8.1.1
with:
base: master
branch: ${{ steps.update.outputs.branch }}
token: ${{ steps.write-app.outputs.token }}
commit-message: ${{ steps.update.outputs.title }}
title: ${{ steps.update.outputs.title }}
signoff: true
sign-commits: true
delete-branch: true
body: |
This updates the pinned default in `src/main.ts` from `${{ steps.update.outputs.before }}` to `${{ steps.update.outputs.after }}` and refreshes generated `dist` content.
The source of truth for this update is ${{ steps.update.outputs.source-url }}.
+1 -1
View File
@@ -37,7 +37,7 @@ jobs:
token: ${{ steps.docker-read-app.outputs.token }} token: ${{ steps.docker-read-app.outputs.token }}
- -
name: Build name: Build
uses: docker/bake-action@6614cfa25eff9a0b2b2697efb0b6159e7680d584 # v7.2.0 uses: docker/bake-action@d3418bd7d0e9324001bca92fa8ba175ea7e6dc9b # v7.3.0
with: with:
source: . source: .
targets: build targets: build
+2 -2
View File
@@ -26,7 +26,7 @@ jobs:
- -
name: Generate matrix name: Generate matrix
id: generate id: generate
uses: docker/bake-action/subaction/matrix@6614cfa25eff9a0b2b2697efb0b6159e7680d584 # v7.2.0 uses: docker/bake-action/subaction/matrix@d3418bd7d0e9324001bca92fa8ba175ea7e6dc9b # v7.3.0
with: with:
target: validate target: validate
@@ -41,6 +41,6 @@ jobs:
steps: steps:
- -
name: Validate name: Validate
uses: docker/bake-action@6614cfa25eff9a0b2b2697efb0b6159e7680d584 # v7.2.0 uses: docker/bake-action@d3418bd7d0e9324001bca92fa8ba175ea7e6dc9b # v7.3.0
with: with:
targets: ${{ matrix.target }} targets: ${{ matrix.target }}
Generated Vendored
+68 -68
View File
File diff suppressed because one or more lines are too long
Generated Vendored
+3 -3
View File
File diff suppressed because one or more lines are too long
Generated Vendored
+3 -3
View File
@@ -216,7 +216,7 @@ Apache License
The following npm package may be included in this product: The following npm package may be included in this product:
- @docker/actions-toolkit@0.92.0 - @docker/actions-toolkit@0.93.0
This package contains the following license: This package contains the following license:
@@ -1792,7 +1792,7 @@ SOFTWARE.
The following npm package may be included in this product: The following npm package may be included in this product:
- js-yaml@5.2.0 - js-yaml@5.2.1
This package contains the following license: This package contains the following license:
@@ -4187,7 +4187,7 @@ THE SOFTWARE.
The following npm package may be included in this product: The following npm package may be included in this product:
- csv-parse@7.0.0 - csv-parse@7.0.1
This package contains the following license: This package contains the following license:
+1 -1
View File
@@ -24,7 +24,7 @@
"packageManager": "yarn@4.15.0", "packageManager": "yarn@4.15.0",
"dependencies": { "dependencies": {
"@actions/core": "^3.0.1", "@actions/core": "^3.0.1",
"@docker/actions-toolkit": "^0.92.0" "@docker/actions-toolkit": "^0.93.0"
}, },
"devDependencies": { "devDependencies": {
"@eslint/js": "^9.39.3", "@eslint/js": "^9.39.3",
+2 -2
View File
@@ -10,8 +10,8 @@ import {Install as UndockInstall} from '@docker/actions-toolkit/lib/undock/insta
import * as context from './context.js'; import * as context from './context.js';
import * as stateHelper from './state-helper.js'; import * as stateHelper from './state-helper.js';
const regctlDefaultVersion = 'v0.8.3'; const regctlDefaultVersion = 'v0.11.5';
const undockDefaultVersion = 'v0.10.0'; const undockDefaultVersion = 'v0.14.0';
actionsToolkit.run( actionsToolkit.run(
// main // main
+41 -40
View File
@@ -436,9 +436,9 @@ __metadata:
languageName: node languageName: node
linkType: hard linkType: hard
"@docker/actions-toolkit@npm:^0.92.0": "@docker/actions-toolkit@npm:^0.93.0":
version: 0.92.0 version: 0.93.0
resolution: "@docker/actions-toolkit@npm:0.92.0" resolution: "@docker/actions-toolkit@npm:0.93.0"
dependencies: dependencies:
"@actions/artifact": "npm:^6.2.1" "@actions/artifact": "npm:^6.2.1"
"@actions/cache": "npm:^6.1.0" "@actions/cache": "npm:^6.1.0"
@@ -452,16 +452,16 @@ __metadata:
"@sigstore/tuf": "npm:^5.0.0" "@sigstore/tuf": "npm:^5.0.0"
"@sigstore/verify": "npm:^4.1.0" "@sigstore/verify": "npm:^4.1.0"
async-retry: "npm:^1.3.3" async-retry: "npm:^1.3.3"
csv-parse: "npm:^7.0.0" csv-parse: "npm:^7.0.1"
gunzip-maybe: "npm:^1.4.2" gunzip-maybe: "npm:^1.4.2"
handlebars: "npm:^4.7.9" handlebars: "npm:^4.7.9"
he: "npm:^1.2.0" he: "npm:^1.2.0"
js-yaml: "npm:^5.2.0" js-yaml: "npm:^5.2.1"
jwt-decode: "npm:^4.0.0" jwt-decode: "npm:^4.0.0"
semver: "npm:^7.8.5" semver: "npm:^7.8.5"
tar-stream: "npm:^3.2.0" tar-stream: "npm:^3.2.0"
tmp: "npm:^0.2.7" tmp: "npm:^0.2.7"
checksum: 10/599cea84b897069c53744a2f05371c6d9ad60da18448b4431273529b92fd2d77ddc718ee205cf0bf1da53083d412da90b1067f1e64a5fdac73fe71d486726064 checksum: 10/31643db575faf865666247661007d6e5fc8bc2b737001a522879829fcbeeab7b11b886d2cc26d074a26814361ec8427484d7b94ad9155d52c41398a7dc27000e
languageName: node languageName: node
linkType: hard linkType: hard
@@ -937,7 +937,7 @@ __metadata:
languageName: node languageName: node
linkType: hard linkType: hard
"@gar/promise-retry@npm:^1.0.3": "@gar/promise-retry@npm:^1.0.2, @gar/promise-retry@npm:^1.0.3":
version: 1.0.3 version: 1.0.3
resolution: "@gar/promise-retry@npm:1.0.3" resolution: "@gar/promise-retry@npm:1.0.3"
checksum: 10/0d13ea3bb1025755e055648f6e290d2a7e0c87affaf552218f09f66b3fcd9ea9d5c9cc5fe2aa6e285e1530437768e40f9448fe9a86f4f3417b216dcf488d3d1a checksum: 10/0d13ea3bb1025755e055648f6e290d2a7e0c87affaf552218f09f66b3fcd9ea9d5c9cc5fe2aa6e285e1530437768e40f9448fe9a86f4f3417b216dcf488d3d1a
@@ -1661,7 +1661,7 @@ __metadata:
languageName: node languageName: node
linkType: hard linkType: hard
"@sigstore/core@npm:^3.1.0, @sigstore/core@npm:^3.2.1": "@sigstore/core@npm:^3.2.0, @sigstore/core@npm:^3.2.1":
version: 3.2.1 version: 3.2.1
resolution: "@sigstore/core@npm:3.2.1" resolution: "@sigstore/core@npm:3.2.1"
checksum: 10/2f6c1ced55f8ed3f7fc705a668eb95db9471511dfb1f054927822bf97a051dd62228ecf6a9f1932d240c2c4ae69a3b5066550789e5ad8f4257839a4370e5a120 checksum: 10/2f6c1ced55f8ed3f7fc705a668eb95db9471511dfb1f054927822bf97a051dd62228ecf6a9f1932d240c2c4ae69a3b5066550789e5ad8f4257839a4370e5a120
@@ -1682,27 +1682,27 @@ __metadata:
languageName: node languageName: node
linkType: hard linkType: hard
"@sigstore/sign@npm:^4.1.0": "@sigstore/sign@npm:^4.1.1":
version: 4.1.0 version: 4.1.1
resolution: "@sigstore/sign@npm:4.1.0" resolution: "@sigstore/sign@npm:4.1.1"
dependencies: dependencies:
"@gar/promise-retry": "npm:^1.0.2"
"@sigstore/bundle": "npm:^4.0.0" "@sigstore/bundle": "npm:^4.0.0"
"@sigstore/core": "npm:^3.1.0" "@sigstore/core": "npm:^3.2.0"
"@sigstore/protobuf-specs": "npm:^0.5.0" "@sigstore/protobuf-specs": "npm:^0.5.0"
make-fetch-happen: "npm:^15.0.3" make-fetch-happen: "npm:^15.0.4"
proc-log: "npm:^6.1.0" proc-log: "npm:^6.1.0"
promise-retry: "npm:^2.0.1" checksum: 10/c9424813ed83ae26111dd3a190dbfd776901cfc245ebb9aa68e133a7ffcbf8fc053f01d999a451e44805a291921ba4d2dfe80e3fd41b20cd5becd26aae5f5e7c
checksum: 10/e5441d4cacf0f203f329e96bb7a3ca77682cfdf90d6448ad368344056fd8d55c01742e2b636545d55364490a87988f767f2b23168b2d9cc52ef3d8fe9e9496aa
languageName: node languageName: node
linkType: hard linkType: hard
"@sigstore/tuf@npm:^4.0.1": "@sigstore/tuf@npm:^4.0.2":
version: 4.0.1 version: 4.0.2
resolution: "@sigstore/tuf@npm:4.0.1" resolution: "@sigstore/tuf@npm:4.0.2"
dependencies: dependencies:
"@sigstore/protobuf-specs": "npm:^0.5.0" "@sigstore/protobuf-specs": "npm:^0.5.0"
tuf-js: "npm:^4.1.0" tuf-js: "npm:^4.1.0"
checksum: 10/1a9725aa95eba55badf24442fe8a71c6d68f8b7d17a6b2a5e4b5590117f0181881b3485cfa57ea375b7c3a38421dbffdfcbe86e6623d903e17e3a8359837e268 checksum: 10/14882b8e71be4185ec417744b97a47392a50da00aafd4207a46bb74b40aa019ebf22d928052fd2d31a8da0da1efe7ebebac5a70898b31a74239a1ada997be754
languageName: node languageName: node
linkType: hard linkType: hard
@@ -1716,7 +1716,7 @@ __metadata:
languageName: node languageName: node
linkType: hard linkType: hard
"@sigstore/verify@npm:^3.1.0": "@sigstore/verify@npm:^3.1.1":
version: 3.1.1 version: 3.1.1
resolution: "@sigstore/verify@npm:3.1.1" resolution: "@sigstore/verify@npm:3.1.1"
dependencies: dependencies:
@@ -2828,10 +2828,10 @@ __metadata:
languageName: node languageName: node
linkType: hard linkType: hard
"csv-parse@npm:^7.0.0": "csv-parse@npm:^7.0.1":
version: 7.0.0 version: 7.0.1
resolution: "csv-parse@npm:7.0.0" resolution: "csv-parse@npm:7.0.1"
checksum: 10/53c96e6b4ff80047713bb4d2967d06495890d4b628284a80271860be089fdb5a74cd97c76fd535a00ad26b11cc6e4fc5a243658e5377c0a6334ddd104620d169 checksum: 10/5c914f01181dbb381068b98e17b49361d853faa95db3e8e82bc96b6a0de5313ecc8325a77db35ff66644d7747099965ba3167ec21bd9ce4500edf21b5bdd49bf
languageName: node languageName: node
linkType: hard linkType: hard
@@ -2887,7 +2887,7 @@ __metadata:
resolution: "docker-setup-docker@workspace:." resolution: "docker-setup-docker@workspace:."
dependencies: dependencies:
"@actions/core": "npm:^3.0.1" "@actions/core": "npm:^3.0.1"
"@docker/actions-toolkit": "npm:^0.92.0" "@docker/actions-toolkit": "npm:^0.93.0"
"@eslint/js": "npm:^9.39.3" "@eslint/js": "npm:^9.39.3"
"@types/node": "npm:^24.11.0" "@types/node": "npm:^24.11.0"
"@typescript-eslint/eslint-plugin": "npm:^8.56.1" "@typescript-eslint/eslint-plugin": "npm:^8.56.1"
@@ -4162,14 +4162,14 @@ __metadata:
languageName: node languageName: node
linkType: hard linkType: hard
"js-yaml@npm:^5.2.0": "js-yaml@npm:^5.2.1":
version: 5.2.0 version: 5.2.1
resolution: "js-yaml@npm:5.2.0" resolution: "js-yaml@npm:5.2.1"
dependencies: dependencies:
argparse: "npm:^2.0.1" argparse: "npm:^2.0.1"
bin: bin:
js-yaml: bin/js-yaml.mjs js-yaml: bin/js-yaml.mjs
checksum: 10/8a5e55c5d0fcafae4ac02114a99dc070048b8e5a82a056089ce1f69f8a00fd8eb05b622e76ad50aac1f9d409010636c9616c6b2ed4e58dae138379a60d301220 checksum: 10/e1eca2d21c15572585bb236d9fde31d6789eb50b9c63e8753fa7e0777bc480f7521cad517bd7a0c66f27dfc27ddcd7100beeefa51c1a50e10e98f2e009633c3d
languageName: node languageName: node
linkType: hard linkType: hard
@@ -4464,12 +4464,13 @@ __metadata:
languageName: node languageName: node
linkType: hard linkType: hard
"make-fetch-happen@npm:^15.0.3": "make-fetch-happen@npm:^15.0.4":
version: 15.0.4 version: 15.0.6
resolution: "make-fetch-happen@npm:15.0.4" resolution: "make-fetch-happen@npm:15.0.6"
dependencies: dependencies:
"@gar/promise-retry": "npm:^1.0.0" "@gar/promise-retry": "npm:^1.0.0"
"@npmcli/agent": "npm:^4.0.0" "@npmcli/agent": "npm:^4.0.0"
"@npmcli/redact": "npm:^4.0.0"
cacache: "npm:^20.0.1" cacache: "npm:^20.0.1"
http-cache-semantics: "npm:^4.1.1" http-cache-semantics: "npm:^4.1.1"
minipass: "npm:^7.0.2" minipass: "npm:^7.0.2"
@@ -4479,7 +4480,7 @@ __metadata:
negotiator: "npm:^1.0.0" negotiator: "npm:^1.0.0"
proc-log: "npm:^6.0.0" proc-log: "npm:^6.0.0"
ssri: "npm:^13.0.0" ssri: "npm:^13.0.0"
checksum: 10/4aa75baab500eff4259f2e1a3e76cf01ab3a3cd750037e4bd7b5e22bc5a60f12cc766b3c45e6288accb5ab609e88de5019a8014e0f96f6594b7b03cb504f4b81 checksum: 10/01bc13d8e851212d55bbf0510dd5f94b9f239f253dfbd84275e23d1798ba7323a08b3c16031b83676fe75381ad5c70d17542c7b6828c98ee6e0d3eacdaf83ebb
languageName: node languageName: node
linkType: hard linkType: hard
@@ -5605,16 +5606,16 @@ __metadata:
linkType: hard linkType: hard
"sigstore@npm:^4.0.0": "sigstore@npm:^4.0.0":
version: 4.1.0 version: 4.1.1
resolution: "sigstore@npm:4.1.0" resolution: "sigstore@npm:4.1.1"
dependencies: dependencies:
"@sigstore/bundle": "npm:^4.0.0" "@sigstore/bundle": "npm:^4.0.0"
"@sigstore/core": "npm:^3.1.0" "@sigstore/core": "npm:^3.2.1"
"@sigstore/protobuf-specs": "npm:^0.5.0" "@sigstore/protobuf-specs": "npm:^0.5.0"
"@sigstore/sign": "npm:^4.1.0" "@sigstore/sign": "npm:^4.1.1"
"@sigstore/tuf": "npm:^4.0.1" "@sigstore/tuf": "npm:^4.0.2"
"@sigstore/verify": "npm:^3.1.0" "@sigstore/verify": "npm:^3.1.1"
checksum: 10/7312eed22f82bebcd80a897a163e220bb1df2c084c308d17fb431ff03ef28cf20e3b17312fd8024793dcefa27e794c31174d604a28fc85672a9d6d7f34bbd4a6 checksum: 10/8fb38bbdc3ee1e79b3f19e0015ebf35b7d7f890673722f182960ec88f02a52f2f631fc983e7f8bafa3a37653a760ddc00277721a8f9159ee6ee311159ca3dfbe
languageName: node languageName: node
linkType: hard linkType: hard