chore: bump oxsecurity/megalinter from 7.1.0 to 7.2.1 (#922)

Bumps [oxsecurity/megalinter](https://github.com/oxsecurity/megalinter)
from 7.1.0 to 7.2.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/oxsecurity/megalinter/releases">oxsecurity/megalinter's
releases</a>.</em></p>
<blockquote>
<h2>MegaLinter v7.2.1</h2>
<h2>What's Changed</h2>
<ul>
<li>
<p>Fixes</p>
<ul>
<li>Fix TAP reporter (3 real dots instead if 3 dots character), by <a
href="https://github.com/nvuillam"><code>@​nvuillam</code></a> &amp; <a
href="https://github.com/maxilampert"><code>@​maxilampert</code></a> in
<a
href="https://redirect.github.com/oxsecurity/megalinter/pull/2837">oxsecurity/megalinter#2837</a></li>
<li>Call trufflehog with <code>--only-verified</code> to avoid false
positives in .git/config, by <a
href="https://github.com/nvuillam"><code>@​nvuillam</code></a> , <a
href="https://github.com/quotidian-ennui"><code>@​quotidian-ennui</code></a>
, <a href="https://github.com/iggy"><code>@​iggy</code></a> &amp; <a
href="https://github.com/dochang"><code>@​dochang</code></a> in <a
href="https://redirect.github.com/oxsecurity/megalinter/pull/2838">oxsecurity/megalinter#2838</a>
<ul>
<li>If you added <code>REPOSITORY_TRUFFLEHOG_ARGUMENTS:
&quot;--only-verified&quot;</code> as workaround, just remove it to
upgrade to 7.2.1</li>
</ul>
</li>
</ul>
</li>
<li>
<p>Linter versions upgrades</p>
<ul>
<li><a
href="https://github.com/aws-cloudformation/cfn-lint">cfn-lint</a> from
0.78.2 to <strong>0.79.2</strong></li>
<li><a href="https://www.checkov.io/">checkov</a> from 2.3.340 to
<strong>2.3.343</strong></li>
<li><a href="https://pylint.pycqa.org">pylint</a> from 2.17.4 to
<strong>2.17.5</strong></li>
<li><a href="https://rubocop.org/">rubocop</a> from 1.54.2 to
<strong>1.55.0</strong></li>
<li><a href="https://snakemake.readthedocs.io/en/stable/">snakemake</a>
from 7.30.2 to <strong>7.31.0</strong></li>
<li><a
href="https://meta.stoplight.io/docs/spectral/README.md">spectral</a>
from 6.8.0 to <strong>6.10.0</strong></li>
<li><a href="https://www.sqlfluff.com/">sqlfluff</a> from 2.1.3 to
<strong>2.1.4</strong></li>
<li><a
href="https://github.com/trufflesecurity/trufflehog">trufflehog</a> from
3.44.0 to <strong>3.45.1</strong></li>
</ul>
</li>
</ul>
<p><em>MegaLinter is graciously provided by <a
href="https://www.ox.security/?ref=megalinter"><img
src="https://www.ox.security/wp-content/uploads/2022/06/logo.svg?ref=megalinter_comment"
alt="OX Security" /></a></em></p>
<p>Discover <strong>CodeTotal</strong> , a new way to use MegaLinter, <a
href="https://www.blackhat.com/us-23/arsenal/schedule/index.html#codetotal-shift-left-just-became-easier-33596">at
BlackHat USA on August 10</a> !</p>
<p><a
href="https://www.blackhat.com/us-23/arsenal/schedule/index.html#codetotal-shift-left-just-became-easier-33596"><img
src="https://github.com/oxsecurity/megalinter/assets/17500430/233e4a56-28b0-4722-849f-1169b2f5fb2c"
alt="image" /></a></p>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/oxsecurity/megalinter/compare/v7.2.0...v7.2.1">https://github.com/oxsecurity/megalinter/compare/v7.2.0...v7.2.1</a></p>
<h2>MegaLinter v7.2.0</h2>
<p>Discover <strong>CodeTotal</strong> , a new way to use MegaLinter, <a
href="https://www.blackhat.com/us-23/arsenal/schedule/index.html#codetotal-shift-left-just-became-easier-33596">at
BlackHat USA on August 10</a> !</p>
<p><a
href="https://www.blackhat.com/us-23/arsenal/schedule/index.html#codetotal-shift-left-just-became-easier-33596"><img
src="https://github.com/oxsecurity/megalinter/assets/17500430/233e4a56-28b0-4722-849f-1169b2f5fb2c"
alt="image" /></a></p>
<h2>What's Changed</h2>
<ul>
<li>
<p>New linters</p>
<ul>
<li>Add <a href="https://github.com/lycheeverse/lychee">Lychee</a> -
links and email addresses checker, by <a
href="https://github.com/DariuszPorowski"><code>@​DariuszPorowski</code></a>
in <a
href="https://redirect.github.com/oxsecurity/megalinter/pull/2673">#2673</a></li>
<li>Add <a href="https://github.com/anchore/grype">grype</a> security
linter</li>
<li>Add <a
href="https://github.com/trufflesecurity/trufflehog">trufflehog</a>
security linter</li>
</ul>
</li>
<li>
<p>New flavor <strong>dotnetweb</strong>: dotnet flavor linters +
Javascript &amp; Typescript linters</p>
</li>
<li>
<p>Media</p>
<ul>
<li><a href="https://geekflare.com/nodejs-security-scanner/">8 Tools to
Scan Node.js Applications for Security Vulnerability</a>, by <a
href="https://www.linkedin.com/in/chandank">Chandan
Kumar</a>{target=_blank} on <a
href="https://geekflare.com/">GeekFlare.com</a></li>
<li><a
href="https://www.blackhat.com/us-23/arsenal/schedule/index.html#codetotal-shift-left-just-became-easier-33596">Shift
Left Just Become Easier (Black Hat Arsenal Session)</a></li>
</ul>
</li>
<li>
<p>Core</p>
<ul>
<li>MegaLinter Server for <a
href="https://www.blackhat.com/us-23/arsenal/schedule/index.html#codetotal-shift-left-just-became-easier-33596">CodeTotal</a></li>
<li>Improvements to Gitpod workspace and addition of Makefile for
automation, by <a
href="https://github.com/ThomasSanson"><code>@​ThomasSanson</code></a>
in <a
href="https://redirect.github.com/oxsecurity/megalinter/pull/2737">oxsecurity/megalinter#2737</a></li>
</ul>
</li>
<li>
<p>Fixes</p>
<ul>
<li>Handle reporter crashes without making all ML crash</li>
</ul>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/oxsecurity/megalinter/blob/main/CHANGELOG.md">oxsecurity/megalinter's
changelog</a>.</em></p>
<blockquote>
<h2>[v7.2.1] - 2023-07-26</h2>
<ul>
<li>
<p>Fixes</p>
<ul>
<li>Fix TAP reporter (3 real dots instead if 3 dots character)</li>
<li>Call trufflehog with <code>--only-verified</code> to avoid false
positives in .git/config</li>
</ul>
</li>
<li>
<p>Linter versions upgrades</p>
<ul>
<li><a
href="https://github.com/aws-cloudformation/cfn-lint">cfn-lint</a> from
0.78.2 to <strong>0.79.2</strong></li>
<li><a href="https://www.checkov.io/">checkov</a> from 2.3.340 to
<strong>2.3.343</strong></li>
<li><a href="https://pylint.pycqa.org">pylint</a> from 2.17.4 to
<strong>2.17.5</strong></li>
<li><a href="https://rubocop.org/">rubocop</a> from 1.54.2 to
<strong>1.55.0</strong></li>
<li><a href="https://snakemake.readthedocs.io/en/stable/">snakemake</a>
from 7.30.2 to <strong>7.31.0</strong></li>
<li><a
href="https://meta.stoplight.io/docs/spectral/README.md">spectral</a>
from 6.8.0 to <strong>6.10.0</strong></li>
<li><a href="https://www.sqlfluff.com/">sqlfluff</a> from 2.1.3 to
<strong>2.1.4</strong></li>
<li><a
href="https://github.com/trufflesecurity/trufflehog">trufflehog</a> from
3.44.0 to <strong>3.45.1</strong></li>
</ul>
</li>
</ul>
<h2>[v7.2.0] - 2023-07-25</h2>
<ul>
<li>
<p>New linters</p>
<ul>
<li>Add <a href="https://github.com/lycheeverse/lychee">Lychee</a> -
links and email addresses checker, by <a
href="https://github.com/DariuszPorowski"><code>@​DariuszPorowski</code></a>
in <a
href="https://redirect.github.com/oxsecurity/megalinter/pull/2673">#2673</a></li>
<li>Add <a href="https://github.com/anchore/grype">grype</a> security
linter</li>
<li>Add <a
href="https://github.com/trufflesecurity/trufflehog">trufflehog</a>
security linter</li>
</ul>
</li>
<li>
<p>New flavor <strong>dotnetweb</strong>: dotnet flavor linters +
Javascript &amp; Typescript linters</p>
</li>
<li>
<p>Media</p>
<ul>
<li><a href="https://geekflare.com/nodejs-security-scanner/">8 Tools to
Scan Node.js Applications for Security Vulnerability</a>, by <a
href="https://www.linkedin.com/in/chandank">Chandan
Kumar</a>{target=_blank} on <a
href="https://geekflare.com/">GeekFlare.com</a></li>
<li><a
href="https://www.blackhat.com/us-23/arsenal/schedule/index.html#codetotal-shift-left-just-became-easier-33596">Shift
Left Just Become Easier (Black Hat Arsenal Session)</a></li>
</ul>
</li>
<li>
<p>Core</p>
<ul>
<li>MegaLinter Server for <a
href="https://www.blackhat.com/us-23/arsenal/schedule/index.html#codetotal-shift-left-just-became-easier-33596">CodeTotal</a></li>
<li>Improvements to Gitpod workspace and addition of Makefile for
automation, by <a
href="https://github.com/ThomasSanson"><code>@​ThomasSanson</code></a>
in <a
href="https://redirect.github.com/oxsecurity/megalinter/pull/2737">oxsecurity/megalinter#2737</a></li>
</ul>
</li>
<li>
<p>Fixes</p>
<ul>
<li>Handle reporter crashes without making all ML crash</li>
<li>Devskim: Remove default --ignore-globs argument</li>
<li>mypy: Use /tmp as cache folder by default with ENV
MYPY_CACHE_DIR=/tmp in Dockerfile</li>
<li>Fix <code>hadolint</code> to use its default configuration file
properly, by <a
href="https://github.com/KihyeokK"><code>@​KihyeokK</code></a> in <a
href="https://redirect.github.com/oxsecurity/megalinter/pull/2763">oxsecurity/megalinter#2763</a></li>
<li>Remove linters not in flavor before calling reporters</li>
<li>Undowngrade devskim, by <a
href="https://github.com/nvuillam"><code>@​nvuillam</code></a> in <a
href="https://redirect.github.com/oxsecurity/megalinter/pull/2748">oxsecurity/megalinter#2748</a></li>
<li>Add ts-standard linter for ts standard, by <a
href="https://github.com/janderssonse"><code>@​janderssonse</code></a>
in <a
href="https://redirect.github.com/oxsecurity/megalinter/pull/2746">oxsecurity/megalinter#2746</a></li>
<li>Remove additional <code>--update</code> for apk in Dockerfile by <a
href="https://github.com/PeterDaveHello"><code>@​PeterDaveHello</code></a>
in <a
href="https://redirect.github.com/oxsecurity/megalinter/pull/2619">oxsecurity/megalinter#2619</a></li>
<li>Fix V8R config arg usage (<a
href="https://redirect.github.com/oxsecurity/megalinter/issues/2756">#2756</a>),
by <a href="https://github.com/bdovaz"><code>@​bdovaz</code></a> in <a
href="https://redirect.github.com/oxsecurity/megalinter/pull/2819">oxsecurity/megalinter#2819</a></li>
</ul>
</li>
<li>
<p>Reporters</p>
<ul>
<li>New Redis reporter (beta)</li>
</ul>
</li>
<li>
<p>CI</p>
<ul>
<li>Clean docker build cache to avoid no space left on device during
Build Dev job</li>
</ul>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/oxsecurity/megalinter/commit/63776c4389c474e1a6b9faa27bc8b9500fdff95a"><code>63776c4</code></a>
Release MegaLinter v7.2.1</li>
<li><a
href="https://github.com/oxsecurity/megalinter/commit/373b28c9adc7b937fa790382d7ba7dfdff771f06"><code>373b28c</code></a>
[automation] Auto-update linters version, help and documentation (<a
href="https://redirect.github.com/oxsecurity/megalinter/issues/2841">#2841</a>)</li>
<li><a
href="https://github.com/oxsecurity/megalinter/commit/2fd06bbbe27244ab27b594d20968a7421214443f"><code>2fd06bb</code></a>
[automation] Auto-update linters version, help and documentation (<a
href="https://redirect.github.com/oxsecurity/megalinter/issues/2839">#2839</a>)</li>
<li><a
href="https://github.com/oxsecurity/megalinter/commit/685120cc18c09b60a2a93e3e450cc0d3a3b8c382"><code>685120c</code></a>
Call trufflehog with <code>--only-verified</code> to avoid false
positives in .git/confi...</li>
<li><a
href="https://github.com/oxsecurity/megalinter/commit/f7f767a2a3561d09556a5f2127c8dc7cbff5088d"><code>f7f767a</code></a>
Fix TAP reporter (3 real dots instead if 3 dots character) (<a
href="https://redirect.github.com/oxsecurity/megalinter/issues/2837">#2837</a>)</li>
<li><a
href="https://github.com/oxsecurity/megalinter/commit/181765606bac2798c052bf0b434bd2f3b6e82a3a"><code>1817656</code></a>
[automation] Auto-update linters version, help and documentation (<a
href="https://redirect.github.com/oxsecurity/megalinter/issues/2833">#2833</a>)</li>
<li><a
href="https://github.com/oxsecurity/megalinter/commit/504a03e2f0de7f76926cabedbbad842dc06e5752"><code>504a03e</code></a>
[automation] Auto-update linters version, help and documentation (<a
href="https://redirect.github.com/oxsecurity/megalinter/issues/2831">#2831</a>)</li>
<li><a
href="https://github.com/oxsecurity/megalinter/commit/c72cdea919d17076dbc54f4864b1c82db0f181f2"><code>c72cdea</code></a>
Release MegaLinter v7.2.0</li>
<li><a
href="https://github.com/oxsecurity/megalinter/commit/e7eae31d8e19220266682603de7ab0f605060fb2"><code>e7eae31</code></a>
[automation] Auto-update linters version, help and documentation (<a
href="https://redirect.github.com/oxsecurity/megalinter/issues/2830">#2830</a>)</li>
<li><a
href="https://github.com/oxsecurity/megalinter/commit/c3d606a00357e057c2105753f353d7fdd752deca"><code>c3d606a</code></a>
[automation] Auto-update linters version, help and documentation (<a
href="https://redirect.github.com/oxsecurity/megalinter/issues/2828">#2828</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/oxsecurity/megalinter/compare/v7.1.0...v7.2.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=oxsecurity/megalinter&package-manager=github_actions&previous-version=7.1.0&new-version=7.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Matthias Kay <[email protected]>

Author: dependabot[bot]

.checkov.yml

@@ -0,0 +1,4 @@
+skip-check:
+  # Ensure Terraform module sources use a commit hash
+  # no attack vector here as we use external modules in the examples only
+  - CKV_TF_1

.github/workflows/ci.yml

@@ -70,7 +70,7 @@ jobs:
         id: ml
         # You can override MegaLinter flavor used to have faster performances
         # More info at https://megalinter.io/flavors/
-        uses: oxsecurity/megalinter@v7.1.0
+        uses: oxsecurity/megalinter@v7.2.1
         env:
           # All available variables are described in documentation
           # https://megalinter.io/configuration/

.mega-linter.yml

@@ -10,8 +10,9 @@ DISABLE_LINTERS:
   # The tables created by TfDoc are not formatted according to the standard. And there is no option to deactivate the check for a
   # section of the file.
   - MARKDOWN_MARKDOWN_TABLE_FORMATTER
-  # CSpell does a great job. No need for a second linter.
+  # CSpell does a great job. No need for another spell checker
   - SPELL_MISSPELL
+  - SPELL_LYCHEE
   # DevSkim as it has issues ignoring files/directories, e.g. .mypy_cache
   - REPOSITORY_DEVSKIM