Bump the go-deps group across 1 directory with 5 updates #935
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
dependabot
bot
force-pushed
the
dependabot/go_modules/go-deps-5d401c7780
branch
from
d1699ef to
37f9b6d
Compare
Bumps the go-deps group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [github.com/ProtonMail/go-crypto](https://github.com/ProtonMail/go-crypto) | `1.2.0` | `1.3.0` | | [github.com/fluxcd/pkg/apis/meta](https://github.com/fluxcd/pkg) | `1.12.0` | `1.13.0` | | [github.com/fluxcd/pkg/auth](https://github.com/fluxcd/pkg) | `0.17.0` | `0.18.0` | | [github.com/fluxcd/pkg/runtime](https://github.com/fluxcd/pkg) | `0.60.0` | `0.61.0` | | [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.3` | `0.20.6` | Updates `github.com/ProtonMail/go-crypto` from 1.2.0 to 1.3.0 - [Release notes](https://github.com/ProtonMail/go-crypto/releases) - [Commits](ProtonMail/go-crypto@v1.2.0...v1.3.0) Updates `github.com/fluxcd/pkg/apis/meta` from 1.12.0 to 1.13.0 - [Commits](fluxcd/pkg@apis/meta/v1.12.0...apis/meta/v1.13.0) Updates `github.com/fluxcd/pkg/auth` from 0.17.0 to 0.18.0 - [Commits](fluxcd/pkg@git/v0.17.0...git/v0.18.0) Updates `github.com/fluxcd/pkg/runtime` from 0.60.0 to 0.61.0 - [Commits](fluxcd/pkg@runtime/v0.60.0...runtime/v0.61.0) Updates `github.com/google/go-containerregistry` from 0.20.3 to 0.20.6 - [Release notes](https://github.com/google/go-containerregistry/releases) - [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml) - [Commits](google/go-containerregistry@v0.20.3...v0.20.6) --- updated-dependencies: - dependency-name: github.com/ProtonMail/go-crypto dependency-version: 1.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps - dependency-name: github.com/fluxcd/pkg/apis/meta dependency-version: 1.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps - dependency-name: github.com/fluxcd/pkg/auth dependency-version: 0.18.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps - dependency-name: github.com/fluxcd/pkg/runtime dependency-version: 0.61.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps - dependency-name: github.com/google/go-containerregistry dependency-version: 0.20.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go-deps ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
force-pushed
the
dependabot/go_modules/go-deps-5d401c7780
branch
from
37f9b6d to
52f2cc3
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the go-deps group with 5 updates in the / directory:
1.2.01.3.01.12.01.13.00.17.00.18.00.60.00.61.00.20.30.20.6Updates
github.com/ProtonMail/go-cryptofrom 1.2.0 to 1.3.0Release notes
Sourced from github.com/ProtonMail/go-crypto's releases.
Commits
3b22d85Merge pull request #286 from ProtonMail/feat/v1-api-enforce-signature-hashesa9af95cfeat(v1): Only allow acceptable hashes when writing signatures3c60603Merge pull request #285 from ProtonMail/feat/decompression-size-limitd664700feat: Allow to set a decompressed size limite1ea40eMerge pull request #281 from ProtonMail/fix/clearsign-check-hash9cd4c3afeat(clearsign): Write complete legacy hash header244eb1cfix(clearsign): Enforce acceptable hash functions in clearsigna994e32Merge pull request #284 from ProtonMail/feat/less-restrictive-key-signature8fe0e95feat(v2): Tolerate invalid key signatures if one passesUpdates
github.com/fluxcd/pkg/apis/metafrom 1.12.0 to 1.13.0Commits
246bc82Merge pull request #942 from fluxcd/force-annotation86ef319Introduce reconcile.fluxcd.io/forceAt annotation9be33b3Merge pull request #941 from fluxcd/crypto-v0.39.08957219Updategolang.org/x/cryptoto v0.39.0406c48dMerge pull request #940 from fluxcd/release-git-pkgs2298005Release git/v0.32.0 and git/gogit/v0.34.047a1b23Merge pull request #938 from fluxcd/public-ecra0d4442Fix support for public.ecr.aws53c7b2dMerge pull request #939 from kane8n/update-go-git77f008cupdate go-gitUpdates
github.com/fluxcd/pkg/authfrom 0.17.0 to 0.18.0Commits
288cd7aMerge pull request #752 from fluxcd/handle-in-cluster-annotation4971c85Return a DiffTypeExclude when exclusion annotation is set in cluster46467e7Merge pull request #754 from fluxcd/update-docker43f36aaUpdate docker dependenciese350b5bMerge pull request #750 from fluxcd/update-deps-go-1.223ad72d9Update dependencies to Go 1.22 and Kubernetes 1.29.36ad47efMerge pull request #751 from fluxcd/disable-bitbucket-server-tests9ba119bDisable bitbucket-server e2ee8f9e40Merge pull request #723 from gdasson/main5c27146Adding common "reason" constantsUpdates
github.com/fluxcd/pkg/runtimefrom 0.60.0 to 0.61.0Commits
e5de5faMerge pull request #951 from cappyzawa/remove-runtime-tls-packageaab4541runtime/tls: remove deprecated package5d70542Merge pull request #950 from cappyzawa/add-runtime-secrets-packagedeb3faefixup! fixup! runtime/secrets: add package for consolidated secret handling9eb2c69fixup! fixup! fixup! fixup! runtime/secrets: add package for consolidated sec...94fce87fixup! fixup! fixup! runtime/secrets: add package for consolidated secret han...27e72a9fixup! fixup! runtime/secrets: add package for consolidated secret handling939a696fixup! fixup! runtime/secrets: add package for consolidated secret handling86bf9bbfixup! runtime/secrets: add package for consolidated secret handling2abb738fixup! runtime/secrets: add package for consolidated secret handlingUpdates
github.com/google/go-containerregistryfrom 0.20.3 to 0.20.6Release notes
Sourced from github.com/google/go-containerregistry's releases.
Commits
59a4b85Bump some deps (#2110)5b10395Ensure that tag name is not empty if name contains colon (#2094)4eb8c4dUpdate validator action (#2106)78d4a6eUpdate provenance action (#2105)33840ffUpdate goreleaser permissions (#2104)8d47c37Update CodeQL permissions (#2103)a61de15implement TextMarshaler/JSONMarshaler more consistently (#2097)1d5b256bump go version + bump deps (#2093)ccaa0d6Migrate linter to v2 (#2096)098045dbuild(deps): bump docker/docker to v28.0.0+incompatible (#2071)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions