Commit 9e0a017
authored
chore(deps): update github-actions deps (#3777)
This PR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| [actions/setup-node](https://redirect.github.com/actions/setup-node) |
action | minor | `v6.3.0` → `v6.4.0` |
|
[step-security/harden-runner](https://redirect.github.com/step-security/harden-runner)
| action | minor | `v2.18.0` → `v2.19.0` |
---
### Release Notes
<details>
<summary>actions/setup-node (actions/setup-node)</summary>
###
[`v6.4.0`](https://redirect.github.com/actions/setup-node/compare/v6.3.0...v6.4.0)
[Compare
Source](https://redirect.github.com/actions/setup-node/compare/v6.3.0...v6.4.0)
</details>
<details>
<summary>step-security/harden-runner
(step-security/harden-runner)</summary>
###
[`v2.19.0`](https://redirect.github.com/step-security/harden-runner/releases/tag/v2.19.0)
[Compare
Source](https://redirect.github.com/step-security/harden-runner/compare/v2.18.0...v2.19.0)
##### What's Changed
##### New Runner Support
Harden-Runner now supports Depot, Blacksmith, Namespace, and WarpBuild
runners with the same egress monitoring, runtime monitoring, and policy
enforcement available on GitHub-hosted runners.
##### Automated Incident Response for Supply Chain Attacks
- Global block list: Outbound connections to known malicious domains and
IPs are now blocked even in audit mode.
- System-defined detection rules: Harden-Runner will trigger lockdown
mode when a high risk event is detected during an active supply chain
attack (for example, a process reading the memory of the runner worker
process, a common technique for stealing GitHub Actions secrets).
##### Bug Fixes
Windows and macOS: stability and reliability fixes
**Full Changelog**:
<step-security/harden-runner@v2.18.0...v2.19.0>
</details>
---
### Configuration
📅 **Schedule**: (UTC)
- Branch creation
- "on sunday"
- Automerge
- At any time (no schedule defined)
🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.
♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.
👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config
help](https://redirect.github.com/renovatebot/renovate/discussions) if
that's undesired.
---
- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box
---
This PR was generated by [Mend Renovate](https://mend.io/renovate/).
View the [repository job
log](https://developer.mend.io/github/jaegertracing/jaeger-ui).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xNDEuMyIsInVwZGF0ZWRJblZlciI6IjQzLjE0MS4zIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJjaGFuZ2Vsb2c6ZGVwZW5kZW5jaWVzIl19-->
Signed-off-by: Mend Renovate <bot@renovateapp.com>1 parent b549413 commit 9e0a017
4 files changed
Lines changed: 5 additions & 5 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
16 | 16 | | |
17 | 17 | | |
18 | 18 | | |
19 | | - | |
| 19 | + | |
20 | 20 | | |
21 | 21 | | |
22 | 22 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
20 | 20 | | |
21 | 21 | | |
22 | 22 | | |
23 | | - | |
| 23 | + | |
24 | 24 | | |
25 | 25 | | |
26 | 26 | | |
| |||
40 | 40 | | |
41 | 41 | | |
42 | 42 | | |
43 | | - | |
| 43 | + | |
44 | 44 | | |
45 | 45 | | |
46 | 46 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
17 | 17 | | |
18 | 18 | | |
19 | 19 | | |
20 | | - | |
| 20 | + | |
21 | 21 | | |
22 | 22 | | |
23 | 23 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
20 | 20 | | |
21 | 21 | | |
22 | 22 | | |
23 | | - | |
| 23 | + | |
24 | 24 | | |
25 | 25 | | |
26 | 26 | | |
| |||
0 commit comments