docker/metadata-action
1
0
Fork 0
mirror of https://github.com/docker/metadata-action.git synced 2026-06-18 03:08:21 +01:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: docker:dependabot/github_actions/actions/checkout-6.0.3
Branches Tags
docker:master docker:dependabot/npm_and_yarn/csv-parse-7.0.0 docker:dependabot/github_actions/crazy-max-dot-github-a6a0ecf511 docker:dependabot/github_actions/github/codeql-action-4.36.2 docker:dependabot/npm_and_yarn/semver-7.8.2 docker:dependabot/github_actions/codecov/codecov-action-7.0.0 docker:dependabot/github_actions/actions/checkout-6.0.3 docker:releases/v5 docker:releases/v4 docker:releases/v3 docker:releases/v2 docker:releases/v1
docker:v6.1.0 docker:v6 docker:v6.0.0 docker:v5.10.0 docker:v5 docker:v5.9.0 docker:v5.8.0 docker:v5.7.0 docker:v5.6.1 docker:v5.6.0 docker:v5.5.1 docker:v5.5.0 docker:v5.4.0 docker:v5.3.0 docker:v5.2.0 docker:v5.1.0 docker:v5.0.0 docker:v4 docker:v4.6.0 docker:v4.5.0 docker:v4.4.0 docker:v4.3.0 docker:v4.2.0 docker:v4.1.1 docker:v4.1.0 docker:v4.0.1 docker:v4.0.0 docker:v3 docker:v3.8.0 docker:v3.7.0 docker:v3.6.2 docker:v3.6.1 docker:v3.6.0 docker:v3.5.0 docker:v3.4.1 docker:v3.4.0 docker:v3.3.0 docker:v3.2.0 docker:v3.1.0 docker:v3.0.0 docker:v2 docker:v2.5.0 docker:v2.4.0 docker:v2.3.0 docker:v2.2.1 docker:v2.2.0 docker:v2.1.1 docker:v2.1.0 docker:v2.0.0 docker:v1 docker:v1.12.0 docker:v1.11.0 docker:v1.10.1 docker:v1.10.0 docker:v1.9.1 docker:v1.9.0 docker:v1.8.5 docker:v1.8.4 docker:v1.8.3 docker:v1.8.2 docker:v1.8.1 docker:v1.8.0 docker:v1.7.0 docker:v1.6.0 docker:v1.5.0 docker:v1.4.0 docker:v1.3.0 docker:v1.2.0 docker:v1.1.0 docker:v1.0.0
..
compare: docker:dependabot/npm_and_yarn/csv-parse-7.0.0
Branches Tags
docker:dependabot/npm_and_yarn/csv-parse-7.0.0 docker:dependabot/github_actions/crazy-max-dot-github-a6a0ecf511 docker:master docker:dependabot/github_actions/github/codeql-action-4.36.2 docker:dependabot/npm_and_yarn/semver-7.8.2 docker:dependabot/github_actions/codecov/codecov-action-7.0.0 docker:dependabot/github_actions/actions/checkout-6.0.3 docker:releases/v5 docker:releases/v4 docker:releases/v3 docker:releases/v2 docker:releases/v1
docker:v6.1.0 docker:v6 docker:v6.0.0 docker:v5.10.0 docker:v5 docker:v5.9.0 docker:v5.8.0 docker:v5.7.0 docker:v5.6.1 docker:v5.6.0 docker:v5.5.1 docker:v5.5.0 docker:v5.4.0 docker:v5.3.0 docker:v5.2.0 docker:v5.1.0 docker:v5.0.0 docker:v4 docker:v4.6.0 docker:v4.5.0 docker:v4.4.0 docker:v4.3.0 docker:v4.2.0 docker:v4.1.1 docker:v4.1.0 docker:v4.0.1 docker:v4.0.0 docker:v3 docker:v3.8.0 docker:v3.7.0 docker:v3.6.2 docker:v3.6.1 docker:v3.6.0 docker:v3.5.0 docker:v3.4.1 docker:v3.4.0 docker:v3.3.0 docker:v3.2.0 docker:v3.1.0 docker:v3.0.0 docker:v2 docker:v2.5.0 docker:v2.4.0 docker:v2.3.0 docker:v2.2.1 docker:v2.2.0 docker:v2.1.1 docker:v2.1.0 docker:v2.0.0 docker:v1 docker:v1.12.0 docker:v1.11.0 docker:v1.10.1 docker:v1.10.0 docker:v1.9.1 docker:v1.9.0 docker:v1.8.5 docker:v1.8.4 docker:v1.8.3 docker:v1.8.2 docker:v1.8.1 docker:v1.8.0 docker:v1.7.0 docker:v1.6.0 docker:v1.5.0 docker:v1.4.0 docker:v1.3.0 docker:v1.2.0 docker:v1.1.0 docker:v1.0.0

4 Commits
dependabot ... dependabot

Author SHA1 Message Date
github-actions[bot]
ff27496c7d chore: update generated content 2026-06-17 19:24:43 +00:00
dependabot[bot]
5d1a5d3981 chore(deps): Bump csv-parse from 6.2.1 to 7.0.0 
Bumps [csv-parse](https://github.com/adaltas/node-csv/tree/HEAD/packages/csv-parse) from 6.2.1 to 7.0.0.
- [Changelog](https://github.com/adaltas/node-csv/blob/master/packages/csv-parse/CHANGELOG.md)
- [Commits](https://github.com/adaltas/node-csv/commits/csv-parse@7.0.0/packages/csv-parse)

---
updated-dependencies:
- dependency-name: csv-parse
  dependency-version: 7.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-06-17 19:23:38 +00:00
temenuzhka-thede
020b7354dd Merge pull request #682 from docker/sec-cli/npm-ci-20260612-184903 
fix: replace npm install with npm ci (20260612-184903)
 2026-06-12 14:10:33 -05:00
securityeng-bot[bot]
7f842e879c fix: use lockfile-aware install commands 2026-06-12 18:49:05 +00:00
12 changed files with 182 additions and 171 deletions
Expand all files Collapse all files

40
.github/workflows/ci.yml vendored
View File

@@ -34,7 +34,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Docker meta
uses: ./
@@ -46,7 +46,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -83,7 +83,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -119,7 +119,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -153,7 +153,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -184,7 +184,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -207,7 +207,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -228,7 +228,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -258,7 +258,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -288,7 +288,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -323,7 +323,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -371,7 +371,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -416,7 +416,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -444,7 +444,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -483,7 +483,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Docker meta
id: meta
@@ -507,7 +507,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -548,7 +548,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -574,7 +574,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -607,7 +607,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Set up Docker Buildx
uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4.1.0
@@ -631,7 +631,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Dump context
uses: crazy-max/ghaction-dump-context@4d9eeaf15dd59aa4346919ea84a84ccf514b4db8 # v3.1.0

2
.github/workflows/codeql.yml vendored
View File

@@ -22,7 +22,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Enable corepack
run: |

2
.github/workflows/publish.yml vendored
View File

@@ -22,7 +22,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Publish
uses: actions/publish-immutable-action@4bc8754ffc40f27910afb20287dbbbb675a4e978 # v0.0.4

2
.github/workflows/test.yml vendored
View File

@@ -20,7 +20,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Test
uses: docker/bake-action@6614cfa25eff9a0b2b2697efb0b6159e7680d584 # v7.2.0

2
.github/workflows/update-dist.yml vendored
View File

@@ -30,7 +30,7 @@ jobs:
permission-contents: write
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
ref: ${{ github.event.pull_request.head.ref }}
fetch-depth: 0

2
.github/workflows/validate.yml vendored
View File

@@ -22,7 +22,7 @@ jobs:
steps:
-
name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
name: Generate matrix
id: generate

2
dev.Dockerfile
View File

@@ -17,7 +17,7 @@ FROM base AS deps
RUN --mount=type=bind,target=.,rw \
--mount=type=cache,target=/src/.yarn/cache \
--mount=type=cache,target=/src/node_modules \
yarn install && mkdir /vendor && cp yarn.lock /vendor
yarn install --immutable && mkdir /vendor && cp yarn.lock /vendor
FROM scratch AS vendor-update
COPY --from=deps /vendor /

277
dist/index.cjs generated vendored
View File

File diff suppressed because one or more lines are too long

8
dist/index.cjs.map generated vendored
View File

File diff suppressed because one or more lines are too long

5
dist/licenses.txt generated vendored
View File

@@ -4969,11 +4969,12 @@ THE SOFTWARE.
-----------
The following npm package may be included in this product:
The following npm packages may be included in this product:
- csv-parse@6.2.1
- csv-parse@7.0.0
This package contains the following license:
These packages each contain the following license:
The MIT License (MIT)

2
package.json
View File

@@ -29,7 +29,7 @@
"@actions/github": "^9.1.1",
"@docker/actions-toolkit": "^0.91.0",
"@renovate/pep440": "^1.0.0",
"csv-parse": "^6.2.1",
"csv-parse": "^7.0.0",
"handlebars": "^4.7.9",
"moment": "^2.30.1",
"moment-timezone": "^0.6.2",

9
yarn.lock
View File

@@ -2838,6 +2838,13 @@ __metadata:
languageName: node
linkType: hard
"csv-parse@npm:^7.0.0":
version: 7.0.0
resolution: "csv-parse@npm:7.0.0"
checksum: 10/53c96e6b4ff80047713bb4d2967d06495890d4b628284a80271860be089fdb5a74cd97c76fd535a00ad26b11cc6e4fc5a243658e5377c0a6334ddd104620d169
languageName: node
linkType: hard
"debug@npm:4, debug@npm:^4.3.1, debug@npm:^4.3.2, debug@npm:^4.3.4":
version: 4.3.4
resolution: "debug@npm:4.3.4"
@@ -2893,7 +2900,7 @@ __metadata:
"@typescript-eslint/parser": "npm:^8.56.1"
"@vitest/coverage-v8": "npm:^4.0.18"
"@vitest/eslint-plugin": "npm:^1.6.9"
csv-parse: "npm:^6.2.1"
csv-parse: "npm:^7.0.0"
dotenv: "npm:^17.3.1"
esbuild: "npm:^0.28.0"
eslint: "npm:^9.39.3"