Skip to content

chore(deps): update aquasecurity/setup-trivy digest to 8afa9b9#224

Closed
renovate[bot] wants to merge 533 commits into
developfrom
renovate/aquasecurity-setup-trivy-digest
Closed

chore(deps): update aquasecurity/setup-trivy digest to 8afa9b9#224
renovate[bot] wants to merge 533 commits into
developfrom
renovate/aquasecurity-setup-trivy-digest

Conversation

@renovate

@renovate renovate Bot commented Mar 19, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Type Update Change
aquasecurity/setup-trivy (changelog) action digest 3fb12ec8afa9b9

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate Bot and others added 30 commits December 5, 2025 21:01
Replaces the outdated ygg.to domain with the current yggtorrent.ch domain to ensure proper connectivity and domain resolution.

Fixes #84
Changes the git-cliff action argument from `--current` to `--latest` to generate changelog entries for the most recent release instead of the current working state.

This ensures the release workflow produces accurate changelog content that reflects the latest tagged version.
Reorganizes build and compilation scripts into a more conventional scripts directory structure for better project organization.

Updates internal script references to reflect the new location.
Adds a new checklist item requiring users to confirm they have updated the configuration file from the repository for Prowlarr/Jackett integrations.

Helps ensure users are working with the latest configuration before submitting issues, reducing reports caused by outdated configurations.
Streamlines the release workflow by removing the `publish-release` dependency from the `sign` job and adding it to the `publish-release` job itself along with `verify`, ensuring proper execution order.

Updates all SBOM attestation types from the full URL format (`https://cyclonedx.org/bom/v1.7`) to the shorthand `cyclonedx` format for both creation and verification steps, improving readability and following cosign conventions.

Adds missing permissions (`packages: read` and `id-token: write`) to the `verify` job to ensure proper authentication when verifying attestations.
Major documentation overhaul:
- Set up Docusaurus 3.9.2 with bilingual support (French/English)
- Migrate all user documentation from root docs/ to website/docs/
- Keep developer documentation in root docs/ folder
- Add comprehensive installation guides (Docker, Binary, Source)
- Configure custom domain (ygege.lila.ws) with CNAME

Documentation structure:
- Introduction and getting started guide
- Installation guides (Docker, Binary, Manual compilation)
- Configuration documentation
- Integration guides (Prowlarr, Jackett)
- TMDB/IMDB metadata setup
- Complete API reference
- FAQ section

Internationalization (i18n):
- Full French and English translations
- Locale-specific routing (/ for French, /en/ for English)
- Translated sidebar categories and navigation
- JSON translation files for UI elements

Developer documentation:
- Contribution guidelines
- CI/CD implementation guide
- PR preview workflow
- Release workflow documentation

Infrastructure:
- GitHub Actions workflow for automated deployment
- Custom domain configuration (ygege.lila.ws)
- Build optimizations with Bun package manager

Dependencies:
- Updated React to 19.2.1
- Updated TypeScript to 5.9.3
- Updated all Docusaurus dependencies to latest versions

Breaking changes:
- Documentation moved from /docs/ to root (/)
- README links updated to point to ygege.lila.ws
- Removed duplicate documentation files
- Renamed ygege-fr.yml to ygege-en.yml for consistency
Replaces the existing logo image file with an updated version to reflect current branding standards
Reorganizes documentation to reduce redundancy and enhance clarity:

- Pins dependency versions in bun.lock instead of using "latest" tags
- Consolidates "What is Ygégé" content in intro.md to avoid duplication
- Streamlines getting-started.md by removing redundant intro section
- Enhances intro.md with better navigation structure and quick start
- Adds structured documentation sections (Installation, Integrations, Developer, Support)
- Improves user onboarding with 30-second installation snippet

Applies changes to both French and English documentation for consistency.
Added language selection options to README.
Removes beta branch references across all GitHub Actions workflows and documentation, simplifying the branching strategy to only develop and master branches.

Updates CI/CD pipelines to trigger only on develop (development testing) and master (production releases), eliminating the intermediate beta testing stage. Adjusts Docker image tagging logic accordingly, removing beta-specific tags and conditions.

Updates documentation to reflect the streamlined workflow, changing pre-release examples from alpha/beta to release candidates (rc), and updating default log level from "info" to "debug" across configuration examples.

Enhances API documentation for the /status endpoint to include detailed health check fields for authentication, domain resolution, reachability, and component status.
Restructures GitHub issue templates from JSON to YAML format with
improved user guidance and categorization.

Expands config.yml contact links to include documentation, discussions,
contributing guidelines, and security reporting instead of just a
single help link.

Transforms feature_request.yml into a comprehensive form with:
- Prerequisites checklist to reduce duplicates
- Feature categorization dropdown (search, APIs, Docker, etc.)
- Priority assessment and contribution willingness fields
- Structured sections for problem statement, proposed solution,
  and implementation notes

Removes issue_report.yml in favor of a more streamlined approach.

Improves contributor experience by providing clearer guidance,
reducing ambiguity, and establishing better issue triage workflow.
Improves pull request template with French localization, emoji indicators, and more detailed checklists covering code quality, documentation, tests, and dependencies.

Adds interactive tabs throughout documentation using Docusaurus TabItem components for better user experience when viewing installation methods (Docker Compose, Docker Run, Binary) and runtime environments (Docker, Systemd).

Implements local search functionality via @easyops-cn/docusaurus-search-local plugin with French and English support.

Adds announcement bar encouraging GitHub stars to increase project visibility.
Establishes a comprehensive security policy that defines supported versions, vulnerability triage criteria, and responsible disclosure procedures through GitHub Security Advisories.

Clarifies that only the most recent stable release receives security patches and sets expectations for administrative access risks.

Provides clear guidelines for security researchers on reporting vulnerabilities, including required advisory format, triage criteria for severity levels, and post-disclosure timelines.

Includes security best practices for deployment covering authentication, SSL/TLS configuration, credential management, and monitoring recommendations.
Updates the Docker Hub organization name across all documentation files to reflect the new image repository location.

Changes all references from `uwudev/ygege` to `uwucode/ygege` in both French and English documentation, including configuration examples, installation guides, FAQ, and integration tutorials.

Ensures users pull and run containers from the correct registry location.

Close: #89
Enables previously commented-out screenshots to provide visual guidance for users configuring Prowlarr with Ygégé indexer.

Adds status page screenshot and uncomments configuration screenshots to improve documentation clarity and user experience when following the integration steps.
Documents the new info page available at the root endpoint that displays real-time status monitoring for all Ygégé components.

Provides users with visibility into system health including authentication status, DNS resolution, domain reachability, search/parser functionality, and external integrations.

Includes localized versions for both French and English documentation with screenshot reference.
Optimizes CI pipeline execution by ignoring non-code changes such as documentation files, markdown files, website content, and repository metadata.

Reduces unnecessary workflow runs and conserves CI resources when only documentation or informational files are modified in pull requests and pushes to develop/master branches.
Moves the expected server log output section to appear immediately after the health check command, before the browser access instructions.

This improves the logical flow of the documentation by showing users what to expect from the health check before introducing additional features like the info page.

Also adds the missing screenshot for the info page.
Gauvino and others added 20 commits March 9, 2026 22:13
removes manual pull commands to streamline the automation workflows as modern build actions handle image caching natively

simplifying the workflow configuration reduces maintenance overhead and avoids version mismatches
removes redundant build tools from workflows and the dockerfile to optimize pipeline duration. updates the windows upx installation to version 5.0.0 and refines docker layer caching for better performance.
pins crate versions in the project manifest to ensure reproducible builds.
replaces the logging implementation and adds gzip compression support to the http client.
implements dependency caching in the dockerfile to significantly reduce build times.
improves container security and efficiency by refining user management and minimizing layer size.
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
updates the exclusion list to minimize the build context size and improve build performance. reorganizes ignored files into logical categories and includes additional patterns for documentation, ci configurations, nix files, and testing artifacts.
updates dependency specifications from exact matches to tilde requirements to allow for compatible updates
increments package version to 0.9.1
removes the manual layer for caching cargo dependencies to simplify the dockerfile. this streamlines the build process and reduces complexity in the image construction.
GITHUB_TOKEN cannot trigger other workflows via push events.
Adds workflow_dispatch trigger to release.yml and updates auto-tag
to explicitly dispatch the release workflow after pushing the tag.
prevents failed workflow runs on every master commit by removing
master from the deploy-docs push and pull_request triggers.
@github-actions

Copy link
Copy Markdown

🔧 Build Status for PR #224

🔗 Commit: cf0a621

📦 Build Artifacts

Platform Architecture Status Download
🐧 Linux GNU x86_64 ⏳ Pending Waiting for build...
🐧 Linux GNU i686 ⏳ Pending Waiting for build...
🐧 Linux GNU aarch64 ⏳ Pending Waiting for build...
🐧 Linux GNU armv7 ⏳ Pending Waiting for build...
🪟 Windows x86_64 ⏳ Pending Waiting for build...
🪟 Windows i686 ⏳ Pending Waiting for build...
🍎 macOS x86_64 ⏳ Pending Waiting for build...
🍎 macOS aarch64 ⏳ Pending Waiting for build...

Builds are starting up... This comment will update automatically as each build completes.

Auto-generated by GitHub Actions

@UwUDev UwUDev closed this Jun 27, 2026
@UwUDev UwUDev deleted the renovate/aquasecurity-setup-trivy-digest branch June 27, 2026 10:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

7 participants