Draft
Conversation
- [x] Understand the issue: `PROXY_BASE_PATH` used under `set -u` without a guard in `scripts/tests/run-test.sh` - [x] Add explicit check with clear error message before `PROXY_BASE_PATH` is used in the remote non-unit test branch
Bumps [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials) from 84e497037868db1737eb2907599d3f61e8899373 to 51635dbf418c2cdd8b3e1497529334d8db7e4063. - [Release notes](https://github.com/aws-actions/configure-aws-credentials/releases) - [Changelog](https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md) - [Commits](aws-actions/configure-aws-credentials@84e4970...51635db) --- updated-dependencies: - dependency-name: aws-actions/configure-aws-credentials dependency-version: 51635dbf418c2cdd8b3e1497529334d8db7e4063 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
…907599d3f61e8899373 to 51635dbf418c2cdd8b3e1497529334d8db7e4063 (#148) Bumps [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials) from 84e497037868db1737eb2907599d3f61e8899373 to 51635dbf418c2cdd8b3e1497529334d8db7e4063. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md">aws-actions/configure-aws-credentials's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. See <a href="https://github.com/conventional-changelog/standard-version">standard-version</a> for commit guidelines.</p> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v5.1.1...v6.0.0">6.0.0</a> (2026-02-04)</h2> <h3>⚠ BREAKING CHANGES</h3> <ul> <li>Update action to use node24 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1632">#1632</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/a7a2c1125c67f40a1e95768f4e4a7d8f019f87af">a7a2c11</a>)</li> </ul> <h3>Features</h3> <ul> <li>add support to define transitive tag keys (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1316">#1316</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/232435c0c05e51137544f0203931b84893d13b74">232435c</a>) (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1628/changes/930ebd9bcaed959c3ba9e21567e8abbc3cae72c0">930ebd9</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>properly output <code>aws-account-id</code> and <code>authenticated-arn</code> when using role-chaining (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/pull/1633">#1633</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/7ceaf96edc86cc1713cef59eba79feeb23f59da1">7ceaf96</a>)</li> </ul> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v5.1.0...v5.1.1">5.1.1</a> (2025-11-24)</h2> <h3>Miscellaneous Chores</h3> <ul> <li>release 5.1.1 (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/56d6a583f00f6bad6d19d91d53a7bc3b8143d0e9">56d6a58</a>)</li> </ul> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v5.0.0...v5.1.0">5.1.0</a> (2025-10-06)</h2> <h3>Features</h3> <ul> <li>Add global timeout support (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1487">#1487</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/1584b8b0e2062557287c28fbe9b8920df434e866">1584b8b</a>)</li> <li>add no-proxy support (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1482">#1482</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/dde9b22a8e889a0821997a21a2c5a38020ee8de3">dde9b22</a>)</li> <li>Improve debug logging in retry logic (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1485">#1485</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/97ef425d73aa532439f54f90d0e83101a186c5a6">97ef425</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>properly expose getProxyForUrl (introduced in <a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1482">#1482</a>) (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1486">#1486</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/cea42985ac88b42678fbc84c18066a7f07f05176">cea4298</a>)</li> </ul> <h2><a href="https://github.com/aws-actions/configure-aws-credentials/compare/v4.3.1...v5.0.0">5.0.0</a> (2025-09-03)</h2> <h3>⚠ BREAKING CHANGES</h3> <ul> <li>Cleanup input handling. Changes invalid boolean input behavior (see <a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1445">#1445</a>)</li> </ul> <h3>Features</h3> <ul> <li>add skip OIDC option (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1458">#1458</a>) (<a href="https://github.com/aws-actions/configure-aws-credentials/commit/8c45f6b08196feb86cfdbe431541d5571d9ab2c2">8c45f6b</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/51635dbf418c2cdd8b3e1497529334d8db7e4063"><code>51635db</code></a> chore: Update dist</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/8d0763f1ddef2d28ff71f9c28e7ac88fda412ac1"><code>8d0763f</code></a> chore(deps): bump <code>@aws-sdk/client-sts</code> from 3.1015.0 to 3.1020.0 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1710">#1710</a>)</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/563c6001b1970bd672f69f18c0f6c56e6a5b83da"><code>563c600</code></a> chore: Update dist</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/86ccf31ce5969c71606202051756a37182c8bc08"><code>86ccf31</code></a> chore(deps-dev): bump <code>@aws-sdk/credential-provider-env</code> (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1713">#1713</a>)</li> <li><a href="https://github.com/aws-actions/configure-aws-credentials/commit/75adeddc6d4c02084e506c21bc79f4024024f156"><code>75adedd</code></a> chore(deps-dev): bump <code>@biomejs/biome</code> from 2.4.8 to 2.4.10 (<a href="https://redirect.github.com/aws-actions/configure-aws-credentials/issues/1709">#1709</a>)</li> <li>See full diff in <a href="https://github.com/aws-actions/configure-aws-credentials/compare/84e497037868db1737eb2907599d3f61e8899373...51635dbf418c2cdd8b3e1497529334d8db7e4063">compare view</a></li> </ul> </details> <br />
<!-- markdownlint-disable-next-line first-line-heading --> ## Description Pathology have created a lightweight FHIR package using Pydantic. Given we are using similar FHIR resources/elements, we will create a common package. This is the first step towards that: moving away from TypedDicts and copy-pastaing Pathology's package, before moving it in to the common repo. Alongside this change I have actioned [a PR comment ](#75 (comment)) from @nhsd-jack-wainwright that fitted well with this change - namely, having a response class, `GetStructuredRecordResponse` that handles all the response logic. ## Context To reduce duplication of code across the products/teams, and to save reinventing the wheel multiple times. ## Type of changes <!-- What types of changes does your code introduce? Put an `x` in all the boxes that apply. --> - [x] Refactoring (non-breaking change) - [ ] New feature (non-breaking change which adds functionality) - [ ] Breaking change (fix or feature that would change existing functionality) - [ ] Bug fix (non-breaking change which fixes an issue) ## Checklist <!-- Go over all the following points, and put an `x` in all the boxes that apply. --> - [ ] I have followed the code style of the project - [ ] I have added tests to cover my changes - [ ] I have updated the documentation accordingly - [ ] This PR is a result of pair or mob programming - [ ] Exceptions/Exclusions to coding standards (e.g. #noqa or #NOSONAR) are included within this Pull Request. --- ## Sensitive Information Declaration To ensure the utmost confidentiality and protect your and others privacy, we kindly ask you to NOT including [PII (Personal Identifiable Information) / PID (Personal Identifiable Data)](https://digital.nhs.uk/data-and-information/keeping-data-safe-and-benefitting-the-public) or any other sensitive data in this PR (Pull Request) and the codebase changes. We will remove any PR that do contain any sensitive information. We really appreciate your cooperation in this matter. - [ ] I confirm that neither PII/PID nor sensitive data are included in this PR and the codebase changes.
<!-- markdownlint-disable-next-line first-line-heading --> ## Description This removes unused parameters from methods in the PDS and SDS stubs. ## Context These parameters were needed to match genuine method signatures when the stubs were first written, and as such the parameters had to be there (along with NOQA and NOSONAR markings) even if they weren't used. However, the method of calling the stub has since changed (calls now go through `get`), and therefore the method signatures no longer matter. The unused parameters and associated linting suppression need to be removed. ## Type of changes <!-- What types of changes does your code introduce? Put an `x` in all the boxes that apply. --> - [ ] Refactoring (non-breaking change) - [ ] New feature (non-breaking change which adds functionality) - [X] Breaking change (fix or feature that would change existing functionality) - [ ] Bug fix (non-breaking change which fixes an issue) ## Checklist <!-- Go over all the following points, and put an `x` in all the boxes that apply. --> - [X] I have followed the code style of the project - [ ] I have added tests to cover my changes - [X] I have updated the documentation accordingly - [ ] This PR is a result of pair or mob programming - [ ] Exceptions/Exclusions to coding standards (e.g. #noqa or #NOSONAR) are included within this Pull Request. --- ## Sensitive Information Declaration To ensure the utmost confidentiality and protect your and others privacy, we kindly ask you to NOT including [PII (Personal Identifiable Information) / PID (Personal Identifiable Data)](https://digital.nhs.uk/data-and-information/keeping-data-safe-and-benefitting-the-public) or any other sensitive data in this PR (Pull Request) and the codebase changes. We will remove any PR that do contain any sensitive information. We really appreciate your cooperation in this matter. - [X] I confirm that neither PII/PID nor sensitive data are included in this PR and the codebase changes.
- Annotate TODOs with ticket reference for clarity <!-- markdownlint-disable-next-line first-line-heading --> ## Description <!-- Describe your changes in detail. --> ## Context <!-- Why is this change required? What problem does it solve? --> ## Type of changes <!-- What types of changes does your code introduce? Put an `x` in all the boxes that apply. --> - [ ] Refactoring (non-breaking change) - [ ] New feature (non-breaking change which adds functionality) - [ ] Breaking change (fix or feature that would change existing functionality) - [ ] Bug fix (non-breaking change which fixes an issue) ## Checklist <!-- Go over all the following points, and put an `x` in all the boxes that apply. --> - [x] I have followed the code style of the project - [ ] I have added tests to cover my changes - [x] I have updated the documentation accordingly - [ ] This PR is a result of pair or mob programming - [ ] Exceptions/Exclusions to coding standards (e.g. #noqa or #NOSONAR) are included within this Pull Request. --- ## Sensitive Information Declaration To ensure the utmost confidentiality and protect your and others privacy, we kindly ask you to NOT including [PII (Personal Identifiable Information) / PID (Personal Identifiable Data)](https://digital.nhs.uk/data-and-information/keeping-data-safe-and-benefitting-the-public) or any other sensitive data in this PR (Pull Request) and the codebase changes. We will remove any PR that do contain any sensitive information. We really appreciate your cooperation in this matter. - [x] I confirm that neither PII/PID nor sensitive data are included in this PR and the codebase changes.
<!-- markdownlint-disable-next-line first-line-heading --> ## Description Upon receiving a request in the proxy, Apigee, add the user details, user ID and user role ID, to the request before passing it on to the backend. ## Context In order to correctly audit requests, Gateway API and the JWT sent to the provider, requires accurate and safe identifiers for the logged-in users. Proxygen/API Platform allow for this through User ID and User Role ID headers added within the proxy layer, taken from the auth flow within the platform. ## Type of changes <!-- What types of changes does your code introduce? Put an `x` in all the boxes that apply. --> - [ ] Refactoring (non-breaking change) - [x] New feature (non-breaking change which adds functionality) - [ ] Breaking change (fix or feature that would change existing functionality) - [ ] Bug fix (non-breaking change which fixes an issue) ## Checklist <!-- Go over all the following points, and put an `x` in all the boxes that apply. --> - [x] I have followed the code style of the project - [ ] I have added tests to cover my changes - [x] I have updated the documentation accordingly - [ ] This PR is a result of pair or mob programming - [ ] Exceptions/Exclusions to coding standards (e.g. #noqa or #NOSONAR) are included within this Pull Request. --- ## Sensitive Information Declaration To ensure the utmost confidentiality and protect your and others privacy, we kindly ask you to NOT including [PII (Personal Identifiable Information) / PID (Personal Identifiable Data)](https://digital.nhs.uk/data-and-information/keeping-data-safe-and-benefitting-the-public) or any other sensitive data in this PR (Pull Request) and the codebase changes. We will remove any PR that do contain any sensitive information. We really appreciate your cooperation in this matter. - [x] I confirm that neither PII/PID nor sensitive data are included in this PR and the codebase changes.
<!-- markdownlint-disable-next-line first-line-heading --> ## Description This adds contract tests for the SDS stub. ## Context The SDS stub needs to faithfully implement the /Device and /Endpoint endpoints for the SDS service. We need tests to verify that this is the case and that any changes made don't break the fidelity of the interface. ## Type of changes <!-- What types of changes does your code introduce? Put an `x` in all the boxes that apply. --> - [ ] Refactoring (non-breaking change) - [X] New feature (non-breaking change which adds functionality) - [ ] Breaking change (fix or feature that would change existing functionality) - [ ] Bug fix (non-breaking change which fixes an issue) ## Checklist <!-- Go over all the following points, and put an `x` in all the boxes that apply. --> - [X] I have followed the code style of the project - [ ] I have added tests to cover my changes - [ ] I have updated the documentation accordingly - [ ] This PR is a result of pair or mob programming - [ ] Exceptions/Exclusions to coding standards (e.g. #noqa or #NOSONAR) are included within this Pull Request. --- ## Sensitive Information Declaration To ensure the utmost confidentiality and protect your and others privacy, we kindly ask you to NOT including [PII (Personal Identifiable Information) / PID (Personal Identifiable Data)](https://digital.nhs.uk/data-and-information/keeping-data-safe-and-benefitting-the-public) or any other sensitive data in this PR (Pull Request) and the codebase changes. We will remove any PR that do contain any sensitive information. We really appreciate your cooperation in this matter. - [X] I confirm that neither PII/PID nor sensitive data are included in this PR and the codebase changes. --------- Co-authored-by: Ian Robinson <267046044+ian-robinson-35@users.noreply.github.com>
Bumps [aws-actions/amazon-ecr-login](https://github.com/aws-actions/amazon-ecr-login) from 2.0.2 to 2.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/aws-actions/amazon-ecr-login/releases">aws-actions/amazon-ecr-login's releases</a>.</em></p> <blockquote> <h2>v2.1.2</h2> <p>See the <a href="https://github.com/aws-actions/amazon-ecr-login/blob/HEAD/CHANGELOG.md">changelog</a> for details about the changes included in this release.</p> <h2>v2.1.1</h2> <p>See the <a href="https://github.com/aws-actions/amazon-ecr-login/blob/HEAD/CHANGELOG.md">changelog</a> for details about the changes included in this release.</p> <h2>v2.1.0</h2> <p>See the <a href="https://github.com/aws-actions/amazon-ecr-login/blob/HEAD/CHANGELOG.md">changelog</a> for details about the changes included in this release.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/aws-actions/amazon-ecr-login/blob/main/CHANGELOG.md">aws-actions/amazon-ecr-login's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. See <a href="https://github.com/conventional-changelog/standard-version">standard-version</a> for commit guidelines.</p> <h3><a href="https://github.com/aws-actions/amazon-ecr-login/compare/v2.1.1...v2.1.2">2.1.2</a> (2026-04-01)</h3> <h3><a href="https://github.com/aws-actions/amazon-ecr-login/compare/v2.1.0...v2.1.1">2.1.1</a> (2026-03-24)</h3> <h3>Bug Fixes</h3> <ul> <li>prefer explicit env var credentials over Pod Identity (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/953">#953</a>) (<a href="https://github.com/aws-actions/amazon-ecr-login/commit/ecbbdc7f1f74432084693d9d350c6d35a7f0322a">ecbbdc7</a>)</li> </ul> <h2><a href="https://github.com/aws-actions/amazon-ecr-login/compare/v2.0.2...v2.1.0">2.1.0</a> (2026-03-19)</h2> <h3>Features</h3> <ul> <li>Add EKS Pod Identity support to Amazon ECR login action (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/624">#624</a>, <a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/735">#735</a>) (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/740">#740</a>) (<a href="https://github.com/aws-actions/amazon-ecr-login/commit/dcb4c271bc6a7911759352f7f39dfe3730e6a1d7">dcb4c27</a>)</li> </ul> <h3><a href="https://github.com/aws-actions/amazon-ecr-login/compare/v2.0.1...v2.0.2">2.0.2</a> (2026-03-13)</h3> <h3>Bug Fixes</h3> <ul> <li>Upgrade import syntax to ES Modules (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/889">#889</a>) (<a href="https://github.com/aws-actions/amazon-ecr-login/commit/0edf37c874c498febf26b741a3cf9f75f967cc4c">0edf37c</a>)</li> </ul> <h3><a href="https://github.com/aws-actions/amazon-ecr-login/compare/v2.0.0...v2.0.1">2.0.1</a> (2023-10-02)</h3> <h2><a href="https://github.com/aws-actions/amazon-ecr-login/compare/v1.7.0...v2.0.0">2.0.0</a> (2023-10-02)</h2> <h3>⚠ BREAKING CHANGES</h3> <ul> <li> <p>The default value of the 'mask-password' input has been updated from false to true.</p> </li> <li> <p>Treat maskPassword as false only if explicitly set to false</p> </li> <li> <p>Add new-v2-release to README</p> </li> </ul> <h3>Features</h3> <ul> <li>release v2 (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/520">#520</a>) (<a href="https://github.com/aws-actions/amazon-ecr-login/commit/d71acafb877819c463f4efa25c0be407a9913780">d71acaf</a>)</li> </ul> <h2><a href="https://github.com/aws-actions/amazon-ecr-login/compare/v1.6.2...v1.7.0">1.7.0</a> (2023-08-09)</h2> <h3>Features</h3> <ul> <li>provide input to optionally mask output docker password (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/491">#491</a>) (<a href="https://github.com/aws-actions/amazon-ecr-login/commit/98f33d2eaf29c215bd8a595c94896c64d126dbb7">98f33d2</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/aws-actions/amazon-ecr-login/commit/f2e9fc6c2b355c1890b65e6f6f0e2ac3e6e22f78"><code>f2e9fc6</code></a> chore(release): 2.1.2</li> <li><a href="https://github.com/aws-actions/amazon-ecr-login/commit/b5362e1d8f3a8b276dd45aafdeba0e4869482f89"><code>b5362e1</code></a> chore(deps-dev): bump eslint from 10.0.3 to 10.1.0 (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/964">#964</a>)</li> <li><a href="https://github.com/aws-actions/amazon-ecr-login/commit/2096e5c7e22ab228351567cc3428dd3382ea7ead"><code>2096e5c</code></a> chore: Update dist (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/984">#984</a>)</li> <li><a href="https://github.com/aws-actions/amazon-ecr-login/commit/ae31c19f0535c5be3e2e03f57a01f1637c753a28"><code>ae31c19</code></a> chore(deps): bump <code>@aws-sdk/client-ecr</code> from 3.1018.0 to 3.1021.0 (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/977">#977</a>)</li> <li><a href="https://github.com/aws-actions/amazon-ecr-login/commit/f63ff6ad3357db5cce0c3e4f92e224a21fe82a50"><code>f63ff6a</code></a> chore(deps): bump <code>@aws-sdk/credential-providers</code> (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/978">#978</a>)</li> <li><a href="https://github.com/aws-actions/amazon-ecr-login/commit/5b22aa2a6350274d6f56bf01bf4c4d1bcf479be6"><code>5b22aa2</code></a> chore: Update dist (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/980">#980</a>)</li> <li><a href="https://github.com/aws-actions/amazon-ecr-login/commit/887bd548426652da49a53532809dc8e3d6936185"><code>887bd54</code></a> chore(deps): bump <code>@aws-sdk/client-ecr-public</code> from 3.1016.0 to 3.1021.0 (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/976">#976</a>)</li> <li><a href="https://github.com/aws-actions/amazon-ecr-login/commit/a080f59b057d681bf221f98cbdcd9f0defa1a1a9"><code>a080f59</code></a> chore: Update dist (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/974">#974</a>)</li> <li><a href="https://github.com/aws-actions/amazon-ecr-login/commit/220b1c682ba9d8197cb51d0209fe496255907818"><code>220b1c6</code></a> chore(deps): bump <code>@aws-sdk/client-ecr</code> from 3.1011.0 to 3.1016.0 (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/966">#966</a>)</li> <li><a href="https://github.com/aws-actions/amazon-ecr-login/commit/9e34c94a3de4f15bb326b88898eab8eab8fc53a9"><code>9e34c94</code></a> chore(deps): bump <code>@aws-sdk/credential-providers</code> (<a href="https://redirect.github.com/aws-actions/amazon-ecr-login/issues/965">#965</a>)</li> <li>Additional commits viewable in <a href="https://github.com/aws-actions/amazon-ecr-login/compare/c962da2960ed15f492addc26fffa274485265950...f2e9fc6c2b355c1890b65e6f6f0e2ac3e6e22f78">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [SonarSource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action) from 7.0.0 to 7.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sonarsource/sonarqube-scan-action/releases">SonarSource/sonarqube-scan-action's releases</a>.</em></p> <blockquote> <h2>v7.1.0</h2> <h2>What's Changed</h2> <ul> <li>SQSCANGHA-128 NO-JIRA Bump actions/cache from 4 to 5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/SonarSource/sonarqube-scan-action/pull/219">SonarSource/sonarqube-scan-action#219</a></li> <li>SQSCANGHA-130 Bump rollup from 4.50.1 to 4.59.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/SonarSource/sonarqube-scan-action/pull/221">SonarSource/sonarqube-scan-action#221</a></li> <li>SQSCANGHA-131 Bump picomatch from 4.0.3 to 4.0.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/SonarSource/sonarqube-scan-action/pull/223">SonarSource/sonarqube-scan-action#223</a></li> <li>SQSCANGHA-132 Upgrade Node to 24 by <a href="https://github.com/claire-villard-sonarsource"><code>@claire-villard-sonarsource</code></a> in <a href="https://redirect.github.com/SonarSource/sonarqube-scan-action/pull/224">SonarSource/sonarqube-scan-action#224</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/SonarSource/sonarqube-scan-action/compare/v7...v7.1.0">https://github.com/SonarSource/sonarqube-scan-action/compare/v7...v7.1.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/SonarSource/sonarqube-scan-action/commit/299e4b793aaa83bf2aba7c9c14bedbb485688ec4"><code>299e4b7</code></a> SQSCANGHA-132 Upgrade Node to 24 (<a href="https://redirect.github.com/sonarsource/sonarqube-scan-action/issues/224">#224</a>)</li> <li><a href="https://github.com/SonarSource/sonarqube-scan-action/commit/3988e54db2467c7e9583a4af619c3f5647d6b8ad"><code>3988e54</code></a> SQSCANGHA-131 Bump picomatch from 4.0.3 to 4.0.4 (<a href="https://redirect.github.com/sonarsource/sonarqube-scan-action/issues/223">#223</a>)</li> <li><a href="https://github.com/SonarSource/sonarqube-scan-action/commit/9598b8a83feef37de07f549027fab50ecffe6a6e"><code>9598b8a</code></a> SQSCANGHA-130 Bump rollup from 4.50.1 to 4.59.0 (<a href="https://redirect.github.com/sonarsource/sonarqube-scan-action/issues/221">#221</a>)</li> <li><a href="https://github.com/SonarSource/sonarqube-scan-action/commit/dcc5211de53084482f1c6779dda263459f5274f6"><code>dcc5211</code></a> SQSCANGHA-128 NO-JIRA Bump actions/cache from 4 to 5 (<a href="https://redirect.github.com/sonarsource/sonarqube-scan-action/issues/219">#219</a>)</li> <li><a href="https://github.com/SonarSource/sonarqube-scan-action/commit/b9f37f9de00914b9db556335bd46019dbafed98d"><code>b9f37f9</code></a> SQSCANGHA-129 Fix the Analysis Processing team name in CODEOWNERS (<a href="https://redirect.github.com/sonarsource/sonarqube-scan-action/issues/220">#220</a>)</li> <li>See full diff in <a href="https://github.com/sonarsource/sonarqube-scan-action/compare/a31c9398be7ace6bbfaf30c0bd5d415f843d45e9...299e4b793aaa83bf2aba7c9c14bedbb485688ec4">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
… pIn via SHA for improved security
#167) … pIn via SHA for improved security <!-- markdownlint-disable-next-line first-line-heading --> ## Description <!-- Describe your changes in detail. --> ## Context <!-- Why is this change required? What problem does it solve? --> ## Type of changes <!-- What types of changes does your code introduce? Put an `x` in all the boxes that apply. --> - [x] Refactoring (non-breaking change) - [ ] New feature (non-breaking change which adds functionality) - [ ] Breaking change (fix or feature that would change existing functionality) - [ ] Bug fix (non-breaking change which fixes an issue) ## Checklist <!-- Go over all the following points, and put an `x` in all the boxes that apply. --> - [x] I have followed the code style of the project - [ ] I have added tests to cover my changes - [ ] I have updated the documentation accordingly - [ ] This PR is a result of pair or mob programming - [ ] Exceptions/Exclusions to coding standards (e.g. #noqa or #NOSONAR) are included within this Pull Request. --- ## Sensitive Information Declaration To ensure the utmost confidentiality and protect your and others privacy, we kindly ask you to NOT including [PII (Personal Identifiable Information) / PID (Personal Identifiable Data)](https://digital.nhs.uk/data-and-information/keeping-data-safe-and-benefitting-the-public) or any other sensitive data in this PR (Pull Request) and the codebase changes. We will remove any PR that do contain any sensitive information. We really appreciate your cooperation in this matter. - [x] I confirm that neither PII/PID nor sensitive data are included in this PR and the codebase changes.
Bumps [aws-actions/aws-secretsmanager-get-secrets](https://github.com/aws-actions/aws-secretsmanager-get-secrets) from 3.0.0 to 3.0.1. - [Release notes](https://github.com/aws-actions/aws-secretsmanager-get-secrets/releases) - [Commits](aws-actions/aws-secretsmanager-get-secrets@3a411b6...2cb1a46) --- updated-dependencies: - dependency-name: aws-actions/aws-secretsmanager-get-secrets dependency-version: 3.0.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
…168) Bumps [aws-actions/aws-secretsmanager-get-secrets](https://github.com/aws-actions/aws-secretsmanager-get-secrets) from 3.0.0 to 3.0.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/aws-actions/aws-secretsmanager-get-secrets/releases">aws-actions/aws-secretsmanager-get-secrets's releases</a>.</em></p> <blockquote> <h2>v3.0.1</h2> <h2>What's Changed</h2> <ul> <li>Grant write permissions to the release workflow by <a href="https://github.com/simonmarty"><code>@simonmarty</code></a> in <a href="https://redirect.github.com/aws-actions/aws-secretsmanager-get-secrets/pull/300">aws-actions/aws-secretsmanager-get-secrets#300</a></li> <li>Bump handlebars from 4.7.8 to 4.7.9 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/aws-actions/aws-secretsmanager-get-secrets/pull/301">aws-actions/aws-secretsmanager-get-secrets#301</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/aws-actions/aws-secretsmanager-get-secrets/compare/v3...v3.0.1">https://github.com/aws-actions/aws-secretsmanager-get-secrets/compare/v3...v3.0.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/aws-actions/aws-secretsmanager-get-secrets/commit/2cb1a461cbd4865ac4299648312e4704c646cd53"><code>2cb1a46</code></a> Bump handlebars from 4.7.8 to 4.7.9 (<a href="https://redirect.github.com/aws-actions/aws-secretsmanager-get-secrets/issues/301">#301</a>)</li> <li><a href="https://github.com/aws-actions/aws-secretsmanager-get-secrets/commit/ebbee5c9ef1443f7f28f56b608e1a613b57208e5"><code>ebbee5c</code></a> Grant write permissions to the release workflow (<a href="https://redirect.github.com/aws-actions/aws-secretsmanager-get-secrets/issues/300">#300</a>)</li> <li>See full diff in <a href="https://github.com/aws-actions/aws-secretsmanager-get-secrets/compare/3a411b6ec5cace3d626412dd917e7bfeac242cfa...2cb1a461cbd4865ac4299648312e4704c646cd53">compare view</a></li> </ul> </details> <br />
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Description
Context
Type of changes
Checklist
Sensitive Information Declaration
To ensure the utmost confidentiality and protect your and others privacy, we kindly ask you to NOT including PII (Personal Identifiable Information) / PID (Personal Identifiable Data) or any other sensitive data in this PR (Pull Request) and the codebase changes. We will remove any PR that do contain any sensitive information. We really appreciate your cooperation in this matter.