build(deps): bump redhat-plumbers-in-action/differential-shellcheck from 3.2.1 to 4.2.1

[dependabot]

Bumps redhat-plumbers-in-action/differential-shellcheck from 3.2.1 to 4.2.1.

Release notes

Sourced from redhat-plumbers-in-action/differential-shellcheck's releases.

v4.2.1

What's Changed

Bug Fixes

• Handle multiple include/exclude paths with newlines 🌍 (#236) @​jamacku

Dependency Updates

• build(deps): bump github/codeql-action from 2.2.7 to 2.2.11 (#235) @​dependabot

Full Changelog: redhat-plumbers-in-action/differential-shellcheck@v4.2.0...v4.2.1

v4.2.0

What's Changed

New

• Add an option to exclude and include specific paths before scanning 🦝 (#232) @​jamacku @​kdudka

Dependency Updates

• build(deps): bump actions/checkout from 3.4.0 to 3.5.0 (#227) @​dependabot
• build(deps): bump ossf/scorecard-action from 2.1.2 to 2.1.3 (#228) @​dependabot
• build(deps): bump test/test_helper/bats-file from cc3fb8c to 805ffb7 (#229) @​dependabot

Full Changelog: redhat-plumbers-in-action/differential-shellcheck@v4.1.1...v4.2.0

v4.1.1

What's Changed

• Version Bump 🐤

Full Changelog: redhat-plumbers-in-action/differential-shellcheck@v4.1.0...v4.1.1

v4.1.0

What's Changed

New

• Utilize DEBUG to run grep without --silent option 🙊 (#221) @​jamacku

Bug Fixes

• grep: do not escape # and ! in patterns 🍏 (#220) @​jamacku

Maintenance

• Update csutils (csdiff) to 3.0.0 💠 (#223) @​jamacku

... (truncated)

Changelog

Sourced from redhat-plumbers-in-action/differential-shellcheck's changelog.

Changelog

v4.2.1

• Handle multiple include/exclude paths with newlines

v4.2.0

• New option exclude-path. Allows to specify list of paths excluded from ShellCheck scanning. It supports globbing and brace expansion. e.g. test/{test1,test2}/**
• New option include-path. Similar to exclude-path, it allows specifying the list of paths that will be included into scanning. No further checks are performed. It supports globbing and brace expansion. e.g. fixture/**.fixture

v4.1.0

• grep - do not escape # and ! in patterns
• Utilize DEBUG to run grep without --silent option
• Update csutils (csdiff) to 3.0.0

v4.0.2

• Correctly handle character escaping in filenames (e.g. ␣ and &)
• Improve documentation and more tests

v4.0.0

• Tag latest is no longer available. Use major tags instead (e.g. v3 or v4).

• Action can be triggered using GitHub push event

  on:
    push:
  jobs:
  lint:
  runs-on: ubuntu-latest
  steps:
    - uses: actions/checkout@v3
      with:
        fetch-depth: 0
  
  uses: redhat-plumbers-in-action/differential-shellcheck@v4
  id: ShellCheck
  with:
  token: ${{ secrets.GITHUB_TOKEN }}

Note: When using --force action doesn't work properly when triggered on push events

Action now perform full scans on push event by default and on manual trigger when requested

... (truncated)

Commits

• 87b655a v4.2.1
• 224f422 fix: handle multiple include/exclude paths with newlines
• fcc8ee6 build(deps): bump github/codeql-action from 2.2.7 to 2.2.11
• 6a6ac89 v4.2.0
• af7a517 feat: add include-path option
• 13aa7da feat: add exclude-path option
• b13b453 Revert "ci: use github/codeql-action/upload-sarif"
• 85986d2 Revert "doc: suggest github/codeql-action/upload-sarif as default way how t...
• 9f6e4ec build(deps): bump actions/checkout from 3.4.0 to 3.5.0
• b92bc58 build(deps): bump ossf/scorecard-action from 2.1.2 to 2.1.3
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)