Release MegaLinter v8.3.0

oxsecurity · Nov 23, 2024 · 1fc052d · 1fc052d
1 parent e8a20cd
commit 1fc052d
Show file tree

Hide file tree

Showing 168 changed files with 2,934 additions and 2,931 deletions.
diff --git a/.github/workflows/deploy-RELEASE-linters.yml b/.github/workflows/deploy-RELEASE-linters.yml
@@ -44,7 +44,6 @@ jobs:
       name: release
     strategy:
       fail-fast: false
-      max-parallel: 10
       matrix:
         os: [ubuntu-latest]
         # linters-start

diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -9,57 +9,61 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 Note: Can be used with `oxsecurity/megalinter@beta` in your GitHub Action mega-linter.yml file, or with `oxsecurity/megalinter:beta` docker image
 
 - Core
-  - Display command log (truncated to 250 chars) even when LOG_LEVEL is not DEBUG
-  - Allow to replace an ENV var value with the value of another ENV var before calling a PRE_COMMAND (helps for tflint run from GitHub Enterprise)
 
 - New linters
 
 - Media
 
 - Linters enhancements
-  - [csharpier](https://megalinter.io/latest/descriptors/csharp_csharpier/): Since v0.30, call linter using `csharpier`, not dotnet-csharpier
-  - [csharpier](https://megalinter.io/latest/descriptors/csharp_csharpier/): They reverted v0.30 in v0.31, so we revert it too
 
 - Fixes
-  - [trivy](https://megalinter.io/latest/descriptors/repository_trivy/): retry in case of BLOB_UNKNOWN  while downloading vulnerability list
 
 - Reporters
-  - Fix UpdatedSourcesReporter when `APPLY_FIXES` is list (array)
-  - Fix AzureCommentReporter when the repo is not found: fallback using BUILD_REPOSITORY_ID. (+ disable space replacement in repo name with `AZURE_COMMENT_REPORTER_REPLACE_WITH_SPACES: false`)
 
 - Doc
 
 - Flavors
 
 - CI
-  - Fix Docker mirroring job for release context
 
 - mega-linter-runner
 
-- Linter versions upgrades (104)
-  - [phpstan](https://phpstan.org/) from 2.0.1 to **2.0.2** on 2024-11-17
-  - [checkov](https://www.checkov.io/) from 3.2.298 to **3.2.300** on 2024-11-17
-  - [csharpier](https://csharpier.com/) from 0.29.2 to **0.30.0** on 2024-11-17
-  - [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) from 1.19.0 to **1.20.0** on 2024-11-19
-  - [csharpier](https://csharpier.com/) from 0.30.0 to **0.30.1** on 2024-11-19
-  - [stylua](https://github.com/JohnnyMorganz/StyLua) from 0.20.0 to **2.0.0** on 2024-11-19
-  - [checkov](https://www.checkov.io/) from 3.2.300 to **3.2.301** on 2024-11-19
-  - [trivy-sbom](https://aquasecurity.github.io/trivy/) from 0.57.0 to **0.57.1** on 2024-11-19
-  - [trivy](https://aquasecurity.github.io/trivy/) from 0.57.0 to **0.57.1** on 2024-11-19
-  - [checkov](https://www.checkov.io/) from 3.2.301 to **3.2.303** on 2024-11-19
-  - [vale](https://vale.sh/) from 3.9.0 to **3.9.1** on 2024-11-19
-  - [spectral](https://docs.stoplight.io/docs/spectral/674b27b261c3c-overview) from 6.14.1 to **6.14.2** on 2024-11-19
-  - [checkov](https://www.checkov.io/) from 3.2.303 to **3.2.305** on 2024-11-19
-  - [checkov](https://www.checkov.io/) from 3.2.305 to **3.2.307** on 2024-11-20
-  - [checkov](https://www.checkov.io/) from 3.2.307 to **3.2.311** on 2024-11-21
-  - [syft](https://github.com/anchore/syft) from 1.16.0 to **1.17.0** on 2024-11-21
-  - [trufflehog](https://github.com/trufflesecurity/trufflehog) from 3.83.7 to **3.84.0** on 2024-11-22
-  - [ruff](https://github.com/astral-sh/ruff) from 0.7.4 to **0.8.0** on 2024-11-22
-  - [csharpier](https://csharpier.com/) from 0.30.1 to **0.30.2** on 2024-11-23
-  - [trufflehog](https://github.com/trufflesecurity/trufflehog) from 3.84.0 to **3.84.1** on 2024-11-23
-  - [markdownlint](https://github.com/DavidAnson/markdownlint) from 0.42.0 to **0.43.0** on 2024-11-23
+- Linter versions upgrades (N)
 <!-- linter-versions-end -->
 
+## [v8.3.0] - 2024-11-23
+
+- Core
+  - Display command log (truncated to 250 chars) even when LOG_LEVEL is not DEBUG
+  - Allow to replace an ENV var value with the value of another ENV var before calling a PRE_COMMAND (helps for tflint run from GitHub Enterprise)
+  - Fix handling of git submodule paths
+
+- Fixes
+  - [trivy](https://megalinter.io/latest/descriptors/repository_trivy/): retry in case of BLOB_UNKNOWN  while downloading vulnerability list
+
+- Reporters
+  - Fix UpdatedSourcesReporter when `APPLY_FIXES` is list (array)
+  - Fix AzureCommentReporter when the repo is not found: fallback using BUILD_REPOSITORY_ID. (+ disable space replacement in repo name with `AZURE_COMMENT_REPORTER_REPLACE_WITH_SPACES: false`)
+
+- CI
+  - Fix Docker mirroring job for release context
+  - Remove max parallel jobs for release linters workflow
+
+- Linter versions upgrades (13)
+  - [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) from 1.19.0 to **1.20.0**
+  - [checkov](https://www.checkov.io/) from 3.2.298 to **3.2.311**
+  - [csharpier](https://csharpier.com/) from 0.29.2 to **0.30.2**
+  - [markdownlint](https://github.com/DavidAnson/markdownlint) from 0.42.0 to **0.43.0**
+  - [phpstan](https://phpstan.org/) from 2.0.1 to **2.0.2**
+  - [ruff](https://github.com/astral-sh/ruff) from 0.7.4 to **0.8.0**
+  - [spectral](https://docs.stoplight.io/docs/spectral/674b27b261c3c-overview) from 6.14.1 to **6.14.2**
+  - [stylua](https://github.com/JohnnyMorganz/StyLua) from 0.20.0 to **2.0.0**
+  - [syft](https://github.com/anchore/syft) from 1.16.0 to **1.17.0**
+  - [trivy-sbom](https://aquasecurity.github.io/trivy/) from 0.57.0 to **0.57.1**
+  - [trivy](https://aquasecurity.github.io/trivy/) from 0.57.0 to **0.57.1**
+  - [trufflehog](https://github.com/trufflesecurity/trufflehog) from 3.83.7 to **3.84.1**
+  - [vale](https://vale.sh/) from 3.9.0 to **3.9.1**
+
 ## [v8.2.0] - 2024-11-17
 
 - Media