chore(deps): update github-actions

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
actions/cache	action	patch	v4.1.1 -> v4.1.2
actions/checkout	action	patch	v4.2.1 -> v4.2.2
actions/setup-java	action	minor	v4.4.0 -> v4.5.0
actions/setup-python	action	minor	v5.2.0 -> v5.3.0
aquasecurity/trivy-action	action	minor	0.28.0 -> 0.29.0
docker/build-push-action	action	minor	v6.9.0 -> v6.10.0
docker/metadata-action	action	minor	v5.5.1 -> v5.6.1
ghcr.io/chgl/kube-powertools	container	patch	v2.3.27 -> v2.3.30
ghcr.io/miracum/ig-build-tools	container	patch	v2.1.6 -> v2.1.8
github/codeql-action	action	minor	v3.26.13 -> v3.27.5
gradle/actions	action	minor	v4.1.0 -> v4.2.1
lycheeverse/lychee-action	action	minor	v2.0.2 -> v2.1.0
oxsecurity/megalinter	action	minor	v8.1.0 -> v8.3.0
softprops/action-gh-release	action	minor	v2.0.8 -> v2.1.0
yogeshlonkar/trivy-cache-action	action	patch	v0.1.8 -> v0.1.9

---

Release Notes

actions/cache (actions/cache)

v4.1.2

Compare Source

What's Changed

• Add Bun example by @​idleberg in https://github.com/actions/cache/pull/1456
• Revise isGhes logic by @​jww3 in https://github.com/actions/cache/pull/1474
• Bump braces from 3.0.2 to 3.0.3 by @​dependabot in https://github.com/actions/cache/pull/1475
• Add dependabot.yml to enable automatic dependency upgrades by @​Link- in https://github.com/actions/cache/pull/1476
• Bump actions/checkout from 3 to 4 by @​dependabot in https://github.com/actions/cache/pull/1478
• Bump actions/stale from 3 to 9 by @​dependabot in https://github.com/actions/cache/pull/1479
• Bump github/codeql-action from 2 to 3 by @​dependabot in https://github.com/actions/cache/pull/1483
• Bump actions/setup-node from 3 to 4 by @​dependabot in https://github.com/actions/cache/pull/1481
• Prepare 4.1.2 release by @​Link- in https://github.com/actions/cache/pull/1477

New Contributors

• @​idleberg made their first contribution in https://github.com/actions/cache/pull/1456
• @​jww3 made their first contribution in https://github.com/actions/cache/pull/1474
• @​Link- made their first contribution in https://github.com/actions/cache/pull/1476

Full Changelog: actions/cache@v4...v4.1.2

actions/checkout (actions/checkout)

v4.2.2

Compare Source

• url-helper.ts now leverages well-known environment variables by @​jww3 in https://github.com/actions/checkout/pull/1941
• Expand unit test coverage for isGhes by @​jww3 in https://github.com/actions/checkout/pull/1946

actions/setup-java (actions/setup-java)

v4.5.0

Compare Source

What's Changed

• Upgrade IA Publish by @​Jcambass in #​686

Bug fixes:

• Improve archive extraction on windows runners without powershell core and Update micromatch dependency by @​priyagupta108 in #​689
• Update workflows for GraalVM and Version Enhancements by @​mahabaleshwars in #​699
• Refine isGhes logic by @​jww3 in #​697

New Contributors:

• @​priyagupta108 made their first contribution in https://github.com/actions/setup-java/pull/689
• @​jww3 made their first contribution in https://github.com/actions/setup-java/pull/697

Full Changelog: actions/setup-java@v4...v4.5.0

actions/setup-python (actions/setup-python)

v5.3.0

Compare Source

What's Changed

• Add workflow file for publishing releases to immutable action package by @​Jcambass in https://github.com/actions/setup-python/pull/941
• Upgrade IA publish by @​Jcambass in https://github.com/actions/setup-python/pull/943

Bug Fixes:

• Normalise Line Endings to Ensure Cross-Platform Consistency by @​priya-kinthali in https://github.com/actions/setup-python/pull/938
• Revise isGhes logic by @​jww3 in https://github.com/actions/setup-python/pull/963
• Bump pillow from 7.2 to 10.2.0 by @​aparnajyothi-y in https://github.com/actions/setup-python/pull/956

Enhancements:

• Enhance workflows and documentation updates by @​priya-kinthali in https://github.com/actions/setup-python/pull/965
• Bump default versions to latest by @​jeffwidman in https://github.com/actions/setup-python/pull/905

New Contributors

• @​Jcambass made their first contribution in https://github.com/actions/setup-python/pull/941
• @​jww3 made their first contribution in https://github.com/actions/setup-python/pull/963

Full Changelog: actions/setup-python@v5...v5.3.0

aquasecurity/trivy-action (aquasecurity/trivy-action)

v0.29.0

Compare Source

What's Changed

• feat: Allow skipping setup by @​rvesse in https://github.com/aquasecurity/trivy-action/pull/414
• Fix oras command not found in "Update Trivy Cache" action by @​Tiryoh in https://github.com/aquasecurity/trivy-action/pull/413
• Update README.md by @​simar7 in https://github.com/aquasecurity/trivy-action/pull/420
• feat: add token for setup-trivy by @​DmitriyLewen in https://github.com/aquasecurity/trivy-action/pull/421
• fix: bump setup-trivy and add new contrib directory path info by @​DmitriyLewen in https://github.com/aquasecurity/trivy-action/pull/424
• docs: remove ignore-unfixed from IaC scan example by @​nikpivkin in https://github.com/aquasecurity/trivy-action/pull/429
• chore(deps): Bump trivy to v0.57.1 by @​simar7 in https://github.com/aquasecurity/trivy-action/pull/434

New Contributors

• @​rvesse made their first contribution in https://github.com/aquasecurity/trivy-action/pull/414
• @​Tiryoh made their first contribution in https://github.com/aquasecurity/trivy-action/pull/413

Full Changelog: aquasecurity/trivy-action@0.28.0...0.29.0

docker/build-push-action (docker/build-push-action)

v6.10.0

Compare Source

docker/metadata-action (docker/metadata-action)

v5.6.1

Compare Source

• Fix GitHub API request fallback for commit date by @​crazy-max in https://github.com/docker/metadata-action/pull/478
• Revert to default commit SHA length of 7 by @​crazy-max in https://github.com/docker/metadata-action/pull/480

Full Changelog: docker/metadata-action@v5.6.0...v5.6.1

v5.6.0

Compare Source

• Add commit_date global expression by @​trim21 in https://github.com/docker/metadata-action/pull/471 https://github.com/docker/metadata-action/pull/475
• Increase short commit sha length to 12 for uniqueness by @​crazy-max in https://github.com/docker/metadata-action/pull/467
• Bump @​actions/core from 1.10.1 to 1.11.1 https://github.com/docker/metadata-action/pull/460
• Bump @​docker/actions-toolkit from 0.16.1 to 0.44.0 https://github.com/docker/metadata-action/pull/391 https://github.com/docker/metadata-action/pull/399 https://github.com/docker/metadata-action/pull/413 https://github.com/docker/metadata-action/pull/441
• Bump braces from 3.0.2 to 3.0.3 https://github.com/docker/metadata-action/pull/424
• Bump cross-spawn from 7.0.3 to 7.0.5 https://github.com/docker/metadata-action/pull/474
• Bump csv-parse from 5.5.5 to 5.5.6 https://github.com/docker/metadata-action/pull/412
• Bump moment-timezone from 0.5.44 to 0.5.46 https://github.com/docker/metadata-action/pull/383 https://github.com/docker/metadata-action/pull/470 https://github.com/docker/metadata-action/pull/459
• Bump path-to-regexp from 6.2.2 to 6.3.0 https://github.com/docker/metadata-action/pull/454
• Bump semver from 7.6.0 to 7.6.3 https://github.com/docker/metadata-action/pull/400 https://github.com/docker/metadata-action/pull/411 https://github.com/docker/metadata-action/pull/440
• Bump undici from 5.26.3 to 5.28.4 https://github.com/docker/metadata-action/pull/386 https://github.com/docker/metadata-action/pull/402

Full Changelog: docker/metadata-action@v5.5.1...v5.6.0

chgl/kube-powertools (ghcr.io/chgl/kube-powertools)

v2.3.30

Compare Source

Miscellaneous Chores

• deps: update all non-major dependencies (fb7c564)

v2.3.29

Compare Source

Miscellaneous Chores

• deps: update docker.io/nginxinc/nginx-unprivileged:1.27.2 docker digest to 1492491 (#​481) (60c87ae)
• deps: update lycheeverse/lychee-action action to v2 (#​484) (9a9ffd5)

v2.3.28

Compare Source

Miscellaneous Chores

• deps: update all non-major dependencies (8dead52)
• deps: update github-actions (bf35c66)

miracum/ig-build-tools (ghcr.io/miracum/ig-build-tools)

v2.1.8

Compare Source

Miscellaneous Chores

• deps: update dependency ubuntu to v24 (#​190) (eb652e5)

v2.1.7

Compare Source

Miscellaneous Chores

• deps: update all non-major dependencies (8d9e829)
• deps: update all non-major dependencies (8f475c6)
• deps: update docker.io/library/eclipse-temurin:11-jre docker digest to 22639ff (18913e9)
• deps: update docker.io/library/eclipse-temurin:11-jre docker digest to a271604 (994236f)
• deps: update docker.io/library/eclipse-temurin:11-jre docker digest to cc5855a (338ac43)
• deps: update github-actions (8ed9c79)
• deps: update github-actions (5504b9f)
• deps: update github-actions (6f502c3)
• deps: updated node, java, fhir terminal and re-ordered Dockerfile (#​195) (4436296)

github/codeql-action (github/codeql-action)

v3.27.5

Compare Source

v3.27.4

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.4 - 14 Nov 2024

No user facing changes.

See the full CHANGELOG.md for more information.

v3.27.3

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.3 - 12 Nov 2024

No user facing changes.

See the full CHANGELOG.md for more information.

v3.27.2

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.2 - 12 Nov 2024

• Fixed an issue where setting up the CodeQL tools would sometimes fail with the message "Invalid value 'undefined' for header 'authorization'". #​2590

See the full CHANGELOG.md for more information.

v3.27.1

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.1 - 08 Nov 2024

• The CodeQL Action now downloads bundles compressed using Zstandard on GitHub Enterprise Server when using Linux or macOS runners. This speeds up the installation of the CodeQL tools. This feature is already available to GitHub.com users. #​2573
• Update default CodeQL bundle version to 2.19.3. #​2576

See the full CHANGELOG.md for more information.

v3.27.0

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.0 - 22 Oct 2024

• Bump the minimum CodeQL bundle version to 2.14.6. #​2549
• Fix an issue where the upload-sarif Action would fail with "upload-sarif post-action step failed: Input required and not supplied: token" when called in a composite Action that had a different set of inputs to the ones expected by the upload-sarif Action. #​2557
• Update default CodeQL bundle version to 2.19.2. #​2552

See the full CHANGELOG.md for more information.

gradle/actions (gradle/actions)

v4.2.1

Compare Source

This patch release fixes some issues with Develocity and Build Scan integration:

• Build scan links not captured in project using plugin com.gradle.enteprise:3.18.2 (#​449)
• Enabling build-scan-publish causes some Develocity injection parameters to be ignored (#​447)
• Setting develocity-ccud-plugin-version parameter is ignored (#​446)

What's Changed

• Do not fail wrapper-validation on filename with illegal characters #​438
• Bump references to Develocity Gradle plugin from 3.18.1 to 3.18.2 by @​bot-githubaction in https://github.com/gradle/actions/pull/441
• Bump Gradle from 8.10.2 to 8.11 in https://github.com/gradle/actions/pull/443
• Develocity injection fixes in https://github.com/gradle/actions/pull/448
• Adapt build-result-capture script for GE plugin 3.17+ in https://github.com/gradle/actions/pull/450
• ci: add scorecard by @​nitrocode in https://github.com/gradle/actions/pull/384

New Contributors

• @​nitrocode made their first contribution in https://github.com/gradle/actions/pull/384

Full Changelog: gradle/actions@v4.2.0...v4.2.1

v4.2.0

Compare Source

This release fixes a bug that prevents cache-cleanup from working with Gradle 8.11.
A number of improvements to cache reporting are also included.

What's Changed

• Fix cache-cleanup with Gradle 8.11 (https://github.com/gradle/actions/pull/430)
• Update known wrapper checksums to include Gradle 8.11 (https://github.com/gradle/actions/pull/424)
• Include cache save/restore times in Job Summary (https://github.com/gradle/actions/pull/389)
• Improve cache logging by @​bigdaz (https://github.com/gradle/actions/pull/392)
• Correctly handle multiline patterns for extracted entries (https://github.com/gradle/actions/pull/393)
• Numerous dependency updates

Full Changelog: gradle/actions@v4.1.0...v4.2.0

lycheeverse/lychee-action (lycheeverse/lychee-action)

v2.1.0: Version 2.1.0

Compare Source

What's Changed

• Add missing argument failIfEmpty by @​LitoMore in https://github.com/lycheeverse/lychee-action/pull/261
• Fix bugs about the exit code by @​YDX-2147483647 in https://github.com/lycheeverse/lychee-action/pull/262
• Bump lychee version to 0.17.0 by @​mre in https://github.com/lycheeverse/lychee-action/pull/263

New Contributors

• @​LitoMore made their first contribution in https://github.com/lycheeverse/lychee-action/pull/261
• @​YDX-2147483647 made their first contribution in https://github.com/lycheeverse/lychee-action/pull/262

Full Changelog: lycheeverse/lychee-action@v2...v2.1.0

oxsecurity/megalinter (oxsecurity/megalinter)

v8.3.0

Compare Source

• Core

  • Display command log (truncated to 250 chars) even when LOG_LEVEL is not DEBUG
  • Allow to replace an ENV var value with the value of another ENV var before calling a PRE_COMMAND (helps for tflint run from GitHub Enterprise)
  • Fix handling of git submodule paths

• Fixes

  • trivy: retry in case of BLOB_UNKNOWN while downloading vulnerability list

• Reporters

  • Fix UpdatedSourcesReporter when APPLY_FIXES is list (array)
  • Fix AzureCommentReporter when the repo is not found: fallback using BUILD_REPOSITORY_ID. (+ disable space replacement in repo name with AZURE_COMMENT_REPORTER_REPLACE_WITH_SPACES: false)

• CI

  • Fix Docker mirroring job for release context
  • Remove max parallel jobs for release linters workflow

• Linter versions upgrades (13)

  • cfn-lint from 1.19.0 to 1.20.0
  • checkov from 3.2.298 to 3.2.311
  • csharpier from 0.29.2 to 0.30.2
  • markdownlint from 0.42.0 to 0.43.0
  • phpstan from 2.0.1 to 2.0.2
  • ruff from 0.7.4 to 0.8.0
  • spectral from 6.14.1 to 6.14.2
  • stylua from 0.20.0 to 2.0.0
  • syft from 1.16.0 to 1.17.0
  • trivy-sbom from 0.57.0 to 0.57.1
  • trivy from 0.57.0 to 0.57.1
  • trufflehog from 3.83.7 to 3.84.1
  • vale from 3.9.0 to 3.9.1

v8.2.0

Compare Source

• Media

  • 10 MegaLinter Tips and Tricks Unlock its Full Potential by Wes Dean
  • MegaLinter Performance Tuning for Maximum Efficiency by Wes Dean

• Linters enhancements

  • detekt Enable SARIF output + count errors
  • lintr: Support files in subdirectories, fix unit tests
  • phpcs: Activate APPLY_FIXES
  • Salesforce linters: Add SF_CLI_DISABLE_AUTOUPDATE for SF CLI JIT plugins
  • trivy: handle retry if failed to download Java DB is detected
  • tsqllint Re-enabled after .net 8 and security updates

• Fixes

  • Add message in PR comment if FAIL_IF_UPDATED_SOURCES is triggered
  • Fix linting errors in GitHub Actions template

• Reporters

  • UpdatedSourcesReporter will git commit & push fixed files to source branch if APPLY_FIXES is set
  • Fix AzureCommentReporter not adding comments to PR
  • Fix AzureCommentReporter fails when target repo contains spaces

• Doc

  • Updated documentation with Azure central pipeline use case
  • Update DevSkim documentation to show a valid exclusion config file
  • Note about risky rules and how to fix rule violations with PHP-CS-Fixer

• CI

  • Also prune volumes before pulling and pushing to docker hub
  • Externalize mirroring from ghcr.io to docker hub in another workflow to avoid memory issues
  • Squash docker images to have less layers and size
  • Comment jobs related to GitHub Worker images, as CodeTotal is not actively maintained
  • Make gitpod workflow not blocking until uv install is fixed
  • Update stale comment
  • Try several times to embed trivy db during Docker build, as a workaround to the random failures
  • Wait 10 secondes instead of 1 before retrying a failing test method, to avoid race conditions

• Linter versions upgrades (104)

  • actionlint from 1.7.3 to 1.7.4
  • ansible-lint from 24.9.2 to 24.10.0
  • bicep_linter from 0.30.23 to 0.31.92
  • cfn-lint from 1.16.1 to 1.19.0
  • checkov from 3.2.257 to 3.2.298
  • checkstyle from 10.18.2 to 10.20.1
  • clippy from 0.1.81 to 0.1.82
  • clj-kondo from 2024.09.27 to 2024.11.14
  • cspell from 8.15.1 to 8.16.0
  • devskim from 1.0.33 to 1.0.44
  • djlint from 1.35.2 to 1.36.1
  • dotnet-format from 8.0.110 to 8.0.111
  • gitleaks from 8.20.1 to 8.21.2
  • golangci-lint from 1.61.0 to 1.62.0
  • ktlint from 1.3.1 to 1.4.1
  • lightning-flow-scanner from 2.34.0 to 2.36.0
  • lychee from 0.16.1 to 0.17.0
  • mypy from 1.11.2 to 1.13.0
  • perlcritic from 1.152 to 1.156
  • phpcs from 3.10.3 to 3.11.1
  • phplint from 9.5.3 to 9.5.4
  • phpstan from 1.12.6 to 2.0.1
  • pmd from 7.6.0 to 7.7.0
  • pyright from 1.1.384 to 1.1.389
  • revive from 1.4.0 to 1.5.1
  • roslynator from 0.9.1.0 to 0.9.3.0
  • rubocop from 1.66.1 to 1.68.0
  • ruff from 0.6.9 to 0.7.4
  • secretlint from 8.4.0 to 9.0.0
  • sfdx-scanner-apex from 4.6.0 to 4.7.0
  • sfdx-scanner-aura from 4.6.0 to 4.7.0
  • sfdx-scanner-lwc from 4.6.0 to 4.7.0
  • shfmt from 3.9.0 to 3.10.0
  • snakemake from 8.21.0 to 8.25.3
  • spectral from 6.13.1 to 6.14.1
  • sqlfluff from 3.2.3 to 3.2.5
  • syft from 1.14.0 to 1.16.0
  • terraform-fmt from 1.9.5 to 1.9.8
  • terragrunt from 0.67.5 to 0.68.14
  • tflint from 0.53.0 to 0.54.0
  • trivy-sbom from 0.56.2 to 0.57.0
  • trivy from 0.56.2 to 0.57.0
  • trufflehog from 3.82.11 to 3.83.7
  • tsqllint from 1.15.3.0 to 1.16.0.0
  • v8r from 4.1.0 to 4.2.0
  • vale from 3.7.1 to 3.9.0

softprops/action-gh-release (softprops/action-gh-release)

v2.1.0

Compare Source

What's Changed

Exciting New Features 🎉

• feat: add support for release assets with multiple spaces within the name by @​dukhine in https://github.com/softprops/action-gh-release/pull/518
• feat: preserve upload order by @​richarddd in https://github.com/softprops/action-gh-release/pull/500

Other Changes 🔄

• chore(deps): bump @​types/node from 22.8.2 to 22.8.7 by @​dependabot in https://github.com/softprops/action-gh-release/pull/539

New Contributors

• @​dukhine made their first contribution in https://github.com/softprops/action-gh-release/pull/518
• @​richarddd made their first contribution in https://github.com/softprops/action-gh-release/pull/500

Full Changelog: softprops/action-gh-release@v2...v2.1.0

v2.0.9

Compare Source

What's Changed

• maintenance release with updated dependencies

New Contributors

• @​kbakdev made their first contribution in https://github.com/softprops/action-gh-release/pull/521

Full Changelog: softprops/action-gh-release@v2...v2.0.9

yogeshlonkar/trivy-cache-action (yogeshlonkar/trivy-cache-action)

v0.1.9

Compare Source

What's Changed

• Bump the development-dependencies group with 6 updates by @​dependabot in https://github.com/yogeshlonkar/trivy-cache-action/pull/88
• Bump the production-dependencies group across 1 directory with 2 updates by @​dependabot in https://github.com/yogeshlonkar/trivy-cache-action/pull/89

Full Changelog: yogeshlonkar/trivy-cache-action@v0.1.8...v0.1.9

---

Configuration

📅 Schedule: Branch creation - "before 4am on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

🦙 MegaLinter status: ❌ ERROR

Descriptor	Linter	Files	Fixed	Errors	Elapsed time
✅ ACTION	actionlint	18		0	0.3s
✅ BASH	bash-exec	5		0	0.02s
✅ BASH	shellcheck	2		0	0.24s
⚠️ BASH	shfmt	5		1	0.01s
⚠️ CSHARP	csharpier	1		1	1.69s
⚠️ CSHARP	dotnet-format	yes		1	1.39s
✅ CSHARP	roslynator	1		0	19.55s
✅ CSS	stylelint	1		0	2.07s
✅ DOCKERFILE	hadolint	4		0	0.25s
✅ EDITORCONFIG	editorconfig-checker	379		0	4.26s
✅ ENV	dotenv-linter	1		0	0.01s
✅ GROOVY	npm-groovy-lint	7		0	15.7s
✅ HTML	djlint	2		0	1.12s
✅ HTML	htmlhint	2		0	0.44s
✅ JAVA	checkstyle	59		0	7.48s
✅ JSON	jsonlint	31		0	0.3s
⚠️ JSON	prettier	31		1	5.33s
✅ JSON	v8r	31		0	85.24s
⚠️ MARKDOWN	markdownlint	22		190	1.83s
✅ PYTHON	bandit	1		0	2.24s
✅ PYTHON	black	1		0	0.87s
✅ PYTHON	flake8	1		0	0.64s
✅ PYTHON	isort	1		0	0.42s
✅ PYTHON	mypy	1		0	9.13s
✅ PYTHON	ruff	1		0	0.02s
✅ REPOSITORY	checkov	yes		no	25.73s
✅ REPOSITORY	gitleaks	yes		no	2.23s
✅ REPOSITORY	git_diff	yes		no	0.13s
✅ REPOSITORY	kics	yes		no	59.29s
✅ REPOSITORY	secretlint	yes		no	2.12s
✅ REPOSITORY	syft	yes		no	3.27s
❌ REPOSITORY	trivy	yes		1	22.39s
✅ REPOSITORY	trivy-sbom	yes		no	1.82s
✅ REPOSITORY	trufflehog	yes		no	5.81s
✅ XML	xmllint	3		0	0.01s
✅ YAML	prettier	111		0	2.39s

See detailed report in MegaLinter reports

You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.

• Click here to request the new flavor

MegaLinter is graciously provided by