Skip to content

build(deps): bump the dependencies group across 1 directory with 2 updates #233

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
dependabot wants to merge 1 commit into
base: develop
Choose a base branch
from
+3 −3

build(deps): bump the dependencies group across 1 directory with 2 up…

43f57d0
Select commit
Loading
Failed to load commit list.
Open

build(deps): bump the dependencies group across 1 directory with 2 updates #233

build(deps): bump the dependencies group across 1 directory with 2 up…
43f57d0
Select commit
Loading
Failed to load commit list.
SonarQubeCloud / SonarCloud Code Analysis failed May 19, 2026 in 26s

Quality Gate failed

Failed conditions
C Security Rating on New Code (required ≥ A)

See analysis details on SonarQube Cloud

Catch issues before they fail your Quality Gate with our IDE extension SonarQube for IDE

Annotations

Check warning on line 51 in .github/workflows/pull-request.yml

See this annotation in the file changed.

@sonarqubecloud sonarqubecloud / SonarCloud Code Analysis

Omitting "--only-binary :all:" can lead to the execution of setup scripts. Make sure it is safe here. 

See more on https://sonarcloud.io/project/issues?id=NHSDigital_nhs-aws-helpers&issues=AZ3jdtqvIQccHbajWACx&open=AZ3jdtqvIQccHbajWACx&pullRequest=233

Check warning on line 51 in .github/workflows/pull-request.yml

See this annotation in the file changed.

@sonarqubecloud sonarqubecloud / SonarCloud Code Analysis

Using dependencies without locking resolved versions is security-sensitive. 

See more on https://sonarcloud.io/project/issues?id=NHSDigital_nhs-aws-helpers&issues=AZ3jdtqvIQccHbajWACy&open=AZ3jdtqvIQccHbajWACy&pullRequest=233
View more details on SonarQubeCloud