Skip to content

ci(deps): bump windlasstech/actionlint-hardened-action from 39b1442298202b328f0da62908b70c54ab6601b9 to 043a16f2538fe7bee89d8e19bbd5292e925210e0#56

Merged
yunseo-kim merged 1 commit into
mainfrom
dependabot/github_actions/windlasstech/actionlint-hardened-action-043a16f2538fe7bee89d8e19bbd5292e925210e0
Jul 6, 2026
Merged

ci(deps): bump windlasstech/actionlint-hardened-action from 39b1442298202b328f0da62908b70c54ab6601b9 to 043a16f2538fe7bee89d8e19bbd5292e925210e0#56
yunseo-kim merged 1 commit into
mainfrom
dependabot/github_actions/windlasstech/actionlint-hardened-action-043a16f2538fe7bee89d8e19bbd5292e925210e0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 6, 2026

Copy link
Copy Markdown
Contributor

Bumps windlasstech/actionlint-hardened-action from 39b1442298202b328f0da62908b70c54ab6601b9 to 043a16f2538fe7bee89d8e19bbd5292e925210e0.

Changelog

Sourced from windlasstech/actionlint-hardened-action's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

Unreleased

1.0.0 - 12026-06-27

Added

  • Docker-based reusable GitHub Action wrapping rhysd/actionlint with explicit inputs (paths, config-file, ignore, shellcheck, pyflakes, format, no-color, oneline), including newline-separated shell-like glob handling that skips unmatched glob patterns, keeps *, ?, and bracket expressions within a single path segment, and requires explicit leading-dot patterns for leading-dot names.
  • SHA-pinned upstream image in Dockerfile: rhysd/actionlint:1.7.12@sha256:b1934ee5f1c509618f2508e6eb47ee0d3520686341fec936f3b79331f9315667.
  • Dependabot configuration for Docker base image and GitHub Actions updates.
  • Windlass security reusable workflows: Dependency Review, OSV Scanner (PR and full), and OpenSSF Scorecard.
  • Self-test workflow exercising valid, invalid, unmatched glob, config-file, ignore, tool-disable, and formatting inputs.
  • Test fixtures and bilingual documentation (README.md and README.ko.md).
  • Initial project files: LICENSE and README.md.
  • Repository conventions for agent-assisted development (AGENTS.md).
  • Standard OS-specific .gitignore rules.
  • Korean README translation (README.ko.md).
Commits

Bumps [windlasstech/actionlint-hardened-action](https://github.com/windlasstech/actionlint-hardened-action) from 39b1442298202b328f0da62908b70c54ab6601b9 to 043a16f2538fe7bee89d8e19bbd5292e925210e0.
- [Release notes](https://github.com/windlasstech/actionlint-hardened-action/releases)
- [Changelog](https://github.com/windlasstech/actionlint-hardened-action/blob/main/CHANGELOG.md)
- [Commits](windlasstech/actionlint-hardened-action@39b1442...043a16f)

---
updated-dependencies:
- dependency-name: windlasstech/actionlint-hardened-action
  dependency-version: 043a16f2538fe7bee89d8e19bbd5292e925210e0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/github_actions/windlasstech/actionlint-hardened-action-043a16f2538fe7bee89d8e19bbd5292e925210e0 branch from 10a9f7c to 6e9e2ba Compare July 6, 2026 13:49
@yunseo-kim yunseo-kim merged commit 51bbc83 into main Jul 6, 2026
6 checks passed
@yunseo-kim yunseo-kim deleted the dependabot/github_actions/windlasstech/actionlint-hardened-action-043a16f2538fe7bee89d8e19bbd5292e925210e0 branch July 6, 2026 13:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant