v2.0.0

What's Changed

• Revert "Remove Snyk project tags to avoid group limit" by @kenoir in #30
• Clarify guidance on use of CI for dependency update PRs by @jfsoul in #29
• Update documentation for batching of dependency updates by @jfsoul in #33
• Support broader set of projects in reusable Snyk workflows by @jfsoul in #34
• Fix boolean inputs to Snyk workflows by @jfsoul in #35
• Add npm install for directories missing lockfiles by @jfsoul in #38
• feat: Add a stale PR workflow by @AshCorr in #37
• Pin Snyk workflow to working commit in snyk/actions repository by @kenoir in #39
• Revert "Pin Snyk workflow to working commit in snyk/actions repository " by @kenoir in #40
• feat: Workflow template for the PR announcer by @AshCorr in #36
• Snyk action can use python 3 by @NovemberTang in #45
• PROJECT_TAGS parameter by @tomrf1 in #46
• Use latest checkout and cache sbt by @mchv in #41
• fix: setup java action with cache by @cemms1 in #48
• require review from DevX before merging by @NovemberTang in #50
• Fix snyk workflow for non-sbt JVM projects by @jorgeazevedo in #51
• Update PULL_REQUEST_TEMPLATE.md by @akash1810 in #52
• pipenv install should be run from the directory that the Pipfile is in by @franksloan in #53
• Create dependabot.yml by @NovemberTang in #55
• Add flag to specify the target project by @endre-borcsok-0 in #54
• Bump actions/setup-java from 2 to 3 in /workflow-templates by @dependabot[bot] in #59
• Bump aws-actions/configure-aws-credentials from 1 to 2 in /workflow-templates by @dependabot[bot] in #57
• Bump actions/stale from 5 to 8 in /workflow-templates by @dependabot[bot] in #58
• Bump actions/checkout from 2 to 3 in /workflow-templates by @dependabot[bot] in #56
• Tag snyk projects with full repository name by @NovemberTang in #61
• Update batching workflow with permissions by @bryophyta in #63
• Bump aws-actions/configure-aws-credentials from 2 to 3 in /workflow-templates by @dependabot[bot] in #67
• Bump actions/checkout from 3 to 4 in /workflow-templates by @dependabot[bot] in #68
• Bump aws-actions/configure-aws-credentials from 3 to 4 in /workflow-templates by @dependabot[bot] in #69
• Add branch tag. Add debug warning. by @NovemberTang in #70
• Make snyk monitor use the path as the project name by @johnduffell in #71
• Update Snyk Workflows To Use actions/setup-node@v4 by @JamieB-gu in #72
• Set Up Dependabot For Workflows Directory by @JamieB-gu in #73
• Bump actions/setup-go from 3 to 4 by @dependabot[bot] in #74
• Bump snyk/actions from 0.3.0 to 0.4.0 by @dependabot[bot] in #75
• Bump actions/setup-java from 2 to 3 by @dependabot[bot] in #76
• Bump actions/checkout from 2 to 4 by @dependabot[bot] in #77
• Bump actions/setup-java from 3 to 4 in /workflow-templates by @dependabot[bot] in #79
• Bump actions/setup-java from 3 to 4 by @dependabot[bot] in #78
• Bump actions/setup-python from 4 to 5 by @dependabot[bot] in #80
• Bump actions/setup-go from 4 to 5 by @dependabot[bot] in #81
• Bump actions/stale from 8 to 9 in /workflow-templates by @dependabot[bot] in #82
• Fix link to workflow by @kelvin-chappell in #83
• feat: add dependency-graph workflow by @tjsilver in #84
• Revert "feat: add dependency-graph workflow" by @tjsilver in #86
• fix: update codeowners by @tjsilver in #88
• Explicitly install sbt in the snyk workflow by @tjsilver in #89
• Bump sbt/setup-sbt from 1.1.0 to 1.1.1 by @dependabot[bot] in #90
• Bump sbt/setup-sbt from 1.1.1 to 1.1.3 by @dependabot[bot] in #92
• Bump sbt/setup-sbt from 1.1.3 to 1.1.4 by @dependabot[bot] in #93
• fix(stale-template): Support non-public repositories by @akash1810 in #94
• Bump sbt/setup-sbt from 1.1.4 to 1.1.5 by @dependabot[bot] in #95
• feat: replace deprecated snyk workflow with log message by @tjsilver in #96
• Bump actions/checkout from 4 to 5 by @dependabot[bot] in #98
• Bump actions/checkout from 4 to 5 in /workflow-templates by @dependabot[bot] in #97
• Update README.md by @kelvin-chappell in #99
• Bump actions/setup-java from 4 to 5 in /workflow-templates by @dependabot[bot] in #100
• Bump actions/stale from 9 to 10 in /workflow-templates by @dependabot[bot] in #102
• Bump aws-actions/configure-aws-credentials from 4 to 5 in /workflow-templates by @dependabot[bot] in #101
• chore: Remove redundant workflows by @kelvin-chappell in #104
• Require core4 labels on pull requests before merging by @Reettaphant in #105
• fix: add dependencies label by @tjsilver in #108

New Contributors

• @AshCorr made their first contribution in #37
• @NovemberTang made their first contribution in #45
• @tomrf1 made their first contribution in #46
• @mchv made their first contribution in #41
• @cemms1 made their first contribution in #48
• @franksloan made their first contribution in #53
• @endre-borcsok-0 made their first contribution in #54
• @dependabot[bot] made their first contribution in #59
• @bryophyta made their first contribution in #63
• @johnduffell made their first contribution in #71
• @JamieB-gu made their first contribution in #72
• @kelvin-chappell made their first contribution in #83
• @tjsilver made their first contribution in #84
• @Reettaphant made their first contribution in #105

Full Changelog: v1.0.1...v1.1.0

v1.0.1

What's Changed

The primary changes in the reusable workflows for this release are some minor adjustments to the PR batching workflow to make it more reliable under different merge strategies.

• Remove Snyk project tags to avoid group limit by @jfsoul in #26
• Correct snyk monitor usage docs: don't run on PRs by @jfsoul in #27
• (PR batching) Use rebase strategy to accept all changes from main by @jfsoul in #28
• Squash merge PRs for batching if rebasing not available by @jfsoul in #24

Full Changelog: v1...v1.0.1

v1

A first release of this repository, which allows for more stable referencing of the reusable workflows. In particular a set of workflows has been added to facilitate batching of dependency update PRs (see #23)