Skip to content

fix(deps): update aws-sdk-go-v2 monorepo#286

Merged
iggy merged 1 commit into
mainfrom
renovate/aws-sdk-go-v2-monorepo
Jun 18, 2026
Merged

fix(deps): update aws-sdk-go-v2 monorepo#286
iggy merged 1 commit into
mainfrom
renovate/aws-sdk-go-v2-monorepo

Conversation

@renovate

@renovate renovate Bot commented Jun 8, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Change Age Confidence
github.com/aws/aws-sdk-go-v2 v1.41.12v1.42.0 age confidence
github.com/aws/aws-sdk-go-v2/config v1.32.23v1.32.25 age confidence
github.com/aws/aws-sdk-go-v2/credentials v1.19.22v1.19.24 age confidence
github.com/aws/aws-sdk-go-v2/service/sts v1.43.2v1.43.3 age confidence

Release Notes

aws/aws-sdk-go-v2 (github.com/aws/aws-sdk-go-v2)

v1.42.0

Compare Source

General Highlights

  • Dependency Update: Bump smithy-go to 1.25.0 to support endpointBdd trait
  • Dependency Update: Updated to the latest SDK module versions

Module Highlights

  • github.com/aws/aws-sdk-go-v2/service/cleanrooms: v1.43.0
    • Feature: This release adds support for configurable spark properties for Cleanrooms PySpark workloads.
  • github.com/aws/aws-sdk-go-v2/service/connect: v1.171.0
    • Feature: Fixes in SDK for customers using TestCase APIs
  • github.com/aws/aws-sdk-go-v2/service/connectcampaignsv2: v1.12.0
    • Feature: This release adds support for campaign entry limits configuration and hourly refresh frequency in Amazon Connect Outbound Campaigns.
  • github.com/aws/aws-sdk-go-v2/service/groundstation: v1.41.0
    • Feature: Adds support for updating contacts, listing antennas, and listing ground station reservations. New API operations - UpdateContact, ListContactVersions, DescribeContactVersion, ListAntennas, and ListGroundStationReservations.
  • github.com/aws/aws-sdk-go-v2/service/imagebuilder: v1.53.0
    • Feature: ImportDiskImage API adds registerImageOptions for Secure Boot control and custom UEFI data. It adds windowsConfiguration for selecting a specific edition from multi-image .wim files during ISO import.
  • github.com/aws/aws-sdk-go-v2/service/neptune: v1.44.4
    • Documentation: Improving Documentation for Neptune
  • github.com/aws/aws-sdk-go-v2/service/quicksight: v1.107.0
    • Feature: Public release of dashboard customization summary, S3 Tables data source type, Athena cross-account connector, custom sorting for controls, and AI-powered analysis generation.
  • github.com/aws/aws-sdk-go-v2/service/sagemaker: v1.241.0
    • Feature: Adds support for providing NetworkInterface for efa enabled instances and Simplified cluster creation for Slurm-orchestrated clusters with optional Lifecycle Script (LCS) configuration.
  • github.com/aws/aws-sdk-go-v2/service/sts: v1.42.0
    • Feature: The STS client now supports configuring SigV4a through the auth scheme preference setting. SigV4a uses asymmetric cryptography, enabling customers using long-term IAM credentials to continue making STS API calls even when a region is isolated from the partition leader.

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate

renovate Bot commented Jun 8, 2026

Copy link
Copy Markdown
Contributor Author

ℹ️ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • 8 additional dependencies were updated

Details:

Package Change
github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.28 -> v1.18.29
github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.28 -> v1.4.29
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.28 -> v2.7.29
github.com/aws/aws-sdk-go-v2/internal/v4a v1.4.29 -> v1.4.30
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.28 -> v1.13.29
github.com/aws/aws-sdk-go-v2/service/signin v1.1.4 -> v1.2.0
github.com/aws/aws-sdk-go-v2/service/sso v1.31.2 -> v1.31.3
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.36.5 -> v1.36.6

@renovate renovate Bot added the dependencies Pull requests that update a dependency file label Jun 8, 2026
@github-actions

github-actions Bot commented Jun 8, 2026

Copy link
Copy Markdown

⚠️MegaLinter analysis: Success with warnings

Descriptor Linter Files Fixed Errors Warnings Elapsed time
✅ COPYPASTE jscpd yes no no 9.35s
⚠️ REPOSITORY checkov yes 40 no 44.18s
⚠️ REPOSITORY devskim yes 1 no 4.32s
✅ REPOSITORY dustilock yes no no 0.04s
✅ REPOSITORY gitleaks yes no no 11.29s
✅ REPOSITORY git_diff yes no no 0.06s
✅ REPOSITORY grype yes no no 70.3s
✅ REPOSITORY kingfisher yes no no 7.73s
✅ REPOSITORY osv-scanner yes no no 1.2s
✅ REPOSITORY secretlint yes no no 6.08s
✅ REPOSITORY syft yes no no 4.46s
✅ REPOSITORY trivy yes no no 11.35s
✅ REPOSITORY trivy-sbom yes no no 22.33s
✅ REPOSITORY trufflehog yes no no 13.5s

Detailed Issues

⚠️ REPOSITORY / checkov - 40 errors
ct build without evidence of cosign sbom attestation in pipeline"
	PASSED for resource: jobs
	File: /.github/workflows/publish-chart.yml:18-68
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(process-chart)
	File: /.github/workflows/publish-chart.yml:19-68
Check: CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
	PASSED for resource: on(Publish main helm chart)
	File: /.github/workflows/publish-chart.yml:4-10
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(process-chart).steps[1]
	File: /.github/workflows/publish-chart.yml:22-28
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(process-chart).steps[2](Update Chart Version in YAML Files)
	File: /.github/workflows/publish-chart.yml:27-40
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(process-chart).steps[3](Set up chart-testing)
	File: /.github/workflows/publish-chart.yml:39-43
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(process-chart).steps[4](Run chart-testing)
	File: /.github/workflows/publish-chart.yml:42-48
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(process-chart).steps[5](Package chart)
	File: /.github/workflows/publish-chart.yml:47-55
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(process-chart).steps[6](Log in to GHCR)
	File: /.github/workflows/publish-chart.yml:54-62
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(process-chart).steps[7](Push chart to GHCR (OCI))
	File: /.github/workflows/publish-chart.yml:61-68
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(process-chart).steps[1]
	File: /.github/workflows/publish-chart.yml:22-28
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(process-chart).steps[2](Update Chart Version in YAML Files)
	File: /.github/workflows/publish-chart.yml:27-40
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(process-chart).steps[3](Set up chart-testing)
	File: /.github/workflows/publish-chart.yml:39-43
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(process-chart).steps[4](Run chart-testing)
	File: /.github/workflows/publish-chart.yml:42-48
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(process-chart).steps[5](Package chart)
	File: /.github/workflows/publish-chart.yml:47-55
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(process-chart).steps[6](Log in to GHCR)
	File: /.github/workflows/publish-chart.yml:54-62
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(process-chart).steps[7](Push chart to GHCR (OCI))
	File: /.github/workflows/publish-chart.yml:61-68
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(process-chart).steps[1]
	File: /.github/workflows/publish-chart.yml:22-28
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(process-chart).steps[2](Update Chart Version in YAML Files)
	File: /.github/workflows/publish-chart.yml:27-40
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(process-chart).steps[3](Set up chart-testing)
	File: /.github/workflows/publish-chart.yml:39-43
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(process-chart).steps[4](Run chart-testing)
	File: /.github/workflows/publish-chart.yml:42-48
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(process-chart).steps[5](Package chart)
	File: /.github/workflows/publish-chart.yml:47-55
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(process-chart).steps[6](Log in to GHCR)
	File: /.github/workflows/publish-chart.yml:54-62
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(process-chart).steps[7](Push chart to GHCR (OCI))
	File: /.github/workflows/publish-chart.yml:61-68
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(process-chart).steps[1]
	File: /.github/workflows/publish-chart.yml:22-28
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(process-chart).steps[2](Update Chart Version in YAML Files)
	File: /.github/workflows/publish-chart.yml:27-40
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(process-chart).steps[3](Set up chart-testing)
	File: /.github/workflows/publish-chart.yml:39-43
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(process-chart).steps[4](Run chart-testing)
	File: /.github/workflows/publish-chart.yml:42-48
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(process-chart).steps[5](Package chart)
	File: /.github/workflows/publish-chart.yml:47-55
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(process-chart).steps[6](Log in to GHCR)
	File: /.github/workflows/publish-chart.yml:54-62
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(process-chart).steps[7](Push chart to GHCR (OCI))
	File: /.github/workflows/publish-chart.yml:61-68
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(extract-metadata)
	File: /.github/workflows/branch-build.yml:21-36
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(build)
	File: /.github/workflows/branch-build.yml:36-221
Check: CKV_GHA_5: "Found artifact build without evidence of cosign sign execution in pipeline"
	PASSED for resource: jobs
	File: /.github/workflows/branch-build.yml:20-221
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(extract-metadata)
	File: /.github/workflows/branch-build.yml:21-36
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(build)
	File: /.github/workflows/branch-build.yml:36-221
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(extract-metadata)
	File: /.github/workflows/branch-build.yml:21-36
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(build)
	File: /.github/workflows/branch-build.yml:36-221
Check: CKV_GHA_6: "Found artifact build without evidence of cosign sbom attestation in pipeline"
	PASSED for resource: jobs
	File: /.github/workflows/branch-build.yml:20-221
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(extract-metadata)
	File: /.github/workflows/branch-build.yml:21-36
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(build)
	File: /.github/workflows/branch-build.yml:36-221
Check: CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
	PASSED for resource: on(Branch build)
	File: /.github/workflows/branch-build.yml:4-11
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(extract-metadata).steps[1](Checkout)
	File: /.github/workflows/branch-build.yml:26-31
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(extract-metadata).steps[2](Extract version)
	File: /.github/workflows/branch-build.yml:30-36
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(build).steps[1](Checkout)
	File: /.github/workflows/branch-build.yml:50-53
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(build).steps[2](Setup Go)
	File: /.github/workflows/branch-build.yml:52-58
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(build).steps[3](Set up QEMU)
	File: /.github/workflows/branch-build.yml:57-60
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(build).steps[4](Docker Login)
	File: /.github/workflows/branch-build.yml:59-66
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(build).steps[5](Install GoReleaser)
	File: /.github/workflows/branch-build.yml:65-71
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(build).steps[6](Run GoReleaser)
	File: /.github/workflows/branch-build.yml:70-221
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(extract-metadata).steps[1](Checkout)
	File: /.github/workflows/branch-build.yml:26-31
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(extract-metadata).steps[2](Extract version)
	File: /.github/workflows/branch-build.yml:30-36
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(build).steps[1](Checkout)
	File: /.github/workflows/branch-build.yml:50-53
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(build).steps[2](Setup Go)
	File: /.github/workflows/branch-build.yml:52-58
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(build).steps[3](Set up QEMU)
	File: /.github/workflows/branch-build.yml:57-60
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(build).steps[4](Docker Login)
	File: /.github/workflows/branch-build.yml:59-66
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(build).steps[5](Install GoReleaser)
	File: /.github/workflows/branch-build.yml:65-71
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(build).steps[6](Run GoReleaser)
	File: /.github/workflows/branch-build.yml:70-221
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(extract-metadata).steps[1](Checkout)
	File: /.github/workflows/branch-build.yml:26-31
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(extract-metadata).steps[2](Extract version)
	File: /.github/workflows/branch-build.yml:30-36
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(build).steps[1](Checkout)
	File: /.github/workflows/branch-build.yml:50-53
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(build).steps[2](Setup Go)
	File: /.github/workflows/branch-build.yml:52-58
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(build).steps[3](Set up QEMU)
	File: /.github/workflows/branch-build.yml:57-60
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(build).steps[4](Docker Login)
	File: /.github/workflows/branch-build.yml:59-66
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(build).steps[5](Install GoReleaser)
	File: /.github/workflows/branch-build.yml:65-71
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(build).steps[6](Run GoReleaser)
	File: /.github/workflows/branch-build.yml:70-221
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(extract-metadata).steps[1](Checkout)
	File: /.github/workflows/branch-build.yml:26-31
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(extract-metadata).steps[2](Extract version)
	File: /.github/workflows/branch-build.yml:30-36
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(build).steps[1](Checkout)
	File: /.github/workflows/branch-build.yml:50-53
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(build).steps[2](Setup Go)
	File: /.github/workflows/branch-build.yml:52-58
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(build).steps[3](Set up QEMU)
	File: /.github/workflows/branch-build.yml:57-60
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(build).steps[4](Docker Login)
	File: /.github/workflows/branch-build.yml:59-66
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(build).steps[5](Install GoReleaser)
	File: /.github/workflows/branch-build.yml:65-71
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(build).steps[6](Run GoReleaser)
	File: /.github/workflows/branch-build.yml:70-221
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(next-rc)
	File: /.github/workflows/next-rc.yml:17-70
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(process-chart)
	File: /.github/workflows/next-rc.yml:70-79
Check: CKV_GHA_5: "Found artifact build without evidence of cosign sign execution in pipeline"
	PASSED for resource: jobs
	File: /.github/workflows/next-rc.yml:16-79
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(next-rc)
	File: /.github/workflows/next-rc.yml:17-70
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(process-chart)
	File: /.github/workflows/next-rc.yml:70-79
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(next-rc)
	File: /.github/workflows/next-rc.yml:17-70
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(process-chart)
	File: /.github/workflows/next-rc.yml:70-79
Check: CKV_GHA_6: "Found artifact build without evidence of cosign sbom attestation in pipeline"
	PASSED for resource: jobs
	File: /.github/workflows/next-rc.yml:16-79
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(next-rc)
	File: /.github/workflows/next-rc.yml:17-70
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(process-chart)
	File: /.github/workflows/next-rc.yml:70-79
Check: CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
	PASSED for resource: on(Prepare next release candidate)
	File: /.github/workflows/next-rc.yml:4-8
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(next-rc).steps[1]
	File: /.github/workflows/next-rc.yml:25-31
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(next-rc).steps[2](Set git 'user.name' and 'user.email')
	File: /.github/workflows/next-rc.yml:30-36
Check: CKV_GHA_2: "Ensure run commands are not vulnerable to shell injection"
	PASSED for resource: jobs(next-rc).steps[3](Prepare the next release candidate)
	File: /.github/workflows/next-rc.yml:35-70
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(next-rc).steps[1]
	File: /.github/workflows/next-rc.yml:25-31
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(next-rc).steps[2](Set git 'user.name' and 'user.email')
	File: /.github/workflows/next-rc.yml:30-36
Check: CKV_GHA_1: "Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn't true on environment variables"
	PASSED for resource: jobs(next-rc).steps[3](Prepare the next release candidate)
	File: /.github/workflows/next-rc.yml:35-70
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(next-rc).steps[1]
	File: /.github/workflows/next-rc.yml:25-31
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(next-rc).steps[2](Set git 'user.name' and 'user.email')
	File: /.github/workflows/next-rc.yml:30-36
Check: CKV_GHA_3: "Suspicious use of curl with secrets"
	PASSED for resource: jobs(next-rc).steps[3](Prepare the next release candidate)
	File: /.github/workflows/next-rc.yml:35-70
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(next-rc).steps[1]
	File: /.github/workflows/next-rc.yml:25-31
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(next-rc).steps[2](Set git 'user.name' and 'user.email')
	File: /.github/workflows/next-rc.yml:30-36
Check: CKV_GHA_4: "Suspicious use of netcat with IP address"
	PASSED for resource: jobs(next-rc).steps[3](Prepare the next release candidate)
	File: /.github/workflows/next-rc.yml:35-70
Check: CKV2_GHA_1: "Ensure top-level permissions are not set to write-all"
	PASSED for resource: on(Publish main helm chart)
	File: /.github/workflows/publish-chart.yml:14-18
Check: CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
	FAILED for resource: on(Cut a new release)
	File: /.github/workflows/cut-new-release.yml:6-12

		6  |       version:
		7  |         type: string
		8  |         description: Version of the next release (e.g. v0.15.0)
		9  |         required: true
		10 | 
		11 | env:
		12 |   git-user: github-actions[bot]

Check: CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
	FAILED for resource: on(Finalize release)
	File: /.github/workflows/finalize-release.yml:6-12

		6  |       version:
		7  |         type: string
		8  |         description: Version of the release to finalize (e.g. v0.15.0)
		9  |         required: true
		10 | 
		11 | env:
		12 |   git-user: github-actions[bot]

Check: CKV2_GHA_1: "Ensure top-level permissions are not set to write-all"
	FAILED for resource: on(Release)
	File: /.github/workflows/release.yml:0-1
Check: CKV2_GHA_1: "Ensure top-level permissions are not set to write-all"
	FAILED for resource: on(Cut a new release)
	File: /.github/workflows/cut-new-release.yml:0-1
Check: CKV2_GHA_1: "Ensure top-level permissions are not set to write-all"
	FAILED for resource: on(Finalize release)
	File: /.github/workflows/finalize-release.yml:0-1
Check: CKV2_GHA_1: "Ensure top-level permissions are not set to write-all"
	FAILED for resource: on(Process chart)
	File: /.github/workflows/process-chart.yml:0-1
Check: CKV2_GHA_1: "Ensure top-level permissions are not set to write-all"
	FAILED for resource: on(Branch build)
	File: /.github/workflows/branch-build.yml:41-42
Check: CKV2_GHA_1: "Ensure top-level permissions are not set to write-all"
	FAILED for resource: on(Prepare next release candidate)
	File: /.github/workflows/next-rc.yml:0-1

(Truncated to last 20000 characters out of 143212)
⚠️ REPOSITORY / devskim - 1 error
,"charOffset":74,"charLength":9,"snippet":{"text":"localhost","rendered":{"text":"localhost","markdown":"`localhost`"}},"sourceLanguage":"yaml"}}}],"properties":{"tags":["Hygiene.Network.AccessingLocalhost"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"internal/cli/migrate/compatibility_test.go"},"region":{"startLine":18,"startColumn":5,"endLine":18,"endColumn":9,"charOffset":378,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"internal/source/kubernetes/source_test.go"},"region":{"startLine":11,"startColumn":3,"endLine":11,"endColumn":7,"charOffset":166,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"internal/config/reloader/remote.go"},"region":{"startLine":188,"startColumn":4,"endLine":188,"endColumn":8,"charOffset":5336,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"cmd/botkube-agent/main.go"},"region":{"startLine":251,"startColumn":4,"endLine":251,"endColumn":8,"charOffset":8508,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/formatx/space_table.go"},"region":{"startLine":28,"startColumn":3,"endLine":28,"endColumn":7,"charOffset":517,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS162092","level":"note","message":{"text":"Do not leave debug code in production"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"examples/ingress-recommendations/ingress-overrides.yaml"},"region":{"startLine":28,"startColumn":28,"endLine":28,"endColumn":37,"charOffset":612,"charLength":9,"snippet":{"text":"localhost","rendered":{"text":"localhost","markdown":"`localhost`"}},"sourceLanguage":"yaml"}}}],"properties":{"tags":["Hygiene.Network.AccessingLocalhost"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"internal/health/health_test.go"},"region":{"startLine":42,"startColumn":31,"endLine":42,"endColumn":35,"charOffset":953,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"internal/health/health_test.go"},"region":{"startLine":18,"startColumn":31,"endLine":18,"endColumn":35,"charOffset":304,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/notifier/bot.go"},"region":{"startLine":17,"startColumn":4,"endLine":17,"endColumn":8,"charOffset":487,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"internal/command/guard.go"},"region":{"startLine":176,"startColumn":6,"endLine":176,"endColumn":10,"charOffset":5324,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/config/plugin.go"},"region":{"startLine":70,"startColumn":6,"endLine":70,"endColumn":10,"charOffset":2150,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/config/plugin.go"},"region":{"startLine":36,"startColumn":5,"endLine":36,"endColumn":9,"charOffset":1012,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"internal/kubex/rest.go"},"region":{"startLine":63,"startColumn":5,"endLine":63,"endColumn":9,"charOffset":2112,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/api/source/grpc_adapter.go"},"region":{"startLine":175,"startColumn":7,"endLine":175,"endColumn":11,"charOffset":5454,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"internal/source/kubernetes/recommendation/ingress_backend_service_valid.go"},"region":{"startLine":59,"startColumn":7,"endLine":59,"endColumn":11,"charOffset":2041,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS162092","level":"note","message":{"text":"Do not leave debug code in production"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"test/e2e/bots_test.go"},"region":{"startLine":1580,"startColumn":22,"endLine":1580,"endColumn":31,"charOffset":62370,"charLength":9,"snippet":{"text":"localhost","rendered":{"text":"localhost","markdown":"`localhost`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Network.AccessingLocalhost"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"test/e2e/bots_test.go"},"region":{"startLine":287,"startColumn":4,"endLine":287,"endColumn":8,"charOffset":10160,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/config/manager_remote_test.go"},"region":{"startLine":178,"startColumn":44,"endLine":178,"endColumn":48,"charOffset":5351,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/config/manager_remote_test.go"},"region":{"startLine":130,"startColumn":45,"endLine":130,"endColumn":49,"charOffset":4049,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/config/manager_remote_test.go"},"region":{"startLine":68,"startColumn":51,"endLine":68,"endColumn":55,"charOffset":2006,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"internal/executor/kubectl/builder/kubectl_dropdowns.go"},"region":{"startLine":134,"startColumn":5,"endLine":134,"endColumn":9,"charOffset":3427,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/config/redacted.go"},"region":{"startLine":12,"startColumn":4,"endLine":12,"endColumn":8,"charOffset":207,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/config/config.go"},"region":{"startLine":262,"startColumn":59,"endLine":262,"endColumn":63,"charOffset":8611,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/config/config.go"},"region":{"startLine":214,"startColumn":64,"endLine":214,"endColumn":68,"charOffset":7021,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS162092","level":"note","message":{"text":"Do not leave debug code in production"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/config/config_test.go"},"region":{"startLine":29,"startColumn":62,"endLine":29,"endColumn":71,"charOffset":1061,"charLength":9,"snippet":{"text":"localhost","rendered":{"text":"localhost","markdown":"`localhost`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Network.AccessingLocalhost"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS112852","level":"note","message":{"text":"Go - Hard-coded SSL/TLS Protocol"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/grpcx/credentials.go"},"region":{"startLine":47,"startColumn":39,"endLine":47,"endColumn":51,"charOffset":1393,"charLength":12,"snippet":{"text":"VersionTLS13","rendered":{"text":"VersionTLS13","markdown":"`VersionTLS13`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Cryptography.Protocol.TLS.Hard-Coded"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/bot/discord.go"},"region":{"startLine":353,"startColumn":4,"endLine":353,"endColumn":8,"charOffset":10980,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/bot/discord.go"},"region":{"startLine":188,"startColumn":3,"endLine":188,"endColumn":7,"charOffset":6161,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/bot/discord.go"},"region":{"startLine":27,"startColumn":3,"endLine":27,"endColumn":7,"charOffset":588,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/bot/slack_cloud.go"},"region":{"startLine":571,"startColumn":4,"endLine":571,"endColumn":8,"charOffset":18684,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/bot/slack_cloud.go"},"region":{"startLine":349,"startColumn":7,"endLine":349,"endColumn":11,"charOffset":11675,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS162092","level":"note","message":{"text":"Do not leave debug code in production"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/config/testdata/TestLoadConfigSuccess/config.golden.yaml"},"region":{"startLine":153,"startColumn":18,"endLine":153,"endColumn":27,"charOffset":3376,"charLength":9,"snippet":{"text":"localhost","rendered":{"text":"localhost","markdown":"`localhost`"}},"sourceLanguage":"yaml"}}}],"properties":{"tags":["Hygiene.Network.AccessingLocalhost"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/bot/mattermost.go"},"region":{"startLine":358,"startColumn":4,"endLine":358,"endColumn":8,"charOffset":11218,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/bot/mattermost.go"},"region":{"startLine":47,"startColumn":3,"endLine":47,"endColumn":7,"charOffset":1269,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/bot/mattermost.go"},"region":{"startLine":28,"startColumn":3,"endLine":28,"endColumn":7,"charOffset":581,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS162092","level":"note","message":{"text":"Do not leave debug code in production"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"hack/target/serve-plugins/main.go"},"region":{"startLine":16,"startColumn":66,"endLine":16,"endColumn":75,"charOffset":334,"charLength":9,"snippet":{"text":"localhost","rendered":{"text":"localhost","markdown":"`localhost`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Network.AccessingLocalhost"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/bot/slack_socket.go"},"region":{"startLine":250,"startColumn":9,"endLine":250,"endColumn":13,"charOffset":8620,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/bot/slack_socket.go"},"region":{"startLine":32,"startColumn":3,"endLine":32,"endColumn":7,"charOffset":769,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS162092","level":"note","message":{"text":"Do not leave debug code in production"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":"pkg/bot/slack_renderer_test.go"},"region":{"startLine":50,"startColumn":30,"endLine":50,"endColumn":39,"charOffset":1426,"charLength":9,"snippet":{"text":"localhost","rendered":{"text":"localhost","markdown":"`localhost`"}},"sourceLanguage":"go"}}}],"properties":{"tags":["Hygiene.Network.AccessingLocalhost"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}},{"ruleId":"DS176209","level":"note","message":{"text":"Suspicious comment"},"locations":[{"physicalLocation":{"artifactLocation":{"uri":".github/workflows/branch-build.yml"},"region":{"startLine":16,"startColumn":27,"endLine":16,"endColumn":31,"charOffset":318,"charLength":4,"snippet":{"text":"TODO","rendered":{"text":"TODO","markdown":"`TODO`"}},"sourceLanguage":"yaml"}}}],"properties":{"tags":["Hygiene.Comment.Suspicious"],"DevSkimSeverity":"ManualReview","DevSkimConfidence":"High"}}],"columnKind":"utf16CodeUnits"}]}

(Truncated to last 20000 characters out of 24930)

Notices

📣 MegaLinter 9.5.0 is out! Discover the new features and security recommendations in the release announcement. (Skip this info by defining SECURITY_SUGGESTIONS: false)

See detailed reports in MegaLinter artifacts
Set VALIDATE_ALL_CODEBASE: true in mega-linter.yml to validate all sources, not only the diff

MegaLinter is graciously provided by OX Security
Show us your support by starring ⭐ the repository

@renovate renovate Bot force-pushed the renovate/aws-sdk-go-v2-monorepo branch 2 times, most recently from 350df73 to 48c215c Compare June 11, 2026 12:34
@renovate renovate Bot force-pushed the renovate/aws-sdk-go-v2-monorepo branch from 48c215c to 020fce2 Compare June 12, 2026 00:31
@iggy iggy merged commit ba271a8 into main Jun 18, 2026
4 checks passed
@iggy iggy deleted the renovate/aws-sdk-go-v2-monorepo branch June 18, 2026 03:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant