forked from enterprise-contract/ec-cli
-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
build(deps): bump the all group across 1 directory with 15 updates #173
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps the all group with 9 updates in the / directory: | Package | From | To | | --- | --- | --- | | cuelang.org/go | `0.8.0` | `0.8.2` | | [github.com/enterprise-contract/enterprise-contract-controller/api](https://github.com/enterprise-contract/enterprise-contract-controller) | `0.1.39` | `0.1.42` | | [github.com/gkampitakis/go-snaps](https://github.com/gkampitakis/go-snaps) | `0.5.2` | `0.5.4` | | [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.3` | `1.7.4` | | [github.com/leanovate/gopter](https://github.com/leanovate/gopter) | `0.2.9` | `0.2.11` | | [github.com/open-policy-agent/conftest](https://github.com/open-policy-agent/conftest) | `0.50.0` | `0.51.0` | | [github.com/sigstore/cosign/v2](https://github.com/sigstore/cosign) | `2.2.3` | `2.2.4` | | [github.com/tektoncd/pipeline](https://github.com/tektoncd/pipeline) | `0.54.0` | `0.59.0` | | [k8s.io/apiextensions-apiserver](https://github.com/kubernetes/apiextensions-apiserver) | `0.29.3` | `0.30.0` | Updates `cuelang.org/go` from 0.8.0 to 0.8.2 Updates `github.com/enterprise-contract/enterprise-contract-controller/api` from 0.1.39 to 0.1.42 - [Release notes](https://github.com/enterprise-contract/enterprise-contract-controller/releases) - [Commits](enterprise-contract/enterprise-contract-controller@api/v0.1.39...api/v0.1.42) Updates `github.com/gkampitakis/go-snaps` from 0.5.2 to 0.5.4 - [Release notes](https://github.com/gkampitakis/go-snaps/releases) - [Commits](gkampitakis/go-snaps@v0.5.2...v0.5.4) Updates `github.com/hashicorp/go-getter` from 1.7.3 to 1.7.4 - [Release notes](https://github.com/hashicorp/go-getter/releases) - [Changelog](https://github.com/hashicorp/go-getter/blob/main/.goreleaser.yml) - [Commits](hashicorp/go-getter@v1.7.3...v1.7.4) Updates `github.com/leanovate/gopter` from 0.2.9 to 0.2.11 - [Release notes](https://github.com/leanovate/gopter/releases) - [Changelog](https://github.com/leanovate/gopter/blob/master/CHANGELOG.md) - [Commits](leanovate/gopter@v0.2.9...v0.2.11) Updates `github.com/open-policy-agent/conftest` from 0.50.0 to 0.51.0 - [Release notes](https://github.com/open-policy-agent/conftest/releases) - [Changelog](https://github.com/open-policy-agent/conftest/blob/master/.goreleaser.yml) - [Commits](open-policy-agent/conftest@v0.50.0...v0.51.0) Updates `github.com/open-policy-agent/opa` from 0.62.1 to 0.63.0 - [Release notes](https://github.com/open-policy-agent/opa/releases) - [Changelog](https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md) - [Commits](open-policy-agent/opa@v0.62.1...v0.63.0) Updates `github.com/sigstore/cosign/v2` from 2.2.3 to 2.2.4 - [Release notes](https://github.com/sigstore/cosign/releases) - [Changelog](https://github.com/sigstore/cosign/blob/main/CHANGELOG.md) - [Commits](sigstore/cosign@v2.2.3...v2.2.4) Updates `github.com/sigstore/sigstore` from 1.8.2 to 1.8.3 - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](sigstore/sigstore@v1.8.2...v1.8.3) Updates `github.com/tektoncd/pipeline` from 0.54.0 to 0.59.0 - [Release notes](https://github.com/tektoncd/pipeline/releases) - [Changelog](https://github.com/tektoncd/pipeline/blob/main/releases.md) - [Commits](tektoncd/pipeline@v0.54.0...v0.59.0) Updates `golang.org/x/net` from 0.22.0 to 0.24.0 - [Commits](golang/net@v0.22.0...v0.24.0) Updates `k8s.io/apiextensions-apiserver` from 0.29.3 to 0.30.0 - [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases) - [Commits](kubernetes/apiextensions-apiserver@v0.29.3...v0.30.0) Updates `k8s.io/apimachinery` from 0.29.3 to 0.30.0 - [Commits](kubernetes/apimachinery@v0.29.3...v0.30.0) Updates `k8s.io/client-go` from 0.29.3 to 0.30.0 - [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md) - [Commits](kubernetes/client-go@v0.29.3...v0.30.0) Updates `k8s.io/kube-openapi` from 0.0.0-20231010175941-2dd684a91f00 to 0.0.0-20240228011516-70dd3763d340 - [Commits](https://github.com/kubernetes/kube-openapi/commits) --- updated-dependencies: - dependency-name: cuelang.org/go dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/enterprise-contract/enterprise-contract-controller/api dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/gkampitakis/go-snaps dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/hashicorp/go-getter dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/leanovate/gopter dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/open-policy-agent/conftest dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: github.com/open-policy-agent/opa dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: github.com/sigstore/cosign/v2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/sigstore/sigstore dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/tektoncd/pipeline dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: golang.org/x/net dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: k8s.io/apiextensions-apiserver dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: k8s.io/apimachinery dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: k8s.io/client-go dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: k8s.io/kube-openapi dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
added
dependencies
Pull requests that update a dependency file
go
Pull requests that update Go code
labels
Apr 29, 2024
Superseded by #179. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
0 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the all group with 9 updates in the / directory:
0.8.0
0.8.2
0.1.39
0.1.42
0.5.2
0.5.4
1.7.3
1.7.4
0.2.9
0.2.11
0.50.0
0.51.0
2.2.3
2.2.4
0.54.0
0.59.0
0.29.3
0.30.0
Updates
cuelang.org/go
from 0.8.0 to 0.8.2Updates
github.com/enterprise-contract/enterprise-contract-controller/api
from 0.1.39 to 0.1.42Release notes
Sourced from github.com/enterprise-contract/enterprise-contract-controller/api's releases.
Commits
8ea25fc
Merge pull request #310 from enterprise-contract/dependabot/github_actions/ac...b39f958
Merge pull request #308 from enterprise-contract/dependabot/github_actions/ac...c7ba579
Merge pull request #311 from enterprise-contract/dependabot/go_modules/github...eeec61f
Merge pull request #309 from enterprise-contract/dependabot/github_actions/gi...98b13fd
Merge pull request #307 from enterprise-contract/dependabot/github_actions/ac...5cce9ad
Bump github.com/onsi/gomega from 1.32.0 to 1.33.0723a969
Bump actions/checkout from 4.1.2 to 4.1.3ead9b81
Bump github/codeql-action from 3.25.0 to 3.25.1c6106a2
Bump actions/upload-artifact from 4.3.1 to 4.3.2841e993
Bump actions/download-artifact from 4.1.4 to 4.1.5Updates
github.com/gkampitakis/go-snaps
from 0.5.2 to 0.5.4Release notes
Sourced from github.com/gkampitakis/go-snaps's releases.
Commits
f98a2f9
fix: slice bounds out of range [:5] (#98)e31ee30
fix: race condition when updating snapshots in parallel (#97)Updates
github.com/hashicorp/go-getter
from 1.7.3 to 1.7.4Release notes
Sourced from github.com/hashicorp/go-getter's releases.
Commits
268c11c
escape user provide string to git (#483)975961f
Merge pull request #433 from adrian-bl/netrc-fix5ccb39a
Make addAuthFromNetrc ignore ENOTDIR errorsUpdates
github.com/leanovate/gopter
from 0.2.9 to 0.2.11Commits
b641a79
Remove invalid type panic for now (addresses #86)4dccbc2
Remove invalid type panic for now (addresses #86)2607924
Panic on unsupported type4f507f6
Update build runner69954c9
Support array generators (addresses #86)f9f2f29
Merge pull request #85 from zhongdai/fix-dead-linkse59552d
Fixed the dead links.90cc76d
Merge pull request #82 from kkweon/master62760ed
fix(gen/struct): typo in the commentf350002
Keep track of command sieve (issue #81)Updates
github.com/open-policy-agent/conftest
from 0.50.0 to 0.51.0Release notes
Sourced from github.com/open-policy-agent/conftest's releases.
Commits
1989c6c
fix: Only raise problematic if error when rule has no name set (#935)6609893
build(deps): bump github.com/open-policy-agent/opa from 0.62.1 to 0.63.0 (#933)86afe2f
ci: Pin bats version to work around broken CI (#936)bece944
build(deps): bump github.com/moby/buildkit from 0.13.0 to 0.13.1 (#931)06e3f8d
build(deps): bump cuelang.org/go from 0.7.1 to 0.8.0 (#930)515feda
build(deps): bump golang from 1.22.0-alpine to 1.22.1-alpine (#929)Updates
github.com/open-policy-agent/opa
from 0.62.1 to 0.63.0Release notes
Sourced from github.com/open-policy-agent/opa's releases.
Changelog
Sourced from github.com/open-policy-agent/opa's changelog.
Commits
bb30b15
Prepare v0.63.0 release (#6656)b705d5b
docs: Clear up some uses of future keywords (#6653)a7d27ef
Add Rego v1 keywords (#6649)d3a4a87
plugins/rest: Update service name while generating signature630b746
download: Surface bundle download errors via debug loggingea0dc02
Adding a new function crypto.x509.parse_and_verify_certificates_with_options....5f16f4a
plugins/rest: Add support to get temp creds via AssumeRole6c08d3f
docs: Update delta bundle patch doc for remove opd6c8c1b
chore: remove repetitive words143a8e6
topdown: Fixing overactive Early Exit suppressionUpdates
github.com/sigstore/cosign/v2
from 2.2.3 to 2.2.4Release notes
Sourced from github.com/sigstore/cosign/v2's releases.
Changelog
Sourced from github.com/sigstore/cosign/v2's changelog.
Commits
fb651b4
Add v2.2.4 changelog (#3662)629f5f8
Fixes for GHSA-88jx-383q-w4qc and GHSA-95pr-fxf5-86gv (#3661)302aee6
Refactor e2e-tests.yml workflow (#3627)d0b9861
chore(deps): bump golang.org/x/crypto from 0.21.0 to 0.22.0 (#3649)c95439b
chore(deps): bump github.com/spiffe/go-spiffe/v2 from 2.1.7 to 2.2.0 (#3653)430c985
chore(deps): bump golang.org/x/sync from 0.6.0 to 0.7.0 (#3655)48858a2
chore(deps): bump github.com/xanzy/go-gitlab from 0.101.0 to 0.102.0 (#3652)eba7c59
chore(deps): bump golang.org/x/term from 0.18.0 to 0.19.0 (#3651)2d13b65
chore(deps): bump golang.org/x/oauth2 from 0.18.0 to 0.19.0 (#3650)d56c9e8
chore(deps): bump the gomod group with 3 updates (#3648)Updates
github.com/sigstore/sigstore
from 1.8.2 to 1.8.3Release notes
Sourced from github.com/sigstore/sigstore's releases.
Commits
1b41d79
add support for verifying IEEE P1363 encoded ECDSA sigs (#1686)65a36c4
Update tuf root.json to version 9 from root-signing repo (#1649)656a152
build(deps): Bump the all group in /pkg/signature/kms/gcp with 1 update06016c2
build(deps): Bump the all group in /pkg/signature/kms/aws with 4 updates4440161
build(deps): Bump the all group with 2 updates97c04d0
build(deps): Bump the all group in /test/e2e with 1 update25dd9f3
build(deps): Bump the all group with 1 updated78dca2
build(deps): Bump the all group in /pkg/signature/kms/aws with 1 update405c5c4
build(deps): Bump the all groupb7f6993
build(deps): Bump the all group in /pkg/signature/kms/gcp with 2 updatesUpdates
github.com/tektoncd/pipeline
from 0.54.0 to 0.59.0Release notes
Sourced from github.com/tektoncd/pipeline's releases.
... (truncated)
Changelog
Sourced from github.com/tektoncd/pipeline's changelog.
... (truncated)
Commits
34d8c0f
chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...e556bc7
fix: resolve pod creation failure on retry when usingworkspace.\<name>.volume
a494d6a
fix(taskrun): emit warning for missing secret in ServiceAccount instead of fa...fba68b7
Fix shell for tag-images stepb712fc5
chore(deps): bump go.opentelemetry.io/otel/sdk from 1.25.0 to 1.26.091bbee5
fix: do not set default kind when taskRef resolver is present30e389b
fix: ensure default type for params in remote tasks to prevent pipeline failuresfaccef8
Fix the shell in crane imageb419b2c
Add a feature flag to disable inline spec356b30d
chore(deps): bump actions/checkout from 4.1.2 to 4.1.3Updates
golang.org/x/net
from 0.22.0 to 0.24.0Commits
7bbe320
go.mod: update golang.org/x dependenciesc48da13
http2: fix TestServerContinuationFlood flakes762b58d
http2: fix tipos in commentba87210
http2: close connections when receiving too many headersebc8168
all: fix some typos3678185
http2: make TestCanonicalHeaderCacheGrowth faster448c44f
http2: remove clientTesterc7877ac
http2: convert the remaining clientTester tests to testClientConnd8870b0
http2: use synthetic time in TestIdleConnTimeoutd73acff
http2: only set up deadline when Server.IdleTimeout is positiveUpdates
k8s.io/apiextensions-apiserver
from 0.29.3 to 0.30.0Commits
03da840
Update dependencies to v0.30.0 tagcb47ad4
Merge remote-tracking branch 'origin/master' into release-1.306ce7f38
Update x/net for CVE-2023-45288a2f312c
Merge remote-tracking branch 'origin/master' into release-1.30d3649bc
fix test flake caused by not waiting for CRD schema update9624e52
Merge pull request #123732 from serathius/parallel-featureflags24438a9
Merge pull request #123758 from liggitt/protobump916521e
Bump github.com/golang/protobuf v1.5.4, google.golang.org/protobuf v1.33.0fe10ad0
Merge pull request #123405 from cici37/vapGAa853d25
Fix SetFeatureGateDuringTest handling of Parallel testsUpdates
k8s.io/apimachinery
from 0.29.3 to 0.30.0Commits
37988e5
Merge remote-tracking branch 'origin/master' into release-1.30c857a38
Update x/net for CVE-2023-452880407311
followup to allow special characters25164f7
Merge pull request #123435 from tallclair/apparmor-gacbfe0a1
Merge pull request #123758 from liggitt/protobump21d26b6
Bump github.com/golang/protobuf v1.5.4, google.golang.org/protobuf v1.33.00c29f84
Merge pull request #123385 from HirazawaUi/allow-special-characters60d24f2
Merge pull request #123708 from p0lyn0mial/upstream-const-watchlist-bookmark-...513d23a
apimachinery/meta/types.go: define InitialEventsAnnotationKey const67cb3a8
Merge pull request #123413 from seans3/tunneling-spdy-websocketsUpdates
k8s.io/client-go
from 0.29.3 to 0.30.0Commits
3aa4577
Update dependencies to v0.30.0 tag2df4de1
Merge remote-tracking branch 'origin/master' into release-1.30ade2ae2
Update x/net for CVE-2023-45288b4632b7
Merge pull request #123932 from pohly/dra-api-resource-model-rename4467b1e
Merge pull request #123909 from AkihiroSuda/fix-123906650f392
dra api: NodeResourceModel -> ResourceModel00e4609
api: NodeStatus: rename RuntimeClasses to RuntimeHandlers7ebe0ea
Merge pull request #123180 from AkihiroSuda/rro3be09aa
api: KEP-3857: Recursive Read-only (RRO) mounts110b75b
Merge pull request #123344 from nilekhc/svm-controllerUpdates
k8s.io/kube-openapi
from 0.0.0-20231010175941-2dd684a91f00 to 0.0.0-20240228011516-70dd3763d340Commits
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditions