Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

• Update dependency aws-sdk to v2.1409.0
• Update dependency com.google.guava:guava to v32.1.1-jre

Ignored or Blocked

These are blocked by an existing closed PR and will not be recreated unless you click a checkbox below.

• Update dependency org.apache.struts:struts2-core to v2.5.31 [SECURITY]
• Update dependency chokidar to v3.5.3
• Update dependency eslint to v8.44.0
• Update dependency gradle to v8.2
• Update dependency org.apache.struts:struts2-core to v2.5.31
• Update dependency Newtonsoft.Json to v13
• Update dependency org.apache.struts:struts2-core to v6

Detected dependencies

cargo

rust/Cargo.toml

• chrono 0.4.26

dockerfile

docker/Dockerfile

• openjdk 21-jdk

github-actions

.github/workflows/cve-scanning-docker.yml

• actions/checkout v3
• crazy-max/ghaction-container-scan v2

.github/workflows/cve-scanning-dotnet.yml

• actions/checkout v3
• actions/setup-dotnet v3

.github/workflows/cve-scanning-gradle.yml

• actions/checkout v3
• actions/setup-java v3

.github/workflows/cve-scanning-maven.yml

• actions/checkout v3
• actions/setup-java v3

.github/workflows/cve-scanning-node.yml

• actions/checkout v3
• actions/setup-node v3

.github/workflows/cve-scanning-python.yml

• actions/checkout v3
• actions/setup-python v4
• abatilo/actions-poetry v2

.github/workflows/cve-scanning-rust.yml

• actions/checkout v3
• actions-rs/toolchain v1

.github/workflows/cve-scanning-scala.yml

• actions/checkout v3
• actions/setup-java v3

.github/workflows/license-scanning-maven.yml

• actions/checkout v3
• actions/setup-java v3
• actions/upload-artifact v3
• actions/upload-artifact v3

.github/workflows/license-scanning-node.yml

• actions/checkout v3
• actions/setup-node v3

.github/workflows/license-scanning-python.yml

• actions/checkout v3
• actions/setup-python v4

.github/workflows/semgrep-ci.yml

• actions/checkout v3

.github/workflows/semgrep.yml

• actions/checkout v3

gradle

gradle/build.gradle

• org.owasp:dependency-check-gradle 8.3.1
• com.google.guava:guava 32.0.1-jre
• joda-time:joda-time 2.12.5
• org.apache.struts:struts2-core 2.3.8
• junit:junit 4.13.2

gradle-wrapper

gradle/gradle/wrapper/gradle-wrapper.properties

• gradle 8.1.1

maven

maven/pom.xml

• joda-time:joda-time 2.12.5
• org.apache.struts:struts2-core 2.3.8
• org.apache.maven.plugins:maven-shade-plugin 3.5.0

npm

node/package.json

• aws-sdk ^2.149.0
• handlebars ^4.4.2
• is_js ^0.9.0
• jsonwebtoken ^9.0.0
• parse-github-url ^1.0.0
• uuid ^9.0.0
• chokidar 3.0.0
• dotenv 16.3.1
• eslint 8.43.0
• eslint-plugin-prettier 4.2.1
• jasmine 5.0.2
• jasmine-spec-reporter 7.0.0
• mock-require 3.0.3
• node-license-validator 1.3.2
• prettier 2.8.8
• serverless 3.33.0
• xml2js 0.6.0
• glob-parent 6.0.2

nuget

dotnet/sample.csproj

• Newtonsoft.Json 12.0.3

poetry

python/pyproject.toml

• colorama ^0.4.5
• insecure-package 0.1.0
• safety 2.3.5

sbt

scala/build.sbt

• org.apache.struts:struts2-core 2.3.8

scala/project/build.properties

• sbt/sbt 1.9.1

scala/project/giter8.sbt

• org.foundweekends.giter8:sbt-giter8 0.16.2

scala/project/plugins.sbt

• net.vonbuchholtz:sbt-dependency-check 5.1.0

scala/src/main/g8/build.sbt

• scala 2.13.11
• org.scala-lang.modules:scala-parser-combinators 2.3.0

scala/src/main/g8/project/build.properties

• sbt/sbt 1.9.1

---

• Check this box to trigger a request for Renovate to run again on this repository