chore(deps): update marocchino/sticky-pull-request-comment action to v3 by renovate[bot] · Pull Request #232 · chgl/.github

renovate · 2026-03-23T20:43:13Z

This PR contains the following updates:

Package	Type	Update	Change
marocchino/sticky-pull-request-comment	action	major	`v2.9.4` → `v3.0.2`

Release Notes

marocchino/sticky-pull-request-comment (marocchino/sticky-pull-request-comment)

`v3.0.2`

Compare Source

What's Changed

Add comprehensive tests for main.ts covering all branches by @Copilot in #1660
Don't create a comment with hide: true by @marocchino in #1661

Full Changelog: marocchino/sticky-pull-request-comment@v3.0.1...v3.0.2

`v3.0.1`

Compare Source

What's Changed

Update deps
Change build system from ncc to rollup
Use pull_request trigger in github action

Full Changelog: marocchino/sticky-pull-request-comment@v3.0.0...v3.0.1

`v3.0.0`

Compare Source

What's Changed

Update node to 24
Update deps

New Contributors

Full Changelog: marocchino/sticky-pull-request-comment@v2.9.4...v3.0.0

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

github-actions · 2026-03-23T20:46:48Z

✅MegaLinter analysis: Success

Descriptor	Linter	Files	Errors	Warnings	Elapsed time
✅ ACTION	actionlint	4	0	0	0.15s
✅ COPYPASTE	jscpd	yes	no	no	1.44s
✅ DOCKERFILE	hadolint	1	0	0	0.08s
✅ JSON	jsonlint	3	0	0	0.11s
✅ JSON	prettier	3	0	0	0.53s
✅ JSON	v8r	3	0	0	3.03s
✅ MARKDOWN	markdownlint	1	0	0	0.55s
✅ MARKDOWN	markdown-table-formatter	1	0	0	0.26s
✅ PYTHON	bandit	1	0	0	2.71s
✅ PYTHON	black	1	0	0	0.65s
✅ PYTHON	flake8	1	0	0	0.54s
✅ PYTHON	isort	1	0	0	0.21s
✅ PYTHON	mypy	1	0	0	3.68s
✅ PYTHON	pylint	1	0	0	3.14s
✅ PYTHON	pyright	1	0	0	1.95s
✅ PYTHON	ruff	1	0	0	0.03s
✅ REPOSITORY	checkov	yes	no	no	23.27s
✅ REPOSITORY	dustilock	yes	no	no	0.02s
✅ REPOSITORY	gitleaks	yes	no	no	0.33s
✅ REPOSITORY	git_diff	yes	no	no	0.01s
✅ REPOSITORY	grype	yes	no	no	40.96s
✅ REPOSITORY	kics	yes	no	no	3.41s
✅ REPOSITORY	kingfisher	yes	no	no	5.05s
✅ REPOSITORY	secretlint	yes	no	no	1.49s
✅ REPOSITORY	syft	yes	no	no	2.37s
✅ REPOSITORY	trivy	yes	no	no	11.78s
✅ REPOSITORY	trivy-sbom	yes	no	no	0.13s
✅ REPOSITORY	trufflehog	yes	no	no	4.93s
✅ YAML	prettier	6	0	0	0.72s
✅ YAML	v8r	6	0	0	6.39s
✅ YAML	yamllint	6	0	0	0.61s

See detailed reports in MegaLinter artifacts

Your project could benefit from a custom flavor, which would allow you to run only the linters you need, and thus improve runtime performances. (Skip this info by defining FLAVOR_SUGGESTIONS: false)

Documentation: Custom Flavors
Command: npx mega-linter-runner@9.4.0 --custom-flavor-setup --custom-flavor-linters PYTHON_PYLINT,PYTHON_BLACK,PYTHON_FLAKE8,PYTHON_ISORT,PYTHON_BANDIT,PYTHON_MYPY,PYTHON_PYRIGHT,PYTHON_RUFF,ACTION_ACTIONLINT,COPYPASTE_JSCPD,DOCKERFILE_HADOLINT,JSON_JSONLINT,JSON_V8R,JSON_PRETTIER,MARKDOWN_MARKDOWNLINT,MARKDOWN_MARKDOWN_TABLE_FORMATTER,REPOSITORY_CHECKOV,REPOSITORY_DUSTILOCK,REPOSITORY_GIT_DIFF,REPOSITORY_GITLEAKS,REPOSITORY_GRYPE,REPOSITORY_KICS,REPOSITORY_SECRETLINT,REPOSITORY_SYFT,REPOSITORY_TRIVY,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,REPOSITORY_KINGFISHER,YAML_PRETTIER,YAML_YAMLLINT,YAML_V8R

Show us your support by starring ⭐ the repository

github-actions · 2026-03-23T21:49:33Z

Trivy image scan report

`ghcr.io/chgl/github-reusable-workflow-with-fixed-image-tags:v1.2.3-beta.123 (debian 13.3)`

8 known vulnerabilities found (CRITICAL: 0 HIGH: 2 MEDIUM: 5 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`dpkg`	CVE-2026-2219	UNKNOWN	1.22.21	1.22.22
`libc-bin`	CVE-2026-0861	HIGH	2.41-12+deb13u1	2.41-12+deb13u2
`libc-bin`	CVE-2025-15281	MEDIUM	2.41-12+deb13u1	2.41-12+deb13u2
`libc-bin`	CVE-2026-0915	MEDIUM	2.41-12+deb13u1	2.41-12+deb13u2
`libc6`	CVE-2026-0861	HIGH	2.41-12+deb13u1	2.41-12+deb13u2
`libc6`	CVE-2025-15281	MEDIUM	2.41-12+deb13u1	2.41-12+deb13u2
`libc6`	CVE-2026-0915	MEDIUM	2.41-12+deb13u1	2.41-12+deb13u2
`libsqlite3-0`	CVE-2025-7709	MEDIUM	3.46.1-7	3.46.1-7+deb13u1

No Misconfigurations found

`Python`

1 known vulnerabilities found (MEDIUM: 0 LOW: 1 CRITICAL: 0 HIGH: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`pip`	CVE-2026-1703	LOW	25.3	26.0

No Misconfigurations found

github-actions · 2026-03-23T21:50:02Z

Trivy image scan report

`ghcr.io/chgl/github-reusable-workflow:pr-232 (debian 13.3)`

8 known vulnerabilities found (LOW: 0 CRITICAL: 0 HIGH: 2 MEDIUM: 5)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`dpkg`	CVE-2026-2219	UNKNOWN	1.22.21	1.22.22
`libc-bin`	CVE-2026-0861	HIGH	2.41-12+deb13u1	2.41-12+deb13u2
`libc-bin`	CVE-2025-15281	MEDIUM	2.41-12+deb13u1	2.41-12+deb13u2
`libc-bin`	CVE-2026-0915	MEDIUM	2.41-12+deb13u1	2.41-12+deb13u2
`libc6`	CVE-2026-0861	HIGH	2.41-12+deb13u1	2.41-12+deb13u2
`libc6`	CVE-2025-15281	MEDIUM	2.41-12+deb13u1	2.41-12+deb13u2
`libc6`	CVE-2026-0915	MEDIUM	2.41-12+deb13u1	2.41-12+deb13u2
`libsqlite3-0`	CVE-2025-7709	MEDIUM	3.46.1-7	3.46.1-7+deb13u1

No Misconfigurations found

`Python`

1 known vulnerabilities found (CRITICAL: 0 HIGH: 0 MEDIUM: 0 LOW: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`pip`	CVE-2026-1703	LOW	25.3	26.0

No Misconfigurations found

github-actions · 2026-03-23T21:50:09Z

Trivy image scan report

`ghcr.io/chgl/github-reusable-workflow-without-test-image:pr-232 (debian 13.3)`

8 known vulnerabilities found (CRITICAL: 0 HIGH: 2 MEDIUM: 5 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`dpkg`	CVE-2026-2219	UNKNOWN	1.22.21	1.22.22
`libc-bin`	CVE-2026-0861	HIGH	2.41-12+deb13u1	2.41-12+deb13u2
`libc-bin`	CVE-2025-15281	MEDIUM	2.41-12+deb13u1	2.41-12+deb13u2
`libc-bin`	CVE-2026-0915	MEDIUM	2.41-12+deb13u1	2.41-12+deb13u2
`libc6`	CVE-2026-0861	HIGH	2.41-12+deb13u1	2.41-12+deb13u2
`libc6`	CVE-2025-15281	MEDIUM	2.41-12+deb13u1	2.41-12+deb13u2
`libc6`	CVE-2026-0915	MEDIUM	2.41-12+deb13u1	2.41-12+deb13u2
`libsqlite3-0`	CVE-2025-7709	MEDIUM	3.46.1-7	3.46.1-7+deb13u1

No Misconfigurations found

`Python`

1 known vulnerabilities found (CRITICAL: 0 HIGH: 0 MEDIUM: 0 LOW: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
`pip`	CVE-2026-1703	LOW	25.3	26.0

No Misconfigurations found

github-actions · 2026-03-23T21:58:51Z

🎉 This PR is included in version 1.11.19 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

chore(deps): update marocchino/sticky-pull-request-comment action to v3

2df3ba5

renovate bot force-pushed the renovate/marocchino-sticky-pull-request-comment-3.x branch from 6b84ed7 to 2df3ba5 Compare March 23, 2026 21:48

chgl merged commit b888d91 into master Mar 23, 2026
41 checks passed

renovate bot deleted the renovate/marocchino-sticky-pull-request-comment-3.x branch March 23, 2026 21:55

github-actions bot added the released label Mar 23, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update marocchino/sticky-pull-request-comment action to v3#232

chore(deps): update marocchino/sticky-pull-request-comment action to v3#232
chgl merged 1 commit intomasterfrom
renovate/marocchino-sticky-pull-request-comment-3.x

renovate bot commented Mar 23, 2026

Uh oh!

github-actions bot commented Mar 23, 2026 •

edited

Loading

Uh oh!

github-actions bot commented Mar 23, 2026

Uh oh!

github-actions bot commented Mar 23, 2026

Uh oh!

github-actions bot commented Mar 23, 2026

Uh oh!

Uh oh!

github-actions bot commented Mar 23, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

renovate bot commented Mar 23, 2026

Release Notes

v3.0.2

What's Changed

v3.0.1

What's Changed

v3.0.0

What's Changed

New Contributors

Configuration

Uh oh!

github-actions bot commented Mar 23, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

✅MegaLinter analysis: Success

Uh oh!

github-actions bot commented Mar 23, 2026

Trivy image scan report

ghcr.io/chgl/github-reusable-workflow-with-fixed-image-tags:v1.2.3-beta.123 (debian 13.3)

8 known vulnerabilities found (CRITICAL: 0 HIGH: 2 MEDIUM: 5 LOW: 0)

No Misconfigurations found

Python

1 known vulnerabilities found (MEDIUM: 0 LOW: 1 CRITICAL: 0 HIGH: 0)

No Misconfigurations found

Uh oh!

github-actions bot commented Mar 23, 2026

Trivy image scan report

ghcr.io/chgl/github-reusable-workflow:pr-232 (debian 13.3)

8 known vulnerabilities found (LOW: 0 CRITICAL: 0 HIGH: 2 MEDIUM: 5)

No Misconfigurations found

Python

1 known vulnerabilities found (CRITICAL: 0 HIGH: 0 MEDIUM: 0 LOW: 1)

No Misconfigurations found

Uh oh!

github-actions bot commented Mar 23, 2026

Trivy image scan report

ghcr.io/chgl/github-reusable-workflow-without-test-image:pr-232 (debian 13.3)

8 known vulnerabilities found (CRITICAL: 0 HIGH: 2 MEDIUM: 5 LOW: 0)

No Misconfigurations found

Python

1 known vulnerabilities found (CRITICAL: 0 HIGH: 0 MEDIUM: 0 LOW: 1)

No Misconfigurations found

Uh oh!

Uh oh!

github-actions bot commented Mar 23, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

`v3.0.2`

`v3.0.1`

`v3.0.0`

github-actions bot commented Mar 23, 2026 •

edited

Loading

`ghcr.io/chgl/github-reusable-workflow-with-fixed-image-tags:v1.2.3-beta.123 (debian 13.3)`

`Python`

`ghcr.io/chgl/github-reusable-workflow:pr-232 (debian 13.3)`

`Python`

`ghcr.io/chgl/github-reusable-workflow-without-test-image:pr-232 (debian 13.3)`

`Python`