{"id":8634,"name":"hashicorp/terraform","ecosystem":"docker","repository_url":null,"issues_count":160,"created_at":"2025-06-06T22:25:02.250Z","updated_at":"2025-06-06T22:25:02.250Z","purl":"pkg:docker/hashicorp/terraform","metadata":{"id":9985524,"name":"hashicorp/terraform","ecosystem":"docker","description":"Automatic builds of Terraform. See README for more use and info.","homepage":null,"licenses":null,"normalized_licenses":[],"repository_url":null,"keywords_array":[],"namespace":"hashicorp","versions_count":352,"first_release_published_at":"2016-05-07T22:53:40.579Z","latest_release_published_at":"2025-05-21T13:03:31.972Z","latest_release_number":"1.12.1","last_synced_at":"2025-06-05T01:03:02.759Z","created_at":"2024-05-15T04:51:21.388Z","updated_at":"2025-06-05T01:03:02.760Z","registry_url":"https://hub.docker.com/r/hashicorp/terraform","install_command":"docker pull hashicorp/terraform","documentation_url":null,"metadata":{},"repo_metadata":{},"repo_metadata_updated_at":null,"dependent_packages_count":0,"downloads":458005669,"downloads_period":"total","dependent_repos_count":0,"rankings":{"downloads":0.011977745349141295,"dependent_repos_count":1.5364313507060277,"dependent_packages_count":0.0,"stargazers_count":null,"forks_count":null,"docker_downloads_count":null,"average":0.5161363653517229},"purl":"pkg:docker/hashicorp%2Fterraform","advisories":[],"docker_usage_url":"https://docker.ecosyste.ms/usage/docker/hashicorp/terraform","docker_dependents_count":null,"docker_downloads_count":null,"usage_url":"https://repos.ecosyste.ms/usage/docker/hashicorp/terraform","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/docker/hashicorp/terraform/dependencies","status":null,"funding_links":[],"critical":true,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages/hashicorp%2Fterraform/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages/hashicorp%2Fterraform/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages/hashicorp%2Fterraform/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages/hashicorp%2Fterraform/related_packages","maintainers":[],"registry":{"name":"hub.docker.com","url":"https://hub.docker.com","ecosystem":"docker","default":true,"packages_count":1002007,"maintainers_count":0,"namespaces_count":411568,"keywords_count":1704,"github":"docker","metadata":{"api_url":"https://registry-1.docker.io","funded_packages_count":257},"icon_url":"https://github.com/docker.png","created_at":"2022-11-24T17:07:36.388Z","updated_at":"2025-06-07T05:40:29.049Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/namespaces"}},"unique_repositories_count":23,"unique_repositories_count_past_30_days":3,"recent_issues":[{"uuid":"4635610951","node_id":"PR_kwDOI2A72M7lEtVa","number":1224,"state":"closed","title":"build(deps): bump hashicorp/terraform from 1.15.5 to 1.15.6 in /.devcontainer","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-06-10T22:58:11.000Z","author_association":null,"state_reason":null,"created_at":"2026-06-10T22:52:18.000Z","updated_at":"2026-06-10T22:58:13.000Z","time_to_close":353,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"hashicorp/terraform","old_version":"1.15.5","new_version":"1.15.6","repository_url":null}],"path":"/.devcontainer","ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.15.5 to 1.15.6.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.15.5\u0026new-version=1.15.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/GoogleCloudPlatform/mqtt-cloud-pubsub-connector/pull/1224","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/GoogleCloudPlatform%2Fmqtt-cloud-pubsub-connector/issues/1224","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1224/packages"},{"uuid":"4490806177","node_id":"PR_kwDOI2A72M7dvoso","number":1201,"state":"closed","title":"build(deps): bump hashicorp/terraform from 1.15.3 to 1.15.4 in /.devcontainer","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-21T00:40:43.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-21T00:35:08.000Z","updated_at":"2026-05-21T00:40:45.000Z","time_to_close":335,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"hashicorp/terraform","old_version":"1.15.3","new_version":"1.15.4","repository_url":null}],"path":"/.devcontainer","ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.15.3 to 1.15.4.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.15.3\u0026new-version=1.15.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/GoogleCloudPlatform/mqtt-cloud-pubsub-connector/pull/1201","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/GoogleCloudPlatform%2Fmqtt-cloud-pubsub-connector/issues/1201","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1201/packages"},{"uuid":"4490777184","node_id":"PR_kwDOIiGuK87dvi9N","number":639,"state":"closed","title":"deps(docker): bump hashicorp/terraform from 1.9.5 to 1.15.4","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-27T23:42:27.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-21T00:26:01.000Z","updated_at":"2026-05-27T23:42:29.000Z","time_to_close":602186,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker)","packages":[{"name":"hashicorp/terraform","old_version":"1.9.5","new_version":"1.15.4","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.9.5 to 1.15.4.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.9.5\u0026new-version=1.15.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/actions-marketplace-validations/github_super-linter/pull/639","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/actions-marketplace-validations%2Fgithub_super-linter/issues/639","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/639/packages"},{"uuid":"4489221733","node_id":"PR_kwDODOjFv87dqm25","number":7844,"state":"closed","title":"deps(docker): bump hashicorp/terraform from 1.15.3 to 1.15.4 in the docker group","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-25T19:42:37.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-20T19:12:25.000Z","updated_at":"2026-05-25T19:42:39.000Z","time_to_close":433812,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker)","packages":[{"name":"hashicorp/terraform","old_version":"1.15.3","new_version":"1.15.4","repository_url":null}],"path":"the docker group","ecosystem":"docker"},"body":"Bumps the docker group with 1 update: hashicorp/terraform.\n\nUpdates `hashicorp/terraform` from 1.15.3 to 1.15.4\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.15.3\u0026new-version=1.15.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/super-linter/super-linter/pull/7844","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/super-linter%2Fsuper-linter/issues/7844","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7844/packages"},{"uuid":"4446321513","node_id":"PR_kwDODOjFv87biUiB","number":7817,"state":"open","title":"deps(docker): bump the docker group across 1 directory with 10 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T13:34:44.000Z","updated_at":"2026-05-16T17:16:36.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker): bump","group_name":"docker","update_count":10,"packages":[{"name":"alpine/terragrunt","old_version":"1.14.9","new_version":"1.15.2"},{"name":"terraform-linters/tflint","old_version":"v0.62.0","new_version":"v0.62.1","repository_url":"https://github.com/terraform-linters/tflint"},{"name":"alpine/helm","old_version":"4.1.4","new_version":"4.2.0"},{"name":"golang","old_version":"1.26.2-alpine","new_version":"1.26.3-alpine"},{"name":"golangci/golangci-lint","old_version":"v2.12.0","new_version":"v2.12.2"},{"name":"hashicorp/terraform","old_version":"1.15.0","new_version":"1.15.3"},{"name":"scalameta/scalafmt","old_version":"v3.11.0","new_version":"v3.11.1"},{"name":"dart","old_version":"3.11.5-sdk","new_version":"3.11.6-sdk"},{"name":"dotnet/sdk","old_version":"10.0.203-alpine3.23","new_version":"10.0.300-alpine3.23"},{"name":"composer/composer","old_version":"2.9.7","new_version":"2.9.8"}],"path":null,"ecosystem":"docker"},"body":"Bumps the docker group with 10 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| alpine/terragrunt | `1.14.9` | `1.15.2` |\n| [terraform-linters/tflint](https://github.com/terraform-linters/tflint) | `v0.62.0` | `v0.62.1` |\n| alpine/helm | `4.1.4` | `4.2.0` |\n| golang | `1.26.2-alpine` | `1.26.3-alpine` |\n| golangci/golangci-lint | `v2.12.0` | `v2.12.2` |\n| hashicorp/terraform | `1.15.0` | `1.15.3` |\n| scalameta/scalafmt | `v3.11.0` | `v3.11.1` |\n| dart | `3.11.5-sdk` | `3.11.6-sdk` |\n| dotnet/sdk | `10.0.203-alpine3.23` | `10.0.300-alpine3.23` |\n| composer/composer | `2.9.7` | `2.9.8` |\n\n\nUpdates `alpine/terragrunt` from 1.14.9 to 1.15.2\n\nUpdates `terraform-linters/tflint` from v0.62.0 to v0.62.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/terraform-linters/tflint/releases\"\u003eterraform-linters/tflint's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.62.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eplugin: Skip fetching artifact attestations in GHES by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2527\"\u003eterraform-linters/tflint#2527\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): Bump github.com/zclconf/go-cty from 1.18.0 to 1.18.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2511\"\u003eterraform-linters/tflint#2511\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump goreleaser/goreleaser-action from 7.0.0 to 7.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2512\"\u003eterraform-linters/tflint#2512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: deprecate curl pipe bash installation by \u003ca href=\"https://github.com/dbuaon\"\u003e\u003ccode\u003e@​dbuaon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2514\"\u003eterraform-linters/tflint#2514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump goreleaser/goreleaser-action from 7.1.0 to 7.2.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2516\"\u003eterraform-linters/tflint#2516\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/apparentlymart/go-cidr from 1.1.0 to 1.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2517\"\u003eterraform-linters/tflint#2517\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/in-toto/in-toto-golang from 0.9.0 to 0.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2518\"\u003eterraform-linters/tflint#2518\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/grpc from 1.80.0 to 1.81.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2519\"\u003eterraform-linters/tflint#2519\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/hashicorp/go-plugin from 1.7.0 to 1.8.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2520\"\u003eterraform-linters/tflint#2520\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dbuaon\"\u003e\u003ccode\u003e@​dbuaon\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2514\"\u003eterraform-linters/tflint#2514\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/terraform-linters/tflint/compare/v0.62.0...v0.62.1\"\u003ehttps://github.com/terraform-linters/tflint/compare/v0.62.0...v0.62.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/6a8757f2ce307aed9f786dd4474464c9831bd561\"\u003e\u003ccode\u003e6a8757f\u003c/code\u003e\u003c/a\u003e Bump up version to v0.62.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/714def17e6b8d871397838b6821fc7e1a1ec45fc\"\u003e\u003ccode\u003e714def1\u003c/code\u003e\u003c/a\u003e Bump Go version to 1.26.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/15ffea19b2f8a43f8a14429099b0f3b330f9aed3\"\u003e\u003ccode\u003e15ffea1\u003c/code\u003e\u003c/a\u003e plugin: Skip fetching artifact attestations in GHES (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2527\"\u003e#2527\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/4bea52e02e2a78d4e2db4fac8115a98d5d2cb8e6\"\u003e\u003ccode\u003e4bea52e\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/hashicorp/go-plugin from 1.7.0 to 1.8.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2520\"\u003e#2520\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/ec9cc04a191bb2721c40247633d5291243bf4327\"\u003e\u003ccode\u003eec9cc04\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.golang.org/grpc from 1.80.0 to 1.81.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2519\"\u003e#2519\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/2b779941c6cc0b1048a2a7b57a5ed20f4736a8a5\"\u003e\u003ccode\u003e2b77994\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/in-toto/in-toto-golang from 0.9.0 to 0.11.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2518\"\u003e#2518\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/bdc9746ab7f6d50b08d372afafcf6aab5bc31bc1\"\u003e\u003ccode\u003ebdc9746\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/apparentlymart/go-cidr from 1.1.0 to 1.1.1 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2517\"\u003e#2517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/2f8ceaa9ef60e497e961ab833506070992248be3\"\u003e\u003ccode\u003e2f8ceaa\u003c/code\u003e\u003c/a\u003e build(deps): Bump goreleaser/goreleaser-action from 7.1.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2516\"\u003e#2516\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/198db78a0b3f407fd0ce3b8bdd3f4c097e463aa7\"\u003e\u003ccode\u003e198db78\u003c/code\u003e\u003c/a\u003e docs: deprecate curl pipe bash installation (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2514\"\u003e#2514\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/ee955afb843a3eea7b463f9f09ce73407465c497\"\u003e\u003ccode\u003eee955af\u003c/code\u003e\u003c/a\u003e build(deps): Bump goreleaser/goreleaser-action from 7.0.0 to 7.1.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2512\"\u003e#2512\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/terraform-linters/tflint/compare/v0.62.0...v0.62.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `alpine/helm` from 4.1.4 to 4.2.0\n\nUpdates `golang` from 1.26.2-alpine to 1.26.3-alpine\n\nUpdates `golangci/golangci-lint` from v2.12.0 to v2.12.2\n\nUpdates `hashicorp/terraform` from 1.15.0 to 1.15.3\n\nUpdates `scalameta/scalafmt` from v3.11.0 to v3.11.1\n\nUpdates `dart` from 3.11.5-sdk to 3.11.6-sdk\n\nUpdates `dotnet/sdk` from 10.0.203-alpine3.23 to 10.0.300-alpine3.23\n\nUpdates `composer/composer` from 2.9.7 to 2.9.8\n","html_url":"https://github.com/super-linter/super-linter/pull/7817","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/super-linter%2Fsuper-linter/issues/7817","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7817/packages"},{"uuid":"4386119744","node_id":"PR_kwDODftaC87Yf22K","number":814,"state":"closed","title":"build(deps): Bump hashicorp/terraform from 1.14.8 to 1.15.1","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-11T21:31:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-05T18:02:24.000Z","updated_at":"2026-05-11T21:31:57.000Z","time_to_close":530972,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","packages":[{"name":"hashicorp/terraform","old_version":"1.14.8","new_version":"1.15.1","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.14.8 to 1.15.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.14.8\u0026new-version=1.15.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/lorengordon/tardigrade-ci/pull/814","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/lorengordon%2Ftardigrade-ci/issues/814","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/814/packages"},{"uuid":"4353979591","node_id":"PR_kwDOE6qsZs7W49ys","number":189,"state":"closed","title":"build(deps): bump hashicorp/terraform from 1.14.9 to 1.15.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-02T01:37:36.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-29T22:11:25.000Z","updated_at":"2026-05-02T01:37:37.000Z","time_to_close":185171,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"hashicorp/terraform","old_version":"1.14.9","new_version":"1.15.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.14.9 to 1.15.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.14.9\u0026new-version=1.15.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/SumoLogic/sumologic-kubernetes-setup/pull/189","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/SumoLogic%2Fsumologic-kubernetes-setup/issues/189","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/189/packages"},{"uuid":"4302944640","node_id":"PR_kwDODOjFv87UULU_","number":7765,"state":"open","title":"deps(docker): bump the docker group across 1 directory with 3 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-21T13:34:34.000Z","updated_at":"2026-04-21T13:49:24.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker): bump","group_name":"docker","update_count":3,"packages":[{"name":"terraform-linters/tflint","old_version":"v0.61.0","new_version":"v0.62.0","repository_url":"https://github.com/terraform-linters/tflint"},{"name":"hashicorp/terraform","old_version":"1.14.8","new_version":"1.14.9"},{"name":"aquasecurity/trivy","old_version":"0.69.3","new_version":"0.70.0","repository_url":"https://github.com/aquasecurity/trivy"}],"path":null,"ecosystem":"docker"},"body":"Bumps the docker group with 3 updates in the / directory: [terraform-linters/tflint](https://github.com/terraform-linters/tflint), hashicorp/terraform and [aquasecurity/trivy](https://github.com/aquasecurity/trivy).\n\nUpdates `terraform-linters/tflint` from v0.61.0 to v0.62.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/terraform-linters/tflint/releases\"\u003eterraform-linters/tflint's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.62.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eplugin: Add signature mode to control plugin verifications by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2483\"\u003eterraform-linters/tflint#2483\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eplugin: Ignore forbidden attestation fetch errors by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2481\"\u003eterraform-linters/tflint#2481\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): Bump the go-x group with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2461\"\u003eterraform-linters/tflint#2461\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/build-push-action from 6.18.0 to 6.19.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2463\"\u003eterraform-linters/tflint#2463\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/grpc from 1.78.0 to 1.79.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2464\"\u003eterraform-linters/tflint#2464\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump goreleaser/goreleaser-action from 6.4.0 to 7.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2467\"\u003eterraform-linters/tflint#2467\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump go.opentelemetry.io/otel/sdk from 1.39.0 to 1.40.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2469\"\u003eterraform-linters/tflint#2469\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump actions/setup-go from 6.2.0 to 6.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2470\"\u003eterraform-linters/tflint#2470\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/net from 0.50.0 to 0.51.0 in the go-x group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2472\"\u003eterraform-linters/tflint#2472\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/zclconf/go-cty from 1.17.0 to 1.18.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2473\"\u003eterraform-linters/tflint#2473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump actions/attest-build-provenance from 3.2.0 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2471\"\u003eterraform-linters/tflint#2471\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/metadata-action from 5.10.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2474\"\u003eterraform-linters/tflint#2474\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump sigstore/cosign-installer from 4.0.0 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2476\"\u003eterraform-linters/tflint#2476\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/oauth2 from 0.35.0 to 0.36.0 in the go-x group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2479\"\u003eterraform-linters/tflint#2479\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/grpc from 1.79.1 to 1.79.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2480\"\u003eterraform-linters/tflint#2480\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/setup-buildx-action from 3.12.0 to 4.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2475\"\u003eterraform-linters/tflint#2475\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/build-push-action from 6.19.2 to 7.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2477\"\u003eterraform-linters/tflint#2477\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/login-action from 3.7.0 to 4.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2478\"\u003eterraform-linters/tflint#2478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: Bump Go version to 1.26 by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2482\"\u003eterraform-linters/tflint#2482\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump the go-x group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2484\"\u003eterraform-linters/tflint#2484\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/grpc from 1.79.2 to 1.79.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2489\"\u003eterraform-linters/tflint#2489\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump mislav/bump-homebrew-formula-action from 3.6 to 4.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2490\"\u003eterraform-linters/tflint#2490\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/terraform-linters/tflint-plugin-sdk from 0.23.1 to 0.24.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2491\"\u003eterraform-linters/tflint#2491\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/fatih/color from 1.18.0 to 1.19.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2492\"\u003eterraform-linters/tflint#2492\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edependabot: Set cooldown period by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2493\"\u003eterraform-linters/tflint#2493\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2495\"\u003eterraform-linters/tflint#2495\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/hashicorp/go-version from 1.8.0 to 1.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2496\"\u003eterraform-linters/tflint#2496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump actions/setup-go from 6.3.0 to 6.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2498\"\u003eterraform-linters/tflint#2498\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream from 1.7.4 to 1.7.8 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2499\"\u003eterraform-linters/tflint#2499\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.95.0 to 1.97.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2500\"\u003eterraform-linters/tflint#2500\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump go.opentelemetry.io/otel/sdk from 1.40.0 to 1.43.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2501\"\u003eterraform-linters/tflint#2501\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/hashicorp/go-getter from 1.8.4 to 1.8.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2502\"\u003eterraform-linters/tflint#2502\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/sigstore/timestamp-authority/v2 from 2.0.3 to 2.0.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2506\"\u003eterraform-linters/tflint#2506\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/grpc from 1.79.3 to 1.80.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2503\"\u003eterraform-linters/tflint#2503\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump sigstore/cosign-installer from 4.1.0 to 4.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2497\"\u003eterraform-linters/tflint#2497\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/login-action from 4.0.0 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2504\"\u003eterraform-linters/tflint#2504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/build-push-action from 7.0.0 to 7.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2507\"\u003eterraform-linters/tflint#2507\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erelease: Migrate attest-build-provenance to attest by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2508\"\u003eterraform-linters/tflint#2508\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/terraform-linters/tflint/compare/v0.61.0...v0.62.0\"\u003ehttps://github.com/terraform-linters/tflint/compare/v0.61.0...v0.62.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/2376055e05a48529705050c30e9c994b702e48ec\"\u003e\u003ccode\u003e2376055\u003c/code\u003e\u003c/a\u003e Bump up version to v0.62.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/641dbb62a66d9325f99d37e085f08fae39b2cbda\"\u003e\u003ccode\u003e641dbb6\u003c/code\u003e\u003c/a\u003e Bump Go version to 1.26.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/94f1eb872fd905c454585ab911cab74bf5345e05\"\u003e\u003ccode\u003e94f1eb8\u003c/code\u003e\u003c/a\u003e release: Migrate attest-build-provenance to attest (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2508\"\u003e#2508\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/7d900633823c4be574b1837f088bac1623adcc46\"\u003e\u003ccode\u003e7d90063\u003c/code\u003e\u003c/a\u003e build(deps): Bump docker/build-push-action from 7.0.0 to 7.1.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2507\"\u003e#2507\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/62b61c5f5b27d41cb2efb6dcfab26640df74ee97\"\u003e\u003ccode\u003e62b61c5\u003c/code\u003e\u003c/a\u003e build(deps): Bump docker/login-action from 4.0.0 to 4.1.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2504\"\u003e#2504\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/540c3e0142f049bc54b460ad92f5e7e8e15ad1b2\"\u003e\u003ccode\u003e540c3e0\u003c/code\u003e\u003c/a\u003e build(deps): Bump sigstore/cosign-installer from 4.1.0 to 4.1.1 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2497\"\u003e#2497\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/3405bffb2be971699c18f8da383c70328e065210\"\u003e\u003ccode\u003e3405bff\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.golang.org/grpc from 1.79.3 to 1.80.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2503\"\u003e#2503\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/ab01b38d2b54fe6ef4ec0d237b80d354bf16ff55\"\u003e\u003ccode\u003eab01b38\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/sigstore/timestamp-authority/v2 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2506\"\u003e#2506\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/e9091c75562fee7ea66ff31e1b845eb50df73011\"\u003e\u003ccode\u003ee9091c7\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/hashicorp/go-getter from 1.8.4 to 1.8.6 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2502\"\u003e#2502\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/999b9d65784a3468af97adbe8c68d16287b0dcbc\"\u003e\u003ccode\u003e999b9d6\u003c/code\u003e\u003c/a\u003e build(deps): Bump go.opentelemetry.io/otel/sdk from 1.40.0 to 1.43.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2501\"\u003e#2501\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/terraform-linters/tflint/compare/v0.61.0...v0.62.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hashicorp/terraform` from 1.14.8 to 1.14.9\n\nUpdates `aquasecurity/trivy` from 0.69.3 to 0.70.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aquasecurity/trivy/releases\"\u003eaquasecurity/trivy's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.70.0\u003c/h2\u003e\n\u003ch2\u003e⚡ Highlights ⚡\u003c/h2\u003e\n\u003cp\u003e👉 \u003ca href=\"https://github.com/aquasecurity/trivy/discussions/10546\"\u003ehttps://github.com/aquasecurity/trivy/discussions/10546\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0700-2026-04-16\"\u003ehttps://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0700-2026-04-16\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md\"\u003eaquasecurity/trivy's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/compare/v0.69.0...v0.70.0\"\u003e0.70.0\u003c/a\u003e (2026-04-16)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ego:\u003c/strong\u003e detect version from ELF symbol table for binaries built with -trimpath (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10197\"\u003e#10197\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/7acb5f6f095a11cb9911af5a0bc03aecc7c88f8f\"\u003e7acb5f6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ejava:\u003c/strong\u003e add support for proxy configuration from Maven settings.xml (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10187\"\u003e#10187\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/350fe3345129f0f341ab80438f66f951b602364a\"\u003e350fe33\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emisconf:\u003c/strong\u003e adapt ARM k8s clusters (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9696\"\u003e#9696\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10125\"\u003e#10125\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/66bdec4f6af6100b6ab991ca417b0c801cb5cd80\"\u003e66bdec4\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emisconf:\u003c/strong\u003e resolve Azure resources via resource_id (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10173\"\u003e#10173\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/823f3634ae8f41a17be8695ceabcb8ca52f82a63\"\u003e823f363\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emisconf:\u003c/strong\u003e support for azurerm_network_interface_security_group_association  (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10215\"\u003e#10215\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/da94d5f38676885264787fe22f3ed8ab42511b2a\"\u003eda94d5f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epython:\u003c/strong\u003e add pylock.toml (PEP 751) parser (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9632\"\u003e#9632\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/1a72b326bba9e0959d5f3b63367bb311f064d795\"\u003e1a72b32\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epython:\u003c/strong\u003e add pylock.toml support (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10137\"\u003e#10137\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/d0a3f63b84e6a8cd9067e85344097f9179c14b0d\"\u003ed0a3f63\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eserver:\u003c/strong\u003e include server version info in JSON output for client/server mode (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10075\"\u003e#10075\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/4c46d418c58c9a070a87b9d3c88966d40e435329\"\u003e4c46d41\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eubuntu:\u003c/strong\u003e add eol data for 25.10 (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10181\"\u003e#10181\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/2c1f65bdeec62baef45e93f58cc8e5eca7d84d26\"\u003e2c1f65b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003evuln:\u003c/strong\u003e skip third-party packages in common Detect function (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10129\"\u003e#10129\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/d6e6331abba28fe22f6d8d3bc36f7821601ff8ad\"\u003ed6e6331\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecyclonedx:\u003c/strong\u003e include CVSS v4 vulnerability ratings (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10313\"\u003e#10313\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/2a4dfbf18a71a17de2c22c02afc5742466f6d799\"\u003e2a4dfbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edetected vulnerability fields in azure and mariner detector (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10275\"\u003e#10275\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/77f5cb5abda49844b936322e85829b256cb4599c\"\u003e77f5cb5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eflag:\u003c/strong\u003e validate template file extension (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10296\"\u003e#10296\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/20458b836b71b2bed72d31ebba1ba9572333dcfd\"\u003e20458b8\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehandle Go 1.26 GOEXPERIMENT version format change (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10351\"\u003e#10351\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/f207ec693b23b6d5114dbf3b309903689b93073d\"\u003ef207ec6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ejava:\u003c/strong\u003e Disable overwriting exclusions (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10088\"\u003e#10088\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/9a3e0a845db68a79f4fd0e71f5cb7d8ca3976bbe\"\u003e9a3e0a8\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emisconf:\u003c/strong\u003e apply check aliases when filtering results via .trivyignore (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10112\"\u003e#10112\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/b775a1b63cd7afeda8dec2c1c8b8b6d422418bc6\"\u003eb775a1b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emisconf:\u003c/strong\u003e initialize custom annotation field if empty (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10123\"\u003e#10123\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/0f0d6dbff4825f7b0ea7744b2229e0157af52972\"\u003e0f0d6db\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epython:\u003c/strong\u003e handle multiple version specifiers in requirements.txt (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10361\"\u003e#10361\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/4cf44985c58575850138c9cc3780b201dfad7c09\"\u003e4cf4498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epython:\u003c/strong\u003e nil pointer dereference with optional poetry groups without dependencies (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10359\"\u003e#10359\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/12ab3cee257f89b3b180c38bc2d765dc4c7918a1\"\u003e12ab3ce\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove os.Stdout from wazero module config (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10403\"\u003e#10403\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/bda9710eb0c4c7d5ba1bc60bbaa06d43dc3c523a\"\u003ebda9710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ereport:\u003c/strong\u003e set correct sarif ROOTPATH uri when scanning a git repository (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10366\"\u003e#10366\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/e5da6deee9904d00cb4fd5ea1f67e8a1711ec8dd\"\u003ee5da6de\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esbom:\u003c/strong\u003e add NOASSERTION for licenseDeclared/licenseConcluded in SPDX non-library packages (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10368\"\u003e#10368\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/33b9d8ec318bb1f4081371a0a5fd46071080aef1\"\u003e33b9d8e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esbom:\u003c/strong\u003e preserve Red Hat BuildInfo when scanning SBOMs without layer info (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10378\"\u003e#10378\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/e9e9e8c6bd914b4d4802107bbf8d0c40bad1dd57\"\u003ee9e9e8c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eserver:\u003c/strong\u003e exclude JavaDB and CheckBundle from /version endpoint (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10100\"\u003e#10100\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/b9a8d2d80adc47bf9f48e13c2738b099c907518b\"\u003eb9a8d2d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate PhotonOS feed URL (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10122\"\u003e#10122\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/fa195b4d11d946b0212900b2a153a1abf381e8a2\"\u003efa195b4\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003euse Development category for GoReleaser discussions (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10530\"\u003e#10530\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/7ee3e1eeb0faf69a08837a3f42678e5e7f314286\"\u003e7ee3e1e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePerformance Improvements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eplugin:\u003c/strong\u003e optimize directory traversal by replacing filepath.Walk with filepath.WalkDir (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10325\"\u003e#10325\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/d7fb3558db610dc08ef1c3e22dd37082180368b2\"\u003ed7fb355\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/compare/v0.68.1...v0.69.0\"\u003e0.69.0\u003c/a\u003e (2026-01-30)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003emisconf:\u003c/strong\u003e use ID instead of AVDID for providers mapping (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9752\"\u003e#9752\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/8a3177aedf7ee0864920eb1852eef031cd3742b8\"\u003e\u003ccode\u003e8a3177a\u003c/code\u003e\u003c/a\u003e release: v0.70.0 [main] (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10105\"\u003e#10105\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/974de495449f2bef46fdc0654f57d61da1452d8a\"\u003e\u003ccode\u003e974de49\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/sdk from 1.42.0 to 1.43.0 (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10496\"\u003e#10496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/21755974af6155e55652e2088be8f5c03beceb25\"\u003e\u003ccode\u003e2175597\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/sigstore/timestamp-authority/v2 from 2.0.3 to 2....\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/50c7a1ecb0b279b4980fa2631a2c596c77e426d4\"\u003e\u003ccode\u003e50c7a1e\u003c/code\u003e\u003c/a\u003e chore(deps): bump the common group across 1 directory with 8 updates (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10540\"\u003e#10540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/885fbcedaf6057b5ac526efa9991c624272153cd\"\u003e\u003ccode\u003e885fbce\u003c/code\u003e\u003c/a\u003e chore(deps): bump the docker group across 1 directory with 2 updates (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10538\"\u003e#10538\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/7ee3e1eeb0faf69a08837a3f42678e5e7f314286\"\u003e\u003ccode\u003e7ee3e1e\u003c/code\u003e\u003c/a\u003e fix: use Development category for GoReleaser discussions (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10530\"\u003e#10530\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/6dbe3691f5158594c52783b95895a835981f8836\"\u003e\u003ccode\u003e6dbe369\u003c/code\u003e\u003c/a\u003e chore(deps): bump testcontainers-go to v0.42.0 (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10531\"\u003e#10531\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/21e6888c7be3ef017516daa644716f110cb8d901\"\u003e\u003ccode\u003e21e6888\u003c/code\u003e\u003c/a\u003e chore: update CODEOWNERS (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10529\"\u003e#10529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/35d28e81e9226d42de9c20e21fd954eb9061cfd3\"\u003e\u003ccode\u003e35d28e8\u003c/code\u003e\u003c/a\u003e chore(deps): bump helm.sh/helm/v3 from 3.20.1 to 3.20.2 (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10511\"\u003e#10511\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/6d40a9826c0ec7f4a183962c23c142c7f7e8d6df\"\u003e\u003ccode\u003e6d40a98\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/hashicorp/go-getter from 1.8.5 to 1.8.6 (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10510\"\u003e#10510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aquasecurity/trivy/compare/v0.69.3...v0.70.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/super-linter/super-linter/pull/7765","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/super-linter%2Fsuper-linter/issues/7765","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7765/packages"},{"uuid":"4300187864","node_id":"PR_kwDOF62svs7ULPq4","number":1098,"state":"closed","title":"Bump hashicorp/terraform from 1.9.5 to 1.14.9 in /tools/dplsh","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-30T04:04:30.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-21T04:03:53.000Z","updated_at":"2026-04-30T04:04:31.000Z","time_to_close":777637,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/terraform","old_version":"1.9.5","new_version":"1.14.9","repository_url":null}],"path":"/tools/dplsh","ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.9.5 to 1.14.9.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.9.5\u0026new-version=1.14.9)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/danskernesdigitalebibliotek/dpl-platform/pull/1098","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/danskernesdigitalebibliotek%2Fdpl-platform/issues/1098","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1098/packages"},{"uuid":"4168010846","node_id":"PR_kwDOEFTOWM7Ogkyi","number":1855,"state":"closed","title":"Bump hashicorp/terraform from 1.3.6 to 1.14.8","user":"dependabot[bot]","labels":["dependencies","docker","O: stale 🤖"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-20T03:34:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-30T06:53:58.000Z","updated_at":"2026-05-20T03:34:59.000Z","time_to_close":4394451,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/terraform","old_version":"1.3.6","new_version":"1.14.8","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.3.6 to 1.14.8.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.3.6\u0026new-version=1.14.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/NocturnalGlory/super-linter/pull/1855","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/NocturnalGlory%2Fsuper-linter/issues/1855","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1855/packages"},{"uuid":"3995607443","node_id":"PR_kwDODOjFv87Gi-VH","number":7566,"state":"open","title":"deps(docker): bump the docker group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-26T13:33:33.000Z","updated_at":"2026-02-26T13:44:18.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker): bump","group_name":"docker","update_count":6,"packages":[{"name":"alpine/terragrunt","old_version":"1.14.4","new_version":"1.14.5"},{"name":"golangci/golangci-lint","old_version":"v2.9.0","new_version":"v2.10.1"},{"name":"goreleaser/goreleaser","old_version":"v2.13.3","new_version":"v2.14.1"},{"name":"hashicorp/terraform","old_version":"1.14.5","new_version":"1.14.6"},{"name":"rhysd/actionlint","old_version":"1.7.10","new_version":"1.7.11"},{"name":"dart","old_version":"3.11.0-sdk","new_version":"3.11.1-sdk"}],"path":null,"ecosystem":"docker"},"body":"Bumps the docker group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| alpine/terragrunt | `1.14.4` | `1.14.5` |\n| golangci/golangci-lint | `v2.9.0` | `v2.10.1` |\n| goreleaser/goreleaser | `v2.13.3` | `v2.14.1` |\n| hashicorp/terraform | `1.14.5` | `1.14.6` |\n| rhysd/actionlint | `1.7.10` | `1.7.11` |\n| dart | `3.11.0-sdk` | `3.11.1-sdk` |\n\n\nUpdates `alpine/terragrunt` from 1.14.4 to 1.14.5\n\nUpdates `golangci/golangci-lint` from v2.9.0 to v2.10.1\n\nUpdates `goreleaser/goreleaser` from v2.13.3 to v2.14.1\n\nUpdates `hashicorp/terraform` from 1.14.5 to 1.14.6\n\nUpdates `rhysd/actionlint` from 1.7.10 to 1.7.11\n\nUpdates `dart` from 3.11.0-sdk to 3.11.1-sdk\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/super-linter/super-linter/pull/7566","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/super-linter%2Fsuper-linter/issues/7566","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7566/packages"},{"uuid":"3929748772","node_id":"PR_kwDOF62svs7DK5SW","number":1025,"state":"closed","title":"Bump hashicorp/terraform from 1.9.5 to 1.14.5 in /tools/dplsh","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-12T08:57:53.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-12T04:03:42.000Z","updated_at":"2026-02-12T08:58:02.000Z","time_to_close":17651,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/terraform","old_version":"1.9.5","new_version":"1.14.5","repository_url":null}],"path":"/tools/dplsh","ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.9.5 to 1.14.5.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.9.5\u0026new-version=1.14.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/danskernesdigitalebibliotek/dpl-platform/pull/1025","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/danskernesdigitalebibliotek%2Fdpl-platform/issues/1025","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1025/packages"},{"uuid":"3865479481","node_id":"PR_kwDODOjFv86_2671","number":7455,"state":"open","title":"deps(docker): bump the docker group with 3 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-01-28T13:33:37.000Z","updated_at":"2026-01-28T13:43:49.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker): bump","group_name":"docker","update_count":3,"packages":[{"name":"hashicorp/terraform","old_version":"1.14.3","new_version":"1.14.4"},{"name":"scalameta/scalafmt","old_version":"v3.10.4","new_version":"v3.10.5"},{"name":"dart","old_version":"3.10.7-sdk","new_version":"3.10.8-sdk"}],"path":null,"ecosystem":"docker"},"body":"Bumps the docker group with 3 updates: hashicorp/terraform, scalameta/scalafmt and dart.\n\nUpdates `hashicorp/terraform` from 1.14.3 to 1.14.4\n\nUpdates `scalameta/scalafmt` from v3.10.4 to v3.10.5\n\nUpdates `dart` from 3.10.7-sdk to 3.10.8-sdk\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/super-linter/super-linter/pull/7455","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/super-linter%2Fsuper-linter/issues/7455","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7455/packages"},{"uuid":"3757500742","node_id":"PR_kwDOJbs5-s66Vg3s","number":168,"state":"closed","title":"deps(docker): bump the docker group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-23T16:58:43.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-23T14:07:39.000Z","updated_at":"2025-12-23T16:58:45.000Z","time_to_close":10264,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker): bump","group_name":"docker","update_count":5,"packages":[{"name":"alpine/helm","old_version":"4.0.0","new_version":"4.0.4"},{"name":"hashicorp/terraform","old_version":"1.14.2","new_version":"1.14.3"},{"name":"clj-kondo/clj-kondo","old_version":"2025.10.23-alpine","new_version":"2025.12.23-alpine","repository_url":"https://github.com/clj-kondo/clj-kondo"},{"name":"dart","old_version":"3.10.4-sdk","new_version":"3.10.6-sdk"},{"name":"aquasecurity/trivy","old_version":"0.68.1","new_version":"0.68.2","repository_url":"https://github.com/aquasecurity/trivy"}],"path":null,"ecosystem":"docker"},"body":"Bumps the docker group with 5 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| alpine/helm | `4.0.0` | `4.0.4` |\n| hashicorp/terraform | `1.14.2` | `1.14.3` |\n| [clj-kondo/clj-kondo](https://github.com/clj-kondo/clj-kondo) | `2025.10.23-alpine` | `2025.12.23-alpine` |\n| dart | `3.10.4-sdk` | `3.10.6-sdk` |\n| [aquasecurity/trivy](https://github.com/aquasecurity/trivy) | `0.68.1` | `0.68.2` |\n\n\nUpdates `alpine/helm` from 4.0.0 to 4.0.4\n\nUpdates `hashicorp/terraform` from 1.14.2 to 1.14.3\n\nUpdates `clj-kondo/clj-kondo` from 2025.10.23-alpine to 2025.12.23-alpine\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clj-kondo/clj-kondo/releases\"\u003eclj-kondo/clj-kondo's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2025.12.23\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2651\"\u003e#2651\u003c/a\u003e: resume linting after paren mismatches by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2652\"\u003eclj-kondo/clj-kondo#2652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDuplicate key args for associative fns by \u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2650\"\u003eclj-kondo/clj-kondo#2650\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix inner class normalization by \u003ca href=\"https://github.com/ericdallo\"\u003e\u003ccode\u003e@​ericdallo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2657\"\u003eclj-kondo/clj-kondo#2657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInclude inner classes by \u003ca href=\"https://github.com/ericdallo\"\u003e\u003ccode\u003e@​ericdallo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2658\"\u003eclj-kondo/clj-kondo#2658\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade fs by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2659\"\u003eclj-kondo/clj-kondo#2659\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCircle config by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2662\"\u003eclj-kondo/clj-kondo#2662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2532\"\u003e#2532\u003c/a\u003e: ignore duplicate require icm :reload/:reload-all by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2663\"\u003eclj-kondo/clj-kondo#2663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2432\"\u003e#2432\u003c/a\u003e: don't warn for redundant-fn-wrapper in case of inlined fun… by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2664\"\u003eclj-kondo/clj-kondo#2664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd redundant-let-binding linter by \u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2655\"\u003eclj-kondo/clj-kondo#2655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2599\"\u003e#2599\u003c/a\u003e: Detect wrong no. of arguments passed to coll by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2665\"\u003eclj-kondo/clj-kondo#2665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix linter.md entry for redundant-let-binding by \u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2667\"\u003eclj-kondo/clj-kondo#2667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix: redundant-call's level check didn't work by \u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2670\"\u003eclj-kondo/clj-kondo#2670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2661\"\u003e#2661\u003c/a\u003e: recur in tail position in core.match by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2672\"\u003eclj-kondo/clj-kondo#2672\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2617\"\u003e#2617\u003c/a\u003e - Add types for \u003ccode\u003erepeatedly\u003c/code\u003e function by \u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2674\"\u003eclj-kondo/clj-kondo#2674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2653\"\u003e#2653\u003c/a\u003e: detect unquote that isn't syntax-quoted by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2681\"\u003eclj-kondo/clj-kondo#2681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLint trailing varargs syntax errs, lint varargs errs in let bindings by \u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2669\"\u003eclj-kondo/clj-kondo#2669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake all :keys bindings symbols, not keywords by \u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2682\"\u003eclj-kondo/clj-kondo#2682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2683\"\u003e#2683\u003c/a\u003e: ex-info data may be nil by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2685\"\u003eclj-kondo/clj-kondo#2685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2676\"\u003e#2676\u003c/a\u003e: Add handling for unresolved namespaces in maps by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2686\"\u003eclj-kondo/clj-kondo#2686\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd ratio type support for numerator and denominator by \u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2684\"\u003eclj-kondo/clj-kondo#2684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2613\"\u003e#2613\u003c/a\u003e - Add linter for non-existing vars in refer-clojure by \u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2675\"\u003eclj-kondo/clj-kondo#2675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump clojurescript by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2688\"\u003eclj-kondo/clj-kondo#2688\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2687\"\u003e#2687\u003c/a\u003e: :refer-global and :require-global by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2689\"\u003eclj-kondo/clj-kondo#2689\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2544\"\u003e#2544\u003c/a\u003e: support inline configs in .cljc files by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2690\"\u003eclj-kondo/clj-kondo#2690\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2674\"\u003eclj-kondo/clj-kondo#2674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/clj-kondo/clj-kondo/compare/v2025.10.23...v2025.12.23\"\u003ehttps://github.com/clj-kondo/clj-kondo/compare/v2025.10.23...v2025.12.23\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clj-kondo/clj-kondo/blob/master/CHANGELOG.md\"\u003eclj-kondo/clj-kondo's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003cp\u003eFor a list of breaking changes, check \u003ca href=\"https://github.com/clj-kondo/clj-kondo/blob/master/#breaking-changes\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo\"\u003eClj-kondo\u003c/a\u003e: static analyzer and linter for Clojure code that sparks joy ✨\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e2025.12.23\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2654\"\u003e#2654\u003c/a\u003e: NEW linter: \u003ccode\u003eredundant-let-binding\u003c/code\u003e, defaults to \u003ccode\u003e:off\u003c/code\u003e (\u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2653\"\u003e#2653\u003c/a\u003e: NEW linter: \u003ccode\u003e:unquote-not-syntax-quoted\u003c/code\u003e to warn on \u003ccode\u003e~\u003c/code\u003e and \u003ccode\u003e~@\u003c/code\u003e usage outside syntax-quote (\u003ccode\u003e`\u003c/code\u003e) (\u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2613\"\u003e#2613\u003c/a\u003e: NEW linter: \u003ccode\u003e:refer-clojure-exclude-unresolved-var\u003c/code\u003e to warn on non-existing vars in \u003ccode\u003e:refer-clojure :exclude\u003c/code\u003e (\u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2668\"\u003e#2668\u003c/a\u003e: Lint \u003ccode\u003e\u0026amp;\u003c/code\u003e syntax errors in let bindings and lint for trailing \u003ccode\u003e\u0026amp;\u003c/code\u003e (\u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2590\"\u003e#2590\u003c/a\u003e: \u003ccode\u003eduplicate-key-in-assoc\u003c/code\u003e changed to \u003ccode\u003eduplicate-key-args\u003c/code\u003e, and now lints \u003ccode\u003edissoc\u003c/code\u003e, \u003ccode\u003eassoc!\u003c/code\u003e and \u003ccode\u003edissoc!\u003c/code\u003e too (\u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2651\"\u003e#2651\u003c/a\u003e: resume linting after paren mismatches\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clojure-lsp/clojure-lsp/issues/2157\"\u003eclojure-lsp#2651\u003c/a\u003e: Fix inner class name for java-class-definitions.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clojure-lsp/clojure-lsp/issues/2157\"\u003eclojure-lsp#2651\u003c/a\u003e: Include inner class java-class-definition analysis.\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003ebabashka/fs\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2532\"\u003e#2532\u003c/a\u003e: Disable \u003ccode\u003e:duplicate-require\u003c/code\u003e in \u003ccode\u003erequire\u003c/code\u003e + \u003ccode\u003e:reload\u003c/code\u003e / \u003ccode\u003e:reload-all\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2432\"\u003e#2432\u003c/a\u003e: Don't warn for \u003ccode\u003e:redundant-fn-wrapper\u003c/code\u003e in case of inlined function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2599\"\u003e#2599\u003c/a\u003e: detect invalid arity for invoking collection as higher order function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2661\"\u003e#2661\u003c/a\u003e: Fix false positive \u003ccode\u003e:unexpected-recur\u003c/code\u003e when \u003ccode\u003erecur\u003c/code\u003e is used inside \u003ccode\u003eclojure.core.match/match\u003c/code\u003e (\u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2617\"\u003e#2617\u003c/a\u003e: Add types for \u003ccode\u003erepeatedly\u003c/code\u003e (\u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e:ratio\u003c/code\u003e type support for \u003ccode\u003enumerator\u003c/code\u003e and \u003ccode\u003edenominator\u003c/code\u003e functions (\u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2676\"\u003e#2676\u003c/a\u003e: Report unresolved namespace for namespaced maps with unknown aliases (\u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2683\"\u003e#2683\u003c/a\u003e: data argument of \u003ccode\u003eex-info\u003c/code\u003e may be nil since clojure 1.12\u003c/li\u003e\n\u003cli\u003eBump built-in ClojureScript analysis info\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2687\"\u003e#2687\u003c/a\u003e: support new \u003ccode\u003e:refer-global\u003c/code\u003e and \u003ccode\u003e:require-global\u003c/code\u003e ns options in CLJS\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2544\"\u003e#2554\u003c/a\u003e: support inline configs in \u003ccode\u003e.cljc\u003c/code\u003e files\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2025.10.23\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2590\"\u003e#2590\u003c/a\u003e: NEW linter: \u003ccode\u003eduplicate-key-in-assoc\u003c/code\u003e, defaults to \u003ccode\u003e:warning\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2639\"\u003e#2639\u003c/a\u003e: NEW \u003ccode\u003e:equals-nil\u003c/code\u003e linter to detect \u003ccode\u003e(= nil x)\u003c/code\u003e or \u003ccode\u003e(= x nil)\u003c/code\u003e patterns and suggest \u003ccode\u003e(nil? x)\u003c/code\u003e instead (\u003ca href=\"https://github.com/conao3\"\u003e\u003ccode\u003e@​conao3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2633\"\u003e#2633\u003c/a\u003e: support new \u003ccode\u003edefparkingop\u003c/code\u003e macro in core.async alpha\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2635\"\u003e#2635\u003c/a\u003e: Add \u003ccode\u003e:interface\u003c/code\u003e flag to \u003ccode\u003e:flags\u003c/code\u003e set in \u003ccode\u003e:java-class-definitions\u003c/code\u003e analysis output to distinguish Java interfaces from classes (\u003ca href=\"https://github.com/hugoduncan\"\u003e\u003ccode\u003e@​hugoduncan\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2636\"\u003e#2636\u003c/a\u003e: set global SCI context so hooks can use \u003ccode\u003erequiring-resolve\u003c/code\u003e etc.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2641\"\u003e#2641\u003c/a\u003e: fix linting of \u003ccode\u003edef\u003c/code\u003e body, no results due to laziness bug\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/ca54a322fc860b85cc17f029910a4ec8ad3a8060\"\u003e\u003ccode\u003eca54a32\u003c/code\u003e\u003c/a\u003e v2025.12.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/e18de6534a65a078c43cc87e4e4ad4f66b06f3e0\"\u003e\u003ccode\u003ee18de65\u003c/code\u003e\u003c/a\u003e Minor tweak\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/1c599194c7a5995b369d312e0d5f5f538fef70d0\"\u003e\u003ccode\u003e1c59919\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2554\"\u003e#2554\u003c/a\u003e: wrong issue number mentioned in previous commit, \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2544\"\u003e#2544\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/8d9d24f1043eab2878770c271e36d22d3f7e3e94\"\u003e\u003ccode\u003e8d9d24f\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2544\"\u003e#2544\u003c/a\u003e: support inline configs in .cljc files (\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2690\"\u003e#2690\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/d002f6af84fccd427786568d4821b4225013ff16\"\u003e\u003ccode\u003ed002f6a\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2687\"\u003e#2687\u003c/a\u003e: addendum\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/f73abcaeed22288c8103ac5074646558b2dd9075\"\u003e\u003ccode\u003ef73abca\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2687\"\u003e#2687\u003c/a\u003e: :refer-global and :require-global (\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2689\"\u003e#2689\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/c802e14ec8c5a1bebb3929068f4ada61f7b1b484\"\u003e\u003ccode\u003ec802e14\u003c/code\u003e\u003c/a\u003e Bump clojurescript (\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2688\"\u003e#2688\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/53cba064390edc1e8e3910ec8cce13bf003ba61f\"\u003e\u003ccode\u003e53cba06\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2613\"\u003e#2613\u003c/a\u003e - Add linter for non-existing vars in refer-clojure (\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2675\"\u003e#2675\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/29709fd0cb2b7d29055aff55ea9782decb58c153\"\u003e\u003ccode\u003e29709fd\u003c/code\u003e\u003c/a\u003e Add ratio type support for numerator and denominator (\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2684\"\u003e#2684\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/ac3d2121dfc774289b6385be78e86cb31ec32172\"\u003e\u003ccode\u003eac3d212\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2676\"\u003e#2676\u003c/a\u003e: Add handling for unresolved namespaces in maps (\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2686\"\u003e#2686\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/clj-kondo/clj-kondo/compare/v2025.10.23...v2025.12.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dart` from 3.10.4-sdk to 3.10.6-sdk\n\nUpdates `aquasecurity/trivy` from 0.68.1 to 0.68.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aquasecurity/trivy/releases\"\u003eaquasecurity/trivy's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.68.2\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e0c40a8d4b9b943f1b679a20f8ba3cb61c94831de release: v0.68.2 [release/v0.68] (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9950\"\u003e#9950\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edb2894561daa20301eb144cad467d75d8a3d2647 fix(deps): bump alpine from \u003ccode\u003e3.22.1\u003c/code\u003e to \u003ccode\u003e3.23.0\u003c/code\u003e [backport: release/v0.68] (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9949\"\u003e#9949\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aquasecurity/trivy/blob/v0.68.2/CHANGELOG.md\"\u003eaquasecurity/trivy's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/compare/v0.68.1...v0.68.2\"\u003e0.68.2\u003c/a\u003e (2025-12-16)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump alpine from \u003ccode\u003e3.22.1\u003c/code\u003e to \u003ccode\u003e3.23.0\u003c/code\u003e [backport: release/v0.68] (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9949\"\u003e#9949\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/db2894561daa20301eb144cad467d75d8a3d2647\"\u003edb28945\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/0c40a8d4b9b943f1b679a20f8ba3cb61c94831de\"\u003e\u003ccode\u003e0c40a8d\u003c/code\u003e\u003c/a\u003e release: v0.68.2 [release/v0.68] (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9950\"\u003e#9950\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/db2894561daa20301eb144cad467d75d8a3d2647\"\u003e\u003ccode\u003edb28945\u003c/code\u003e\u003c/a\u003e fix(deps): bump alpine from \u003ccode\u003e3.22.1\u003c/code\u003e to \u003ccode\u003e3.23.0\u003c/code\u003e [backport: release/v0.68] (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/dc28f242809c076e63527866f44ad3d6b5229e80\"\u003e\u003ccode\u003edc28f24\u003c/code\u003e\u003c/a\u003e ci: enable \u003ccode\u003echeck-latest\u003c/code\u003e for \u003ccode\u003esetup-go\u003c/code\u003e [backport: release/v0.68] (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9946\"\u003e#9946\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aquasecurity/trivy/compare/v0.68.1...v0.68.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/actions-marketplace-validations/super-linter_super-linter/pull/168","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/actions-marketplace-validations%2Fsuper-linter_super-linter/issues/168","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/168/packages"},{"uuid":"3751779924","node_id":"PR_kwDOFQcaxs66CVkn","number":2506,"state":"open","title":"Bump hashicorp/terraform from 1.1.9 to 1.14.3","user":"dependabot[bot]","labels":["dependencies","docker","O: stale 🤖"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-12-22T00:01:34.000Z","updated_at":"2026-02-27T02:00:19.574Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/terraform","old_version":"1.1.9","new_version":"1.14.3","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.1.9 to 1.14.3.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.1.9\u0026new-version=1.14.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/23andMe/super-linter/pull/2506","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/23andMe%2Fsuper-linter/issues/2506","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2506/packages"},{"uuid":"3708033507","node_id":"PR_kwDOMe3dxs63xIrg","number":1261,"state":"open","title":"deps(docker): bump hashicorp/terraform from 1.12.2 to 1.14.1","user":"dependabot[bot]","labels":["dependencies","docker","O: stale 🤖"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-12-08T21:11:22.000Z","updated_at":"2026-01-15T00:52:12.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker)","packages":[{"name":"hashicorp/terraform","old_version":"1.12.2","new_version":"1.14.1","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.12.2 to 1.14.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.12.2\u0026new-version=1.14.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Vimlendu27/super-linter/pull/1261","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Vimlendu27%2Fsuper-linter/issues/1261","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1261/packages"},{"uuid":"3692773142","node_id":"PR_kwDOF62svs6297fi","number":943,"state":"closed","title":"Bump hashicorp/terraform from 1.9.5 to 1.14.1 in /tools/dplsh","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-12T04:03:14.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-04T04:02:44.000Z","updated_at":"2025-12-12T04:03:16.000Z","time_to_close":691230,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/terraform","old_version":"1.9.5","new_version":"1.14.1","repository_url":null}],"path":"/tools/dplsh","ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.9.5 to 1.14.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.9.5\u0026new-version=1.14.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/danskernesdigitalebibliotek/dpl-platform/pull/943","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/danskernesdigitalebibliotek%2Fdpl-platform/issues/943","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/943/packages"},{"uuid":"3692069354","node_id":"PR_kwDOE6qsZs627lz1","number":175,"state":"closed","title":"build(deps): bump hashicorp/terraform from 1.10.5 to 1.14.1","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-11T22:01:17.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-03T22:01:37.000Z","updated_at":"2025-12-11T22:01:20.000Z","time_to_close":691180,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"hashicorp/terraform","old_version":"1.10.5","new_version":"1.14.1","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.10.5 to 1.14.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.10.5\u0026new-version=1.14.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/SumoLogic/sumologic-kubernetes-setup/pull/175","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/SumoLogic%2Fsumologic-kubernetes-setup/issues/175","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/175/packages"},{"uuid":"3660014769","node_id":"PR_kwDODftaC861QiIn","number":738,"state":"closed","title":"build(deps): Bump hashicorp/terraform from 1.13.5 to 1.14.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-08T18:00:51.000Z","author_association":null,"state_reason":null,"created_at":"2025-11-24T18:17:47.000Z","updated_at":"2025-12-08T18:00:53.000Z","time_to_close":1208584,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","packages":[{"name":"hashicorp/terraform","old_version":"1.13.5","new_version":"1.14.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.13.5 to 1.14.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.13.5\u0026new-version=1.14.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/lorengordon/tardigrade-ci/pull/738","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/lorengordon%2Ftardigrade-ci/issues/738","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/738/packages"},{"uuid":"3659121906","node_id":"PR_kwDODOjFv861Nge4","number":7235,"state":"closed","title":"deps(docker): bump the docker group across 1 directory with 12 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-11-28T07:29:46.000Z","author_association":null,"state_reason":null,"created_at":"2025-11-24T14:18:18.000Z","updated_at":"2025-11-28T07:29:48.000Z","time_to_close":321088,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker): bump","group_name":"docker","update_count":12,"packages":[{"name":"alpine/terragrunt","old_version":"1.13.4","new_version":"1.14.0"},{"name":"terraform-linters/tflint","old_version":"v0.59.1","new_version":"v0.60.0","repository_url":"https://github.com/terraform-linters/tflint"},{"name":"alpine/helm","old_version":"3.19.0","new_version":"4.0.0"},{"name":"golangci/golangci-lint","old_version":"v2.6.1","new_version":"v2.6.2"},{"name":"kustomize/kustomize","old_version":"v5.7.1","new_version":"v5.8.0"},{"name":"hashicorp/terraform","old_version":"1.13.5","new_version":"1.14.0"},{"name":"mstruebing/editorconfig-checker","old_version":"v3.4.1","new_version":"v3.5.0"},{"name":"rhysd/actionlint","old_version":"1.7.8","new_version":"1.7.9"},{"name":"zricethezav/gitleaks","old_version":"v8.29.0","new_version":"v8.29.1"},{"name":"dart","old_version":"3.9.4-sdk","new_version":"3.10.1-sdk"},{"name":"dotnet/sdk","old_version":"9.0.306-alpine3.22","new_version":"10.0.100-alpine3.22"},{"name":"composer/composer","old_version":"2.8.12","new_version":"2.9.2"}],"path":null,"ecosystem":"docker"},"body":"Bumps the docker group with 12 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| alpine/terragrunt | `1.13.4` | `1.14.0` |\n| [terraform-linters/tflint](https://github.com/terraform-linters/tflint) | `v0.59.1` | `v0.60.0` |\n| alpine/helm | `3.19.0` | `4.0.0` |\n| golangci/golangci-lint | `v2.6.1` | `v2.6.2` |\n| kustomize/kustomize | `v5.7.1` | `v5.8.0` |\n| hashicorp/terraform | `1.13.5` | `1.14.0` |\n| mstruebing/editorconfig-checker | `v3.4.1` | `v3.5.0` |\n| rhysd/actionlint | `1.7.8` | `1.7.9` |\n| zricethezav/gitleaks | `v8.29.0` | `v8.29.1` |\n| dart | `3.9.4-sdk` | `3.10.1-sdk` |\n| dotnet/sdk | `9.0.306-alpine3.22` | `10.0.100-alpine3.22` |\n| composer/composer | `2.8.12` | `2.9.2` |\n\n\nUpdates `alpine/terragrunt` from 1.13.4 to 1.14.0\n\nUpdates `terraform-linters/tflint` from v0.59.1 to v0.60.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/terraform-linters/tflint/releases\"\u003eterraform-linters/tflint's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.60.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThis release introduces a new configuration file format: \u003ccode\u003e.tflint.json\u003c/code\u003e. This is useful for workflows such as automatically generating configuration files.\nPlease note that in order to use the \u003ccode\u003e.tflint.json\u003c/code\u003e, enabled plugins must be built with SDK v0.23+.\u003c/p\u003e\n\u003cp\u003eFrom this release, Cosign signatures (\u003ccode\u003echecksums.txt.keyless.sig\u003c/code\u003e and \u003ccode\u003echecksums.txt.pem\u003c/code\u003e) are deprecated. They will not be included in future releases. If your installation scripts depend on them, please migrate to \u003ccode\u003egh attestation verify\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd JSON configuration file support by \u003ca href=\"https://github.com/rorychatterton\"\u003e\u003ccode\u003e@​rorychatterton\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2391\"\u003eterraform-linters/tflint#2391\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReport structured errors in JUnit and CheckStyle XML formatters by \u003ca href=\"https://github.com/bendrucker\"\u003e\u003ccode\u003e@​bendrucker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2407\"\u003eterraform-linters/tflint#2407\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAlphabetize rulesets in version output by \u003ca href=\"https://github.com/bendrucker\"\u003e\u003ccode\u003e@​bendrucker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2404\"\u003eterraform-linters/tflint#2404\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erelease: Pin Cosign version and deprecate Cosign signatures by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2405\"\u003eterraform-linters/tflint#2405\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: only read TF_VAR for root module by \u003ca href=\"https://github.com/bendrucker\"\u003e\u003ccode\u003e@​bendrucker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2413\"\u003eterraform-linters/tflint#2413\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): Bump actions/attest-build-provenance from 2.4.0 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2376\"\u003eterraform-linters/tflint#2376\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump actions/setup-go from 5.5.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2377\"\u003eterraform-linters/tflint#2377\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump the go-x group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2378\"\u003eterraform-linters/tflint#2378\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/spf13/afero from 1.14.0 to 1.15.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2380\"\u003eterraform-linters/tflint#2380\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/zclconf/go-cty from 1.16.4 to 1.17.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2379\"\u003eterraform-linters/tflint#2379\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/net from 0.43.0 to 0.44.0 in the go-x group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2381\"\u003eterraform-linters/tflint#2381\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/grpc from 1.75.0 to 1.75.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2382\"\u003eterraform-linters/tflint#2382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/sigstore/sigstore-go from 1.1.1 to 1.1.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2383\"\u003eterraform-linters/tflint#2383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump sigstore/cosign-installer from 3.9.2 to 3.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2384\"\u003eterraform-linters/tflint#2384\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump mislav/bump-homebrew-formula-action from 3.5 to 3.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2388\"\u003eterraform-linters/tflint#2388\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(script): GitHub API rate limit by \u003ca href=\"https://github.com/Sander0542\"\u003e\u003ccode\u003e@​Sander0542\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2390\"\u003eterraform-linters/tflint#2390\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tflint-plugin-sdk to v0.23.0 by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2393\"\u003eterraform-linters/tflint#2393\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/sigstore/sigstore-go from 1.1.2 to 1.1.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2394\"\u003eterraform-linters/tflint#2394\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/login-action from 3.5.0 to 3.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2395\"\u003eterraform-linters/tflint#2395\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump the go-x group with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2397\"\u003eterraform-linters/tflint#2397\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/grpc from 1.75.1 to 1.76.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2398\"\u003eterraform-linters/tflint#2398\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump sigstore/cosign-installer from 3.10.0 to 4.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2399\"\u003eterraform-linters/tflint#2399\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/net from 0.45.0 to 0.46.0 in the go-x group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2400\"\u003eterraform-linters/tflint#2400\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/terraform-linters/tflint-plugin-sdk from 0.23.0 to 0.23.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2402\"\u003eterraform-linters/tflint#2402\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golangci/golangci-lint-action from 8.0.0 to 9.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2408\"\u003eterraform-linters/tflint#2408\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/metadata-action from 5.8.0 to 5.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2409\"\u003eterraform-linters/tflint#2409\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/oauth2 from 0.32.0 to 0.33.0 in the go-x group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2410\"\u003eterraform-linters/tflint#2410\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Sander0542\"\u003e\u003ccode\u003e@​Sander0542\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2390\"\u003eterraform-linters/tflint#2390\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rorychatterton\"\u003e\u003ccode\u003e@​rorychatterton\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2391\"\u003eterraform-linters/tflint#2391\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/terraform-linters/tflint/compare/v0.59.1...v0.60.0\"\u003ehttps://github.com/terraform-linters/tflint/compare/v0.59.1...v0.60.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/c932c4d51c367257ba67d7a57abe1b319dab437f\"\u003e\u003ccode\u003ec932c4d\u003c/code\u003e\u003c/a\u003e Bump up version to v0.60.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/c132acc7329c8f3c154874fb21e99a1527520400\"\u003e\u003ccode\u003ec132acc\u003c/code\u003e\u003c/a\u003e Bump Go patch version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/26c49c415b90b222051d7117e42718ff7157d423\"\u003e\u003ccode\u003e26c49c4\u003c/code\u003e\u003c/a\u003e fix: only read TF_VAR environment variables for root module (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2413\"\u003e#2413\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/09a61cf8bc6193f321b7cb162783c0b2e26b084a\"\u003e\u003ccode\u003e09a61cf\u003c/code\u003e\u003c/a\u003e build(deps): Bump golang.org/x/oauth2 in the go-x group (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2410\"\u003e#2410\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/25059cf529eb9c97559ad8cdd8081d71279a61fa\"\u003e\u003ccode\u003e25059cf\u003c/code\u003e\u003c/a\u003e build(deps): Bump docker/metadata-action from 5.8.0 to 5.9.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2409\"\u003e#2409\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/9da1a586203ec3bbdce0a0d7b84d9b4e737f1674\"\u003e\u003ccode\u003e9da1a58\u003c/code\u003e\u003c/a\u003e build(deps): Bump golangci/golangci-lint-action from 8.0.0 to 9.0.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2408\"\u003e#2408\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/63d5d8ab3bf2deb841d7f07381ea1b548d6cc938\"\u003e\u003ccode\u003e63d5d8a\u003c/code\u003e\u003c/a\u003e Report structured errors in JUnit and CheckStyle XML formatters (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2407\"\u003e#2407\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/38cab0564d1cd2b13b550cc37fe64f7efc4c8579\"\u003e\u003ccode\u003e38cab05\u003c/code\u003e\u003c/a\u003e Add JSON configuration file support (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2391\"\u003e#2391\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/3bc0bfa3b49cbe3ed6d597cf1e59c2c9383414aa\"\u003e\u003ccode\u003e3bc0bfa\u003c/code\u003e\u003c/a\u003e Pin Cosign version and deprecate Cosign signatures (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2405\"\u003e#2405\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/56b6432c25f577a1ab155b2125f57a3ef941ac5f\"\u003e\u003ccode\u003e56b6432\u003c/code\u003e\u003c/a\u003e Alphabetize rulesets in version output (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2404\"\u003e#2404\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/terraform-linters/tflint/compare/v0.59.1...v0.60.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `alpine/helm` from 3.19.0 to 4.0.0\n\nUpdates `golangci/golangci-lint` from v2.6.1 to v2.6.2\n\nUpdates `kustomize/kustomize` from v5.7.1 to v5.8.0\n\nUpdates `hashicorp/terraform` from 1.13.5 to 1.14.0\n\nUpdates `mstruebing/editorconfig-checker` from v3.4.1 to v3.5.0\n\nUpdates `rhysd/actionlint` from 1.7.8 to 1.7.9\n\nUpdates `zricethezav/gitleaks` from v8.29.0 to v8.29.1\n\nUpdates `dart` from 3.9.4-sdk to 3.10.1-sdk\n\nUpdates `dotnet/sdk` from 9.0.306-alpine3.22 to 10.0.100-alpine3.22\n\nUpdates `composer/composer` from 2.8.12 to 2.9.2\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/super-linter/super-linter/pull/7235","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/super-linter%2Fsuper-linter/issues/7235","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7235/packages"}],"issue_packages":[{"old_version":"1.15.5","new_version":"1.15.6","update_type":"patch","path":"/.devcontainer","pr_created_at":"2026-06-10T22:52:18.000Z","version_change":"1.15.5 → 1.15.6","issue":{"uuid":"4635610951","node_id":"PR_kwDOI2A72M7lEtVa","number":1224,"state":"closed","title":"build(deps): bump hashicorp/terraform from 1.15.5 to 1.15.6 in /.devcontainer","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-06-10T22:58:11.000Z","author_association":null,"state_reason":null,"created_at":"2026-06-10T22:52:18.000Z","updated_at":"2026-06-10T22:58:13.000Z","time_to_close":353,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"hashicorp/terraform","old_version":"1.15.5","new_version":"1.15.6","repository_url":null}],"path":"/.devcontainer","ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.15.5 to 1.15.6.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.15.5\u0026new-version=1.15.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/GoogleCloudPlatform/mqtt-cloud-pubsub-connector/pull/1224","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/GoogleCloudPlatform%2Fmqtt-cloud-pubsub-connector/issues/1224","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1224/packages"}},{"old_version":"1.15.3","new_version":"1.15.4","update_type":"patch","path":"/.devcontainer","pr_created_at":"2026-05-21T00:35:08.000Z","version_change":"1.15.3 → 1.15.4","issue":{"uuid":"4490806177","node_id":"PR_kwDOI2A72M7dvoso","number":1201,"state":"closed","title":"build(deps): bump hashicorp/terraform from 1.15.3 to 1.15.4 in /.devcontainer","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-21T00:40:43.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-21T00:35:08.000Z","updated_at":"2026-05-21T00:40:45.000Z","time_to_close":335,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"hashicorp/terraform","old_version":"1.15.3","new_version":"1.15.4","repository_url":null}],"path":"/.devcontainer","ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.15.3 to 1.15.4.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.15.3\u0026new-version=1.15.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/GoogleCloudPlatform/mqtt-cloud-pubsub-connector/pull/1201","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/GoogleCloudPlatform%2Fmqtt-cloud-pubsub-connector/issues/1201","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1201/packages"}},{"old_version":"1.9.5","new_version":"1.15.4","update_type":"minor","path":null,"pr_created_at":"2026-05-21T00:26:01.000Z","version_change":"1.9.5 → 1.15.4","issue":{"uuid":"4490777184","node_id":"PR_kwDOIiGuK87dvi9N","number":639,"state":"closed","title":"deps(docker): bump hashicorp/terraform from 1.9.5 to 1.15.4","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-27T23:42:27.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-21T00:26:01.000Z","updated_at":"2026-05-27T23:42:29.000Z","time_to_close":602186,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker)","packages":[{"name":"hashicorp/terraform","old_version":"1.9.5","new_version":"1.15.4","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.9.5 to 1.15.4.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.9.5\u0026new-version=1.15.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/actions-marketplace-validations/github_super-linter/pull/639","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/actions-marketplace-validations%2Fgithub_super-linter/issues/639","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/639/packages"}},{"old_version":"1.15.3","new_version":"1.15.4","update_type":"patch","path":"the docker group","pr_created_at":"2026-05-20T19:12:25.000Z","version_change":"1.15.3 → 1.15.4","issue":{"uuid":"4489221733","node_id":"PR_kwDODOjFv87dqm25","number":7844,"state":"closed","title":"deps(docker): bump hashicorp/terraform from 1.15.3 to 1.15.4 in the docker group","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-25T19:42:37.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-20T19:12:25.000Z","updated_at":"2026-05-25T19:42:39.000Z","time_to_close":433812,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker)","packages":[{"name":"hashicorp/terraform","old_version":"1.15.3","new_version":"1.15.4","repository_url":null}],"path":"the docker group","ecosystem":"docker"},"body":"Bumps the docker group with 1 update: hashicorp/terraform.\n\nUpdates `hashicorp/terraform` from 1.15.3 to 1.15.4\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.15.3\u0026new-version=1.15.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/super-linter/super-linter/pull/7844","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/super-linter%2Fsuper-linter/issues/7844","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7844/packages"}},{"old_version":"1.15.0","new_version":"1.15.3","update_type":"patch","path":null,"pr_created_at":"2026-05-14T13:34:44.000Z","version_change":"1.15.0 → 1.15.3","issue":{"uuid":"4446321513","node_id":"PR_kwDODOjFv87biUiB","number":7817,"state":"open","title":"deps(docker): bump the docker group across 1 directory with 10 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T13:34:44.000Z","updated_at":"2026-05-16T17:16:36.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker): bump","group_name":"docker","update_count":10,"packages":[{"name":"alpine/terragrunt","old_version":"1.14.9","new_version":"1.15.2"},{"name":"terraform-linters/tflint","old_version":"v0.62.0","new_version":"v0.62.1","repository_url":"https://github.com/terraform-linters/tflint"},{"name":"alpine/helm","old_version":"4.1.4","new_version":"4.2.0"},{"name":"golang","old_version":"1.26.2-alpine","new_version":"1.26.3-alpine"},{"name":"golangci/golangci-lint","old_version":"v2.12.0","new_version":"v2.12.2"},{"name":"hashicorp/terraform","old_version":"1.15.0","new_version":"1.15.3"},{"name":"scalameta/scalafmt","old_version":"v3.11.0","new_version":"v3.11.1"},{"name":"dart","old_version":"3.11.5-sdk","new_version":"3.11.6-sdk"},{"name":"dotnet/sdk","old_version":"10.0.203-alpine3.23","new_version":"10.0.300-alpine3.23"},{"name":"composer/composer","old_version":"2.9.7","new_version":"2.9.8"}],"path":null,"ecosystem":"docker"},"body":"Bumps the docker group with 10 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| alpine/terragrunt | `1.14.9` | `1.15.2` |\n| [terraform-linters/tflint](https://github.com/terraform-linters/tflint) | `v0.62.0` | `v0.62.1` |\n| alpine/helm | `4.1.4` | `4.2.0` |\n| golang | `1.26.2-alpine` | `1.26.3-alpine` |\n| golangci/golangci-lint | `v2.12.0` | `v2.12.2` |\n| hashicorp/terraform | `1.15.0` | `1.15.3` |\n| scalameta/scalafmt | `v3.11.0` | `v3.11.1` |\n| dart | `3.11.5-sdk` | `3.11.6-sdk` |\n| dotnet/sdk | `10.0.203-alpine3.23` | `10.0.300-alpine3.23` |\n| composer/composer | `2.9.7` | `2.9.8` |\n\n\nUpdates `alpine/terragrunt` from 1.14.9 to 1.15.2\n\nUpdates `terraform-linters/tflint` from v0.62.0 to v0.62.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/terraform-linters/tflint/releases\"\u003eterraform-linters/tflint's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.62.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eplugin: Skip fetching artifact attestations in GHES by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2527\"\u003eterraform-linters/tflint#2527\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): Bump github.com/zclconf/go-cty from 1.18.0 to 1.18.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2511\"\u003eterraform-linters/tflint#2511\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump goreleaser/goreleaser-action from 7.0.0 to 7.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2512\"\u003eterraform-linters/tflint#2512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: deprecate curl pipe bash installation by \u003ca href=\"https://github.com/dbuaon\"\u003e\u003ccode\u003e@​dbuaon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2514\"\u003eterraform-linters/tflint#2514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump goreleaser/goreleaser-action from 7.1.0 to 7.2.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2516\"\u003eterraform-linters/tflint#2516\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/apparentlymart/go-cidr from 1.1.0 to 1.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2517\"\u003eterraform-linters/tflint#2517\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/in-toto/in-toto-golang from 0.9.0 to 0.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2518\"\u003eterraform-linters/tflint#2518\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/grpc from 1.80.0 to 1.81.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2519\"\u003eterraform-linters/tflint#2519\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/hashicorp/go-plugin from 1.7.0 to 1.8.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2520\"\u003eterraform-linters/tflint#2520\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dbuaon\"\u003e\u003ccode\u003e@​dbuaon\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2514\"\u003eterraform-linters/tflint#2514\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/terraform-linters/tflint/compare/v0.62.0...v0.62.1\"\u003ehttps://github.com/terraform-linters/tflint/compare/v0.62.0...v0.62.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/6a8757f2ce307aed9f786dd4474464c9831bd561\"\u003e\u003ccode\u003e6a8757f\u003c/code\u003e\u003c/a\u003e Bump up version to v0.62.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/714def17e6b8d871397838b6821fc7e1a1ec45fc\"\u003e\u003ccode\u003e714def1\u003c/code\u003e\u003c/a\u003e Bump Go version to 1.26.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/15ffea19b2f8a43f8a14429099b0f3b330f9aed3\"\u003e\u003ccode\u003e15ffea1\u003c/code\u003e\u003c/a\u003e plugin: Skip fetching artifact attestations in GHES (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2527\"\u003e#2527\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/4bea52e02e2a78d4e2db4fac8115a98d5d2cb8e6\"\u003e\u003ccode\u003e4bea52e\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/hashicorp/go-plugin from 1.7.0 to 1.8.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2520\"\u003e#2520\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/ec9cc04a191bb2721c40247633d5291243bf4327\"\u003e\u003ccode\u003eec9cc04\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.golang.org/grpc from 1.80.0 to 1.81.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2519\"\u003e#2519\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/2b779941c6cc0b1048a2a7b57a5ed20f4736a8a5\"\u003e\u003ccode\u003e2b77994\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/in-toto/in-toto-golang from 0.9.0 to 0.11.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2518\"\u003e#2518\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/bdc9746ab7f6d50b08d372afafcf6aab5bc31bc1\"\u003e\u003ccode\u003ebdc9746\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/apparentlymart/go-cidr from 1.1.0 to 1.1.1 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2517\"\u003e#2517\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/2f8ceaa9ef60e497e961ab833506070992248be3\"\u003e\u003ccode\u003e2f8ceaa\u003c/code\u003e\u003c/a\u003e build(deps): Bump goreleaser/goreleaser-action from 7.1.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2516\"\u003e#2516\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/198db78a0b3f407fd0ce3b8bdd3f4c097e463aa7\"\u003e\u003ccode\u003e198db78\u003c/code\u003e\u003c/a\u003e docs: deprecate curl pipe bash installation (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2514\"\u003e#2514\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/ee955afb843a3eea7b463f9f09ce73407465c497\"\u003e\u003ccode\u003eee955af\u003c/code\u003e\u003c/a\u003e build(deps): Bump goreleaser/goreleaser-action from 7.0.0 to 7.1.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2512\"\u003e#2512\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/terraform-linters/tflint/compare/v0.62.0...v0.62.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `alpine/helm` from 4.1.4 to 4.2.0\n\nUpdates `golang` from 1.26.2-alpine to 1.26.3-alpine\n\nUpdates `golangci/golangci-lint` from v2.12.0 to v2.12.2\n\nUpdates `hashicorp/terraform` from 1.15.0 to 1.15.3\n\nUpdates `scalameta/scalafmt` from v3.11.0 to v3.11.1\n\nUpdates `dart` from 3.11.5-sdk to 3.11.6-sdk\n\nUpdates `dotnet/sdk` from 10.0.203-alpine3.23 to 10.0.300-alpine3.23\n\nUpdates `composer/composer` from 2.9.7 to 2.9.8\n","html_url":"https://github.com/super-linter/super-linter/pull/7817","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/super-linter%2Fsuper-linter/issues/7817","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7817/packages"}},{"old_version":"1.14.8","new_version":"1.15.1","update_type":"minor","path":null,"pr_created_at":"2026-05-05T18:02:24.000Z","version_change":"1.14.8 → 1.15.1","issue":{"uuid":"4386119744","node_id":"PR_kwDODftaC87Yf22K","number":814,"state":"closed","title":"build(deps): Bump hashicorp/terraform from 1.14.8 to 1.15.1","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-11T21:31:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-05T18:02:24.000Z","updated_at":"2026-05-11T21:31:57.000Z","time_to_close":530972,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","packages":[{"name":"hashicorp/terraform","old_version":"1.14.8","new_version":"1.15.1","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.14.8 to 1.15.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.14.8\u0026new-version=1.15.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/lorengordon/tardigrade-ci/pull/814","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/lorengordon%2Ftardigrade-ci/issues/814","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/814/packages"}},{"old_version":"1.14.9","new_version":"1.15.0","update_type":"minor","path":null,"pr_created_at":"2026-04-29T22:11:25.000Z","version_change":"1.14.9 → 1.15.0","issue":{"uuid":"4353979591","node_id":"PR_kwDOE6qsZs7W49ys","number":189,"state":"closed","title":"build(deps): bump hashicorp/terraform from 1.14.9 to 1.15.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-02T01:37:36.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-29T22:11:25.000Z","updated_at":"2026-05-02T01:37:37.000Z","time_to_close":185171,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"hashicorp/terraform","old_version":"1.14.9","new_version":"1.15.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.14.9 to 1.15.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.14.9\u0026new-version=1.15.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/SumoLogic/sumologic-kubernetes-setup/pull/189","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/SumoLogic%2Fsumologic-kubernetes-setup/issues/189","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/189/packages"}},{"old_version":"1.14.8","new_version":"1.14.9","update_type":"patch","path":null,"pr_created_at":"2026-04-21T13:34:34.000Z","version_change":"1.14.8 → 1.14.9","issue":{"uuid":"4302944640","node_id":"PR_kwDODOjFv87UULU_","number":7765,"state":"open","title":"deps(docker): bump the docker group across 1 directory with 3 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-21T13:34:34.000Z","updated_at":"2026-04-21T13:49:24.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker): bump","group_name":"docker","update_count":3,"packages":[{"name":"terraform-linters/tflint","old_version":"v0.61.0","new_version":"v0.62.0","repository_url":"https://github.com/terraform-linters/tflint"},{"name":"hashicorp/terraform","old_version":"1.14.8","new_version":"1.14.9"},{"name":"aquasecurity/trivy","old_version":"0.69.3","new_version":"0.70.0","repository_url":"https://github.com/aquasecurity/trivy"}],"path":null,"ecosystem":"docker"},"body":"Bumps the docker group with 3 updates in the / directory: [terraform-linters/tflint](https://github.com/terraform-linters/tflint), hashicorp/terraform and [aquasecurity/trivy](https://github.com/aquasecurity/trivy).\n\nUpdates `terraform-linters/tflint` from v0.61.0 to v0.62.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/terraform-linters/tflint/releases\"\u003eterraform-linters/tflint's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.62.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eplugin: Add signature mode to control plugin verifications by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2483\"\u003eterraform-linters/tflint#2483\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eplugin: Ignore forbidden attestation fetch errors by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2481\"\u003eterraform-linters/tflint#2481\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): Bump the go-x group with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2461\"\u003eterraform-linters/tflint#2461\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/build-push-action from 6.18.0 to 6.19.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2463\"\u003eterraform-linters/tflint#2463\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/grpc from 1.78.0 to 1.79.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2464\"\u003eterraform-linters/tflint#2464\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump goreleaser/goreleaser-action from 6.4.0 to 7.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2467\"\u003eterraform-linters/tflint#2467\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump go.opentelemetry.io/otel/sdk from 1.39.0 to 1.40.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2469\"\u003eterraform-linters/tflint#2469\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump actions/setup-go from 6.2.0 to 6.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2470\"\u003eterraform-linters/tflint#2470\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/net from 0.50.0 to 0.51.0 in the go-x group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2472\"\u003eterraform-linters/tflint#2472\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/zclconf/go-cty from 1.17.0 to 1.18.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2473\"\u003eterraform-linters/tflint#2473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump actions/attest-build-provenance from 3.2.0 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2471\"\u003eterraform-linters/tflint#2471\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/metadata-action from 5.10.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2474\"\u003eterraform-linters/tflint#2474\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump sigstore/cosign-installer from 4.0.0 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2476\"\u003eterraform-linters/tflint#2476\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/oauth2 from 0.35.0 to 0.36.0 in the go-x group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2479\"\u003eterraform-linters/tflint#2479\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/grpc from 1.79.1 to 1.79.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2480\"\u003eterraform-linters/tflint#2480\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/setup-buildx-action from 3.12.0 to 4.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2475\"\u003eterraform-linters/tflint#2475\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/build-push-action from 6.19.2 to 7.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2477\"\u003eterraform-linters/tflint#2477\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/login-action from 3.7.0 to 4.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2478\"\u003eterraform-linters/tflint#2478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: Bump Go version to 1.26 by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2482\"\u003eterraform-linters/tflint#2482\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump the go-x group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2484\"\u003eterraform-linters/tflint#2484\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/grpc from 1.79.2 to 1.79.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2489\"\u003eterraform-linters/tflint#2489\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump mislav/bump-homebrew-formula-action from 3.6 to 4.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2490\"\u003eterraform-linters/tflint#2490\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/terraform-linters/tflint-plugin-sdk from 0.23.1 to 0.24.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2491\"\u003eterraform-linters/tflint#2491\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/fatih/color from 1.18.0 to 1.19.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2492\"\u003eterraform-linters/tflint#2492\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edependabot: Set cooldown period by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2493\"\u003eterraform-linters/tflint#2493\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2495\"\u003eterraform-linters/tflint#2495\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/hashicorp/go-version from 1.8.0 to 1.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2496\"\u003eterraform-linters/tflint#2496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump actions/setup-go from 6.3.0 to 6.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2498\"\u003eterraform-linters/tflint#2498\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream from 1.7.4 to 1.7.8 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2499\"\u003eterraform-linters/tflint#2499\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.95.0 to 1.97.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2500\"\u003eterraform-linters/tflint#2500\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump go.opentelemetry.io/otel/sdk from 1.40.0 to 1.43.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2501\"\u003eterraform-linters/tflint#2501\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/hashicorp/go-getter from 1.8.4 to 1.8.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2502\"\u003eterraform-linters/tflint#2502\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/sigstore/timestamp-authority/v2 from 2.0.3 to 2.0.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2506\"\u003eterraform-linters/tflint#2506\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/grpc from 1.79.3 to 1.80.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2503\"\u003eterraform-linters/tflint#2503\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump sigstore/cosign-installer from 4.1.0 to 4.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2497\"\u003eterraform-linters/tflint#2497\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/login-action from 4.0.0 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2504\"\u003eterraform-linters/tflint#2504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/build-push-action from 7.0.0 to 7.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2507\"\u003eterraform-linters/tflint#2507\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erelease: Migrate attest-build-provenance to attest by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2508\"\u003eterraform-linters/tflint#2508\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/terraform-linters/tflint/compare/v0.61.0...v0.62.0\"\u003ehttps://github.com/terraform-linters/tflint/compare/v0.61.0...v0.62.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/2376055e05a48529705050c30e9c994b702e48ec\"\u003e\u003ccode\u003e2376055\u003c/code\u003e\u003c/a\u003e Bump up version to v0.62.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/641dbb62a66d9325f99d37e085f08fae39b2cbda\"\u003e\u003ccode\u003e641dbb6\u003c/code\u003e\u003c/a\u003e Bump Go version to 1.26.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/94f1eb872fd905c454585ab911cab74bf5345e05\"\u003e\u003ccode\u003e94f1eb8\u003c/code\u003e\u003c/a\u003e release: Migrate attest-build-provenance to attest (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2508\"\u003e#2508\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/7d900633823c4be574b1837f088bac1623adcc46\"\u003e\u003ccode\u003e7d90063\u003c/code\u003e\u003c/a\u003e build(deps): Bump docker/build-push-action from 7.0.0 to 7.1.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2507\"\u003e#2507\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/62b61c5f5b27d41cb2efb6dcfab26640df74ee97\"\u003e\u003ccode\u003e62b61c5\u003c/code\u003e\u003c/a\u003e build(deps): Bump docker/login-action from 4.0.0 to 4.1.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2504\"\u003e#2504\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/540c3e0142f049bc54b460ad92f5e7e8e15ad1b2\"\u003e\u003ccode\u003e540c3e0\u003c/code\u003e\u003c/a\u003e build(deps): Bump sigstore/cosign-installer from 4.1.0 to 4.1.1 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2497\"\u003e#2497\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/3405bffb2be971699c18f8da383c70328e065210\"\u003e\u003ccode\u003e3405bff\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.golang.org/grpc from 1.79.3 to 1.80.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2503\"\u003e#2503\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/ab01b38d2b54fe6ef4ec0d237b80d354bf16ff55\"\u003e\u003ccode\u003eab01b38\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/sigstore/timestamp-authority/v2 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2506\"\u003e#2506\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/e9091c75562fee7ea66ff31e1b845eb50df73011\"\u003e\u003ccode\u003ee9091c7\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/hashicorp/go-getter from 1.8.4 to 1.8.6 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2502\"\u003e#2502\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/999b9d65784a3468af97adbe8c68d16287b0dcbc\"\u003e\u003ccode\u003e999b9d6\u003c/code\u003e\u003c/a\u003e build(deps): Bump go.opentelemetry.io/otel/sdk from 1.40.0 to 1.43.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2501\"\u003e#2501\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/terraform-linters/tflint/compare/v0.61.0...v0.62.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hashicorp/terraform` from 1.14.8 to 1.14.9\n\nUpdates `aquasecurity/trivy` from 0.69.3 to 0.70.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aquasecurity/trivy/releases\"\u003eaquasecurity/trivy's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.70.0\u003c/h2\u003e\n\u003ch2\u003e⚡ Highlights ⚡\u003c/h2\u003e\n\u003cp\u003e👉 \u003ca href=\"https://github.com/aquasecurity/trivy/discussions/10546\"\u003ehttps://github.com/aquasecurity/trivy/discussions/10546\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0700-2026-04-16\"\u003ehttps://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md#0700-2026-04-16\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aquasecurity/trivy/blob/main/CHANGELOG.md\"\u003eaquasecurity/trivy's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/compare/v0.69.0...v0.70.0\"\u003e0.70.0\u003c/a\u003e (2026-04-16)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ego:\u003c/strong\u003e detect version from ELF symbol table for binaries built with -trimpath (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10197\"\u003e#10197\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/7acb5f6f095a11cb9911af5a0bc03aecc7c88f8f\"\u003e7acb5f6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ejava:\u003c/strong\u003e add support for proxy configuration from Maven settings.xml (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10187\"\u003e#10187\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/350fe3345129f0f341ab80438f66f951b602364a\"\u003e350fe33\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emisconf:\u003c/strong\u003e adapt ARM k8s clusters (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9696\"\u003e#9696\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10125\"\u003e#10125\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/66bdec4f6af6100b6ab991ca417b0c801cb5cd80\"\u003e66bdec4\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emisconf:\u003c/strong\u003e resolve Azure resources via resource_id (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10173\"\u003e#10173\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/823f3634ae8f41a17be8695ceabcb8ca52f82a63\"\u003e823f363\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emisconf:\u003c/strong\u003e support for azurerm_network_interface_security_group_association  (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10215\"\u003e#10215\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/da94d5f38676885264787fe22f3ed8ab42511b2a\"\u003eda94d5f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epython:\u003c/strong\u003e add pylock.toml (PEP 751) parser (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9632\"\u003e#9632\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/1a72b326bba9e0959d5f3b63367bb311f064d795\"\u003e1a72b32\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epython:\u003c/strong\u003e add pylock.toml support (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10137\"\u003e#10137\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/d0a3f63b84e6a8cd9067e85344097f9179c14b0d\"\u003ed0a3f63\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eserver:\u003c/strong\u003e include server version info in JSON output for client/server mode (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10075\"\u003e#10075\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/4c46d418c58c9a070a87b9d3c88966d40e435329\"\u003e4c46d41\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eubuntu:\u003c/strong\u003e add eol data for 25.10 (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10181\"\u003e#10181\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/2c1f65bdeec62baef45e93f58cc8e5eca7d84d26\"\u003e2c1f65b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003evuln:\u003c/strong\u003e skip third-party packages in common Detect function (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10129\"\u003e#10129\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/d6e6331abba28fe22f6d8d3bc36f7821601ff8ad\"\u003ed6e6331\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ecyclonedx:\u003c/strong\u003e include CVSS v4 vulnerability ratings (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10313\"\u003e#10313\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/2a4dfbf18a71a17de2c22c02afc5742466f6d799\"\u003e2a4dfbf\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edetected vulnerability fields in azure and mariner detector (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10275\"\u003e#10275\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/77f5cb5abda49844b936322e85829b256cb4599c\"\u003e77f5cb5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eflag:\u003c/strong\u003e validate template file extension (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10296\"\u003e#10296\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/20458b836b71b2bed72d31ebba1ba9572333dcfd\"\u003e20458b8\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehandle Go 1.26 GOEXPERIMENT version format change (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10351\"\u003e#10351\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/f207ec693b23b6d5114dbf3b309903689b93073d\"\u003ef207ec6\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ejava:\u003c/strong\u003e Disable overwriting exclusions (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10088\"\u003e#10088\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/9a3e0a845db68a79f4fd0e71f5cb7d8ca3976bbe\"\u003e9a3e0a8\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emisconf:\u003c/strong\u003e apply check aliases when filtering results via .trivyignore (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10112\"\u003e#10112\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/b775a1b63cd7afeda8dec2c1c8b8b6d422418bc6\"\u003eb775a1b\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003emisconf:\u003c/strong\u003e initialize custom annotation field if empty (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10123\"\u003e#10123\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/0f0d6dbff4825f7b0ea7744b2229e0157af52972\"\u003e0f0d6db\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epython:\u003c/strong\u003e handle multiple version specifiers in requirements.txt (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10361\"\u003e#10361\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/4cf44985c58575850138c9cc3780b201dfad7c09\"\u003e4cf4498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003epython:\u003c/strong\u003e nil pointer dereference with optional poetry groups without dependencies (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10359\"\u003e#10359\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/12ab3cee257f89b3b180c38bc2d765dc4c7918a1\"\u003e12ab3ce\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove os.Stdout from wazero module config (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10403\"\u003e#10403\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/bda9710eb0c4c7d5ba1bc60bbaa06d43dc3c523a\"\u003ebda9710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ereport:\u003c/strong\u003e set correct sarif ROOTPATH uri when scanning a git repository (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10366\"\u003e#10366\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/e5da6deee9904d00cb4fd5ea1f67e8a1711ec8dd\"\u003ee5da6de\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esbom:\u003c/strong\u003e add NOASSERTION for licenseDeclared/licenseConcluded in SPDX non-library packages (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10368\"\u003e#10368\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/33b9d8ec318bb1f4081371a0a5fd46071080aef1\"\u003e33b9d8e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esbom:\u003c/strong\u003e preserve Red Hat BuildInfo when scanning SBOMs without layer info (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10378\"\u003e#10378\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/e9e9e8c6bd914b4d4802107bbf8d0c40bad1dd57\"\u003ee9e9e8c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eserver:\u003c/strong\u003e exclude JavaDB and CheckBundle from /version endpoint (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10100\"\u003e#10100\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/b9a8d2d80adc47bf9f48e13c2738b099c907518b\"\u003eb9a8d2d\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate PhotonOS feed URL (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10122\"\u003e#10122\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/fa195b4d11d946b0212900b2a153a1abf381e8a2\"\u003efa195b4\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003euse Development category for GoReleaser discussions (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10530\"\u003e#10530\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/7ee3e1eeb0faf69a08837a3f42678e5e7f314286\"\u003e7ee3e1e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePerformance Improvements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eplugin:\u003c/strong\u003e optimize directory traversal by replacing filepath.Walk with filepath.WalkDir (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10325\"\u003e#10325\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/d7fb3558db610dc08ef1c3e22dd37082180368b2\"\u003ed7fb355\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/compare/v0.68.1...v0.69.0\"\u003e0.69.0\u003c/a\u003e (2026-01-30)\u003c/h2\u003e\n\u003ch3\u003e⚠ BREAKING CHANGES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003emisconf:\u003c/strong\u003e use ID instead of AVDID for providers mapping (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9752\"\u003e#9752\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/8a3177aedf7ee0864920eb1852eef031cd3742b8\"\u003e\u003ccode\u003e8a3177a\u003c/code\u003e\u003c/a\u003e release: v0.70.0 [main] (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10105\"\u003e#10105\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/974de495449f2bef46fdc0654f57d61da1452d8a\"\u003e\u003ccode\u003e974de49\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/sdk from 1.42.0 to 1.43.0 (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10496\"\u003e#10496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/21755974af6155e55652e2088be8f5c03beceb25\"\u003e\u003ccode\u003e2175597\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/sigstore/timestamp-authority/v2 from 2.0.3 to 2....\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/50c7a1ecb0b279b4980fa2631a2c596c77e426d4\"\u003e\u003ccode\u003e50c7a1e\u003c/code\u003e\u003c/a\u003e chore(deps): bump the common group across 1 directory with 8 updates (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10540\"\u003e#10540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/885fbcedaf6057b5ac526efa9991c624272153cd\"\u003e\u003ccode\u003e885fbce\u003c/code\u003e\u003c/a\u003e chore(deps): bump the docker group across 1 directory with 2 updates (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10538\"\u003e#10538\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/7ee3e1eeb0faf69a08837a3f42678e5e7f314286\"\u003e\u003ccode\u003e7ee3e1e\u003c/code\u003e\u003c/a\u003e fix: use Development category for GoReleaser discussions (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10530\"\u003e#10530\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/6dbe3691f5158594c52783b95895a835981f8836\"\u003e\u003ccode\u003e6dbe369\u003c/code\u003e\u003c/a\u003e chore(deps): bump testcontainers-go to v0.42.0 (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10531\"\u003e#10531\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/21e6888c7be3ef017516daa644716f110cb8d901\"\u003e\u003ccode\u003e21e6888\u003c/code\u003e\u003c/a\u003e chore: update CODEOWNERS (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10529\"\u003e#10529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/35d28e81e9226d42de9c20e21fd954eb9061cfd3\"\u003e\u003ccode\u003e35d28e8\u003c/code\u003e\u003c/a\u003e chore(deps): bump helm.sh/helm/v3 from 3.20.1 to 3.20.2 (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10511\"\u003e#10511\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/6d40a9826c0ec7f4a183962c23c142c7f7e8d6df\"\u003e\u003ccode\u003e6d40a98\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/hashicorp/go-getter from 1.8.5 to 1.8.6 (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/10510\"\u003e#10510\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aquasecurity/trivy/compare/v0.69.3...v0.70.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/super-linter/super-linter/pull/7765","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/super-linter%2Fsuper-linter/issues/7765","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7765/packages"}},{"old_version":"1.9.5","new_version":"1.14.9","update_type":"minor","path":"/tools/dplsh","pr_created_at":"2026-04-21T04:03:53.000Z","version_change":"1.9.5 → 1.14.9","issue":{"uuid":"4300187864","node_id":"PR_kwDOF62svs7ULPq4","number":1098,"state":"closed","title":"Bump hashicorp/terraform from 1.9.5 to 1.14.9 in /tools/dplsh","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-30T04:04:30.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-21T04:03:53.000Z","updated_at":"2026-04-30T04:04:31.000Z","time_to_close":777637,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/terraform","old_version":"1.9.5","new_version":"1.14.9","repository_url":null}],"path":"/tools/dplsh","ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.9.5 to 1.14.9.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.9.5\u0026new-version=1.14.9)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/danskernesdigitalebibliotek/dpl-platform/pull/1098","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/danskernesdigitalebibliotek%2Fdpl-platform/issues/1098","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1098/packages"}},{"old_version":"1.3.6","new_version":"1.14.8","update_type":"minor","path":null,"pr_created_at":"2026-03-30T06:53:58.000Z","version_change":"1.3.6 → 1.14.8","issue":{"uuid":"4168010846","node_id":"PR_kwDOEFTOWM7Ogkyi","number":1855,"state":"closed","title":"Bump hashicorp/terraform from 1.3.6 to 1.14.8","user":"dependabot[bot]","labels":["dependencies","docker","O: stale 🤖"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-20T03:34:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-30T06:53:58.000Z","updated_at":"2026-05-20T03:34:59.000Z","time_to_close":4394451,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/terraform","old_version":"1.3.6","new_version":"1.14.8","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.3.6 to 1.14.8.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.3.6\u0026new-version=1.14.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/NocturnalGlory/super-linter/pull/1855","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/NocturnalGlory%2Fsuper-linter/issues/1855","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1855/packages"}},{"old_version":"1.14.5","new_version":"1.14.6","update_type":"patch","path":null,"pr_created_at":"2026-02-26T13:33:33.000Z","version_change":"1.14.5 → 1.14.6","issue":{"uuid":"3995607443","node_id":"PR_kwDODOjFv87Gi-VH","number":7566,"state":"open","title":"deps(docker): bump the docker group across 1 directory with 6 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-26T13:33:33.000Z","updated_at":"2026-02-26T13:44:18.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker): bump","group_name":"docker","update_count":6,"packages":[{"name":"alpine/terragrunt","old_version":"1.14.4","new_version":"1.14.5"},{"name":"golangci/golangci-lint","old_version":"v2.9.0","new_version":"v2.10.1"},{"name":"goreleaser/goreleaser","old_version":"v2.13.3","new_version":"v2.14.1"},{"name":"hashicorp/terraform","old_version":"1.14.5","new_version":"1.14.6"},{"name":"rhysd/actionlint","old_version":"1.7.10","new_version":"1.7.11"},{"name":"dart","old_version":"3.11.0-sdk","new_version":"3.11.1-sdk"}],"path":null,"ecosystem":"docker"},"body":"Bumps the docker group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| alpine/terragrunt | `1.14.4` | `1.14.5` |\n| golangci/golangci-lint | `v2.9.0` | `v2.10.1` |\n| goreleaser/goreleaser | `v2.13.3` | `v2.14.1` |\n| hashicorp/terraform | `1.14.5` | `1.14.6` |\n| rhysd/actionlint | `1.7.10` | `1.7.11` |\n| dart | `3.11.0-sdk` | `3.11.1-sdk` |\n\n\nUpdates `alpine/terragrunt` from 1.14.4 to 1.14.5\n\nUpdates `golangci/golangci-lint` from v2.9.0 to v2.10.1\n\nUpdates `goreleaser/goreleaser` from v2.13.3 to v2.14.1\n\nUpdates `hashicorp/terraform` from 1.14.5 to 1.14.6\n\nUpdates `rhysd/actionlint` from 1.7.10 to 1.7.11\n\nUpdates `dart` from 3.11.0-sdk to 3.11.1-sdk\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/super-linter/super-linter/pull/7566","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/super-linter%2Fsuper-linter/issues/7566","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7566/packages"}},{"old_version":"1.9.5","new_version":"1.14.5","update_type":"minor","path":"/tools/dplsh","pr_created_at":"2026-02-12T04:03:42.000Z","version_change":"1.9.5 → 1.14.5","issue":{"uuid":"3929748772","node_id":"PR_kwDOF62svs7DK5SW","number":1025,"state":"closed","title":"Bump hashicorp/terraform from 1.9.5 to 1.14.5 in /tools/dplsh","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-12T08:57:53.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-12T04:03:42.000Z","updated_at":"2026-02-12T08:58:02.000Z","time_to_close":17651,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/terraform","old_version":"1.9.5","new_version":"1.14.5","repository_url":null}],"path":"/tools/dplsh","ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.9.5 to 1.14.5.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.9.5\u0026new-version=1.14.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/danskernesdigitalebibliotek/dpl-platform/pull/1025","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/danskernesdigitalebibliotek%2Fdpl-platform/issues/1025","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1025/packages"}},{"old_version":"1.14.3","new_version":"1.14.4","update_type":"patch","path":null,"pr_created_at":"2026-01-28T13:33:37.000Z","version_change":"1.14.3 → 1.14.4","issue":{"uuid":"3865479481","node_id":"PR_kwDODOjFv86_2671","number":7455,"state":"open","title":"deps(docker): bump the docker group with 3 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-01-28T13:33:37.000Z","updated_at":"2026-01-28T13:43:49.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker): bump","group_name":"docker","update_count":3,"packages":[{"name":"hashicorp/terraform","old_version":"1.14.3","new_version":"1.14.4"},{"name":"scalameta/scalafmt","old_version":"v3.10.4","new_version":"v3.10.5"},{"name":"dart","old_version":"3.10.7-sdk","new_version":"3.10.8-sdk"}],"path":null,"ecosystem":"docker"},"body":"Bumps the docker group with 3 updates: hashicorp/terraform, scalameta/scalafmt and dart.\n\nUpdates `hashicorp/terraform` from 1.14.3 to 1.14.4\n\nUpdates `scalameta/scalafmt` from v3.10.4 to v3.10.5\n\nUpdates `dart` from 3.10.7-sdk to 3.10.8-sdk\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/super-linter/super-linter/pull/7455","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/super-linter%2Fsuper-linter/issues/7455","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7455/packages"}},{"old_version":"1.14.2","new_version":"1.14.3","update_type":"patch","path":null,"pr_created_at":"2025-12-23T14:07:39.000Z","version_change":"1.14.2 → 1.14.3","issue":{"uuid":"3757500742","node_id":"PR_kwDOJbs5-s66Vg3s","number":168,"state":"closed","title":"deps(docker): bump the docker group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-23T16:58:43.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-23T14:07:39.000Z","updated_at":"2025-12-23T16:58:45.000Z","time_to_close":10264,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker): bump","group_name":"docker","update_count":5,"packages":[{"name":"alpine/helm","old_version":"4.0.0","new_version":"4.0.4"},{"name":"hashicorp/terraform","old_version":"1.14.2","new_version":"1.14.3"},{"name":"clj-kondo/clj-kondo","old_version":"2025.10.23-alpine","new_version":"2025.12.23-alpine","repository_url":"https://github.com/clj-kondo/clj-kondo"},{"name":"dart","old_version":"3.10.4-sdk","new_version":"3.10.6-sdk"},{"name":"aquasecurity/trivy","old_version":"0.68.1","new_version":"0.68.2","repository_url":"https://github.com/aquasecurity/trivy"}],"path":null,"ecosystem":"docker"},"body":"Bumps the docker group with 5 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| alpine/helm | `4.0.0` | `4.0.4` |\n| hashicorp/terraform | `1.14.2` | `1.14.3` |\n| [clj-kondo/clj-kondo](https://github.com/clj-kondo/clj-kondo) | `2025.10.23-alpine` | `2025.12.23-alpine` |\n| dart | `3.10.4-sdk` | `3.10.6-sdk` |\n| [aquasecurity/trivy](https://github.com/aquasecurity/trivy) | `0.68.1` | `0.68.2` |\n\n\nUpdates `alpine/helm` from 4.0.0 to 4.0.4\n\nUpdates `hashicorp/terraform` from 1.14.2 to 1.14.3\n\nUpdates `clj-kondo/clj-kondo` from 2025.10.23-alpine to 2025.12.23-alpine\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clj-kondo/clj-kondo/releases\"\u003eclj-kondo/clj-kondo's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2025.12.23\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2651\"\u003e#2651\u003c/a\u003e: resume linting after paren mismatches by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2652\"\u003eclj-kondo/clj-kondo#2652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDuplicate key args for associative fns by \u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2650\"\u003eclj-kondo/clj-kondo#2650\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix inner class normalization by \u003ca href=\"https://github.com/ericdallo\"\u003e\u003ccode\u003e@​ericdallo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2657\"\u003eclj-kondo/clj-kondo#2657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInclude inner classes by \u003ca href=\"https://github.com/ericdallo\"\u003e\u003ccode\u003e@​ericdallo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2658\"\u003eclj-kondo/clj-kondo#2658\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade fs by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2659\"\u003eclj-kondo/clj-kondo#2659\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCircle config by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2662\"\u003eclj-kondo/clj-kondo#2662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2532\"\u003e#2532\u003c/a\u003e: ignore duplicate require icm :reload/:reload-all by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2663\"\u003eclj-kondo/clj-kondo#2663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2432\"\u003e#2432\u003c/a\u003e: don't warn for redundant-fn-wrapper in case of inlined fun… by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2664\"\u003eclj-kondo/clj-kondo#2664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd redundant-let-binding linter by \u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2655\"\u003eclj-kondo/clj-kondo#2655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2599\"\u003e#2599\u003c/a\u003e: Detect wrong no. of arguments passed to coll by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2665\"\u003eclj-kondo/clj-kondo#2665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix linter.md entry for redundant-let-binding by \u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2667\"\u003eclj-kondo/clj-kondo#2667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix: redundant-call's level check didn't work by \u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2670\"\u003eclj-kondo/clj-kondo#2670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2661\"\u003e#2661\u003c/a\u003e: recur in tail position in core.match by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2672\"\u003eclj-kondo/clj-kondo#2672\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2617\"\u003e#2617\u003c/a\u003e - Add types for \u003ccode\u003erepeatedly\u003c/code\u003e function by \u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2674\"\u003eclj-kondo/clj-kondo#2674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2653\"\u003e#2653\u003c/a\u003e: detect unquote that isn't syntax-quoted by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2681\"\u003eclj-kondo/clj-kondo#2681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLint trailing varargs syntax errs, lint varargs errs in let bindings by \u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2669\"\u003eclj-kondo/clj-kondo#2669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake all :keys bindings symbols, not keywords by \u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2682\"\u003eclj-kondo/clj-kondo#2682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2683\"\u003e#2683\u003c/a\u003e: ex-info data may be nil by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2685\"\u003eclj-kondo/clj-kondo#2685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2676\"\u003e#2676\u003c/a\u003e: Add handling for unresolved namespaces in maps by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2686\"\u003eclj-kondo/clj-kondo#2686\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd ratio type support for numerator and denominator by \u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2684\"\u003eclj-kondo/clj-kondo#2684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2613\"\u003e#2613\u003c/a\u003e - Add linter for non-existing vars in refer-clojure by \u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2675\"\u003eclj-kondo/clj-kondo#2675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump clojurescript by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2688\"\u003eclj-kondo/clj-kondo#2688\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2687\"\u003e#2687\u003c/a\u003e: :refer-global and :require-global by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2689\"\u003eclj-kondo/clj-kondo#2689\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2544\"\u003e#2544\u003c/a\u003e: support inline configs in .cljc files by \u003ca href=\"https://github.com/borkdude\"\u003e\u003ccode\u003e@​borkdude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2690\"\u003eclj-kondo/clj-kondo#2690\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2674\"\u003eclj-kondo/clj-kondo#2674\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/clj-kondo/clj-kondo/compare/v2025.10.23...v2025.12.23\"\u003ehttps://github.com/clj-kondo/clj-kondo/compare/v2025.10.23...v2025.12.23\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/clj-kondo/clj-kondo/blob/master/CHANGELOG.md\"\u003eclj-kondo/clj-kondo's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003cp\u003eFor a list of breaking changes, check \u003ca href=\"https://github.com/clj-kondo/clj-kondo/blob/master/#breaking-changes\"\u003ehere\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo\"\u003eClj-kondo\u003c/a\u003e: static analyzer and linter for Clojure code that sparks joy ✨\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003e2025.12.23\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2654\"\u003e#2654\u003c/a\u003e: NEW linter: \u003ccode\u003eredundant-let-binding\u003c/code\u003e, defaults to \u003ccode\u003e:off\u003c/code\u003e (\u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2653\"\u003e#2653\u003c/a\u003e: NEW linter: \u003ccode\u003e:unquote-not-syntax-quoted\u003c/code\u003e to warn on \u003ccode\u003e~\u003c/code\u003e and \u003ccode\u003e~@\u003c/code\u003e usage outside syntax-quote (\u003ccode\u003e`\u003c/code\u003e) (\u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2613\"\u003e#2613\u003c/a\u003e: NEW linter: \u003ccode\u003e:refer-clojure-exclude-unresolved-var\u003c/code\u003e to warn on non-existing vars in \u003ccode\u003e:refer-clojure :exclude\u003c/code\u003e (\u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2668\"\u003e#2668\u003c/a\u003e: Lint \u003ccode\u003e\u0026amp;\u003c/code\u003e syntax errors in let bindings and lint for trailing \u003ccode\u003e\u0026amp;\u003c/code\u003e (\u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2590\"\u003e#2590\u003c/a\u003e: \u003ccode\u003eduplicate-key-in-assoc\u003c/code\u003e changed to \u003ccode\u003eduplicate-key-args\u003c/code\u003e, and now lints \u003ccode\u003edissoc\u003c/code\u003e, \u003ccode\u003eassoc!\u003c/code\u003e and \u003ccode\u003edissoc!\u003c/code\u003e too (\u003ca href=\"https://github.com/tomdl89\"\u003e\u003ccode\u003e@​tomdl89\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2651\"\u003e#2651\u003c/a\u003e: resume linting after paren mismatches\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clojure-lsp/clojure-lsp/issues/2157\"\u003eclojure-lsp#2651\u003c/a\u003e: Fix inner class name for java-class-definitions.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clojure-lsp/clojure-lsp/issues/2157\"\u003eclojure-lsp#2651\u003c/a\u003e: Include inner class java-class-definition analysis.\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003ebabashka/fs\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2532\"\u003e#2532\u003c/a\u003e: Disable \u003ccode\u003e:duplicate-require\u003c/code\u003e in \u003ccode\u003erequire\u003c/code\u003e + \u003ccode\u003e:reload\u003c/code\u003e / \u003ccode\u003e:reload-all\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2432\"\u003e#2432\u003c/a\u003e: Don't warn for \u003ccode\u003e:redundant-fn-wrapper\u003c/code\u003e in case of inlined function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2599\"\u003e#2599\u003c/a\u003e: detect invalid arity for invoking collection as higher order function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2661\"\u003e#2661\u003c/a\u003e: Fix false positive \u003ccode\u003e:unexpected-recur\u003c/code\u003e when \u003ccode\u003erecur\u003c/code\u003e is used inside \u003ccode\u003eclojure.core.match/match\u003c/code\u003e (\u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2617\"\u003e#2617\u003c/a\u003e: Add types for \u003ccode\u003erepeatedly\u003c/code\u003e (\u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003e:ratio\u003c/code\u003e type support for \u003ccode\u003enumerator\u003c/code\u003e and \u003ccode\u003edenominator\u003c/code\u003e functions (\u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2676\"\u003e#2676\u003c/a\u003e: Report unresolved namespace for namespaced maps with unknown aliases (\u003ca href=\"https://github.com/jramosg\"\u003e\u003ccode\u003e@​jramosg\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2683\"\u003e#2683\u003c/a\u003e: data argument of \u003ccode\u003eex-info\u003c/code\u003e may be nil since clojure 1.12\u003c/li\u003e\n\u003cli\u003eBump built-in ClojureScript analysis info\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2687\"\u003e#2687\u003c/a\u003e: support new \u003ccode\u003e:refer-global\u003c/code\u003e and \u003ccode\u003e:require-global\u003c/code\u003e ns options in CLJS\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2544\"\u003e#2554\u003c/a\u003e: support inline configs in \u003ccode\u003e.cljc\u003c/code\u003e files\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2025.10.23\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2590\"\u003e#2590\u003c/a\u003e: NEW linter: \u003ccode\u003eduplicate-key-in-assoc\u003c/code\u003e, defaults to \u003ccode\u003e:warning\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2639\"\u003e#2639\u003c/a\u003e: NEW \u003ccode\u003e:equals-nil\u003c/code\u003e linter to detect \u003ccode\u003e(= nil x)\u003c/code\u003e or \u003ccode\u003e(= x nil)\u003c/code\u003e patterns and suggest \u003ccode\u003e(nil? x)\u003c/code\u003e instead (\u003ca href=\"https://github.com/conao3\"\u003e\u003ccode\u003e@​conao3\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2633\"\u003e#2633\u003c/a\u003e: support new \u003ccode\u003edefparkingop\u003c/code\u003e macro in core.async alpha\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/pull/2635\"\u003e#2635\u003c/a\u003e: Add \u003ccode\u003e:interface\u003c/code\u003e flag to \u003ccode\u003e:flags\u003c/code\u003e set in \u003ccode\u003e:java-class-definitions\u003c/code\u003e analysis output to distinguish Java interfaces from classes (\u003ca href=\"https://github.com/hugoduncan\"\u003e\u003ccode\u003e@​hugoduncan\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2636\"\u003e#2636\u003c/a\u003e: set global SCI context so hooks can use \u003ccode\u003erequiring-resolve\u003c/code\u003e etc.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2641\"\u003e#2641\u003c/a\u003e: fix linting of \u003ccode\u003edef\u003c/code\u003e body, no results due to laziness bug\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/ca54a322fc860b85cc17f029910a4ec8ad3a8060\"\u003e\u003ccode\u003eca54a32\u003c/code\u003e\u003c/a\u003e v2025.12.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/e18de6534a65a078c43cc87e4e4ad4f66b06f3e0\"\u003e\u003ccode\u003ee18de65\u003c/code\u003e\u003c/a\u003e Minor tweak\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/1c599194c7a5995b369d312e0d5f5f538fef70d0\"\u003e\u003ccode\u003e1c59919\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2554\"\u003e#2554\u003c/a\u003e: wrong issue number mentioned in previous commit, \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2544\"\u003e#2544\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/8d9d24f1043eab2878770c271e36d22d3f7e3e94\"\u003e\u003ccode\u003e8d9d24f\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2544\"\u003e#2544\u003c/a\u003e: support inline configs in .cljc files (\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2690\"\u003e#2690\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/d002f6af84fccd427786568d4821b4225013ff16\"\u003e\u003ccode\u003ed002f6a\u003c/code\u003e\u003c/a\u003e \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2687\"\u003e#2687\u003c/a\u003e: addendum\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/f73abcaeed22288c8103ac5074646558b2dd9075\"\u003e\u003ccode\u003ef73abca\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2687\"\u003e#2687\u003c/a\u003e: :refer-global and :require-global (\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2689\"\u003e#2689\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/c802e14ec8c5a1bebb3929068f4ada61f7b1b484\"\u003e\u003ccode\u003ec802e14\u003c/code\u003e\u003c/a\u003e Bump clojurescript (\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2688\"\u003e#2688\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/53cba064390edc1e8e3910ec8cce13bf003ba61f\"\u003e\u003ccode\u003e53cba06\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2613\"\u003e#2613\u003c/a\u003e - Add linter for non-existing vars in refer-clojure (\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2675\"\u003e#2675\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/29709fd0cb2b7d29055aff55ea9782decb58c153\"\u003e\u003ccode\u003e29709fd\u003c/code\u003e\u003c/a\u003e Add ratio type support for numerator and denominator (\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2684\"\u003e#2684\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/clj-kondo/clj-kondo/commit/ac3d2121dfc774289b6385be78e86cb31ec32172\"\u003e\u003ccode\u003eac3d212\u003c/code\u003e\u003c/a\u003e Fix \u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2676\"\u003e#2676\u003c/a\u003e: Add handling for unresolved namespaces in maps (\u003ca href=\"https://redirect.github.com/clj-kondo/clj-kondo/issues/2686\"\u003e#2686\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/clj-kondo/clj-kondo/compare/v2025.10.23...v2025.12.23\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `dart` from 3.10.4-sdk to 3.10.6-sdk\n\nUpdates `aquasecurity/trivy` from 0.68.1 to 0.68.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aquasecurity/trivy/releases\"\u003eaquasecurity/trivy's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.68.2\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e0c40a8d4b9b943f1b679a20f8ba3cb61c94831de release: v0.68.2 [release/v0.68] (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9950\"\u003e#9950\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edb2894561daa20301eb144cad467d75d8a3d2647 fix(deps): bump alpine from \u003ccode\u003e3.22.1\u003c/code\u003e to \u003ccode\u003e3.23.0\u003c/code\u003e [backport: release/v0.68] (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9949\"\u003e#9949\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/aquasecurity/trivy/blob/v0.68.2/CHANGELOG.md\"\u003eaquasecurity/trivy's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/compare/v0.68.1...v0.68.2\"\u003e0.68.2\u003c/a\u003e (2025-12-16)\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump alpine from \u003ccode\u003e3.22.1\u003c/code\u003e to \u003ccode\u003e3.23.0\u003c/code\u003e [backport: release/v0.68] (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9949\"\u003e#9949\u003c/a\u003e) (\u003ca href=\"https://github.com/aquasecurity/trivy/commit/db2894561daa20301eb144cad467d75d8a3d2647\"\u003edb28945\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/0c40a8d4b9b943f1b679a20f8ba3cb61c94831de\"\u003e\u003ccode\u003e0c40a8d\u003c/code\u003e\u003c/a\u003e release: v0.68.2 [release/v0.68] (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9950\"\u003e#9950\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/db2894561daa20301eb144cad467d75d8a3d2647\"\u003e\u003ccode\u003edb28945\u003c/code\u003e\u003c/a\u003e fix(deps): bump alpine from \u003ccode\u003e3.22.1\u003c/code\u003e to \u003ccode\u003e3.23.0\u003c/code\u003e [backport: release/v0.68] (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aquasecurity/trivy/commit/dc28f242809c076e63527866f44ad3d6b5229e80\"\u003e\u003ccode\u003edc28f24\u003c/code\u003e\u003c/a\u003e ci: enable \u003ccode\u003echeck-latest\u003c/code\u003e for \u003ccode\u003esetup-go\u003c/code\u003e [backport: release/v0.68] (\u003ca href=\"https://redirect.github.com/aquasecurity/trivy/issues/9946\"\u003e#9946\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/aquasecurity/trivy/compare/v0.68.1...v0.68.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/actions-marketplace-validations/super-linter_super-linter/pull/168","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/actions-marketplace-validations%2Fsuper-linter_super-linter/issues/168","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/168/packages"}},{"old_version":"1.1.9","new_version":"1.14.3","update_type":"minor","path":null,"pr_created_at":"2025-12-22T00:01:34.000Z","version_change":"1.1.9 → 1.14.3","issue":{"uuid":"3751779924","node_id":"PR_kwDOFQcaxs66CVkn","number":2506,"state":"open","title":"Bump hashicorp/terraform from 1.1.9 to 1.14.3","user":"dependabot[bot]","labels":["dependencies","docker","O: stale 🤖"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-12-22T00:01:34.000Z","updated_at":"2026-02-27T02:00:19.574Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/terraform","old_version":"1.1.9","new_version":"1.14.3","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.1.9 to 1.14.3.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.1.9\u0026new-version=1.14.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/23andMe/super-linter/pull/2506","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/23andMe%2Fsuper-linter/issues/2506","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2506/packages"}},{"old_version":"1.12.2","new_version":"1.14.1","update_type":"minor","path":null,"pr_created_at":"2025-12-08T21:11:22.000Z","version_change":"1.12.2 → 1.14.1","issue":{"uuid":"3708033507","node_id":"PR_kwDOMe3dxs63xIrg","number":1261,"state":"open","title":"deps(docker): bump hashicorp/terraform from 1.12.2 to 1.14.1","user":"dependabot[bot]","labels":["dependencies","docker","O: stale 🤖"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-12-08T21:11:22.000Z","updated_at":"2026-01-15T00:52:12.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker)","packages":[{"name":"hashicorp/terraform","old_version":"1.12.2","new_version":"1.14.1","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.12.2 to 1.14.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.12.2\u0026new-version=1.14.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Vimlendu27/super-linter/pull/1261","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Vimlendu27%2Fsuper-linter/issues/1261","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1261/packages"}},{"old_version":"1.9.5","new_version":"1.14.1","update_type":"minor","path":"/tools/dplsh","pr_created_at":"2025-12-04T04:02:44.000Z","version_change":"1.9.5 → 1.14.1","issue":{"uuid":"3692773142","node_id":"PR_kwDOF62svs6297fi","number":943,"state":"closed","title":"Bump hashicorp/terraform from 1.9.5 to 1.14.1 in /tools/dplsh","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-12T04:03:14.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-04T04:02:44.000Z","updated_at":"2025-12-12T04:03:16.000Z","time_to_close":691230,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/terraform","old_version":"1.9.5","new_version":"1.14.1","repository_url":null}],"path":"/tools/dplsh","ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.9.5 to 1.14.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.9.5\u0026new-version=1.14.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/danskernesdigitalebibliotek/dpl-platform/pull/943","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/danskernesdigitalebibliotek%2Fdpl-platform/issues/943","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/943/packages"}},{"old_version":"1.10.5","new_version":"1.14.1","update_type":"minor","path":null,"pr_created_at":"2025-12-03T22:01:37.000Z","version_change":"1.10.5 → 1.14.1","issue":{"uuid":"3692069354","node_id":"PR_kwDOE6qsZs627lz1","number":175,"state":"closed","title":"build(deps): bump hashicorp/terraform from 1.10.5 to 1.14.1","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-11T22:01:17.000Z","author_association":null,"state_reason":null,"created_at":"2025-12-03T22:01:37.000Z","updated_at":"2025-12-11T22:01:20.000Z","time_to_close":691180,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"hashicorp/terraform","old_version":"1.10.5","new_version":"1.14.1","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.10.5 to 1.14.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.10.5\u0026new-version=1.14.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/SumoLogic/sumologic-kubernetes-setup/pull/175","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/SumoLogic%2Fsumologic-kubernetes-setup/issues/175","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/175/packages"}},{"old_version":"1.13.5","new_version":"1.14.0","update_type":"minor","path":null,"pr_created_at":"2025-11-24T18:17:47.000Z","version_change":"1.13.5 → 1.14.0","issue":{"uuid":"3660014769","node_id":"PR_kwDODftaC861QiIn","number":738,"state":"closed","title":"build(deps): Bump hashicorp/terraform from 1.13.5 to 1.14.0","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-12-08T18:00:51.000Z","author_association":null,"state_reason":null,"created_at":"2025-11-24T18:17:47.000Z","updated_at":"2025-12-08T18:00:53.000Z","time_to_close":1208584,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","packages":[{"name":"hashicorp/terraform","old_version":"1.13.5","new_version":"1.14.0","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/terraform from 1.13.5 to 1.14.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/terraform\u0026package-manager=docker\u0026previous-version=1.13.5\u0026new-version=1.14.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/lorengordon/tardigrade-ci/pull/738","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/lorengordon%2Ftardigrade-ci/issues/738","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/738/packages"}},{"old_version":"1.13.5","new_version":"1.14.0","update_type":"minor","path":null,"pr_created_at":"2025-11-24T14:18:18.000Z","version_change":"1.13.5 → 1.14.0","issue":{"uuid":"3659121906","node_id":"PR_kwDODOjFv861Nge4","number":7235,"state":"closed","title":"deps(docker): bump the docker group across 1 directory with 12 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-11-28T07:29:46.000Z","author_association":null,"state_reason":null,"created_at":"2025-11-24T14:18:18.000Z","updated_at":"2025-11-28T07:29:48.000Z","time_to_close":321088,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(docker): bump","group_name":"docker","update_count":12,"packages":[{"name":"alpine/terragrunt","old_version":"1.13.4","new_version":"1.14.0"},{"name":"terraform-linters/tflint","old_version":"v0.59.1","new_version":"v0.60.0","repository_url":"https://github.com/terraform-linters/tflint"},{"name":"alpine/helm","old_version":"3.19.0","new_version":"4.0.0"},{"name":"golangci/golangci-lint","old_version":"v2.6.1","new_version":"v2.6.2"},{"name":"kustomize/kustomize","old_version":"v5.7.1","new_version":"v5.8.0"},{"name":"hashicorp/terraform","old_version":"1.13.5","new_version":"1.14.0"},{"name":"mstruebing/editorconfig-checker","old_version":"v3.4.1","new_version":"v3.5.0"},{"name":"rhysd/actionlint","old_version":"1.7.8","new_version":"1.7.9"},{"name":"zricethezav/gitleaks","old_version":"v8.29.0","new_version":"v8.29.1"},{"name":"dart","old_version":"3.9.4-sdk","new_version":"3.10.1-sdk"},{"name":"dotnet/sdk","old_version":"9.0.306-alpine3.22","new_version":"10.0.100-alpine3.22"},{"name":"composer/composer","old_version":"2.8.12","new_version":"2.9.2"}],"path":null,"ecosystem":"docker"},"body":"Bumps the docker group with 12 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| alpine/terragrunt | `1.13.4` | `1.14.0` |\n| [terraform-linters/tflint](https://github.com/terraform-linters/tflint) | `v0.59.1` | `v0.60.0` |\n| alpine/helm | `3.19.0` | `4.0.0` |\n| golangci/golangci-lint | `v2.6.1` | `v2.6.2` |\n| kustomize/kustomize | `v5.7.1` | `v5.8.0` |\n| hashicorp/terraform | `1.13.5` | `1.14.0` |\n| mstruebing/editorconfig-checker | `v3.4.1` | `v3.5.0` |\n| rhysd/actionlint | `1.7.8` | `1.7.9` |\n| zricethezav/gitleaks | `v8.29.0` | `v8.29.1` |\n| dart | `3.9.4-sdk` | `3.10.1-sdk` |\n| dotnet/sdk | `9.0.306-alpine3.22` | `10.0.100-alpine3.22` |\n| composer/composer | `2.8.12` | `2.9.2` |\n\n\nUpdates `alpine/terragrunt` from 1.13.4 to 1.14.0\n\nUpdates `terraform-linters/tflint` from v0.59.1 to v0.60.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/terraform-linters/tflint/releases\"\u003eterraform-linters/tflint's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.60.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eThis release introduces a new configuration file format: \u003ccode\u003e.tflint.json\u003c/code\u003e. This is useful for workflows such as automatically generating configuration files.\nPlease note that in order to use the \u003ccode\u003e.tflint.json\u003c/code\u003e, enabled plugins must be built with SDK v0.23+.\u003c/p\u003e\n\u003cp\u003eFrom this release, Cosign signatures (\u003ccode\u003echecksums.txt.keyless.sig\u003c/code\u003e and \u003ccode\u003echecksums.txt.pem\u003c/code\u003e) are deprecated. They will not be included in future releases. If your installation scripts depend on them, please migrate to \u003ccode\u003egh attestation verify\u003c/code\u003e.\u003c/p\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd JSON configuration file support by \u003ca href=\"https://github.com/rorychatterton\"\u003e\u003ccode\u003e@​rorychatterton\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2391\"\u003eterraform-linters/tflint#2391\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReport structured errors in JUnit and CheckStyle XML formatters by \u003ca href=\"https://github.com/bendrucker\"\u003e\u003ccode\u003e@​bendrucker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2407\"\u003eterraform-linters/tflint#2407\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAlphabetize rulesets in version output by \u003ca href=\"https://github.com/bendrucker\"\u003e\u003ccode\u003e@​bendrucker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2404\"\u003eterraform-linters/tflint#2404\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erelease: Pin Cosign version and deprecate Cosign signatures by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2405\"\u003eterraform-linters/tflint#2405\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix: only read TF_VAR for root module by \u003ca href=\"https://github.com/bendrucker\"\u003e\u003ccode\u003e@​bendrucker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2413\"\u003eterraform-linters/tflint#2413\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): Bump actions/attest-build-provenance from 2.4.0 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2376\"\u003eterraform-linters/tflint#2376\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump actions/setup-go from 5.5.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2377\"\u003eterraform-linters/tflint#2377\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump the go-x group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2378\"\u003eterraform-linters/tflint#2378\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/spf13/afero from 1.14.0 to 1.15.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2380\"\u003eterraform-linters/tflint#2380\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/zclconf/go-cty from 1.16.4 to 1.17.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2379\"\u003eterraform-linters/tflint#2379\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/net from 0.43.0 to 0.44.0 in the go-x group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2381\"\u003eterraform-linters/tflint#2381\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/grpc from 1.75.0 to 1.75.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2382\"\u003eterraform-linters/tflint#2382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/sigstore/sigstore-go from 1.1.1 to 1.1.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2383\"\u003eterraform-linters/tflint#2383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump sigstore/cosign-installer from 3.9.2 to 3.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2384\"\u003eterraform-linters/tflint#2384\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump mislav/bump-homebrew-formula-action from 3.5 to 3.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2388\"\u003eterraform-linters/tflint#2388\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(script): GitHub API rate limit by \u003ca href=\"https://github.com/Sander0542\"\u003e\u003ccode\u003e@​Sander0542\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2390\"\u003eterraform-linters/tflint#2390\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump tflint-plugin-sdk to v0.23.0 by \u003ca href=\"https://github.com/wata727\"\u003e\u003ccode\u003e@​wata727\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2393\"\u003eterraform-linters/tflint#2393\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/sigstore/sigstore-go from 1.1.2 to 1.1.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2394\"\u003eterraform-linters/tflint#2394\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/login-action from 3.5.0 to 3.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2395\"\u003eterraform-linters/tflint#2395\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump the go-x group with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2397\"\u003eterraform-linters/tflint#2397\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/grpc from 1.75.1 to 1.76.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2398\"\u003eterraform-linters/tflint#2398\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump sigstore/cosign-installer from 3.10.0 to 4.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2399\"\u003eterraform-linters/tflint#2399\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/net from 0.45.0 to 0.46.0 in the go-x group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2400\"\u003eterraform-linters/tflint#2400\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/terraform-linters/tflint-plugin-sdk from 0.23.0 to 0.23.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2402\"\u003eterraform-linters/tflint#2402\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golangci/golangci-lint-action from 8.0.0 to 9.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2408\"\u003eterraform-linters/tflint#2408\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/metadata-action from 5.8.0 to 5.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2409\"\u003eterraform-linters/tflint#2409\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/oauth2 from 0.32.0 to 0.33.0 in the go-x group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2410\"\u003eterraform-linters/tflint#2410\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Sander0542\"\u003e\u003ccode\u003e@​Sander0542\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2390\"\u003eterraform-linters/tflint#2390\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rorychatterton\"\u003e\u003ccode\u003e@​rorychatterton\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/terraform-linters/tflint/pull/2391\"\u003eterraform-linters/tflint#2391\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/terraform-linters/tflint/compare/v0.59.1...v0.60.0\"\u003ehttps://github.com/terraform-linters/tflint/compare/v0.59.1...v0.60.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/c932c4d51c367257ba67d7a57abe1b319dab437f\"\u003e\u003ccode\u003ec932c4d\u003c/code\u003e\u003c/a\u003e Bump up version to v0.60.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/c132acc7329c8f3c154874fb21e99a1527520400\"\u003e\u003ccode\u003ec132acc\u003c/code\u003e\u003c/a\u003e Bump Go patch version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/26c49c415b90b222051d7117e42718ff7157d423\"\u003e\u003ccode\u003e26c49c4\u003c/code\u003e\u003c/a\u003e fix: only read TF_VAR environment variables for root module (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2413\"\u003e#2413\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/09a61cf8bc6193f321b7cb162783c0b2e26b084a\"\u003e\u003ccode\u003e09a61cf\u003c/code\u003e\u003c/a\u003e build(deps): Bump golang.org/x/oauth2 in the go-x group (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2410\"\u003e#2410\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/25059cf529eb9c97559ad8cdd8081d71279a61fa\"\u003e\u003ccode\u003e25059cf\u003c/code\u003e\u003c/a\u003e build(deps): Bump docker/metadata-action from 5.8.0 to 5.9.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2409\"\u003e#2409\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/9da1a586203ec3bbdce0a0d7b84d9b4e737f1674\"\u003e\u003ccode\u003e9da1a58\u003c/code\u003e\u003c/a\u003e build(deps): Bump golangci/golangci-lint-action from 8.0.0 to 9.0.0 (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2408\"\u003e#2408\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/63d5d8ab3bf2deb841d7f07381ea1b548d6cc938\"\u003e\u003ccode\u003e63d5d8a\u003c/code\u003e\u003c/a\u003e Report structured errors in JUnit and CheckStyle XML formatters (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2407\"\u003e#2407\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/38cab0564d1cd2b13b550cc37fe64f7efc4c8579\"\u003e\u003ccode\u003e38cab05\u003c/code\u003e\u003c/a\u003e Add JSON configuration file support (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2391\"\u003e#2391\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/3bc0bfa3b49cbe3ed6d597cf1e59c2c9383414aa\"\u003e\u003ccode\u003e3bc0bfa\u003c/code\u003e\u003c/a\u003e Pin Cosign version and deprecate Cosign signatures (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2405\"\u003e#2405\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/terraform-linters/tflint/commit/56b6432c25f577a1ab155b2125f57a3ef941ac5f\"\u003e\u003ccode\u003e56b6432\u003c/code\u003e\u003c/a\u003e Alphabetize rulesets in version output (\u003ca href=\"https://redirect.github.com/terraform-linters/tflint/issues/2404\"\u003e#2404\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/terraform-linters/tflint/compare/v0.59.1...v0.60.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `alpine/helm` from 3.19.0 to 4.0.0\n\nUpdates `golangci/golangci-lint` from v2.6.1 to v2.6.2\n\nUpdates `kustomize/kustomize` from v5.7.1 to v5.8.0\n\nUpdates `hashicorp/terraform` from 1.13.5 to 1.14.0\n\nUpdates `mstruebing/editorconfig-checker` from v3.4.1 to v3.5.0\n\nUpdates `rhysd/actionlint` from 1.7.8 to 1.7.9\n\nUpdates `zricethezav/gitleaks` from v8.29.0 to v8.29.1\n\nUpdates `dart` from 3.9.4-sdk to 3.10.1-sdk\n\nUpdates `dotnet/sdk` from 9.0.306-alpine3.22 to 10.0.100-alpine3.22\n\nUpdates `composer/composer` from 2.8.12 to 2.9.2\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/super-linter/super-linter/pull/7235","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/super-linter%2Fsuper-linter/issues/7235","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7235/packages"}}]}