Skip to content

test#14

Closed
mtahle wants to merge 23 commits into
copilot/sub-pr-2from
main
Closed

test#14
mtahle wants to merge 23 commits into
copilot/sub-pr-2from
main

Conversation

@mtahle

@mtahle mtahle commented Mar 18, 2026

Copy link
Copy Markdown
Owner

No description provided.

mtahle and others added 23 commits March 18, 2026 10:10
@mtahle
Merge pull request #2 from mtahle/add/s3syncy
ad136b5 
chore: Update GitHub Actions to latest versions (checkout@v4, remove …
@dependabot
chore(ci): Bump actions/upload-artifact from 4 to 7
afc0abd 
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4 to 7.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@v4...v7)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: '7'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(ci): Bump actions/setup-python from 4 to 6
7ac63ca 
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4 to 6.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](actions/setup-python@v4...v6)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
fix: Update CodeQL actions to v4 and fix TruffleHog configuration
377a327 
- Update github/codeql-action from v3 to v4 to avoid deprecation
- Fix TruffleHog invalid 'extra_kwargs' parameter (use 'extra_args')
- Use proper BASE/HEAD commits to avoid 'same commit' error
- Update upload-sarif action to v4
@mtahle
Merge pull request #8 from mtahle/add/s3syncy
55b2eec 
fix: Update CodeQL actions to v4 and fix TruffleHog configuration
@mtahle
Merge pull request #7 from mtahle/dependabot/github_actions/actions/s…
4527f88 
…etup-python-6

chore(ci): Bump actions/setup-python from 4 to 6
@dependabot
chore(ci): Bump actions/checkout from 4 to 6
1f43ad7 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 6.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@v4...v6)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@mtahle
Merge pull request #4 from mtahle/dependabot/github_actions/actions/u…
a146659 
…pload-artifact-7

chore(ci): Bump actions/upload-artifact from 4 to 7
@mtahle @github-advanced-security
Potential fix for code scanning alert no. 3: Unused import
6173653 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@mtahle @github-advanced-security
Potential fix for code scanning alert no. 2: Unused import
fced316 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@mtahle @github-advanced-security
Potential fix for code scanning alert no. 2: Unused import
da742f8 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@mtahle @github-advanced-security
Potential fix for code scanning alert no. 1: Unused import
6cb9ea2 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@mtahle @github-advanced-security
Potential fix for code scanning alert no. 5: Empty except
96ce25a 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@mtahle @github-advanced-security
Potential fix for code scanning alert no. 4: Empty except
f13298a 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
@mtahle
Merge pull request #5 from mtahle/dependabot/github_actions/actions/c…
c15111f 
…heckout-6

chore(ci): Bump actions/checkout from 4 to 6
@mtahle
Merge pull request #9 from mtahle/alert-autofix-3
e0ddeda 
Potential fix for code scanning alert no. 3: Unused import
@mtahle
Merge pull request #10 from mtahle/alert-autofix-2
a454783 
Potential fix for code scanning alert no. 2: Unused import
@mtahle
Potential fix for pull request finding
889e7d3 
Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>
@mtahle
Merge pull request #12 from mtahle/alert-autofix-5
67bd124 
Potential fix for code scanning alert no. 5: Empty except
@mtahle
Merge pull request #11 from mtahle/alert-autofix-1
75f30a9 
Potential fix for code scanning alert no. 1: Unused import
@mtahle
Merge pull request #13 from mtahle/alert-autofix-4
51f4b82 
Potential fix for code scanning alert no. 4: Empty except
fix: Restrict SARIF uploads to main branch and tag-based publishing
190743b 
- Add security-events write permission to trivy-scan job
- Skip SARIF upload for pull requests from forks (prevents permission errors)
- Remove push-based trigger from publish workflow
- Publishing now only on tag creation via release[published] event
- Resolves 'Resource not accessible by integration' warnings
feat: Add SonarQube analysis workflow and project properties
7a783a3
@mtahle mtahle closed this Mar 18, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mtahle