chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Adoption	Passing	Confidence
actions/checkout	action	minor	v4.1.7 -> v4.2.2
actions/setup-go	action	minor	v5.0.2 -> v5.1.0
alpine	final	patch	3.20.2 -> 3.20.3
alpine	stage	patch	3.20.2 -> 3.20.3
codecov/codecov-action	action	minor	v4.5.0 -> v4.6.0
github.com/go-vela/types	require	minor	v0.24.0 -> v0.25.1
github.com/urfave/cli/v2	require	patch	v2.27.4 -> v2.27.5
github/codeql-action	action	minor	v3.26.6 -> v3.27.4

---

Release Notes

actions/checkout (actions/checkout)

v4.2.2

Compare Source

• url-helper.ts now leverages well-known environment variables by @​jww3 in https://github.com/actions/checkout/pull/1941
• Expand unit test coverage for isGhes by @​jww3 in https://github.com/actions/checkout/pull/1946

v4.2.1

Compare Source

• Check out other refs/* by commit if provided, fall back to ref by @​orhantoy in https://github.com/actions/checkout/pull/1924

v4.2.0

Compare Source

• Add Ref and Commit outputs by @​lucacome in https://github.com/actions/checkout/pull/1180
• Dependency updates by @​dependabot- https://github.com/actions/checkout/pull/1777, https://github.com/actions/checkout/pull/1872

actions/setup-go (actions/setup-go)

v5.1.0

Compare Source

What's Changed

• Add workflow file for publishing releases to immutable action package by @​Jcambass in https://github.com/actions/setup-go/pull/500
• Upgrade IA Publish by @​Jcambass in https://github.com/actions/setup-go/pull/502
• Add architecture to cache key by @​Zxilly in https://github.com/actions/setup-go/pull/493
  This addresses issues with caching by adding the architecture (arch) to the cache key, ensuring that cache keys are accurate to prevent conflicts.
  Note: This change may break previous cache keys as they will no longer be compatible with the new format.
• Enhance workflows and Upgrade micromatch Dependency by @​priyagupta108 in https://github.com/actions/setup-go/pull/510

Bug Fixes

• Revise isGhes logic by @​jww3 in https://github.com/actions/setup-go/pull/511

New Contributors

• @​Zxilly made their first contribution in https://github.com/actions/setup-go/pull/493
• @​Jcambass made their first contribution in https://github.com/actions/setup-go/pull/500
• @​jww3 made their first contribution in https://github.com/actions/setup-go/pull/511
• @​priyagupta108 made their first contribution in https://github.com/actions/setup-go/pull/510

Full Changelog: actions/setup-go@v5...v5.1.0

codecov/codecov-action (codecov/codecov-action)

v4.6.0

Compare Source

What's Changed

• build(deps): bump github/codeql-action from 3.25.8 to 3.25.10 by @​dependabot in https://github.com/codecov/codecov-action/pull/1481
• build(deps): bump actions/checkout from 4.1.6 to 4.1.7 by @​dependabot in https://github.com/codecov/codecov-action/pull/1480
• build(deps-dev): bump ts-jest from 29.1.4 to 29.1.5 by @​dependabot in https://github.com/codecov/codecov-action/pull/1479
• build(deps-dev): bump @​typescript-eslint/parser from 7.13.0 to 7.13.1 by @​dependabot in https://github.com/codecov/codecov-action/pull/1485
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.13.0 to 7.13.1 by @​dependabot in https://github.com/codecov/codecov-action/pull/1484
• build(deps-dev): bump typescript from 5.4.5 to 5.5.2 by @​dependabot in https://github.com/codecov/codecov-action/pull/1490
• build(deps-dev): bump @​typescript-eslint/parser from 7.13.1 to 7.14.1 by @​dependabot in https://github.com/codecov/codecov-action/pull/1493
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.13.1 to 7.14.1 by @​dependabot in https://github.com/codecov/codecov-action/pull/1492
• build(deps): bump github/codeql-action from 3.25.10 to 3.25.11 by @​dependabot in https://github.com/codecov/codecov-action/pull/1496
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.14.1 to 7.15.0 by @​dependabot in https://github.com/codecov/codecov-action/pull/1501
• build(deps-dev): bump typescript from 5.5.2 to 5.5.3 by @​dependabot in https://github.com/codecov/codecov-action/pull/1500
• build(deps-dev): bump @​typescript-eslint/parser from 7.14.1 to 7.15.0 by @​dependabot in https://github.com/codecov/codecov-action/pull/1499
• build(deps): bump actions/upload-artifact from 4.3.3 to 4.3.4 by @​dependabot in https://github.com/codecov/codecov-action/pull/1502
• build(deps-dev): bump ts-jest from 29.1.5 to 29.2.0 by @​dependabot in https://github.com/codecov/codecov-action/pull/1504
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.15.0 to 7.16.0 by @​dependabot in https://github.com/codecov/codecov-action/pull/1503
• build(deps-dev): bump ts-jest from 29.2.0 to 29.2.2 by @​dependabot in https://github.com/codecov/codecov-action/pull/1507
• build(deps-dev): bump @​typescript-eslint/parser from 7.15.0 to 7.16.0 by @​dependabot in https://github.com/codecov/codecov-action/pull/1505
• build(deps): bump github/codeql-action from 3.25.11 to 3.25.12 by @​dependabot in https://github.com/codecov/codecov-action/pull/1509
• chore(ci): restrict scorecards to codecov/codecov-action by @​thomasrockhu-codecov in https://github.com/codecov/codecov-action/pull/1512
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.16.0 to 7.16.1 by @​dependabot in https://github.com/codecov/codecov-action/pull/1514
• build(deps-dev): bump @​typescript-eslint/parser from 7.16.0 to 7.16.1 by @​dependabot in https://github.com/codecov/codecov-action/pull/1513
• test: versionInfo by @​marcobiedermann in https://github.com/codecov/codecov-action/pull/1407
• build(deps-dev): bump ts-jest from 29.2.2 to 29.2.3 by @​dependabot in https://github.com/codecov/codecov-action/pull/1515
• build(deps): bump github/codeql-action from 3.25.12 to 3.25.13 by @​dependabot in https://github.com/codecov/codecov-action/pull/1516
• build(deps-dev): bump typescript from 5.5.3 to 5.5.4 by @​dependabot in https://github.com/codecov/codecov-action/pull/1521
• build(deps-dev): bump @​typescript-eslint/parser from 7.16.1 to 7.17.0 by @​dependabot in https://github.com/codecov/codecov-action/pull/1520
• build(deps-dev): bump @​typescript-eslint/parser from 7.17.0 to 7.18.0 by @​dependabot in https://github.com/codecov/codecov-action/pull/1528
• build(deps): bump github/codeql-action from 3.25.13 to 3.25.15 by @​dependabot in https://github.com/codecov/codecov-action/pull/1526
• build(deps): bump ossf/scorecard-action from 2.3.3 to 2.4.0 by @​dependabot in https://github.com/codecov/codecov-action/pull/1525
• build(deps-dev): bump ts-jest from 29.2.3 to 29.2.4 by @​dependabot in https://github.com/codecov/codecov-action/pull/1532
• build(deps): bump actions/upload-artifact from 4.3.4 to 4.3.5 by @​dependabot in https://github.com/codecov/codecov-action/pull/1534
• build(deps): bump github/codeql-action from 3.25.15 to 3.26.0 by @​dependabot in https://github.com/codecov/codecov-action/pull/1542
• build(deps): bump actions/upload-artifact from 4.3.5 to 4.3.6 by @​dependabot in https://github.com/codecov/codecov-action/pull/1541
• ref: Tidy up types and remove string coercion by @​nicholas-codecov in https://github.com/codecov/codecov-action/pull/1536
• build(deps-dev): bump @​octokit/webhooks-types from 3.77.1 to 7.5.1 by @​dependabot in https://github.com/codecov/codecov-action/pull/1545
• build(deps): bump github/codeql-action from 3.26.0 to 3.26.2 by @​dependabot in https://github.com/codecov/codecov-action/pull/1551
• feat: pass tokenless value as branch override by @​joseph-sentry in https://github.com/codecov/codecov-action/pull/1511
• build(deps): bump actions/upload-artifact from 4.3.6 to 4.4.0 by @​dependabot in https://github.com/codecov/codecov-action/pull/1563
• Create makefile.yml by @​Hawthorne001 in https://github.com/codecov/codecov-action/pull/1555
• build(deps): bump github/codeql-action from 3.26.2 to 3.26.6 by @​dependabot in https://github.com/codecov/codecov-action/pull/1562
• build(deps-dev): bump ts-jest from 29.2.4 to 29.2.5 by @​dependabot in https://github.com/codecov/codecov-action/pull/1557
• Spell evenName in the logs correctly by @​webknjaz in https://github.com/codecov/codecov-action/pull/1560
• build(deps-dev): bump typescript from 5.5.4 to 5.6.2 by @​dependabot in https://github.com/codecov/codecov-action/pull/1566
• build(deps-dev): bump @​types/jest from 29.5.12 to 29.5.13 by @​dependabot in https://github.com/codecov/codecov-action/pull/1567
• build(deps): bump github/codeql-action from 3.26.6 to 3.26.7 by @​dependabot in https://github.com/codecov/codecov-action/pull/1569
• build(deps-dev): bump eslint from 8.57.0 to 8.57.1 by @​dependabot in https://github.com/codecov/codecov-action/pull/1571
• build(deps): bump github/codeql-action from 3.26.7 to 3.26.8 by @​dependabot in https://github.com/codecov/codecov-action/pull/1575
• build(deps-dev): bump @​vercel/ncc from 0.38.1 to 0.38.2 by @​dependabot in https://github.com/codecov/codecov-action/pull/1577
• chore: fix typo of OSS by @​shoothzj in https://github.com/codecov/codecov-action/pull/1578
• build(deps): bump github/codeql-action from 3.26.8 to 3.26.9 by @​dependabot in https://github.com/codecov/codecov-action/pull/1584
• build(deps): bump actions/checkout from 4.1.7 to 4.2.0 by @​dependabot in https://github.com/codecov/codecov-action/pull/1583
• fix: bump eslint parser deps by @​thomasrockhu-codecov in https://github.com/codecov/codecov-action/pull/1586
• chore(release):4.6.0 by @​thomasrockhu-codecov in https://github.com/codecov/codecov-action/pull/1587

New Contributors

• @​nicholas-codecov made their first contribution in https://github.com/codecov/codecov-action/pull/1536
• @​Hawthorne001 made their first contribution in https://github.com/codecov/codecov-action/pull/1555
• @​webknjaz made their first contribution in https://github.com/codecov/codecov-action/pull/1560
• @​shoothzj made their first contribution in https://github.com/codecov/codecov-action/pull/1578

Full Changelog: codecov/codecov-action@v4.5.0...v4.6.0

go-vela/types (github.com/go-vela/types)

v0.25.1

Compare Source

What's Changed

• chore: update schema, go, and deps for patch release by @​ecrupper in https://github.com/go-vela/types/pull/396

Full Changelog: go-vela/types@v0.25.0...v0.25.1

v0.25.0

Compare Source

What's Changed

• fix(swagger): remove old model annotations by @​wass3r in https://github.com/go-vela/types/pull/385
• feat(rulesets): add instance key to ruleset by @​wsan3 in https://github.com/go-vela/types/pull/384
• enhance(secrets): uppercase secret target by @​ecrupper in https://github.com/go-vela/types/pull/387
• fix(yaml): remediate insecure/archived buildkite lib in favor of go-yaml v3 by @​ecrupper in https://github.com/go-vela/types/pull/386
• fix: update doc links by @​wass3r in https://github.com/go-vela/types/pull/388
• chore: re-enable go fix; deprecate library.Hook; bump go by @​wass3rw3rk in https://github.com/go-vela/types/pull/389
• chore(deps): update all non-major dependencies by @​renovate in https://github.com/go-vela/types/pull/383
• fix(revert): use buildkite as yaml parser by @​ecrupper in https://github.com/go-vela/types/pull/392
• chore(deps): update all non-major dependencies by @​renovate in https://github.com/go-vela/types/pull/390
• chore(deps): update all non-major dependencies by @​renovate in https://github.com/go-vela/types/pull/393

Full Changelog: go-vela/types@v0.24.0...v0.25.0

urfave/cli (github.com/urfave/cli/v2)

v2.27.5

Compare Source

What's Changed

• docs(flag): add UseShortOptionHandling description by @​BlackHole1 in https://github.com/urfave/cli/pull/1956
• [Backport] Fix: Use $0 env var to correctly retrieve the current active shell by @​asahasrabuddhe in https://github.com/urfave/cli/pull/1970
• Update dependencies in v2-maint by @​meatballhat in https://github.com/urfave/cli/pull/1980

Full Changelog: urfave/cli@v2.27.4...v2.27.5

github/codeql-action (github/codeql-action)

v3.27.4

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.4 - 14 Nov 2024

No user facing changes.

See the full CHANGELOG.md for more information.

v3.27.3

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.3 - 12 Nov 2024

No user facing changes.

See the full CHANGELOG.md for more information.

v3.27.2

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.2 - 12 Nov 2024

• Fixed an issue where setting up the CodeQL tools would sometimes fail with the message "Invalid value 'undefined' for header 'authorization'". #​2590

See the full CHANGELOG.md for more information.

v3.27.1

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.1 - 08 Nov 2024

• The CodeQL Action now downloads bundles compressed using Zstandard on GitHub Enterprise Server when using Linux or macOS runners. This speeds up the installation of the CodeQL tools. This feature is already available to GitHub.com users. #​2573
• Update default CodeQL bundle version to 2.19.3. #​2576

See the full CHANGELOG.md for more information.

v3.27.0

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.0 - 22 Oct 2024

• Bump the minimum CodeQL bundle version to 2.14.6. #​2549
• Fix an issue where the upload-sarif Action would fail with "upload-sarif post-action step failed: Input required and not supplied: token" when called in a composite Action that had a different set of inputs to the ones expected by the upload-sarif Action. #​2557
• Update default CodeQL bundle version to 2.19.2. #​2552

See the full CHANGELOG.md for more information.

v3.26.13

Compare Source

v3.26.12

Compare Source

v3.26.11

Compare Source

v3.26.10

Compare Source

v3.26.9

Compare Source

v3.26.8

Compare Source

v3.26.7

Compare Source

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 45.70%. Comparing base (5e6f051) to head (6b5dbdc).

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #163      +/-   ##
==========================================
+ Coverage   43.66%   45.70%   +2.04%     
==========================================
  Files           7        7              
  Lines         355      477     +122     
==========================================
+ Hits          155      218      +63     
- Misses        186      245      +59     
  Partials       14       14              

see 7 files with indirect coverage changes

[renovate]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

• 1 additional dependency was updated
• The go directive was updated for compatibility reasons

Details:

Package	Change
go	1.23.0 -> 1.23.3
github.com/cpuguy83/go-md2man/v2	v2.0.4 -> v2.0.5