ngg846/update upstream 260408

.github/release-please/.release-please-manifest.json

@@ -1,3 +1,3 @@
 {
-  ".": "8.5.0"
+  ".": "8.6.0"
 }

.github/workflows/cd.yml

@@ -54,7 +54,7 @@ jobs:
           sudo rm -rf /usr/local/.ghcup || true
 
       - name: Login to GHCR
-        uses: docker/login-action@v4.0.0
+        uses: docker/login-action@v4.1.0
         with:
           registry: ghcr.io
           username: ${{ github.actor }}
@@ -207,7 +207,7 @@ jobs:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Login to GHCR
-        uses: docker/login-action@v4.0.0
+        uses: docker/login-action@v4.1.0
         with:
           registry: ghcr.io
           username: ${{ github.actor }}
@@ -308,7 +308,7 @@ jobs:
 
       - name: Login to GHCR
         if: steps.release.outputs.release_created
-        uses: docker/login-action@v4.0.0
+        uses: docker/login-action@v4.1.0
         with:
           registry: ghcr.io
           username: ${{ github.actor }}

Dockerfile

@@ -7,26 +7,26 @@
 #########################################
 # Get dependency images as build stages #
 #########################################
-FROM alpine/terragrunt:1.14.6 AS terragrunt
+FROM alpine/terragrunt:1.14.8 AS terragrunt
 FROM dotenvlinter/dotenv-linter:4.0.0 AS dotenv-linter
 FROM ghcr.io/terraform-linters/tflint:v0.61.0 AS tflint
 FROM alpine/helm:4.1.3 AS helm
 FROM golang:1.26.1-alpine AS golang
-FROM golangci/golangci-lint:v2.11.3 AS golangci-lint
-FROM goreleaser/goreleaser:v2.14.3 AS goreleaser
+FROM golangci/golangci-lint:v2.11.4 AS golangci-lint
+FROM goreleaser/goreleaser:v2.15.2 AS goreleaser
 FROM hadolint/hadolint:v2.14.0-alpine AS dockerfile-lint
 FROM registry.k8s.io/kustomize/kustomize:v5.8.1 AS kustomize
-FROM hashicorp/terraform:1.14.7 AS terraform
+FROM hashicorp/terraform:1.14.8 AS terraform
 FROM koalaman/shellcheck:v0.11.0 AS shellcheck
 FROM mstruebing/editorconfig-checker:v3.6.1 AS editorconfig-checker
-FROM mvdan/shfmt:v3.13.0 AS shfmt
-FROM rhysd/actionlint:1.7.11 AS actionlint
+FROM mvdan/shfmt:v3.13.1 AS shfmt
+FROM rhysd/actionlint:1.7.12 AS actionlint
 FROM scalameta/scalafmt:v3.10.7 AS scalafmt
-FROM zricethezav/gitleaks:v8.30.0 AS gitleaks
+FROM zricethezav/gitleaks:v8.30.1 AS gitleaks
 FROM yoheimuta/protolint:0.56.4 AS protolint
 FROM ghcr.io/clj-kondo/clj-kondo:2026.01.19-alpine AS clj-kondo
 FROM dart:3.11.2-sdk AS dart
-FROM mcr.microsoft.com/dotnet/sdk:10.0.200-alpine3.23 AS dotnet-sdk
+FROM mcr.microsoft.com/dotnet/sdk:10.0.201-alpine3.23 AS dotnet-sdk
 FROM composer/composer:2.9.5 AS php-composer
 FROM ghcr.io/aquasecurity/trivy:0.69.3 AS trivy
 FROM ghcr.io/yannh/kubeconform:v0.7.0 AS kubeconform

README.md

@@ -169,15 +169,15 @@ To run super-linter as a GitHub Action, you do the following:
 
        steps:
          - name: Checkout code
-           uses: actions/checkout@v5
+           uses: actions/checkout@v6
            with:
              # super-linter needs the full git history to get the
              # list of files that changed across commits
              fetch-depth: 0
              persist-credentials: false
 
          - name: Super-linter
-           uses: super-linter/super-linter@v8.5.0 # x-release-please-version
+           uses: super-linter/super-linter@v8.6.0 # x-release-please-version
            env:
              # To report GitHub Actions status checks
              GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
@@ -227,7 +227,7 @@ You can configure Super-linter using the following environment variables:
 | ------------------------------------------------------ | ---------------------------------------------------------------------------- | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
 | **ANSIBLE_CONFIG_FILE**                                | `.ansible-lint.yml`                                                          | Filename for [Ansible-lint configuration](https://ansible.readthedocs.io/projects/lint/configuring/) (ex: `.ansible-lint`, `.ansible-lint.yml`)                                                                                                                                                                                                                             |
 | **ANSIBLE_DIRECTORY**                                  | `/ansible`                                                                   | Flag to set the root directory for Ansible file location(s), relative to `DEFAULT_WORKSPACE`. Set to `.` to use the top-level of the `DEFAULT_WORKSPACE`.                                                                                                                                                                                                                   |
-| **BASH_EXEC_IGNORE_LIBRARIES**                         | `false`                                                                      | If set to `true`, shell files with a file extension and no shebang line are ignored when checking if the executable bit is set.                                                                                                                                                                                                                                             |
+| **BASH_EXEC_IGNORE_LIBRARIES**                         | `false`                                                                      | If set to `true`, shell files with no shebang line are ignored when checking if the executable bit is set.                                                                                                                                                                                                                                                                  |
 | **BASH_FILE_NAME**                                     | `.shellcheckrc`                                                              | Filename for [Shellcheck](https://github.com/koalaman/shellcheck/blob/master/shellcheck.1.md#rc-files)                                                                                                                                                                                                                                                                      |
 | **BASH_SEVERITY**                                      | Shellcheck default severity                                                  | Specify the minimum severity of errors to consider in shellcheck. Valid values in order of severity are error, warning, info and style.                                                                                                                                                                                                                                     |
 | **CHECKOV_FILE_NAME**                                  | `.checkov.yaml`                                                              | Configuration filename for Checkov.                                                                                                                                                                                                                                                                                                                                         |
@@ -614,12 +614,12 @@ jobs:
       statuses: write
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0
           persist-credentials: false
       - name: Super-Linter
-        uses: super-linter/super-linter@v8.5.0 # x-release-please-version
+        uses: super-linter/super-linter@v8.6.0 # x-release-please-version
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           # Set your fix mode variables to true
@@ -663,7 +663,7 @@ To work around these limitations, you do the following:
 1. Use the authentication token in the `actions/checkout` step:
 
    ```yaml
-   - uses: actions/checkout@v5
+   - uses: actions/checkout@v6
      with:
        fetch-depth: 0
        token: ${{ secrets.SUPER_LINTER_TOKEN }}

action.yml

@@ -4,7 +4,7 @@ author: "Super-linter contributors"
 description: "Super-linter is a ready-to-run collection of linters and code analyzers, to help validate your source code."
 runs:
   using: "docker"
-  image: "docker://ghcr.io/super-linter/super-linter:v8.5.0" # x-release-please-version
+  image: "docker://ghcr.io/super-linter/super-linter:v8.6.0" # x-release-please-version
 branding:
   icon: "check-square"
   color: "white"

dependencies/Gemfile

@@ -4,8 +4,8 @@ source "https://rubygems.org"
 
 git_source(:github) { |repo_name| "https://github.com/#{repo_name}" }
 
-gem "rubocop", "~> 1.85.1"
-gem "rubocop-github", "~> 0.26.0"
+gem "rubocop", "~> 1.86.0"
+gem "rubocop-github", "~> 0.27.0"
 gem "rubocop-minitest", "~> 0.39.1"
 gem "rubocop-performance", "~>1.26.1"
 gem "rubocop-rails", "~> 2.34"

dependencies/Gemfile.lock

@@ -1,7 +1,7 @@
 GEM
   remote: https://rubygems.org/
   specs:
-    activesupport (8.1.1)
+    activesupport (8.1.3)
       base64
       bigdecimal
       concurrent-ruby (~> 1.0, >= 1.3.1)
@@ -14,50 +14,42 @@ GEM
       securerandom (>= 0.3)
       tzinfo (~> 2.0, >= 2.0.5)
       uri (>= 0.13.1)
-    addressable (2.8.9)
-      public_suffix (>= 2.0.2, < 8.0)
     ast (2.4.3)
     base64 (0.3.0)
-    bigdecimal (4.0.1)
+    bigdecimal (4.1.0)
     concurrent-ruby (1.3.6)
     connection_pool (3.0.2)
     drb (2.2.3)
     i18n (1.14.8)
       concurrent-ruby (~> 1.0)
-    json (2.19.0)
-    json-schema (6.2.0)
-      addressable (~> 2.8)
-      bigdecimal (>= 3.1, < 5)
+    json (2.19.3)
     language_server-protocol (3.17.0.5)
     lint_roller (1.1.0)
     logger (1.7.0)
-    mcp (0.8.0)
-      json-schema (>= 4.1)
-    minitest (6.0.1)
+    minitest (6.0.2)
+      drb (~> 2.0)
       prism (~> 1.5)
     parallel (1.27.0)
-    parser (3.3.10.2)
+    parser (3.3.11.1)
       ast (~> 2.4.1)
       racc
     prism (1.9.0)
-    public_suffix (7.0.5)
     racc (1.8.1)
-    rack (3.2.5)
+    rack (3.2.6)
     rainbow (3.1.1)
     regexp_parser (2.11.3)
-    rubocop (1.85.1)
+    rubocop (1.86.0)
       json (~> 2.3)
       language_server-protocol (~> 3.17.0.2)
       lint_roller (~> 1.1.0)
-      mcp (~> 0.6)
       parallel (~> 1.10)
       parser (>= 3.3.0.2)
       rainbow (>= 2.2.2, < 4.0)
       regexp_parser (>= 2.9.3, < 3.0)
       rubocop-ast (>= 1.49.0, < 2.0)
       ruby-progressbar (~> 1.7)
       unicode-display_width (>= 2.4.0, < 4.0)
-    rubocop-ast (1.49.0)
+    rubocop-ast (1.49.1)
       parser (>= 3.3.7.2)
       prism (~> 1.7)
     rubocop-capybara (2.22.1)
@@ -66,7 +58,7 @@ GEM
     rubocop-factory_bot (2.28.0)
       lint_roller (~> 1.1)
       rubocop (~> 1.72, >= 1.72.1)
-    rubocop-github (0.26.0)
+    rubocop-github (0.27.0)
       rubocop (>= 1.76)
       rubocop-performance (>= 1.24)
       rubocop-rails (>= 2.23)
@@ -108,10 +100,10 @@ PLATFORMS
   x86_64-linux-musl
 
 DEPENDENCIES
-  rubocop (~> 1.85.1)
+  rubocop (~> 1.86.0)
   rubocop-capybara (~> 2.22)
   rubocop-factory_bot (~> 2.28)
-  rubocop-github (~> 0.26.0)
+  rubocop-github (~> 0.27.0)
   rubocop-minitest (~> 0.39.1)
   rubocop-performance (~> 1.26.1)
   rubocop-rails (~> 2.34)

dependencies/checkstyle/build.gradle

@@ -5,7 +5,7 @@ repositories {
 
 // Hold this dependency here so we can get automated updates using DependaBot
 dependencies {
-    implementation 'com.puppycrawl.tools:checkstyle:13.3.0'
+    implementation 'com.puppycrawl.tools:checkstyle:13.4.0'
 }
 
 group 'com.github.super-linter'