From 6bc218d5d05975765939ff68f912f9378c5a33f0 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 11 Nov 2024 18:19:36 +0000 Subject: [PATCH 1/5] Bump the npm-dependencies group across 1 directory with 4 updates Bumps the npm-dependencies group with 4 updates in the /sources directory: [@actions/cache](https://github.com/actions/toolkit/tree/HEAD/packages/cache), [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node), [eslint-plugin-jest](https://github.com/jest-community/eslint-plugin-jest) and [nock](https://github.com/nock/nock). Updates `@actions/cache` from 3.2.4 to 3.3.0 - [Changelog](https://github.com/actions/toolkit/blob/main/packages/cache/RELEASES.md) - [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/cache) Updates `@types/node` from 20.17.3 to 20.17.6 - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node) Updates `eslint-plugin-jest` from 28.8.3 to 28.9.0 - [Release notes](https://github.com/jest-community/eslint-plugin-jest/releases) - [Changelog](https://github.com/jest-community/eslint-plugin-jest/blob/main/CHANGELOG.md) - [Commits](https://github.com/jest-community/eslint-plugin-jest/compare/v28.8.3...v28.9.0) Updates `nock` from 13.5.5 to 13.5.6 - [Release notes](https://github.com/nock/nock/releases) - [Changelog](https://github.com/nock/nock/blob/main/CHANGELOG.md) - [Commits](https://github.com/nock/nock/compare/v13.5.5...v13.5.6) --- updated-dependencies: - dependency-name: "@actions/cache" dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm-dependencies - dependency-name: "@types/node" dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-dependencies - dependency-name: eslint-plugin-jest dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm-dependencies - dependency-name: nock dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm-dependencies ... Signed-off-by: dependabot[bot] --- sources/package-lock.json | 66 +++++++++++++++++++-------------------- sources/package.json | 8 ++--- 2 files changed, 36 insertions(+), 38 deletions(-) diff --git a/sources/package-lock.json b/sources/package-lock.json index 3b876b49..17744a7d 100644 --- a/sources/package-lock.json +++ b/sources/package-lock.json @@ -11,7 +11,7 @@ "license": "MIT", "dependencies": { "@actions/artifact": "2.1.11", - "@actions/cache": "3.2.4", + "@actions/cache": "3.3.0", "@actions/core": "1.11.1", "@actions/exec": "1.1.1", "@actions/github": "6.0.0", @@ -29,17 +29,17 @@ }, "devDependencies": { "@types/jest": "29.5.14", - "@types/node": "20.17.3", + "@types/node": "20.17.6", "@types/unzipper": "0.10.10", "@types/which": "3.0.4", "@typescript-eslint/parser": "7.18.0", "@vercel/ncc": "0.38.2", "eslint": "8.57.1", "eslint-plugin-github": "5.0.2", - "eslint-plugin-jest": "28.8.3", + "eslint-plugin-jest": "28.9.0", "jest": "29.7.0", "js-yaml": "4.1.0", - "nock": "13.5.5", + "nock": "13.5.6", "npm-run-all": "4.1.5", "patch-package": "8.0.0", "prettier": "3.3.3", @@ -199,11 +199,11 @@ } }, "node_modules/@actions/cache": { - "version": "3.2.4", - "resolved": "https://registry.npmjs.org/@actions/cache/-/cache-3.2.4.tgz", - "integrity": "sha512-RuHnwfcDagtX+37s0ZWy7clbOfnZ7AlDJQ7k/9rzt2W4Gnwde3fa/qjSjVuz4vLcLIpc7fUob27CMrqiWZytYA==", + "version": "3.3.0", + "resolved": "https://registry.npmjs.org/@actions/cache/-/cache-3.3.0.tgz", + "integrity": "sha512-+eCsMTIZUEm+QA9GqjollOhCdvRrZ1JV8d9Rp34zVNizBkYITO8dhKczP5Xps1dFzc5n59p7vYVtZrGt18bb5Q==", "dependencies": { - "@actions/core": "^1.10.0", + "@actions/core": "^1.11.1", "@actions/exec": "^1.0.1", "@actions/glob": "^0.1.0", "@actions/http-client": "^2.1.1", @@ -211,8 +211,7 @@ "@azure/abort-controller": "^1.1.0", "@azure/ms-rest-js": "^2.6.0", "@azure/storage-blob": "^12.13.0", - "semver": "^6.3.1", - "uuid": "^3.3.3" + "semver": "^6.3.1" } }, "node_modules/@actions/cache/node_modules/@actions/glob": { @@ -2373,9 +2372,9 @@ "dev": true }, "node_modules/@types/node": { - "version": "20.17.3", - "resolved": "https://registry.npmjs.org/@types/node/-/node-20.17.3.tgz", - "integrity": "sha512-tSQrmKKatLDGnG92h40GD7FzUt0MjahaHwOME4VAFeeA/Xopayq5qLyQRy7Jg/pjgKIFBXuKcGhJo+UdYG55jQ==", + "version": "20.17.6", + "resolved": "https://registry.npmjs.org/@types/node/-/node-20.17.6.tgz", + "integrity": "sha512-VEI7OdvK2wP7XHnsuXbAJnEpEkF6NjSN45QJlL4VGqZSXsnicpesdTWsg9RISeSdYd3yeRj/y3k5KGjUXYnFwQ==", "dependencies": { "undici-types": "~6.19.2" } @@ -4875,9 +4874,9 @@ } }, "node_modules/eslint-plugin-jest": { - "version": "28.8.3", - "resolved": "https://registry.npmjs.org/eslint-plugin-jest/-/eslint-plugin-jest-28.8.3.tgz", - "integrity": "sha512-HIQ3t9hASLKm2IhIOqnu+ifw7uLZkIlR7RYNv7fMcEi/p0CIiJmfriStQS2LDkgtY4nyLbIZAD+JL347Yc2ETQ==", + "version": "28.9.0", + "resolved": "https://registry.npmjs.org/eslint-plugin-jest/-/eslint-plugin-jest-28.9.0.tgz", + "integrity": "sha512-rLu1s1Wf96TgUUxSw6loVIkNtUjq1Re7A9QdCCHSohnvXEBAjuL420h0T/fMmkQlNsQP2GhQzEUpYHPfxBkvYQ==", "dev": true, "dependencies": { "@typescript-eslint/utils": "^6.0.0 || ^7.0.0 || ^8.0.0" @@ -7393,9 +7392,9 @@ } }, "node_modules/nock": { - "version": "13.5.5", - "resolved": "https://registry.npmjs.org/nock/-/nock-13.5.5.tgz", - "integrity": "sha512-XKYnqUrCwXC8DGG1xX4YH5yNIrlh9c065uaMZZHUoeUUINTOyt+x/G+ezYk0Ft6ExSREVIs+qBJDK503viTfFA==", + "version": "13.5.6", + "resolved": "https://registry.npmjs.org/nock/-/nock-13.5.6.tgz", + "integrity": "sha512-o2zOYiCpzRqSzPj0Zt/dQ/DqZeYoaQ7TUonc/xUPjCGl9WeHpNbxgVvOquXYAaJzI0M9BXV3HTzG0p8IUAbBTQ==", "dev": true, "dependencies": { "debug": "^4.1.0", @@ -9971,11 +9970,11 @@ } }, "@actions/cache": { - "version": "3.2.4", - "resolved": "https://registry.npmjs.org/@actions/cache/-/cache-3.2.4.tgz", - "integrity": "sha512-RuHnwfcDagtX+37s0ZWy7clbOfnZ7AlDJQ7k/9rzt2W4Gnwde3fa/qjSjVuz4vLcLIpc7fUob27CMrqiWZytYA==", + "version": "3.3.0", + "resolved": "https://registry.npmjs.org/@actions/cache/-/cache-3.3.0.tgz", + "integrity": "sha512-+eCsMTIZUEm+QA9GqjollOhCdvRrZ1JV8d9Rp34zVNizBkYITO8dhKczP5Xps1dFzc5n59p7vYVtZrGt18bb5Q==", "requires": { - "@actions/core": "^1.10.0", + "@actions/core": "^1.11.1", "@actions/exec": "^1.0.1", "@actions/glob": "^0.1.0", "@actions/http-client": "^2.1.1", @@ -9983,8 +9982,7 @@ "@azure/abort-controller": "^1.1.0", "@azure/ms-rest-js": "^2.6.0", "@azure/storage-blob": "^12.13.0", - "semver": "^6.3.1", - "uuid": "^3.3.3" + "semver": "^6.3.1" }, "dependencies": { "@actions/glob": { @@ -11687,9 +11685,9 @@ "dev": true }, "@types/node": { - "version": "20.17.3", - "resolved": "https://registry.npmjs.org/@types/node/-/node-20.17.3.tgz", - "integrity": "sha512-tSQrmKKatLDGnG92h40GD7FzUt0MjahaHwOME4VAFeeA/Xopayq5qLyQRy7Jg/pjgKIFBXuKcGhJo+UdYG55jQ==", + "version": "20.17.6", + "resolved": "https://registry.npmjs.org/@types/node/-/node-20.17.6.tgz", + "integrity": "sha512-VEI7OdvK2wP7XHnsuXbAJnEpEkF6NjSN45QJlL4VGqZSXsnicpesdTWsg9RISeSdYd3yeRj/y3k5KGjUXYnFwQ==", "requires": { "undici-types": "~6.19.2" } @@ -13464,9 +13462,9 @@ } }, "eslint-plugin-jest": { - "version": "28.8.3", - "resolved": "https://registry.npmjs.org/eslint-plugin-jest/-/eslint-plugin-jest-28.8.3.tgz", - "integrity": "sha512-HIQ3t9hASLKm2IhIOqnu+ifw7uLZkIlR7RYNv7fMcEi/p0CIiJmfriStQS2LDkgtY4nyLbIZAD+JL347Yc2ETQ==", + "version": "28.9.0", + "resolved": "https://registry.npmjs.org/eslint-plugin-jest/-/eslint-plugin-jest-28.9.0.tgz", + "integrity": "sha512-rLu1s1Wf96TgUUxSw6loVIkNtUjq1Re7A9QdCCHSohnvXEBAjuL420h0T/fMmkQlNsQP2GhQzEUpYHPfxBkvYQ==", "dev": true, "requires": { "@typescript-eslint/utils": "^6.0.0 || ^7.0.0 || ^8.0.0" @@ -15315,9 +15313,9 @@ } }, "nock": { - "version": "13.5.5", - "resolved": "https://registry.npmjs.org/nock/-/nock-13.5.5.tgz", - "integrity": "sha512-XKYnqUrCwXC8DGG1xX4YH5yNIrlh9c065uaMZZHUoeUUINTOyt+x/G+ezYk0Ft6ExSREVIs+qBJDK503viTfFA==", + "version": "13.5.6", + "resolved": "https://registry.npmjs.org/nock/-/nock-13.5.6.tgz", + "integrity": "sha512-o2zOYiCpzRqSzPj0Zt/dQ/DqZeYoaQ7TUonc/xUPjCGl9WeHpNbxgVvOquXYAaJzI0M9BXV3HTzG0p8IUAbBTQ==", "dev": true, "requires": { "debug": "^4.1.0", diff --git a/sources/package.json b/sources/package.json index bef16cc1..fcaaca1e 100644 --- a/sources/package.json +++ b/sources/package.json @@ -33,7 +33,7 @@ "license": "MIT", "dependencies": { "@actions/artifact": "2.1.11", - "@actions/cache": "3.2.4", + "@actions/cache": "3.3.0", "@actions/core": "1.11.1", "@actions/exec": "1.1.1", "@actions/github": "6.0.0", @@ -51,17 +51,17 @@ }, "devDependencies": { "@types/jest": "29.5.14", - "@types/node": "20.17.3", + "@types/node": "20.17.6", "@types/unzipper": "0.10.10", "@types/which": "3.0.4", "@typescript-eslint/parser": "7.18.0", "@vercel/ncc": "0.38.2", "eslint": "8.57.1", "eslint-plugin-github": "5.0.2", - "eslint-plugin-jest": "28.8.3", + "eslint-plugin-jest": "28.9.0", "jest": "29.7.0", "js-yaml": "4.1.0", - "nock": "13.5.5", + "nock": "13.5.6", "npm-run-all": "4.1.5", "patch-package": "8.0.0", "prettier": "3.3.3", From 93415e6645da4fec9562dfc5b946647dd8f3f463 Mon Sep 17 00:00:00 2001 From: daz Date: Mon, 11 Nov 2024 12:17:53 -0700 Subject: [PATCH 2/5] Update patch for actions/cache 3.3.0 --- .../{@actions+cache+3.2.4.patch => @actions+cache+3.3.0.patch} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename sources/patches/{@actions+cache+3.2.4.patch => @actions+cache+3.3.0.patch} (100%) diff --git a/sources/patches/@actions+cache+3.2.4.patch b/sources/patches/@actions+cache+3.3.0.patch similarity index 100% rename from sources/patches/@actions+cache+3.2.4.patch rename to sources/patches/@actions+cache+3.3.0.patch From b526f6673ba613cda12db32b26c732d68baa073c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 4 Nov 2024 23:39:31 +0000 Subject: [PATCH 3/5] Bump com.fasterxml.jackson.dataformat:jackson-dataformat-smile Bumps [com.fasterxml.jackson.dataformat:jackson-dataformat-smile](https://github.com/FasterXML/jackson-dataformats-binary) from 2.18.0 to 2.18.1. - [Commits](https://github.com/FasterXML/jackson-dataformats-binary/compare/jackson-dataformats-binary-2.18.0...jackson-dataformats-binary-2.18.1) --- updated-dependencies: - dependency-name: com.fasterxml.jackson.dataformat:jackson-dataformat-smile dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- sources/test/init-scripts/build.gradle | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/sources/test/init-scripts/build.gradle b/sources/test/init-scripts/build.gradle index eb77c532..e308b03b 100644 --- a/sources/test/init-scripts/build.gradle +++ b/sources/test/init-scripts/build.gradle @@ -20,7 +20,7 @@ dependencies { testImplementation ('io.ratpack:ratpack-groovy-test:1.9.0') { exclude group: 'org.codehaus.groovy', module: 'groovy-all' } - testImplementation 'com.fasterxml.jackson.dataformat:jackson-dataformat-smile:2.18.0' + testImplementation 'com.fasterxml.jackson.dataformat:jackson-dataformat-smile:2.18.1' } test { From c345cfbe93aced1af7acdcba523587d3a5703729 Mon Sep 17 00:00:00 2001 From: bigdaz <179734+bigdaz@users.noreply.github.com> Date: Mon, 11 Nov 2024 18:13:43 +0000 Subject: [PATCH 4/5] Update known wrapper checksums --- .../src/wrapper-validation/wrapper-checksums.json | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/sources/src/wrapper-validation/wrapper-checksums.json b/sources/src/wrapper-validation/wrapper-checksums.json index 4d8676f2..7eb6926e 100644 --- a/sources/src/wrapper-validation/wrapper-checksums.json +++ b/sources/src/wrapper-validation/wrapper-checksums.json @@ -1,4 +1,16 @@ [ + { + "version": "8.11", + "checksum": "2db75c40782f5e8ba1fc278a5574bab070adccb2d21ca5a6e5ed840888448046" + }, + { + "version": "8.11-rc-3", + "checksum": "2db75c40782f5e8ba1fc278a5574bab070adccb2d21ca5a6e5ed840888448046" + }, + { + "version": "8.11-rc-2", + "checksum": "2db75c40782f5e8ba1fc278a5574bab070adccb2d21ca5a6e5ed840888448046" + }, { "version": "8.11-rc-1", "checksum": "2db75c40782f5e8ba1fc278a5574bab070adccb2d21ca5a6e5ed840888448046" From f31476bde277b4d5aec579b5f2f44bdd2236a600 Mon Sep 17 00:00:00 2001 From: daz Date: Mon, 11 Nov 2024 12:15:03 -0700 Subject: [PATCH 5/5] Update test for real-world data This test assumed that at least one 'snapshot' wrapper checksum was unique, and not contained in the set of wrapper checksums for released distributions. This is no longer the case, so the assumption has been modified. --- sources/test/jest/wrapper-validation/checksums.test.ts | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/sources/test/jest/wrapper-validation/checksums.test.ts b/sources/test/jest/wrapper-validation/checksums.test.ts index b9d87c93..62f24787 100644 --- a/sources/test/jest/wrapper-validation/checksums.test.ts +++ b/sources/test/jest/wrapper-validation/checksums.test.ts @@ -37,7 +37,8 @@ test('fetches wrapper jar checksums for snapshots', async () => { const validChecksums = await checksums.fetchUnknownChecksums(true, new checksums.WrapperChecksums) // Expect that at least one snapshot checksum is different from the non-snapshot checksums - expect(validChecksums.size).toBeGreaterThan(nonSnapshotChecksums.size) + expect(nonSnapshotChecksums.size).toBeGreaterThan(10) + expect(validChecksums.size).toBeGreaterThanOrEqual(nonSnapshotChecksums.size) }) test('fetches all wrapper checksum URLS for snapshots', async () => {