chore(deps): update docker.io/cypress/included docker tag to v15#491
Open
renovate[bot] wants to merge 1 commit intomasterfrom
Open
chore(deps): update docker.io/cypress/included docker tag to v15#491renovate[bot] wants to merge 1 commit intomasterfrom
renovate[bot] wants to merge 1 commit intomasterfrom
Conversation
✅
|
| Descriptor | Linter | Files | Fixed | Errors | Warnings | Elapsed time |
|---|---|---|---|---|---|---|
| ✅ ACTION | actionlint | 14 | 0 | 0 | 0.25s | |
| ✅ BASH | bash-exec | 7 | 0 | 0 | 0.03s | |
| ✅ BASH | shellcheck | 4 | 0 | 0 | 0.12s | |
| shfmt | 7 | 1 | 0 | 0.01s | ||
| ✅ CSHARP | csharpier | 3 | 0 | 0 | 2.01s | |
| roslynator | 1 | 1 | 0 | 11.78s | ||
| ✅ CSS | stylelint | 1 | 0 | 0 | 1.58s | |
| ✅ DOCKERFILE | hadolint | 5 | 0 | 0 | 0.22s | |
| ✅ EDITORCONFIG | editorconfig-checker | 435 | 0 | 0 | 2.82s | |
| ✅ ENV | dotenv-linter | 1 | 0 | 0 | 0.01s | |
| npm-groovy-lint | 8 | 0 | 20 | 24.15s | ||
| ✅ HTML | djlint | 2 | 0 | 0 | 1.76s | |
| ✅ HTML | htmlhint | 2 | 0 | 0 | 0.29s | |
| checkstyle | 64 | 0 | 90 | 9.34s | ||
| ✅ JSON | jsonlint | 53 | 0 | 0 | 0.6s | |
| ✅ JSON | prettier | 53 | 0 | 0 | 4.89s | |
| ✅ JSON | v8r | 53 | 0 | 0 | 31.93s | |
| markdownlint | 23 | 273 | 0 | 2.04s | ||
| ✅ PYTHON | bandit | 1 | 0 | 0 | 1.93s | |
| ✅ PYTHON | black | 1 | 0 | 0 | 2.45s | |
| ✅ PYTHON | flake8 | 1 | 0 | 0 | 0.85s | |
| ✅ PYTHON | isort | 1 | 0 | 0 | 0.64s | |
| ✅ PYTHON | mypy | 1 | 0 | 0 | 9.13s | |
| ✅ PYTHON | ruff | 1 | 0 | 0 | 0.04s | |
| ✅ REPOSITORY | checkov | yes | no | no | 44.89s | |
| ✅ REPOSITORY | gitleaks | yes | no | no | 4.85s | |
| ✅ REPOSITORY | git_diff | yes | no | no | 0.38s | |
| kics | yes | no | 109 | 56.08s | ||
| ✅ REPOSITORY | secretlint | yes | no | no | 3.63s | |
| ✅ REPOSITORY | syft | yes | no | no | 15.78s | |
| trivy | yes | 22 | no | 21.21s | ||
| ✅ REPOSITORY | trivy-sbom | yes | no | no | 6.55s | |
| ✅ REPOSITORY | trufflehog | yes | no | no | 9.47s | |
| ✅ XML | xmllint | 4 | 0 | 0 | 1.54s | |
| ✅ YAML | prettier | 118 | 0 | 0 | 3.27s |
Detailed Issues
⚠️ JAVA / checkstyle - 90 warnings
warning: First sentence of Javadoc is missing an ending period.
warning: First sentence of Javadoc is missing an ending period.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Line is longer than 100 characters (found 103).
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: First sentence of Javadoc is missing an ending period.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Line is longer than 100 characters (found 107).
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: First sentence of Javadoc is missing an ending period.
warning: Line is longer than 100 characters (found 115).
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Missing a Javadoc comment.
warning: Line is longer than 100 characters (found 220).
warning: Line is longer than 100 characters (found 104).
warning: Line is longer than 100 characters (found 117).
warning: Line is longer than 100 characters (found 154).
warning: Line is longer than 100 characters (found 111).
warning: Line is longer than 100 characters (found 128).
warning: Line is longer than 100 characters (found 142).
warning: Missing a Javadoc comment.
warning: Line is longer than 100 characters (found 104).
warning: Line is longer than 100 characters (found 132).
warning: Line is longer than 100 characters (found 141).
warning: 90 warnings emitted
⚠️ REPOSITORY / kics - 109 warnings
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/notify/tests/e2e/docker-compose.yaml:33:1
│
33 │ tester:
│ ^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/notify/tests/e2e/docker-compose.yaml:4:1
│
4 │ notify:
│ ^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/list/frontend/tests/e2e/docker-compose.yaml:72:1
│
72 │ jaeger:
│ ^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/query/tests/e2e/docker-compose.yaml:45:1
│
45 │ broadsea-atlasdb:
│ ^^^^^^^^^^^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/list/frontend/tests/e2e/docker-compose.yaml:19:1
│
19 │ tester:
│ ^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ docker-compose/docker-compose.staging.yaml:25:1
│
25 │ omopdb:
│ ^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/list/frontend/tests/e2e/docker-compose.yaml:44:1
│
44 │ loader:
│ ^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ docker-compose/docker-compose.staging.yaml:142:1
│
142 │ fhir-db:
│ ^^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/list/frontend/deploy/docker-compose.dev.yml:2:1
│
2 │ fhir:
│ ^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/list/frontend/deploy/docker-compose.dev.yml:51:1
│
51 │ fhir-pseudonymizer:
│ ^^^^^^^^^^^^^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/notify/tests/e2e/docker-compose.yaml:47:1
│
47 │ fhir:
│ ^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/notify/tests/e2e/docker-compose.yaml:26:1
│
26 │ jobstore-db:
│ ^^^^^^^^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Docker compose file doesn't have 'cap_drop' attribute. Make sure your container only has necessary capabilities.
┌─ src/query/tests/e2e/docker-compose.yaml:35:1
│
35 │ fhir:
│ ^^^^^^^
│
= Container Capabilities Unrestricted
= Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
warning: Doc
(Truncated to 5714 characters out of 33945)
⚠️ MARKDOWN / markdownlint - 273 errors
CHANGELOG.md:5 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:9:121 MD013/line-length Line length [Expected: 120; Actual: 232]
CHANGELOG.md:10:121 MD013/line-length Line length [Expected: 120; Actual: 220]
CHANGELOG.md:13 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:24 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:25 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Bug Fixes"]
CHANGELOG.md:30 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:31 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Miscellaneous Chores"]
CHANGELOG.md:45 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:52 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:53 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Bug Fixes"]
CHANGELOG.md:56:121 MD013/line-length Line length [Expected: 120; Actual: 220]
CHANGELOG.md:59 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:60 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Miscellaneous Chores"]
CHANGELOG.md:66:121 MD013/line-length Line length [Expected: 120; Actual: 241]
CHANGELOG.md:73 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:74 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Bug Fixes"]
CHANGELOG.md:81:121 MD013/line-length Line length [Expected: 120; Actual: 220]
CHANGELOG.md:86 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:91 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:92 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Miscellaneous Chores"]
CHANGELOG.md:105:121 MD013/line-length Line length [Expected: 120; Actual: 229]
CHANGELOG.md:106:121 MD013/line-length Line length [Expected: 120; Actual: 228]
CHANGELOG.md:109:121 MD013/line-length Line length [Expected: 120; Actual: 237]
CHANGELOG.md:122 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:125:121 MD013/line-length Line length [Expected: 120; Actual: 224]
CHANGELOG.md:127 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:128 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Bug Fixes"]
CHANGELOG.md:132 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:133 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Miscellaneous Chores"]
CHANGELOG.md:139 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:140 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Features"]
CHANGELOG.md:144 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:145 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Miscellaneous Chores"]
CHANGELOG.md:151 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:152 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Bug Fixes"]
CHANGELOG.md:158 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:159 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Features"]
CHANGELOG.md:163 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:164 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Bug Fixes"]
CHANGELOG.md:167:121 MD013/line-length Line length [Expected: 120; Actual: 219]
CHANGELOG.md:168:121 MD013/line-length Line length [Expected: 120; Actual: 221]
CHANGELOG.md:169:121 MD013/line-length Line length [Expected: 120; Actual: 228]
CHANGELOG.md:170:121 MD013/line-length Line length [Expected: 120; Actual: 220]
CHANGELOG.md:171:121 MD013/line-length Line length [Expected: 120; Actual: 232]
CHANGELOG.md:177:121 MD013/line-length Line length [Expected: 120; Actual: 233]
CHANGELOG.md:180 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:181 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Documentation"]
CHANGELOG.md:185 MD012/no-multiple-blanks Multiple consecutive blank lines [Expected: 1; Actual: 2]
CHANGELOG.md:186 MD024/no-duplicate-heading Multiple headings with the same content [Context: "Miscellaneous Chores"]
CHANGELOG.md:207:121 MD013/line-length Line length [Expected: 120; Actual: 228]
CHANGELOG.md:209:121 MD013/line-length Line length [Expected: 120; Actual: 230]
CHANGELOG.md:211:121 MD013/line-length Line length [Expected: 120; Actual: 232]
CHANGELOG.md:212:121 MD013/line-length Line length [Expected: 120; Actual: 232]
CHANGELOG.md:213:121 MD013/line-length Line length [Expected: 120; Actual: 234]
CHANGELOG.md:215:121 MD013/line-length Line length [Expected: 120; Actual: 237]
CHANGELOG.md:216:121 MD013/line-length Line length [Expected: 120; Actual: 237]
CHANGELOG.md:217:121 MD013/line-length Line length [Expected: 120; Actual: 237]
CHANGELOG.md:218:121 MD013/line-length Line length [Expected: 120; Actual: 239]
CHANGELOG.md:219:121 MD013/line-length Line length [Expected: 120; Actual: 239]
CHANGELOG.md:220:121 MD013/line-length Line length [Expected: 12
(Truncated to 5714 characters out of 26039)
⚠️ GROOVY / npm-groovy-lint - 20 warnings
note: Class should be marked with one of @GrailsCompileStatic, @CompileStatic or @CompileDynamic
= Check that classes are explicitely annotated with either @GrailsCompileStatic, @CompileStatic or @CompileDynamic
note: Class should be marked with one of @GrailsCompileStatic, @CompileStatic or @CompileDynamic
= Check that classes are explicitely annotated with either @GrailsCompileStatic, @CompileStatic or @CompileDynamic
note: The String 'spring-boot-loader' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:71:24
│
71 │ intoLayer("spring-boot-loader") {
│ ^^^^^^^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'org/springframework/boot/loader/**' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:72:26
│
72 │ include("org/springframework/boot/loader/**")
│ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'application' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:74:24
│
74 │ intoLayer("application")
│ ^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'module-dependencies' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:77:24
│
77 │ intoLayer("module-dependencies") {
│ ^^^^^^^^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'org.miracum:*:*' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:78:26
│
78 │ include("org.miracum:*:*")
│ ^^^^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'dependencies' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:80:24
│
80 │ intoLayer("dependencies")
│ ^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'dependencies' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:82:25
│
82 │ layerOrder = [ "dependencies", "spring-boot-loader", "module-dependencies", "application" ]
│ ^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'spring-boot-loader' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:82:41
│
82 │ layerOrder = [ "dependencies", "spring-boot-loader", "module-dependencies", "application" ]
│ ^^^^^^^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'module-dependencies' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:82:63
│
82 │ layerOrder = [ "dependencies", "spring-boot-loader", "module-dependencies", "application" ]
│ ^^^^^^^^^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: The String 'application' can be wrapped in single quotes instead of double quotes
┌─ src/buildSrc/src/main/groovy/org.miracum.recruit.java-application-conventions.gradle:82:86
│
82 │ layerOrder = [ "dependencies", "spring-boot-loader", "module-dependencies", "application" ]
│ ^^^^^^^^^^^
│
= String objects should be created with single quotes, and GString objects created with double quotes. Creating normal String objects with double quotes is confusing to readers.
note: Class should be marked with one of @GrailsCompileStatic, @CompileStatic or @CompileDynamic
= Check that classes are explicitely annotated with ei
(Truncated to 5714 characters out of 7255)
⚠️ CSHARP / roslynator - 1 error
Results of roslynator linter (version 0.11.0.0)
See documentation on https://megalinter.io/9.2.0/descriptors/csharp_roslynator/
-----------------------------------------------
❌ [ERROR] tests/chaos/tester/tester.csproj
Loading project 'tests/chaos/tester/tester.csproj'...
Analyze 'tester'
Program.cs(50,32): error CS0103: The name 'TimeSpan' does not exist in the current context
Program.cs(108,5): error CS0103: The name 'Console' does not exist in the current context
Program.cs(115,28): error CS0103: The name 'File' does not exist in the current context
Program.cs(117,9): error CS0103: The name 'JsonSerializer' does not exist in the current context
Program.cs(125,9): error CS0103: The name 'Console' does not exist in the current context
Program.cs(127,22): error CS0103: The name 'Policy' does not exist in the current context
Program.cs(140,9): error CS0103: The name 'Console' does not exist in the current context
Program.cs(141,15): error CS0103: The name 'System' does not exist in the current context
Program.cs(141,49): error CS0103: The name 'TimeSpan' does not exist in the current context
Program.cs(147,5): error CS0103: The name 'Console' does not exist in the current context
Program.cs(155,5): error CS0103: The name 'Console' does not exist in the current context
Program.cs(160,5): error CS0103: The name 'Console' does not exist in the current context
Program.cs(169,5): error CS0103: The name 'Console' does not exist in the current context
Program.cs(184,13): error CS0103: The name 'Console' does not exist in the current context
Program.cs(192,19): error CS0103: The name 'System' does not exist in the current context
Program.cs(192,53): error CS0103: The name 'TimeSpan' does not exist in the current context
Program.cs(196,9): error CS0103: The name 'Console' does not exist in the current context
Program.cs(202,13): error CS0103: The name 'Console' does not exist in the current context
Program.cs(213,15): error CS0103: The name 'System' does not exist in the current context
Program.cs(213,49): error CS0103: The name 'TimeSpan' does not exist in the current context
Program.cs(101,42): error CS0161: 'RunTest(FileInfo, Uri, TimeSpan, int)': not all code paths return a value
Program.cs(145,42): error CS0161: 'RunDeleteMessages(Uri)': not all code paths return a value
Program.cs(163,42): error CS0161: 'RunAssert(Uri, int, int)': not all code paths return a value
Program.cs(1,7): error CS0246: The type or namespace name 'System' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(2,7): error CS0246: The type or namespace name 'System' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(3,7): error CS0246: The type or namespace name 'System' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(4,7): error CS0246: The type or namespace name 'Hl7' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(5,7): error CS0246: The type or namespace name 'Hl7' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(6,7): error CS0246: The type or namespace name 'Hl7' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(7,7): error CS0246: The type or namespace name 'Polly' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(9,23): error CS0246: The type or namespace name 'RootCommand' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(11,35): error CS0246: The type or namespace name 'Option<>' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(11,42): error CS0246: The type or namespace name 'Uri' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(18,33): error CS0246: The type or namespace name 'Command' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(26,22): error CS0246: The type or namespace name 'Option<>' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(26,29): error CS0246: The type or namespace name 'FileInfo' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(34,27): error CS0246: The type or namespace name 'Option<>' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(40,31): error CS0246: The type or namespace name 'Option<>' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(40,38): error CS0246: The type or namespace name 'Uri' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(44,41): error CS0246: The type or namespace name 'Uri' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(46,26): error CS0246: The type or namespace name 'Option<>' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(46,33): error CS0246: The type or namespace name 'TimeSpan' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(52,23): error CS0246: The type or namespace name 'Command' could not be found (are you missing a using directive or an assembly reference?)
Program.cs(73,38): error CS0246: The type or namesp
(Truncated to 5714 characters out of 26578)
⚠️ BASH / shfmt - 1 error
diff src/gradlew.orig src/gradlew
--- src/gradlew.orig
+++ src/gradlew
@@ -71,15 +71,15 @@
# Need this for daisy-chained symlinks.
while
- APP_HOME=${app_path%"${app_path##*/}"} # leaves a trailing /; empty if no leading path
- [ -h "$app_path" ]
+ APP_HOME=${app_path%"${app_path##*/}"} # leaves a trailing /; empty if no leading path
+ [ -h "$app_path" ]
do
- ls=$( ls -ld "$app_path" )
- link=${ls#*' -> '}
- case $link in #(
- /*) app_path=$link ;; #(
- *) app_path=$APP_HOME$link ;;
- esac
+ ls=$(ls -ld "$app_path")
+ link=${ls#*' -> '}
+ case $link in #(
+ /*) app_path=$link ;; #(
+ *) app_path=$APP_HOME$link ;;
+ esac
done
# This is normally unused
@@ -86,20 +86,20 @@
# shellcheck disable=SC2034
APP_BASE_NAME=${0##*/}
# Discard cd standard output in case $CDPATH is set (https://github.com/gradle/gradle/issues/25036)
-APP_HOME=$( cd -P "${APP_HOME:-./}" > /dev/null && printf '%s\n' "$PWD" ) || exit
+APP_HOME=$(cd -P "${APP_HOME:-./}" >/dev/null && printf '%s\n' "$PWD") || exit
# Use the maximum available, or set MAX_FD != -1 to use that value.
MAX_FD=maximum
-warn () {
- echo "$*"
-} >&2
-
-die () {
- echo
- echo "$*"
- echo
- exit 1
+warn() {
+ echo "$*"
+} >&2
+
+die() {
+ echo
+ echo "$*"
+ echo
+ exit 1
} >&2
# OS specific support (must be 'true' or 'false').
@@ -107,57 +107,56 @@
msys=false
darwin=false
nonstop=false
-case "$( uname )" in #(
- CYGWIN* ) cygwin=true ;; #(
- Darwin* ) darwin=true ;; #(
- MSYS* | MINGW* ) msys=true ;; #(
- NONSTOP* ) nonstop=true ;;
+case "$(uname)" in #(
+CYGWIN*) cygwin=true ;; #(
+Darwin*) darwin=true ;; #(
+MSYS* | MINGW*) msys=true ;; #(
+NONSTOP*) nonstop=true ;;
esac
-
-
# Determine the Java command to use to start the JVM.
-if [ -n "$JAVA_HOME" ] ; then
- if [ -x "$JAVA_HOME/jre/sh/java" ] ; then
- # IBM's JDK on AIX uses strange locations for the executables
- JAVACMD=$JAVA_HOME/jre/sh/java
- else
- JAVACMD=$JAVA_HOME/bin/java
- fi
- if [ ! -x "$JAVACMD" ] ; then
- die "ERROR: JAVA_HOME is set to an invalid directory: $JAVA_HOME
-
-Please set the JAVA_HOME variable in your environment to match the
-location of your Java installation."
- fi
+if [ -n "$JAVA_HOME" ]; then
+ if [ -x "$JAVA_HOME/jre/sh/java" ]; then
+ # IBM's JDK on AIX uses strange locations for the executables
+ JAVACMD=$JAVA_HOME/jre/sh/java
+ else
+ JAVACMD=$JAVA_HOME/bin/java
+ fi
+ if [ ! -x "$JAVACMD" ]; then
+ die "ERROR: JAVA_HOME is set to an invalid directory: $JAVA_HOME
+
+Please set the JAVA_HOME variable in your environment to match the
+location of your Java installation."
+ fi
else
- JAVACMD=java
- if ! command -v java >/dev/null 2>&1
- then
- die "ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
-
-Please set the JAVA_HOME variable in your environment to match the
-location of your Java installation."
- fi
+ JAVACMD=java
+ if ! command -v java >/dev/null 2>&1; then
+ die "ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
+
+Please set the JAVA_HOME variable in your environment to match the
+location of your Java installation."
+ fi
fi
# Increase the maximum file descriptors if we can.
-if ! "$cygwin" && ! "$darwin" && ! "$nonstop" ; then
- case $MAX_FD in #(
- max*)
- # In POSIX sh, ulimit -H is undefined. That's why the result is checked to see if it worked.
- # shellcheck disable=SC2039,SC3045
- MAX_FD=$( ulimit -H -n ) ||
- warn "Could not query maximum file descriptor limit"
- esac
- case $MAX_FD in #(
- '' | soft) :;; #(
- *)
- # In POSIX sh, ulimit -n is undefined. That's why the result is checked to see if it worked.
- # shellcheck disable=SC2039,SC3045
- ulimit -n "$MAX_FD" ||
- warn "Could not set maximum file descriptor limit to $MAX_FD"
- esac
+if ! "$cygwin" && ! "$darwin" && ! "$nonstop"; then
+ case $MAX_FD in #(
+ max*)
+ # In POSIX sh, ulimit -H is undefined. That's why the result is checked to see if it worked.
+ # shellcheck disable=SC2039,SC3045
+ MAX_FD=$(ulimit -H -n) ||
+ warn "Could not query maximum file descriptor limit"
+ ;;
+ esac
+ case $MAX_FD in #(
+ '' | soft) : ;; #(
+ *)
+ # In POSIX sh, ulimit -n is undefined. That's why the result is checked to see if it worked.
+ # shellcheck disable=SC2039,SC3045
+ ulimit -n "$MAX_FD" ||
+ warn "Could not set maximum file descriptor limit to $MAX_FD"
+ ;;
+ esac
fi
# Collect all arguments for the java command, stacking in reverse order:
@@ -169,35 +168,36 @@
# * DEFAULT_JVM_OPTS, JAVA_OPTS, and GRADLE_OPTS environment variables.
# For Cygwin or MSYS, switch paths to Windows format before running java
-if "$cygwin" || "$msys" ; then
- APP_HOME=$( cygpath --path --mixed "$APP_HOME" )
-
- JAVACMD=$( cygpath --unix "$JAVACMD" )
-
- # Now convert the arguments - kludge to limit ourselves to /bin/sh
- for arg do
- if
- case $arg in #(
- -*) false ;; # don't mess with options #(
- /?*) t=${arg#/} t=/${t%%/*} # looks like a POSIX filepath
- [ -e "$t" ] ;; #(
- *) false ;;
- esac
- then
- arg=$( cygpath --path --ignore --mixed "$arg" )
- fi
- # Roll the args list around exactly as many times as the number of
- # args, so each arg
(Truncated to 5714 characters out of 8251)
⚠️ REPOSITORY / trivy - 22 errors
error: Package: form-data
Installed Version: 2.3.3
Vulnerability CVE-2025-7783
Severity: CRITICAL
Fixed Version: 2.5.4, 3.0.4, 4.0.4
Link: [CVE-2025-7783](https://avd.aquasec.com/nvd/cve-2025-7783)
┌─ src/list/frontend/tests/e2e/package-lock.json:925:1
│
925 │ ╭ "node_modules/form-data": {
926 │ │ "version": "2.3.3",
927 │ │ "resolved": "https://registry.npmjs.org/form-data/-/form-data-2.3.3.tgz",
928 │ │ "integrity": "sha512-1lLKB2Mu3aGP1Q/2eCOx0fNbRMe7XdwktwOruhfqqd0rIJWwN4Dh+E3hrPSlDCXnSR7UtZ1N38rVXm+6+MEhJQ==",
· │
938 │ │ }
939 │ │ },
│ ╰^
│
= form-data: Unsafe random function in form-data
= Use of Insufficiently Random Values vulnerability in form-data allows HTTP Parameter Pollution (HPP). This vulnerability is associated with program files lib/form_data.Js.
This issue affects form-data: < 2.5.4, 3.0.0 - 3.0.3, 4.0.0 - 4.0.3.
error: Package: qs
Installed Version: 6.10.4
Vulnerability CVE-2025-15284
Severity: HIGH
Fixed Version: 6.14.1
Link: [CVE-2025-15284](https://avd.aquasec.com/nvd/cve-2025-15284)
┌─ src/list/frontend/tests/e2e/package-lock.json:1683:1
│
1683 │ ╭ "node_modules/qs": {
1684 │ │ "version": "6.10.4",
1685 │ │ "resolved": "https://registry.npmjs.org/qs/-/qs-6.10.4.tgz",
1686 │ │ "integrity": "sha512-OQiU+C+Ds5qiH91qh/mg0w+8nwQuLjM4F4M/PbmhDOoYehPh+Fb0bDjtR1sOvy7YKxvj28Y/M0PhP5uVX0kB+g==",
· │
1697 │ │ }
1698 │ │ },
│ ╰^
│
= qs: qs: Denial of Service via improper input validation in array parsing
= Improper Input Validation vulnerability in qs (parse modules) allows HTTP DoS.This issue affects qs: < 6.14.1.
Summary
The arrayLimit option in qs did not enforce limits for bracket notation (a[]=1&a[]=2), only for indexed notation (a[0]=1). This is a consistency bug; arrayLimit should apply uniformly across all array notations.
Note: The default parameterLimit of 1000 effectively mitigates the DoS scenario originally described. With default options, bracket notation cannot produce arrays larger than parameterLimit regardless of arrayLimit, because each a[]=valueconsumes one parameter slot. The severity has been reduced accordingly.
Details
The arrayLimit option only checked limits for indexed notation (a[0]=1&a[1]=2) but did not enforce it for bracket notation (a[]=1&a[]=2).
Vulnerable code (lib/parse.js:159-162):
if (root === '[]' && options.parseArrays) {
obj = utils.combine([], leaf); // No arrayLimit check
}
Working code (lib/parse.js:175):
else if (index <= options.arrayLimit) { // Limit checked here
obj = [];
obj[index] = leaf;
}
The bracket notation handler at line 159 uses utils.combine([], leaf) without validating against options.arrayLimit, while indexed notation at line 175 checks index <= options.arrayLimit before creating arrays.
PoC
const qs = require('qs');
const result = qs.parse('a[]=1&a[]=2&a[]=3&a[]=4&a[]=5&a[]=6', { arrayLimit: 5 });
console.log(result.a.length); // Output: 6 (should be max 5)
Note on parameterLimit interaction: The original advisory's "DoS demonstration" claimed a length of 10,000, but parameterLimit (default: 1000) caps parsing to 1,000 parameters. With default options, the actual output is 1,000, not 10,000.
Impact
Consistency bug in arrayLimit enforcement. With default parameterLimit, the practical DoS risk is negligible since parameterLimit already caps the total number of parsed parameters (and thus array elements from bracket notation). The risk increases only when parameterLimit is explicitly set to a very high value.
error: Package: axios
Installed Version: 1.13.2
Vulnerability CVE-2026-25639
Severity: HIGH
Fixed Version: 1.13.5, 0.30.3
Link: [CVE-2026-25639](https://avd.aquasec.com/nvd/cve-2026-25639)
┌─ src/list/package-lock.json:9538:1
│
9538 │ ╭ "node_modules/axios": {
9539 │ │ "version": "1.13.2",
9540 │ │ "resolved": "https://registry.npmjs.org/axios/-/axios-1.13.2.tgz",
9541 │ │ "integrity": "sha512-VPk9ebNqPcy5lRGuSlKx752IlDatOjT9paPlm8A7yOuW2Fbvp4X3JznJtT4f0GzGLLiWE9W8onz51SqLYwzGaA==",
· │
9548 │ │ }
9549 │ │ },
│ ╰^
│
= axios: Axios affected by Denial of Service via __proto__ Key in mergeConfig
= Axios is a promise based HTTP client for the browser and Node.js. Prior to versions 0.30.3 and 1.13.5, the mergeConfig function in axios crashes with a TypeError when processing configuration objects containing __proto__ as an own property. An attacker can trigger this by providing a malicious configuration object created via JSON.parse(), causing complete denial of service. This vulnerability is fixed in versions 0.30.3 and 1.13.5.
error: Package: braces
Installed Version: 2.3.2
Vulnerability CVE-2024-4068
Severity: HIGH
Fixed Version: 3.0.3
Link: [CVE-2024-4068](https://avd.aquasec.com/nvd/cve-2024-4068)
┌─ src/list/package-lock.json:20463:1
│
20463 │ ╭ "node_modules/jscodeshift/node_modules/braces": {
20464 │ │ "version": "2.3.2",
20465 │ │ "license": "MIT",
20466 │ │ "optional": true,
· │
20481 │ │ }
20482 │ │ },
│ ╰^
│
= braces: fails to limit the number of characters it can handle
= The NPM package `braces`, versions prior to 3.0.3, fails to
(Truncated to 5714 characters out of 25710)
See detailed reports in MegaLinter artifacts
Your project could benefit from a custom flavor, which would allow you to run only the linters you need, and thus improve runtime performances. (Skip this info by defining FLAVOR_SUGGESTIONS: false)
- Documentation: Custom Flavors
- Command:
npx [email protected] --custom-flavor-setup --custom-flavor-linters PYTHON_BLACK,PYTHON_FLAKE8,PYTHON_ISORT,PYTHON_BANDIT,PYTHON_MYPY,PYTHON_RUFF,ACTION_ACTIONLINT,BASH_EXEC,BASH_SHELLCHECK,BASH_SHFMT,CSHARP_CSHARPIER,CSHARP_ROSLYNATOR,CSS_STYLELINT,DOCKERFILE_HADOLINT,EDITORCONFIG_EDITORCONFIG_CHECKER,ENV_DOTENV_LINTER,GROOVY_NPM_GROOVY_LINT,HTML_DJLINT,HTML_HTMLHINT,JAVA_CHECKSTYLE,JSON_JSONLINT,JSON_V8R,JSON_PRETTIER,MARKDOWN_MARKDOWNLINT,REPOSITORY_CHECKOV,REPOSITORY_GIT_DIFF,REPOSITORY_GITLEAKS,REPOSITORY_KICS,REPOSITORY_SECRETLINT,REPOSITORY_SYFT,REPOSITORY_TRIVY,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,XML_XMLLINT,YAML_PRETTIER
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
3 times, most recently
from
58dc353 to
9220d6e
Compare
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
from
9220d6e to
9a9b3e1
Compare
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
from
9a9b3e1 to
717a666
Compare
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
from
717a666 to
e6a5a00
Compare
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
from
e6a5a00 to
be94d73
Compare
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
6 times, most recently
from
8c5ad56 to
444b140
Compare
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
4 times, most recently
from
fc8482d to
15dd81e
Compare
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
from
15dd81e to
7601354
Compare
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
from
7601354 to
6762e10
Compare
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
from
8514e5b to
1dc2546
Compare
| @@ -1,4 +1,4 @@ | |||
| FROM docker.io/cypress/included:14.5.4@sha256:848fb0d361178e695aa3ebd0f9632f2966232907c0fc02fbd6432e07d4d08d8b | |||
| FROM docker.io/cypress/included:15.7.1@sha256:6b621503593a984d3db1153cb34cc82dc9ae1f3cd554839d94f9ffde0662fe8e | |||
Check notice
Code scanning / KICS (MegaLinter REPOSITORY_KICS)
Healthcheck Instruction Missing
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
7 times, most recently
from
c44e424 to
7d1a459
Compare
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
5 times, most recently
from
e26b84e to
71618df
Compare
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
2 times, most recently
from
7934b25 to
1aaee22
Compare
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
11 times, most recently
from
149eb23 to
11ba45a
Compare
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
from
11ba45a to
9918662
Compare
renovate
bot
force-pushed
the
renovate/docker.io-cypress-included-15.x
branch
from
9918662 to
c214a5c
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
14.5.4→15.11.0Configuration
📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, on day 1 of the month ( * 0-3 1 * * ) (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.