Bump actions/dependency-review-action from 4.2.5 to 4.3.2

[dependabot]

Bumps actions/dependency-review-action from 4.2.5 to 4.3.2.

Release notes

Sourced from actions/dependency-review-action's releases.

v4.3.2

What's Changed

• Fix package-url parsing for allow-dependencies-licenses by @​juxtin in actions/dependency-review-action#761

Full Changelog: actions/dependency-review-action@v4.3.1...v4.3.2

v4.3.1

What's Changed

This release fixes some bugs related to package-url parsing that were introduced in 4.3.0. See actions/dependency-review-action#753.

Full Changelog: actions/dependency-review-action@V4.3.0...v4.3.1

v4.3.0

New Features

• The deny-packages option can now be used without a version number to exclude all versions of a package.

What's Changed

• Fix action variable name for scorecard by @​lukehinds in actions/dependency-review-action#735
• Fix extra https:// in summary by @​jhutchings1 in actions/dependency-review-action#748
• Bump typescript from 5.3.3 to 5.4.5 by @​dependabot in actions/dependency-review-action#744
• Bump eslint-plugin-github from 4.10.1 to 4.10.2 by @​dependabot in actions/dependency-review-action#737
• Show denied packages with red X by @​juxtin in actions/dependency-review-action#750
• deny-packages configuration option can deny specified version or all packages by @​febuiles and @​bteng22 in actions/dependency-review-action#733

New Contributors

• @​bteng22 made their first contribution in actions/dependency-review-action#733
• @​lukehinds made their first contribution in actions/dependency-review-action#735

Full Changelog: actions/dependency-review-action@v4.2.5...V4.3.0

Commits

• 0c155c5 Merge pull request #762 from actions/juxtin/prepare-4.3.2
• f3dac32 Merge pull request #761 from actions/juxtin/fix-allow-dependencies-licenses
• d0d5cc3 Update version number to 4.3.2
• 49fbbe0 Fix package-url parsing for allow-dependencies-licenses
• e58c696 Merge pull request #758 from actions/juxtin/prepare-4.3.1
• 9b7c72d Change version to 4.3.1
• 7dcfabf Merge pull request #753 from actions/juxtin/debug-purl
• 5f0808f Validate that deny-packages purls are complete
• fcc66c2 Refine purl parsing and tests
• 1dd418b Basic tests for PURL validation in config
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 94.91%. Comparing base (12aa9da) to head (7621fc9).

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #5425   +/-   ##
=======================================
  Coverage   94.91%   94.91%           
=======================================
  Files         334      334           
  Lines       16230    16230           
=======================================
  Hits        15404    15404           
  Misses        648      648           
  Partials      178      178           

Flag	Coverage Δ
badger_v1	7.97% <ø> (ø)
badger_v2	1.88% <ø> (ø)
cassandra-3.x-v1	16.27% <ø> (ø)
cassandra-3.x-v2	1.81% <ø> (ø)
cassandra-4.x-v1	16.27% <ø> (ø)
cassandra-4.x-v2	1.81% <ø> (ø)
elasticsearch-5.x	1.73% <ø> (?)
elasticsearch-6.x	1.73% <ø> (?)
elasticsearch-7.x	1.72% <ø> (?)
elasticsearch-8.x	1.72% <ø> (?)
grpc_v1	10.13% <ø> (ø)
grpc_v2	7.36% <ø> (ø)
kafka	9.68% <ø> (ø)
opensearch-1.x	1.72% <ø> (ø)
opensearch-2.x	1.72% <ø> (-0.02%)	⬇️
unittests	93.11% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.