chore(deps): update tflint plugin terraform-linters/tflint-ruleset-google to v0.34.0 by renovate[bot] · Pull Request #5684 · oxsecurity/megalinter

renovate · 2025-06-28T17:34:29Z

This PR contains the following updates:

Package	Type	Update	Change
terraform-linters/tflint-ruleset-google	plugin	minor	`0.33.0` -> `0.34.0`

Release Notes

terraform-linters/tflint-ruleset-google (terraform-linters/tflint-ruleset-google)

`v0.34.0`

Compare Source

What's Changed

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

…ogle to v0.34.0

github-actions · 2025-06-28T17:40:25Z

🦙 MegaLinter status: ⚠️ WARNING

⚠️ BASH / bash-exec - 1 error

Results of bash-exec linter (version 5.2.37)
See documentation on https://megalinter.io/beta/descriptors/bash_bash_exec/
-----------------------------------------------

✅ [SUCCESS] .automation/build_schemas_doc.sh
✅ [SUCCESS] .automation/format-tables.sh
✅ [SUCCESS] .vscode/testlinter.sh
✅ [SUCCESS] build.sh
✅ [SUCCESS] entrypoint.sh
❌ [ERROR] sh/megalinter_exec
    Error: File:[sh/megalinter_exec] is not executable

⚠️ MARKDOWN / markdownlint - 307 errors

.github/linters/valestyles/proselint/README.md:12:601 MD013/line-length Line length [Expected: 600; Actual: 755]
CHANGELOG.md:1926:87 MD059/descriptive-link-text Link text should be descriptive [Context: "[here]"]
docs/badge.md:9 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "Badge"]
docs/config-activation.md:9 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "Activation and deactivation"]
docs/config-apply-fixes.md:9 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "Apply fixes"]
docs/config-cli-lint-mode.md:9 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "CLI lint mode"]
docs/config-file.md:9 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: ".mega-linter.yml file"]
docs/config-filtering.md:9 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "Filter linted files"]
docs/config-linters.md:9 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "Linter specific variables"]
docs/config-postcommands.md:9 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "Post-commands"]
docs/config-precommands.md:9 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "Pre-commands"]
docs/config-variables-security.md:9 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "Environment variables security"]
docs/config-variables.md:9 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "Common variables"]
docs/configuration.md:9 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "Configuration"]
docs/descriptors/action_actionlint.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "actionlint"]
docs/descriptors/action.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "ACTION"]
docs/descriptors/ansible_ansible_lint.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "ansible-lint"]
docs/descriptors/ansible_ansible_lint.md:8:601 MD013/line-length Line length [Expected: 600; Actual: 795]
docs/descriptors/ansible.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "ANSIBLE"]
docs/descriptors/api_spectral.md:14:601 MD013/line-length Line length [Expected: 600; Actual: 746]
docs/descriptors/api.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "API"]
docs/descriptors/arm_arm_ttk.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "arm-ttk"]
docs/descriptors/arm.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "ARM"]
docs/descriptors/bash_bash_exec.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "bash-exec"]
docs/descriptors/bash_shellcheck.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "shellcheck"]
docs/descriptors/bash_shellcheck.md:8:601 MD013/line-length Line length [Expected: 600; Actual: 785]
docs/descriptors/bash_shfmt.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "shfmt"]
docs/descriptors/bash.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "BASH"]
docs/descriptors/bicep_bicep_linter.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "bicep_linter"]
docs/descriptors/bicep.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "BICEP"]
docs/descriptors/c_clang_format.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "clang-format"]
docs/descriptors/c_clang_format.md:8:601 MD013/line-length Line length [Expected: 600; Actual: 768]
docs/descriptors/c_cppcheck.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "cppcheck"]
docs/descriptors/c_cpplint.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "cpplint"]
docs/descriptors/c.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "C"]
docs/descriptors/clojure_cljstyle.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "cljstyle"]
docs/descriptors/clojure_cljstyle.md:8:601 MD013/line-length Line length [Expected: 600; Actual: 768]
docs/descriptors/clojure.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "CLOJURE"]
docs/descriptors/cloudformation_cfn_lint.md:14:601 MD013/line-length Line length [Expected: 600; Actual: 865]
docs/descriptors/cloudformation.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "CLOUDFORMATION"]
docs/descriptors/coffee_coffeelint.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "coffeelint"]
docs/descriptors/coffee_coffeelint.md:8:601 MD013/line-length Line length [Expected: 600; Actual: 746]
docs/descriptors/coffee.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "COFFEE"]
docs/descriptors/copypaste.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "COPYPASTE"]
docs/descriptors/cpp_clang_format.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "clang-format"]
docs/descriptors/cpp_clang_format.md:8:601 MD013/line-length Line length [Expected: 600; Actual: 768]
docs/descriptors/cpp_cppcheck.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "cppcheck"]
docs/descriptors/cpp_cpplint.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "cpplint"]
docs/descriptors/cpp.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "C++"]
docs/descriptors/csharp_csharpier.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "csharpier"]
docs/descriptors/csharp_csharpier.md:8:601 MD013/line-length Line length [Expected: 600; Actual: 750]
docs/descriptors/csharp_dotnet_format.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "dotnet-format"]
docs/descriptors/csharp_roslynator.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "roslynator"]
docs/descriptors/csharp_roslynator.md:8:601 MD013/line-length Line length [Expected: 600; Actual: 770]
docs/descriptors/csharp.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "C\#"]
docs/descriptors/css_stylelint.md:14:601 MD013/line-length Line length [Expected: 600; Actual: 788]
docs/descriptors/css.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "CSS"]
docs/descriptors/dart_dartanalyzer.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "dartanalyzer"]
docs/descriptors/dart.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "DART"]
docs/descriptors/dockerfile_hadolint.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "hadolint"]
docs/descriptors/dockerfile_hadolint.md:8:601 MD013/line-length Line length [Expected: 600; Actual: 765]
docs/descriptors/dockerfile.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "DOCKERFILE"]
docs/descriptors/editorconfig_editorconfig_checker.md:14:601 MD013/line-length Line length [Expected: 600; Actual: 956]
docs/descriptors/editorconfig.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "EDITORCONFIG"]
docs/descriptors/env_dotenv_linter.md:14:601 MD013/line-length Line length [Expected: 600; Actual: 868]
docs/descriptors/env.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "ENV"]
docs/descriptors/gherkin_gherkin_lint.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "gherkin-lint"]
docs/descriptors/gherkin_gherkin_lint.md:8:601 MD013/line-length Line length [Expected: 600; Actual: 796]
docs/descriptors/gherkin.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "GHERKIN"]
docs/descriptors/go_golangci_lint.md:14:601 MD013/line-length Line length [Expected: 600; Actual: 867]
docs/descriptors/go_revive.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "revive"]
docs/descriptors/go_revive.md:8:601 MD013/line-length Line length [Expected: 600; Actual: 735]
docs/descriptors/go.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "GO"]
docs/descriptors/graphql_graphql_schema_linter.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "graphql-schema-linter"]
docs/descriptors/graphql_graphql_schema_linter.md:8:601 MD013/line-length Line length [Expected: 600; Actual: 846]
docs/descriptors/graphql.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "GRAPHQL"]
docs/descriptors/groovy_npm_groovy_lint.md:7 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "npm-groovy-lint"]
docs/descriptors/groovy_npm_groovy_lint.md:8:601 MD013/line-length Line length [Expected: 600; Actual: 887]
docs/descriptors/groovy.md:8 MD025/single-title/single-h1 Multiple top-level headings in the same document [Context: "GROOVY"]
docs

(Truncated to 10000 characters out of 38139)

⚠️ PYTHON / bandit - 67 errors

Run started:2025-06-28 17:45:56.144031

Test results:
>> Issue: [B404:blacklist] Consider possible security implications associated with the subprocess module.
   Severity: Low   Confidence: High
   CWE: CWE-78 (https://cwe.mitre.org/data/definitions/78.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/blacklists/blacklist_imports.html#b404-import-subprocess
   Location: ./.automation/build.py:11:0
10	import shutil
11	import subprocess
12	import sys

--------------------------------------------------
>> Issue: [B105:hardcoded_password_string] Possible hardcoded password: ''
   Severity: Low   Confidence: Medium
   CWE: CWE-259 (https://cwe.mitre.org/data/definitions/259.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/plugins/b105_hardcoded_password_string.html
   Location: ./.automation/build.py:2998:35
2997	                api_github_headers = {"content-type": "application/json"}
2998	                use_github_token = ""
2999	                if "GITHUB_TOKEN" in os.environ:

--------------------------------------------------
>> Issue: [B105:hardcoded_password_string] Possible hardcoded password: ' (with GITHUB_TOKEN)'
   Severity: Low   Confidence: Medium
   CWE: CWE-259 (https://cwe.mitre.org/data/definitions/259.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/plugins/b105_hardcoded_password_string.html
   Location: ./.automation/build.py:3002:39
3001	                    api_github_headers["authorization"] = f"Bearer {github_token}"
3002	                    use_github_token = " (with GITHUB_TOKEN)"
3003	                logging.info(

--------------------------------------------------
>> Issue: [B602:subprocess_popen_with_shell_equals_true] subprocess call with shell=True identified, security issue.
   Severity: High   Confidence: High
   CWE: CWE-78 (https://cwe.mitre.org/data/definitions/78.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/plugins/b602_subprocess_popen_with_shell_equals_true.html
   Location: ./.automation/build.py:3379:14
3378	        cwd=cwd,
3379	        shell=True,
3380	        executable=None if sys.platform == "win32" else which("bash"),
3381	    )
3382	    stdout = utils.clean_string(process.stdout)
3383	    logging.info(f"Format table results: ({process.returncode})\n" + stdout)
3384	
3385	
3386	def generate_version():
3387	    # npm version
3388	    logging.info("Updating npm package version…")

--------------------------------------------------
>> Issue: [B607:start_process_with_partial_path] Starting a process with a partial executable path
   Severity: Low   Confidence: High
   CWE: CWE-78 (https://cwe.mitre.org/data/definitions/78.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/plugins/b607_start_process_with_partial_path.html
   Location: ./.automation/build.py:3390:14
3389	    cwd_to_use = os.getcwd() + "/mega-linter-runner"
3390	    process = subprocess.run(
3391	        [
3392	            "npm",
3393	            "version",
3394	            "--newversion",
3395	            RELEASE_TAG,
3396	            "-no-git-tag-version",
3397	            "--no-commit-hooks",
3398	        ],
3399	        stdout=subprocess.PIPE,
3400	        universal_newlines=True,
3401	        cwd=cwd_to_use,
3402	        shell=True,
3403	    )
3404	    print(process.stdout)

--------------------------------------------------
>> Issue: [B602:subprocess_popen_with_shell_equals_true] subprocess call with shell=True identified, security issue.
   Severity: High   Confidence: High
   CWE: CWE-78 (https://cwe.mitre.org/data/definitions/78.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/plugins/b602_subprocess_popen_with_shell_equals_true.html
   Location: ./.automation/build.py:3402:14
3401	        cwd=cwd_to_use,
3402	        shell=True,
3403	    )
3404	    print(process.stdout)
3405	    print(process.stderr)
3406	    # Update python project version:
3407	    process = subprocess.run(
3408	        ["hatch", "version", RELEASE_TAG],
3409	        stdout=subprocess.PIPE,
3410	        text=True,
3411	        shell=True,
3412	        check=True,
3413	    )
3414	    # Update changelog
3415	    if UPDATE_CHANGELOG is True:
3416	        changelog_file = f"{REPO_HOME}/CHANGELOG.md"

--------------------------------------------------
>> Issue: [B607:start_process_with_partial_path] Starting a process with a partial executable path
   Severity: Low   Confidence: High
   CWE: CWE-78 (https://cwe.mitre.org/data/definitions/78.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/plugins/b607_start_process_with_partial_path.html
   Location: ./.automation/build.py:3407:14
3406	    # Update python project version:
3407	    process = subprocess.run(
3408	        ["hatch", "version", RELEASE_TAG],
3409	        stdout=subprocess.PIPE,
3410	        text=True,
3411	        shell=True,
3412	        check=True,
3413	    )
3414	    # Update changelog

--------------------------------------------------
>> Issue: [B602:subprocess_popen_with_shell_equals_true] subprocess call with shell=True identified, security issue.
   Severity: High   Confidence: High
   CWE: CWE-78 (https://cwe.mitre.org/data/definitions/78.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/plugins/b602_subprocess_popen_with_shell_equals_true.html
   Location: ./.automation/build.py:3411:14
3410	        text=True,
3411	        shell=True,
3412	        check=True,
3413	    )
3414	    # Update changelog
3415	    if UPDATE_CHANGELOG is True:
3416	        changelog_file = f"{REPO_HOME}/CHANGELOG.md"
3417	        with open(changelog_file, "r", encoding="utf-8") as md_file:
3418	            changelog_content = md_file.read()

--------------------------------------------------
>> Issue: [B605:start_process_with_a_shell] Starting a process with a shell, possible injection detected, security issue.
   Severity: High   Confidence: High
   CWE: CWE-78 (https://cwe.mitre.org/data/definitions/78.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/plugins/b605_start_process_with_a_shell.html
   Location: ./.automation/build.py:3459:4
3458	    logging.info("Running command: " + " ".join(command))
3459	    os.system(" ".join(command))
3460	

--------------------------------------------------
>> Issue: [B404:blacklist] Consider possible security implications associated with the subprocess module.
   Severity: Low   Confidence: High
   CWE: CWE-78 (https://cwe.mitre.org/data/definitions/78.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/blacklists/blacklist_imports.html#b404-import-subprocess
   Location: ./megalinter/Linter.py:27:0
26	import shutil
27	import subprocess
28	import sys

--------------------------------------------------
>> Issue: [B310:blacklist] Audit url open for permitted schemes. Allowing use of file:/ or custom schemes is often unexpected.
   Severity: Medium   Confidence: High
   CWE: CWE-22 (https://cwe.mitre.org/data/definitions/22.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/blacklists/blacklist_calls.html#b310-urllib-urlopen
   Location: ./megalinter/Linter.py:564:24
563	                    with (
564	                        urllib.request.urlopen(remote_config_file) as response,
565	                        open(local_config_file, "wb") as out_file,

--------------------------------------------------
>> Issue: [B310:blacklist] Audit url open for permitted schemes. Allowing use of file:/ or custom schemes is often unexpected.
   Severity: Medium   Confidence: High
   CWE: CWE-22 (https://cwe.mitre.org/data/definitions/22.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/blacklists/blacklist_calls.html#b310-urllib-urlopen
   Location: ./megalinter/Linter.py:643:24
642	                    with (
643	                        urllib.request.urlopen(remote_ignore_file) as response,
644	                        open(local_ignore_file, "wb") as out_file,

--------------------------------------------------
>> Issue: [B602:subprocess_popen_with_shell_equals_true] subprocess call with shell=True identified, security issue.
   Severity: High   Confidence: High
   CWE: CWE-78 (https://cwe.mitre.org/data/definitions/78.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/plugins/b602_subprocess_popen_with_shell_equals_true.html
   Location: ./megalinter/Linter.py:1054:22
1053	                stderr=subprocess.STDOUT,
1054	                shell=True,
1055	                cwd=cwd,
1056	                env=subprocess_env,
1057	                executable=(
1058	                    shutil.which("bash") if sys.platform == "win32" else "/bin/bash"
1059	                ),
1060	            )
1061	            return_code = process.returncode
1062	            return_stdout = utils.clean_string(process.stdout, not self.is_formatter)
1063	        else:
1064	            # Use full executable path if we are on Windows
1065	            if sys.platform == "win32":

--------------------------------------------------
>> Issue: [B603:subprocess_without_shell_equals_true] subprocess call - check for execution of untrusted input.
   Severity: Low   Confidence: High
   CWE: CWE-78 (https://cwe.mitre.org/data/definitions/78.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/plugins/b603_subprocess_without_shell_equals_true.html
   Location: ./megalinter/Linter.py:1076:26
1075	            try:
1076	                process = subprocess.run(
1077	                    command,
1078	                    stdout=subprocess.PIPE,
1079	                    stderr=subprocess.STDOUT,
1080	                    env=subprocess_env,
1081	                    cwd=cwd,
1082	                )
1083	                return_code = process.returncode

--------------------------------------------------
>> Issue: [B603:subprocess_without_shell_equals_true] subprocess call - check for execution of untrusted input.
   Severity: Low   Confidence: High
   CWE: CWE-78 (https://cwe.mitre.org/data/definitions/78.html)
   More Info: https://bandit.readthedocs.io/en/1.8.5/plugins/b603_subprocess_without

(Truncated to 10000 characters out of 42362)

⚠️ REPOSITORY / grype - 30 errors

[0000]  WARN no explicit name and version provided for directory source, deriving artifact ID from the given path (which is not ideal)
NAME                           INSTALLED  FIXED-IN  TYPE    VULNERABILITY        SEVERITY  EPSS%  RISK  
ejs                            3.1.6      3.1.7     npm     GHSA-phwq-j96m-2c2q  Critical  99.81   87.9  
tar                            6.0.1      6.1.1     npm     GHSA-3jfq-g458-7qm9  High      99.38   68.2  
requests                       2.24.0     2.31.0    python  GHSA-j8r2-6x86-q33q  Medium    90.46    3.5  
minimist                       1.2.5      1.2.6     npm     GHSA-xvch-5gv4-984h  Critical  77.35    1.1  
tar                            6.0.1      6.1.9     npm     GHSA-5955-9wpr-37jh  High      75.17    0.7  
ejs                            3.1.6      3.1.10    npm     GHSA-ghr5-ch3p-vcr6  Medium    78.48    0.6  
node-fetch                     2.6.6      2.6.7     npm     GHSA-r683-j2x4-v87g  High      66.17    0.4  
ip                             1.1.5                npm     GHSA-2p57-rm9w-gvfp  High      62.12    0.3  
braces                         3.0.2      3.0.3     npm     GHSA-grv7-fg5c-xmjg  High      62.13    0.3  
minimatch                      3.0.4      3.0.5     npm     GHSA-f8q6-p94x-37v3  High      61.07    0.3  
semver                         7.3.5      7.5.2     npm     GHSA-c2qf-rxjj-qqgw  High      53.47    0.2  
tar                            6.0.1      6.1.2     npm     GHSA-r628-mhmh-qjhw  High      41.52    0.1  
ansi-regex                     3.0.0      3.0.1     npm     GHSA-93q8-gq69-wqmw  High      42.32    0.1  
cross-spawn                    7.0.3      7.0.5     npm     GHSA-3xgq-45jj-v275  High      38.96    0.1  
tar                            6.0.1      6.2.1     npm     GHSA-f5x3-32g6-xq36  Medium    43.02    0.1  
tar                            6.1.11     6.2.1     npm     GHSA-f5x3-32g6-xq36  Medium    43.02    0.1  
@octokit/request-error         2.1.0      5.1.1     npm     GHSA-xx4v-prfh-6cgc  Medium    45.48    0.1  
http-cache-semantics           4.1.0      4.1.1     npm     GHSA-rc47-6667-2j5j  High      37.14    0.1  
@octokit/request               5.6.2      8.4.1     npm     GHSA-rmvr-2pp2-xj38  Medium    43.05    0.1  
micromatch                     4.0.4      4.0.8     npm     GHSA-952p-6rrq-rcjv  Medium    41.73  < 0.1  
ip                             1.1.5      1.1.9     npm     GHSA-78xj-cgh5-2h22  Low       52.05  < 0.1  
@octokit/plugin-paginate-rest  2.17.0     9.2.2     npm     GHSA-h5c3-5r3r-rr8q  Medium    28.52  < 0.1  
debug                          4.2.0      4.3.1     npm     GHSA-gxpj-cx7g-858c  Low       27.98  < 0.1  
requests                       2.24.0     2.32.4    python  GHSA-9hjg-9r4m-mvj7  Medium    19.62  < 0.1  
tar                            6.0.1      6.1.9     npm     GHSA-qq89-hq3f-393p  High       3.97  < 0.1  
brace-expansion                1.1.11     1.1.12    npm     GHSA-v6h2-p8h4-qcjw  Low       16.20  < 0.1  
brace-expansion                2.0.1      2.0.2     npm     GHSA-v6h2-p8h4-qcjw  Low       16.20  < 0.1  
tar                            6.0.1      6.1.7     npm     GHSA-9r2w-394v-53qc  High       1.91  < 0.1  
word-wrap                      1.2.3      1.2.4     npm     GHSA-j8xg-fqg3-53r7  Medium     3.71  < 0.1  
requests                       2.24.0     2.32.0    python  GHSA-9wx4-h78v-vm56  Medium     2.69  < 0.1
[0030] ERROR discovered vulnerabilities at or above the severity threshold

✅ Linters with no issues

black, checkov, cspell, flake8, git_diff, hadolint, isort, jscpd, jsonlint, lychee, markdown-table-formatter, mypy, prettier, pylint, ruff, secretlint, shellcheck, shfmt, spectral, syft, trivy, trivy-sbom, trufflehog, v8r, v8r, xmllint, yamllint

See detailed report in MegaLinter reports

…nstrutions (#5685) * New display with expandable sections for PR/MR comment summary Changes the default display format for Pull Request/Merge Request comments to use expandable sections instead of a table. This improves readability by grouping linter outputs within expandable sections, and truncates long outputs, preventing overly long comments. The previous table-based format remains available by setting `REPORTERS_MARKDOWN_SUMMARY_TYPE=table`. * no links in title * refactor display * display * dynamic max chars calculation * improve display * more * goooo * more * sort * singular * singular * black * fix * Improve linter_text in descriptors for Enhanced documentation * Update doc * more * fixes * fixes * fix * repo * fix * Removes CI/CD and editor integration mentions Removes mentions of CI/CD and editor integrations from linter descriptions. These features are often implied or can vary based on user setup, and removing the explicit mentions simplifies the descriptions. Also, updates "CI/CD Integration" to "SARIF Output" in `bash.megalinter-descriptor.yml` for better clarity * cspell * chore(deps): update dependency uvicorn to v0.35.0 (#5683) * chore(deps): update dependency uvicorn to v0.35.0 * [MegaLinter] Apply linters fixes --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update tflint plugin terraform-linters/tflint-ruleset-google to v0.34.0 (#5684) * chore(deps): update tflint plugin terraform-linters/tflint-ruleset-google to v0.34.0 * [MegaLinter] Apply linters fixes --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update dependency python-gitlab to v6.1.0 (#5680) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * [MegaLinter] Apply linters fixes * build doc * [MegaLinter] Apply linters fixes * copilot instructions --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: nvuillam <17500430+nvuillam@users.noreply.github.com>

chore(deps): update tflint plugin terraform-linters/tflint-ruleset-go…

ae7137b

…ogle to v0.34.0

renovate bot added the dependencies Pull requests that update a dependency file label Jun 28, 2025

renovate bot requested review from Kurt-von-Laven, bdovaz, echoix and nvuillam as code owners June 28, 2025 17:34

renovate bot added the dependencies Pull requests that update a dependency file label Jun 28, 2025

Merge ae7137b into 151326d

1ad674a

renovate bot temporarily deployed to dev June 28, 2025 17:34 Inactive

renovate bot had a problem deploying to dev June 28, 2025 17:34 Error

[MegaLinter] Apply linters fixes

4449ccf

nvuillam temporarily deployed to dev June 28, 2025 17:41 — with GitHub Actions Inactive

nvuillam merged commit cb5c750 into main Jun 28, 2025
133 checks passed

nvuillam deleted the renovate/terraform-linters-tflint-ruleset-google-0.x branch June 28, 2025 21:15

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): update tflint plugin terraform-linters/tflint-ruleset-google to v0.34.0#5684

chore(deps): update tflint plugin terraform-linters/tflint-ruleset-google to v0.34.0#5684
nvuillam merged 3 commits intomainfrom
renovate/terraform-linters-tflint-ruleset-google-0.x

renovate bot commented Jun 28, 2025 •

edited

Loading

Uh oh!

github-actions bot commented Jun 28, 2025 •

edited

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Uh oh!

Conversation

renovate bot commented Jun 28, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release Notes

v0.34.0

What's Changed

Enhancements

Chores

New Contributors

Configuration

Uh oh!

github-actions bot commented Jun 28, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

🦙 MegaLinter status: ⚠️ WARNING

✅ Linters with no issues

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

renovate bot commented Jun 28, 2025 •

edited

Loading

`v0.34.0`

github-actions bot commented Jun 28, 2025 •

edited

Loading