Skip to content

chore(deps): update golang:1.26.4-alpine docker digest to 3ad5730#351

Open
renovate-sh-app[bot] wants to merge 1 commit into
mainfrom
renovate/golang-1.26.4-alpine
Open

chore(deps): update golang:1.26.4-alpine docker digest to 3ad5730#351
renovate-sh-app[bot] wants to merge 1 commit into
mainfrom
renovate/golang-1.26.4-alpine

Conversation

@renovate-sh-app

@renovate-sh-app renovate-sh-app Bot commented Jun 18, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Type Update Change
golang container digest f1ddd9f3ad5730

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

Need help?

You can ask for more help in the following Slack channel: #proj-renovate-self-hosted. In that channel you can also find ADR and FAQ docs in the Resources section.

Signed-off-by: renovate-sh-app[bot] <219655108+renovate-sh-app[bot]@users.noreply.github.com>
@renovate-sh-app
renovate-sh-app Bot requested a review from a team as a code owner June 18, 2026 13:10
@renovate-sh-app
renovate-sh-app Bot requested review from IfSentient and konsalex and removed request for a team June 18, 2026 13:10
@github-actions

Copy link
Copy Markdown
Contributor

⚠️ The workflow jobs listed below don't declare a permissions: block and may break when the organization's default GITHUB_TOKEN permissions are restricted to read-only.

Expand for findings
warning[excessive-permissions]: overly broad permissions
   --> ./.github/workflows/ci.yml:1:1
    |
  1 | / name: CI
  2 | |
  3 | | on:
  4 | |   push:
...   |
494 | |       - name: Run CLI linter
495 | |         run: make cli-lint
    | |___________________________^ default permissions used due to no permissions: block
    |
    = note: audit confidence → Medium
    = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

warning[excessive-permissions]: overly broad permissions
  --> ./.github/workflows/ci.yml:14:3
   |
14 | /   generate:
15 | |     name: Generated Files
16 | |     runs-on: ubuntu-latest
17 | |     container:
...  |
32 | |             exit 1
33 | |           fi
   | |            ^
   | |            |
   | |____________this job
   |              default permissions used due to no permissions: block
   |
   = note: audit confidence → Medium
   = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

warning[excessive-permissions]: overly broad permissions
  --> ./.github/workflows/ci.yml:35:3
   |
35 | /   format:
36 | |     name: Format
37 | |     runs-on: ubuntu-latest
38 | |     container:
...  |
51 | |             exit 1
52 | |           fi
   | |            ^
   | |            |
   | |____________this job
   |              default permissions used due to no permissions: block
   |
   = note: audit confidence → Medium
   = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

warning[excessive-permissions]: overly broad permissions
  --> ./.github/workflows/ci.yml:54:3
   |
54 | /   lint:
55 | |     name: Lint
56 | |     runs-on: ubuntu-latest
57 | |     container:
...  |
63 | |       - name: Run linter
64 | |         run: make lint
   | |                      ^
   | |                      |
   | |______________________this job
   |                        default permissions used due to no permissions: block
   |
   = note: audit confidence → Medium
   = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

warning[excessive-permissions]: overly broad permissions
  --> ./.github/workflows/ci.yml:66:3
   |
66 | /   test-unit:
67 | |     name: Unit Tests
68 | |     runs-on: ubuntu-latest
69 | |     container:
...  |
89 | |           CGO_ENABLED: 1
90 | |         run: make test-unit
   | |                           ^
   | |                           |
   | |___________________________this job
   |                             default permissions used due to no permissions: block
   |
   = note: audit confidence → Medium
   = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

warning[excessive-permissions]: overly broad permissions
   --> ./.github/workflows/ci.yml:134:3
    |
134 | /   test-integration:
135 | |     name: Integration Tests
136 | |     runs-on: ubuntu-latest
137 | |     container:
...   |
157 | |           CGO_ENABLED: 1
158 | |         run: make test-integration
    | |                                  ^
    | |                                  |
    | |__________________________________this job
    |                                    default permissions used due to no permissions: block
    |
    = note: audit confidence → Medium
    = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

warning[excessive-permissions]: overly broad permissions
   --> ./.github/workflows/ci.yml:330:3
    |
330 | /   security:
331 | |     name: Security
332 | |     runs-on: ubuntu-latest
333 | |     container:
...   |
341 | |           go install golang.org/x/vuln/cmd/govulncheck@latest
342 | |           govulncheck ./...
    | |                           ^
    | |                           |
    | |___________________________this job
    |                             default permissions used due to no permissions: block
    |
    = note: audit confidence → Medium
    = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

warning[excessive-permissions]: overly broad permissions
   --> ./.github/workflows/ci.yml:344:3
    |
344 | /   trufflehog:
345 | |     name: Secrets Scan
346 | |     runs-on: ubuntu-latest
347 | |     steps:
...   |
353 | |         with:
354 | |           extra_args: --results=verified,unknown --exclude-globs='protocol/signing/testsigning/**'
    | |                                                                                                  ^
    | |                                                                                                  |
    | |__________________________________________________________________________________________________this job
    |                                                                                                    default permissions used due to no permissions: block
    |
    = note: audit confidence → Medium
    = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

warning[excessive-permissions]: overly broad permissions
   --> ./.github/workflows/ci.yml:356:3
    |
356 | /   deps:
357 | |     name: Dependencies
358 | |     runs-on: ubuntu-latest
359 | |     container:
...   |
375 | |           go install github.com/remyoudompheng/go-misc/deadcode@latest
376 | |           deadcode ./... || true
    | |                                ^
    | |                                |
    | |________________________________this job
    |                                  default permissions used due to no permissions: block
    |
    = note: audit confidence → Medium
    = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

warning[excessive-permissions]: overly broad permissions
   --> ./.github/workflows/ci.yml:378:3
    |
378 | /   staticcheck:
379 | |     name: Static Analysis
380 | |     runs-on: ubuntu-latest
381 | |     container:
...   |
389 | |           go install honnef.co/go/tools/cmd/staticcheck@latest
390 | |           staticcheck ./...
    | |                           ^
    | |                           |
    | |___________________________this job
    |                             default permissions used due to no permissions: block
    |
    = note: audit confidence → Medium
    = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

warning[excessive-permissions]: overly broad permissions
   --> ./.github/workflows/ci.yml:392:3
    |
392 | /   test-clone-perf:
393 | |     name: Clone Performance Tests
394 | |     runs-on: ubuntu-latest
395 | |     container:
...   |
415 | |           cd perf
416 | |           make test-clone-perf
    | |                              ^
    | |                              |
    | |______________________________this job
    |                                default permissions used due to no permissions: block
    |
    = note: audit confidence → Medium
    = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

warning[excessive-permissions]: overly broad permissions
   --> ./.github/workflows/ci.yml:418:3
    |
418 | /   test-clone-perf-full:
419 | |     name: Full Clone Performance Test (1 minute limit)
420 | |     runs-on: ubuntu-latest
421 | |     container:
...   |
445 | |           echo "Test will FAIL if clone takes more than 60 seconds"
446 | |           go test -v -timeout 1m -run TestCloneGrafanaGrafanaFullRepository .
    | |                                                                             ^
    | |                                                                             |
    | |_____________________________________________________________________________this job
    |                                                                               default permissions used due to no permissions: block
    |
    = note: audit confidence → Medium
    = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

warning[excessive-permissions]: overly broad permissions
   --> ./.github/workflows/ci.yml:448:3
    |
448 | /   cli-build:
449 | |     name: CLI Build
450 | |     runs-on: ubuntu-latest
451 | |     container:
...   |
463 | |           test -f bin/nanogit || (echo "Binary not found" && exit 1)
464 | |           ./bin/nanogit --version
    | |                                 ^
    | |                                 |
    | |_________________________________this job
    |                                   default permissions used due to no permissions: block
    |
    = note: audit confidence → Medium
    = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

warning[excessive-permissions]: overly broad permissions
   --> ./.github/workflows/ci.yml:466:3
    |
466 | /   cli-format:
467 | |     name: CLI Format
468 | |     runs-on: ubuntu-latest
469 | |     container:
...   |
482 | |             exit 1
483 | |           fi
    | |            ^
    | |            |
    | |____________this job
    |              default permissions used due to no permissions: block
    |
    = note: audit confidence → Medium
    = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

warning[excessive-permissions]: overly broad permissions
   --> ./.github/workflows/ci.yml:485:3
    |
485 | /   cli-lint:
486 | |     name: CLI Lint
487 | |     runs-on: ubuntu-latest
488 | |     container:
...   |
494 | |       - name: Run CLI linter
495 | |         run: make cli-lint
    | |                           ^
    | |                           |
    | |___________________________this job
    |                             default permissions used due to no permissions: block
    |
    = note: audit confidence → Medium
    = help: audit documentation → https://docs.zizmor.sh/audits/#excessive-permissions

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants