chore(deps): update docker/build-push-action action from v6.12.0 to v6.13.0 (.github/workflows/release-x-manual-docker-containers.yml)

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
docker/build-push-action	action	minor	v6.12.0 -> v6.13.0

---

Release Notes

docker/build-push-action (docker/build-push-action)

v6.13.0

Compare Source

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[dryrunsecurity]

DryRun Security Summary

The provided text discusses updates to two GitHub Actions workflows for building and publishing Docker images for the DefectDojo project, focusing on version upgrades and the importance of reviewing Dockerfiles and build configurations for security and integrity.

Expand for full summary

Summary:

The provided code changes are related to two GitHub Actions workflows that handle the building and publishing of Docker images for the DefectDojo project. The changes do not introduce any obvious security concerns, but there are a few areas that should be reviewed to ensure the ongoing security and integrity of the application.

The first change updates the version of the docker/build-push-action GitHub Action from v6.12.0 to v6.13.0. This is a minor version upgrade that may include bug fixes, improvements, or new features related to building and pushing Docker images. It's important to review the changes in the newer version of the GitHub Action to ensure that there are no security-related updates or fixes that need to be considered.

The second change is related to a workflow that builds and pushes Docker containers for the DefectDojo project. While the workflow itself does not appear to have any immediate security concerns, it's important to review the contents of the Dockerfiles being used, ensure that the dependency versions are up-to-date, and verify that the Docker build checks are properly configured to maintain a secure application.

Files Changed:

1. .github/workflows/build-docker-images-for-testing.yml: This file contains a GitHub Actions workflow that builds Docker images for testing purposes. The changes update the version of the docker/build-push-action GitHub Action from v6.12.0 to v6.13.0.

2. .github/workflows/release-x-manual-docker-containers.yml: This file contains a GitHub Actions workflow that builds and pushes Docker containers for the DefectDojo project. The workflow can be triggered manually and uses specific Dockerfiles to build the images for different operating systems and components (Django and Nginx). It's important to review the contents of these Dockerfiles and ensure that the dependency versions and Docker build checks are properly configured.

Code Analysis

We ran 9 analyzers against 2 files and 0 analyzers had findings. 9 analyzers had no findings.

View PR in the DryRun Dashboard.

[dryrunsecurity]

DryRun Security Summary

The provided text discusses updates to two GitHub Actions workflows for building and publishing Docker images for the DefectDojo project, focusing on version upgrades and the importance of reviewing Dockerfiles and build configurations for potential security considerations.

Expand for full summary

Summary:

The provided code changes are related to two GitHub Actions workflows that handle the building and publishing of Docker images for the DefectDojo project. The changes do not introduce any obvious security concerns, but there are a few areas that should be reviewed to ensure the ongoing security and integrity of the application.

The first change updates the version of the docker/build-push-action GitHub Action from v6.12.0 to v6.13.0. This is a minor version upgrade that may include bug fixes, improvements, or new features related to building and pushing Docker images. It's important to review the changes in the newer version of the GitHub Action to ensure that there are no security-related updates or fixes that need to be considered.

The second change is related to a workflow that builds and pushes Docker containers for the DefectDojo project. While the workflow itself does not appear to have any immediate security concerns, it's important to review the contents of the Dockerfiles being used, ensure that the dependency versions are up-to-date, and verify that the Docker build checks are properly configured to maintain a secure application.

Files Changed:

1. .github/workflows/build-docker-images-for-testing.yml: This file contains a GitHub Actions workflow that builds Docker images for testing purposes. The changes update the version of the docker/build-push-action GitHub Action from v6.12.0 to v6.13.0.

2. .github/workflows/release-x-manual-docker-containers.yml: This file contains a GitHub Actions workflow that builds and pushes Docker containers for the DefectDojo project. The workflow can be triggered manually and uses specific Dockerfiles to build the images for different operating systems and components (Django and Nginx). It's important to review the contents of these Dockerfiles and ensure that the dependency versions and Docker build checks are properly configured.

Code Analysis

We ran 9 analyzers against 2 files and 0 analyzers had findings. 9 analyzers had no findings.

View PR in the DryRun Dashboard.