From 1f8212323fcf6a1335ed60b84ad54d35ba2a1cd4 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 12 Jun 2024 09:11:08 +0000 Subject: [PATCH 1/9] :dependabot: terraform(deps): Bump hashicorp/aws from 5.52.0 to 5.53.0 in /terraform/auth0/ministryofjustice-data-platform-development (#4524) --- .../.terraform.lock.hcl | 34 +++++++++---------- .../terraform.tf | 2 +- 2 files changed, 18 insertions(+), 18 deletions(-) diff --git a/terraform/auth0/ministryofjustice-data-platform-development/.terraform.lock.hcl b/terraform/auth0/ministryofjustice-data-platform-development/.terraform.lock.hcl index 959210697e..cacf193a9f 100644 --- a/terraform/auth0/ministryofjustice-data-platform-development/.terraform.lock.hcl +++ b/terraform/auth0/ministryofjustice-data-platform-development/.terraform.lock.hcl @@ -24,24 +24,24 @@ provider "registry.terraform.io/auth0/auth0" { } provider "registry.terraform.io/hashicorp/aws" { - version = "5.52.0" - constraints = "5.52.0" + version = "5.53.0" + constraints = "5.53.0" hashes = [ - "h1:J3LWKMuD1JwXmlleW3vJ7FHk/Dc+gCLgrpRtjBxZ5Ro=", - "zh:22c4599d47cd59e5519c52afc528fa2aec43b4434f369870ee2806daa071449d", - "zh:3c2edc482662a654f84db4cd3f2cdd8f200147207d053d2e95082744b7814e6d", - "zh:57edc36f908c64de37e92a978f3d675604315a725268da936fcd1e270199db47", - "zh:79e7afd5fb161f2eb2b7f8e7fd5cbb7f56a2c64f141b56f511ec69337ad3e96b", - "zh:82c6ae9a7f971b6ee8c476b6eb7f1be9d24ddd183cbf025f52628084ddb3a5ae", - "zh:92faecc0a8f573f57f37d24415862380a40341eb13d66beb738dd0873899a58e", - "zh:963d3c0e1aa22c872cd96f04ceb41c388137b972f714efbde989221bf7f6f723", + "h1:3SWhL6t4zG6rqOjfI3rpenZc/fi7ZkS/5ZcCU5U+RWo=", + "zh:2adad39412111d19a5195474d6b95577fc25ccf06d88a90019bee0efba33a1e3", + "zh:51226453a14f95b0d1163cfecafc9cf1a92ce5f66e42e6b4065d83a813836a2c", + "zh:62450fadb56db9c18d50bb8b7728a3d009be608d7ee0d4fe95c85ccb521dff83", + "zh:6f3ad977a9cc4800847c136690b1c0a0fd8437705062163d29dc4e9429598950", + "zh:71ca0a16b735b8d34b7127dd7d1e1e5d1eaac9c9f792e08abde291b5beb947d5", + "zh:7ae9cf4838eea80288305be0a3e69b39ffff86ede7b4319be421f06d32d04fb6", + "zh:93abc2db5ad995cfee014eb7446abc7caedc427e141d375a11993e6e199076b5", + "zh:9560b3424d97da804e98ee86b474b7370afefa09baf350cae7f33afb3f1aa209", "zh:9b12af85486a96aedd8d7984b0ff811a4b42e3d88dad1a3fb4c0b580d04fa425", - "zh:af6d3bb94aa8a84d740e3731d2379cc5e12aa48d5db0f7489c4639f3814a22d7", - "zh:b9f7aceeaf5daf71394eab9bf0f9f56fdc762cac90e4d62e63aa3fcdf6c1c127", - "zh:c3dcfc2569edae4f36b798c76da7f7633e7bf322505d447d7c370a56c2a30dd2", - "zh:c8abb21c5ceba857f0eaff9e531d781dc655f8cdfae1cf056066daae72546a7f", - "zh:d92004a6a2a770d2542fd9c01b685418ab8d7ab422cf2cdce35dde789bc8593c", - "zh:dc794660b1d6d8f26a917e0ffab1875aa75144736875efaa60f29c72bf02afbf", - "zh:df931c4905e35ae43d558f6cda15f05710a7a24ecbb94533f8822e7572126512", + "zh:9eb57a9b649c217ac4eeb27af2a1935c18bd9bc8fb1be07434e7de74729eff46", + "zh:b5f32dcbe71ea22c2090eeeaec9af3e098d7b8c3e4491f34ffdfdc6f1c1abf81", + "zh:c9fbd5417f266c773055178e87bb4091df7f0542b72bf5ad0a4ae27045a2b7ca", + "zh:d518b3c52c8a9f79769dbe1b3683d25b4cdc8bfc77a3b3cd9c85f74e6c7383e1", + "zh:db741be21f32404bb87d73d25b1b7fd9b813b00aeb20a130ed8806d44dc26680", + "zh:ed1a8bb4d08653d87265ae534d6fc33bbdabae1608692a1ee364fce03548d36c", ] } diff --git a/terraform/auth0/ministryofjustice-data-platform-development/terraform.tf b/terraform/auth0/ministryofjustice-data-platform-development/terraform.tf index 02e8ae15f9..da66a334bc 100644 --- a/terraform/auth0/ministryofjustice-data-platform-development/terraform.tf +++ b/terraform/auth0/ministryofjustice-data-platform-development/terraform.tf @@ -10,7 +10,7 @@ terraform { required_providers { aws = { source = "hashicorp/aws" - version = "5.52.0" + version = "5.53.0" } auth0 = { source = "auth0/auth0" From b62a222ba4752b68f4bdc49cbfe4e53f40f92777 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 12 Jun 2024 09:17:47 +0000 Subject: [PATCH 2/9] :dependabot: terraform(deps): Bump terraform-aws-modules/kms/aws from 3.0.0 to 3.1.0 in /terraform/aws/analytical-platform-data-production/ingestion-egress (#4525) --- .../ingestion-egress/kms-keys.tf | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/terraform/aws/analytical-platform-data-production/ingestion-egress/kms-keys.tf b/terraform/aws/analytical-platform-data-production/ingestion-egress/kms-keys.tf index 128ff2aa86..c47f6d5a83 100644 --- a/terraform/aws/analytical-platform-data-production/ingestion-egress/kms-keys.tf +++ b/terraform/aws/analytical-platform-data-production/ingestion-egress/kms-keys.tf @@ -3,7 +3,7 @@ module "development_kms" { #checkov:skip=CKV_TF_2:Module registry does not support tags for versions source = "terraform-aws-modules/kms/aws" - version = "3.0.0" + version = "3.1.0" aliases = ["s3/mojap-data-production-bold-egress-development"] description = "MoJ AP BOLD Egress - Development" @@ -18,7 +18,7 @@ module "development_kms_eu_west_1_replica" { #checkov:skip=CKV_TF_2:Module registry does not support tags for versions source = "terraform-aws-modules/kms/aws" - version = "3.0.0" + version = "3.1.0" providers = { aws = aws.eu-west-1 @@ -38,7 +38,7 @@ module "production_kms" { #checkov:skip=CKV_TF_2:Module registry does not support tags for versions source = "terraform-aws-modules/kms/aws" - version = "3.0.0" + version = "3.1.0" aliases = ["s3/mojap-data-production-bold-egress-production"] description = "MoJ AP BOLD Egress - Production" @@ -54,7 +54,7 @@ module "production_kms_eu_west_1_replica" { #checkov:skip=CKV_TF_2:Module registry does not support tags for versions source = "terraform-aws-modules/kms/aws" - version = "3.0.0" + version = "3.1.0" providers = { aws = aws.eu-west-1 From 192d3b827ac1704f8e525da85452c601601815df Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 12 Jun 2024 09:23:06 +0000 Subject: [PATCH 3/9] :dependabot: terraform(deps): Bump cloudposse/elasticache-redis/aws from 1.2.3 to 1.3.0 in /terraform/aws/analytical-platform-development/cluster (#4526) --- terraform/aws/analytical-platform-development/cluster/redis.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/terraform/aws/analytical-platform-development/cluster/redis.tf b/terraform/aws/analytical-platform-development/cluster/redis.tf index b153035879..b3b2c22802 100644 --- a/terraform/aws/analytical-platform-development/cluster/redis.tf +++ b/terraform/aws/analytical-platform-development/cluster/redis.tf @@ -6,7 +6,7 @@ module "control_panel_redis" { #checkov:skip=CKV_TF_1:Module registry does not support commit hashes for versions source = "cloudposse/elasticache-redis/aws" - version = "1.2.3" + version = "1.3.0" enabled = var.redis_enabled replication_group_id = local.redis_replication_group_id From 64bf95153f471a94132179e919bd00082f4657ef Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 12 Jun 2024 09:24:30 +0000 Subject: [PATCH 4/9] :dependabot: terraform(deps): Bump terraform-aws-modules/rds/aws from 6.6.0 to 6.7.0 in /terraform/aws/analytical-platform-development/cluster (#4527) --- terraform/aws/analytical-platform-development/cluster/rds.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/terraform/aws/analytical-platform-development/cluster/rds.tf b/terraform/aws/analytical-platform-development/cluster/rds.tf index 476f8caf3e..4d0f2ed1fa 100644 --- a/terraform/aws/analytical-platform-development/cluster/rds.tf +++ b/terraform/aws/analytical-platform-development/cluster/rds.tf @@ -6,7 +6,7 @@ module "rds" { #checkov:skip=CKV_TF_1:Module registry does not support commit hashes for versions source = "terraform-aws-modules/rds/aws" - version = "6.6.0" + version = "6.7.0" identifier = local.rds_identifier engine = var.rds_engine From 1b2e1d5c02ca3ef68210477d620867fb9de17029 Mon Sep 17 00:00:00 2001 From: Gary <26419401+Gary-H9@users.noreply.github.com> Date: Wed, 12 Jun 2024 11:15:45 +0100 Subject: [PATCH 5/9] :wrench: Add `analytical-platform-mlflow` repo to script list (#4528) :wrench: Add analytical-platform-mlflow repo to list --- scripts/dependabot/list-open-dependabot-prs.sh | 1 + 1 file changed, 1 insertion(+) diff --git a/scripts/dependabot/list-open-dependabot-prs.sh b/scripts/dependabot/list-open-dependabot-prs.sh index 7f5288a34c..ed59da9aec 100755 --- a/scripts/dependabot/list-open-dependabot-prs.sh +++ b/scripts/dependabot/list-open-dependabot-prs.sh @@ -16,6 +16,7 @@ REPOSITORIES=( "ministryofjustice/analytical-platform-actions-runner" "ministryofjustice/analytical-platform-rshiny-open-source-base" "ministryofjustice/analytical-platform-kubectl" + "ministryofjustice/analytical-platform-mlflow" ) echo -e "🤖 Open Dependabots \n" From 95a798e6ac9707208b695a2686fcbd21043d3541 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 12 Jun 2024 10:17:21 +0000 Subject: [PATCH 6/9] :dependabot: github-actions(deps): Bump aws-actions/aws-secretsmanager-get-secrets from 2.0.3 to 2.0.5 (#4515) --- .github/workflows/platform-pagerduty-rota-to-slack.yml | 2 +- .github/workflows/reusable-workflow-terraform.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/platform-pagerduty-rota-to-slack.yml b/.github/workflows/platform-pagerduty-rota-to-slack.yml index 9d1190c7bd..9cbdd5481e 100644 --- a/.github/workflows/platform-pagerduty-rota-to-slack.yml +++ b/.github/workflows/platform-pagerduty-rota-to-slack.yml @@ -58,7 +58,7 @@ jobs: - name: Get AWS Secrets id: get_aws_secrets - uses: aws-actions/aws-secretsmanager-get-secrets@ff26a0aa6bd4dd5e51326b5afb3f5f6874c958c7 # v1.0.4 + uses: aws-actions/aws-secretsmanager-get-secrets@98c2d6bf1dd67c2575fa2bb14294aa64103d426c # v1.0.4 with: secret-ids: | PAGERDUTY_TOKEN, pagerduty-token diff --git a/.github/workflows/reusable-workflow-terraform.yml b/.github/workflows/reusable-workflow-terraform.yml index 1550837993..7b97202742 100644 --- a/.github/workflows/reusable-workflow-terraform.yml +++ b/.github/workflows/reusable-workflow-terraform.yml @@ -214,7 +214,7 @@ jobs: - name: Retrieve GitHub Robot Token if: github.ref != 'refs/heads/main' id: retrieve_github_robot_token - uses: aws-actions/aws-secretsmanager-get-secrets@ff26a0aa6bd4dd5e51326b5afb3f5f6874c958c7 # v1.0.4 + uses: aws-actions/aws-secretsmanager-get-secrets@98c2d6bf1dd67c2575fa2bb14294aa64103d426c # v1.0.4 with: secret-ids: | GITHUB_ROBOT_TOKEN, github-token From 63eded33410500fa87fb02b3ad10f31954a7752a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 12 Jun 2024 10:17:37 +0000 Subject: [PATCH 7/9] :dependabot: github-actions(deps): Bump bridgecrewio/checkov-action from 12.2776.0 to 12.2777.0 (#4514) --- .github/workflows/reusable-workflow-terraform.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/reusable-workflow-terraform.yml b/.github/workflows/reusable-workflow-terraform.yml index 7b97202742..8cbe166d3d 100644 --- a/.github/workflows/reusable-workflow-terraform.yml +++ b/.github/workflows/reusable-workflow-terraform.yml @@ -54,7 +54,7 @@ jobs: - name: Checkov if: github.ref != 'refs/heads/main' id: terraform_static_analysis_checkov - uses: bridgecrewio/checkov-action@0949c8b1a5009aa45413a4f02bc82971aa0d7bd2 # v12.2776.0 + uses: bridgecrewio/checkov-action@d5cf7815e6ec033e990dc1d66c346983339a912b # v12.2777.0 with: directory: ${{ env.working-directory }} framework: terraform From 8c7a453d54d12e09752e3a6141be370cd6a5a8cb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 12 Jun 2024 10:22:20 +0000 Subject: [PATCH 8/9] :dependabot: github-actions(deps): Bump planetscale/ghcommit-action from 0.1.41 to 0.1.42 (#4513) --- .../workflows/repository-dependabot-configuration-generator.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/repository-dependabot-configuration-generator.yml b/.github/workflows/repository-dependabot-configuration-generator.yml index 9973fe8336..e04d7476d5 100644 --- a/.github/workflows/repository-dependabot-configuration-generator.yml +++ b/.github/workflows/repository-dependabot-configuration-generator.yml @@ -38,7 +38,7 @@ jobs: - name: Commit Changes id: commit_changes - uses: planetscale/ghcommit-action@84c52a5164423e2cd66371ecae81d9049a2cf105 # v0.1.41 + uses: planetscale/ghcommit-action@e1599c54d850c63ee45f5456a2ac741f49cfed01 # v0.1.42 with: commit_message: "🤖 Update .github/dependabot.yml" file_pattern: ".github/dependabot.yml" From cf4b04590bc47951ee40804eb32c0150d387774a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 12 Jun 2024 11:23:29 +0100 Subject: [PATCH 9/9] :dependabot: pip(deps): Bump slack-sdk from 3.27.2 to 3.28.0 in /scripts/pagerduty/rota-to-slack (#4511) :dependabot: pip(deps): Bump slack-sdk Bumps [slack-sdk](https://github.com/slackapi/python-slack-sdk) from 3.27.2 to 3.28.0. - [Release notes](https://github.com/slackapi/python-slack-sdk/releases) - [Changelog](https://github.com/slackapi/python-slack-sdk/blob/main/docs-v2/changelog.html) - [Commits](https://github.com/slackapi/python-slack-sdk/compare/v3.27.2...v3.28.0) --- updated-dependencies: - dependency-name: slack-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- scripts/pagerduty/rota-to-slack/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/scripts/pagerduty/rota-to-slack/requirements.txt b/scripts/pagerduty/rota-to-slack/requirements.txt index bd343a5f0b..f888d751d9 100644 --- a/scripts/pagerduty/rota-to-slack/requirements.txt +++ b/scripts/pagerduty/rota-to-slack/requirements.txt @@ -1,2 +1,2 @@ pdpyras==5.2.0 -slack-sdk==3.27.2 +slack-sdk==3.28.0