Azure Pipelines Dependency Submission
Version updated for https://github.com/jessehouwing/azure-pipelines-dependency-submission to version v1.0.5.
- This action is used across all versions by 1 repositories.
Action Type
This is a Node action using Node version 24.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
This GitHub Action automates the submission of Azure Pipelines task dependencies to GitHub’s Dependency Graph for vulnerability scanning and Dependabot alerts. It identifies pipeline files, resolves tasks using the Azure DevOps API to include full identifiers and versions, and integrates seamlessly with GitHub to provide proactive security monitoring for pipeline dependencies. This action simplifies dependency tracking and enhances security through automated alerts for potential vulnerabilities.
Release notes
What’s Changed
- Bump the actions-minor group with 2 updates by @dependabot[bot] in https://github.com/jessehouwing/azure-pipelines-dependency-submission/pull/86
- Bump the npm-development group with 3 updates by @dependabot[bot] in https://github.com/jessehouwing/azure-pipelines-dependency-submission/pull/87
- Bump fast-xml-parser from 5.3.6 to 5.4.1 by @dependabot[bot] in https://github.com/jessehouwing/azure-pipelines-dependency-submission/pull/88
- Bump the actions-minor group with 2 updates by @dependabot[bot] in https://github.com/jessehouwing/azure-pipelines-dependency-submission/pull/91
- Bump actions/upload-artifact from 6.0.0 to 7.0.0 by @dependabot[bot] in https://github.com/jessehouwing/azure-pipelines-dependency-submission/pull/92
- Bump @types/node from 24.10.13 to 24.11.0 in the npm-development group by @dependabot[bot] in https://github.com/jessehouwing/azure-pipelines-dependency-submission/pull/90
- Bump underscore from 1.13.7 to 1.13.8 by @dependabot[bot] in https://github.com/jessehouwing/azure-pipelines-dependency-submission/pull/89
Full Changelog: https://github.com/jessehouwing/azure-pipelines-dependency-submission/compare/v1.0.4...v1.0.5