New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update dependency snyk to v1.1292.4 #529

Merged

MrTelanie merged 1 commit into main from renovate/snyk-1.x

Aug 20, 2024

Contributor

renovate bot commented Aug 20, 2024 •

edited

Loading

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
snyk	`1.1291.1` -> `1.1292.4`

Release Notes

snyk/snyk (snyk)

`v1.1292.4`

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Complete changelog

Bug Fixes

deployment: Rollback of digital signature for the bundled macOS binary (#5416)

`v1.1292.3`

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Complete changelog

Bug Fixes

deployment: Add digital signature for the bundled macOS binary
(#5404)

`v1.1292.2`

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Complete changelog

Bug Fixes

container test: Improve the accuracy of identifying npm projects within docker images by removing the explicit folder ignore rules
(#5384)
container test: Pass platform parameter when pulling an image from a container registry (#5360)

`v1.1292.1`

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

Complete changelog

Bug Fixes

test,monitor: fix improper permission error handling when accessing 'enablePnpmCli' feature flag

`v1.1292.0`

The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see this documentation

News

This Snyk CLI release delivers an assortment of bug fixes and improvements.

We've added support for pnpm, giving you more flexibility in your project setup.
You can now scan npm/yarn projects even without lockfiles, ensuring comprehensive vulnerability detection regardless of your dependency management approach.
We're committed to strengthening security. This release includes redaction of additional sensitive data in debug logs, minimizing potential risks.

Complete changelog

Features

test: Added pnpm support under 'enablePnpmCli' feature flag (#5181) (46769cc)
test: Support scan of npm/yarn projects without lockfiles (e2d77a9)
monitor: Set target-reference in the monitor request (51ed8f5)
code: Centrally check if code test is enabled (#5239) (e5a00e2)
sbom: Improve depgraph for Maven projects (fbb33d7)
sbom: Use RFC 3339 for all timestamps in sbom test result (#5204) (91bf191)
language-server: Add --all-projects flag scans by default#5247k/snyk/issues/5247)) (fdcf30e)
language-server: Enable incremental scanning#5291k/snyk/issues/5291)) (d198685)
language-server: Add support for IDE themes (c1c4d08)
language-server: Consistent styling across intellij and vscode (#5282) (9aa6f76)
logging: Redact additional types of sensitive data from debug logs (#5254) (056cdab)

Bug Fixes

auth: Autodetect IDE usage and fallback to API token based authentication (#5241) (4c795e0)
iac: Upgrade iac custom rules to address Vulnerabilities#5191yk/snyk/issues/5191)) (453db24)
language-server: Caching problem when no vulnerabilities in the IDE (#5223) (89c9491)
language-server: Remove incorrect /v1 path (#5214) (cf16470)
dependencies: Update dependencies to reduce vulnerabilities (#5131) (4c7cb3c)
sbom: sbom test output padding (e3b7cac)
sbom: Fix container purl generation for apt and rpm (#5207) (fa9d512)
sbom: Retain error code during SBOM generation (#5202) (5e98aaa)
test: support cyclic dependencies in maven with dverbose (#5208) (fb24c02)
test: Add tool version and informationUri to sarif output (#5203) (b899fd3)
test: fixing several .NET bugs (#5217) (c27d767)
test: fixing a bug causing .NET beta scanning to fail on older versions of .NET (#5228) (5fdecf7)
test: .NET runtime resolution testing now supports projects targeting .NET Standard frameworks (#5169) (44d0861)
test: fix issues of type 'Cannot find module ...' in snyk-docker-plugin (#5301) (88efd54)
monitor: fix project name when using assets-project-name flag (#5077) (57dc718)

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.


          chore(deps): update dependency snyk to v1.1292.4

cc07173

renovate bot force-pushed the renovate/snyk-1.x branch from 81a7a39 to cc07173 Compare

August 20, 2024 09:21

sonarcloud bot commented Aug 20, 2024

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

MrTelanie merged commit 82c6487 into main

4 checks passed

MrTelanie deleted the renovate/snyk-1.x branch

August 20, 2024 09:23

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet