Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Repository Problems

These problems occurred while renovating this repository. View logs.

• ⚠️ WARN: Package lookup failures

---

Warning

Renovate failed to look up the following dependencies: Could not determine new digest for update (github-tags package ruby/setup-ruby), Could not determine new digest for update (github-tags package tj-actions/changed-files).

Files affected: .github/reusable-steps/install-deps/action.yaml, .github/workflows/linting.yml

---

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• chore(deps): update dependency vite to v6 [security]
• chore(deps): update actions/setup-node digest to 48b55a0
• fix(deps): update non-major dependencies (@actions/github, @datadog/browser-rum, @dotenvx/dotenvx, @kong/kongponents, @kong/spec-renderer, ajv, algoliasearch, axios, dockerode, instantsearch.css, liquid-c, node, ruby, slackapi/slack-github-action, snowflake-sdk, step-security/harden-runner, vue, vue-instantsearch, yarn)
• chore(deps): update dependency netlify-cli to v25
• chore(deps): update dependency ruby to v4
• chore(deps): update dependency tailwindcss to v4
• fix(deps): update dependency @vitejs/plugin-vue to v6
• fix(deps): update dependency dockerode to v5
• fix(deps): update dependency undici to v8
• Click on this checkbox to rebase all open PRs at once

Detected Dependencies

bundler (1)

Gemfile (16)

• activesupport lock file @ 8.1.3
• csv lock file @ 3.3.5
• jekyll-include-cache lock file @ 0.2.1
• jekyll-vite lock file @ 3.0.4
• kramdown-parser-gfm lock file @ 1.1.0
• liquid-c lock file @ 4.0.1 → [Updates: undefined]
• nodo lock file @ 1.8.2
• nokogiri lock file @ 1.19.2
• rouge '~> 4.3'
• mini_portile2 '~> 2.8'
• byebug lock file @ 13.0.0
• foreman lock file @ 0.90.0
• pry lock file @ 0.16.0
• puma lock file @ 8.0.0
• rubocop lock file @ 1.86.1
• jekyll-contentblocks lock file @ 1.2.0

docker-compose (3)

app/_includes/_files/event-gateway/docker-compose-mtls.yaml (3)

• apache/kafka 4.2.0
• apache/kafka 4.2.0
• apache/kafka 4.2.0

app/_includes/_files/event-gateway/docker-compose-sasl.yaml (3)

• apache/kafka 4.2.0
• apache/kafka 4.2.0
• apache/kafka 4.2.0

app/_includes/_files/event-gateway/docker-compose.yaml (4)

• apache/kafka 4.2.0
• apache/kafka 4.2.0
• apache/kafka 4.2.0
• confluentinc/cp-schema-registry 8.2.0

dockerfile (1)

tools/automated-tests/docker/Dockerfile

github-actions (22)

.github/reusable-steps/install-deps/action.yaml (4)

• ruby/setup-ruby v1@84684c07c1965536eb4802c8daf1a77968df0cb1
• actions/cache v5@27d5ce7f107fe9357f9df03efb73ab90386fccae
• actions/setup-node v6@53b83947a5a98c8d113130e565377fae1a50d02f → [Updates: v6]
• node 24

.github/reusable-steps/notify-slack/action.yaml (1)

• slackapi/slack-github-action v3.0.1@af78098f536edbc4de71162a307590698245be95 → [Updates: v3.0.2]

.github/reusable-steps/publish-test-report/action.yaml (1)

• ctrf-io/github-test-reporter v1@0f299074936c32ccaab5be5230511f6b2b9080aa

.github/workflows/automated-tests.yaml (3)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• Kong/kong-license master

.github/workflows/build-automated-tests-image.yaml (6)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• docker/setup-buildx-action v4.0.0@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd
• docker/login-action v4.1.0@4907a6ddec9925e35a0a9e82d7399ccc52663121
• actions/cache v5.0.5@27d5ce7f107fe9357f9df03efb73ab90386fccae
• docker/build-push-action v7.1.0@bcafcacb16a39f128d818304e6c9c0c18556b85f

.github/workflows/check-links-scheduled.yml (2)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd

.github/workflows/check-links.yml (6)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/github-script v9@3a2844b7e9c422d3c10d287c895573f7108da1b3
• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• fountainhead/action-wait-for-check v1.2.0@5a908a24814494009c4bb27c242ea38c93c593be
• jakepartusch/wait-for-netlify-action v1.4@f1e137043864b9ab9034ae3a5adc1c108e3f1a48

.github/workflows/event-gateway-tests.yaml (3)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• Kong/kong-license master

.github/workflows/gateway-tests.yaml (3)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• Kong/kong-license master

.github/workflows/generate-gateway-plugins-changelogs.yml (6)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-node v6@53b83947a5a98c8d113130e565377fae1a50d02f → [Updates: v6]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• peter-evans/create-pull-request v8@5f6978faf089d4d20b00c7766989d076bb2fc7f1
• node 24

.github/workflows/generate-inso-cli-docs.yaml (5)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-node v6@53b83947a5a98c8d113130e565377fae1a50d02f → [Updates: v6]
• peter-evans/create-pull-request v8@5f6978faf089d4d20b00c7766989d076bb2fc7f1

.github/workflows/generate-kong-conf-json.yml (6)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-node v6@53b83947a5a98c8d113130e565377fae1a50d02f → [Updates: v6]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• peter-evans/create-pull-request v8@5f6978faf089d4d20b00c7766989d076bb2fc7f1
• node 24

.github/workflows/linting.yml (7)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/github-script v9@3a2844b7e9c422d3c10d287c895573f7108da1b3
• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• tj-actions/changed-files 47@24d32ffd492484c1d75e0c0b894501ddb9d30d62
• errata-ai/vale-action v2.1.1@d89dee975228ae261d22c15adcd03578634d429c
• errata-ai/vale-action v2.1.1@d89dee975228ae261d22c15adcd03578634d429c

.github/workflows/missing-redirects.yaml (6)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/github-script v9@3a2844b7e9c422d3c10d287c895573f7108da1b3
• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• fountainhead/action-wait-for-check v1.2.0@5a908a24814494009c4bb27c242ea38c93c593be
• jakepartusch/wait-for-netlify-action v1.4@f1e137043864b9ab9034ae3a5adc1c108e3f1a48

.github/workflows/security.yaml (3)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• zgosalvez/github-actions-ensure-sha-pinned-actions v5@ca46236c6ce584ae24bc6283ba8dcf4b3ec8a066

.github/workflows/sync-deck.yml (4)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• Kong/setup-deck v1
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• peter-evans/create-pull-request v8@5f6978faf089d4d20b00c7766989d076bb2fc7f1

.github/workflows/sync-kongctl.yml (4)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• kong/setup-kongctl v1@659d5c2b0f4db2e25d63797035358a22907421db
• peter-evans/create-pull-request v8@5f6978faf089d4d20b00c7766989d076bb2fc7f1

.github/workflows/sync-konnect-oas-data.yml (3)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• peter-evans/create-pull-request v8@5f6978faf089d4d20b00c7766989d076bb2fc7f1

.github/workflows/sync-kuma-submodule.yml (4)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• peter-evans/create-pull-request v8@5f6978faf089d4d20b00c7766989d076bb2fc7f1

.github/workflows/sync-preview-branch.yaml (2)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd

.github/workflows/validate-frontmatters.yml (2)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd

.github/workflows/validate-plugin-examples.yml (4)

• step-security/harden-runner v2.18.0@6c3c2f2c1c457b00c10c4848d6f5491db3b629df → [Updates: v2.19.0]
• actions/checkout v6@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-node v6@53b83947a5a98c8d113130e565377fae1a50d02f → [Updates: v6]
• node 24

npm (16)

package.json (30)

• @algolia/autocomplete-core ^1.18.1
• @algolia/autocomplete-plugin-tags ^1.18.1
• @algolia/autocomplete-preset-algolia ^1.18.1
• @datadog/browser-rum ^6.7.0 → [Updates: ^6.7.0]
• @github/clipboard-copy-element ^1.3.0
• @kong/kongponents ^9.14.24 → [Updates: ^9.14.24]
• @kong/sdk-portal-js ^2.15.2
• @kong/spec-renderer ^1.95.8 → [Updates: ^1.95.8]
• @tailwindcss/forms ^0.5.10
• @vitejs/plugin-vue ^5.1.2 → [Updates: ^6.0.0]
• algoliasearch ^5.20.0 → [Updates: ^5.20.0]
• axios ^1.7.4 → [Updates: ^1.7.4]
• instantsearch.css ^8.5.1 → [Updates: ^8.5.1]
• mermaid ^11.6.0
• node-fetch ^3.3.2
• shiki ^4.0.2
• snowflake-sdk 2.3.4 → [Updates: 2.4.0]
• uuid ^14.0.0
• vue ^3.4.38 → [Updates: ^3.4.38]
• vue-instantsearch ^4.20.4 → [Updates: ^4.20.4]
• @tailwindcss/typography ^0.5.15
• autoprefixer ^10.4.19
• netlify-cli 24.11.3 → [Updates: 25.6.0]
• postcss ^8.4.38
• tailwindcss ^3.4.3 → [Updates: ^4.0.0]
• vite ^5.4.16 → [Updates: ^6.0.0]
• vite-plugin-ruby ^5.0.0
• vite-svg-loader ^5.1.0
• wait-on ^9.0.0
• yarn 4.9.2 → [Updates: 4.14.1]

tools/automated-tests/package.json (13)

• @dotenvx/dotenvx ^1.51.1 → [Updates: ^1.51.1]
• debug ^4.4.0
• dockerode ^4.0.3 → [Updates: ^4.0.3, ^5.0.0]
• tinyglobby ^0.2.12
• fetch-cookie ^3.1.0
• formdata-node ^6.0.3
• gray-matter ^4.0.3
• js-yaml ^4.1.0
• minimist ^1.2.8
• node-fetch ^3.3.2
• playwright ^1.54.2
• tough-cookie ^6.0.0
• undici ^7.18.2 → [Updates: ^8.0.0]

tools/broken-link-checker/package.json (5)

• @actions/github ^9.0.0 → [Updates: ^9.0.0]
• @octokit/rest ^22.0.0
• broken-link-checker ^0.7.8
• tinyglobby ^0.2.12
• minimist ^1.2.8

tools/changelog-generator/package.json (4)

• tinyglobby ^0.2.12
• js-yaml ^4.1.0
• lodash.mergewith ^4.6.2
• minimist ^1.2.8

tools/deck-versions/package.json (1)

• node-fetch ^3.3.2

tools/frontmatter-validator/package.json (5)

• ajv ^8.17.1 → [Updates: ^8.17.1]
• ajv-formats ^3.0.1
• tinyglobby ^0.2.12
• gray-matter ^4.0.3
• yaml ^2.6.0

tools/kong-conf-to-json/package.json (2)

• tinyglobby ^0.2.12
• minimist ^1.2.8

tools/kongctl-versions/package.json

tools/konnect-oas-data-generator/package.json (3)

• @kong/sdk-portal-js ^2.14.0
• axios ^1.0.0 → [Updates: ^1.0.0]
• minimist ^1.2.8

tools/missing-redirects/package.json (3)

• gray-matter ^4.0.3
• js-yaml ^4.1.0
• minimist ^1.2.8

tools/plugin-examples-validator/package.json (4)

• ajv ^8.17.1 → [Updates: ^8.17.1]
• ajv-formats ^3.0.1
• tinyglobby ^0.2.12
• yaml ^2.6.0

tools/plugins-changelog-generator/package.json (5)

• tinyglobby ^0.2.12
• gray-matter ^4.0.3
• js-yaml ^4.1.1
• minimist ^1.2.8
• semver ^7.7.2

tools/plugins-post-processor/package.json (1)

• minimist ^1.2.8

tools/scaffold-plugin/package.json (1)

• minimist ^1.2.8

tools/track-docs-changes/package.json (3)

• @octokit/rest ^22.0.0
• simple-git ^3.27.0
• yaml ^2.5.1

tools/vale-frontmatter/package.json (2)

• tinyglobby ^0.2.12
• gray-matter ^4.0.3

nvm (1)

.nvmrc (1)

• node 24.14.0 → [Updates: 24.15.0]

ruby-version (1)

.ruby-version (1)

• ruby 3.4.4 → [Updates: 3.4.9, 4.0.3]

---

• Check this box to trigger a request for Renovate to run again on this repository