Skip to content

test(deps): bump conan from 2.29.1 to 2.30.0 in /.devcontainer#1344

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/dot-devcontainer/conan-2.30.0
Open

test(deps): bump conan from 2.29.1 to 2.30.0 in /.devcontainer#1344
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/dot-devcontainer/conan-2.30.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 9, 2026

Copy link
Copy Markdown
Contributor

Bumps conan from 2.29.1 to 2.30.0.

Release notes

Sourced from conan's releases.

2.30.0 (29-Jun-2026)

  • Feature: Add SPDX expression support in SBOM generation. (conan-io/conan#20112)
  • Feature: Add type annotations to LockfileAPI for improved IDE support. (conan-io/conan#20104)
  • Feature: Add missing favicon to Conan HTML output. (conan-io/conan#20087)
  • Feature: Implement the conf=~ for the "unset" operation (alias for conf=!). (conan-io/conan#20084). Docs: 📃
  • Feature: Add ASFLAGS to AutotoolsToolchain/GnuToolchain, including architecture and sysroot flags. (conan-io/conan#20078). Docs: 📃
  • Feature: Add IntelCC support in Meson, Autotools and Premake toolchains. (conan-io/conan#20075). Docs: 📃
  • Feature: Model explicitly the msys2 environments (clang64, ucrt64, etc) in tools.microsoft.bash:subsystem. (conan-io/conan#20074). Docs: 📃
  • Feature: Add build_system_requirements() method for installing system tools only in the build context. (conan-io/conan#20070). Docs: 📃
  • Feature: Add support for cmake_extra_interface_libs and cmake_extra_dependencies properties to the CMakeDeps generator. (conan-io/conan#20066). Docs: 📃
  • Feature: Support explicit architecture suffixes in system package names for native builds with host_package=False. (conan-io/conan#20047). Docs: 📃
  • Feature: Prevent multiple .libs or .package_framework entries in CMakeConfigDeps. (conan-io/conan#20046)
  • Feature: Add support for Bazel 9.x to BazelDeps. (conan-io/conan#20042). Docs: 📃
  • Feature: Adapt bazel_7_lib/bazel_7_exe templates to support Bazel 9.x (conan new command). (conan-io/conan#20042). Docs: 📃
  • Feature: Allow [replace_requires/tool_requires] unset in profile composition and extension. (conan-io/conan#20040). Docs: 📃
  • Feature: Add tools.meson.mesontoolchain:extra_variables configuration to MesonToolchain. (conan-io/conan#20032). Docs: 📃
  • Fix: Fix conan install <path> failing with absolute paths ending in a dot. (conan-io/conan#20092)
  • Fix: Relativize cpp_info.location for editable layouts. (conan-io/conan#20088). Docs: 📃
  • Fix: Improve output messages for the generate() step. (conan-io/conan#20085)
  • Fix: Make conan config install maintain permission bits. (conan-io/conan#20059)
  • Fix: Improve error message for broken Jinja2 syntax in global.conf. (conan-io/conan#20056)
  • Fix: Add Intel 2026.0 version and Intel compiler configuration check. (conan-io/conan#20049). Docs: 📃
  • Fix: Set IMPORTED_CONFIGURATIONS property to package frameworks in CMakeConfigDeps. (conan-io/conan#20041)
  • Fix: Remove build context suffix from host requirements in CMakeConfigDeps. (conan-io/conan#20038)
  • Bugfix: Version-based policy for fixed propagation of transitive_headers trait. (conan-io/conan#20073)
  • Bugfix: Fix workspace info with python_requires and a custom user packages() method in conanws.py. (conan-io/conan#20064)
  • Bugfix: Fix some cases where IMPORTED_IMPLIB was not being declared when extension was set in cpp_info.libs. (conan-io/conan#20062)
  • Bugfix: Fix caching of different revisions of the same package while resolving the graph. (conan-io/conan#20061)
  • Bugfix: Fix replace_requires applying when command line arguments explicitly define a package reference. (conan-io/conan#20048). Docs: 📃
  • Bugfix: Check whole git repository for dirtiness when using revision_mode=scm. (conan-io/conan#18630)
Commits
  • 9b6b317 Conan 2.30.0
  • b4d645b Version-based policy for fixed propagation of transitive_headers trait (#...
  • b24ddd4 Revert classmethod fixtures: use self instead of cls for Python 3.7 compatibi...
  • c7d8738 Correct @classmethod + @pytest.fixture decorator order 2 (#20120)
  • 0821c4a Correct @classmethod + @pytest.fixture decorator order (#20116)
  • 713b593 MesonToolchain: add extra_variables and exe_wrapper property (#20032)
  • 2e0affd fix TestRestApi test
  • b20cdc5 SPDX expression on SBOM (#20112)
  • 69007ed autotools/gnu asflags (#20078)
  • a012499 Fix git dirty check for revision_mode=scm (#18630)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [conan](https://github.com/conan-io/conan) from 2.29.1 to 2.30.0.
- [Release notes](https://github.com/conan-io/conan/releases)
- [Commits](conan-io/conan@2.29.1...2.30.0)

---
updated-dependencies:
- dependency-name: conan
  dependency-version: 2.30.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jul 9, 2026
@dependabot dependabot Bot requested a review from a team as a code owner July 9, 2026 16:35
@dependabot dependabot Bot added the python Pull requests that update Python code label Jul 9, 2026
@sonarqubecloud

sonarqubecloud Bot commented Jul 9, 2026

Copy link
Copy Markdown

@github-actions

github-actions Bot commented Jul 9, 2026

Copy link
Copy Markdown
Contributor

📦 Container Size Analysis

Note

Comparing ghcr.io/philips-software/amp-devcontainer-base:edgeghcr.io/philips-software/amp-devcontainer-base:pr-1344

📈 Size Comparison Table

OS/Platform Previous Current Change Trend
linux/amd64 71.79 MB 71.79 MB 416 B (0%) 🔽
linux/arm64 70.09 MB 70.09 MB +845 B (+0%) 🔼

@github-actions

github-actions Bot commented Jul 9, 2026

Copy link
Copy Markdown
Contributor

⚠️MegaLinter analysis: Success with warnings

Descriptor Linter Files Fixed Errors Warnings Elapsed time
✅ ACTION actionlint 23 0 0 0.27s
✅ DOCKERFILE hadolint 4 0 0 0.25s
✅ JSON npm-package-json-lint yes no no 0.52s
✅ JSON prettier 32 6 0 0 1.31s
✅ JSON v8r 32 0 0 15.82s
⚠️ MARKDOWN markdownlint 13 0 1 0 1.27s
✅ MARKDOWN markdown-table-formatter 13 0 0 0 0.39s
✅ REPOSITORY checkov yes no no 34.88s
✅ REPOSITORY gitleaks yes no no 1.2s
✅ REPOSITORY git_diff yes no no 0.02s
✅ REPOSITORY grype yes no no 59.22s
⚠️ REPOSITORY osv-scanner yes 1 no 0.97s
✅ REPOSITORY secretlint yes no no 2.36s
✅ REPOSITORY syft yes no no 3.44s
✅ REPOSITORY trivy yes no no 12.47s
✅ REPOSITORY trivy-sbom yes no no 0.44s
✅ REPOSITORY trufflehog yes no no 3.64s
⚠️ SPELL lychee 100 2 0 15.12s
✅ YAML prettier 32 0 0 0 1.41s
✅ YAML v8r 32 0 0 15.3s
✅ YAML yamllint 32 0 0 1.41s

Detailed Issues

⚠️ SPELL / lychee - 2 errors
📝 Summary
---------------------
🔍 Total..........147
🔗 Unique.........123
✅ Successful.....140
⏳ Timeouts.........0
🔀 Redirected......18
👻 Excluded.........0
❓ Unknown..........0
🚫 Errors...........2
⛔ Unsupported......2

Errors in .github/TOOL_VERSION_ISSUE_TEMPLATE.md
[403] https://developer.arm.com/downloads/-/arm-gnu-toolchain-downloads (at 38:7) | Rejected status code: 403 Forbidden

Errors in README.md
[ERROR] https://www.conventionalcommits.org/en/v1.0.0/ (at 203:88) | Network error: Connection reset by peer (os error 104)

Hint: Followed 18 redirects. You might want to consider replacing redirecting URLs with the resolved URLs. Use verbose mode (`-v`/`-vv`) to see redirection details.
Hint: You can configure accepted/rejected response codes with `-a` or `--accept`
⚠️ MARKDOWN / markdownlint - 1 error
docs/adr/0000-record-architecture-decisions.md:30:401 error MD013/line-length Line length [Expected: 400; Actual: 520]
⚠️ REPOSITORY / osv-scanner - 1 error
Scanning dir .
Starting filesystem walk for root: /
Scanned .devcontainer/docs/requirements.txt file and found 14 packages
Scanned .devcontainer/cpp/requirements.txt file and found 20 packages
Scanned package-lock.json file and found 73 packages
Scanned test/rust/workspace/cargo/Cargo.lock file and found 1 package
Scanned test/rust/workspace/test/Cargo.lock file and found 1 package
Scanned test/rust/workspace/cortex-m/Cargo.lock file and found 20 packages
Scanned test/rust/workspace/clippy/Cargo.lock file and found 1 package
Scanned test/rust/workspace/cortex-mf/Cargo.lock file and found 20 packages
End status: 97 dirs visited, 315 inodes visited, 8 Extract calls, 34.871598ms elapsed, 34.871758ms wall time

Total 2 packages affected by 2 known vulnerabilities (0 Critical, 0 High, 0 Medium, 0 Low, 2 Unknown) from 1 ecosystem.
0 vulnerabilities can be fixed.

+-----------------------------------+------+-----------+------------+---------+---------------+------------------------------------------+
| OSV URL                           | CVSS | ECOSYSTEM | PACKAGE    | VERSION | FIXED VERSION | SOURCE                                   |
+-----------------------------------+------+-----------+------------+---------+---------------+------------------------------------------+
| https://osv.dev/RUSTSEC-2026-0110 |      | crates.io | bare-metal | 0.2.5   | --            | test/rust/workspace/cortex-m/Cargo.lock  |
| https://osv.dev/RUSTSEC-2026-0110 |      | crates.io | bare-metal | 0.2.5   | --            | test/rust/workspace/cortex-mf/Cargo.lock |
+-----------------------------------+------+-----------+------------+---------+---------------+------------------------------------------+

Notices

📣 MegaLinter 9.5.0 is out! Discover the new features and security recommendations in the release announcement. (Skip this info by defining SECURITY_SUGGESTIONS: false)

See detailed reports in MegaLinter artifacts

You could have the same capabilities but better runtime performances if you use a MegaLinter flavor:

Your project could benefit from a custom flavor, which would allow you to run only the linters you need, and thus improve runtime performances. (Skip this info by defining FLAVOR_SUGGESTIONS: false)

  • Documentation: Custom Flavors
  • Command: npx mega-linter-runner@9.5.0 --custom-flavor-setup --custom-flavor-linters ACTION_ACTIONLINT,DOCKERFILE_HADOLINT,JSON_V8R,JSON_PRETTIER,JSON_NPM_PACKAGE_JSON_LINT,MARKDOWN_MARKDOWNLINT,MARKDOWN_MARKDOWN_TABLE_FORMATTER,REPOSITORY_CHECKOV,REPOSITORY_GIT_DIFF,REPOSITORY_GITLEAKS,REPOSITORY_GRYPE,REPOSITORY_OSV_SCANNER,REPOSITORY_SECRETLINT,REPOSITORY_SYFT,REPOSITORY_TRIVY,REPOSITORY_TRIVY_SBOM,REPOSITORY_TRUFFLEHOG,SPELL_LYCHEE,YAML_PRETTIER,YAML_YAMLLINT,YAML_V8R

MegaLinter is graciously provided by OX Security
Show us your support by starring ⭐ the repository

@github-actions

github-actions Bot commented Jul 9, 2026

Copy link
Copy Markdown
Contributor

📦 Container Size Analysis

Note

Comparing ghcr.io/philips-software/amp-devcontainer-docs:edgeghcr.io/philips-software/amp-devcontainer-docs:pr-1344

📈 Size Comparison Table

OS/Platform Previous Current Change Trend
linux/amd64 196.54 MB 196.54 MB 113 B (0%) 🔽
linux/arm64 192.98 MB 192.98 MB +720 B (+0%) 🔼

@github-actions

github-actions Bot commented Jul 9, 2026

Copy link
Copy Markdown
Contributor

📦 Container Size Analysis

Note

Comparing ghcr.io/philips-software/amp-devcontainer-rust:edgeghcr.io/philips-software/amp-devcontainer-rust:pr-1344

📈 Size Comparison Table

OS/Platform Previous Current Change Trend
linux/amd64 468.61 MB 468.61 MB +587 B (+0%) 🔼
linux/arm64 419.8 MB 419.8 MB +554 B (+0%) 🔼

@github-actions

github-actions Bot commented Jul 9, 2026

Copy link
Copy Markdown
Contributor

📦 Container Size Analysis

Note

Comparing ghcr.io/philips-software/amp-devcontainer-cpp:edgeghcr.io/philips-software/amp-devcontainer-cpp:pr-1344

📈 Size Comparison Table

OS/Platform Previous Current Change Trend
linux/amd64 371.94 MB 371.95 MB +1.77 kB (+0%) 🔼
linux/arm64 352.19 MB 352.19 MB 1.15 kB (0%) 🔽

@github-actions

github-actions Bot commented Jul 9, 2026

Copy link
Copy Markdown
Contributor

📦 Container Size Analysis

Note

Comparing ghcr.io/philips-software/amp-devcontainer-embedded-cpp:edgeghcr.io/philips-software/amp-devcontainer-embedded-cpp:pr-1344

📈 Size Comparison Table

OS/Platform Previous Current Change Trend
linux/amd64 560.32 MB 560.32 MB +1.09 kB (+0%) 🔼
linux/arm64 538.93 MB 538.93 MB 311 B (0%) 🔽

@github-actions

github-actions Bot commented Jul 9, 2026

Copy link
Copy Markdown
Contributor

Test Results

 20 files  + 16   20 suites  +16   16m 16s ⏱️ + 16m 16s
 39 tests + 38   39 ✅ + 38  0 💤 ±0  0 ❌ ±0 
168 runs  +164  168 ✅ +164  0 💤 ±0  0 ❌ ±0 

Results for commit 591fa31. ± Comparison against base commit 8731e2a.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants