-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump the backend group across 1 directory with 16 updates #82
Open
dependabot
wants to merge
1
commit into
master
Choose a base branch
from
dependabot/go_modules/backend-dae6bd7b8a
base: master
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps the backend group with 10 updates in the / directory: | Package | From | To | | --- | --- | --- | | [github.com/Masterminds/semver/v3](https://github.com/Masterminds/semver) | `3.2.1` | `3.3.0` | | [github.com/aquasecurity/trivy](https://github.com/aquasecurity/trivy) | `0.52.2` | `0.55.1` | | [github.com/go-chi/chi/v5](https://github.com/go-chi/chi) | `5.0.13` | `5.1.0` | | [github.com/operator-framework/api](https://github.com/operator-framework/api) | `0.26.0` | `0.27.0` | | [github.com/rs/cors](https://github.com/rs/cors) | `1.11.0` | `1.11.1` | | [github.com/tektoncd/pipeline](https://github.com/tektoncd/pipeline) | `0.60.2` | `0.63.0` | | [github.com/unrolled/secure](https://github.com/unrolled/secure) | `1.14.0` | `1.15.0` | | [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.21.0` | `0.23.0` | | [google.golang.org/api](https://github.com/googleapis/google-api-go-client) | `0.185.0` | `0.197.0` | | [oras.land/oras-go](https://github.com/oras-project/oras-go) | `1.2.5` | `1.2.6` | Updates `github.com/Masterminds/semver/v3` from 3.2.1 to 3.3.0 - [Release notes](https://github.com/Masterminds/semver/releases) - [Changelog](https://github.com/Masterminds/semver/blob/master/CHANGELOG.md) - [Commits](Masterminds/semver@v3.2.1...v3.3.0) Updates `github.com/aquasecurity/trivy` from 0.52.2 to 0.55.1 - [Release notes](https://github.com/aquasecurity/trivy/releases) - [Changelog](https://github.com/aquasecurity/trivy/blob/v0.55.1/CHANGELOG.md) - [Commits](aquasecurity/trivy@v0.52.2...v0.55.1) Updates `github.com/go-chi/chi/v5` from 5.0.13 to 5.1.0 - [Release notes](https://github.com/go-chi/chi/releases) - [Changelog](https://github.com/go-chi/chi/blob/master/CHANGELOG.md) - [Commits](go-chi/chi@v5.0.13...v5.1.0) Updates `github.com/google/go-containerregistry` from 0.19.2 to 0.20.2 - [Release notes](https://github.com/google/go-containerregistry/releases) - [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml) - [Commits](google/go-containerregistry@v0.19.2...v0.20.2) Updates `github.com/open-policy-agent/opa` from 0.65.0 to 0.67.1 - [Release notes](https://github.com/open-policy-agent/opa/releases) - [Changelog](https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md) - [Commits](open-policy-agent/opa@v0.65.0...v0.67.1) Updates `github.com/operator-framework/api` from 0.26.0 to 0.27.0 - [Release notes](https://github.com/operator-framework/api/releases) - [Changelog](https://github.com/operator-framework/api/blob/master/RELEASE.md) - [Commits](operator-framework/api@v0.26.0...v0.27.0) Updates `github.com/prometheus/client_golang` from 1.19.1 to 1.20.1 - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](prometheus/client_golang@v1.19.1...v1.20.1) Updates `github.com/rs/cors` from 1.11.0 to 1.11.1 - [Commits](rs/cors@v1.11.0...v1.11.1) Updates `github.com/tektoncd/pipeline` from 0.60.2 to 0.63.0 - [Release notes](https://github.com/tektoncd/pipeline/releases) - [Changelog](https://github.com/tektoncd/pipeline/blob/main/releases.md) - [Commits](tektoncd/pipeline@v0.60.2...v0.63.0) Updates `github.com/unrolled/secure` from 1.14.0 to 1.15.0 - [Release notes](https://github.com/unrolled/secure/releases) - [Commits](unrolled/secure@v1.14.0...v1.15.0) Updates `golang.org/x/crypto` from 0.24.0 to 0.26.0 - [Commits](golang/crypto@v0.24.0...v0.26.0) Updates `golang.org/x/oauth2` from 0.21.0 to 0.23.0 - [Commits](golang/oauth2@v0.21.0...v0.23.0) Updates `golang.org/x/text` from 0.16.0 to 0.17.0 - [Release notes](https://github.com/golang/text/releases) - [Commits](golang/text@v0.16.0...v0.17.0) Updates `google.golang.org/api` from 0.185.0 to 0.197.0 - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.185.0...v0.197.0) Updates `helm.sh/helm/v3` from 3.15.2 to 3.15.3 - [Release notes](https://github.com/helm/helm/releases) - [Commits](helm/helm@v3.15.2...v3.15.3) Updates `oras.land/oras-go` from 1.2.5 to 1.2.6 - [Release notes](https://github.com/oras-project/oras-go/releases) - [Commits](oras-project/oras-go@v1.2.5...v1.2.6) --- updated-dependencies: - dependency-name: github.com/Masterminds/semver/v3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: backend - dependency-name: github.com/aquasecurity/trivy dependency-type: direct:production update-type: version-update:semver-minor dependency-group: backend - dependency-name: github.com/go-chi/chi/v5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: backend - dependency-name: github.com/google/go-containerregistry dependency-type: direct:production update-type: version-update:semver-minor dependency-group: backend - dependency-name: github.com/open-policy-agent/opa dependency-type: direct:production update-type: version-update:semver-minor dependency-group: backend - dependency-name: github.com/operator-framework/api dependency-type: direct:production update-type: version-update:semver-minor dependency-group: backend - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-minor dependency-group: backend - dependency-name: github.com/rs/cors dependency-type: direct:production update-type: version-update:semver-patch dependency-group: backend - dependency-name: github.com/tektoncd/pipeline dependency-type: direct:production update-type: version-update:semver-minor dependency-group: backend - dependency-name: github.com/unrolled/secure dependency-type: direct:production update-type: version-update:semver-minor dependency-group: backend - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor dependency-group: backend - dependency-name: golang.org/x/oauth2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: backend - dependency-name: golang.org/x/text dependency-type: direct:production update-type: version-update:semver-minor dependency-group: backend - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor dependency-group: backend - dependency-name: helm.sh/helm/v3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: backend - dependency-name: oras.land/oras-go dependency-type: direct:production update-type: version-update:semver-patch dependency-group: backend ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
added
dependencies
Pull requests that update a dependency file
go
Pull requests that update Go code
labels
Sep 16, 2024
Report too large to display inline |
Vulnerable Libraries (11)
More info on how to fix Vulnerable Libraries in Go. 👉 Go to the dashboard for detailed results. 📥 Happy? Share your feedback with us. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
0 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the backend group with 10 updates in the / directory:
3.2.1
3.3.0
0.52.2
0.55.1
5.0.13
5.1.0
0.26.0
0.27.0
1.11.0
1.11.1
0.60.2
0.63.0
1.14.0
1.15.0
0.21.0
0.23.0
0.185.0
0.197.0
1.2.5
1.2.6
Updates
github.com/Masterminds/semver/v3
from 3.2.1 to 3.3.0Release notes
Sourced from github.com/Masterminds/semver/v3's releases.
Changelog
Sourced from github.com/Masterminds/semver/v3's changelog.
Commits
e6e3d4d
Merge pull request #249 from mattfarina/update-changelog-3.3.0e80c4ea
Updating changelog for 3.3.080427ad
Merge pull request #248 from mattfarina/bump-min-versionb610837
bumping min version in go.mod based on what's testeda4cccd8
Merge pull request #246 from mattfarina/bump-go-1.237c178cf
Updating the testing version of Go used29f94c1
Merge pull request #241 from grosser/grosser/validate2cf1b16
Merge pull request #245 from mattfarina/remove-vertb55476a
Removing reference to vertd07450b
simplify StrictNewVersionUpdates
github.com/aquasecurity/trivy
from 0.52.2 to 0.55.1Release notes
Sourced from github.com/aquasecurity/trivy's releases.
Changelog
Sourced from github.com/aquasecurity/trivy's changelog.
... (truncated)
Commits
8c6a4a6
release: v0.55.1 [release/v0.55] (#7491)6ae7cd5
fix(report): fix error with unmarshal ofExperimentalModifiedFindings
[back...6fa91bf
fix(report): change a receiver of MarshalJSON [backport: release/v0.55] (#7490)c20d9e2
revert(java): stop supporting oftest
scope forpom.xml
files [backport: ...7a1e8b8
release: v0.55.0 [main] (#7271)2d80769
feat(go): usetoolchain
asstdlib
version forgo.mod
files (#7163)f80183c
fix(license): add license handling to JUnit template (#7409)2d97700
feat(java): addtest
scope support forpom.xml
files (#7414)870523d
chore(deps): Bump trivy-checks and pin OPA (#7427)da4ebfa
fix(helm): explicitly definekind
andapiVersion
ofvolumeClaimTemplate
...Updates
github.com/go-chi/chi/v5
from 5.0.13 to 5.1.0Release notes
Sourced from github.com/go-chi/chi/v5's releases.
Commits
67be7d9
middleware: add Discard method to WrapResponseWriter (#926)7957c0d
Revert "fix(middleware): Close created writer in the compressor middleware (#...f728a1c
docs: Update stale links in docs for contributing (#904)Updates
github.com/google/go-containerregistry
from 0.19.2 to 0.20.2Release notes
Sourced from github.com/google/go-containerregistry's releases.
Commits
c195f15
deps: bump docker dep (#1991)c3d1dcc
Createremote.Push
(#1978)d36047a
Restore blind-write to remote.Put (#1970)9915a85
Referrer API must return correct Content-Type (#1968)Updates
github.com/open-policy-agent/opa
from 0.65.0 to 0.67.1Release notes
Sourced from github.com/open-policy-agent/opa's releases.
... (truncated)
Changelog
Sourced from github.com/open-policy-agent/opa's changelog.
... (truncated)
Commits
b88c09e
Prepare v0.67.1 release11e91b0
util+server: Fix bug around chunked request handling. (#6906)b62ae6b
Prepare v0.67.0 releasebec8e1a
build(deps): bump github/codeql-action from 3.25.13 to 3.25.14 (#6888)d48fdd9
server: Add missing handling forexplain=fails
to the REST API.959f9e5
docs: Add an example of a manifest with attributea793f27
repl: Add support for correctly loading bundle modulesc5706ee
server+util: Limit max request sizes, prealloc request buffers (#6868)0ca35e2
build(deps): bump docker/setup-buildx-action from 3.4.0 to 3.5.0 (#6880)f9ccb66
build(deps): bump github/codeql-action from 3.25.12 to 3.25.13 (#6881)Updates
github.com/operator-framework/api
from 0.26.0 to 0.27.0Release notes
Sourced from github.com/operator-framework/api's releases.
Commits
41cb4ae
Bump kubernetes libraries to v0.31.0 and controller-runtime to v0.19.0 (#357)46fd7e5
Bump sigs.k8s.io/controller-runtime from 0.18.4 to 0.18.5 (#356)a5729e2
Bump k8s.io/apiextensions-apiserver from 0.30.2 to 0.30.3 (#353)ce8a923
Fix codecov-action params (#349)2e3c15f
Bump github.com/spf13/cobra from 1.8.0 to 1.8.1fa102cb
Bump k8s.io/apiextensions-apiserver from 0.30.1 to 0.30.2e122588
Fix some typos in cel.go (#343)Updates
github.com/prometheus/client_golang
from 1.19.1 to 1.20.1Release notes
Sourced from github.com/prometheus/client_golang's releases.
... (truncated)
Changelog
Sourced from github.com/prometheus/client_golang's changelog.
... (truncated)
Commits
2254d6c
Merge pull request #1587 from prometheus/fix-processcollector4a15d05
Cut 1.20.1f2dd7b3
Use pedantic registry in other places too, to double check.