Skip to content

chore: 🔖 release new versions#2638

Merged
DmitryAnansky merged 1 commit intomainfrom
changeset-release/main
Mar 5, 2026
Merged

chore: 🔖 release new versions#2638
DmitryAnansky merged 1 commit intomainfrom
changeset-release/main

Conversation

@github-actions
Copy link
Copy Markdown
Contributor

@github-actions github-actions bot commented Mar 4, 2026

This PR was opened by the Changesets release GitHub action. When you're ready to do a release, you can merge this and the packages will be published to npm automatically. If you're not ready to do a release yet, that's fine, whenever you add more changesets to main, this PR will be updated.

Releases

@redocly/cli@2.20.4

Patch Changes

  • Improved error messaging when a path parameter referenced via $ref is not used in the path.
  • Updated @redocly/openapi-core to v2.20.4.

@redocly/openapi-core@2.20.4

Patch Changes

  • Improved error messaging when a path parameter referenced via $ref is not used in the path.

@redocly/respect-core@2.20.4

Patch Changes

  • Updated @redocly/openapi-core to v2.20.4.

@github-actions github-actions bot requested review from a team as code owners March 4, 2026 15:49
@github-actions github-actions bot force-pushed the changeset-release/main branch from 64802bb to f9a1138 Compare March 4, 2026 16:17
@DmitryAnansky DmitryAnansky reopened this Mar 4, 2026
@github-actions
Copy link
Copy Markdown
Contributor Author

github-actions bot commented Mar 4, 2026

Coverage Report

Status Category Percentage Covered / Total
🔵 Lines 79.15% (🎯 79%) 6381 / 8061
🔵 Statements 78.6% (🎯 78%) 6593 / 8387
🔵 Functions 82.4% (🎯 82%) 1307 / 1586
🔵 Branches 71.01% (🎯 70%) 4344 / 6117
File CoverageNo changed files found.
Generated in workflow #8915 for commit f9a1138 by the Vitest Coverage Report Action

@github-actions
Copy link
Copy Markdown
Contributor Author

github-actions bot commented Mar 4, 2026

CLI Version Mean Time ± Std Dev (s) Relative Performance (Lower is Faster)
cli-2.0.0 3.719s ± 0.050s ▓ 1.02x
cli-2.03.1 3.813s ± 0.043s ▓▓ 1.04x
cli-2.08.0 3.829s ± 0.057s ▓▓ 1.05x
cli-2.11.1 3.857s ± 0.035s ▓▓ 1.05x
cli-2.12.0 3.889s ± 0.056s ▓▓ 1.06x
cli-2.12.2 3.750s ± 0.044s ▓ 1.03x
cli-2.13.0 3.775s ± 0.035s ▓ 1.03x
cli-2.14.1 3.832s ± 0.061s ▓▓ 1.05x
cli-2.14.2 3.657s ± 0.040s ▓ 1.00x (Fastest)
cli-2.19.2 3.720s ± 0.042s ▓ 1.02x
cli-2.20.1 3.717s ± 0.026s ▓ 1.02x
cli-latest 3.689s ± 0.040s ▓ 1.01x
cli-next 3.737s ± 0.046s ▓ 1.02x

@DmitryAnansky DmitryAnansky merged commit 98a053f into main Mar 5, 2026
43 checks passed
@DmitryAnansky DmitryAnansky deleted the changeset-release/main branch March 5, 2026 09:36
@enderax
Copy link
Copy Markdown

enderax commented Mar 10, 2026

🔍 Container Security Scan Results 🔴

Image: redocly/cli@sha256:b4e679fcd295585e245a5100348633c47a5412436942538073123c80a6de1850
Status: CRITICAL vulnerabilities found

Vulnerability Summary

Severity Total OS Packages Libraries Status
🔴 Critical 1 1 0
:large_orange_circle: High 3 0 3 ⚠️
🟡 Medium 10 - - ℹ️
⚪ Low 1 - - ℹ️

Top Vulnerabilities

Severity CVE Package Version Fix Available
💥 🔴 CRITICAL UNKNOWN zlib 1.3.1-r2 1.3.2-r0
💥 :large_orange_circle: HIGH UNKNOWN minimatch 10.2.2 10.2.3
💥 :large_orange_circle: HIGH UNKNOWN minimatch 10.2.2 10.2.3
:large_orange_circle: HIGH UNKNOWN tar 7.5.9 7.5.10

💥 = Public exploit available

🔧 Recommended Actions

OS Package Vulnerabilities (1 Critical, 0 High):

  • Use minimal base images (e.g., alpine, distroless)
  • Update base image to latest version
  • Example: FROM alpine:3.19 -> FROM alpine:3.20

Library Vulnerabilities (0 Critical, 3 High):

  • Update dependencies in your package manager (package.json, requirements.txt, go.mod, etc.)
  • Pin specific versions instead of tags for reproducible builds
  • Example: alpine:3 (tag) -> alpine:3.19.1 (pinned version)

Attestation

✅ Binary Authorization attestation created - image approved for deployment

Build ID: 9d8c943d-23af-4209-8a21-c0d35ec32c34
Resources: Container Security Best Practices

@enderax
Copy link
Copy Markdown

enderax commented Mar 10, 2026

🔍 Container Security Scan Results 🔴

Image: redocly/cli@sha256:5fbde73c015b07e0ea74bfdf8125b59498b0933f460b57713309fa584bf232c7
Status: CRITICAL vulnerabilities found

Vulnerability Summary

Severity Total OS Packages Libraries Status
🔴 Critical 1 1 0
:large_orange_circle: High 3 0 3 ⚠️
🟡 Medium 10 - - ℹ️
⚪ Low 1 - - ℹ️

Top Vulnerabilities

Severity CVE Package Version Fix Available
💥 🔴 CRITICAL UNKNOWN zlib 1.3.1-r2 1.3.2-r0
💥 :large_orange_circle: HIGH UNKNOWN minimatch 10.2.2 10.2.3
💥 :large_orange_circle: HIGH UNKNOWN minimatch 10.2.2 10.2.3
:large_orange_circle: HIGH UNKNOWN tar 7.5.9 7.5.10

💥 = Public exploit available

🔧 Recommended Actions

OS Package Vulnerabilities (1 Critical, 0 High):

  • Use minimal base images (e.g., alpine, distroless)
  • Update base image to latest version
  • Example: FROM alpine:3.19 -> FROM alpine:3.20

Library Vulnerabilities (0 Critical, 3 High):

  • Update dependencies in your package manager (package.json, requirements.txt, go.mod, etc.)
  • Pin specific versions instead of tags for reproducible builds
  • Example: alpine:3 (tag) -> alpine:3.19.1 (pinned version)

Attestation

✅ Binary Authorization attestation created - image approved for deployment

Build ID: 66a81a6f-9b53-40d9-9258-49dfbe647cff
Resources: Container Security Best Practices

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@DmitryAnansky DmitryAnansky DmitryAnansky approved these changes

@JLekawa JLekawa JLekawa approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@enderax @DmitryAnansky @JLekawa