Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Abandoned Dependencies

Note

Packages are marked as abandoned when they exceed the abandonmentThreshold since their last release. Unlike deprecated packages with official notices, abandonment is detected by release inactivity.

These dependencies have not received updates for an extended period and may be unmaintained:

View abandoned dependencies (10)

Datasource	Package	Last Updated
github-actions	redhat-actions/buildah-build	2024-03-05
github-actions	redhat-actions/push-to-registry	2024-03-08
github-actions	slsa-framework/slsa-github-generator	2025-02-24
pip_requirements	yq	2024-04-27

Rate-Limited

The following updates are currently rate-limited. To force their creation now, click on a checkbox below.

• Update actions/checkout digest to de0fac2
• Update actions/checkout action to v6.0.2
• Update dependency xmltodict to v1.0.4
• Update dependency tomlkit to v0.14.0
• Update quay.io/skopeo/stable Docker tag to v1.22.0
• Update redhat-cop/github-actions action to v4.6
• Update actions/upload-artifact action to v7
• 🔐 Create all rate-limited PRs at once 🔐

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• Update actions/setup-node digest to 53b8394
• Update ghcr.io/redhat-cop/github-actions/confbatstest:v4.5 Docker digest to caae680
• Update registry.access.redhat.com/ubi9/go-toolset Docker digest to 8c5aeac
• Update registry.access.redhat.com/ubi9/python-39 Docker tag to v9.7-1775726797
• Update registry.access.redhat.com/ubi9/ubi Docker tag to v9.7-1775624009
• Update dependency helm/helm to v4.1.4
• Update dependency homebrew/openshift-cli to v4.21.8
• Update dependency open-policy-agent/conftest to v0.68.0
• Update dependency open-policy-agent/opa to v1.15.2
• Update github/codeql-action action to v4.35.1
• Click on this checkbox to rebase all open PRs at once

Detected Dependencies

dockerfile (3)

confbatstest/Dockerfile (1)

• ghcr.io/redhat-cop/github-actions/confbatstest v4.5@sha256:14ed9e3c82b7c5ef672fd0075ca94ae3cdaf7b026a404d4d62b713c7cdb9c93c → [Updates: v4.5]

confbatstest/Dockerfile_build (3)

• registry.access.redhat.com/ubi9/go-toolset sha256:56fc8480721e5febbd2b6810199a63b5b68c3c5ab826d082c8247054a1dc33e7 → [Updates: undefined]
• registry.access.redhat.com/ubi9/ubi 9.7-1764794285@sha256:d4feb579a84ead49894ec71fe54f14300992e202f3491d9bb22b62cc57affd49 → [Updates: 9.7-1775624009]
• registry.access.redhat.com/ubi9/python-39 9.7-1765312109@sha256:8b817c728990c39e8e9a40a5b9ec0fc1ed78656b8cf052b1c06a88373ad1bde8 → [Updates: 9.7-1775726797]

disconnected-csv/Dockerfile (1)

• quay.io/skopeo/stable v1.21.0 → [Updates: v1.22.0]

github-actions (14)

.github/workflows/confbatstest-build.yaml (9)

• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8 → [Updates: v6]
• redhat-cop/github-actions v4.5@561af5e610560aef3210ca7a08fe73b2add97648 → [Updates: v4.6]
• hadolint/hadolint-action v3.3.0@2332a7b74a6de0dda2e2221d575162eba76ba5e5
• redhat-actions/buildah-build v2@7a95fa7ee0f02d552a32753e7414641a04307056
• redhat-actions/push-to-registry v2@5ed88d269cf581ea9ef6dd6806d01562096bee9c
• sigstore/cosign-installer v3@398d4b0eeef1380460a10c8013a76f728fb906ac
• aquasecurity/trivy-action v0.35.0@57a97c7e7821a5776cebc9bb87c984fa69cba8f1
• aquasecurity/trivy-action v0.35.0@57a97c7e7821a5776cebc9bb87c984fa69cba8f1
• slsa-framework/slsa-github-generator v2.1.0

.github/workflows/confbatstest.yaml (2)

• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8 → [Updates: v6]
• hadolint/hadolint-action v3.3.0@2332a7b74a6de0dda2e2221d575162eba76ba5e5

.github/workflows/disconnected-csv.yaml (2)

• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8 → [Updates: v6]
• hadolint/hadolint-action v3.3.0@2332a7b74a6de0dda2e2221d575162eba76ba5e5

.github/workflows/get-image-version.yaml (1)

• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8 → [Updates: v6]

.github/workflows/github-dispatches-build.yaml (5)

• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8 → [Updates: v6]
• redhat-cop/github-actions v4.5@561af5e610560aef3210ca7a08fe73b2add97648 → [Updates: v4.6]
• hadolint/hadolint-action v3.3.0@2332a7b74a6de0dda2e2221d575162eba76ba5e5
• redhat-actions/buildah-build v2@7a95fa7ee0f02d552a32753e7414641a04307056
• redhat-actions/push-to-registry v2@5ed88d269cf581ea9ef6dd6806d01562096bee9c

.github/workflows/github-dispatches.yaml (2)

• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8 → [Updates: v6]
• hadolint/hadolint-action v3.3.0@2332a7b74a6de0dda2e2221d575162eba76ba5e5

.github/workflows/kyverno-cli-build.yaml (5)

• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8 → [Updates: v6]
• redhat-cop/github-actions v4.5@561af5e610560aef3210ca7a08fe73b2add97648 → [Updates: v4.6]
• hadolint/hadolint-action v3.3.0@2332a7b74a6de0dda2e2221d575162eba76ba5e5
• redhat-actions/buildah-build v2@7a95fa7ee0f02d552a32753e7414641a04307056
• redhat-actions/push-to-registry v2@5ed88d269cf581ea9ef6dd6806d01562096bee9c

.github/workflows/kyverno-cli.yaml (2)

• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8 → [Updates: v6]
• hadolint/hadolint-action v3.3.0@2332a7b74a6de0dda2e2221d575162eba76ba5e5

.github/workflows/redhat-csp-download-build.yaml (5)

• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8 → [Updates: v6]
• redhat-cop/github-actions v4.5@561af5e610560aef3210ca7a08fe73b2add97648 → [Updates: v4.6]
• hadolint/hadolint-action v3.3.0@2332a7b74a6de0dda2e2221d575162eba76ba5e5
• redhat-actions/buildah-build v2@7a95fa7ee0f02d552a32753e7414641a04307056
• redhat-actions/push-to-registry v2@5ed88d269cf581ea9ef6dd6806d01562096bee9c

.github/workflows/redhat-csp-download.yaml (2)

• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8 → [Updates: v6]
• hadolint/hadolint-action v3.3.0@2332a7b74a6de0dda2e2221d575162eba76ba5e5

.github/workflows/scorecard.yml (4)

• actions/checkout v6.0.1@8e8c483db84b4bee98b60c0593521ed34d9990e8 → [Updates: v6.0.2]
• ossf/scorecard-action v2.4.3@4eaacf0543bb3f2c246792bd56e8cdeffafb205a
• actions/upload-artifact v6.0.0@b7c566a772e6b6bfb58ed0dc250532a479d7789f → [Updates: v7.0.1]
• github/codeql-action v4.31.8@1b168cd39490f61582a9beae412bb7057a6b2c4e → [Updates: v4.35.1]

.github/workflows/set-helm-version.yaml (2)

• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8 → [Updates: v6]
• hadolint/hadolint-action v3.3.0@2332a7b74a6de0dda2e2221d575162eba76ba5e5

.github/workflows/ssh-agent-build.yaml (3)

• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8 → [Updates: v6]
• actions/setup-node v6@395ad3262231945c25e8478fd5baf05154b1d79f → [Updates: v6]
• node 24

.github/workflows/ssh-agent.yaml (1)

• actions/checkout v6@8e8c483db84b4bee98b60c0593521ed34d9990e8 → [Updates: v6]

pip_requirements (1)

confbatstest/requirements.txt (5)

• argcomplete ==3.6.3
• PyYAML ==6.0.3
• tomlkit ==0.13.3 → [Updates: ==0.14.0]
• xmltodict ==1.0.2 → [Updates: ==1.0.4]
• yq ==3.4.3

regex (1)

confbatstest/Dockerfile_build (6)

• plexsystems/konstraint v0.43.0
• helm/helm v4.0.4 → [Updates: v4.1.4]
• stedolan/jq 1.6
• homebrew/openshift-cli 4.20.6 → [Updates: 4.21.8]
• open-policy-agent/opa v1.11.0 → [Updates: v1.15.2]
• open-policy-agent/conftest v0.65.0 → [Updates: v0.68.0]

---

• Check this box to trigger a request for Renovate to run again on this repository