kaffee-server merge requestshttps://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests2022-05-06T11:30:43Zhttps://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/37Bump docker/build-push-action from 2.10.0 to 32022-05-06T11:30:43ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump docker/build-push-action from 2.10.0 to 3*Created by: dependabot[bot]*
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 2.10.0 to 3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/build-push-a...*Created by: dependabot[bot]*
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 2.10.0 to 3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/build-push-action/releases">docker/build-push-action's releases</a>.</em></p>
<blockquote>
<h2>v3.0.0</h2>
<ul>
<li>Node 16 as default runtime by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/564">#564</a>)
<ul>
<li>This requires a minimum <a href="https://github.com/actions/runner/releases/tag/v2.285.0">Actions Runner</a> version of v2.285.0, which is by default available in GHES 3.4 or later.</li>
</ul>
</li>
<li>Standalone mode support by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/601">#601</a> <a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/609">#609</a>)</li>
<li>chore: update dev dependencies and workflow by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/571">#571</a>)</li>
<li>Bump <code>@actions/exec</code> from 1.1.0 to 1.1.1 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/573">#573</a>)</li>
<li>Bump <code>@actions/github</code> from 5.0.0 to 5.0.1 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/582">#582</a>)</li>
<li>Bump minimist from 1.2.5 to 1.2.6 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/584">#584</a>)</li>
<li>Bump semver from 7.3.5 to 7.3.7 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/595">#595</a>)</li>
<li>Bump csv-parse from 4.16.3 to 5.0.4 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/533">#533</a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/docker/build-push-action/compare/v2.10.0...v3.0.0">https://github.com/docker/build-push-action/compare/v2.10.0...v3.0.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/docker/build-push-action/commit/e551b19e49efd4e98792db7592c17c09b89db8d8"><code>e551b19</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/564">#564</a> from crazy-max/node-16</li>
<li><a href="https://github.com/docker/build-push-action/commit/3554377aa377509838f2e53d71f7c4127b2bece4"><code>3554377</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/609">#609</a> from crazy-max/ci-fix-test</li>
<li><a href="https://github.com/docker/build-push-action/commit/a62bc1b22b6b959fa4fb8cffc6c46650e2388ee4"><code>a62bc1b</code></a> ci: fix standalone test</li>
<li><a href="https://github.com/docker/build-push-action/commit/c2085839e18b24c219aef4366ca2337979d7f194"><code>c208583</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/601">#601</a> from crazy-max/standalone-mode</li>
<li><a href="https://github.com/docker/build-push-action/commit/fcd91249e5fa3d8dd25f0a6d707cd1aa263e59d3"><code>fcd9124</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/607">#607</a> from docker/dependabot/github_actions/docker/metadata...</li>
<li><a href="https://github.com/docker/build-push-action/commit/0ebe720aed7e7e5bedf4d280fc1cca0a463b9a4e"><code>0ebe720</code></a> Bump docker/metadata-action from 3 to 4</li>
<li><a href="https://github.com/docker/build-push-action/commit/38b45804b51da93918ce9015ddf0398c77cb8cef"><code>38b4580</code></a> Standalone mode support</li>
<li><a href="https://github.com/docker/build-push-action/commit/ba317382dcde9f7deb318467fc6cd7230d8b1714"><code>ba31738</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/533">#533</a> from docker/dependabot/npm_and_yarn/csv-parse-5.0.4</li>
<li><a href="https://github.com/docker/build-push-action/commit/43721d2346db18770b3b3a3e3450dc7c44d6db16"><code>43721d2</code></a> Update generated content</li>
<li><a href="https://github.com/docker/build-push-action/commit/5ea21bf2ba7bc46e8b4f6182a0bbb064eecab476"><code>5ea21bf</code></a> Fix csv-parse implementation since major update</li>
<li>Additional commits viewable in <a href="https://github.com/docker/build-push-action/compare/ac9327eae2b366085ac7f6a2d02df8aa8ead720a...e551b19e49efd4e98792db7592c17c09b89db8d8">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/build-push-action&package-manager=github_actions&previous-version=2.10.0&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/36Bump docker/login-action from 1.14.1 to 22022-05-06T11:30:15ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump docker/login-action from 1.14.1 to 2*Created by: dependabot[bot]*
Bumps [docker/login-action](https://github.com/docker/login-action) from 1.14.1 to 2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/login-action/releases"...*Created by: dependabot[bot]*
Bumps [docker/login-action](https://github.com/docker/login-action) from 1.14.1 to 2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/login-action/releases">docker/login-action's releases</a>.</em></p>
<blockquote>
<h2>v2.0.0</h2>
<ul>
<li>Node 16 as default runtime by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/161">#161</a>)
<ul>
<li>This requires a minimum <a href="https://github.com/actions/runner/releases/tag/v2.285.0">Actions Runner</a> version of v2.285.0, which is by default available in GHES 3.4 or later.</li>
</ul>
</li>
<li>chore: update dev dependencies and workflow by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/170">#170</a>)</li>
<li>Bump <code>@actions/exec</code> from 1.1.0 to 1.1.1 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/167">#167</a>)</li>
<li>Bump <code>@actions/io</code> from 1.1.1 to 1.1.2 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/168">#168</a>)</li>
<li>Bump minimist from 1.2.5 to 1.2.6 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/176">#176</a>)</li>
<li>Bump https-proxy-agent from 5.0.0 to 5.0.1 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/182">#182</a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/docker/login-action/compare/v1.14.1...v2.0.0">https://github.com/docker/login-action/compare/v1.14.1...v2.0.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/docker/login-action/commit/49ed152c8eca782a232dede0303416e8f356c37b"><code>49ed152</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/login-action/issues/161">#161</a> from crazy-max/node16-runtime</li>
<li><a href="https://github.com/docker/login-action/commit/b61a9ce7bd93239c435d3a7e3d6fe56020bf38c3"><code>b61a9ce</code></a> Node 16 as default runtime</li>
<li><a href="https://github.com/docker/login-action/commit/3a136a8631bbc4ca05cc2f33d3a19059e9255bae"><code>3a136a8</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/login-action/issues/182">#182</a> from docker/dependabot/npm_and_yarn/https-proxy-agent...</li>
<li><a href="https://github.com/docker/login-action/commit/b312880b6957654c92704d65c445d4db3157237f"><code>b312880</code></a> Update generated content</li>
<li><a href="https://github.com/docker/login-action/commit/795794e081a18060d5db5537d3e874e675d8d7c9"><code>795794e</code></a> Bump https-proxy-agent from 5.0.0 to 5.0.1</li>
<li><a href="https://github.com/docker/login-action/commit/1edf6180e07d2ffb423fc48a1a552855c0a1f508"><code>1edf618</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/login-action/issues/179">#179</a> from docker/dependabot/github_actions/codecov/codecov...</li>
<li><a href="https://github.com/docker/login-action/commit/8e66ad4089051ec73ac8b193deca830bd52edb83"><code>8e66ad4</code></a> Bump codecov/codecov-action from 2 to 3</li>
<li><a href="https://github.com/docker/login-action/commit/7c79b598eaa33458e78e8d0d71e0a9c217dd92af"><code>7c79b59</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/login-action/issues/176">#176</a> from docker/dependabot/npm_and_yarn/minimist-1.2.6</li>
<li><a href="https://github.com/docker/login-action/commit/24a38e0d6d99bc9b277904a244b17b7e511d994f"><code>24a38e0</code></a> Bump minimist from 1.2.5 to 1.2.6</li>
<li><a href="https://github.com/docker/login-action/commit/70e1ff84cbd75a9e03941a79f21f05f1b03a71bb"><code>70e1ff8</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/login-action/issues/170">#170</a> from crazy-max/eslint</li>
<li>Additional commits viewable in <a href="https://github.com/docker/login-action/compare/dd4fa0671be5250ee6f50aedf4cb05514abda2c7...49ed152c8eca782a232dede0303416e8f356c37b">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/login-action&package-manager=github_actions&previous-version=1.14.1&new-version=2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/35Bump docker/metadata-action from 3.8.0 to 4.0.12022-05-06T11:30:07ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump docker/metadata-action from 3.8.0 to 4.0.1*Created by: dependabot[bot]*
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3.8.0 to 4.0.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/metadata-acti...*Created by: dependabot[bot]*
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3.8.0 to 4.0.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/metadata-action/releases">docker/metadata-action's releases</a>.</em></p>
<blockquote>
<h2>v4.0.1</h2>
<ul>
<li>Sanitize tag earlier by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/203">#203</a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/docker/metadata-action/compare/v4.0.0...v4.0.1">https://github.com/docker/metadata-action/compare/v4.0.0...v4.0.1</a></p>
<h2>v4.0.0</h2>
<ul>
<li>Node 16 as default runtime by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/176">#176</a>)
<ul>
<li>This requires a minimum <a href="https://github.com/actions/runner/releases/tag/v2.285.0">Actions Runner</a> version of v2.285.0, which is by default available in GHES 3.4 or later.</li>
</ul>
</li>
<li>Do not sanitize before pattern matching by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/201">#201</a>)
<ul>
<li>Breaking change with <code>type=match</code> pattern matching</li>
</ul>
</li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/docker/metadata-action/compare/v3.8.0...v4.0.0">https://github.com/docker/metadata-action/compare/v3.8.0...v4.0.0</a></p>
</blockquote>
</details>
<details>
<summary>Upgrade guide</summary>
<p><em>Sourced from <a href="https://github.com/docker/metadata-action/blob/master/UPGRADE.md">docker/metadata-action's upgrade guide</a>.</em></p>
<blockquote>
<h1>Upgrade notes</h1>
<h2>v2 to v3</h2>
<ul>
<li>Repository has been moved to docker org. Replace <code>crazy-max/ghaction-docker-meta@v2</code> with <code>docker/metadata-action@v4</code></li>
<li>The default bake target has been changed: <code>ghaction-docker-meta</code> > <code>docker-metadata-action</code></li>
</ul>
<h2>v1 to v2</h2>
<ul>
<li><a href="https://github.com/docker/metadata-action/blob/master/#inputs">inputs</a>
<ul>
<li><a href="https://github.com/docker/metadata-action/blob/master/#tag-sha"><code>tag-sha</code></a></li>
<li><a href="https://github.com/docker/metadata-action/blob/master/#tag-edge--tag-edge-branch"><code>tag-edge</code> / <code>tag-edge-branch</code></a></li>
<li><a href="https://github.com/docker/metadata-action/blob/master/#tag-semver"><code>tag-semver</code></a></li>
<li><a href="https://github.com/docker/metadata-action/blob/master/#tag-match--tag-match-group"><code>tag-match</code> / <code>tag-match-group</code></a></li>
<li><a href="https://github.com/docker/metadata-action/blob/master/#tag-latest"><code>tag-latest</code></a></li>
<li><a href="https://github.com/docker/metadata-action/blob/master/#tag-schedule"><code>tag-schedule</code></a></li>
<li><a href="https://github.com/docker/metadata-action/blob/master/#tag-custom--tag-custom-only"><code>tag-custom</code> / <code>tag-custom-only</code></a></li>
<li><a href="https://github.com/docker/metadata-action/blob/master/#label-custom"><code>label-custom</code></a></li>
</ul>
</li>
<li><a href="https://github.com/docker/metadata-action/blob/master/#basic-workflow">Basic workflow</a></li>
<li><a href="https://github.com/docker/metadata-action/blob/master/#semver-workflow">Semver workflow</a></li>
</ul>
<h3>inputs</h3>
<table>
<thead>
<tr>
<th>New</th>
<th>Unchanged</th>
<th>Removed</th>
</tr>
</thead>
<tbody>
<tr>
<td><code>tags</code></td>
<td><code>images</code></td>
<td><code>tag-sha</code></td>
</tr>
<tr>
<td><code>flavor</code></td>
<td><code>sep-tags</code></td>
<td><code>tag-edge</code></td>
</tr>
<tr>
<td><code>labels</code></td>
<td><code>sep-labels</code></td>
<td><code>tag-edge-branch</code></td>
</tr>
<tr>
<td></td>
<td></td>
<td><code>tag-semver</code></td>
</tr>
<tr>
<td></td>
<td></td>
<td><code>tag-match</code></td>
</tr>
<tr>
<td></td>
<td></td>
<td><code>tag-match-group</code></td>
</tr>
<tr>
<td></td>
<td></td>
<td><code>tag-latest</code></td>
</tr>
<tr>
<td></td>
<td></td>
<td><code>tag-schedule</code></td>
</tr>
<tr>
<td></td>
<td></td>
<td><code>tag-custom</code></td>
</tr>
<tr>
<td></td>
<td></td>
<td><code>tag-custom-only</code></td>
</tr>
<tr>
<td></td>
<td></td>
<td><code>label-custom</code></td>
</tr>
</tbody>
</table>
<h4><code>tag-sha</code></h4>
<pre lang="yaml"><code>tags: |
type=sha
</code></pre>
<h4><code>tag-edge</code> / <code>tag-edge-branch</code></h4>
<pre lang="yaml"><code>tags: |
# default branch
type=edge
</tr></table>
</code></pre>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/docker/metadata-action/commit/69f6fc9d46f2f8bf0d5491e4aabe0bb8c6a4678a"><code>69f6fc9</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/203">#203</a> from crazy-max/san-fix</li>
<li><a href="https://github.com/docker/metadata-action/commit/2f5b5ae8bf2725130d7ade554556e85077021427"><code>2f5b5ae</code></a> Sanitize tag earlier</li>
<li><a href="https://github.com/docker/metadata-action/commit/f206c36955d3cc6213c38fb3747d9ba4113e686a"><code>f206c36</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/202">#202</a> from crazy-max/v4-prep</li>
<li><a href="https://github.com/docker/metadata-action/commit/a20adfa74e16683029ddca858a830d46940bcde1"><code>a20adfa</code></a> readme: set metadata-action to v4</li>
<li><a href="https://github.com/docker/metadata-action/commit/26b9439ce3c3a94be4548b775c813dc6e9e618a2"><code>26b9439</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/201">#201</a> from crazy-max/fix-sanitization</li>
<li><a href="https://github.com/docker/metadata-action/commit/467883f452335596514beb1a02db7e09de6a08f7"><code>467883f</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/176">#176</a> from crazy-max/node-16</li>
<li><a href="https://github.com/docker/metadata-action/commit/5edf56f2c486f342f4319e9c0a1a79d59a474516"><code>5edf56f</code></a> Node 16 as default runtime</li>
<li><a href="https://github.com/docker/metadata-action/commit/678218f2be830b6011728d42a72a35714f423bcf"><code>678218f</code></a> Note about image name and tag sanitization</li>
<li><a href="https://github.com/docker/metadata-action/commit/e44c1fbe6ec0f8dbe5229eab51e84075fcca8799"><code>e44c1fb</code></a> Do not sanitize before pattern matching</li>
<li>See full diff in <a href="https://github.com/docker/metadata-action/compare/b2391d37b4157fa4aa2e118d643f417910ff3242...69f6fc9d46f2f8bf0d5491e4aabe0bb8c6a4678a">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/metadata-action&package-manager=github_actions&previous-version=3.8.0&new-version=4.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/34Bump docker/metadata-action from 3.7.0 to 3.8.02022-05-02T04:50:38ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump docker/metadata-action from 3.7.0 to 3.8.0*Created by: dependabot[bot]*
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3.7.0 to 3.8.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/metadata-acti...*Created by: dependabot[bot]*
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3.7.0 to 3.8.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/metadata-action/releases">docker/metadata-action's releases</a>.</em></p>
<blockquote>
<h2>v3.8.0</h2>
<ul>
<li>Add attribute to enable/disable images by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/193">#193</a>)</li>
<li>Add <code>is_default_branch</code> global expression by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/192">#192</a> <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/197">#197</a> <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/198">#198</a>)</li>
<li>Update fixtures (dev) by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/190">#190</a>)</li>
<li>Bump semver from 7.3.5 to 7.3.7 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/185">#185</a>)</li>
<li>Bump moment from 2.29.2 to 2.29.3 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/187">#187</a>)</li>
<li>Bump csv-parse from 4.16.3 to 5.0.4 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/195">#195</a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/docker/metadata-action/compare/v3.7.0...v3.8.0">https://github.com/docker/metadata-action/compare/v3.7.0...v3.8.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/docker/metadata-action/commit/b2391d37b4157fa4aa2e118d643f417910ff3242"><code>b2391d3</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/193">#193</a> from crazy-max/images-opts</li>
<li><a href="https://github.com/docker/metadata-action/commit/2f4dd1462a02c8b6c08e329770a17a06380673da"><code>2f4dd14</code></a> backward compatibility with old images format</li>
<li><a href="https://github.com/docker/metadata-action/commit/a5680a6642fcada0b4c798fd531839895dc4178e"><code>a5680a6</code></a> attribute to enable/disable images</li>
<li><a href="https://github.com/docker/metadata-action/commit/be6d2cc1dfc423671fc5f6360cad30ca7deccadf"><code>be6d2cc</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/198">#198</a> from crazy-max/refactor-default-banch</li>
<li><a href="https://github.com/docker/metadata-action/commit/0a72be43daa9ee5ca532bc76b9a099942f8ae8ab"><code>0a72be4</code></a> don't handle default branch global exp for pr events</li>
<li><a href="https://github.com/docker/metadata-action/commit/72fe50e2aff6bc400c5aa72bf16b5b88e0f95379"><code>72fe50e</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/197">#197</a> from crazy-max/rm-baseref-def-branch</li>
<li><a href="https://github.com/docker/metadata-action/commit/aca951f8f5760f2fd502d2dd824a10c6705a8670"><code>aca951f</code></a> remove support of default branch global exp for push tag events</li>
<li><a href="https://github.com/docker/metadata-action/commit/0978a0678a62fd006f5c22ac7d2c82d4f5093cd8"><code>0978a06</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/192">#192</a> from crazy-max/default-branch</li>
<li><a href="https://github.com/docker/metadata-action/commit/c2905fbd8c64c1b80f9b65aa4e83627779a244d4"><code>c2905fb</code></a> ci: add global expressions job</li>
<li><a href="https://github.com/docker/metadata-action/commit/7d7a22a6823e017aec3eb6588592e636a219462c"><code>7d7a22a</code></a> fix undefined base_ref for some events</li>
<li>Additional commits viewable in <a href="https://github.com/docker/metadata-action/compare/f2a13332ac1ce8c0a71aeac48a150dbb1838ab67...b2391d37b4157fa4aa2e118d643f417910ff3242">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/metadata-action&package-manager=github_actions&previous-version=3.7.0&new-version=3.8.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/33Bump dependabot/fetch-metadata from 1.3.0 to 1.3.12022-04-21T00:52:56ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump dependabot/fetch-metadata from 1.3.0 to 1.3.1*Created by: dependabot[bot]*
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.3.0 to 1.3.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/dependabot/fet...*Created by: dependabot[bot]*
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.3.0 to 1.3.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/dependabot/fetch-metadata/releases">dependabot/fetch-metadata's releases</a>.</em></p>
<blockquote>
<h2>v1.3.1</h2>
<h2>Highlights</h2>
<p>This release is primarily catching up on our dependencies, but it also includes a few bug fixes:</p>
<ul>
<li>Correctly populate Dependabot Alert metadata when a manifest is located in the project root, thanks <a href="https://github.com/SalimBensiali"><code>@SalimBensiali</code></a></li>
<li>Add a workaround for a <a href="https://github-redirect.dependabot.com/dependabot/dependabot-core/issues/4893">dependabot-core bug</a> that causes the <code>update-type</code> to be blank occasionally, thanks <a href="https://github.com/mwaddell"><code>@mwaddell</code></a></li>
</ul>
<h2>What's Changed</h2>
<ul>
<li>If the <code>update-type</code> is missing for some reason, calculate it by <a href="https://github.com/mwaddell"><code>@mwaddell</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/173">dependabot/fetch-metadata#173</a></li>
<li>Updated readme to explain when you need to use a PAT by <a href="https://github.com/mwaddell"><code>@mwaddell</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/183">dependabot/fetch-metadata#183</a></li>
<li>Updated auto approve example to minimizing notifications by <a href="https://github.com/mwaddell"><code>@mwaddell</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/188">dependabot/fetch-metadata#188</a></li>
<li>Bump <code>@types/node</code> from 17.0.19 to 17.0.23 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/191">dependabot/fetch-metadata#191</a></li>
<li>Bump <code>@types/jest</code> from 27.4.0 to 27.4.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/168">dependabot/fetch-metadata#168</a></li>
<li>Fix incorrect vulnerable manifest path check by <a href="https://github.com/SalimBensiali"><code>@SalimBensiali</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/186">dependabot/fetch-metadata#186</a></li>
<li>Bump <code>@types/yargs</code> from 17.0.8 to 17.0.10 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/181">dependabot/fetch-metadata#181</a></li>
<li>Bump <code>@typescript-eslint/parser</code> from 5.12.1 to 5.17.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/194">dependabot/fetch-metadata#194</a></li>
<li>Bump eslint from 8.9.0 to 8.12.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/190">dependabot/fetch-metadata#190</a></li>
<li>Bump ts-node from 10.5.0 to 10.7.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/196">dependabot/fetch-metadata#196</a></li>
<li>Bump eslint from 8.12.0 to 8.13.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/198">dependabot/fetch-metadata#198</a></li>
<li>Bump typescript from 4.5.5 to 4.6.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/193">dependabot/fetch-metadata#193</a></li>
<li>Bump minimist from 1.2.5 to 1.2.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/204">dependabot/fetch-metadata#204</a></li>
<li>Bump yargs from 17.3.1 to 17.4.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/199">dependabot/fetch-metadata#199</a></li>
<li>Bump <code>@typescript-eslint/parser</code> from 5.17.0 to 5.20.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/202">dependabot/fetch-metadata#202</a></li>
<li>Bump <code>@typescript-eslint/eslint-plugin</code> from 5.12.1 to 5.20.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/203">dependabot/fetch-metadata#203</a></li>
<li>Dependabot updates run monthly and attempt to auto-compile dist/ by <a href="https://github.com/brrygrdn"><code>@brrygrdn</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/205">dependabot/fetch-metadata#205</a></li>
<li>Bump <code>@actions/github</code> from 5.0.0 to 5.0.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/197">dependabot/fetch-metadata#197</a></li>
<li>Bump eslint-plugin-import from 2.25.4 to 2.26.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/207">dependabot/fetch-metadata#207</a></li>
<li>Bump <code>@types/node</code> from 17.0.23 to 17.0.25 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/208">dependabot/fetch-metadata#208</a></li>
<li>Bump <code>@vercel/ncc</code> from 0.33.3 to 0.33.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/209">dependabot/fetch-metadata#209</a></li>
<li>Bump yaml from 1.10.2 to 2.0.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/206">dependabot/fetch-metadata#206</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/SalimBensiali"><code>@SalimBensiali</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/186">dependabot/fetch-metadata#186</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/dependabot/fetch-metadata/compare/v1.3.0...v1.3.1">https://github.com/dependabot/fetch-metadata/compare/v1.3.0...v1.3.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/bfac3fa29cc6834ca2e3fd659343da191a65d971"><code>bfac3fa</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/210">#210</a> from dependabot/v1.3.1-release-notes</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/80173ff966677a9fa09a782f48aee580b106fdbb"><code>80173ff</code></a> Small correction to bump-version script</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/525fbe9201a37c573823fd43c81f1268d0c5b5d1"><code>525fbe9</code></a> v1.3.1</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/58f09fc6798c8e5c7e5f3cec3299b6c1d86f5bdd"><code>58f09fc</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/206">#206</a> from dependabot/dependabot/npm_and_yarn/yaml-2.0.1</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/b1d2cf8266c85fd9b3f64000955f49a2d60b2dba"><code>b1d2cf8</code></a> Bump dist/</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/70c6c9ef04d96c0062436fbecf66f3f7721cc1b6"><code>70c6c9e</code></a> Bump yaml from 1.10.2 to 2.0.1</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/7b49493fe1a9fe08a45c5b4c8c859a1c4c170cda"><code>7b49493</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/209">#209</a> from dependabot/dependabot/npm_and_yarn/vercel/ncc-0....</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/13f5830248cf5be89f71433d8bfe93084208aaf0"><code>13f5830</code></a> Bump <code>@vercel/ncc</code> from 0.33.3 to 0.33.4</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/59ab8889c16ac10fc360334622b812e954e8cc12"><code>59ab888</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/208">#208</a> from dependabot/dependabot/npm_and_yarn/types/node-17...</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/aad444603c0dfb956d443e978141b14199d79695"><code>aad4446</code></a> Bump <code>@types/node</code> from 17.0.23 to 17.0.25</li>
<li>Additional commits viewable in <a href="https://github.com/dependabot/fetch-metadata/compare/v1.3.0...v1.3.1">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata&package-manager=github_actions&previous-version=1.3.0&new-version=1.3.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/32Bump docker/metadata-action from 3.6.2 to 3.7.02022-04-08T13:23:53ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump docker/metadata-action from 3.6.2 to 3.7.0*Created by: dependabot[bot]*
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3.6.2 to 3.7.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/metadata-acti...*Created by: dependabot[bot]*
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3.6.2 to 3.7.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/metadata-action/releases">docker/metadata-action's releases</a>.</em></p>
<blockquote>
<h2>v3.7.0</h2>
<ul>
<li>Handle comments for multi-line inputs (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/172">#172</a>)</li>
<li>Missing <code>json</code> output in <code>action.yml</code> (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/167">#167</a>)</li>
<li>Update dev dependencies and workflow (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/175">#175</a>)</li>
<li>Bump minimist from 1.2.5 to 1.2.6 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/182">#182</a>)</li>
<li>Bump moment from 2.29.1 to 2.29.2 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/180">#180</a>)</li>
<li>Bump <code>@actions/github</code> from 5.0.0 to 5.0.1 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/179">#179</a>)</li>
<li>Bump node-fetch from 2.6.1 to 2.6.7 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/173">#173</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/docker/metadata-action/commit/f2a13332ac1ce8c0a71aeac48a150dbb1838ab67"><code>f2a1333</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/180">#180</a> from docker/dependabot/npm_and_yarn/moment-2.29.2</li>
<li><a href="https://github.com/docker/metadata-action/commit/56b3641ca353d9351d6a38227a703cb35328bbdd"><code>56b3641</code></a> Update generated content</li>
<li><a href="https://github.com/docker/metadata-action/commit/6738eba24d9507bfe53ea725c017f524c963e505"><code>6738eba</code></a> Bump moment from 2.29.1 to 2.29.2</li>
<li><a href="https://github.com/docker/metadata-action/commit/0d161f4ba7213de3b57d9c935890ea3b7f668fd7"><code>0d161f4</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/182">#182</a> from docker/dependabot/npm_and_yarn/minimist-1.2.6</li>
<li><a href="https://github.com/docker/metadata-action/commit/0504cbc543765097ce06fa06460814d272e824da"><code>0504cbc</code></a> Bump minimist from 1.2.5 to 1.2.6</li>
<li><a href="https://github.com/docker/metadata-action/commit/0569027ca575ff3ca783072b2e65fd499f60e803"><code>0569027</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/179">#179</a> from docker/dependabot/npm_and_yarn/actions/github-5.0.1</li>
<li><a href="https://github.com/docker/metadata-action/commit/04da14965308721ab2f815a9e8dafcdab6f784f4"><code>04da149</code></a> Update generated content</li>
<li><a href="https://github.com/docker/metadata-action/commit/2f5d0666ec78f717563b52fed125d9c8a6b4f077"><code>2f5d066</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/181">#181</a> from docker/dependabot/github_actions/codecov/codecov...</li>
<li><a href="https://github.com/docker/metadata-action/commit/776adc0187ef2fc3e562298d257e2d120af4df48"><code>776adc0</code></a> Bump codecov/codecov-action from 2 to 3</li>
<li><a href="https://github.com/docker/metadata-action/commit/96b9d26bf5de0e73e6c3428c7ddae20f5541301b"><code>96b9d26</code></a> Bump <code>@actions/github</code> from 5.0.0 to 5.0.1</li>
<li>Additional commits viewable in <a href="https://github.com/docker/metadata-action/compare/e5622373a38e60fb6d795a4421e56882f2d7a681...f2a13332ac1ce8c0a71aeac48a150dbb1838ab67">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/metadata-action&package-manager=github_actions&previous-version=3.6.2&new-version=3.7.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/31Bump github/super-linter from 4.9.1 to 4.9.22022-04-04T01:20:27ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump github/super-linter from 4.9.1 to 4.9.2*Created by: dependabot[bot]*
Bumps [github/super-linter](https://github.com/github/super-linter) from 4.9.1 to 4.9.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/github/super-linter/releas...*Created by: dependabot[bot]*
Bumps [github/super-linter](https://github.com/github/super-linter) from 4.9.1 to 4.9.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/github/super-linter/releases">github/super-linter's releases</a>.</em></p>
<blockquote>
<h2>v4.9.2</h2>
<h1>Changelog</h1>
<ul>
<li>Bump to 4.9.2 <a href="https://github.com/admiralAwkbar"><code>@admiralAwkbar</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2720">#2720</a>)</li>
<li>adding addional command <a href="https://github.com/admiralAwkbar"><code>@admiralAwkbar</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2711">#2711</a>)</li>
<li>Bump golangci/golangci-lint from v1.45.0 to v1.45.2 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2690">#2690</a>)</li>
<li>Bump rubocop from 1.26.0 to 1.26.1 in /dependencies <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2691">#2691</a>)</li>
<li>Bump alpine from 3.15.1 to 3.15.2 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2693">#2693</a>)</li>
<li>Bump python from 3.10.3-alpine to 3.10.4-alpine <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2694">#2694</a>)</li>
<li>Bump typescript from 4.6.2 to 4.6.3 in /dependencies <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2695">#2695</a>)</li>
<li>Bump htmlhint from 1.1.2 to 1.1.3 in /dependencies <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2696">#2696</a>)</li>
<li>Bump zricethezav/gitleaks from v8.4.0 to v8.5.2 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2707">#2707</a>)</li>
<li>Enhance perl linting <a href="https://github.com/sabbene"><code>@sabbene</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2684">#2684</a>)</li>
<li>Add KOTLIN_ANDROID to LANGUAGE_ARRAY <a href="https://github.com/alexandrefavre4"><code>@alexandrefavre4</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2689">#2689</a>)</li>
<li>Weekly Python Updates <a href="https://github.com/github-actions"><code>@github-actions</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2687">#2687</a>)</li>
<li>adding airbnb <a href="https://github.com/admiralAwkbar"><code>@admiralAwkbar</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2683">#2683</a>)</li>
<li>Bump <code>@coffeelint/cli</code> from 5.2.4 to 5.2.5 in /dependencies <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2650">#2650</a>)</li>
<li>Bump prettier from 2.5.1 to 2.6.1 in /dependencies <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2677">#2677</a>)</li>
<li>manual trigger <a href="https://github.com/admiralAwkbar"><code>@admiralAwkbar</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2681">#2681</a>)</li>
</ul>
<p>See details of <a href="https://github.com/github/super-linter/compare/v4.9.1...v4.9.2">all code changes</a> since previous release</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/github/super-linter/commit/ae4e373c56efad95924d9cc6b89624fdb2333007"><code>ae4e373</code></a> 492 (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2720">#2720</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/14eb37a88c395bb0faf9e3cfe7678acc94caaa3e"><code>14eb37a</code></a> adding addional command (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2711">#2711</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/b9e625588aba1f73604e5ba8992091a7bf09d0ce"><code>b9e6255</code></a> Bump golangci/golangci-lint from v1.45.0 to v1.45.2 (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2690">#2690</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/1466d6b0721db5339d97b0d2f613dbfbe1bf526e"><code>1466d6b</code></a> Bump rubocop from 1.26.0 to 1.26.1 in /dependencies (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2691">#2691</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/0acfb9814140643386c3f3f9dc1853350804787a"><code>0acfb98</code></a> Bump alpine from 3.15.1 to 3.15.2 (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2693">#2693</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/7b4f6938d50b4eb488f4bc38c59b8d17d8378169"><code>7b4f693</code></a> Bump python from 3.10.3-alpine to 3.10.4-alpine (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2694">#2694</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/28a0546a4c16fe3973fc9f5808667f136585e5cc"><code>28a0546</code></a> Bump typescript from 4.6.2 to 4.6.3 in /dependencies (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2695">#2695</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/90d12de6e1b91dd47bf686ef22cffa628d946b40"><code>90d12de</code></a> Bump htmlhint from 1.1.2 to 1.1.3 in /dependencies (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2696">#2696</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/57ab073828af99b77d48a3ca0323ceacaf6e584b"><code>57ab073</code></a> Bump zricethezav/gitleaks from v8.4.0 to v8.5.2 (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2707">#2707</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/32eb1cccdaa6104feeffc254c512d2a30c3b087b"><code>32eb1cc</code></a> Add Perl::Critic::Community and PERL_PERLCRITIC_OPTIONS to allow passing comm...</li>
<li>Additional commits viewable in <a href="https://github.com/github/super-linter/compare/v4.9.1...v4.9.2">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/super-linter&package-manager=github_actions&previous-version=4.9.1&new-version=4.9.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/30Bump docker/login-action from 1.10.0 to 1.14.12022-03-30T10:59:03ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump docker/login-action from 1.10.0 to 1.14.1*Created by: dependabot[bot]*
Bumps [docker/login-action](https://github.com/docker/login-action) from 1.10.0 to 1.14.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/login-action/rele...*Created by: dependabot[bot]*
Bumps [docker/login-action](https://github.com/docker/login-action) from 1.10.0 to 1.14.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/login-action/releases">docker/login-action's releases</a>.</em></p>
<blockquote>
<h2>v1.14.1</h2>
<ul>
<li>Revert to Node 12 as default runtime to fix issue for GHE users (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/160">#160</a>)</li>
</ul>
<h2>v1.14.0</h2>
<ul>
<li>Update to node 16 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/158">#158</a>)</li>
<li>Bump <code>@aws-sdk/client-ecr</code> from 3.45.0 to 3.53.0 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/157">#157</a>)</li>
<li>Bump <code>@aws-sdk/client-ecr-public</code> from 3.45.0 to 3.53.0 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/156">#156</a>)</li>
</ul>
<h2>v1.13.0</h2>
<ul>
<li>Handle proxy settings for aws-sdk (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/152">#152</a>)</li>
<li>Workload identity based authentication docs for GCR and GAR (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/112">#112</a>)</li>
<li>Test login against ACR (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/49">#49</a>)</li>
<li>Bump <code>@aws-sdk/client-ecr</code> from 3.44.0 to 3.45.0 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/132">#132</a>)</li>
<li>Bump <code>@aws-sdk/client-ecr-public</code> from 3.43.0 to 3.45.0 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/131">#131</a>)</li>
</ul>
<h2>v1.12.0</h2>
<ul>
<li>ECR: only set credentials if username and password are specified (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/128">#128</a>)</li>
<li>Refactor to use aws-sdk v3 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/128">#128</a>)</li>
</ul>
<h2>v1.11.0</h2>
<ul>
<li>ECR: switch implementation to use the AWS SDK (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/126">#126</a>)</li>
<li><code>ecr</code> input to specify whether the given registry is ECR (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/123">#123</a>)</li>
<li>Test against Windows runner (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/126">#126</a>)</li>
<li>Update instructions for Google registry (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/127">#127</a>)</li>
<li>Update dev workflow (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/111">#111</a>)</li>
<li>Small changes for GHCR doc (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/86">#86</a>)</li>
<li>Update dev dependencies (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/85">#85</a>)</li>
<li>Bump ansi-regex from 5.0.0 to 5.0.1 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/101">#101</a>)</li>
<li>Bump tmpl from 1.0.4 to 1.0.5 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/100">#100</a>)</li>
<li>Bump <code>@actions/core</code> from 1.4.0 to 1.6.0 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/94">#94</a> <a href="https://github-redirect.dependabot.com/docker/login-action/issues/103">#103</a>)</li>
<li>Bump codecov/codecov-action from 1 to 2 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/88">#88</a>)</li>
<li>Bump hosted-git-info from 2.8.8 to 2.8.9 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/83">#83</a>)</li>
<li>Bump node-notifier from 8.0.0 to 8.0.2 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/82">#82</a>)</li>
<li>Bump ws from 7.3.1 to 7.5.0 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/81">#81</a>)</li>
<li>Bump lodash from 4.17.20 to 4.17.21 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/80">#80</a>)</li>
<li>Bump y18n from 4.0.0 to 4.0.3 (<a href="https://github-redirect.dependabot.com/docker/login-action/issues/79">#79</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/docker/login-action/commit/dd4fa0671be5250ee6f50aedf4cb05514abda2c7"><code>dd4fa06</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/login-action/issues/160">#160</a> from crazy-max/node12</li>
<li><a href="https://github.com/docker/login-action/commit/4e3538592e4d58e2b870040b10d65858ab0c377b"><code>4e35385</code></a> Revert to Node 12 as default runtime</li>
<li><a href="https://github.com/docker/login-action/commit/bb984efc561711aaa26e433c32c3521176eae55b"><code>bb984ef</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/login-action/issues/156">#156</a> from docker/dependabot/npm_and_yarn/aws-sdk/client-ec...</li>
<li><a href="https://github.com/docker/login-action/commit/722888132b52d82f9e800a76b18ad2573c2aa56d"><code>7228881</code></a> Update generated content</li>
<li><a href="https://github.com/docker/login-action/commit/17780b56b7c28c4eed063a4ee9732cf55139d75b"><code>17780b5</code></a> Bump <code>@aws-sdk/client-ecr-public</code> from 3.45.0 to 3.53.0</li>
<li><a href="https://github.com/docker/login-action/commit/39857b3b45f7575a6b32d567326de5ab975ec0b4"><code>39857b3</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/login-action/issues/157">#157</a> from docker/dependabot/npm_and_yarn/aws-sdk/client-ec...</li>
<li><a href="https://github.com/docker/login-action/commit/5fcc728422b1d9a3c0f8cd595f8fb8f9b7913076"><code>5fcc728</code></a> Update generated content</li>
<li><a href="https://github.com/docker/login-action/commit/9fb8721eb962ea53bd4e46a074098e8177970818"><code>9fb8721</code></a> Bump <code>@aws-sdk/client-ecr</code> from 3.45.0 to 3.53.0</li>
<li><a href="https://github.com/docker/login-action/commit/4e3c9375bb2de165082a94f079d3fbaccbb8a98b"><code>4e3c937</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/login-action/issues/158">#158</a> from crazy-max/node-16</li>
<li><a href="https://github.com/docker/login-action/commit/4b59a429dba6f6bf641264a15801b79fc2266e54"><code>4b59a42</code></a> update to node 16</li>
<li>Additional commits viewable in <a href="https://github.com/docker/login-action/compare/f054a8b539a109f9f41c372932f1ae047eff08c9...dd4fa0671be5250ee6f50aedf4cb05514abda2c7">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/login-action&package-manager=github_actions&previous-version=1.10.0&new-version=1.14.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/29Bump dependabot/fetch-metadata from 1.1.1 to 1.3.02022-03-30T10:58:50ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump dependabot/fetch-metadata from 1.1.1 to 1.3.0*Created by: dependabot[bot]*
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.1.1 to 1.3.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/dependabot/fet...*Created by: dependabot[bot]*
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.1.1 to 1.3.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/dependabot/fetch-metadata/releases">dependabot/fetch-metadata's releases</a>.</em></p>
<blockquote>
<h2>v1.3.0 - Fetch additional metadata via the GitHub API</h2>
<h2>Highlights</h2>
<h3>🆕 Fetch additional metadata about Dependabot commits</h3>
<p>You can now optionally enable API lookups within the Action to retrieve extra information about Dependabot PRs.</p>
<p>Example:</p>
<pre lang="yaml"><code>-- .github/workflows/dependabot-prs.yml
name: Dependabot Pull Request
on: pull_request_target
jobs:
build:
runs-on: ubuntu-latest
steps:
- name: Fetch Dependabot metadata
id: dependabot-metadata
uses: dependabot/fetch-metadata@v1.3.0
with:
alert-lookup: true
compat-lookup: true
</code></pre>
<p>The flags enable the following new outputs:</p>
<ul>
<li><code>steps.dependabot-metadata.outputs.alert-state</code>
<ul>
<li>If this PR is associated with a security alert and <code>alert-lookup</code> is <code>true</code>, this contains the current state of that alert (OPEN, FIXED or DISMISSED).</li>
</ul>
</li>
<li><code>steps.dependabot-metadata.outputs.ghsa-id</code>
<ul>
<li>If this PR is associated with a security alert and <code>alert-lookup</code> is <code>true</code>, this contains the GHSA-ID of that alert.</li>
</ul>
</li>
<li><code>steps.dependabot-metadata.outputs.cvss</code>
<ul>
<li>If this PR is associated with a security alert and <code>alert-lookup</code> is <code>true</code>, this contains the CVSS value of that alert (otherwise it contains 0).</li>
</ul>
</li>
<li><code>steps.dependabot-metadata.outputs.compatibility-score</code>
<ul>
<li>If this PR has a known compatibility score and <code>compat-lookup</code> is <code>true</code>, this contains the compatibility score (otherwise it contains 0).</li>
</ul>
</li>
</ul>
<p>Many thanks to <a href="https://github.com/mwaddell"><code>@mwaddell</code></a> for contributing these additional flags 🥇</p>
<h3>The Action no longer fails if other commits are present</h3>
<p>We received feedback at this change was highly obtrusive and blocking common workflows that merging in the target branch. Following on from changes in 1.2.1 to make it easier for a user to re-run failed workflows this friction was much more obvious.</p>
<p>Thanks for the feedback, and thanks <a href="https://github.com/mwaddell"><code>@mwaddell</code></a> for contributing the change.</p>
<h3>The Action defaults to using the GITHUB_TOKEN</h3>
<p>This makes us consistent with other GitHub Actions such as <code>actions/checkout</code> in using the baseline token provided to the workflow. Since the Action doesn't have any features which require write scopes this defaulting is adequate for all use cases.</p>
<p>Thanks <a href="https://github.com/jablko"><code>@jablko</code></a> for contributing this change 🏆</p>
<h2>What's Changed</h2>
<ul>
<li>Flag security alerts and pass versions through by <a href="https://github.com/mwaddell"><code>@mwaddell</code></a> in <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/pull/144">dependabot/fetch-metadata#144</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/a96c30f6ac86e5673ed0a03957891f85b6d60abc"><code>a96c30f</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/170">#170</a> from dependabot/v1.3.0-release-notes</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/11d3bb752a019f2f83cdf0c12e4d2a824a81e11b"><code>11d3bb7</code></a> v1.3.0</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/0ca01a55536b0271b86626f1035b1f3a7115d7a8"><code>0ca01a5</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/146">#146</a> from pangaeatech/get_compat_score</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/f4b2d0d26d01252bacf093980029ea2611cd4c05"><code>f4b2d0d</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/83">#83</a> from jablko/patch-1</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/26e18ca1197945c72f43ca93f0ecf33eff633813"><code>26e18ca</code></a> Merge branch 'main' into patch-1</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/a30bbbb91c453622d63d4f04598d407a97da52e5"><code>a30bbbb</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/166">#166</a> from pangaeatech/allow-other-commits</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/9a3daafb32bcef6148a00ad31180618828768b94"><code>9a3daaf</code></a> linting</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/4a8756595b97b6b1817fab0722c46dd030028cea"><code>4a87565</code></a> Allow fetch-metadata to run on a PR even if it has additional commits, as lon...</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/749688a11e60e346b3b415427820516068c79066"><code>749688a</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/dependabot/fetch-metadata/issues/165">#165</a> from pangaeatech/update_readme</li>
<li><a href="https://github.com/dependabot/fetch-metadata/commit/592101e99540be908da10b34af86772e74c67b71"><code>592101e</code></a> Updated README to reference correct version</li>
<li>Additional commits viewable in <a href="https://github.com/dependabot/fetch-metadata/compare/v1.1.1...v1.3.0">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dependabot/fetch-metadata&package-manager=github_actions&previous-version=1.1.1&new-version=1.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/25Bump actions/setup-python from 2 to 32022-03-29T10:35:59ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump actions/setup-python from 2 to 3*Created by: dependabot[bot]*
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2 to 3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/actions/setup-python/releases">a...*Created by: dependabot[bot]*
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2 to 3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/actions/setup-python/releases">actions/setup-python's releases</a>.</em></p>
<blockquote>
<h2>v3.0.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Update default runtime to node16 (<a href="https://github-redirect.dependabot.com/actions/setup-python/pull/340">actions/setup-python#340</a>)</li>
<li>Update <code>package-lock.json</code> file version to 2, <code>@types/node</code> to 16.11.25 and <code>typescript</code> to 4.2.3 (<a href="https://github-redirect.dependabot.com/actions/setup-python/pull/341">actions/setup-python#341</a>)</li>
<li>Remove legacy <code>pypy2</code> and <code>pypy3</code> keywords (<a href="https://github-redirect.dependabot.com/actions/setup-python/pull/342">actions/setup-python#342</a>)</li>
</ul>
<h3>Breaking Changes</h3>
<p>With the update to Node 16, all scripts will now be run with Node 16 rather than Node 12.</p>
<p>This new major release removes support of legacy <code>pypy2</code> and <code>pypy3</code> keywords. Please use more specific and flexible syntax to specify a PyPy version:</p>
<pre lang="yaml"><code>jobs:
build:
runs-on: ubuntu-latest
strategy:
matrix:
python-version:
- 'pypy-2.7' # the latest available version of PyPy that supports Python 2.7
- 'pypy-3.8' # the latest available version of PyPy that supports Python 3.8
- 'pypy-3.8-v7.3.8' # Python 3.8 and PyPy 7.3.8
steps:
- uses: actions/checkout@v2
- uses: actions/setup-python@v3
with:
python-version: ${{ matrix.python-version }}
</code></pre>
<p>See more usage examples in the <a href="https://github.com/actions/setup-python#specifying-a-pypy-version">documentation</a></p>
<h2>Update primary and restore keys for pip</h2>
<p>In scope of this release we <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/303">include a version of python in restore and primary cache keys for pip</a>. Besides, we add temporary fix for Windows caching <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/332">issue</a>, that the <code>pip cache dir</code> command returns non zero exit code or writes to stderr. Moreover we updated <a href="https://github-redirect.dependabot.com/actions/setup-python/pull/327">node-fetch dependency</a>.</p>
<h2>Update actions/cache version to 1.0.8</h2>
<p>We have updated <a href="https://github.com/actions/toolkit/blob/main/packages/cache/RELEASES.md#108">actions/cache</a> dependency version to 1.0.8 to support 10GB cache upload</p>
<h2>Support caching dependencies</h2>
<p>This release introduces dependency caching support (<a href="https://github-redirect.dependabot.com/actions/setup-python/pull/266">actions/setup-python#266</a>)</p>
<h2>Caching dependencies.</h2>
<p>The action has a built-in functionality for caching and restoring pip/pipenv dependencies. The <code>cache</code> input is optional, and caching is turned off by default.</p>
<p>Besides, this release introduces dependency caching support for mono repos and repositories with complex structure.</p>
<p>By default, the action searches for the dependency file (requirements.txt for pip or Pipfile.lock for pipenv) in the whole repository. Use the <code>cache-dependency-path</code> input for cases when you want to override current behaviour and use different file for hash generation (for example requirements-dev.txt). This input supports wildcards or a list of file names for caching multiple dependencies.</p>
<h3>Caching pip dependencies:</h3>
<pre><code>steps:
- uses: actions/checkout@v2
- uses: actions/setup-python@v2
with:
python-version: '3.9'
</tr></table>
</code></pre>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/actions/setup-python/commit/0ebf233433c08fb9061af664d501c3f3ff0e9e20"><code>0ebf233</code></a> Remove legacy PyPy input (<a href="https://github-redirect.dependabot.com/actions/setup-python/issues/342">#342</a>)</li>
<li><a href="https://github.com/actions/setup-python/commit/665cd78205d9937a51af8cdb754840e2bc95c2d5"><code>665cd78</code></a> Update lockfileversion (<a href="https://github-redirect.dependabot.com/actions/setup-python/issues/341">#341</a>)</li>
<li><a href="https://github.com/actions/setup-python/commit/93cb78f17ba30b733a6c17d0f21183bdc0140887"><code>93cb78f</code></a> Update to node16 (<a href="https://github-redirect.dependabot.com/actions/setup-python/issues/340">#340</a>)</li>
<li>See full diff in <a href="https://github.com/actions/setup-python/compare/v2...v3">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-python&package-manager=github_actions&previous-version=2&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/23Bump github/super-linter from 3 to 4.9.12022-03-29T10:23:18ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump github/super-linter from 3 to 4.9.1*Created by: dependabot[bot]*
Bumps [github/super-linter](https://github.com/github/super-linter) from 3 to 4.9.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/github/super-linter/releases">...*Created by: dependabot[bot]*
Bumps [github/super-linter](https://github.com/github/super-linter) from 3 to 4.9.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/github/super-linter/releases">github/super-linter's releases</a>.</em></p>
<blockquote>
<h2>v4.9.1</h2>
<h1>Changelog</h1>
<ul>
<li>bump Releases <a href="https://github.com/admiralAwkbar"><code>@admiralAwkbar</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2680">#2680</a>)</li>
<li>weekly visualization <a href="https://github.com/admiralAwkbar"><code>@admiralAwkbar</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2679">#2679</a>)</li>
<li>Bump stylelint-config-recommended-scss from 5.0.2 to 6.0.0 in /dependencies <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2653">#2653</a>)</li>
<li>Bump stylelint-scss from 4.1.0 to 4.2.0 in /dependencies <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2647">#2647</a>)</li>
<li>Bump stylelint from 14.5.3 to 14.6.0 in /dependencies <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2655">#2655</a>)</li>
<li>Bump docker/build-push-action from 2.9.0 to 2.10.0 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2646">#2646</a>)</li>
<li>Bump golangci/golangci-lint from v1.44.2 to v1.45.0 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2652">#2652</a>)</li>
<li>Bump python from 3.10.2-alpine to 3.10.3-alpine <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2651">#2651</a>)</li>
<li>Bump rubocop-rails from 2.13.2 to 2.14.2 in /dependencies <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2649">#2649</a>)</li>
<li>Add Android support for Kotlin <a href="https://github.com/alexandrefavre4"><code>@alexandrefavre4</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2670">#2670</a>)</li>
<li>trying to create diagram <a href="https://github.com/admiralAwkbar"><code>@admiralAwkbar</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2674">#2674</a>)</li>
<li>Bump alpine from 3.15.0 to 3.15.1 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2648">#2648</a>)</li>
<li>Weekly Python Updates <a href="https://github.com/github-actions"><code>@github-actions</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2644">#2644</a>)</li>
<li>Use ts-standard instead of standard as TYPESCRIPT_STANDARD <a href="https://github.com/massongit"><code>@massongit</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2614">#2614</a>)</li>
<li>Bump rubocop from 1.25.1 to 1.26.0 in /dependencies <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2618">#2618</a>)</li>
<li>Bump zricethezav/gitleaks from v8.3.0 to v8.4.0 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2619">#2619</a>)</li>
<li>Bump rhysd/actionlint from 1.6.9 to 1.6.10 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2620">#2620</a>)</li>
<li>Bump eslint-plugin-react from 7.29.3 to 7.29.4 in /dependencies <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2623">#2623</a>)</li>
<li>Bump snakemake from 7.1.0 to 7.2.1 in /dependencies/python <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2637">#2637</a>)</li>
<li>Fix link to Actions Badges documentation <a href="https://github.com/KristjanESPERANTO"><code>@KristjanESPERANTO</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2615">#2615</a>)</li>
<li>Copy over Python headers during staged build <a href="https://github.com/HippocampusGirl"><code>@HippocampusGirl</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2607">#2607</a>)</li>
<li>Update example config to use actions/checkout@v3 <a href="https://github.com/coliff"><code>@coliff</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2610">#2610</a>)</li>
<li>Weekly NPM Updates <a href="https://github.com/github-actions"><code>@github-actions</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2617">#2617</a>)</li>
<li>Weekly Python Updates <a href="https://github.com/github-actions"><code>@github-actions</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2616">#2616</a>)</li>
<li>Bump cljkondo/clj-kondo from 2022.02.09-alpine to 2022.03.09-alpine <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2609">#2609</a>)</li>
<li>Bump rubocop-rspec from 2.8.0 to 2.9.0 in /dependencies <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2556">#2556</a>)</li>
<li>Bump rubocop-performance from 1.13.2 to 1.13.3 in /dependencies <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2590">#2590</a>)</li>
<li>Bump actions/checkout from 2.4.0 to 3 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2585">#2585</a>)</li>
<li>Bump bobheadxi/deployments from 0.6.2 to 1.1.0 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2586">#2586</a>)</li>
<li>Bump alpine/terragrunt from 1.1.6 to 1.1.7 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2587">#2587</a>)</li>
<li>Bump docker/login-action from 1.14.0 to 1.14.1 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2588">#2588</a>)</li>
<li>Bump hashicorp/terraform from 1.1.6 to 1.1.7 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2591">#2591</a>)</li>
<li>Weekly NPM Updates <a href="https://github.com/github-actions"><code>@github-actions</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2604">#2604</a>)</li>
<li>Weekly Python Updates <a href="https://github.com/github-actions"><code>@github-actions</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2605">#2605</a>)</li>
<li>Bump zricethezav/gitleaks from v8.2.7 to v8.3.0 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2558">#2558</a>)</li>
<li>Bump accurics/terrascan from 1.13.1 to 1.13.2 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2559">#2559</a>)</li>
<li>Weekly Python Updates <a href="https://github.com/github-actions"><code>@github-actions</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2574">#2574</a>)</li>
<li>Bump yoheimuta/protolint from v0.37.0 to v0.37.1 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2560">#2560</a>)</li>
<li>Bump docker/login-action from 1.13.0 to 1.14.0 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2555">#2555</a>)</li>
<li>Weekly NPM Updates <a href="https://github.com/github-actions"><code>@github-actions</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2552">#2552</a>)</li>
<li>Weekly Python Updates <a href="https://github.com/github-actions"><code>@github-actions</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2551">#2551</a>)</li>
<li>Bump rhysd/actionlint from 1.6.8 to 1.6.9 <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2554">#2554</a>)</li>
<li>Weekly NPM Updates <a href="https://github.com/github-actions"><code>@github-actions</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2547">#2547</a>)</li>
<li>Weekly Python Updates <a href="https://github.com/github-actions"><code>@github-actions</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2546">#2546</a>)</li>
<li>Bump markupsafe from 2.0.1 to 2.1.0 in /dependencies/python <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2524">#2524</a>)</li>
<li>Bump cpplint from 1.5.5 to 1.6.0 in /dependencies/python <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2527">#2527</a>)</li>
<li>Bump sqlfluff from 0.10.0 to 0.10.1 in /dependencies/python <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2528">#2528</a>)</li>
<li>Bump jupyter-core from 4.9.1 to 4.9.2 in /dependencies/python <a href="https://github.com/dependabot"><code>@dependabot</code></a> (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2530">#2530</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/github/super-linter/commit/3792fe5373cf2f5b22d590fcbbc4533d735c573e"><code>3792fe5</code></a> Release (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2680">#2680</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/33dfb2b6242119429d5bf7d775e3f2f1811a288a"><code>33dfb2b</code></a> weekly (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2679">#2679</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/2b220141fffc4f21897a43fe71608410609a2243"><code>2b22014</code></a> Bump stylelint-config-recommended-scss in /dependencies (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2653">#2653</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/d4b00b5ca64daeb8f14f9e7f6d83076d9f4ddfda"><code>d4b00b5</code></a> Bump stylelint-scss from 4.1.0 to 4.2.0 in /dependencies (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2647">#2647</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/aecce56b806c1c62665578520e88c43e696d3d12"><code>aecce56</code></a> Bump stylelint from 14.5.3 to 14.6.0 in /dependencies (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2655">#2655</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/053b37bbf5cd95695e71fb93ba7039b3bac15e0f"><code>053b37b</code></a> Bump docker/build-push-action from 2.9.0 to 2.10.0 (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2646">#2646</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/0507459a9e23cd4d99aee1477c97c1c15d1fbef8"><code>0507459</code></a> Bump golangci/golangci-lint from v1.44.2 to v1.45.0 (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2652">#2652</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/3aae7637b4f5e4a54a248aca52bca6ab058cc1de"><code>3aae763</code></a> Bump python from 3.10.2-alpine to 3.10.3-alpine (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2651">#2651</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/062b71acce53996f3fcb7521b7e3ebfd313ce24f"><code>062b71a</code></a> Bump rubocop-rails from 2.13.2 to 2.14.2 in /dependencies (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2649">#2649</a>)</li>
<li><a href="https://github.com/github/super-linter/commit/edc7095b4bff2cb93afa6ec4a37a26e46d2c240c"><code>edc7095</code></a> Add Android support for Kotlin (<a href="https://github-redirect.dependabot.com/github/super-linter/issues/2670">#2670</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/github/super-linter/compare/v3...v4.9.1">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/super-linter&package-manager=github_actions&previous-version=3&new-version=4.9.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/24Bump docker/build-push-action from 2.5.0 to 2.10.02022-03-29T10:23:04ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump docker/build-push-action from 2.5.0 to 2.10.0*Created by: dependabot[bot]*
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 2.5.0 to 2.10.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/build-pu...*Created by: dependabot[bot]*
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 2.5.0 to 2.10.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/build-push-action/releases">docker/build-push-action's releases</a>.</em></p>
<blockquote>
<h2>v2.10.0</h2>
<ul>
<li>Add <code>imageid</code> output and use metadata to set <code>digest</code> output (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/569">#569</a>)</li>
<li>Add <code>build-contexts</code> input (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/563">#563</a>)</li>
<li>Enhance outputs display (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/559">#559</a>)</li>
</ul>
<h2>v2.9.0</h2>
<ul>
<li><code>add-hosts</code> input (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/553">#553</a> <a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/555">#555</a>)</li>
<li>Fix git context subdir example and improve README (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/552">#552</a>)</li>
<li>Add e2e tests for ACR (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/548">#548</a>)</li>
<li>Add description on <code>github-token</code> option to README (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/544">#544</a>)</li>
<li>Bump node-fetch from 2.6.1 to 2.6.7 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/549">#549</a>)</li>
</ul>
<h2>v2.8.0</h2>
<ul>
<li>Allow specifying subdirectory with default git context (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/531">#531</a>)</li>
<li>Add <code>cgroup-parent</code>, <code>shm-size</code>, <code>ulimit</code> inputs (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/501">#501</a>)</li>
<li>Don't set outputs if empty or nil (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/470">#470</a>)</li>
<li>docs: example to sanitize tags with metadata-action (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/476">#476</a>)</li>
<li>docs: wrong syntax to sanitize repo slug (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/475">#475</a>)</li>
<li>docs: test before pushing your image (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/455">#455</a>)</li>
<li>readme: remove v1 section (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/500">#500</a>)</li>
<li>ci: virtual env file system info (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/510">#510</a>)</li>
<li>dev: update workflow (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/499">#499</a>)</li>
<li>Bump <code>@actions/core</code> from 1.5.0 to 1.6.0 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/160">#160</a>)</li>
<li>Bump ansi-regex from 5.0.0 to 5.0.1 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/469">#469</a>)</li>
<li>Bump tmpl from 1.0.4 to 1.0.5 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/465">#465</a>)</li>
<li>Bump csv-parse from 4.16.0 to 4.16.3 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/451">#451</a> <a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/459">#459</a>)</li>
</ul>
<h2>v2.7.0</h2>
<ul>
<li>Add <code>metadata</code> output (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/412">#412</a>)</li>
<li>Bump <code>@actions/core</code> from 1.4.0 to 1.5.0 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/439">#439</a>)</li>
<li>Add note to sanitize tags (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/426">#426</a>)</li>
<li>Cache backend API docs (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/406">#406</a>)</li>
<li>Git context now supports subdir (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/407">#407</a>)</li>
<li>Bump codecov/codecov-action from 1 to 2 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/415">#415</a>)</li>
</ul>
<h2>v2.6.1</h2>
<ul>
<li>Small typo and ensure trimmed output (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/400">#400</a>)</li>
</ul>
<h2>v2.6.0</h2>
<ul>
<li>Handle git sha version of buildx (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/399">#399</a>)</li>
<li>Update dev deps (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/393">#393</a>)</li>
<li>Use built-in <code>getExecOutput</code> (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/392">#392</a>)</li>
<li>Use <code>core.getBooleanInput</code> (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/391">#391</a>)</li>
<li>Bump csv-parse from 4.15.4 to 4.16.0 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/385">#385</a>)</li>
<li>Bump <code>@actions/exec</code> from 1.0.4 to 1.1.0 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/382">#382</a>)</li>
<li>Bump <code>@actions/core</code> from 1.3.0 to 1.4.0 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/383">#383</a>)</li>
<li>Bump ws from 7.3.1 to 7.4.6 (<a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/375">#375</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/docker/build-push-action/commit/ac9327eae2b366085ac7f6a2d02df8aa8ead720a"><code>ac9327e</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/563">#563</a> from crazy-max/new-inputs</li>
<li><a href="https://github.com/docker/build-push-action/commit/7c41daf2a5f378ed47e2c3e4da5152f52281f6a4"><code>7c41daf</code></a> <code>build-contexts</code> input</li>
<li><a href="https://github.com/docker/build-push-action/commit/e115266953eea28d39ebfba339eeac51d5f23b55"><code>e115266</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/569">#569</a> from crazy-max/imageid-digest</li>
<li><a href="https://github.com/docker/build-push-action/commit/50fa0058d9f8c431884235ef44c496ce90806fcf"><code>50fa005</code></a> add imageid output and use metadata to set digest output</li>
<li><a href="https://github.com/docker/build-push-action/commit/309fb9180f2030167151ad947584dc32f6164656"><code>309fb91</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/568">#568</a> from docker/dependabot/github_actions/actions/checkout-3</li>
<li><a href="https://github.com/docker/build-push-action/commit/db68526220828220b010aaaf67a2b055bec1df8c"><code>db68526</code></a> Bump actions/checkout from 2 to 3</li>
<li><a href="https://github.com/docker/build-push-action/commit/fe02965b4878556fce19e4f0aa608d7d09ed629b"><code>fe02965</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/559">#559</a> from crazy-max/outputs</li>
<li><a href="https://github.com/docker/build-push-action/commit/5af8693d821f846a78ae05d8b9222e0162b4f1d5"><code>5af8693</code></a> Enhance outputs display</li>
<li><a href="https://github.com/docker/build-push-action/commit/7f9d37fa544684fb73bfe4835ed7214c255ce02b"><code>7f9d37f</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/build-push-action/issues/555">#555</a> from crazy-max/fix-add-host</li>
<li><a href="https://github.com/docker/build-push-action/commit/d7458455bbf0dfbe4ba54b37ca36d9d6c5cc38ff"><code>d745845</code></a> Fix add-hosts context</li>
<li>Additional commits viewable in <a href="https://github.com/docker/build-push-action/compare/ad44023a93711e3deb337508980b4b5e9bcdc5dc...ac9327eae2b366085ac7f6a2d02df8aa8ead720a">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/build-push-action&package-manager=github_actions&previous-version=2.5.0&new-version=2.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/26Bump docker/metadata-action from 3.3.0 to 3.6.22022-03-29T10:22:47ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump docker/metadata-action from 3.3.0 to 3.6.2*Created by: dependabot[bot]*
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3.3.0 to 3.6.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/metadata-acti...*Created by: dependabot[bot]*
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3.3.0 to 3.6.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/docker/metadata-action/releases">docker/metadata-action's releases</a>.</em></p>
<blockquote>
<h2>v3.6.2</h2>
<ul>
<li>Handle raw statement for pre-release (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/155">#155</a> <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/156">#156</a>)</li>
</ul>
<h2>v3.6.1</h2>
<ul>
<li>Preserve quotes inside unquoted field (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/153">#153</a>)</li>
</ul>
<h2>v3.6.0</h2>
<ul>
<li><code>base_ref</code> global expression (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/142">#142</a>)</li>
<li>Trim tags and flavor inputs (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/143">#143</a>)</li>
<li>Bump <code>@actions/core</code> from 1.5.0 to 1.6.0 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/135">#135</a>)</li>
<li>Bump ansi-regex from 5.0.0 to 5.0.1 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/134">#134</a>)</li>
<li>Bump tmpl from 1.0.4 to 1.0.5 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/132">#132</a>)</li>
<li>Bump csv-parse from 4.16.0 to 4.16.3 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/131">#131</a>)</li>
</ul>
<h2>v3.5.0</h2>
<ul>
<li>Add global expression <code>date</code> (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/121">#121</a>)</li>
<li>Bump <code>@actions/core</code> from 1.4.0 to 1.5.0 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/122">#122</a>)</li>
</ul>
<h2>v3.4.1</h2>
<ul>
<li>Only return edge if branch matches (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/115">#115</a>)</li>
</ul>
<h2>v3.4.0</h2>
<ul>
<li>PEP 440 support (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/108">#108</a>)</li>
<li>Allow global prefix/suffix on latest (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/107">#107</a>)</li>
<li>Update dev deps (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/109">#109</a>)</li>
<li>Bump <code>@actions/core</code> from 1.3.0 to 1.4.0 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/100">#100</a>)</li>
<li>Bump csv-parse from 4.15.4 to 4.16.0 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/101">#101</a>)</li>
<li>Bump ws from 7.3.1 to 7.4.6 (<a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/99">#99</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/docker/metadata-action/commit/e5622373a38e60fb6d795a4421e56882f2d7a681"><code>e562237</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/156">#156</a> from crazy-max/prerelease-raw-pep440</li>
<li><a href="https://github.com/docker/metadata-action/commit/aad230bbd9e00bbe791f9611c51db0a4de823b69"><code>aad230b</code></a> fix: handle raw statement for pep440 pre-release</li>
<li><a href="https://github.com/docker/metadata-action/commit/6d7c94a41e0b381a0ed1c79ef7e769db104769df"><code>6d7c94a</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/155">#155</a> from crazy-max/prerelease-raw</li>
<li><a href="https://github.com/docker/metadata-action/commit/52100c89dd056e1a9161c46cf06829d22ce8cd44"><code>52100c8</code></a> fix: handle raw statement for semver pre-release</li>
<li><a href="https://github.com/docker/metadata-action/commit/9a425032056026ffcba55b70c9edf60eeb5d2883"><code>9a42503</code></a> chore: cleanup tests</li>
<li><a href="https://github.com/docker/metadata-action/commit/a2e02890a0d28163b34ac2e4b575b9264a5ee3e2"><code>a2e0289</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/153">#153</a> from crazy-max/preserve-quotes</li>
<li><a href="https://github.com/docker/metadata-action/commit/59e3d70a23656c69fa1cba9e65a677ca9d3d3723"><code>59e3d70</code></a> Preserve quotes inside unquoted field</li>
<li><a href="https://github.com/docker/metadata-action/commit/5220b231121b5b69d5effbe0d0e4770a68500a44"><code>5220b23</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/146">#146</a> from crazy-max/update-workflow</li>
<li><a href="https://github.com/docker/metadata-action/commit/8d0937e440cd4b09ace7156e2296952c58f7e321"><code>8d0937e</code></a> dev: update workflow</li>
<li><a href="https://github.com/docker/metadata-action/commit/548e2346a9987b56d8a4104fe776321ff8e23440"><code>548e234</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/metadata-action/issues/143">#143</a> from crazy-max/trim-val</li>
<li>Additional commits viewable in <a href="https://github.com/docker/metadata-action/compare/98669ae865ea3cffbcbaa878cf57c20bbf1c6c38...e5622373a38e60fb6d795a4421e56882f2d7a681">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/metadata-action&package-manager=github_actions&previous-version=3.3.0&new-version=3.6.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/27Bump actions/checkout from 2 to 32022-03-29T10:22:38ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump actions/checkout from 2 to 3*Created by: dependabot[bot]*
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/check...*Created by: dependabot[bot]*
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p>
<blockquote>
<h2>v3.0.0</h2>
<ul>
<li>Updated to the node16 runtime by default
<ul>
<li>This requires a minimum <a href="https://github.com/actions/runner/releases/tag/v2.285.0">Actions Runner</a> version of v2.285.0 to run, which is by default available in GHES 3.4 or later.</li>
</ul>
</li>
</ul>
<h2>v2.4.0</h2>
<ul>
<li>Convert SSH URLs like <code>org-<ORG_ID>@github.com:</code> to <code>https://github.com/</code> - <a href="https://github-redirect.dependabot.com/actions/checkout/pull/621">pr</a></li>
</ul>
<h2>v2.3.5</h2>
<p>Update dependencies</p>
<h2>v2.3.4</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/379">Add missing <code>await</code>s</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/360">Swap to Environment Files</a></li>
</ul>
<h2>v2.3.3</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/345">Remove Unneeded commit information from build logs</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/326">Add Licensed to verify third party dependencies</a></li>
</ul>
<h2>v2.3.2</h2>
<p><a href="https://github-redirect.dependabot.com/actions/checkout/pull/320">Add Third Party License Information to Dist Files</a></p>
<h2>v2.3.1</h2>
<p><a href="https://github-redirect.dependabot.com/actions/checkout/pull/284">Fix default branch resolution for .wiki and when using SSH</a></p>
<h2>v2.3.0</h2>
<p><a href="https://github-redirect.dependabot.com/actions/checkout/pull/278">Fallback to the default branch</a></p>
<h2>v2.2.0</h2>
<p><a href="https://github-redirect.dependabot.com/actions/checkout/pull/258">Fetch all history for all tags and branches when fetch-depth=0</a></p>
<h2>v2.1.1</h2>
<p>Changes to support GHES (<a href="https://github-redirect.dependabot.com/actions/checkout/pull/236">here</a> and <a href="https://github-redirect.dependabot.com/actions/checkout/pull/248">here</a>)</p>
<h2>v2.1.0</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/191">Group output</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/199">Changes to support GHES alpha release</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/184">Persist core.sshCommand for submodules</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/163">Add support ssh</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/179">Convert submodule SSH URL to HTTPS, when not using SSH</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/157">Add submodule support</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/144">Follow proxy settings</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/141">Fix ref for pr closed event when a pr is merged</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/128">Fix issue checking detached when git less than 2.22</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/actions/checkout/blob/main/CHANGELOG.md">actions/checkout's changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<h2>v3.0.0</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/689">Update to node 16</a></li>
</ul>
<h2>v2.3.1</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/284">Fix default branch resolution for .wiki and when using SSH</a></li>
</ul>
<h2>v2.3.0</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/278">Fallback to the default branch</a></li>
</ul>
<h2>v2.2.0</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/258">Fetch all history for all tags and branches when fetch-depth=0</a></li>
</ul>
<h2>v2.1.1</h2>
<ul>
<li>Changes to support GHES (<a href="https://github-redirect.dependabot.com/actions/checkout/pull/236">here</a> and <a href="https://github-redirect.dependabot.com/actions/checkout/pull/248">here</a>)</li>
</ul>
<h2>v2.1.0</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/191">Group output</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/199">Changes to support GHES alpha release</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/184">Persist core.sshCommand for submodules</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/163">Add support ssh</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/179">Convert submodule SSH URL to HTTPS, when not using SSH</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/157">Add submodule support</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/144">Follow proxy settings</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/141">Fix ref for pr closed event when a pr is merged</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/128">Fix issue checking detached when git less than 2.22</a></li>
</ul>
<h2>v2.0.0</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/108">Do not pass cred on command line</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/107">Add input persist-credentials</a></li>
<li><a href="https://github-redirect.dependabot.com/actions/checkout/pull/104">Fallback to REST API to download repo</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/actions/checkout/commit/a12a3943b4bdde767164f792f33f40b04645d846"><code>a12a394</code></a> update readme for v3 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/708">#708</a>)</li>
<li><a href="https://github.com/actions/checkout/commit/8f9e05e482293f862823fcca12d9eddfb3723131"><code>8f9e05e</code></a> Update to node 16 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/689">#689</a>)</li>
<li><a href="https://github.com/actions/checkout/commit/230611dbd0eb52da1e1f4f7bc8bb0c3a339fc8b7"><code>230611d</code></a> Change secret name for PAT to not start with GITHUB_ (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/623">#623</a>)</li>
<li>See full diff in <a href="https://github.com/actions/checkout/compare/v2...v3">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/checkout&package-manager=github_actions&previous-version=2&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/28Bump pytest from 5.4.3 to 7.0.12022-03-29T10:22:28ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBump pytest from 5.4.3 to 7.0.1*Created by: dependabot[bot]*
Bumps [pytest](https://github.com/pytest-dev/pytest) from 5.4.3 to 7.0.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/pytest-dev/pytest/releases">pytest's rele...*Created by: dependabot[bot]*
Bumps [pytest](https://github.com/pytest-dev/pytest) from 5.4.3 to 7.0.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/pytest-dev/pytest/releases">pytest's releases</a>.</em></p>
<blockquote>
<h2>7.0.1</h2>
<h1>pytest 7.0.1 (2022-02-11)</h1>
<h2>Bug Fixes</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9608">#9608</a>: Fix invalid importing of <code>importlib.readers</code> in Python 3.9.</li>
<li><a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9610">#9610</a>: Restore [UnitTestFunction.obj]{.title-ref} to return unbound rather than bound method.
Fixes a crash during a failed teardown in unittest TestCases with non-default [__init__]{.title-ref}.
Regressed in pytest 7.0.0.</li>
<li><a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9636">#9636</a>: The <code>pythonpath</code> plugin was renamed to <code>python_path</code>. This avoids a conflict with the <code>pytest-pythonpath</code> plugin.</li>
<li><a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9642">#9642</a>: Fix running tests by id with <code>::</code> in the parametrize portion.</li>
<li><a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9643">#9643</a>: Delay issuing a <code>~pytest.PytestWarning</code>{.interpreted-text role="class"} about diamond inheritance involving <code>~pytest.Item</code>{.interpreted-text role="class"} and
<code>~pytest.Collector</code>{.interpreted-text role="class"} so it can be filtered using <code>standard warning filters <warnings></code>{.interpreted-text role="ref"}.</li>
</ul>
<h2>7.0.0</h2>
<h1>pytest 7.0.0 (2022-02-03)</h1>
<p>(<strong>Please see the full set of changes for this release also in the 7.0.0rc1 notes below</strong>)</p>
<h2>Deprecations</h2>
<ul>
<li>
<p><a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9488">#9488</a>: If custom subclasses of nodes like <code>pytest.Item</code>{.interpreted-text role="class"} override the
<code>__init__</code> method, they should take <code>**kwargs</code>. See
<code>uncooperative-constructors-deprecated</code>{.interpreted-text role="ref"} for details.</p>
<p>Note that a deprection warning is only emitted when there is a conflict in the
arguments pytest expected to pass. This deprecation was already part of pytest
7.0.0rc1 but wasn't documented.</p>
</li>
</ul>
<h2>Bug Fixes</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9355">#9355</a>: Fixed error message prints function decorators when using assert in Python 3.8 and above.</li>
<li><a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9396">#9396</a>: Ensure <code>pytest.Config.inifile</code>{.interpreted-text role="attr"} is available during the <code>pytest_cmdline_main <_pytest.hookspec.pytest_cmdline_main></code>{.interpreted-text role="func"} hook (regression during <code>7.0.0rc1</code>).</li>
</ul>
<h2>Improved Documentation</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9404">#9404</a>: Added extra documentation on alternatives to common misuses of [pytest.warns(None)]{.title-ref} ahead of its deprecation.</li>
<li><a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9505">#9505</a>: Clarify where the configuration files are located. To avoid confusions documentation mentions
that configuration file is located in the root of the repository.</li>
</ul>
<h2>Trivial/Internal Changes</h2>
<ul>
<li><a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9521">#9521</a>: Add test coverage to assertion rewrite path.</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/pytest-dev/pytest/commit/3f12087fe0d86a319216653b08b66a96d400bee2"><code>3f12087</code></a> [pre-commit.ci] auto fixes from pre-commit.com hooks</li>
<li><a href="https://github.com/pytest-dev/pytest/commit/bc3021cdfd76507aa3d9e278bd885da9bc1907b2"><code>bc3021c</code></a> Prepare release version 7.0.1</li>
<li><a href="https://github.com/pytest-dev/pytest/commit/591d476f14e3e83d90fbea75d326a93c5e368708"><code>591d476</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9673">#9673</a> from nicoddemus/backport-9511</li>
<li><a href="https://github.com/pytest-dev/pytest/commit/6ca733e8f19fa5c4271bf3e5bb295c8b62757e4a"><code>6ca733e</code></a> Enable testing with Python 3.11 (<a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9511">#9511</a>)</li>
<li><a href="https://github.com/pytest-dev/pytest/commit/ac37b1b1139eaa71b3bcb16b630abfc0223241ef"><code>ac37b1b</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9671">#9671</a> from nicoddemus/backport-9668</li>
<li><a href="https://github.com/pytest-dev/pytest/commit/c891e402ac28f20dd3d018dc25f1ea1a273997be"><code>c891e40</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9672">#9672</a> from nicoddemus/backport-9669</li>
<li><a href="https://github.com/pytest-dev/pytest/commit/e2753a2b8b55de73adcc992036d0dc52facdbab9"><code>e2753a2</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9669">#9669</a> from hugovk/ci-only-update-plugin-list-for-upstream</li>
<li><a href="https://github.com/pytest-dev/pytest/commit/b5a154c1d961dbc19a3c00d798de2f27aaa5ace5"><code>b5a154c</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9668">#9668</a> from hugovk/test-me-latest-3.10</li>
<li><a href="https://github.com/pytest-dev/pytest/commit/0fae45bb6e4ecf177afdfa3bf03738813ec7b913"><code>0fae45b</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pytest-dev/pytest/issues/9660">#9660</a> from pytest-dev/backport-9646-to-7.0.x</li>
<li><a href="https://github.com/pytest-dev/pytest/commit/37d434f5fcb5f80188b3d5b8f22d418dc191b955"><code>37d434f</code></a> [7.0.x] Delay warning about collector/item diamond inheritance</li>
<li>Additional commits viewable in <a href="https://github.com/pytest-dev/pytest/compare/5.4.3...7.0.1">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pytest&package-manager=pip&previous-version=5.4.3&new-version=7.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>https://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/22Maintenance2021-09-30T10:05:59ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deMaintenancehttps://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/21Use Pythons with context for connections2021-09-14T09:07:57ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deUse Pythons with context for connectionshttps://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/20Configuration2021-09-07T11:47:46ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deConfigurationhttps://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/19Bjoern2021-08-24T13:08:30ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deBjoernhttps://git.finf.uni-hannover.de/johannesarnold/kaffee-server/-/merge_requests/18Provide a dockerfile2021-08-24T11:26:22ZJohannes Arnoldjohannes.arnold@stud.uni-hannover.deProvide a dockerfile