v6.1.1

What's Changed

• Bump ministryofjustice/modernisation-platform-github-actions/.github/workflows/aws-secrets-management.yml from 6.0.0 to 6.0.1 by Dependabot (@dependabot)[bot] in #204
• Bump github/codeql-action from 4.35.2 to 4.35.3 by Dependabot (@dependabot)[bot] in #205
• Bump slackapi/slack-github-action from 3.0.2 to 3.0.3 by Dependabot (@dependabot)[bot] in #206
• Bump aws-actions/configure-aws-credentials from 6.1.0 to 6.1.1 by Dependabot (@dependabot)[bot] in #207
• Bump github/codeql-action from 4.35.3 to 4.35.4 by Dependabot (@dependabot)[bot] in #208
• Bump actions/dependency-review-action from 4.9.0 to 5.0.0 by Dependabot (@dependabot)[bot] in #209
• Bump github/codeql-action from 4.35.4 to 4.35.5 by Dependabot (@dependabot)[bot] in #210
• Adds dependabot cooldown feature by Khatraf in #211
• Patched script to add to add Dependabot’s cooldown setting to the file this script generates by Khatraf in #212
• Automated Update: Dependabot File by @github-actions[bot] in #213
• Refactor terraform-static-analysis to install Python dependencies from requirements.txt by Aaron Robinson (@ASTRobinson) in #214

Full Changelog: v6.0.1...v6.1.1

v6.0.1

What's Changed

• Bump ministryofjustice/modernisation-platform-github-actions/.github/workflows/aws-secrets-management.yml from 5.0.1 to 6.0.0 by Dependabot (@dependabot)[bot] in #201
• Bump slackapi/slack-github-action from 3.0.1 to 3.0.2 by Dependabot (@dependabot)[bot] in #203
• Add new MP GitHub App Client ID secret by Aaron Robinson (@ASTRobinson) in #202

Full Changelog: v6.0.0...v6.0.1

v6.0.0

Changes

#200 Removed ability to retrieve the following secrets which are being decommissioned:

• testing_ci_iam_user_keys
• testing_ci_iam_user_access_key_id
• testing_ci_iam_user_secret_access_key

All dependencies on these secrets have now been replaced with use of a dedicated OIDC role in testing-test.

What's Changed

• Bump ministryofjustice/modernisation-platform-github-actions/.github/workflows/aws-secrets-management.yml from 5.0.0 to 5.0.1 by Dependabot (@dependabot)[bot] in #194
• Restrict GitHub token permissions for workflows by Aaron Robinson (@ASTRobinson) in #195
• Bump aws-actions/aws-secretsmanager-get-secrets from 3.0.0 to 3.0.1 by Dependabot (@dependabot)[bot] in #196
• Bump aws-actions/configure-aws-credentials from 6.0.0 to 6.1.0 by Dependabot (@dependabot)[bot] in #197
• Bump actions/upload-artifact from 7.0.0 to 7.0.1 by Dependabot (@dependabot)[bot] in #198
• Bump github/codeql-action from 4.35.1 to 4.35.2 by Dependabot (@dependabot)[bot] in #199
• Remove deprecated testing CI IAM user keys by Rich Green (@richgreen-moj) in #200

Full Changelog: v5.0.1...v6.0.0

v5.0.1

What's Changed

• Update format-code to pin to SHA versions by dave-belton in #193
• Bump ministryofjustice/modernisation-platform-github-actions/.github/workflows/aws-secrets-management.yml from 4.0.0 to 5.0.0 by Dependabot (@dependabot)[bot] in #190
• Bump github/codeql-action from 4.33.0 to 4.34.1 by Dependabot (@dependabot)[bot] in #189
• Bump aws-actions/aws-secretsmanager-get-secrets from 2.0.10 to 3.0.0 by Dependabot (@dependabot)[bot] in #191
• Bump github/codeql-action from 4.34.1 to 4.35.1 by Dependabot (@dependabot)[bot] in #192

New Contributors

• dave-belton made their first contribution in #193

Full Changelog: v5.0.0...v5.0.1

v5.0.0

What's Changed

• Rip Trivy & TFsec by ewastempel in #188

New Contributors

• ewastempel made their first contribution in #188

Full Changelog: v4.0.0...v5.0.0

v4.0.0

Breaking Changes

#169 removed the MP GitHub Multirepo PAT which has been deprecated in favour of using GitHub app authentication. The modernisation_pat_multirepo is no longer available in this release.

What's Changed

• Bump ministryofjustice/modernisation-platform-github-actions/.github/workflows/aws-secrets-management.yml from 3.5.0 to 3.6.0 by Dependabot (@dependabot)[bot] in #165
• Bump actions/upload-artifact from 5.0.0 to 6.0.0 by Dependabot (@dependabot)[bot] in #167
• Bump github/codeql-action from 4.31.7 to 4.31.8 by Dependabot (@dependabot)[bot] in #166
• Bump github/codeql-action from 4.31.8 to 4.31.9 by Dependabot (@dependabot)[bot] in #168
• Remove unused MP Multirepo PAT from secrets management by Rich Green (@richgreen-moj) in #169

Full Changelog: v3.6.0...v4.0.0

v3.6.0

What's Changed

• Update existing PR comment instead of creating duplicates by sukeshreddyg in #164

Full Changelog: v3.5.1...v3.6.0

v3.5.1

What's Changed

• Update Dockerfile to specify checkov version by ep-93 in #163
• Bump ministryofjustice/modernisation-platform-github-actions/.github/workflows/aws-secrets-management.yml from 3.4.8 to 3.5.0 by Dependabot (@dependabot)[bot] in #160
• Bump github/codeql-action from 4.31.6 to 4.31.7 by Dependabot (@dependabot)[bot] in #161

New Contributors

• ep-93 made their first contribution in #163

Full Changelog: v3.5.0...v3.5.1

v3.5.0

What's Changed

• Fix: Correct ignore_files parameter to use proper MegaLinter variableFix ignore-files bug by Aaron Robinson (@ASTRobinson) in #159

Full Changelog: v3.4.9...v3.5.0

v3.4.9

What's Changed

• Fix: Resolve STALE_DATA error when creating signed commits on PR branches by Aaron Robinson (@ASTRobinson) in #158

• Bump actions/checkout from 5.0.1 to 6.0.0 by Dependabot (@dependabot)[bot] in #152

• Bump ministryofjustice/modernisation-platform-github-actions/.github/workflows/aws-secrets-management.yml from 3.4.6 to 3.4.8 by Dependabot (@dependabot)[bot] in #153

• Bump aws-actions/configure-aws-credentials from 5.1.0 to 5.1.1 by Dependabot (@dependabot)[bot] in #154

• Bump github/codeql-action from 4.31.4 to 4.31.5 by Dependabot (@dependabot)[bot] in #155

• Bump github/codeql-action from 4.31.5 to 4.31.6 by Dependabot (@dependabot)[bot] in #156

• Bump actions/checkout from 6.0.0 to 6.0.1 by Dependabot (@dependabot)[bot] in #157

Full Changelog: v3.4.8...v3.4.9