Bump credo from 1.6.7 to 1.7.1 #36

dependabot · 2023-10-02T00:42:34Z

Bumps credo from 1.6.7 to 1.7.1.

Changelog

1.7.1

Fix compatibility & compiler warnings with Elixir 1.15

Improve docs

Credo.Check.Readability.Specs works for parensless definitions

1.7.0

Credo.Check.Readability.ModuleDoc works for Phoenix 1.7+ views

Credo.Check.Readability.FunctionNames now ignores custom operators

Credo.Check.Refactor.Apply now works in pipes

Credo.Check.Consistency.ExceptionNames does no longer yield an issue if there is only one match

Credo.Check.Readability.ModuleNames now supports an :ignore parameter

Credo.Check.Design.AliasUsage now supports an :if_referenced parameter

Credo.Check.Readability.FunctionNames now works for acronyms in predicate functions

Credo.Check.Readability.NestedFunctionCalls now works for calls already in a pipeline and local function calls

Add SARIF support

Credo 1.7 provides a formatter that will output data in SARIF format, allowing direct GitHub support via the Security tab.

You can now use mix credo --format=sarif to output results in SARIF format.

Add IDs to checks

This was requested for SARIF support and has been added to provide a unique identifier for checks that is more technical than the check name.

Check authors can add IDs to their custom checks by using the :id option:
defmodule MyCheck do
  use Credo.Check,
    id: "EX5042",
    category: :warning,
    # ...
end
Credo's naming scheme for these IDs is simple:
EX5042
^^
EX stands for Elixir.
EX5042
  ^

... (truncated)

Commits

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [credo](https://github.com/rrrene/credo) from 1.6.7 to 1.7.1. - [Changelog](https://github.com/rrrene/credo/blob/master/CHANGELOG.md) - [Commits](https://github.com/rrrene/credo/commits) --- updated-dependencies: - dependency-name: credo dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added the dependencies Pull requests that update a dependency file label Oct 2, 2023

dependabot bot mentioned this pull request Oct 2, 2023

Bump credo from 1.6.7 to 1.7.0 #25

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump credo from 1.6.7 to 1.7.1 #36

Bump credo from 1.6.7 to 1.7.1 #36

dependabot bot commented on behalf of github Oct 2, 2023

Bump credo from 1.6.7 to 1.7.1 #36

Are you sure you want to change the base?

Bump credo from 1.6.7 to 1.7.1 #36

Conversation

dependabot bot commented on behalf of github Oct 2, 2023

1.7.1

1.7.0

Add SARIF support

Add IDs to checks