source-controller icon indicating copy to clipboard operation
source-controller copied to clipboard

Published 20 hours ago verified publisher icon fluxcd

build(deps): bump the go-deps group with 9 updates

Open dependabot[bot] opened this issue 3 months ago • 0 comments

Bumps the go-deps group with 9 updates:

Package From To
github.com/fluxcd/pkg/runtime 0.44.0 0.44.1
github.com/foxcpp/go-mockdns 1.0.0 1.1.0
github.com/minio/minio-go/v7 7.0.66 7.0.69
github.com/onsi/gomega 1.31.1 1.32.0
github.com/prometheus/client_golang 1.18.0 1.19.0
github.com/sigstore/sigstore 1.8.1 1.8.2
golang.org/x/crypto 0.18.0 0.20.0
google.golang.org/api 0.161.0 0.171.0
oras.land/oras-go/v2 2.3.1 2.5.0

Updates github.com/fluxcd/pkg/runtime from 0.44.0 to 0.44.1

Commits
  • 2e7e8fe Merge pull request #730 from fluxcd/conditions-HasAnyReasons
  • 1ae7daf runtime: Add HasAnyReason to conditions getter
  • db52a67 Merge pull request #729 from fluxcd/dependabot/github_actions/ci-727f6c18fd
  • ea2c064 build(deps): bump the ci group with 2 updates
  • See full diff in compare view

Updates github.com/foxcpp/go-mockdns from 1.0.0 to 1.1.0

Release notes

Sourced from github.com/foxcpp/go-mockdns's releases.

go-mockdns 1.1.0

What's Changed

New Contributors

Full Changelog: https://github.com/foxcpp/go-mockdns/compare/v1.0.0...v1.1.0

Commits
  • 964fedc Upgrade dependencies
  • 3599dc5 Adapting to Resolver.LookupNetIP which supported in go 1.18
  • e2a4e4d Fix LookupIP not returning Not Found when specifying "ip4" or "ip6"
  • 04b4169 Adapting to Resolver.LookupIP which supported in go 1.15
  • See full diff in compare view

Updates github.com/minio/minio-go/v7 from 7.0.66 to 7.0.69

Release notes

Sourced from github.com/minio/minio-go/v7's releases.

Bugfix Release

What's Changed

New Contributors

Full Changelog: https://github.com/minio/minio-go/compare/v7.0.67...v7.0.68

Bugfix release

What's Changed

New Contributors

Full Changelog: https://github.com/minio/minio-go/compare/v7.0.66...v7.0.67

Commits

Updates github.com/onsi/gomega from 1.31.1 to 1.32.0

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.32.0

1.32.0

Maintenance

  • Migrate github.com/golang/protobuf to google.golang.org/protobuf [436a197]

    This release drops the deprecated github.com/golang/protobuf and adopts google.golang.org/protobuf. Care was taken to ensure the release is backwards compatible (thanks @​jbduncan !). Please open an issue if you run into one.

  • chore: test with Go 1.22 (#733) [32ef35e]

  • Bump golang.org/x/net from 0.19.0 to 0.20.0 (#717) [a0d0387]

  • Bump github-pages and jekyll-feed in /docs (#732) [b71e477]

  • docs: fix typo and broken anchor link to gstruct [f460154]

  • docs: fix HaveEach matcher signature [a2862e4]

Changelog

Sourced from github.com/onsi/gomega's changelog.

1.32.0

Maintenance

  • Migrate github.com/golang/protobuf to google.golang.org/protobuf [436a197]

    This release drops the deprecated github.com/golang/protobuf and adopts google.golang.org/protobuf. Care was taken to ensure the release is backwards compatible (thanks @​jbduncan !). Please open an issue if you run into one.

  • chore: test with Go 1.22 (#733) [32ef35e]

  • Bump golang.org/x/net from 0.19.0 to 0.20.0 (#717) [a0d0387]

  • Bump github-pages and jekyll-feed in /docs (#732) [b71e477]

  • docs: fix typo and broken anchor link to gstruct [f460154]

  • docs: fix HaveEach matcher signature [a2862e4]

Commits
  • 4379951 v1.32.0
  • a350b95 Maintain source backwards compatibility
  • a6c8875 Fix failing test
  • 436a197 Migrate github.com/golang/protobuf to google.golang.org/protobuf
  • 32ef35e chore: test with Go 1.22 (#733)
  • a0d0387 Bump golang.org/x/net from 0.19.0 to 0.20.0 (#717)
  • b71e477 Bump github-pages and jekyll-feed in /docs (#732)
  • f460154 docs: fix typo and broken anchor link to gstruct
  • a2862e4 docs: fix HaveEach matcher signature
  • See full diff in compare view

Updates github.com/prometheus/client_golang from 1.18.0 to 1.19.0

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.19.0

What's Changed

The module prometheus/common v0.48.0 introduced an incompatibility when used together with client_golang (See prometheus/client_golang#1448 for more details). If your project uses client_golang and you want to use prometheus/common v0.48.0 or higher, please update client_golang to v1.19.0.

  • [CHANGE] Minimum required go version is now 1.20 (we also test client_golang against new 1.22 version). #1445 #1449
  • [FEATURE] collectors: Add version collector. #1422 #1427

New Contributors

Full Changelog: https://github.com/prometheus/client_golang/compare/v1.18.0...v1.19.0

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.19.0 / 2023-02-27

The module prometheus/common v0.48.0 introduced an incompatibility when used together with client_golang (See prometheus/client_golang#1448 for more details). If your project uses client_golang and you want to use prometheus/common v0.48.0 or higher, please update client_golang to v1.19.0.

  • [CHANGE] Minimum required go version is now 1.20 (we also test client_golang against new 1.22 version). #1445 #1449
  • [FEATURE] collectors: Add version collector. #1422 #1427
Commits
  • 77d4003 Add 1.19.0 changelog (#1451)
  • 14259fa Merge pull request #1448 from ywwg/owilliams/content-negotiation
  • 6d03920 deps: bump prometheus/common version
  • 353395b Remove support for go 1.19 (#1449)
  • 9dd5d2a Merge pull request #1445 from kavu/add_go122_metrics_test
  • c906a5e Add support for Go 1.22
  • 7ac9036 Merge pull request #1440 from prometheus/dependabot/github_actions/github-act...
  • 8c7e30f Merge pull request #1441 from prometheus/dependabot/go_modules/tutorial/whats...
  • 08769f8 Bump github.com/prometheus/common in /tutorial/whatsup
  • 83d5940 Bump the github-actions group with 2 updates
  • Additional commits viewable in compare view

Updates github.com/sigstore/sigstore from 1.8.1 to 1.8.2

Release notes

Sourced from github.com/sigstore/sigstore's releases.

v1.8.2

What's Changed

New Contributors

Full Changelog: https://github.com/sigstore/sigstore/compare/v1.8.1...v1.8.2

Commits
  • 01aee87 build(deps): Bump the all group with 2 updates (#1647)
  • 7dd77e3 build(deps): Bump the all group with 2 updates (#1640)
  • 8f9b512 build(deps): Bump the all group (#1641)
  • 2cbe097 fix: adds TSA URI for customMetadata. (#1646)
  • 0bfcc5b build(deps): Bump the all group in /pkg/signature/kms/gcp with 1 update
  • fbeebcb build(deps): Bump the all group in /pkg/signature/kms/aws with 4 updates
  • 0e830c5 Add support for autoclosing oauth flow window (#1618)
  • b80197f build(deps): Bump the all group
  • 7664feb build(deps): Bump the all group with 1 update
  • 44c6e90 build(deps): Bump the all group in /pkg/signature/kms/aws with 5 updates
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.18.0 to 0.20.0

Commits
  • 0aab8d0 all: update go.mod x/net dependency
  • 5bead59 ocsp: don't use iota for externally defined constants
  • 1a86580 x/crypto/internal/poly1305: improve sum_ppc64le.s
  • 1c981e6 ssh/test: don't use DSA keys in integrations tests, update test RSA key
  • 62c9f17 x509roots/nss: manually exclude a confusingly constrained root
  • 405cb3b go.mod: update golang.org/x dependencies
  • 913d3ae x509roots/fallback: update bundle
  • See full diff in compare view

Updates google.golang.org/api from 0.161.0 to 0.171.0

Release notes

Sourced from google.golang.org/api's releases.

v0.171.0

0.171.0 (2024-03-21)

Features

Bug Fixes

  • transport: Return GDU for all errors from MDS universe_domain (#2484) (63b7c0d), refs #2399

v0.170.0

0.170.0 (2024-03-14)

Features

v0.169.0

0.169.0 (2024-03-07)

Features

v0.168.0

0.168.0 (2024-03-04)

Features

... (truncated)

Changelog

Sourced from google.golang.org/api's changelog.

0.171.0 (2024-03-21)

Features

Bug Fixes

  • transport: Return GDU for all errors from MDS universe_domain (#2484) (63b7c0d), refs #2399

0.170.0 (2024-03-14)

Features

0.169.0 (2024-03-07)

Features

0.168.0 (2024-03-04)

Features

... (truncated)

Commits

Updates oras.land/oras-go/v2 from 2.3.1 to 2.5.0

Release notes

Sourced from oras.land/oras-go/v2's releases.

v2.5.0

[!TIP] Upgrade to v2.5.0 for optimal performance when compiled with Go 1.22 or later.

[!WARNING] v2.5.0 does not compile with Go 1.20.x or earlier.

New Features

Deprecation

  • oras.PackManifestVersion1_1_RC4 is deprecated and not recommended for future use. Use oras.PackManifestVersion1_1 instead.

Bug Fixes

Other Changes

  • Update the Go support window to [1.21, 1.22]
  • Update unit tests and examples
  • Improve performance

Detailed Commits

New Contributors

Full Changelog: https://github.com/oras-project/oras-go/compare/v2.4.0...v2.5.0

v2.4.0

Breaking Changes

... (truncated)

Commits
  • 9b6f321 fix(file.Store): fix race condition on restoring the same named content (#731)
  • 8f9f505 fix(DynamicStore): retry setCredsStore on next PUT (#728)
  • d3ff5dc fix: check empty registry name (#729)
  • 4503c31 perf: use new built-in methods introduced before go 1.22 (#726)
  • 8d139f0 test: add a new case for UnwrapNopCloser (#725)
  • bf0d637 build: bump go version (#715)
  • 0285961 feat: upgrade to distribution-spec v1.1.0 (#720)
  • be59736 build(deps): bump github.com/opencontainers/image-spec from 1.1.0-rc6 to 1.1....
  • 850a247 refactor: remove AutoRemoveReferrers flag (#683)
  • fa548ab fix: fix the potential panic error if there is no platform in the index or ma...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

dependabot[bot] avatar Mar 26 '24 13:03 dependabot[bot]