Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from
0.18.0 to 0.19.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="405cb3bdea"><code>405cb3b</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="913d3ae741"><code>913d3ae</code></a>
x509roots/fallback: update bundle</li>
<li>See full diff in <a
href="https://github.com/golang/crypto/compare/v0.18.0...v0.19.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.96.0 to 0.97.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="997404ba93"><code>997404b</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1872">#1872</a>
from johannges/main</li>
<li><a
href="cd614822bf"><code>cd61482</code></a>
Properly fix <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1744">#1744</a></li>
<li><a
href="b3aeb3b678"><code>b3aeb3b</code></a>
✨ Group-level CI/CD variables API: add description</li>
<li><a
href="def3c90df5"><code>def3c90</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1870">#1870</a>
from PatrickRice-KSC/add-restrict-pipeline-cancellat...</li>
<li><a
href="0342a41aaf"><code>0342a41</code></a>
Add support for the new ci_restrict_pipeline_cancellation_role attribute
to P...</li>
<li><a
href="0826177612"><code>0826177</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1869">#1869</a>
from PatrickRice-KSC/fix-path-encoding-for-protected...</li>
<li><a
href="88e8a9dca6"><code>88e8a9d</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1868">#1868</a>
from dfredell/main</li>
<li><a
href="0dfb7251a5"><code>0dfb725</code></a>
Fix an issue with environment names not being encoded</li>
<li><a
href="7af6bec41d"><code>7af6bec</code></a>
Use capital ID to follow go standards <a
href="https://go.dev/wiki/CodeReviewComments%5C">https://go.dev/wiki/CodeReviewComments\</a>...</li>
<li><a
href="68e79f23c2"><code>68e79f2</code></a>
Allow setting custom roles to users on projects</li>
<li>See full diff in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.96.0...v0.97.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.50.5 to 1.50.9.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.50.9 (2024-02-01)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/cognito-idp</code>: Updates service API and
documentation</li>
<li><code>service/ivs</code>: Updates service API, documentation, and
paginators</li>
<li><code>service/managedblockchain-query</code>: Updates service API
and documentation</li>
<li><code>service/mediaconvert</code>: Updates service API and
documentation
<ul>
<li>This release includes support for broadcast-mixed audio description
tracks.</li>
</ul>
</li>
</ul>
<h1>Release v1.50.8 (2024-01-31)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/cloudformation</code>: Updates service API,
documentation, paginators, and examples
<ul>
<li>CloudFormation IaC generator allows you to scan existing resources
in your account and select resources to generate a template for a new or
existing CloudFormation stack.</li>
</ul>
</li>
<li><code>service/elasticloadbalancingv2</code>: Updates service API and
documentation</li>
<li><code>service/glue</code>: Updates service API and documentation
<ul>
<li>Update page size limits for GetJobRuns and GetTriggers APIs.</li>
</ul>
</li>
<li><code>service/ssm</code>: Updates service API and documentation
<ul>
<li>This release adds an optional Duration parameter to StateManager
Associations. This allows customers to specify how long an
apply-only-on-cron association execution should run. Once the specified
Duration is out all the ongoing cancellable commands or automations are
cancelled.</li>
</ul>
</li>
</ul>
<h1>Release v1.50.7 (2024-01-30)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/datazone</code>: Updates service API and
documentation</li>
<li><code>service/route53</code>: Updates service documentation
<ul>
<li>Update the SDKs for text changes in the APIs.</li>
</ul>
</li>
</ul>
<h1>Release v1.50.6 (2024-01-29)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/autoscaling</code>: Updates service API and
documentation
<ul>
<li>EC2 Auto Scaling customers who use attribute based instance-type
selection can now intuitively define their Spot instances price
protection limit as a percentage of the lowest priced On-Demand instance
type.</li>
</ul>
</li>
<li><code>service/comprehend</code>: Updates service documentation</li>
<li><code>service/ec2</code>: Updates service API and documentation
<ul>
<li>EC2 Fleet customers who use attribute based instance-type selection
can now intuitively define their Spot instances price protection limit
as a percentage of the lowest priced On-Demand instance type.</li>
</ul>
</li>
<li><code>service/mwaa</code>: Updates service API and
documentation</li>
<li><code>service/rds</code>: Updates service API, documentation,
waiters, paginators, and examples
<ul>
<li>Introduced support for the InsufficientDBInstanceCapacityFault error
in the RDS RestoreDBClusterFromSnapshot and
RestoreDBClusterToPointInTime API methods. This provides enhanced error
handling, ensuring a more robust experience.</li>
</ul>
</li>
<li><code>service/snowball</code>: Updates service documentation
<ul>
<li>Modified description of createaddress to include direction to add
path when providing a JSON file.</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3248e69e16"><code>3248e69</code></a>
Release v1.50.9 (2024-02-01) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5159">#5159</a>)</li>
<li><a
href="3e2c844a50"><code>3e2c844</code></a>
Release v1.50.8 (2024-01-31) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5158">#5158</a>)</li>
<li><a
href="87be112c47"><code>87be112</code></a>
Merge pull request <a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5155">#5155</a>
from kellertk/main</li>
<li><a
href="160195237e"><code>1601952</code></a>
Release v1.50.7 (2024-01-30) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5157">#5157</a>)</li>
<li><a
href="e8a5e0e401"><code>e8a5e0e</code></a>
Release v1.50.6 (2024-01-29) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5156">#5156</a>)</li>
<li><a
href="9adcf752a6"><code>9adcf75</code></a>
chore: relax stale issue timings</li>
<li><a
href="8eb22a1123"><code>8eb22a1</code></a>
chore: a more polite closed issue message</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.50.5...v1.50.9">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/goreleaser/nfpm/v2](https://github.com/goreleaser/nfpm) from
2.35.2 to 2.35.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/goreleaser/nfpm/releases">github.com/goreleaser/nfpm/v2's
releases</a>.</em></p>
<blockquote>
<h2>v2.35.3</h2>
<h2>Changelog</h2>
<h3>Bug fixes</h3>
<ul>
<li>f8ccc9df94eb9a4c91c3a1c78d4759a65f156731: fix: file mode when type:
tree (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/779">#779</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>e1ebfdad10ef98fe6c9d424efe3f97d7b2322f04: fix: honor
SOURCE_DATE_EPOCH for files (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/775">#775</a>)
(<a href="https://github.com/osm"><code>@osm</code></a>)</li>
</ul>
<h3>Dependency updates</h3>
<ul>
<li>9c48b79596993dd653087f91861794b7da6267e6: feat(deps): bump
github.com/ProtonMail/go-crypto (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/771">#771</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
<li>d7a5dc79573e4bf5d65c3f00d9cac81736f12597: feat(deps): bump
github.com/cloudflare/circl from 1.3.3 to 1.3.7 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/765">#765</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
<li>fbc55c56be14ac5de4207becb98c908c615dee7e: feat(deps): bump
github.com/klauspost/compress from 1.17.4 to 1.17.5 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/774">#774</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
<li>9bb94d758ce739fc27c19bbe04bf1c1d33ce3fa9: fix(deps): update
go-rpmutils (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/764">#764</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Build process updates</h3>
<ul>
<li>5ace4da2fd3162383a16218e2ef405dc2676bdfc: ci: update changelog (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Other work</h3>
<ul>
<li>cd6b94108561b9ef1b06e1db8bfe9e3b3f643253: docs: update cmd docs (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>672f8c6537228848062786d7ad2d2956f6808986: docs: update starchart url
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/nfpm/compare/v2.35.2...v2.35.3">https://github.com/goreleaser/nfpm/compare/v2.35.2...v2.35.3</a></p>
<h2>Helping out</h2>
<p>This release is only possible thanks to <strong>all</strong> the
support of <strong>awesome people</strong>!</p>
<p>Want to be one of them?
You can <a href="https://goreleaser.com/sponsors/">sponsor</a> or <a
href="https://goreleaser.com/contributing">contribute with code</a>.</p>
<h2>Where to go next?</h2>
<ul>
<li>nFPM is a satellite project from GoReleaser. <a
href="https://goreleaser.com">Check it out</a>!</li>
<li>Find examples and commented usage of all options in our <a
href="https://nfpm.goreleaser.com/">website</a>.</li>
<li>Reach out on <a href="https://discord.gg/RGEBtg8vQ6">Discord</a> and
<a href="https://twitter.com/goreleaser">Twitter</a>!</li>
</ul>
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5ace4da2fd"><code>5ace4da</code></a>
ci: update changelog</li>
<li><a
href="f8ccc9df94"><code>f8ccc9d</code></a>
fix: file mode when type: tree (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/779">#779</a>)</li>
<li><a
href="48d1a19eb6"><code>48d1a19</code></a>
chore(deps): bump anchore/sbom-action from 0.15.6 to 0.15.7 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/778">#778</a>)</li>
<li><a
href="e1ebfdad10"><code>e1ebfda</code></a>
fix: honor SOURCE_DATE_EPOCH for files (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/775">#775</a>)</li>
<li><a
href="25f6f2b736"><code>25f6f2b</code></a>
chore(deps): bump anchore/sbom-action from 0.15.5 to 0.15.6 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/776">#776</a>)</li>
<li><a
href="fbc55c56be"><code>fbc55c5</code></a>
feat(deps): bump github.com/klauspost/compress from 1.17.4 to 1.17.5 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/774">#774</a>)</li>
<li><a
href="d83a672428"><code>d83a672</code></a>
chore(deps): bump anchore/sbom-action from 0.15.4 to 0.15.5 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/773">#773</a>)</li>
<li><a
href="995a27a6fb"><code>995a27a</code></a>
chore(deps): bump anchore/sbom-action from 0.15.3 to 0.15.4 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/772">#772</a>)</li>
<li><a
href="9c48b79596"><code>9c48b79</code></a>
feat(deps): bump github.com/ProtonMail/go-crypto (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/771">#771</a>)</li>
<li><a
href="e8832cc97b"><code>e8832cc</code></a>
chore(deps): bump actions/cache from 3.3.3 to 4.0.0 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/770">#770</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/goreleaser/nfpm/compare/v2.35.2...v2.35.3">compare
view</a></li>
</ul>
</details>
<br />
<details>
<summary>Most Recent Ignore Conditions Applied to This Pull
Request</summary>
| Dependency Name | Ignore Conditions |
| --- | --- |
| github.com/goreleaser/nfpm/v2 | [>= 2.24.a, < 2.25] |
</details>
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once it's up-to-date and CI passes on it,
as requested by @caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/opencontainers/runc](https://github.com/opencontainers/runc)
from 1.1.5 to 1.1.12.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/opencontainers/runc/releases">github.com/opencontainers/runc's
releases</a>.</em></p>
<blockquote>
<h2>runc 1.1.12 -- "Now you're thinking with Portals™!"</h2>
<p>This is the twelfth patch release in the 1.1.z release branch of
runc.
It fixes a high-severity container breakout vulnerability involving
leaked file descriptors, and users are strongly encouraged to update as
soon as possible.</p>
<ul>
<li>
<p>Fix <a
href="https://github.com/opencontainers/runc/security/advisories/GHSA-xr7r-f8xq-vfvv">CVE-2024-21626</a>,
a container breakout attack that took advantage of
a file descriptor that was leaked internally within runc (but never
leaked to the container process).</p>
<p>In addition to fixing the leak, several strict hardening measures
were
added to ensure that future internal leaks could not be used to break
out in this manner again.</p>
<p>Based on our research, while no other container runtime had a similar
leak, none had any of the hardening steps we've introduced (and some
runtimes would not check for any file descriptors that a calling
process may have leaked to them, allowing for container breakouts due
to basic user error).</p>
</li>
</ul>
<h3>Static Linking Notices</h3>
<p>The <code>runc</code> binary distributed with this release are
<em>statically linked</em> with
the following <a
href="https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html">GNU
LGPL-2.1</a> licensed libraries, with <code>runc</code> acting
as a "work that uses the Library":</p>
<ul>
<li><a href="https://github.com/seccomp/libseccomp">libseccomp</a></li>
</ul>
<p>The versions of these libraries were not modified from their upstream
versions,
but in order to comply with the LGPL-2.1 (§6(a)), we have attached the
complete source code for those libraries which (when combined with the
attached
runc source code) may be used to exercise your rights under the
LGPL-2.1.</p>
<p>However we strongly suggest that you make use of your distribution's
packages
or download them from the authoritative upstream sources, especially
since
these libraries are related to the security of your containers.</p>
<!-- raw HTML omitted -->
<p>Thanks to all of the contributors who made this release possible:</p>
<ul>
<li>Aleksa Sarai <a
href="mailto:cyphar@cyphar.com">cyphar@cyphar.com</a></li>
<li>hang.jiang <a
href="mailto:hang.jiang@daocloud.io">hang.jiang@daocloud.io</a></li>
<li>lfbzhm <a
href="mailto:lifubang@acmcoder.com">lifubang@acmcoder.com</a></li>
</ul>
<p>Signed-off-by: Aleksa Sarai <a
href="mailto:cyphar@cyphar.com">cyphar@cyphar.com</a></p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/opencontainers/runc/blob/v1.1.12/CHANGELOG.md">github.com/opencontainers/runc's
changelog</a>.</em></p>
<blockquote>
<h2>[1.1.12] - 2024-01-31</h2>
<blockquote>
<p>Now you're thinking with Portals™!</p>
</blockquote>
<h3>Security</h3>
<ul>
<li>Fix <a
href="https://github.com/opencontainers/runc/security/advisories/GHSA-xr7r-f8xq-vfvv">CVE-2024-21626</a>,
a container breakout attack that took
advantage of a file descriptor that was leaked internally within runc
(but
never leaked to the container process). In addition to fixing the leak,
several strict hardening measures were added to ensure that future
internal
leaks could not be used to break out in this manner again. Based on our
research, while no other container runtime had a similar leak, none had
any
of the hardening steps we've introduced (and some runtimes would not
check
for any file descriptors that a calling process may have leaked to them,
allowing for container breakouts due to basic user error).</li>
</ul>
<h2>[1.1.11] - 2024-01-01</h2>
<blockquote>
<p>Happy New Year!</p>
</blockquote>
<h3>Fixed</h3>
<ul>
<li>Fix several issues with userns path handling. (<a
href="https://redirect.github.com/opencontainers/runc/issues/4122">#4122</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/4124">#4124</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/4134">#4134</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/4144">#4144</a>)</li>
</ul>
<h3>Changed</h3>
<ul>
<li>Support memory.peak and memory.swap.peak in cgroups v2.
Add <code>swapOnlyUsage</code> in <code>MemoryStats</code>. This field
reports swap-only usage.
For cgroupv1, <code>Usage</code> and <code>Failcnt</code> are set by
subtracting memory usage
from memory+swap usage. For cgroupv2, <code>Usage</code>,
<code>Limit</code>, and <code>MaxUsage</code>
are set. (<a
href="https://redirect.github.com/opencontainers/runc/issues/4000">#4000</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/4010">#4010</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/4131">#4131</a>)</li>
<li>build(deps): bump github.com/cyphar/filepath-securejoin. (<a
href="https://redirect.github.com/opencontainers/runc/issues/4140">#4140</a>)</li>
</ul>
<h2>[1.1.10] - 2023-10-31</h2>
<blockquote>
<p>Śruba, przykręcona we śnie, nie zmieni sytuacji, jaka panuje na
jawie.</p>
</blockquote>
<h3>Added</h3>
<ul>
<li>Support for <code>hugetlb.<pagesize>.rsvd</code> limiting and
accounting. Fixes the
issue of postres failing when hugepage limits are set. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3859">#3859</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/4077">#4077</a>)</li>
</ul>
<h3>Fixed</h3>
<ul>
<li>Fixed permissions of a newly created directories to not depend on
the value
of umask in tmpcopyup feature implementation. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3991">#3991</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/4060">#4060</a>)</li>
<li>libcontainer: cgroup v1 GetStats now ignores missing
<code>kmem.limit_in_bytes</code>
(fixes the compatibility with Linux kernel 6.1+). (<a
href="https://redirect.github.com/opencontainers/runc/issues/4028">#4028</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="51d5e94601"><code>51d5e94</code></a>
VERSION: release 1.1.12</li>
<li><a
href="2a4ed3e75b"><code>2a4ed3e</code></a>
merge 1.1-ghsa-xr7r-f8xq-vfvv into release-1.1</li>
<li><a
href="e9665f4d60"><code>e9665f4</code></a>
init: don't special-case logrus fds</li>
<li><a
href="683ad2ff3b"><code>683ad2f</code></a>
libcontainer: mark all non-stdio fds O_CLOEXEC before spawning init</li>
<li><a
href="b6633f48a8"><code>b6633f4</code></a>
cgroup: plug leaks of /sys/fs/cgroup handle</li>
<li><a
href="284ba3057e"><code>284ba30</code></a>
init: close internal fds before execve</li>
<li><a
href="fbe3eed1e5"><code>fbe3eed</code></a>
setns init: do explicit lookup of execve argument early</li>
<li><a
href="0994249a5e"><code>0994249</code></a>
init: verify after chdir that cwd is inside the container</li>
<li><a
href="506552a88b"><code>506552a</code></a>
Fix File to Close</li>
<li><a
href="099ff69336"><code>099ff69</code></a>
merge <a
href="https://redirect.github.com/opencontainers/runc/issues/4177">#4177</a>
into opencontainers/runc:release-1.1</li>
<li>Additional commits viewable in <a
href="https://github.com/opencontainers/runc/compare/v1.1.5...v1.1.12">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/goreleaser/goreleaser/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/google/go-containerregistry](https://github.com/google/go-containerregistry)
from 0.18.0 to 0.19.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/go-containerregistry/releases">github.com/google/go-containerregistry's
releases</a>.</em></p>
<blockquote>
<h2>v0.19.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Work around docker v25 tarballs by <a
href="https://github.com/jonjohnsonjr"><code>@jonjohnsonjr</code></a>
in <a
href="https://redirect.github.com/google/go-containerregistry/pull/1872">google/go-containerregistry#1872</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/google/go-containerregistry/compare/v0.18.0...v0.19.0">https://github.com/google/go-containerregistry/compare/v0.18.0...v0.19.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="8dadbe76ff"><code>8dadbe7</code></a>
Work around docker v25 tarballs (<a
href="https://redirect.github.com/google/go-containerregistry/issues/1872">#1872</a>)</li>
<li>See full diff in <a
href="https://github.com/google/go-containerregistry/compare/v0.18.0...v0.19.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.50.2 to 1.50.5.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.50.5 (2024-01-26)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/connect</code>: Updates service API</li>
<li><code>service/inspector2</code>: Updates service API and
documentation</li>
<li><code>service/sagemaker</code>: Updates service API and
documentation
<ul>
<li>Amazon SageMaker Automatic Model Tuning now provides an API to
programmatically delete tuning jobs.</li>
</ul>
</li>
</ul>
<h1>Release v1.50.4 (2024-01-25)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/acm-pca</code>: Updates service API, documentation,
and waiters</li>
<li><code>service/lightsail</code>: Updates service API and
documentation
<ul>
<li>This release adds support for IPv6-only instance plans.</li>
</ul>
</li>
</ul>
<h1>Release v1.50.3 (2024-01-24)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/ec2</code>: Updates service API and documentation
<ul>
<li>Introduced a new clientToken request parameter on CreateNetworkAcl
and CreateRouteTable APIs. The clientToken parameter allows idempotent
operations on the APIs.</li>
</ul>
</li>
<li><code>service/ecs</code>: Updates service documentation
<ul>
<li>Documentation updates for Amazon ECS.</li>
</ul>
</li>
<li><code>service/outposts</code>: Updates service API</li>
<li><code>service/rds</code>: Updates service API, documentation,
waiters, paginators, and examples
<ul>
<li>This release adds support for Aurora Limitless Database.</li>
</ul>
</li>
<li><code>service/storagegateway</code>: Updates service API and
documentation
<ul>
<li>Add DeprecationDate and SoftwareVersion to response of
ListGateways.</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="32e0058e28"><code>32e0058</code></a>
Release v1.50.5 (2024-01-26) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5154">#5154</a>)</li>
<li><a
href="d5e1369ac3"><code>d5e1369</code></a>
Release v1.50.4 (2024-01-25) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5152">#5152</a>)</li>
<li><a
href="15beed0ddd"><code>15beed0</code></a>
Release v1.50.3 (2024-01-24) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5151">#5151</a>)</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.50.2...v1.50.5">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.50.1 to 1.50.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.50.2 (2024-01-23)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/inspector2</code>: Updates service API, documentation,
and paginators</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="8fd61086a3"><code>8fd6108</code></a>
Release v1.50.2 (2024-01-23) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5150">#5150</a>)</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.50.1...v1.50.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.50.0 to 1.50.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.50.1 (2024-01-22)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/appconfigdata</code>: Adds new service</li>
<li><code>service/cloud9</code>: Updates service documentation
<ul>
<li>Doc-only update around removing AL1 from list of available AMIs for
Cloud9</li>
</ul>
</li>
<li><code>service/connectcases</code>: Updates service API,
documentation, and paginators</li>
<li><code>service/ec2</code>: Updates service documentation
<ul>
<li>Documentation updates for Amazon EC2.</li>
</ul>
</li>
<li><code>service/ecs</code>: Updates service API and documentation
<ul>
<li>This release adds support for Transport Layer Security (TLS) and
Configurable Timeout to ECS Service Connect. TLS facilitates privacy and
data security for inter-service communications, while Configurable
Timeout allows customized per-request timeout and idle timeout for
Service Connect services.</li>
</ul>
</li>
<li><code>service/finspace</code>: Updates service API</li>
<li><code>service/organizations</code>: Updates service documentation
<ul>
<li>Doc only update for quota increase change</li>
</ul>
</li>
<li><code>service/rds</code>: Updates service API, documentation,
waiters, paginators, and examples
<ul>
<li>Introduced support for the InsufficientDBInstanceCapacityFault error
in the RDS CreateDBCluster API method. This provides enhanced error
handling, ensuring a more robust experience when creating database
clusters with insufficient instance capacity.</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a91b4e6eea"><code>a91b4e6</code></a>
Release v1.50.1 (2024-01-22) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5149">#5149</a>)</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.50.0...v1.50.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.49.24 to 1.50.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.50.0 (2024-01-19)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/athena</code>: Updates service API and documentation
<ul>
<li>Introducing new NotebookS3LocationUri parameter to Athena
ImportNotebook API. Payload is no longer required and either Payload or
NotebookS3LocationUri needs to be provided (not both) for a successful
ImportNotebook API call. If both are provided, an
InvalidRequestException will be thrown.</li>
</ul>
</li>
<li><code>service/codebuild</code>: Updates service API, documentation,
and paginators
<ul>
<li>Release CodeBuild Reserved Capacity feature</li>
</ul>
</li>
<li><code>service/dynamodb</code>: Updates service API, documentation,
waiters, paginators, and examples
<ul>
<li>This release adds support for including
ApproximateCreationDateTimePrecision configurations in
EnableKinesisStreamingDestination API, adds the same as an optional
field in the response of DescribeKinesisStreamingDestination, and adds
support for a new UpdateKinesisStreamingDestination API.</li>
</ul>
</li>
<li><code>service/qconnect</code>: Updates service API</li>
</ul>
<h3>SDK Features</h3>
<ul>
<li><code>service/cloudfrontkeyvaluestore</code>: Deprecate
cloudfrontkeyvaluestore
<ul>
<li>This change removes the cloudfrontkeyvaluestore service, since it
does not support sigv4a.</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="63e7f600c2"><code>63e7f60</code></a>
Release v1.50.0 (2024-01-19) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5147">#5147</a>)</li>
<li><a
href="f55d9b1149"><code>f55d9b1</code></a>
Remove cloudfrontkeyvaluestore (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5146">#5146</a>)</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.49.24...v1.50.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.49.22 to 1.49.23.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.49.23 (2024-01-17)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/dynamodb</code>: Updates service API, documentation,
waiters, paginators, and examples
<ul>
<li>Updating note for enabling streams for UpdateTable.</li>
</ul>
</li>
<li><code>service/keyspaces</code>: Updates service API and
documentation</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="d264d16096"><code>d264d16</code></a>
Release v1.49.23 (2024-01-17) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5144">#5144</a>)</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.49.22...v1.49.23">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.95.2 to 0.96.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="63caa488c1"><code>63caa48</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1866">#1866</a>
from cenkalti/notes</li>
<li><a
href="42426a3f2b"><code>42426a3</code></a>
Try to follow order in the docs</li>
<li><a
href="4bbd9e29e1"><code>4bbd9e2</code></a>
add missing fields in Note struct</li>
<li><a
href="57c03d9cba"><code>57c03d9</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1863">#1863</a>
from TheCodear/feat/update-project-variables</li>
<li><a
href="28f5cd4ed8"><code>28f5cd4</code></a>
Fix test after reodering</li>
<li><a
href="c3f82c2c7a"><code>c3f82c2</code></a>
format source code</li>
<li><a
href="80a3897b5a"><code>80a3897</code></a>
update project variables client with description field</li>
<li><a
href="4e7fdb74c0"><code>4e7fdb7</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1864">#1864</a>
from xuxiaowei-com-cn/project_level_variables/descri...</li>
<li><a
href="8e7e14bedd"><code>8e7e14b</code></a>
Update ordering</li>
<li><a
href="1256139f16"><code>1256139</code></a>
✨ Project-level CI/CD variables API: add description</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.95.2...v0.96.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.49.21 to 1.49.22.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.49.22 (2024-01-16)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/iot</code>: Updates service API
<ul>
<li>Revert release of LogTargetTypes</li>
</ul>
</li>
<li><code>service/iotfleetwise</code>: Updates service API and
documentation</li>
<li><code>service/macie2</code>: Updates service API and
documentation</li>
<li><code>service/payment-cryptography</code>: Updates service API and
documentation</li>
<li><code>service/personalize</code>: Updates service documentation</li>
<li><code>service/personalize-runtime</code>: Updates service
documentation</li>
<li><code>service/rekognition</code>: Updates service API and
documentation
<ul>
<li>This release adds ContentType and TaxonomyLevel attributes to
DetectModerationLabels and GetMediaAnalysisJob API responses.</li>
</ul>
</li>
<li><code>service/securityhub</code>: Updates service documentation</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="d9a3e6a5dd"><code>d9a3e6a</code></a>
Release v1.49.22 (2024-01-16) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5143">#5143</a>)</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.49.21...v1.49.22">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [gocloud.dev](https://github.com/google/go-cloud) from 0.35.0 to
0.36.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/go-cloud/releases">gocloud.dev's
releases</a>.</em></p>
<blockquote>
<h2>v0.36.0</h2>
<p><strong>blob</strong></p>
<ul>
<li><strong>all</strong>: Allow disabling of <code>ContentType</code>
auto-detection during writes.</li>
</ul>
<p><strong>pubsub</strong></p>
<ul>
<li><strong>azuresb</strong>: Added a new auth method to support Service
principal/kubelet identity/Workload identity auth methods.</li>
</ul>
<p><strong>docstore</strong></p>
<ul>
<li><strong>all</strong>: Add in/not-in operators for Query.</li>
<li><strong>gcpfirestore</strong>: Added a missing resource header when
running query.</li>
</ul>
<p><strong>mysql</strong></p>
<ul>
<li>Pass TLS config directly to MySQL's config</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="01064b751a"><code>01064b7</code></a>
all: prerelease</li>
<li><a
href="92114ef433"><code>92114ef</code></a>
mysql: pass TLS config directly to MySQL's config (<a
href="https://redirect.github.com/google/go-cloud/issues/3348">#3348</a>)</li>
<li><a
href="97fe9d0425"><code>97fe9d0</code></a>
docstore/all: Add in/not-in operators for Query</li>
<li><a
href="4fe95eea2d"><code>4fe95ee</code></a>
blob/all: Allow disabling of ContentType auto-detection during writes
(<a
href="https://redirect.github.com/google/go-cloud/issues/3371">#3371</a>)</li>
<li><a
href="1dbbbb3e64"><code>1dbbbb3</code></a>
pubsub/azuresb: minor comments and fixes (<a
href="https://redirect.github.com/google/go-cloud/issues/3370">#3370</a>)</li>
<li><a
href="2090984208"><code>2090984</code></a>
all: update golang.org/x/crypto (<a
href="https://redirect.github.com/google/go-cloud/issues/3369">#3369</a>)</li>
<li><a
href="ddc7b99101"><code>ddc7b99</code></a>
pubsub/azuresb: new auth method to support Service principal/kubelet
identit...</li>
<li><a
href="c770de8217"><code>c770de8</code></a>
docstore/gcpfirestore: Add missing resource header when running
query</li>
<li><a
href="e86400ea40"><code>e86400e</code></a>
pubsub/awssnssqs: Remove hack for broken AWS error codes now that
they've fix...</li>
<li><a
href="8c8f558aff"><code>8c8f558</code></a>
all: postrelease (<a
href="https://redirect.github.com/google/go-cloud/issues/3351">#3351</a>)</li>
<li>See full diff in <a
href="https://github.com/google/go-cloud/compare/v0.35.0...v0.36.0">compare
view</a></li>
</ul>
</details>
<br />
<details>
<summary>Most Recent Ignore Conditions Applied to This Pull
Request</summary>
| Dependency Name | Ignore Conditions |
| --- | --- |
| gocloud.dev | [>= 0.25.a, < 0.26] |
</details>
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/sync](https://github.com/golang/sync) from 0.5.0 to
0.6.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="59c1ca1e46"><code>59c1ca1</code></a>
errgroup: add reference to sync.WaitGroup</li>
<li>See full diff in <a
href="https://github.com/golang/sync/compare/v0.5.0...v0.6.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps code.gitea.io/sdk/gitea from 0.17.0 to 0.17.1.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/goreleaser/nfpm/v2](https://github.com/goreleaser/nfpm) from
2.35.1 to 2.35.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/goreleaser/nfpm/releases">github.com/goreleaser/nfpm/v2's
releases</a>.</em></p>
<blockquote>
<h2>v2.35.2</h2>
<h2>Changelog</h2>
<h3>Security updates</h3>
<ul>
<li>440588e9d22bbb413014921baea0b81be3048769: sec(deps): bump
github.com/go-git/go-git/v5 from 5.7.0 to 5.11.0 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/759">#759</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
</ul>
<h3>Bug fixes</h3>
<ul>
<li>beb0f7314e098689ee29cd957134107ad535f85e: fix: properly handle files
owned by fs (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/760">#760</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Build process updates</h3>
<ul>
<li>e15b21b0fba2f098ac7292a89126079ecf3e58fc: build: add packagers shell
to flake.nix (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>19f03e44c39065d55675c04c794c1668801e1f06: build: fix flake (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>a117582d8c23e97635bf55502f9a7eef8c3e35ba: build: use nix flake (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/761">#761</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Other work</h3>
<ul>
<li>37b28fd4a368a94e4e285bdabbd3c1641f28cff4: ci: release for ppc64le
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>2b60d2191cef2110a15f62095eb7a909c78f7970: docs: update cmd docs (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>c6f2eb7008f081ef5e1e448083dfbaeacd604c77: docs: validate jsonschema
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/nfpm/compare/v2.35.1...v2.35.2">https://github.com/goreleaser/nfpm/compare/v2.35.1...v2.35.2</a></p>
<h2>Helping out</h2>
<p>This release is only possible thanks to <strong>all</strong> the
support of <strong>awesome people</strong>!</p>
<p>Want to be one of them?
You can <a href="https://goreleaser.com/sponsors/">sponsor</a> or <a
href="https://goreleaser.com/contributing">contribute with code</a>.</p>
<h2>Where to go next?</h2>
<ul>
<li>nFPM is a satellite project from GoReleaser. <a
href="https://goreleaser.com">Check it out</a>!</li>
<li>Find examples and commented usage of all options in our <a
href="https://nfpm.goreleaser.com/">website</a>.</li>
<li>Reach out on <a href="https://discord.gg/RGEBtg8vQ6">Discord</a> and
<a href="https://twitter.com/goreleaser">Twitter</a>!</li>
</ul>
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="19f03e44c3"><code>19f03e4</code></a>
build: fix flake</li>
<li><a
href="beb0f7314e"><code>beb0f73</code></a>
fix: properly handle files owned by fs (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/760">#760</a>)</li>
<li><a
href="37b28fd4a3"><code>37b28fd</code></a>
ci: release for ppc64le</li>
<li><a
href="fcd64f5959"><code>fcd64f5</code></a>
chore(deps): bump anchore/sbom-action from 0.15.1 to 0.15.2 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/762">#762</a>)</li>
<li><a
href="e15b21b0fb"><code>e15b21b</code></a>
build: add packagers shell to flake.nix</li>
<li><a
href="b744dfbd5b"><code>b744dfb</code></a>
chore: add .editorconfig</li>
<li><a
href="c6f2eb7008"><code>c6f2eb7</code></a>
docs: validate jsonschema</li>
<li><a
href="a117582d8c"><code>a117582</code></a>
build: use nix flake (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/761">#761</a>)</li>
<li><a
href="440588e9d2"><code>440588e</code></a>
sec(deps): bump github.com/go-git/go-git/v5 from 5.7.0 to 5.11.0 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/759">#759</a>)</li>
<li><a
href="2b60d2191c"><code>2b60d21</code></a>
docs: update cmd docs</li>
<li>See full diff in <a
href="https://github.com/goreleaser/nfpm/compare/v2.35.1...v2.35.2">compare
view</a></li>
</ul>
</details>
<br />
<details>
<summary>Most Recent Ignore Conditions Applied to This Pull
Request</summary>
| Dependency Name | Ignore Conditions |
| --- | --- |
| github.com/goreleaser/nfpm/v2 | [>= 2.24.a, < 2.25] |
</details>
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/google/uuid](https://github.com/google/uuid) from
1.4.0 to 1.5.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/uuid/releases">github.com/google/uuid's
releases</a>.</em></p>
<blockquote>
<h2>v1.5.0</h2>
<h2><a
href="https://github.com/google/uuid/compare/v1.4.0...v1.5.0">1.5.0</a>
(2023-12-12)</h2>
<h3>Features</h3>
<ul>
<li>Validate UUID without creating new UUID (<a
href="https://redirect.github.com/google/uuid/issues/141">#141</a>) (<a
href="9ee7366e66">9ee7366</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/google/uuid/blob/master/CHANGELOG.md">github.com/google/uuid's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/google/uuid/compare/v1.4.0...v1.5.0">1.5.0</a>
(2023-12-12)</h2>
<h3>Features</h3>
<ul>
<li>Validate UUID without creating new UUID (<a
href="https://redirect.github.com/google/uuid/issues/141">#141</a>) (<a
href="9ee7366e66">9ee7366</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4d47f8eb06"><code>4d47f8e</code></a>
chore(master): release 1.5.0 (<a
href="https://redirect.github.com/google/uuid/issues/145">#145</a>)</li>
<li><a
href="9ee7366e66"><code>9ee7366</code></a>
feat: Validate UUID without creating new UUID (<a
href="https://redirect.github.com/google/uuid/issues/141">#141</a>)</li>
<li><a
href="b35aa6a595"><code>b35aa6a</code></a>
add uuid version 6 and 7 (<a
href="https://redirect.github.com/google/uuid/issues/139">#139</a>)</li>
<li>See full diff in <a
href="https://github.com/google/uuid/compare/v1.4.0...v1.5.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.16.0
to 0.16.1.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2acb2e697b"><code>2acb2e6</code></a>
gopls/internal/test/marker: minor clean up of marker test doc</li>
<li><a
href="28b92af286"><code>28b92af</code></a>
internal/typeparams: eliminate remainining compatibility shims</li>
<li><a
href="ee35f8ea92"><code>ee35f8e</code></a>
gopls/internal/lsp/source: hovering over broken packages is not an
error</li>
<li><a
href="67611a11a1"><code>67611a1</code></a>
internal/typeparams: eliminate type aliases</li>
<li><a
href="23c86e8ed6"><code>23c86e8</code></a>
internal/typeparams: delete const Enabled=true and simplify</li>
<li><a
href="e46688f413"><code>e46688f</code></a>
gopls/internal/analysis/fillstruct: don't panic with invalid fields</li>
<li><a
href="8bd7553f7c"><code>8bd7553</code></a>
gopls/internal/util/goversion: warn about EOL for Go 1.18</li>
<li><a
href="bc9cd159c5"><code>bc9cd15</code></a>
gopls/internal/settings: remove MemoryMode option</li>
<li><a
href="bbc30f1f81"><code>bbc30f1</code></a>
gopls/protocol: Allow AnnotatedTextEdits</li>
<li><a
href="f40889dc8b"><code>f40889d</code></a>
gopls/internal/analysis/stubmethods: fix OOB panic in fromValueSpec</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.16.0...v0.16.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.95.1 to 0.95.2.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="e69c57e317"><code>e69c57e</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1854">#1854</a>
from HebertCL/chore/fix_settings_update_typo</li>
<li><a
href="873225b89b"><code>873225b</code></a>
Small typo fix</li>
<li>See full diff in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.95.1...v0.95.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [gocloud.dev](https://github.com/google/go-cloud) from 0.34.0 to
0.35.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/go-cloud/releases">gocloud.dev's
releases</a>.</em></p>
<blockquote>
<h2>v0.35.0</h2>
<p><strong>BREAKING CHANGES</strong></p>
<p>This release updates the dependency on AWS/S3, which included some
breaking changes; see <a
href="https://redirect.github.com/google/go-cloud/pull/3342">google/go-cloud#3342</a>
for details.</p>
<p><strong>blob</strong></p>
<ul>
<li><em>gcsblob</em>: Fix unauthenticated requests.</li>
</ul>
<p><strong>runtimevar</strong></p>
<ul>
<li><em>constantvar</em>: Add support for reading the constant variable
value from the environment.</li>
</ul>
<p><strong>docstore</strong></p>
<ul>
<li><em>gcpfilestore</em>: Add support for non-default databases.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="27e0bca95d"><code>27e0bca</code></a>
all: prep for release (<a
href="https://redirect.github.com/google/go-cloud/issues/3350">#3350</a>)</li>
<li><a
href="53ccd8db26"><code>53ccd8d</code></a>
all: update deps, including a breaking S3 change (<a
href="https://redirect.github.com/google/go-cloud/issues/3342">#3342</a>)</li>
<li><a
href="fa413a39cd"><code>fa413a3</code></a>
docstore/gcpfilestore: add support for non-default databases. (<a
href="https://redirect.github.com/google/go-cloud/issues/3345">#3345</a>)</li>
<li><a
href="c04000b964"><code>c04000b</code></a>
secrets/hashivault: Update go-jose per dependabot (<a
href="https://redirect.github.com/google/go-cloud/issues/3346">#3346</a>)</li>
<li><a
href="6d5d289081"><code>6d5d289</code></a>
pubsub/natspubsub: upgrade a dependency (<a
href="https://redirect.github.com/google/go-cloud/issues/3336">#3336</a>)</li>
<li><a
href="375e097193"><code>375e097</code></a>
pubsub/natspubsub: Update dependency (<a
href="https://redirect.github.com/google/go-cloud/issues/3331">#3331</a>)</li>
<li><a
href="35ac324ff7"><code>35ac324</code></a>
all: update dependencies (<a
href="https://redirect.github.com/google/go-cloud/issues/3329">#3329</a>)</li>
<li><a
href="4a18be0f4a"><code>4a18be0</code></a>
secrets/awskms: update the example for the AWS ARN use case (<a
href="https://redirect.github.com/google/go-cloud/issues/3320">#3320</a>)</li>
<li><a
href="486d484a8f"><code>486d484</code></a>
kafkapubsub: rename dependency Shopify/sarama to IBM/sarama (<a
href="https://redirect.github.com/google/go-cloud/issues/3319">#3319</a>)</li>
<li><a
href="db7e808e31"><code>db7e808</code></a>
runtimevar/constantvar: Add support for reading the constantvar from an
envir...</li>
<li>Additional commits viewable in <a
href="https://github.com/google/go-cloud/compare/v0.34.0...v0.35.0">compare
view</a></li>
</ul>
</details>
<br />
<details>
<summary>Most Recent Ignore Conditions Applied to This Pull
Request</summary>
| Dependency Name | Ignore Conditions |
| --- | --- |
| gocloud.dev | [>= 0.25.a, < 0.26] |
</details>
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.94.0 to 0.95.1.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9463f2eb23"><code>9463f2e</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1853">#1853</a>
from xanzy/fix/labels</li>
<li><a
href="e8b85a2984"><code>e8b85a2</code></a>
Fix renaming <code>Labels</code> to <code>LabelOptions</code></li>
<li><a
href="c26aaf25a1"><code>c26aaf2</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1851">#1851</a>
from giuliohome/master</li>
<li><a
href="62bfc4a3f6"><code>62bfc4a</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1849">#1849</a>
from inputvalidation/force-stop-environment</li>
<li><a
href="f3442204d3"><code>f344220</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1848">#1848</a>
from mycrEEpy/service-user</li>
<li><a
href="151995e6e9"><code>151995e</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1847">#1847</a>
from liuhaogui/v0.94.1</li>
<li><a
href="d97e90570a"><code>d97e905</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1846">#1846</a>
from eranor/feat/add-group-milestone-delete-method</li>
<li><a
href="d3e39bd6bc"><code>d3e39bd</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1845">#1845</a>
from puskunalis/puskunalis/add-unidiff</li>
<li><a
href="0cb04be365"><code>0cb04be</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1831">#1831</a>
from ysmilda/main</li>
<li><a
href="a49cd36f2b"><code>a49cd36</code></a>
Make it backwards compatible for now</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.94.0...v0.95.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps code.gitea.io/sdk/gitea from 0.16.0 to 0.17.0.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.15.0
to 0.16.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a9ef4cfeac"><code>a9ef4cf</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="d9b9452656"><code>d9b9452</code></a>
gopls/internal/lsp/cache: move quick-fix bundling logic to the cache
pkg</li>
<li><a
href="1733061d5f"><code>1733061</code></a>
go/analysis/passes/testinggoroutine: report by enclosing regions</li>
<li><a
href="b19be0fa71"><code>b19be0f</code></a>
gopls/internal/cmd/help_test.go: document</li>
<li><a
href="daa4aa59ed"><code>daa4aa5</code></a>
gopls/internal/lsp/source: stubmethods: fix out-of-bounds index</li>
<li><a
href="a586d0db84"><code>a586d0d</code></a>
go/types/internal/play: show more types.Scope detail</li>
<li><a
href="53ad329bd9"><code>53ad329</code></a>
gopls/internal/lsp/source: move edit logic into the protocol
package</li>
<li><a
href="3c677e3f7d"><code>3c677e3</code></a>
gopls/internal/lsp/cache: move SuggestedFixFromCommand into cache</li>
<li><a
href="ab6af7d4bb"><code>ab6af7d</code></a>
gopls/internal/lsp/source: extract InDir to a new pathutil package</li>
<li><a
href="e7d61d9d57"><code>e7d61d9</code></a>
gopls/internal/lsp/cache: simplify named error values</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.15.0...v0.16.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from
0.14.0 to 0.15.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="6e9ec9323d"><code>6e9ec93</code></a>
go.mod: update golang.org/x dependencies</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.14.0...v0.15.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.16.12 to 0.17.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="c4ffb0537d"><code>c4ffb05</code></a>
fix checking timeouts when calculating permissions</li>
<li><a
href="7e8c825d82"><code>7e8c825</code></a>
Address Discord having shitty API design</li>
<li><a
href="c9a23642bd"><code>c9a2364</code></a>
Add new expressions and events permissions (<a
href="https://redirect.github.com/disgoorg/disgo/issues/292">#292</a>)</li>
<li><a
href="f19739c45e"><code>f19739c</code></a>
update dependencies</li>
<li><a
href="0c2c0328fa"><code>0c2c032</code></a>
migrate to slog & go 1.21 (<a
href="https://redirect.github.com/disgoorg/disgo/issues/294">#294</a>)</li>
<li>See full diff in <a
href="https://github.com/disgoorg/disgo/compare/v0.16.12...v0.17.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/google/ko](https://github.com/google/ko) from 0.15.0
to 0.15.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/ko/releases">github.com/google/ko's
releases</a>.</em></p>
<blockquote>
<h2>v0.15.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Don't AppendDescriptor until we've written config by <a
href="https://github.com/jonjohnsonjr"><code>@jonjohnsonjr</code></a>
in <a
href="https://redirect.github.com/ko-build/ko/pull/1175">ko-build/ko#1175</a></li>
<li>Add more locking around on-disk image cache by <a
href="https://github.com/jonjohnsonjr"><code>@jonjohnsonjr</code></a>
in <a
href="https://redirect.github.com/ko-build/ko/pull/1176">ko-build/ko#1176</a></li>
<li>Fix "AM" Time Typo by <a
href="https://github.com/StephenGrider"><code>@StephenGrider</code></a>
in <a
href="https://redirect.github.com/ko-build/ko/pull/1179">ko-build/ko#1179</a></li>
<li>docs: add MacPorts install info by <a
href="https://github.com/herbygillot"><code>@herbygillot</code></a> in
<a
href="https://redirect.github.com/ko-build/ko/pull/1180">ko-build/ko#1180</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/StephenGrider"><code>@StephenGrider</code></a>
made their first contribution in <a
href="https://redirect.github.com/ko-build/ko/pull/1179">ko-build/ko#1179</a></li>
<li><a
href="https://github.com/herbygillot"><code>@herbygillot</code></a>
made their first contribution in <a
href="https://redirect.github.com/ko-build/ko/pull/1180">ko-build/ko#1180</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/ko-build/ko/compare/v0.15.0...v0.15.1">https://github.com/ko-build/ko/compare/v0.15.0...v0.15.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2e9e58b187"><code>2e9e58b</code></a>
Bump k8s.io/apimachinery from 0.28.3 to 0.28.4</li>
<li><a
href="84d3803370"><code>84d3803</code></a>
Merge pull request <a
href="https://redirect.github.com/google/ko/issues/1177">#1177</a> from
ko-build/dependabot/go_modules/github.com/sigst...</li>
<li><a
href="512ca9c0fb"><code>512ca9c</code></a>
Bump github.com/sigstore/cosign/v2 from 2.1.1 to 2.2.1</li>
<li><a
href="4aceae1ddf"><code>4aceae1</code></a>
update test</li>
<li><a
href="a271b54fe5"><code>a271b54</code></a>
Bump github.com/google/go-containerregistry from 0.15.2 to 0.16.1</li>
<li><a
href="cfc13deeb6"><code>cfc13de</code></a>
Bump golang.org/x/tools from 0.14.0 to 0.15.0</li>
<li><a
href="59038b983f"><code>59038b9</code></a>
Merge pull request <a
href="https://redirect.github.com/google/ko/issues/1180">#1180</a> from
herbygillot/patch-1</li>
<li><a
href="63cd511412"><code>63cd511</code></a>
docs: add MacPorts install info</li>
<li><a
href="f1f5fb3afb"><code>f1f5fb3</code></a>
Update community.md (<a
href="https://redirect.github.com/google/ko/issues/1179">#1179</a>)</li>
<li><a
href="c92ea35f27"><code>c92ea35</code></a>
Merge pull request <a
href="https://redirect.github.com/google/ko/issues/1178">#1178</a> from
ko-build/dependabot/github_actions/sigstore/cos...</li>
<li>Additional commits viewable in <a
href="https://github.com/google/ko/compare/v0.15.0...v0.15.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once CI passes on it, as requested by
@caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.93.2 to 0.94.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="793bc3cdf5"><code>793bc3c</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1829">#1829</a>
from mauamy/feat/add-member-roles</li>
<li><a
href="99ab72b8c2"><code>99ab72b</code></a>
Make the code match the rest of the package</li>
<li><a
href="ec84ef5626"><code>ec84ef5</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1788">#1788</a>
from mycrEEpy/update-go</li>
<li><a
href="664c0acc48"><code>664c0ac</code></a>
Simplify the Ptr func</li>
<li><a
href="2bf8cd2ee2"><code>2bf8cd2</code></a>
update deprecation docs</li>
<li><a
href="ce857a2572"><code>ce857a2</code></a>
update readme examples</li>
<li><a
href="a2fd184003"><code>a2fd184</code></a>
update minimum go version to 1.19; add Ptr function to use generics for
alloc...</li>
<li><a
href="5a3d963c32"><code>5a3d963</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1827">#1827</a>
from pwlandoll/feat/815-keyset-pagination</li>
<li><a
href="5bd3fc74a9"><code>5bd3fc7</code></a>
Small tweaks, nothing exiting :)</li>
<li><a
href="d906aaa47a"><code>d906aaa</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1834">#1834</a>
from ppeble/pipelines-add-name-field</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.93.2...v0.94.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.16.11 to 0.16.12.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.16.12</h2>
<h2>What's Changed</h2>
<ul>
<li>Update subscription objects to match the docs by <a
href="https://github.com/mlnrDev"><code>@mlnrDev</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/322">disgoorg/disgo#322</a></li>
<li>Fix problem with oauth2 endpoints by <a
href="https://github.com/topi314"><code>@topi314</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/323">disgoorg/disgo#323</a></li>
<li>Fix incorrect expiration in oauth sessions by <a
href="https://github.com/topi314"><code>@topi314</code></a> in <a
href="c50b92ff0a</a></li>
<li>Fix missnamed creator json tag in emoji by <a
href="https://github.com/topi314"><code>@topi314</code></a> in <a
href="0162c707df</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.16.11...v0.16.12">https://github.com/disgoorg/disgo/compare/v0.16.11...v0.16.12</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0162c707df"><code>0162c70</code></a>
fix missnamed creator json tag in emoji</li>
<li><a
href="631c26135b"><code>631c261</code></a>
fix problem with oauth2 endpoints (<a
href="https://redirect.github.com/disgoorg/disgo/issues/323">#323</a>)</li>
<li><a
href="c50b92ff0a"><code>c50b92f</code></a>
fix incorrect expiration in oauth sessions</li>
<li><a
href="5a9ed6695b"><code>5a9ed66</code></a>
Update subscription objects to match the docs (<a
href="https://redirect.github.com/disgoorg/disgo/issues/322">#322</a>)</li>
<li>See full diff in <a
href="https://github.com/disgoorg/disgo/compare/v0.16.11...v0.16.12">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from
0.13.0 to 0.14.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="e067960af8"><code>e067960</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="4c91c17b32"><code>4c91c17</code></a>
google: adds header to security considerations section</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.13.0...v0.14.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.14.0
to 0.15.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h2>gopls/v0.14.1</h2>
<p>This release contains just two changes:</p>
<ul>
<li>A workaround for a regression affecting some users of
<code>GOPACKAGESDRIVER</code>: <a
href="https://redirect.github.com/golang/go/issues/63751">golang/go#63751</a>,
for example those using gopls with an older version of <a
href="https://bazel.build/">Bazel</a>. When the <a
href="https://pkg.go.dev/golang.org/x/tools/go/packages"><code>go/packages</code></a>
driver is missing compiler or architecture information, gopls now
assumes a default value rather than failing to load package
information.</li>
<li>A fix for a minor bug in the <a
href="https://github.com/golang/tools/releases/tag/gopls%2Fv0.14.0">new</a>
"remove unused parameter" refactoring: <a
href="https://redirect.github.com/golang/go/issues/63755">golang/go#63755</a>.
Notably, this bug was discovered via an automated report from someone
who had opted in to <a href="https://telemetry.go.dev/privacy">Go
telemetry</a>.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="729e159c03"><code>729e159</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="38ed81a6b5"><code>38ed81a</code></a>
gopls/internal/regtest/marker: porting extract tests</li>
<li><a
href="bbf8380961"><code>bbf8380</code></a>
gopls/internal/regtest/marker: use golden diffs for suggested fixes</li>
<li><a
href="51df92b224"><code>51df92b</code></a>
go/ssa: two minor cleanups</li>
<li><a
href="e7fb31ad45"><code>e7fb31a</code></a>
internal/cmd/deadcode: rename -format to -f</li>
<li><a
href="c538b4e994"><code>c538b4e</code></a>
internal/cmd/deadcode: add -whylive=function flag</li>
<li><a
href="b753e58b84"><code>b753e58</code></a>
internal/lsp/helper: fix misspelled "Code generated"
comment</li>
<li><a
href="2638d66336"><code>2638d66</code></a>
internal/cmd/deadcode: omit package/func keywords in default output</li>
<li><a
href="118c362a56"><code>118c362</code></a>
gopls/internal/lsp/source: fix signatureHelp with pointer receivers</li>
<li><a
href="4124316da0"><code>4124316</code></a>
gopls/internal/lsp/cache: remove baseCtx from the View</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.14.0...v0.15.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/sync](https://github.com/golang/sync) from 0.4.0 to
0.5.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="10739b037d"><code>10739b0</code></a>
all: update go directive to 1.18</li>
<li>See full diff in <a
href="https://github.com/golang/sync/compare/v0.4.0...v0.5.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once CI passes on it, as requested by
@caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/text](https://github.com/golang/text) from 0.13.0 to
0.14.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="6c97a165dd"><code>6c97a16</code></a>
all: update go directive to 1.18</li>
<li>See full diff in <a
href="https://github.com/golang/text/compare/v0.13.0...v0.14.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once CI passes on it, as requested by
@caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.93.1 to 0.93.2.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="e78abac2dc"><code>e78abac</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1825">#1825</a>
from stevexuereb/fix/application-settings</li>
<li><a
href="ddc846cfa7"><code>ddc846c</code></a>
fix: application settings marshalling</li>
<li><a
href="b6f640592c"><code>b6f6405</code></a>
Rename master to main</li>
<li><a
href="9886bf83fa"><code>9886bf8</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1810">#1810</a>
from oSoloTurk/master</li>
<li><a
href="5553955487"><code>5553955</code></a>
Minor tweaks preparing to merge</li>
<li><a
href="61a2bebe76"><code>61a2beb</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1824">#1824</a>
from xanzy/feat/notes</li>
<li><a
href="bb35e1a383"><code>bb35e1a</code></a>
Fixes <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1822">#1822</a></li>
<li><a
href="8d77cca289"><code>8d77cca</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1809">#1809</a>
from PatrickRice-KSC/add-notification-events</li>
<li><a
href="e93019f2f0"><code>e93019f</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1820">#1820</a>
from xuxiaowei-com-cn/xuxiaowei/appearance</li>
<li><a
href="6ee683f42d"><code>6ee683f</code></a>
Refactor PR so it matches the rest of the package</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.93.1...v0.93.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/caarlos0/log](https://github.com/caarlos0/log) from
0.4.3 to 0.4.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/caarlos0/log/releases">github.com/caarlos0/log's
releases</a>.</em></p>
<blockquote>
<h2>v0.4.4</h2>
<h2>Changelog</h2>
<hr />
<p><em>Released with <a href="https://goreleaser.com/pro">GoReleaser
Pro</a>!</em></p>
<h2>v0.4.4</h2>
<h2>Changelog</h2>
<hr />
<p><em>Released with <a href="https://goreleaser.com/pro">GoReleaser
Pro</a>!</em></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="614b0a8e4b"><code>614b0a8</code></a>
chore(deps): bump github.com/charmbracelet/lipgloss from 0.9.0 to 0.9.1
(<a
href="https://redirect.github.com/caarlos0/log/issues/25">#25</a>)</li>
<li>See full diff in <a
href="https://github.com/caarlos0/log/compare/v0.4.3...v0.4.4">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/charmbracelet/lipgloss](https://github.com/charmbracelet/lipgloss)
from 0.9.0 to 0.9.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/charmbracelet/lipgloss/releases">github.com/charmbracelet/lipgloss's
releases</a>.</em></p>
<blockquote>
<h2>v0.9.1</h2>
<p>This bugfix release changes the Table <code>Headers</code> API to
accept <code>[]string</code> for consistency with <code>Row</code> /
<code>Rows</code> and downgrades Lip Gloss to Go version
<code>v1.17</code>.</p>
<h2>What's Changed</h2>
<ul>
<li>Table Headers type from <code>[]any</code> → <code>[]string</code>
by <a href="https://github.com/maaslalani"><code>@maaslalani</code></a>
in <a
href="https://redirect.github.com/charmbracelet/lipgloss/pull/234">charmbracelet/lipgloss#234</a></li>
<li>Downgrade Lip Gloss to <code>v1.17</code> by <a
href="https://github.com/maaslalani"><code>@maaslalani</code></a> in <a
href="https://redirect.github.com/charmbracelet/lipgloss/pull/234">charmbracelet/lipgloss#234</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/charmbracelet/lipgloss/compare/v0.9.0...v0.9.1">https://github.com/charmbracelet/lipgloss/compare/v0.9.0...v0.9.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f093bc1509"><code>f093bc1</code></a>
Make headers <code>[]string</code> (<a
href="https://redirect.github.com/charmbracelet/lipgloss/issues/234">#234</a>)</li>
<li><a
href="42db873617"><code>42db873</code></a>
test(table): ensure README example works</li>
<li>See full diff in <a
href="https://github.com/charmbracelet/lipgloss/compare/v0.9.0...v0.9.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/caarlos0/log](https://github.com/caarlos0/log) from
0.4.2 to 0.4.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/caarlos0/log/releases">github.com/caarlos0/log's
releases</a>.</em></p>
<blockquote>
<h2>v0.4.3</h2>
<h2>Changelog</h2>
<hr />
<p><em>Released with <a href="https://goreleaser.com/pro">GoReleaser
Pro</a>!</em></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f01ba34cc7"><code>f01ba34</code></a>
chore(deps): bump github.com/charmbracelet/lipgloss from 0.8.0 to 0.9.0
(<a
href="https://redirect.github.com/caarlos0/log/issues/24">#24</a>)</li>
<li><a
href="ea95b5bf18"><code>ea95b5b</code></a>
chore(deps): bump goreleaser/goreleaser-action from 4 to 5 (<a
href="https://redirect.github.com/caarlos0/log/issues/23">#23</a>)</li>
<li><a
href="273756e9f7"><code>273756e</code></a>
chore(deps): bump actions/checkout from 3 to 4 (<a
href="https://redirect.github.com/caarlos0/log/issues/22">#22</a>)</li>
<li><a
href="f63049b4a4"><code>f63049b</code></a>
chore(deps): bump github.com/charmbracelet/lipgloss from 0.7.1 to 0.8.0
(<a
href="https://redirect.github.com/caarlos0/log/issues/21">#21</a>)</li>
<li>See full diff in <a
href="https://github.com/caarlos0/log/compare/v0.4.2...v0.4.3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once CI passes on it, as requested by
@caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.16.0 to
0.17.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b225e7ca6d"><code>b225e7c</code></a>
http2: limit maximum handler goroutines to MaxConcurrentStreams</li>
<li>See full diff in <a
href="https://github.com/golang/net/compare/v0.16.0...v0.17.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once CI passes on it, as requested by
@caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/goreleaser/goreleaser/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/charmbracelet/lipgloss](https://github.com/charmbracelet/lipgloss)
from 0.8.0 to 0.9.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/charmbracelet/lipgloss/releases">github.com/charmbracelet/lipgloss's
releases</a>.</em></p>
<blockquote>
<h2>v0.9.0</h2>
<h1>My, how the tables have turned</h1>
<p>Now you can draw <code>Table</code>s with Lip Gloss! 💅</p>
<!-- raw HTML omitted -->
<p>View <a
href="https://github.com/charmbracelet/lipgloss/tree/master/examples/table/pokemon/main.go">the
source code</a>.</p>
<h2>Let's get started</h2>
<pre lang="go"><code>import
"github.com/charmbracelet/lipgloss/table"
</code></pre>
<p>Define some rows of data.</p>
<pre lang="go"><code>rows := [][]string{
{"Chinese", "您好", "你好"},
{"Japanese", "こんにちは", "やあ"},
{"Arabic", "أهلين", "أهلا"},
{"Russian", "Здравствуйте", "Привет"},
{"Spanish", "Hola", "¿Qué tal?"},
}
</code></pre>
<p>Use the table package to style and render the table.</p>
<pre lang="go"><code>t := table.New().
Border(lipgloss.NormalBorder()).
BorderStyle(lipgloss.NewStyle().Foreground(lipgloss.Color("99"))).
StyleFunc(func(row, col int) lipgloss.Style {
switch {
case row == 0:
return HeaderStyle
case row%2 == 0:
return EvenRowStyle
default:
return OddRowStyle
}
}).
Headers("LANGUAGE", "FORMAL", "INFORMAL").
Rows(rows...)
<p>// You can also add tables row-by-row
t.Row("English", "You look absolutely fabulous.",
"How's it going?")
</code></pre></p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4476263d05"><code>4476263</code></a>
Feature: Tables (<a
href="https://redirect.github.com/charmbracelet/lipgloss/issues/218">#218</a>)</li>
<li><a
href="408dcf3b9e"><code>408dcf3</code></a>
feat: add <code>Middle</code> borders (<a
href="https://redirect.github.com/charmbracelet/lipgloss/issues/230">#230</a>)</li>
<li><a
href="93cd5e0d35"><code>93cd5e0</code></a>
feat: bump minimum go version to 1.18 (<a
href="https://redirect.github.com/charmbracelet/lipgloss/issues/216">#216</a>)</li>
<li><a
href="b766f24d45"><code>b766f24</code></a>
feat(deps): bump github.com/mattn/go-runewidth from 0.0.14 to 0.0.15 (<a
href="https://redirect.github.com/charmbracelet/lipgloss/issues/215">#215</a>)</li>
<li><a
href="b0eb95dbc1"><code>b0eb95d</code></a>
fix(border): both GetHorizontalBorderSize and GetVerticalBorderSize (<a
href="https://redirect.github.com/charmbracelet/lipgloss/issues/225">#225</a>)</li>
<li><a
href="2d2a577e2d"><code>2d2a577</code></a>
fix(border): GetBorderRightSize (<a
href="https://redirect.github.com/charmbracelet/lipgloss/issues/224">#224</a>)</li>
<li><a
href="18166eaa8a"><code>18166ea</code></a>
chore(deps): bump actions/checkout from 3 to 4 (<a
href="https://redirect.github.com/charmbracelet/lipgloss/issues/222">#222</a>)</li>
<li>See full diff in <a
href="https://github.com/charmbracelet/lipgloss/compare/v0.8.0...v0.9.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from
0.12.0 to 0.13.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3c5dbf08cc"><code>3c5dbf0</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="11625ccb95"><code>11625cc</code></a>
google: add authorized_user conditional to
Credentials.UniverseDomain</li>
<li><a
href="8d6d45b6cd"><code>8d6d45b</code></a>
google: add Credentials.UniverseDomain to support TPC</li>
<li><a
href="43b6a7ba19"><code>43b6a7b</code></a>
google: adding support for external account authorized user</li>
<li><a
href="14b275c918"><code>14b275c</code></a>
oauth2: workaround misspelling of verification_uri</li>
<li><a
href="18352fc433"><code>18352fc</code></a>
google/internal/externalaccount: adding BYOID Metrics</li>
<li><a
href="9095a51613"><code>9095a51</code></a>
oauth2: clarify error if endpoint missing DeviceAuthURL</li>
<li><a
href="2d9e4a2adf"><code>2d9e4a2</code></a>
oauth2/google: remove meta validations for aws external credentials</li>
<li><a
href="55cd552a36"><code>55cd552</code></a>
oauth2: support PKCE</li>
<li><a
href="e3fb0fb3af"><code>e3fb0fb</code></a>
oauth2: support device flow</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.12.0...v0.13.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.13.0
to 0.14.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h2>gopls/v0.13.2</h2>
<p><code>golang/go#61813</code></p>
<h2>gopls/v0.13.1</h2>
<p>This is a patch release to fix three issues with the v0.13.0
release:</p>
<ul>
<li><a
href="https://redirect.github.com/golang/go/issues/61670">golang/go#61670</a>:
broken imports due to corrupted export data</li>
<li><a
href="https://redirect.github.com/golang/go/issues/61693">golang/go#61693</a>:
panic in stubmethods with variadic args</li>
<li><a
href="https://redirect.github.com/golang/go/issues/61692">golang/go#61692</a>:
gofumpt integration panics when used with the new go directive syntax in
go.mod files (e.g. <code>go 1.21rc3</code>)</li>
</ul>
<p>Incidentally, this release also picks up a few fixes for references
and renaming. See the <a
href="https://github.com/golang/go/milestone/325?closed=1">milestone</a>
for the complete list of resolved issues.</p>
<p>Thank you to all who reported bugs. If are still encountering
problems, please <a
href="https://github.com/golang/go/issues/new?assignees=&labels=gopls+Tools&projects=&template=03-gopls.md&title=x%2Ftools%2Fgopls%3A+">file
an issue</a>.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3f4194ee29"><code>3f4194e</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="1e4ce7c30c"><code>1e4ce7c</code></a>
internal/refactor/inline: yet more tweaks to everything test</li>
<li><a
href="ee20ddf1f7"><code>ee20ddf</code></a>
internal/refactor/inline: permit return conversions in tailcall</li>
<li><a
href="db1d1e0d33"><code>db1d1e0</code></a>
gopls/internal/lsp: go to definition from embed directive</li>
<li><a
href="2be977ecc5"><code>2be977e</code></a>
internal/refactor/inline: work around channel type misformatting</li>
<li><a
href="0ba9c8439e"><code>0ba9c84</code></a>
internal/fuzzy: several improvements for symbol matching</li>
<li><a
href="c2725ad840"><code>c2725ad</code></a>
gopls: update x/telemetry dependency</li>
<li><a
href="e8722c0103"><code>e8722c0</code></a>
go/types/internal/play: show types.Selection information</li>
<li><a
href="a819c616c8"><code>a819c61</code></a>
internal/refactor/inline: eliminate unnecessary binding decl</li>
<li><a
href="102b64b540"><code>102b64b</code></a>
internal/refactor/inline: tweak everything-test docs again</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.13.0...v0.14.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.93.0 to 0.93.1.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="c7a9790526"><code>c7a9790</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1817">#1817</a>
from diggerhq/fix-list-merge-reques-diffs-typo</li>
<li><a
href="99e75d5d0d"><code>99e75d5</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1818">#1818</a>
from airclovis/feat-add-time-spent-summary</li>
<li><a
href="68d5594373"><code>68d5594</code></a>
feature: Add summary support in AddSpentTimeOptions</li>
<li><a
href="822d1b5bc0"><code>822d1b5</code></a>
Update merge_requests.go</li>
<li><a
href="2ae422a8b2"><code>2ae422a</code></a>
fix typo ListMergeRequesDiffs -> ListMergeRequestDiffs</li>
<li>See full diff in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.93.0...v0.93.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/sync](https://github.com/golang/sync) from 0.3.0 to
0.4.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="22ba2078e1"><code>22ba207</code></a>
singleflight: add panicError.Unwrap method</li>
<li>See full diff in <a
href="https://github.com/golang/sync/compare/v0.3.0...v0.4.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/invopop/jsonschema](https://github.com/invopop/jsonschema)
from 0.11.0 to 0.12.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9b6bb6e8f1"><code>9b6bb6e</code></a>
Merge pull request <a
href="https://redirect.github.com/invopop/jsonschema/issues/108">#108</a>
from invopop/schema-property-alias</li>
<li><a
href="f45517cf07"><code>f45517c</code></a>
Typo</li>
<li><a
href="ab81e2aa64"><code>ab81e2a</code></a>
Fixing linting</li>
<li><a
href="933814a23a"><code>933814a</code></a>
support for JSONSchemaAlias y JSONSchemaProperty methods</li>
<li><a
href="0108689b9f"><code>0108689</code></a>
Support for JSONSchemaAlias method</li>
<li><a
href="12cbc49539"><code>12cbc49</code></a>
Updating test output with new number parsing</li>
<li><a
href="cada51da56"><code>cada51d</code></a>
Merge pull request <a
href="https://redirect.github.com/invopop/jsonschema/issues/96">#96</a>
from Hotdawg/regex_with_equals</li>
<li><a
href="9d905a2555"><code>9d905a2</code></a>
Limit split on genericKeywords</li>
<li><a
href="080d97dda9"><code>080d97d</code></a>
Merge branch 'invopop:main' into regex_with_equals</li>
<li><a
href="8a098cbcb6"><code>8a098cb</code></a>
Fix linter issue</li>
<li>See full diff in <a
href="https://github.com/invopop/jsonschema/compare/v0.11.0...v0.12.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.92.3 to 0.93.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="e10421747d"><code>e104217</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1814">#1814</a>
from timofurrer/feature/user-pat</li>
<li><a
href="bce1c13bb8"><code>bce1c13</code></a>
Support CreatePersonalAccessTokenForCurrentUser endpoint</li>
<li><a
href="285184db25"><code>285184d</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1813">#1813</a>
from mitar/patch-1</li>
<li><a
href="9085e187c1"><code>9085e18</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1815">#1815</a>
from xuxiaowei-com-cn/xuxiaowei/DeleteProjectArtifacts</li>
<li><a
href="6aff7b6843"><code>6aff7b6</code></a>
✨ delete artifacts eligible for deletion in a project</li>
<li><a
href="c92eb1bf2c"><code>c92eb1b</code></a>
Make sure response is fully consumed.</li>
<li><a
href="8cb9c32b5f"><code>8cb9c32</code></a>
Fixes <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1811">#1811</a></li>
<li>See full diff in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.92.3...v0.93.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps
[github.com/invopop/jsonschema](https://github.com/invopop/jsonschema)
from 0.9.0 to 0.11.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ab48bdbf03"><code>ab48bdb</code></a>
Merge pull request <a
href="https://redirect.github.com/invopop/jsonschema/issues/105">#105</a>
from cloudquery/fix/zero-max-min-length</li>
<li><a
href="d10980697d"><code>d109806</code></a>
fix unsigned int handling (0 is a valid value)</li>
<li><a
href="2bf120dd69"><code>2bf120d</code></a>
Merge pull request <a
href="https://redirect.github.com/invopop/jsonschema/issues/94">#94</a>
from evilnoxx/main</li>
<li><a
href="d8087c4d69"><code>d8087c4</code></a>
Merge pull request <a
href="https://redirect.github.com/invopop/jsonschema/issues/103">#103</a>
from cloudquery/fix/recurse-array-unprocessed-only</li>
<li><a
href="9c0d982c4f"><code>9c0d982</code></a>
process only unprocessed tags in recursion</li>
<li><a
href="73900b4415"><code>73900b4</code></a>
Merge pull request <a
href="https://redirect.github.com/invopop/jsonschema/issues/101">#101</a>
from cloudquery/fix/array-item-tags</li>
<li><a
href="6f925514cc"><code>6f92551</code></a>
move to separate test</li>
<li><a
href="5fe0827aab"><code>5fe0827</code></a>
use toJSONNumber</li>
<li><a
href="7c6ea7a4bd"><code>7c6ea7a</code></a>
tests</li>
<li><a
href="72e420b2e3"><code>72e420b</code></a>
Merge pull request <a
href="https://redirect.github.com/invopop/jsonschema/issues/100">#100</a>
from cloudquery/fix/min-max-ptr</li>
<li>Additional commits viewable in <a
href="https://github.com/invopop/jsonschema/compare/v0.9.0...v0.11.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.91.1 to 0.92.3.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2692fa8f0c"><code>2692fa8</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1805">#1805</a>
from takp/fix-shared_runners_setting-for-group-resource</li>
<li><a
href="4260457203"><code>4260457</code></a>
Reorder fields to match the docs</li>
<li><a
href="6c2d2284b6"><code>6c2d228</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1804">#1804</a>
from billiechar/add-repository-storage</li>
<li><a
href="89ff954009"><code>89ff954</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1807">#1807</a>
from pullpo-io/master</li>
<li><a
href="618236b6f2"><code>618236b</code></a>
Remove blank line</li>
<li><a
href="91f2456166"><code>91f2456</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1808">#1808</a>
from GaikwadPratik/mr-diff-path-fix</li>
<li><a
href="f0362ede80"><code>f0362ed</code></a>
fix: correction in rest end point path</li>
<li><a
href="79f8c53d44"><code>79f8c53</code></a>
Support <code>shared_runners_setting</code> in Group response</li>
<li><a
href="2d3576e486"><code>2d3576e</code></a>
Add ObjectAttributes.Name to PipelineEvent</li>
<li><a
href="3a1cb8bd94"><code>3a1cb8b</code></a>
Add repository storage to forked details</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.91.1...v0.92.3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.12.0
to 0.13.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h2>gopls/v0.13.0</h2>
<p><strong>These are release notes are identical to that of
gopls@v0.13.0-pre.3. Thanks to all who tested the
prerelease!</strong></p>
<pre><code>go install golang.org/x/tools/gopls@v0.13.0
</code></pre>
<p>This release fixes several bugs and mitigates a few performance
regressions. It also somewhat reduces the latency and CPU cost of most
operations, and includes a few small additional features.</p>
<h1>Performance improvements</h1>
<p>While <a href="mailto:gopls@v0.12.x">gopls@v0.12.x</a> drastically
reduced memory usage, several operations got around 50% slower due to
additional I/O reading from the filesystem and time spent decoding
indexes. This release optimizes those additional operations to (in most
cases) achieve parity or better with the equivalent operation in
gopls@v0.11.0. Additionally, this release reduces total CPU while typing
or performing common operations.</p>
<h2>Faster code actions</h2>
<p>This release includes a particularly large performance improvement in
the evaluation of code actions (including formatting/goimports on save).
In the past, there have been several reasons why this operation was
expensive -- VS Code users may recognize the <code>getting code actions
from "Go"</code> pop-up. This release fundamentally changes
the way code actions are evaluated so that almost all of the work is
pre-computed. As a result, formatting and adding or removing imports on
save should be much faster.</p>
<h2>Analysis performance</h2>
<p>A notable exception to CPU performance parity with gopls@v0.11.0 is
running static analysis. In this case, the additional cost incurred by
<a href="mailto:gopls@v0.12.x">gopls@v0.12.x</a> was not a regression,
but rather the cost of analyzing many more packages to enable
"deep" static analysis (see "Improved static
analysis" in the <a
href="https://github.com/golang/tools/releases/tag/gopls%2Fv0.12.0">gopls@v0.12.0
release notes</a>.</p>
<p>In smaller repositories, the cost of this additional analysis is
negligible -- analysis does not run until you stop typing, and typically
just re-evaluates the changed package. However, it was discovered that
in large workspaces that import low-level packages with a very large API
surface (such as a cloud provider SDK or proto library), certain
quadratic factors involved with the encoding/decoding of analysis
results can dominate the cost of analysis, and result in enormous
resource consumption: overloading the CPU and exhausting all memory.</p>
<p>This release partially mitigates those quadratic factors,
significantly reducing their cost and limiting concurrency so that they
do not exhaust all resources. However, fully eliminating these factors
will require additional work to fix their quadratic nature. Until that
is done, analysis may continue to be costly on certain repos, especially
if <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#staticcheck-bool"><code>"staticcheck"</code></a>
is enabled (because staticcheck does more deep analysis than the default
set of analyzers).</p>
<p>In the meantime, a notification is added to make you aware when
analysis is slow, and provide an update on the progress of indexing
"deep" analysis results. Canceling this notification will
cancel the ongoing analysis, but it will resume after the next change.
If you don't want to see these notifications, you can set the new <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#analysisprogressreporting-bool"><code>"analysisProgressReporting"</code></a>
setting to <code>"false"</code>.
<img
src="https://github.com/golang/tools/assets/57144380/4335a3c9-245b-409d-ab5c-5bbb650b7234"
alt="image" />.</p>
<h1>New Features</h1>
<h2>Highlight deprecated symbols</h2>
<p>Deprecated symbols and packages are now marked as such. To turn off
this feature, disable the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/analyzers.md#deprecated"><code>"deprecated"</code></a>
analysis.</p>
<p><img
src="https://github.com/golang/tools/assets/57144380/f6714035-f37b-487a-a110-591388bb5677"
alt="image" /></p>
<h2>Stub methods to fix missing method errors</h2>
<p>The <a
href="https://github.com/golang/tools/blob/master/gopls/doc/analyzers.md#stubmethods"><code>"stubmethods"</code></a>
refactoring is now available as a quick-fix for errors related to
missing methods.
<img
src="https://github.com/golang/tools/assets/57144380/715c3025-8beb-4cd5-bb8c-970be197b897"
alt="image" /></p>
<h2>Improvements to function extraction</h2>
<p>Function extraction now puts <code>context.Context</code> parameters
first in the resulting extracted function. See <a
href="https://redirect.github.com/golang/go/issues/60738">golang/go#60738</a>
for details.</p>
<h2>Improvements to the embeddirective analyzer</h2>
<p>The embed directive analyzer now verifies the location of
<code>//go:embed</code> directives, and provides a quick-fix to add
missing <code>"embed"</code> imports.
<img
src="https://github.com/golang/tools/assets/57144380/acbe8599-3a2d-40cd-856e-3451ea03c939"
alt="image" /></p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b5e55d1984"><code>b5e55d1</code></a>
go/analysis/analysistest: give better hint in SuggestedFix
assertion</li>
<li><a
href="a807ccf39a"><code>a807ccf</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="21090a2aa8"><code>21090a2</code></a>
gopls/internal/lsp/cache: use persistent.Set in a couple places</li>
<li><a
href="38b898b246"><code>38b898b</code></a>
internal/persistent: add Set</li>
<li><a
href="44f7796438"><code>44f7796</code></a>
gopls: add and enable the slog analyzer</li>
<li><a
href="2c6ba93996"><code>2c6ba93</code></a>
gopls: tidy for 1.17+</li>
<li><a
href="5a9656936d"><code>5a96569</code></a>
gopls/internal/lsp/cmd: don't use x/exp/slices</li>
<li><a
href="77c6ac601f"><code>77c6ac6</code></a>
gopls/internal/telemetry: don't schedule the next upload</li>
<li><a
href="010e045c4e"><code>010e045</code></a>
internal/persistent: use generics</li>
<li><a
href="a1a928ddbe"><code>a1a928d</code></a>
gopls: remove dead code</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.12.0...v0.13.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once it's up-to-date and CI passes on it,
as requested by @caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from
0.11.0 to 0.12.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="07085280e4"><code>0708528</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="a835fc4358"><code>a835fc4</code></a>
oauth2: move global auth style cache to be per-Config</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.11.0...v0.12.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once it's up-to-date and CI passes on it,
as requested by @caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps code.gitea.io/sdk/gitea from 0.15.1 to 0.16.0.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once it's up-to-date and CI passes on it,
as requested by @caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from
0.12.0 to 0.13.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0d375be9b6"><code>0d375be</code></a>
go.mod: update golang.org/x dependencies</li>
<li>See full diff in <a
href="https://github.com/golang/crypto/compare/v0.12.0...v0.13.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [gocloud.dev](https://github.com/google/go-cloud) from 0.33.0 to
0.34.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/go-cloud/releases">gocloud.dev's
releases</a>.</em></p>
<blockquote>
<h2>v0.34.0</h2>
<ul>
<li>
<p><strong>blob</strong></p>
<ul>
<li><strong>fileblob</strong>: Added an option to avoid using
<code>os.TempDir</code> for temp files.</li>
<li><strong>gcsblob</strong>: Don't hard-fail if no DefaultCredentials
are found.</li>
</ul>
</li>
<li>
<p><strong>aws/rds</strong>: Switch AWS RDS CA bundle to the officially
documented URL</p>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="22c0c79912"><code>22c0c79</code></a>
all: prelease (<a
href="https://redirect.github.com/google/go-cloud/issues/3308">#3308</a>)</li>
<li><a
href="55ed7f7110"><code>55ed7f7</code></a>
aws/rds: Switch AWS RDS CA bundle to the officially documented URL (<a
href="https://redirect.github.com/google/go-cloud/issues/3307">#3307</a>)</li>
<li><a
href="d6f90a4d2b"><code>d6f90a4</code></a>
Clean up deployment instructions a bit more</li>
<li><a
href="dfd6143fbc"><code>dfd6143</code></a>
Update website deployment instructions</li>
<li><a
href="62841e782d"><code>62841e7</code></a>
blob/gcsblob: Don't hard-fail if no DefaultCredentials are found (<a
href="https://redirect.github.com/google/go-cloud/issues/3306">#3306</a>)</li>
<li><a
href="1b4bd150ca"><code>1b4bd15</code></a>
blob/s3blob: Fix example (<a
href="https://redirect.github.com/google/go-cloud/issues/3305">#3305</a>)</li>
<li><a
href="7298f99c27"><code>7298f99</code></a>
all: update to go 1.21 (<a
href="https://redirect.github.com/google/go-cloud/issues/3301">#3301</a>)</li>
<li><a
href="dee61a596a"><code>dee61a5</code></a>
blob/fileblob: Fix for URL parameter for no_tmp_dir option. (<a
href="https://redirect.github.com/google/go-cloud/issues/3300">#3300</a>)</li>
<li><a
href="cfe20caf3c"><code>cfe20ca</code></a>
blob/fileblob: Add docstring about tempdirs (<a
href="https://redirect.github.com/google/go-cloud/issues/3296">#3296</a>)</li>
<li><a
href="9b62f468b3"><code>9b62f46</code></a>
blob/fileblob: Add an option to avoid using os.TempDir for temp files
(<a
href="https://redirect.github.com/google/go-cloud/issues/3295">#3295</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/google/go-cloud/compare/v0.33.0...v0.34.0">compare
view</a></li>
</ul>
</details>
<br />
<details>
<summary>Most Recent Ignore Conditions Applied to This Pull
Request</summary>
| Dependency Name | Ignore Conditions |
| --- | --- |
| gocloud.dev | [>= 0.25.a, < 0.26] |
</details>
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/text](https://github.com/golang/text) from 0.12.0 to
0.13.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f488e191e6"><code>f488e19</code></a>
unicode/norm: fix function name on comment</li>
<li>See full diff in <a
href="https://github.com/golang/text/compare/v0.12.0...v0.13.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps
[github.com/invopop/jsonschema](https://github.com/invopop/jsonschema)
from 0.7.0 to 0.8.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0382c8ee65"><code>0382c8e</code></a>
Updating release github action definition</li>
<li><a
href="0f7909057f"><code>0f79090</code></a>
Updating readme example</li>
<li><a
href="b954aa23f1"><code>b954aa2</code></a>
Merge pull request <a
href="https://redirect.github.com/invopop/jsonschema/issues/39">#39</a>
from arvidfm/additional-properties</li>
<li><a
href="0d62e119b7"><code>0d62e11</code></a>
Merge pull request <a
href="https://redirect.github.com/invopop/jsonschema/issues/93">#93</a>
from invopop/default-number-fix</li>
<li><a
href="a4408ec0e9"><code>a4408ec</code></a>
Ensure default floats or ints are converted correctly</li>
<li><a
href="0ff6727c86"><code>0ff6727</code></a>
Merge pull request <a
href="https://redirect.github.com/invopop/jsonschema/issues/92">#92</a>
from invopop/anyof-ref</li>
<li><a
href="4c3020b1ad"><code>4c3020b</code></a>
Adding anyof_ref tag, moving oneof_ref out of examples</li>
<li><a
href="88a348b426"><code>88a348b</code></a>
Merge pull request <a
href="https://redirect.github.com/invopop/jsonschema/issues/69">#69</a>
from gmlewis/i68-oneof-ref</li>
<li><a
href="aadda03996"><code>aadda03</code></a>
tiny refactor to get field name tag from a method</li>
<li><a
href="2d282ecc80"><code>2d282ec</code></a>
Merge pull request <a
href="https://redirect.github.com/invopop/jsonschema/issues/75">#75</a>
from balki/yamltag</li>
<li>Additional commits viewable in <a
href="https://github.com/invopop/jsonschema/compare/v0.7.0...v0.8.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.90.0 to 0.91.1.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0d372da030"><code>0d372da</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1787">#1787</a>
from GaikwadPratik/merge_trains_fix</li>
<li><a
href="e4640349a8"><code>e464034</code></a>
fix: squash is bool parameter not string</li>
<li><a
href="da51eb19f3"><code>da51eb1</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1786">#1786</a>
from xanzy/bugfix/label-details</li>
<li><a
href="2205d5b7ca"><code>2205d5b</code></a>
Add custom MergRequest unmarshal logic for label details</li>
<li><a
href="cf347744dc"><code>cf34774</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1778">#1778</a>
from dannydd88/feature/job_token_access_settings</li>
<li><a
href="170162387f"><code>1701623</code></a>
Minor tweaks…</li>
<li><a
href="8b167f4982"><code>8b167f4</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1780">#1780</a>
from beekeep/feat/update-project-protected-envs</li>
<li><a
href="facdd3cc69"><code>facdd3c</code></a>
Keep comment line width below 80 chars</li>
<li><a
href="a3c81a73bd"><code>a3c81a7</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1779">#1779</a>
from beekeep/feat/group-protected-envs</li>
<li><a
href="fab9f865d0"><code>fab9f86</code></a>
Keep comment line width below 80 chars</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.90.0...v0.91.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
<!--
Hi, thanks for contributing!
Please make sure you read our CONTRIBUTING guide.
Also, add tests and the respective documentation changes as well.
-->
<!-- If applied, this commit will... -->
...
<!-- Why is this change being made? -->
...
<!-- # Provide links to any relevant tickets, URLs or other resources
-->
...
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
Bumps [github.com/jarcoal/httpmock](https://github.com/jarcoal/httpmock)
from 1.3.0 to 1.3.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/jarcoal/httpmock/releases">github.com/jarcoal/httpmock's
releases</a>.</em></p>
<blockquote>
<h2>v1.3.1</h2>
<p>Fix:</p>
<ul>
<li><a
href="https://pkg.go.dev/github.com/jarcoal/httpmock#BodyContainsBytes">BodyContainsBytes</a>
& <a
href="https://pkg.go.dev/github.com/jarcoal/httpmock#BodyContainsString">BodyContainsString</a>
used with <a
href="https://pkg.go.dev/github.com/jarcoal/httpmock#Matcher.And">And</a>/<a
href="https://pkg.go.dev/github.com/jarcoal/httpmock#Matcher.Or">Or</a>
by <a href="https://github.com/maxatome"><code>@maxatome</code></a> in
<a
href="https://redirect.github.com/jarcoal/httpmock/issues/146">#146</a>
thanks to <a
href="https://github.com/Moon1706"><code>@Moon1706</code></a> for the
report → <a
href="https://redirect.github.com/jarcoal/httpmock/issues/145">#145</a>.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="8b32cd6f52"><code>8b32cd6</code></a>
fix: BodyContainsBytes & BodyContainsString used with And/Or</li>
<li><a
href="497153dd46"><code>497153d</code></a>
ci: test against go 1.21 & use golangci-lint 1.54.1</li>
<li><a
href="070d3c85e0"><code>070d3c8</code></a>
ci: switch to install-go v3.4</li>
<li><a
href="1ddb9fa5c4"><code>1ddb9fa</code></a>
refactor: make golangci-lint v1.52.2 happy</li>
<li><a
href="507a05e862"><code>507a05e</code></a>
ci: add workflow_dispatch as event trigger</li>
<li>See full diff in <a
href="https://github.com/jarcoal/httpmock/compare/v1.3.0...v1.3.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.11.1
to 0.12.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h2>gopls/v0.12.0</h2>
<p>This release contains a major rewrite of the way gopls computes and
stores package information, with the goal of reducing memory usage and
allowing gopls to scale to larger repositories. This change can also
significantly reduce startup time when workspaces are reopened, as gopls
now uses a file-based cache to persist data across sessions. With these
optimizations, gopls is finally able to <a
href="https://go.dev/issues/48738">fully analyze dependencies</a> using
the <a
href="https://pkg.go.dev/golang.org/x/tools/go/analysis">golang.org/x/tools/go/analysis</a>
framework, resulting in improved accuracy for analysis diagnostics.</p>
<p>You can install this release with <code>go install</code>:</p>
<pre><code>go install golang.org/x/tools/gopls@v0.12.0
</code></pre>
<h1>Support changes</h1>
<p>As gopls matures, we're trying to simplify its configuration so that
gopls Just Works in more scenarios, and so that we have fewer
configuration combinations to test. This means that we will be gradually
deprecating settings that affect the core behavior of gopls.</p>
<h2>Removed experimental configuration options</h2>
<p>As announced in the <a
href="https://github.com/golang/tools/releases/tag/gopls%2Fv0.10.0">v0.10.0
release notes</a>, this release removes support for the
<code>experimentalWorkspaceModule</code> and
<code>experimentalWatchedFileDelay</code> settings. The
<code>experimentalPackageCacheKey</code> setting is also removed, as it
is irrelevant in the new design.</p>
<p>The <code>experimentalWorkspaceModule</code> setting in particular
may still be in use by some users. This setting has been superseded by
built-in support for multi-module workspaces in the <code>go</code>
command, via <a href="https://go.dev/doc/tutorial/workspaces">Go
workspaces</a>. To get the equivalent behavior in gopls@v0.12.0, please
create a <code>go.work</code> file in your workspace using all desired
modules. To use all modules in your workspace, run:</p>
<pre><code>go work use -r .
</code></pre>
<h2>Dropped support for Go 1.13-1.15, deprecated support for Go
1.16-1.17</h2>
<p>As announced in the <a
href="https://github.com/golang/tools/releases/tag/gopls%2Fv0.10.0">v0.10.0
release notes</a>, this release drops support for Go 1.13-1.15, and in
fact does not build with these Go versions.</p>
<p>Additionally, <code>gopls@v0.12.x</code> will be the final sequence
of versions supporting Go 1.16-1.17, and therefore displays a
deprecation notice when used with these Go versions.</p>
<h2>Supported operating systems</h2>
<p>Given that our users are almost entirely on Linux, Windows, or
Darwin, we are discussing narrowing our support to focus on those
operating systems, in <a
href="https://redirect.github.com/golang/go/issues/59981">golang/go#59981</a>.</p>
<h1>Performance improvements</h1>
<p>The banner feature of this release is an internal redesign that
significantly improves the way gopls scales in larger codebases.
Performance, particularly memory usage, has <a
href="https://redirect.github.com/golang/go/issues/36943">long</a> <a
href="https://redirect.github.com/golang/go/issues/37790">been</a> <a
href="https://redirect.github.com/golang/go/issues/43968">a</a> <a
href="https://redirect.github.com/golang/go/issues/44981">pain</a> <a
href="https://redirect.github.com/golang/go/issues/45363">point</a> <a
href="https://redirect.github.com/golang/go/issues/45457">for</a> <a
href="https://redirect.github.com/golang/go/issues/46897">our</a> <a
href="https://redirect.github.com/golang/go/issues/47855">users</a>.</p>
<h2>Reduced memory usage</h2>
<p>Previous releases of gopls held typed syntax trees for all packages,
in memory, all the time. With this release, these large data structures
are ephemeral: as soon as they are constructed, an index of information
derived from them is saved persistently to a file-based cache, and the
data structures are recycled. The index for each package includes the
locations of declaring and referring identifiers; the set of exported
declarations and their types; the method sets of each interface; and any
diagnostics and facts (see below) produced during analysis. The index
holds all the information needed to serve global-scope LSP queries such
as “references”, “implementations”, and so on.</p>
<p>Moving package information to a file-based cache greatly reduces the
amount of RAM gopls uses, by almost an order of magnitude in larger
projects. The table below shows the reductions in steady-state memory
usage for three open-source Go repositories.</p>
<table>
<thead>
<tr>
<th>Project</th>
<th>Packages</th>
<th>In-use bytes v0.11.0</th>
<th>v0.12.0</th>
<th>Change</th>
</tr>
</thead>
<tbody>
<tr>
<td>gopls</td>
<td>405</td>
<td>497MB</td>
<td>232MB</td>
<td>-53%</td>
</tr>
<tr>
<td>kubernetes</td>
<td>3137</td>
<td>3090MB</td>
<td>832MB</td>
<td>-73%</td>
</tr>
<tr>
<td>google-cloud-go + submods</td>
<td>7657</td>
<td>5039MB</td>
<td>863MB</td>
<td>-83%</td>
</tr>
</tbody>
</table>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="229f8486be"><code>229f848</code></a>
gopls/internal/lsp/source: enable new defers analyzer</li>
<li><a
href="2dc7ebab28"><code>2dc7eba</code></a>
go/analysis: use parser.SkipObjectResolution</li>
<li><a
href="f91c023a9b"><code>f91c023</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="e0783a89e9"><code>e0783a8</code></a>
internal/gcimporter: remove bug report on objectpath failure</li>
<li><a
href="75f6f9c0b0"><code>75f6f9c</code></a>
gopls/internal/bug: add gopls/bug telemetry counter</li>
<li><a
href="4b271f9c71"><code>4b271f9</code></a>
gopls: add gopls/client telemetry counters</li>
<li><a
href="d0b18e25a0"><code>d0b18e2</code></a>
go/analysis/passes/copylock: fix infinite recursion</li>
<li><a
href="5b4d426665"><code>5b4d426</code></a>
gopls/internal/hooks: clean language version before passing to
gofumpt</li>
<li><a
href="2160c5f15f"><code>2160c5f</code></a>
gopls/internal/lsp/analysis: fix stubmethods with variadic
parameters</li>
<li><a
href="3d20bbe0fb"><code>3d20bbe</code></a>
internal/gcimporter: add a missing return if objectpath fails</li>
<li>See full diff in <a
href="https://github.com/golang/tools/compare/v0.11.1...v0.12.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from
0.10.0 to 0.11.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2e4a4e2bfb"><code>2e4a4e2</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="ac6658e9cb"><code>ac6658e</code></a>
all: update go version to 1.18</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.10.0...v0.11.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once it's up-to-date and CI passes on it,
as requested by @caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from
0.11.0 to 0.12.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b4ddeeda5b"><code>b4ddeed</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="edc325d13a"><code>edc325d</code></a>
ssh: fix call to Fatalf from a non-test goroutine</li>
<li><a
href="eab9315960"><code>eab9315</code></a>
ssh: add diffie-hellman-group16-sha512 kex</li>
<li><a
href="ddfa82138e"><code>ddfa821</code></a>
ssh: ignore invalid MACs and KEXs just like we do for ciphers</li>
<li><a
href="d08e19beac"><code>d08e19b</code></a>
x509roots/fallback: update bundle</li>
<li><a
href="12e1fcd8c0"><code>12e1fcd</code></a>
internal/wycheproof: skip all tests in short test mode</li>
<li><a
href="3f8f0645c2"><code>3f8f064</code></a>
ssh: prefer sha256 based RSA key algorithms</li>
<li><a
href="5df3b59941"><code>5df3b59</code></a>
ssh: disable client agent tests on Windows</li>
<li><a
href="2e82bdd171"><code>2e82bdd</code></a>
fix TestValidTerminalMode: missing output from echo SHELL $SHELL</li>
<li><a
href="64e0e99383"><code>64e0e99</code></a>
ssh: fix RSA certificate and public key authentication with older
clients</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/crypto/compare/v0.11.0...v0.12.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once it's up-to-date and CI passes on it,
as requested by @caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.89.0 to 0.90.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3b7542aae1"><code>3b7542a</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1768">#1768</a>
from PascalRoose/patch-project-emails-enabled</li>
<li><a
href="4a212a4f31"><code>4a212a4</code></a>
Tweak struct field tags</li>
<li><a
href="d426fac447"><code>d426fac</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1767">#1767</a>
from billiechar/billiechar-group-repository-storage</li>
<li><a
href="de4ff04d98"><code>de4ff04</code></a>
Update ordering</li>
<li><a
href="9c0749405e"><code>9c07494</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1769">#1769</a>
from PatrickRice-KSC/add-new-runner-api-support</li>
<li><a
href="f4834ae192"><code>f4834ae</code></a>
Bring the PR inline with the rest of the package</li>
<li><a
href="25e4cfa498"><code>25e4cfa</code></a>
Update the response and options based on new API documentation and
examples</li>
<li><a
href="b5d9b2ed31"><code>b5d9b2e</code></a>
Fix comments</li>
<li><a
href="6069191e14"><code>6069191</code></a>
Add runner service</li>
<li><a
href="81c2f1c609"><code>81c2f1c</code></a>
Fix: projects emails_disabled to emails_enabled</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.89.0...v0.90.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once CI passes on it, as requested by
@caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.16.7 to 0.16.8.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.16.8 - Media Channels</h2>
<h2>What's Changed</h2>
<ul>
<li>Add Media Channels by <a
href="https://github.com/mlnrDev"><code>@mlnrDev</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/285">disgoorg/disgo#285</a></li>
<li>Add avatar decorations by <a
href="https://github.com/mlnrDev"><code>@mlnrDev</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/217">disgoorg/disgo#217</a></li>
<li>Add onboarding updates by <a
href="https://github.com/mlnrDev"><code>@mlnrDev</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/267">disgoorg/disgo#267</a></li>
<li>Add <code>RoleFlags</code> by <a
href="https://github.com/mlnrDev"><code>@mlnrDev</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/287">disgoorg/disgo#287</a></li>
<li>Add <code>AttachmentFlags</code> by <a
href="https://github.com/mlnrDev"><code>@mlnrDev</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/288">disgoorg/disgo#288</a></li>
<li>Add <code>MessageAuthorID</code> to reaction add events by <a
href="https://github.com/mlnrDev"><code>@mlnrDev</code></a> in <a
href="23637a7340</a></li>
<li>Add <code>withCounts</code> parameter to to
<code>/users/@me/guilds</code> funcs by <a
href="https://github.com/mlnrDev"><code>@mlnrDev</code></a> in <a
href="836b4a9882</a></li>
<li>Add monetization audit log events by <a
href="https://github.com/mlnrDev"><code>@mlnrDev</code></a> in <a
href="09a5cb21c9</a></li>
<li>Add <code>Go</code> & <code>Defer</code> middleware to
<code>handler</code> to run handlers in separate goroutines & auto
defer interactions by <a
href="https://github.com/topi314"><code>@topi314</code></a> in <a
href="b331ced0cf</a></li>
<li>Add enforce all handler patterns start with <code>/</code> to fix
some bugs by <a
href="https://github.com/topi314"><code>@topi314</code></a> in <a
href="8f83c45072</a></li>
<li>Fix unknown gateway message data unmarshalling by <a
href="https://github.com/topi314"><code>@topi314</code></a> in <a
href="79b8080c1b</a></li>
<li>Rename <code>ImageFormat</code> to <code>FileFormat</code> by <a
href="https://github.com/mlnrDev"><code>@mlnrDev</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/284">disgoorg/disgo#284</a></li>
</ul>
<h2>Breaking Changes</h2>
<ul>
<li><code>LastThreadID</code> -> <code>LastPostID</code>,
<code>ForumTag</code> -> <code>ChannelTag</code>,
<code>GuildForumThreadChannelUpdate</code> ->
<code>GuildPostUpdate</code>, <code>ForumThreadCreate</code> ->
<code>ThreadChannelPostCreate</code>, <code>ForumThread</code> ->
<code>ThreadChannelPost</code> and <code>rest.CreateThreadInForum</code>
-> <code>rest.CreatePostInThreadChannel</code></li>
<li><code>GetCurrentUserGuilds</code>,
<code>GetCurrentUserGuildsPage</code> and <code>GetGuilds</code> now
accept an extra <code>withCounts</code> parameter</li>
<li><code>ImageFormat</code> has been renamed to
<code>FileFormat</code></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.16.7...v0.16.8">https://github.com/disgoorg/disgo/compare/v0.16.7...v0.16.8</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b0885debf8"><code>b0885de</code></a>
Add Media Channels (<a
href="https://redirect.github.com/disgoorg/disgo/issues/285">#285</a>)</li>
<li><a
href="e8c9c8b1f6"><code>e8c9c8b</code></a>
update disgoorg/log to v1.2.1</li>
<li><a
href="201bf30a6f"><code>201bf30</code></a>
make MessageAuthorID a pointer</li>
<li><a
href="d57b40f1f6"><code>d57b40f</code></a>
i forgor</li>
<li><a
href="836b4a9882"><code>836b4a9</code></a>
add with_counts to /users/<code>@me/guilds</code> funcs</li>
<li><a
href="09a5cb21c9"><code>09a5cb2</code></a>
add monetization audit log events</li>
<li><a
href="23637a7340"><code>23637a7</code></a>
add MessageAuthorID to EventMessageReactionAdd</li>
<li><a
href="93dc710363"><code>93dc710</code></a>
Add avatar decorations (<a
href="https://redirect.github.com/disgoorg/disgo/issues/217">#217</a>)</li>
<li><a
href="5e4729f52d"><code>5e4729f</code></a>
Add AttachmentFlags (<a
href="https://redirect.github.com/disgoorg/disgo/issues/288">#288</a>)</li>
<li><a
href="f786e69866"><code>f786e69</code></a>
Add onboarding updates (<a
href="https://redirect.github.com/disgoorg/disgo/issues/267">#267</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/disgoorg/disgo/compare/v0.16.7...v0.16.8">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once CI passes on it, as requested by
@caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/text](https://github.com/golang/text) from 0.11.0 to
0.12.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="fb697c0580"><code>fb697c0</code></a>
cmd/gotext: actually use -dir flag</li>
<li><a
href="f3e69ed4a8"><code>f3e69ed</code></a>
cmd/gotext: fix misbehaviors</li>
<li><a
href="ab07ad1b65"><code>ab07ad1</code></a>
all: remove repetitive words</li>
<li>See full diff in <a
href="https://github.com/golang/text/compare/v0.11.0...v0.12.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once CI passes on it, as requested by
@caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps the gomod-deps group with 3 updates:
[github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab),
[gocloud.dev](https://github.com/google/go-cloud) and
[go.uber.org/automaxprocs](https://github.com/uber-go/automaxprocs).
Updates `github.com/xanzy/go-gitlab` from 0.86.0 to 0.88.0
<details>
<summary>Commits</summary>
<ul>
<li><a
href="7e3c23c9c2"><code>7e3c23c</code></a>
Update pipeline tests</li>
<li><a
href="2ac3eea05f"><code>2ac3eea</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1758">#1758</a>
from billiechar/billiechar-snippet-moves</li>
<li><a
href="ddb5ca0974"><code>ddb5ca0</code></a>
Update the PR to make the code consistent</li>
<li><a
href="a4d27d6848"><code>a4d27d6</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1759">#1759</a>
from PatrickRice-KSC/add-missing-housekeeping-setting</li>
<li><a
href="a42af8593e"><code>a42af85</code></a>
Change PipelineTestCases.SystemOutput to interface{}</li>
<li><a
href="89486a0530"><code>89486a0</code></a>
Add missing housekeeping setting</li>
<li><a
href="852645c772"><code>852645c</code></a>
Update tests</li>
<li><a
href="f2c344ca14"><code>f2c344c</code></a>
Use separate options for each schedule</li>
<li><a
href="86dd6321cd"><code>86dd632</code></a>
Add snippet repository storage move APIs</li>
<li><a
href="3c1f9bfa0d"><code>3c1f9bf</code></a>
Use io.ReadAll instead of ioutil.ReadAll</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.86.0...v0.88.0">compare
view</a></li>
</ul>
</details>
<br />
Updates `gocloud.dev` from 0.30.0 to 0.32.0
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/go-cloud/releases">gocloud.dev's
releases</a>.</em></p>
<blockquote>
<h2>v0.32.0</h2>
<p>Redoing <code>v0.31.0</code> since I think I messed up the tags.
Copying the release notes:</p>
<p><strong>all</strong></p>
<ul>
<li>Update <code>go</code> version in <code>go.mod</code> to maintain
cleaner <code>go.mod</code> and <code>go.sum</code> files.</li>
</ul>
<p><strong>blob</strong></p>
<ul>
<li><strong>all</strong>: Pass through reader/writer to
<code>WriteTo</code>/<code>ReadFrom</code> if available
(optimization).</li>
<li><strong>all</strong>: Make <code>blob.Bucket</code> implement
<code>io/fs.FS</code> and <code>io/fs.SubFS</code>.</li>
<li><strong>gcsblob</strong>: Add support for forcing an unauthenticated
client.</li>
</ul>
<p><strong>server</strong></p>
<ul>
<li>Make <code>requestlog</code> internal structs implement
<code>http.Flusher</code>.</li>
<li>Don't always read the full request in order to calculate the request
size; use <code>Content-Length</code> when available.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="728b7c1395"><code>728b7c1</code></a>
all: prerelease take 2 (<a
href="https://redirect.github.com/google/go-cloud/issues/3278">#3278</a>)</li>
<li><a
href="838a8fd9b6"><code>838a8fd</code></a>
all: prerelease (<a
href="https://redirect.github.com/google/go-cloud/issues/3277">#3277</a>)</li>
<li><a
href="0f33c81c8d"><code>0f33c81</code></a>
all: add dragonfly build to test suite (<a
href="https://redirect.github.com/google/go-cloud/issues/3268">#3268</a>)</li>
<li><a
href="bfd1b284ad"><code>bfd1b28</code></a>
all: update dependencies (<a
href="https://redirect.github.com/google/go-cloud/issues/3276">#3276</a>)</li>
<li><a
href="8d4590ac1e"><code>8d4590a</code></a>
server/requestlog: Don't consume entire body just to get a request size
(<a
href="https://redirect.github.com/google/go-cloud/issues/3274">#3274</a>)</li>
<li><a
href="a1d9f4295c"><code>a1d9f42</code></a>
server/requestlog: make responseStats implement http.Flusher (<a
href="https://redirect.github.com/google/go-cloud/issues/3275">#3275</a>)</li>
<li><a
href="8cab06ea13"><code>8cab06e</code></a>
blob/gcsblob: add support for forcing an authenticated client (<a
href="https://redirect.github.com/google/go-cloud/issues/3273">#3273</a>)</li>
<li><a
href="0e5728dd33"><code>0e5728d</code></a>
blob: make blob.Bucket implement io/fs.FS and io/fs.SubFS (<a
href="https://redirect.github.com/google/go-cloud/issues/3272">#3272</a>)</li>
<li><a
href="a655179223"><code>a655179</code></a>
all: update go.mod files to go 1.19 (<a
href="https://redirect.github.com/google/go-cloud/issues/3271">#3271</a>)</li>
<li><a
href="8385fc39c7"><code>8385fc3</code></a>
blob: pass through reader/writer to
<code>WriteTo</code>/<code>ReadFrom</code> if available (<a
href="https://redirect.github.com/google/go-cloud/issues/3267">#3267</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/google/go-cloud/compare/v0.30.0...v0.32.0">compare
view</a></li>
</ul>
</details>
<br />
Updates `go.uber.org/automaxprocs` from 1.5.2 to 1.5.3
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/uber-go/automaxprocs/releases">go.uber.org/automaxprocs's
releases</a>.</em></p>
<blockquote>
<h2>v1.5.3</h2>
<ul>
<li>Fix mountinfo parsing when super options have fields with
spaces.</li>
<li>Fix division by zero while parsing cgroups.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/uber-go/automaxprocs/blob/master/CHANGELOG.md">go.uber.org/automaxprocs's
changelog</a>.</em></p>
<blockquote>
<h2>v1.5.3 (2023-07-19)</h2>
<ul>
<li>Fix mountinfo parsing when super options have fields with
spaces.</li>
<li>Fix division by zero while parsing cgroups.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="e83e959d88"><code>e83e959</code></a>
Release v1.5.3 (<a
href="https://redirect.github.com/uber-go/automaxprocs/issues/77">#77</a>)</li>
<li><a
href="94404505e0"><code>9440450</code></a>
Update actions (<a
href="https://redirect.github.com/uber-go/automaxprocs/issues/76">#76</a>)</li>
<li><a
href="4b0a5c9c3c"><code>4b0a5c9</code></a>
set CI perms to readonly (<a
href="https://redirect.github.com/uber-go/automaxprocs/issues/75">#75</a>)</li>
<li><a
href="c64632e175"><code>c64632e</code></a>
Drop Go 1.17 and Go 1.18 from CI (<a
href="https://redirect.github.com/uber-go/automaxprocs/issues/74">#74</a>)</li>
<li><a
href="60f22786b2"><code>60f2278</code></a>
fix: mountinfo parsing (<a
href="https://redirect.github.com/uber-go/automaxprocs/issues/73">#73</a>)</li>
<li><a
href="d064ede19d"><code>d064ede</code></a>
Fix division by zero (<a
href="https://redirect.github.com/uber-go/automaxprocs/issues/71">#71</a>)</li>
<li>See full diff in <a
href="https://github.com/uber-go/automaxprocs/compare/v1.5.2...v1.5.3">compare
view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps the gomod-deps group with 3 updates:
[golang.org/x/crypto](https://github.com/golang/crypto),
[golang.org/x/oauth2](https://github.com/golang/oauth2) and
[golang.org/x/tools](https://github.com/golang/tools).
Updates `golang.org/x/crypto` from 0.10.0 to 0.11.0
<details>
<summary>Commits</summary>
<ul>
<li><a
href="e98487292d"><code>e984872</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="183630ada7"><code>183630a</code></a>
x509roots: generate a stable sort, for real this time</li>
<li><a
href="a9e447dde7"><code>a9e447d</code></a>
x509roots/fallback: add //go:build go1.20 to bundle.go</li>
<li><a
href="64c3993f5c"><code>64c3993</code></a>
ssh: add hmac-sha2-512</li>
<li><a
href="5fe8145aca"><code>5fe8145</code></a>
x509roots: remove list hash and generation date, change ordering</li>
<li><a
href="043e94c17a"><code>043e94c</code></a>
x509roots: fix generate script argument checking</li>
<li><a
href="0d502d7cd6"><code>0d502d7</code></a>
x509roots: use "generate" build tag</li>
<li><a
href="0ff60057bb"><code>0ff6005</code></a>
ssh/test: set a timeout and WaitDelay on sshd subcommands</li>
<li>See full diff in <a
href="https://github.com/golang/crypto/compare/v0.10.0...v0.11.0">compare
view</a></li>
</ul>
</details>
<br />
Updates `golang.org/x/oauth2` from 0.9.0 to 0.10.0
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ec5679f607"><code>ec5679f</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="989acb1bfe"><code>989acb1</code></a>
all: update dependencies to their latest versions</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.9.0...v0.10.0">compare
view</a></li>
</ul>
</details>
<br />
Updates `golang.org/x/tools` from 0.10.0 to 0.11.0
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h2>gopls/v0.11.0</h2>
<p>This is a small release containing new integrations of vulnerability
analysis.</p>
<p>Vulnerability analysis for go.mod files can be enabled by configuring
the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#vulncheck-enum"><code>"vulncheck"</code></a>
setting to <code>"Imports"</code>. For more information on
vulnerability management, see the <a
href="https://go.dev/blog/vuln">Vulnerability Management for Go</a> blog
post.</p>
<h2>Support changes</h2>
<p>This release removes support for the
<code>"experimentalUseInvalidMetadata"</code> setting, as
described in the <a
href="https://github.com/golang/tools/releases/tag/gopls%2Fv0.10.0">v0.10.0</a>
release. Other settings slated for deprecation in that release remain
temporarily supported, but will be removed in v0.12.0.</p>
<h2>New Features</h2>
<h3>Analyzing dependencies for vulnerabilities</h3>
<p>This release offers two different options for detecting
vulnerabilities in dependencies. Both are backed by the Go vulnerability
database (<a href="https://vuln.go.dev">https://vuln.go.dev</a>) and
complement each other.</p>
<ul>
<li>Imports-based scanning, enabled by the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#vulncheck-enum"><code>"vulncheck":
"Imports"</code></a> setting, reports vulnerabilities by
scanning the set of packages imported in the workspace. This is fast,
but may report more false positives.</li>
<li>Integration of the <a
href="https://pkg.go.dev/golang.org/x/vuln/cmd/govulncheck">golang.org/x/vuln/cmd/govulncheck</a>
command-line tool performs a more precise analysis based on-call graph
reachability, with fewer false positives. Because it is slower to
compute, it must be manually triggered by using "Run govulncheck to
verify" code actions or the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#run-govulncheck"><code>"codelenses.run_govulncheck"</code></a>
code lens on <code>go.mod</code> files.</li>
</ul>
<p><a
href="https://user-images.githubusercontent.com/4999471/206977512-a821107d-9ffb-4456-9b27-6a6a4f900ba6.mp4">https://user-images.githubusercontent.com/4999471/206977512-a821107d-9ffb-4456-9b27-6a6a4f900ba6.mp4</a></p>
<!-- raw HTML omitted -->
<h3>Additional checks for the <code>loopclosure</code> analyzer</h3>
<p>The <a
href="https://github.com/golang/tools/blob/master/gopls/doc/analyzers.md#loopclosure"><code>loopclosure</code></a>
analyzer, which reports problematic references from a nested function to
a variable of an enclosing loop, has been improved to catch more cases.
In particular, it now reports when subtests <a
href="https://pkg.go.dev/testing#T.Parallel">run in parallel</a> with
the loop, a mistake that often results in all but the final test case
being skipped.</p>
<p><img
src="https://user-images.githubusercontent.com/57144380/206764370-7fc3c464-af04-4e4e-bb10-a6a0a89a99e3.png"
alt="image" /></p>
<h2>Configuration changes</h2>
<ul>
<li>The <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#vulncheck-enum"><code>"vulncheck"</code></a>
setting controls vulnerability analysis based on the Go vulnerability
database. If set to <code>"Imports"</code>, gopls will compute
diagnostics related to vulnerabilities in dependencies, and will present
them in go.mod files.</li>
<li>The <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#run-govulncheck"><code>"codelenses.run_govulncheck"</code></a>
setting controls the presence of code lenses that run the <a
href="https://pkg.go.dev/golang.org/x/vuln/cmd/govulncheck">govulncheck</a>
command, which takes longer but produces more accurate vulnerability
reporting based on call-graph reachability.</li>
</ul>
<h2>Bug fixes</h2>
<p>This version of gopls includes fixes to several bugs, notably:</p>
<ul>
<li><code>golang/go#57053</code></li>
<li><code>golang/go#55837</code><a
href="https://redirect.github.com/golang/go/issues/56450">golang/go#56450</a>).</li>
<li><code>golang/go#54816</code></li>
</ul>
<p>A full list of all issues fixed can be found in the <a
href="https://github.com/golang/go/milestone/293?closed=1">gopls/v0.11.0</a>
milestone.
To report a new problem, please file a new issue at <a
href="https://go.dev/issues/new">https://go.dev/issues/new</a>.</p>
<h2>Thank you to our contributors</h2>
<p><a href="https://github.com/Arsen6331"><code>@Arsen6331</code></a>,
<a href="https://github.com/SN9NV"><code>@SN9NV</code></a>, <a
href="https://github.com/adonovan"><code>@adonovan</code></a>, <a
href="https://github.com/bcmills"><code>@bcmills</code></a>, <a
href="https://github.com/dle8"><code>@dle8</code></a>, <a
href="https://github.com/findleyr"><code>@findleyr</code></a>, <a
href="https://github.com/hyangah"><code>@hyangah</code></a>, <a
href="https://github.com/pjweinbgo"><code>@pjweinbgo</code></a>, <a
href="https://github.com/suzmue"><code>@suzmue</code></a></p>
<h2>gopls/v0.10.1</h2>
<p>This release contains a fix for <a
href="https://redirect.github.com/golang/go/issues/56505">golang/go#56505</a>:
a new crash during method completion on variables of type
<code>*error</code>.</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="675bf3c243"><code>675bf3c</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="ad52c1ca35"><code>ad52c1c</code></a>
go/ssa/interp: support conversions to slices of named bytes</li>
<li><a
href="14ec3c023f"><code>14ec3c0</code></a>
gopls/doc/contributing.md: document error handling strategies</li>
<li><a
href="c495364167"><code>c495364</code></a>
go/packages/gopackages: document -mode flag</li>
<li><a
href="87ad891fe3"><code>87ad891</code></a>
gopls/internal/lsp/source/typerefs: move test into _test.go</li>
<li><a
href="27fd94e099"><code>27fd94e</code></a>
internal/fastwalk: doc formatting fixes (including godoc links)</li>
<li><a
href="d362be0cdb"><code>d362be0</code></a>
gopls/internal/lsp/filecache: reduce GC frequency</li>
<li><a
href="969078be46"><code>969078b</code></a>
Revert "go/analysis: add Sizes that matches gc size
computations"</li>
<li><a
href="5aa6acb96f"><code>5aa6acb</code></a>
go/analysis: add Sizes that matches gc size computations</li>
<li><a
href="5a89a3bf26"><code>5a89a3b</code></a>
go/vcs: delete</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.10.0...v0.11.0">compare
view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/muesli/termenv](https://github.com/muesli/termenv)
from 0.15.1 to 0.15.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/muesli/termenv/releases">github.com/muesli/termenv's
releases</a>.</em></p>
<blockquote>
<h2>v0.15.2</h2>
<h2>What's Changed</h2>
<ul>
<li>build(deps): bump actions/setup-go from 3 to 4 by <a
href="https://github.com/dependabot"><code>@dependabot</code></a> in <a
href="https://redirect.github.com/muesli/termenv/pull/126">muesli/termenv#126</a></li>
<li>build(deps): bump github.com/mattn/go-isatty from 0.0.17 to 0.0.18
by <a href="https://github.com/dependabot"><code>@dependabot</code></a>
in <a
href="https://redirect.github.com/muesli/termenv/pull/128">muesli/termenv#128</a></li>
<li>fix: Cloud Shell supports RGB colors by <a
href="https://github.com/muesli"><code>@muesli</code></a> in <a
href="https://redirect.github.com/muesli/termenv/pull/127">muesli/termenv#127</a></li>
<li>build(deps): bump golang.org/x/sys from 0.6.0 to 0.7.0 by <a
href="https://github.com/dependabot"><code>@dependabot</code></a> in <a
href="https://redirect.github.com/muesli/termenv/pull/129">muesli/termenv#129</a></li>
<li>fix: wezterm is truecolor by <a
href="https://github.com/caarlos0"><code>@caarlos0</code></a> in <a
href="https://redirect.github.com/muesli/termenv/pull/139">muesli/termenv#139</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/muesli/termenv/compare/v0.15.1...v0.15.2">https://github.com/muesli/termenv/compare/v0.15.1...v0.15.2</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="51d72d34e2"><code>51d72d3</code></a>
fix: wezterm is truecolor (<a
href="https://redirect.github.com/muesli/termenv/issues/139">#139</a>)</li>
<li><a
href="b57cbb1109"><code>b57cbb1</code></a>
fix: lint</li>
<li><a
href="e02986697d"><code>e029866</code></a>
build(deps): bump golang.org/x/sys from 0.6.0 to 0.7.0</li>
<li><a
href="9b3e79975a"><code>9b3e799</code></a>
fix: Cloud Shell supports RGB colors</li>
<li><a
href="73a40463ff"><code>73a4046</code></a>
build(deps): bump github.com/mattn/go-isatty from 0.0.17 to 0.0.18</li>
<li><a
href="39f5d6e779"><code>39f5d6e</code></a>
build(deps): bump actions/setup-go from 3 to 4</li>
<li>See full diff in <a
href="https://github.com/muesli/termenv/compare/v0.15.1...v0.15.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/charmbracelet/keygen](https://github.com/charmbracelet/keygen)
from 0.4.2 to 0.4.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/charmbracelet/keygen/releases">github.com/charmbracelet/keygen's
releases</a>.</em></p>
<blockquote>
<h2>v0.4.3</h2>
<h2>Changelog</h2>
<h3>Bug fixes</h3>
<ul>
<li>85d0702110001be573050fee0d6d7003a2a81404: fix: do not recreate key
if public key don't exist (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Documentation updates</h3>
<ul>
<li>ae518268d3d88fba0f880e9f2521d9d3b6b70c2b: docs: update license (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<hr />
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
<p>Thoughts? Questions? We love hearing from you. Feel free to reach out
on <a href="https://twitter.com/charmcli">Twitter</a>, <a
href="https://mastodon.technology/@charm">The Fediverse</a>, or on <a
href="https://charm.sh/chat">Discord</a>.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="85d0702110"><code>85d0702</code></a>
fix: do not recreate key if public key don't exist</li>
<li><a
href="ae518268d3"><code>ae51826</code></a>
docs: update license</li>
<li>See full diff in <a
href="https://github.com/charmbracelet/keygen/compare/v0.4.2...v0.4.3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.16.6 to 0.16.7.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.16.7</h2>
<h2>What's Changed</h2>
<ul>
<li>Fix nil pointer dereference in
<code>gatewayHandlerTypingStart</code> by <a
href="https://github.com/jkdlgy"><code>@jkdlgy</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/280">disgoorg/disgo#280</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.16.6...v0.16.7">https://github.com/disgoorg/disgo/compare/v0.16.6...v0.16.7</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="39854144d8"><code>3985414</code></a>
remove member caching from typing & message reaction events</li>
<li><a
href="f4a652fadc"><code>f4a652f</code></a>
Fix nil pointer dereference in gatewayHandlerTypingStart (<a
href="https://redirect.github.com/disgoorg/disgo/issues/280">#280</a>)</li>
<li>See full diff in <a
href="https://github.com/disgoorg/disgo/compare/v0.16.6...v0.16.7">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.85.0 to 0.86.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0886867b3b"><code>0886867</code></a>
Update CI and CONTRIBUTION.md</li>
<li><a
href="57a8f8f705"><code>57a8f8f</code></a>
Fix two linter warnings</li>
<li><a
href="d4057c786d"><code>d4057c7</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1646">#1646</a>
from theoriginalstove/1643-contributing-guide</li>
<li><a
href="c1a78fc6ad"><code>c1a78fc</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1740">#1740</a>
from PatrickRice-KSC/add-admin-permission-const</li>
<li><a
href="9f3d9fad76"><code>9f3d9fa</code></a>
Add admin permission const</li>
<li><a
href="85fa21c71b"><code>85fa21c</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1732">#1732</a>
from Mareo/add-support-for-discord-service</li>
<li><a
href="1a7fd5cf74"><code>1a7fd5c</code></a>
Update README.md</li>
<li><a
href="39ca669228"><code>39ca669</code></a>
Update CONTRIBUTING.md</li>
<li><a
href="9fc3c91b5d"><code>9fc3c91</code></a>
Add support for Discord service</li>
<li>See full diff in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.85.0...v0.86.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [gocloud.dev](https://github.com/google/go-cloud) from 0.29.0 to
0.30.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/go-cloud/releases">gocloud.dev's
releases</a>.</em></p>
<blockquote>
<h2>v0.30.0</h2>
<p><strong>blob</strong></p>
<ul>
<li><strong>all</strong>: Add <code>Upload</code> and
<code>Download</code> methods that may be more efficient for some
drivers.</li>
<li><strong>s3blob</strong>: Add support for per-request
<code>s3v2.Options</code>.</li>
<li><strong>s3blob</strong>: Stop escaping second <code>/</code> in
<code>//</code>; it's no longer necessary.</li>
</ul>
<p><strong>pubsub</strong></p>
<ul>
<li><strong>gcppubsub</strong>: Make it possible to configure
<code>max_send_batch_size</code>.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="d2d5bedb50"><code>d2d5bed</code></a>
all: prep for release (<a
href="https://redirect.github.com/google/go-cloud/issues/3263">#3263</a>)</li>
<li><a
href="c2e172b5a7"><code>c2e172b</code></a>
all: update dependencies (<a
href="https://redirect.github.com/google/go-cloud/issues/3262">#3262</a>)</li>
<li><a
href="098177a48c"><code>098177a</code></a>
blob/s3blob: fix the 'awssdk' argument examples</li>
<li><a
href="2e4fad43f0"><code>2e4fad4</code></a>
all: remove refs to deprecated xerrors</li>
<li><a
href="1db413f1b3"><code>1db413f</code></a>
pubsub/gcppubsub: make it possible to configure max_send_batch_size</li>
<li><a
href="0c8428bf43"><code>0c8428b</code></a>
blob: Add Upload and Download methods that may be more efficient for
some dri...</li>
<li><a
href="54c71241a5"><code>54c7124</code></a>
all: cleanup duplicate import statements</li>
<li><a
href="28b1328ae4"><code>28b1328</code></a>
all: minor code simplifications for returned boolean expressions</li>
<li><a
href="2a407f5e6a"><code>2a407f5</code></a>
blob/gcsblob: Refresh goldens</li>
<li><a
href="0cc16c8ae1"><code>0cc16c8</code></a>
all: update goldens (<a
href="https://redirect.github.com/google/go-cloud/issues/3252">#3252</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/google/go-cloud/compare/v0.29.0...v0.30.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.9.0
to 0.10.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="8e447d8cc5"><code>8e447d8</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="22c9997952"><code>22c9997</code></a>
go.mod: tell x repo tagging to ignore dep on net</li>
<li><a
href="d0b316056b"><code>d0b3160</code></a>
x509roots: add new module</li>
<li><a
href="16222386f4"><code>1622238</code></a>
Add support for "<a
href="mailto:hmac-sha2-512-etm@openssh.com">hmac-sha2-512-etm@openssh.com</a>"</li>
<li>See full diff in <a
href="https://github.com/golang/crypto/compare/v0.9.0...v0.10.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.16.5 to 0.16.6.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.16.6</h2>
<h2>What's Changed</h2>
<ul>
<li>add support for the new username system by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/273">disgoorg/disgo#273</a></li>
<li>fix presence event handler by <a
href="https://github.com/topi314"><code>@topi314</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/275">disgoorg/disgo#275</a></li>
<li>fix get webhooks by <a
href="https://github.com/ikafly144"><code>@ikafly144</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/272">disgoorg/disgo#272</a></li>
<li>fix incorrect type for <code>WithChannelTypes</code> by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="4547c17ccf</a></li>
<li>remove <code>AllowedMentions</code> from
<code>NewMessageUpdateBuilder()</code> by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="0b0b6db253</a></li>
<li>add <code>SyncID</code> to <code>Activity</code> by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="3defaebde6</a></li>
<li>move set into cache package by <a
href="https://github.com/topi314"><code>@topi314</code></a> in <a
href="a783e34ad0</a></li>
</ul>
<h2>Breaking Changes</h2>
<ul>
<li>moved <code>github.com/disgoorg/disgo/internal/set</code> into
<code>github.com/disgoorg/disgo/cache</code></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/ikafly144"><code>@ikafly144</code></a>
made their first contribution in <a
href="https://redirect.github.com/disgoorg/disgo/pull/272">disgoorg/disgo#272</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.16.5...v0.16.6">https://github.com/disgoorg/disgo/compare/v0.16.5...v0.16.6</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f810691d7b"><code>f810691</code></a>
reforamt isActivityUpdated check</li>
<li><a
href="863ddf334f"><code>863ddf3</code></a>
fix presence event handler (<a
href="https://redirect.github.com/disgoorg/disgo/issues/275">#275</a>)</li>
<li><a
href="844ef78b99"><code>844ef78</code></a>
remove invalid interaction methods from autocomplete</li>
<li><a
href="4547c17ccf"><code>4547c17</code></a>
fix incorrect type for WithChannelTypes</li>
<li><a
href="9b3d573a10"><code>9b3d573</code></a>
add docs to User and Member funcs</li>
<li><a
href="ab0ddbc19b"><code>ab0ddbc</code></a>
Add support for the new username system (<a
href="https://redirect.github.com/disgoorg/disgo/issues/273">#273</a>)</li>
<li><a
href="0b0b6db253"><code>0b0b6db</code></a>
remove AllowedMentions from NewMessageUpdateBuilder()</li>
<li><a
href="e0e8d5b1ee"><code>e0e8d5b</code></a>
fix get webhooks (<a
href="https://redirect.github.com/disgoorg/disgo/issues/272">#272</a>)</li>
<li><a
href="3defaebde6"><code>3defaeb</code></a>
add SyncID to Activity</li>
<li><a
href="a783e34ad0"><code>a783e34</code></a>
move set into cache package</li>
<li>See full diff in <a
href="https://github.com/disgoorg/disgo/compare/v0.16.5...v0.16.6">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.84.0 to 0.85.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2e614fe73c"><code>2e614fe</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1734">#1734</a>
from jasonwliu/master</li>
<li><a
href="e7ee48984a"><code>e7ee489</code></a>
fix type for SystemOutput</li>
<li><a
href="ddfebb340c"><code>ddfebb3</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1731">#1731</a>
from avkudryashov/master</li>
<li><a
href="3420585002"><code>3420585</code></a>
Add the missing field named path.</li>
<li><a
href="6d7ebb9d08"><code>6d7ebb9</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1729">#1729</a>
from C0mp4ct/add_regex_to_branches</li>
<li><a
href="628b54e473"><code>628b54e</code></a>
Add regex option to Branches API</li>
<li>See full diff in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.84.0...v0.85.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/goreleaser/nfpm/v2](https://github.com/goreleaser/nfpm) from
2.30.0 to 2.30.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/goreleaser/nfpm/releases">github.com/goreleaser/nfpm/v2's
releases</a>.</em></p>
<blockquote>
<h2>v2.30.1</h2>
<h2>Changelog</h2>
<h3>Other work</h3>
<ul>
<li>a72ecd200bcaa81de3fc23f21f8b7f02060ee448: docs: update cmd docs (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/nfpm/compare/v2.30.0...v2.30.1">https://github.com/goreleaser/nfpm/compare/v2.30.0...v2.30.1</a></p>
<h2>Helping out</h2>
<p>This release is only possible thanks to <strong>all</strong> the
support of <strong>awesome people</strong>!</p>
<p>Want to be one of them?
You can <a href="https://goreleaser.com/sponsors/">sponsor</a> or <a
href="https://goreleaser.com/contributing">contribute with code</a>.</p>
<h2>Where to go next?</h2>
<ul>
<li>nFPM is a satellite project from GoReleaser. <a
href="https://goreleaser.com">Check it out</a>!</li>
<li>Find examples and commented usage of all options in our <a
href="https://nfpm.goreleaser.com/">website</a>.</li>
<li>Reach out on <a href="https://discord.gg/RGEBtg8vQ6">Discord</a> and
<a href="https://twitter.com/goreleaser">Twitter</a>!</li>
</ul>
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3e5d930439"><code>3e5d930</code></a>
chore: remove space from asset name (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/674">#674</a>)</li>
<li><a
href="a72ecd200b"><code>a72ecd2</code></a>
docs: update cmd docs</li>
<li>See full diff in <a
href="https://github.com/goreleaser/nfpm/compare/v2.30.0...v2.30.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.9.2
to 0.9.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h2>gopls/v0.9.3</h2>
<p><em>Move fast and fix things...</em><code>golang/go#54395</code></p>
<p>As always, thank you for filing issues!</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0dda7d614e"><code>0dda7d6</code></a>
go/pointer: remove replace directive</li>
<li><a
href="98f1b4dee8"><code>98f1b4d</code></a>
gopls/internal/lsp/cache: check number of orphaned files after
filtering</li>
<li><a
href="a260315e30"><code>a260315</code></a>
go/pointer: create submodule</li>
<li>See full diff in <a
href="https://github.com/golang/tools/compare/v0.9.2...v0.9.3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.83.0 to 0.84.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="46b2e30896"><code>46b2e30</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1727">#1727</a>
from Pvlerick/add-approval_rules-in-protected_enviro...</li>
<li><a
href="cad317938a"><code>cad3179</code></a>
Final few tweaks</li>
<li><a
href="d59139c6d1"><code>d59139c</code></a>
fixup: adding ID to test suite</li>
<li><a
href="542beb6b06"><code>542beb6</code></a>
Review comments</li>
<li><a
href="948b6bf966"><code>948b6bf</code></a>
Add approval_rules in protected_environments</li>
<li><a
href="8f031c3c21"><code>8f031c3</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1725">#1725</a>
from wtertius/add_queued_duration_to_bridge</li>
<li><a
href="0e5a87514a"><code>0e5a875</code></a>
Add <code>queued_duration</code> field to bridge</li>
<li><a
href="32985e37f3"><code>32985e3</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1724">#1724</a>
from mgross-ebner/master</li>
<li><a
href="5b481c92f2"><code>5b481c9</code></a>
fix type for Weight</li>
<li><a
href="f5772c8149"><code>f5772c8</code></a>
adapt test payload</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.83.0...v0.84.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.9.1
to 0.9.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h2>gopls/v0.9.2</h2>
<p>This release contains many bug fixes, particularly related to
problems that would require restarting gopls.</p>
<p><strong>Note about network usage</strong>: among these fixes was a
change to allow network usage when reloading the workspace. Reloading
occurs when a <code>go.mod</code>, <code>go.sum</code>, or
<code>go.work</code> file changes on disk. In the past, gopls would only
allow network during the first workspace load. This resulted in
confusing behavior when, for example, a new dependency is added to a
<code>go.mod</code> file and gopls could not load it, but loading
succeeded on restart. See <a
href="https://go.dev/issues/54069">#54069</a> for more details.</p>
<h2>Configuration changes</h2>
<h3>directoryFilters at arbitrary depth</h3>
<p>The <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#directoryfilters-string"><code>"directoryFilters"</code></a>
setting now supports excluding directories at arbitrary depth, using the
<code>**</code> operator. (note that for v0.9.2, the default value for
this setting is still <code>["-node_modules]"</code>. In the
next release, this will change to
<code>["-**/node_modules"]</code>).</p>
<h2>Bug fixes and Performance improvements...</h2>
<p>This release contains the following notable bug fixes / performance
improvements:</p>
<ul>
<li><strong>Additional change optimization</strong> - Following up on
the work to optimize change processing from the <a
href="https://github.com/golang/tools/releases/tag/gopls%2Fv0.9.0">v0.9.0
release</a>, this release contains additional optimizations that result
in around 50% faster change processing (measured via edits in the
Kubernetes repo).</li>
<li><strong>Fix for a long-standing memory leak</strong> - <a
href="https://go.dev/issues/53780">#53780</a> fixed a long-standing bug
that caused gopls to hold on to its initial state, gradually leaking
memory as state changed during the editing session.</li>
<li><strong>Fewer restarts</strong> - This release contains many fixes
for cache-invalidation bugs that would cause gopls to get confused and
require restarting. Additionally, see the note at top about enabling the
network when reloading the workspace. We believe we are close to our
goal that restarting gopls should never be required to fix workspace
errors. If you encounter such a bug, please file an issue!</li>
</ul>
<p>A full list of all issues fixed can be found in the <a
href="https://github.com/golang/go/milestone/274?closed=1">gopls/v0.9.2
milestone</a>.
To report a new problem, please file a new issue at <a
href="https://go.dev/issues/new">https://go.dev/issues/new</a>.</p>
<h2>Thank you to our contributors!</h2>
<p>Thank you for your contribution, <a
href="https://github.com/alandonovan"><code>@alandonovan</code></a>, <a
href="https://github.com/antoineco"><code>@antoineco</code></a>, <a
href="https://github.com/dle8"><code>@dle8</code></a>, <a
href="https://github.com/euroelessar"><code>@euroelessar</code></a>, <a
href="https://github.com/findleyr"><code>@findleyr</code></a>, <a
href="https://github.com/hyangah"><code>@hyangah</code></a>, <a
href="https://github.com/jamalc"><code>@jamalc</code></a>, <a
href="https://github.com/mssdvd"><code>@mssdvd</code></a>, <a
href="https://github.com/pjweinbgo"><code>@pjweinbgo</code></a>, <a
href="https://github.com/rentziass"><code>@rentziass</code></a>, and <a
href="https://github.com/suzmue"><code>@suzmue</code></a>!</p>
<h2>What's next</h2>
<p>The next planned gopls release is <a
href="https://github.com/golang/go/milestone/278">v0.10.0</a>. We’re
excited about features and improvements on the horizon, for example:</p>
<ul>
<li>Package renaming (<a
href="https://go.dev/issues/41567">#41567</a>)</li>
<li>More accurate static-analysis (<a
href="https://go.dev/issues/48738">#48738</a>)</li>
<li>Improved support for the new 1.19 doc comment format (<a
href="https://go.dev/issues/54260">#54260</a>)</li>
<li>Making it easier to work with <code>go.work</code> files (many
issues, for example <a href="https://go.dev/issues/53880">#53880</a> or
<a href="https://go.dev/issues/54261">#54261</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="96844c3594"><code>96844c3</code></a>
cmd/{guru,callgraph}: stop using go/pointer</li>
<li><a
href="cd694d8db4"><code>cd694d8</code></a>
go/packages: include
"unsafe".GoFiles=["unsafe.go"]</li>
<li><a
href="33c741de78"><code>33c741d</code></a>
gopls/internal/lsp: add min/max builtin</li>
<li><a
href="933c7ccb15"><code>933c7cc</code></a>
internal/lsp/source: use exact match in import highlighting</li>
<li><a
href="5974258e68"><code>5974258</code></a>
gopls/internal/lsp: clear vuln diagnostics on config changes</li>
<li><a
href="f3faea1982"><code>f3faea1</code></a>
go/packages: pass -pgo=off on go1.21 and later</li>
<li><a
href="5f74ec7da5"><code>5f74ec7</code></a>
internal/lsp/debug: add links to profiles and GC</li>
<li><a
href="ed90c6d201"><code>ed90c6d</code></a>
internal/diff: unexport various identifiers</li>
<li><a
href="827f5aa2c3"><code>827f5aa</code></a>
gopls/internal/lsp/source: test references bug on struct{p.T}</li>
<li><a
href="a12e1a6aee"><code>a12e1a6</code></a>
go/ssa/interp: implement min/max builtins</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.9.1...v0.9.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify)
from 1.8.3 to 1.8.4.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f97607b898"><code>f97607b</code></a>
Create GitHub release when new release tag is pushed (<a
href="https://redirect.github.com/stretchr/testify/issues/1354">#1354</a>)</li>
<li>See full diff in <a
href="https://github.com/stretchr/testify/compare/v1.8.3...v1.8.4">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/imdario/mergo](https://github.com/imdario/mergo) from
0.3.15 to 0.3.16.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/imdario/mergo/releases">github.com/imdario/mergo's
releases</a>.</em></p>
<blockquote>
<h2>Announcement: v1.0.0 will be released on June 18th</h2>
<p><em>This release doesn't contain code changes.</em></p>
<p>After 10 years, with many corner cases covered, very few issues
pending (at least, comparing them with the usage of the library as part
of Docker, Kubernetes, Datadog's agent, etc.), and a very stable API, I
think it's time to release a 1.0.0 version.</p>
<p>This version will be released under a vanity URL: dario.cat/mergo</p>
<p>PS: although I'll make sure that github.com/imdario/mergo will be
available, I'm going to also change my GitHub handle, so expect for a
few minutes to not be able to pull from github.com/imdario as I fork it
from the new handle to the old one.</p>
<p>PS2: I'm creating a discussion for this release to make sure we can
have a conversation around the topic, and anything else about Mergo that
you care about.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="14fe2b165b"><code>14fe2b1</code></a>
fix: OpenSSF scorecard generation</li>
<li><a
href="4cde94b0b5"><code>4cde94b</code></a>
fix: remove Travis link and fix tests actions</li>
<li><a
href="df62a52b84"><code>df62a52</code></a>
chore: README and GitHub actions</li>
<li>See full diff in <a
href="https://github.com/imdario/mergo/compare/v0.3.15...v0.3.16">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/goreleaser/nfpm/v2](https://github.com/goreleaser/nfpm) from
2.28.0 to 2.29.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/goreleaser/nfpm/releases">github.com/goreleaser/nfpm/v2's
releases</a>.</em></p>
<blockquote>
<h2>v2.29.0</h2>
<h2>Changelog</h2>
<h3>Security updates</h3>
<ul>
<li>ed9abdf63d5012cc884f2a83b4ab2b42b3680d30: sec: fix for
CVE-2023-32698 (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Bug fixes</h3>
<ul>
<li>9ac328846c8b562562c6edfa910f3163ddbe4adc: fix: deb arm64 (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>312fd85338c26a44d330ed07f318d0640a11dcbb: fix: improve goarch to pkg
conversion (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>f64a311eefea340cd3f20cd4568de41b4c5e9aa6: fix: improve umask tests
and documentation (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>b1f3fef606dd1106ca163e5c7f4da0023f308c96: fix: md5sums entries and
lintian errors/warnings (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/656">#656</a>)
(<a href="https://github.com/malaupa"><code>@malaupa</code></a>)</li>
<li>c20618cdd39ed938f9bf9b97461ce830429fa60c: fix: mips architecture (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>9524bb8a26d3915e84a4df956d2ec064e836c4a3: fix: mips
softfloat/hardfloat handling (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Dependency updates</h3>
<ul>
<li>c2f47813a3d824bef5c3455669bd9b50081b89fc: feat(deps): bump
github.com/Masterminds/semver/v3 from 3.2.0 to 3.2.1 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/649">#649</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
<li>c24e1b4d99a451a1e023565b2930bc5512224c0e: feat(deps): bump
github.com/klauspost/compress from 1.16.3 to 1.16.4 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/646">#646</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
<li>fccdae5dfcb9214ec38d631628074e1c129c204d: feat(deps): bump
github.com/klauspost/compress from 1.16.4 to 1.16.5 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/651">#651</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
<li>a1fb0477f0f57fde4d673bee8afb8a20273eb7af: feat(deps): bump
github.com/klauspost/pgzip from 1.2.5 to 1.2.6 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/654">#654</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
<li>561c39b135794aefb877769910e322d614b20d9d: feat(deps): bump
github.com/stretchr/testify from 1.8.2 to 1.8.3 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/661">#661</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
</ul>
<h3>Build process updates</h3>
<ul>
<li>4593dcb36ae178ccb5e6514b93499bf81d70529e: build: improve changelog
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>e01884ecba1964027fa87bbdb9bf5341408b2ef7: build: improve release
notes (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Other work</h3>
<ul>
<li>ab59aadf2347b47379cc6c764c00f4e3a5d196e6: docs: fix schema.json URL
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>590a3ff6f78deeca9bc6803518a173e53c3e65f9: docs: fix verify
instructions (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/647">#647</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>dce0853e6360835e450db726a3c13e0886f7aad6: docs: goarch to packager
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>2b9864a79ed85b4818d1ae1fa3cdfd76a3f8e4f7: docs: update SECURITY.md
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>858b78b7c12cf9b54a79956655ef8acf3207e3c4: docs: update cmd docs (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>1ba5a445d794977df0ee19ec333b36562f2b0e94: docs: update cmd docs (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/nfpm/compare/v2.28.0...v2.29.0">https://github.com/goreleaser/nfpm/compare/v2.28.0...v2.29.0</a></p>
<h2>Helping out</h2>
<p>This release is only possible thanks to <strong>all</strong> the
support of <strong>awesome people</strong>!</p>
<p>Want to be one of them?
You can <a href="https://goreleaser.com/sponsors/">sponsor</a> or <a
href="https://goreleaser.com/contributing">contribute with code</a>.</p>
<h2>Where to go next?</h2>
<ul>
<li>nFPM is a satellite project from GoReleaser. <a
href="https://goreleaser.com">Check it out</a>!</li>
<li>Find examples and commented usage of all options in our <a
href="https://nfpm.goreleaser.com/">website</a>.</li>
<li>Reach out on <a href="https://discord.gg/RGEBtg8vQ6">Discord</a> and
<a href="https://twitter.com/goreleaser">Twitter</a>!</li>
</ul>
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ed9abdf63d"><code>ed9abdf</code></a>
sec: fix for CVE-2023-32698</li>
<li><a
href="4593dcb36a"><code>4593dcb</code></a>
build: improve changelog</li>
<li><a
href="e01884ecba"><code>e01884e</code></a>
build: improve release notes</li>
<li><a
href="f6f8048d47"><code>f6f8048</code></a>
test: stabilize arch test</li>
<li><a
href="7d6a77bee6"><code>7d6a77b</code></a>
test: fix arch tests</li>
<li><a
href="815b388464"><code>815b388</code></a>
test: fix</li>
<li><a
href="9524bb8a26"><code>9524bb8</code></a>
fix: mips softfloat/hardfloat handling</li>
<li><a
href="a8c16744a1"><code>a8c1674</code></a>
test: fix files test</li>
<li><a
href="66c3d277cf"><code>66c3d27</code></a>
test: fixes</li>
<li><a
href="f64a311eef"><code>f64a311</code></a>
fix: improve umask tests and documentation</li>
<li>Additional commits viewable in <a
href="https://github.com/goreleaser/nfpm/compare/v2.28.0...v2.29.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.16.4 to 0.16.5.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="125d0727da"><code>125d072</code></a>
fix unmarshalling & marshalling of InteractionChannel</li>
<li><a
href="67ddd7c006"><code>67ddd7c</code></a>
change Interaction.Channel from PartialChannel to
InteractionChannel</li>
<li><a
href="3eb45b6149"><code>3eb45b6</code></a>
fix nil pointer on user leaving voice channel and no audioReceiver being
setup</li>
<li><a
href="554e2695e2"><code>554e269</code></a>
add GatewayMessageDataUnknown & don't error on unknown voice gateway
message</li>
<li><a
href="6b794ba092"><code>6b794ba</code></a>
rename BoostProgressBarEnabled to PremiumProgressBarEnabled</li>
<li><a
href="c3f2beb13f"><code>c3f2beb</code></a>
add Stickers to GuildPreview</li>
<li><a
href="6cda94940a"><code>6cda949</code></a>
Add raid protection (<a
href="https://redirect.github.com/disgoorg/disgo/issues/223">#223</a>)</li>
<li>See full diff in <a
href="https://github.com/disgoorg/disgo/compare/v0.16.4...v0.16.5">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify)
from 1.8.2 to 1.8.3.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4c93d8f201"><code>4c93d8f</code></a>
EqualExportedValues: Handle nested pointer, slice and map fields (<a
href="https://redirect.github.com/stretchr/testify/issues/1379">#1379</a>)</li>
<li><a
href="4b2f4d2bcf"><code>4b2f4d2</code></a>
add EventuallyWithT assertion (<a
href="https://redirect.github.com/stretchr/testify/issues/1264">#1264</a>)</li>
<li><a
href="b3106d772c"><code>b3106d7</code></a>
allow testing for functional options (<a
href="https://redirect.github.com/stretchr/testify/issues/1023">#1023</a>)</li>
<li><a
href="437071b948"><code>437071b</code></a>
assert: fix error message formatting for NotContains (<a
href="https://redirect.github.com/stretchr/testify/issues/1362">#1362</a>)</li>
<li><a
href="c5fc9d6b6b"><code>c5fc9d6</code></a>
Compare public elements of struct (<a
href="https://redirect.github.com/stretchr/testify/issues/1309">#1309</a>)</li>
<li>See full diff in <a
href="https://github.com/stretchr/testify/compare/v1.8.2...v1.8.3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.16.3 to 0.16.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.16.4</h2>
<h2>What's Changed</h2>
<ul>
<li>fix missing user in resolved member by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="e9b9dd1605</a></li>
<li>fix missing user in target member by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="779858bdba</a></li>
<li>fix nil guild id in message delete event by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="66a0ba4e04</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.16.3...v0.16.4">https://github.com/disgoorg/disgo/compare/v0.16.3...v0.16.4</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="66a0ba4e04"><code>66a0ba4</code></a>
fix nil guild id in message delete event</li>
<li><a
href="779858bdba"><code>779858b</code></a>
fix missing user in target member</li>
<li><a
href="e9b9dd1605"><code>e9b9dd1</code></a>
fix missing user in resolved member</li>
<li>See full diff in <a
href="https://github.com/disgoorg/disgo/compare/v0.16.3...v0.16.4">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once it's up-to-date and CI passes on it,
as requested by @caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.7.0
to 0.8.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="839de2255f"><code>839de22</code></a>
google: don't check for IsNotExist for well-known file</li>
<li><a
href="0690208dba"><code>0690208</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="451d5d662f"><code>451d5d6</code></a>
internal: remove repeated definite articles</li>
<li><a
href="cfe200d5bb"><code>cfe200d</code></a>
oauth2: parse RFC 6749 error response</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.7.0...v0.8.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.8.0
to 0.9.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h2>gopls/v0.9.1</h2>
<p>This release fixes a regression in the v0.9.0 release: a crash when
running the <code>go:generate</code><code>golang/go#53781</code></p>
<p>Thank you to all those who filed crash reports, and apologies for the
breakage!</p>
<h2>gopls@v0.9.0</h2>
<p>This release contains significant performance improvements
(especially in incremental processing after source changes), bug fixes,
and support for the LSP “<a
href="https://redirect.github.com/microsoft/language-server-protocol/issues/956">inlay
hints</a>” feature, along with several other minor enhancements.</p>
<h2>Performance improvements</h2>
<p>Source edits cause gopls to invalidate and recompute information
about the workspace, most of which has not changed. Previously, gopls
would spend significant CPU copying data structures, sometimes more than
100ms per keystroke in a large workspace. This release includes many
optimizations to avoid copying data needlessly, including a new <a
href="https://cs.opensource.google/go/x/tools/+/gopls-release-branch.0.9:internal/persistent/map.go;l=26-37">map
representation</a> to achieve copying in constant time. Special thanks
to <a
href="https://github.com/euroelessar"><code>@euroelessar</code></a> for
the design and implementation of this data structure.</p>
<p>As a result of these improvements, gopls should be more responsive
while typing in large codebases, though it will still use a lot of
memory.</p>
<p>Time to process a change notification in the Kubernetes repo:
<img
src="https://user-images.githubusercontent.com/57144380/176967584-a8040048-6357-40d5-9d80-c448281f6482.png"
alt="image" /></p>
<h2>New Features</h2>
<h3>Inlay hints</h3>
<p>Added support for displaying inlay hints of composite literal field
names and types, constant values, function parameter names, function
type params, and short variable declarations. You can try these out in
the <a
href="https://github.com/golang/vscode-go/blob/master/docs/nightly.md">vscode-go
nightly</a> by <a
href="https://github.com/golang/vscode-go/blob/master/docs/settings.md#goinlayhintsassignvariabletypes">enabling
inlay hints settings</a>.</p>
<p><img
src="https://user-images.githubusercontent.com/57144380/176967591-a7b767b3-d447-4691-9486-10f957dc9a0f.gif"
alt="image3" /></p>
<h3>Package References</h3>
<p>Find references on <code>package foo</code> now lists locations where
the given package is imported.</p>
<h3>Quick-fix to add field names to struct literals</h3>
<p>A new quick fix adds field names to struct literals with unkeyed
fields.</p>
<p><img
src="https://user-images.githubusercontent.com/57144380/176967261-6acbe0e7-7698-46ea-8deb-cbd913296034.gif"
alt="image1" /></p>
<h2>Bug fixes</h2>
<p>This release includes the following notable bugfixes:</p>
<ul>
<li>Fixes for goimports performance and correctness when using a go.work
file (<a href="https://go.dev/issue/52784">#52784</a>)</li>
<li>Fix a crash during renaming in a package that uses generics (<a
href="https://go.dev/issue/52940">#52940</a>)</li>
<li>Fix gopls getting confused when moving a file from the
<code>foo_test</code> package to <code>foo</code> package (<a
href="https://redirect.github.com/golang/go/issues/45317">#45317</a>)</li>
</ul>
<p>A full list of all issues fixed can be found in the <a
href="https://github.com/golang/go/milestone/260">gopls/v0.9.0
milestone</a>.
To report a new problem, please file a new issue at <a
href="https://go.dev/issues/new">https://go.dev/issues/new</a>.</p>
<h2>Thank you to our contributors!</h2>
<p>Thank you for your contribution, <a
href="https://github.com/alandonovan"><code>@alandonovan</code></a>, <a
href="https://github.com/euroelessar"><code>@euroelessar</code></a>, <a
href="https://github.com/findleyr"><code>@findleyr</code></a>, <a
href="https://github.com/hyangah"><code>@hyangah</code></a>, <a
href="https://github.com/jamalc"><code>@jamalc</code></a>, <a
href="https://github.com/jba"><code>@jba</code></a>, <a
href="https://github.com/marwan-at-work"><code>@marwan-at-work</code></a>,
<a href="https://github.com/suzmue"><code>@suzmue</code></a>, and <a
href="https://github.com/dle8"><code>@dle8</code></a>!</p>
<h2>What’s Next?</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4609d79b05"><code>4609d79</code></a>
cmd/bisect: add -compile and -godebug shorthands</li>
<li><a
href="ddfa2200ae"><code>ddfa220</code></a>
internal/fuzzy: improvements to the symbol scoring algorithm</li>
<li><a
href="344924276c"><code>3449242</code></a>
go/types/objectpath: don't panic when receiver is missing a method</li>
<li><a
href="0809ec2e45"><code>0809ec2</code></a>
gopls/internal/lsp/source: document {All,Workspace}Metadata</li>
<li><a
href="8f7fb01dd4"><code>8f7fb01</code></a>
go/analysis/unitchecker: add test of go vet on std</li>
<li><a
href="23e52a3e12"><code>23e52a3</code></a>
bisect: diagnose bad targets better</li>
<li><a
href="d5af8894fe"><code>d5af889</code></a>
gopls: set GOWORK=off for loads from debug and safetoken tests</li>
<li><a
href="c93329a947"><code>c93329a</code></a>
go/analysis/passes/printf: reshorten diagnostic about %s in Println
call</li>
<li><a
href="62197261cf"><code>6219726</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="f4d143ebcd"><code>f4d143e</code></a>
go/ssa: cleanup TestGenericBodies to pickup package name</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.8.0...v0.9.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/caarlos0/log](https://github.com/caarlos0/log) from
0.4.0 to 0.4.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/caarlos0/log/releases">github.com/caarlos0/log's
releases</a>.</em></p>
<blockquote>
<h2>v0.4.1</h2>
<h2>Changelog</h2>
<hr />
<p><em>Released with <a href="https://goreleaser.com/pro">GoReleaser
Pro</a>!</em></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="aea58aebca"><code>aea58ae</code></a>
chore(deps): bump github.com/stretchr/testify from 1.7.1 to 1.8.2 (<a
href="https://redirect.github.com/caarlos0/log/issues/16">#16</a>)</li>
<li>See full diff in <a
href="https://github.com/caarlos0/log/compare/v0.4.0...v0.4.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
- log keys will be ordered as intended instead of sorted
- paths always relative to cwd
---------
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.16.2 to 0.16.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.16.3</h2>
<h2>What's Changed</h2>
<ul>
<li>Add voice messages by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/265">disgoorg/disgo#265</a></li>
<li>Add <code>Reaction()</code> to emojis by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/266">disgoorg/disgo#266</a></li>
<li>Fix(caches): properly calculate permissions' bitfield by <a
href="https://github.com/ZenShibata"><code>@ZenShibata</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/268">disgoorg/disgo#268</a></li>
<li>Fix: reset write & read deadline in voice conn open by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="ccbf79c87c</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.16.2...v0.16.3">https://github.com/disgoorg/disgo/compare/v0.16.2...v0.16.3</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ccbf79c87c"><code>ccbf79c</code></a>
reset write & read deadline in voice conn open</li>
<li><a
href="57b63ff2ee"><code>57b63ff</code></a>
Add Reaction() to emojis (<a
href="https://redirect.github.com/disgoorg/disgo/issues/266">#266</a>)</li>
<li><a
href="38bc148d39"><code>38bc148</code></a>
fix(caches): properly calculate permissions' bitfield (<a
href="https://redirect.github.com/disgoorg/disgo/issues/268">#268</a>)</li>
<li><a
href="7086ffd506"><code>7086ffd</code></a>
rename automod badge to
ApplicationFlagAutoModerationRuleCreateBadge</li>
<li><a
href="f7f72a88b7"><code>f7f72a8</code></a>
move PermissionSendVoiceMessages to PermissionsAllText</li>
<li><a
href="c02850603d"><code>c028506</code></a>
Add voice messages (<a
href="https://redirect.github.com/disgoorg/disgo/issues/265">#265</a>)</li>
<li>See full diff in <a
href="https://github.com/disgoorg/disgo/compare/v0.16.2...v0.16.3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
using the same output as most cloud-native Go-written CLI's use, i.e.
using
[sigs.k8s.io/release-utils](https://github.com/kubernetes-sigs/release-utils).
---------
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
Bumps
[github.com/charmbracelet/keygen](https://github.com/charmbracelet/keygen)
from 0.4.1 to 0.4.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/charmbracelet/keygen/releases">github.com/charmbracelet/keygen's
releases</a>.</em></p>
<blockquote>
<h2>v0.4.2</h2>
<h2>Changelog</h2>
<h3>Bug fixes</h3>
<ul>
<li>d0a251916f5749a6411978ddd02f9fe856cf2c8c: fix: expand file path (<a
href="https://github.com/aymanbagabas"><code>@aymanbagabas</code></a>)</li>
</ul>
<hr />
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
<p>Thoughts? Questions? We love hearing from you. Feel free to reach out
on <a href="https://twitter.com/charmcli">Twitter</a>, <a
href="https://mastodon.technology/@charm">The Fediverse</a>, or on <a
href="https://charm.sh/chat">Discord</a>.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="d0a251916f"><code>d0a2519</code></a>
fix: expand file path</li>
<li>See full diff in <a
href="https://github.com/charmbracelet/keygen/compare/v0.4.1...v0.4.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.82.0 to 0.83.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9560b5bd1b"><code>9560b5b</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1704">#1704</a>
from cloudquery/master</li>
<li><a
href="5950ae0e18"><code>5950ae0</code></a>
newline</li>
<li><a
href="ad8af11b52"><code>ad8af11</code></a>
ignore vendor</li>
<li><a
href="36a0985154"><code>36a0985</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1702">#1702</a>
from cloudquery/feat/group_members/email</li>
<li><a
href="cc52c831af"><code>cc52c83</code></a>
fix typo</li>
<li><a
href="1234260007"><code>1234260</code></a>
revert gitignore change</li>
<li><a
href="931c6625bc"><code>931c662</code></a>
Add <code>email</code> field to <code>GroupMember</code></li>
<li><a
href="195295c1d3"><code>195295c</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1689">#1689</a>
from smit-modi/issue-comment-event</li>
<li><a
href="f459ed34e6"><code>f459ed3</code></a>
Fixed order</li>
<li><a
href="e7028c3cfe"><code>e7028c3</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1670">#1670</a>
from skast96/feature/project_templates</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.82.0...v0.83.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/charmbracelet/keygen](https://github.com/charmbracelet/keygen)
from 0.3.0 to 0.4.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/charmbracelet/keygen/releases">github.com/charmbracelet/keygen's
releases</a>.</em></p>
<blockquote>
<h2>v0.4.1</h2>
<h2>Changelog</h2>
<h3>Bug fixes</h3>
<ul>
<li>ba5b3746062cbc051702c188911f44c1e2b5c986: fix: don't trim key path
(<a
href="https://github.com/aymanbagabas"><code>@aymanbagabas</code></a>)</li>
</ul>
<hr />
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
<p>Thoughts? Questions? We love hearing from you. Feel free to reach out
on <a href="https://twitter.com/charmcli">Twitter</a>, <a
href="https://mastodon.technology/@charm">The Fediverse</a>, or on <a
href="https://charm.sh/chat">Discord</a>.</p>
<h2>v0.4.0</h2>
<h1>Breaking Change</h1>
<ul>
<li>Keygen no longer appends the key type to the file path.</li>
<li>Use functional options to specify key type, passphrase, and other
options.</li>
<li><code>PrivateKeyPEM</code> is now <code>RawPrivateKey</code></li>
<li><code>RawProtectedPrivateKey</code> returns the password protected
PEM encoded private key.</li>
<li><code>PublicKey</code> is now <code>RawAuthorizedKey</code>.</li>
<li><code>AuthorizedKey</code> returns the authorized key stripped out
of comments and options (the ssh pubic key only).</li>
<li><code>PrivateKey</code> now returns the underlying
<code>crypto.PrivateKey</code></li>
<li>Use <code>Signer</code> to get an <code>ssh.Signer</code> from your
key pair.</li>
</ul>
<h2>Changelog</h2>
<h3>New Features</h3>
<ul>
<li>ab32d1ae447e5d74a47dd64ec2e75d0a827ccc9b: feat(ci): add workflows
and goreleaser (<a
href="https://github.com/aymanbagabas"><code>@aymanbagabas</code></a>)</li>
<li>6ed037835403e5da4a2aa10e5c8568ff4a3bad41: feat: add more tests (<a
href="https://github.com/aymanbagabas"><code>@aymanbagabas</code></a>)</li>
<li>37c7434ac69d79048521a7e4bfa0f9dfbb0c1f23: feat: bump dependencies
(<a
href="https://github.com/aymanbagabas"><code>@aymanbagabas</code></a>)</li>
<li>8d80e760657463eda55e2f0c773ed3fe3b3e3b08: feat: return ssh.Signer
(<a
href="https://github.com/aymanbagabas"><code>@aymanbagabas</code></a>)</li>
<li>6c0cbbb70022377d611d25d98836e016b2c145a5: feat: specify ECDSA
elliptic curve (<a
href="https://github.com/aymanbagabas"><code>@aymanbagabas</code></a>)</li>
</ul>
<h3>Bug fixes</h3>
<ul>
<li>30d86a9582001686d63de3f79e4e90a7b6a62a9e: fix: update x/crypto (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/8">#8</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Documentation updates</h3>
<ul>
<li>eef068dedc6af24e8eda0c99db3a03c988b46cff: docs: new readme footer
(<a href="https://github.com/muesli"><code>@muesli</code></a>)</li>
<li>f7556041d69b45aef018df2269d29e6d018ae6cc: docs: update example in
readme (<a
href="https://github.com/aymanbagabas"><code>@aymanbagabas</code></a>)</li>
</ul>
<h3>Other work</h3>
<ul>
<li>472a463d0e8df9e768b350d75ee57a8c9baf69d6: ref: change api to expose
ssh.PublicKey and authorizd_key (<a
href="https://github.com/aymanbagabas"><code>@aymanbagabas</code></a>)</li>
</ul>
<hr />
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
<p>Thoughts? Questions? We love hearing from you. Feel free to reach out
on <a href="https://twitter.com/charmcli">Twitter</a>, <a
href="https://mastodon.technology/@charm">The Fediverse</a>, or on <a
href="https://charm.sh/chat">Discord</a>.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ba5b374606"><code>ba5b374</code></a>
fix: don't trim key path</li>
<li><a
href="6ed0378354"><code>6ed0378</code></a>
feat: add more tests</li>
<li><a
href="6c0cbbb700"><code>6c0cbbb</code></a>
feat: specify ECDSA elliptic curve</li>
<li><a
href="8d80e76065"><code>8d80e76</code></a>
feat: return ssh.Signer</li>
<li><a
href="3dbbf0ca45"><code>3dbbf0c</code></a>
chore: go mod tidy</li>
<li><a
href="37c7434ac6"><code>37c7434</code></a>
feat: bump dependencies</li>
<li><a
href="472a463d0e"><code>472a463</code></a>
ref: change api to expose ssh.PublicKey and authorizd_key</li>
<li><a
href="30d86a9582"><code>30d86a9</code></a>
fix: update x/crypto (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/8">#8</a>)</li>
<li><a
href="eef068dedc"><code>eef068d</code></a>
docs: new readme footer</li>
<li><a
href="f7556041d6"><code>f755604</code></a>
docs: update example in readme</li>
<li>Additional commits viewable in <a
href="https://github.com/charmbracelet/keygen/compare/v0.3.0...v0.4.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
---------
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.16.1 to 0.16.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.16.2</h2>
<h2>What's Changed</h2>
<ul>
<li>Fix interaction events by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/264">disgoorg/disgo#264</a></li>
</ul>
<h2>Beaking Changes</h2>
<ul>
<li>Renamed <code>events.XInteractionCreate.Channel</code> to
<code>events.XInteractionCreate.MessageChannel</code></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.16.1...v0.16.2">https://github.com/disgoorg/disgo/compare/v0.16.1...v0.16.2</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4929351010"><code>4929351</code></a>
Fix interaction events (<a
href="https://redirect.github.com/disgoorg/disgo/issues/264">#264</a>)</li>
<li><a
href="a50f1ef2d3"><code>a50f1ef</code></a>
fix verified roles examples</li>
<li>See full diff in <a
href="https://github.com/disgoorg/disgo/compare/v0.16.1...v0.16.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.16.0 to 0.16.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.16.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Add <code>Channel</code> to interactions by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/261">disgoorg/disgo#261</a></li>
<li>Add <code>OnHeartbeatAck</code> to <code>ListenerAdapter</code>
(fixes <a
href="https://redirect.github.com/disgoorg/disgo/issues/263">#263</a>)
by <a href="https://github.com/caneleex"><code>@caneleex</code></a> in
<a
href="250d1c9a92</a></li>
</ul>
<h2>Deprecations</h2>
<ul>
<li><code>ChannelID</code> in interactions has been deprecated. Use
<code>Channel()</code> instead</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.16.0...v0.16.1">https://github.com/disgoorg/disgo/compare/v0.16.0...v0.16.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="250d1c9a92"><code>250d1c9</code></a>
Add OnHeartbeatAck to ListenerAdapter</li>
<li><a
href="a3e65bd695"><code>a3e65bd</code></a>
Add Channel to interactions (<a
href="https://redirect.github.com/disgoorg/disgo/issues/261">#261</a>)</li>
<li>See full diff in <a
href="https://github.com/disgoorg/disgo/compare/v0.16.0...v0.16.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.7.0
to 0.8.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="00fd4ff485"><code>00fd4ff</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="018c28f8a1"><code>018c28f</code></a>
all: fix some comments</li>
<li><a
href="9cd0187c09"><code>9cd0187</code></a>
curve25519: use crypto/ecdh on Go 1.20</li>
<li><a
href="c6a20f9984"><code>c6a20f9</code></a>
ssh: document that ParseRawPrivateKey supports Ed25519 keys</li>
<li>See full diff in <a
href="https://github.com/golang/crypto/compare/v0.7.0...v0.8.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.7.0
to 0.8.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h2>gopls/v0.8.0</h2>
<h2>Go version support</h2>
<h3>Support for Go 1.18</h3>
<p>Version 0.8.0 of gopls supports features added to Go 1.18,
specifically:</p>
<ul>
<li>Support for multi-module workspaces using <code>go.work</code>
files.</li>
<li>Diagnostics for Fuzz tests.</li>
<li>Improved support for generics.</li>
</ul>
<p>To use these features, gopls must be installed using Go 1.18. See <a
href="https://go.dev/dl/">go.dev/dl</a> for the latest status of Go 1.18
-- as of writing Go 1.18 is not yet released, but Go 1.18 RC1 may be
used.</p>
<h3>Dropped support for Go 1.12</h3>
<p>Version 0.8.0 of gopls no longer supports building at Go 1.12. See <a
href="https://redirect.github.com/golang/go/issues/50827">golang/go#50827</a>
for more details.</p>
<h2>New Features</h2>
<h3><code>go.work</code> integration</h3>
<p>Gopls now supports multi-module workspaces using <code>go.work</code>
files. To use this feature, create a <code>go.work</code> file that
includes the modules you want to work on, and then open your editor to
the directory containing <code>go.work</code>. For more information, see
the <a href="https://go.dev/ref/mod#workspaces"><code>go.work</code>
reference</a>, or the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/workspace.md">gopls
documentation</a> for multi-module workspaces.</p>
<h3>Diagnostics for Fuzz tests</h3>
<p>When writing <a href="https://go.dev/doc/fuzz/">Fuzz tests</a>, gopls
provides diagnostics for invalid arguments to <code>Fuzz</code>.
<img
src="https://user-images.githubusercontent.com/57144380/156475335-0a277e11-c113-460a-837b-d066b42898a6.png"
alt="image" /></p>
<h3>Improved support for generics</h3>
<h4>Honor the language version configured in <code>go.mod</code></h4>
<p>gopls now provides diagnostics for language features based on the <a
href="https://go.dev/ref/mod#go-mod-file-go"><code>go</code>
directive</a> in the applicable <code>go.mod</code> file for a
package.</p>
<p>For some errors related to incompatible language versions, gopls
offers a quick-fix to update the <code>go.mod</code> Go version. (note
that if the <code>go.mod</code> file is open, it may need to be saved in
order for language version changes to take effect)
<img
src="https://user-images.githubusercontent.com/57144380/156476752-7aacf34b-2835-41cb-b80d-7bf5103a43a0.gif"
alt="gomodedit" /></p>
<h4>Improved completion with type parameters</h4>
<p>Gopls autocompletion is improved in several contexts when using
generic types.</p>
<p><img
src="https://user-images.githubusercontent.com/57144380/156477933-a1aab4c7-06cd-4cac-85e6-a847b6515b91.gif"
alt="genericvarcompl" /></p>
<h3>New code action to add missing method stubs</h3>
<p>Gopls now provides a code action to implement missing methods.</p>
<p><img
src="https://user-images.githubusercontent.com/57144380/156479262-482958e2-69a3-4a97-81a5-5dd27ac250ba.gif"
alt="implementiface" /></p>
<h3>Improved performance and accuracy for workspace symbol requests</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5ef3193183"><code>5ef3193</code></a>
gopls/internal/lsp/source/typerefs: reexpress tests wrt
ExternalRefs</li>
<li><a
href="c5f768a46c"><code>c5f768a</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="7c33a56129"><code>7c33a56</code></a>
gopls/internal/lsp/source: show both the original declaration and the
value o...</li>
<li><a
href="4d205d81b5"><code>4d205d8</code></a>
gopls/doc: add instructions for using go.work with the Go
distribution</li>
<li><a
href="d5076cc64d"><code>d5076cc</code></a>
gopls/internal/lsp/cache: don't trace a region for MetadataForFile</li>
<li><a
href="f79636135d"><code>f796361</code></a>
gopls/internal/lsp: add tracing instrumentation for all Server
methods</li>
<li><a
href="e10450195e"><code>e104501</code></a>
gopls/internal/astutil: TestPurgeFuncBodies requires source code for
std</li>
<li><a
href="6520870190"><code>6520870</code></a>
gopls/internal/lsp/source/typerefs: allow for duplicate decls</li>
<li><a
href="902fdcadc1"><code>902fdca</code></a>
gopls/internal/lsp/source/typerefs: purge func bodies before
parsing</li>
<li><a
href="58c9a6328c"><code>58c9a63</code></a>
go/packages/internal/nodecount: count ast.Node frequency</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.7.0...v0.8.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.6.0
to 0.7.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="36075149c5"><code>3607514</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="4abfd87339"><code>4abfd87</code></a>
google: add CredentialsParams.EarlyTokenRefresh</li>
<li><a
href="1e7f329364"><code>1e7f329</code></a>
oauth2: add ReuseTokenSourceWithExpiry</li>
<li><a
href="86850e0723"><code>86850e0</code></a>
oauth2: fix typo</li>
<li><a
href="a6e37e7441"><code>a6e37e7</code></a>
google: Updating 3pi documentation</li>
<li><a
href="54b70c833f"><code>54b70c8</code></a>
google: update missing auth help URL</li>
<li><a
href="2fc4ef5a6f"><code>2fc4ef5</code></a>
README: encourage issues and proposals before changes</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.6.0...v0.7.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/text](https://github.com/golang/text) from 0.8.0 to
0.9.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="48e4a4a957"><code>48e4a4a</code></a>
all: fix some comments</li>
<li>See full diff in <a
href="https://github.com/golang/text/compare/v0.8.0...v0.9.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.81.0 to 0.82.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="20cdbe7f77"><code>20cdbe7</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1682">#1682</a>
from timofurrer/variables-raw</li>
<li><a
href="197113e10b"><code>197113e</code></a>
Implement raw field for instance variables API</li>
<li><a
href="b88a1b2a51"><code>b88a1b2</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1680">#1680</a>
from bmsareias/fix-UptadeProtectedBranch</li>
<li><a
href="71bce5a6b6"><code>71bce5a</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1673">#1673</a>
from chenggui53/update-project-event-struct</li>
<li><a
href="34980c231f"><code>34980c2</code></a>
Fix tests</li>
<li><a
href="cb40c20b4a"><code>cb40c20</code></a>
add push data</li>
<li><a
href="febd628d67"><code>febd628</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1678">#1678</a>
from MakingPRs/issue-field</li>
<li><a
href="295e7008ab"><code>295e700</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1677">#1677</a>
from MakingPRs/master</li>
<li><a
href="c70482aa21"><code>c70482a</code></a>
Change order of Epic fields to reflect docs</li>
<li><a
href="3f5e72f6f5"><code>3f5e72f</code></a>
Change order of Issue fields to reflect docs</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.81.0...v0.82.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/docker/docker](https://github.com/docker/docker) from
23.0.1+incompatible to 23.0.3+incompatible.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/docker/releases">github.com/docker/docker's
releases</a>.</em></p>
<blockquote>
<h2>v23.0.3</h2>
<h2>23.0.3</h2>
<blockquote>
<p><strong>Note</strong></p>
<p>Due to an issue with CentOS 9 Stream's package repositories, packages
for
CentOS 9 are currently unavailable. Packages for CentOS 9 may be added
later,
or as part of the next (23.0.4) patch release.</p>
</blockquote>
<h3>Bug fixes and enhancements</h3>
<ul>
<li>Fixed a number of issues that can cause Swarm encrypted overlay
networks
to fail to uphold their guarantees, addressing <a
href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28841">CVE-2023-28841</a>,
<a
href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28840">CVE-2023-28840</a>,
and
<a
href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28842">CVE-2023-28842</a>.
<ul>
<li>A lack of kernel support for encrypted overlay networks now reports
as an error.</li>
<li>Encrypted overlay networks are eagerly set up, rather than waiting
for
multiple nodes to attach.</li>
<li>Encrypted overlay networks are now usable on Red Hat Enterprise
Linux 9
through the use of the <code>xt_bpf</code> kernel module.</li>
<li>Users of Swarm overlay networks should review <a
href="https://github.com/moby/moby/security/advisories/GHSA-vwm3-crmr-xfxw">GHSA-vwm3-crmr-xfxw</a>
to ensure that unintentional exposure has not occurred.</li>
</ul>
</li>
</ul>
<h3>Packaging Updates</h3>
<ul>
<li>Update containerd to <a
href="https://github.com/containerd/containerd/releases/tag/v1.6.20">v1.6.20</a>.</li>
<li>Update runc to <a
href="https://github.com/opencontainers/runc/releases/tag/v1.1.5">v1.1.5</a>.</li>
</ul>
<h2>v23.0.2</h2>
<h2>23.0.2</h2>
<p>For a full list of pull requests and changes in this release, refer
to the relevant GitHub milestones:</p>
<ul>
<li><a
href="https://github.com/docker/cli/milestone/75?closed=1">docker/cli,
23.0.2 milestone</a></li>
<li><a
href="https://github.com/moby/moby/milestone/114?closed=1">moby/moby,
23.0.2 milestone</a></li>
</ul>
<h3>Bug fixes and enhancements</h3>
<ul>
<li>Fully resolve missing checks for <code>apparmor_parser</code> when
an AppArmor enabled kernel is detected. <a
href="https://redirect.github.com/containerd/containerd/pull/8087">containerd/containerd#8087</a>,
<a
href="https://redirect.github.com/moby/moby/pull/45043">moby/moby#45043</a></li>
<li>Ensure that credentials are redacted from Git URLs when generating
BuildKit buildinfo. Fixes <a
href="https://github.com/moby/buildkit/security/advisories/GHSA-gc89-7gcr-jxqc">CVE-2023-26054</a>.
<a
href="https://redirect.github.com/moby/moby/pull/45110">moby/moby#45110</a></li>
<li>Fix anonymous volumes created by a <code>VOLUME</code> line in a
Dockerfile being excluded from volume prune. <a
href="https://redirect.github.com/moby/moby/pull/45159">moby/moby#45159</a></li>
<li>Fix a failure to properly propagate errors during removal of volumes
on a Swarm node. <a
href="https://redirect.github.com/moby/moby/pull/45155">moby/moby#45155</a></li>
<li>Temporarily work around a bug in BuildKit <code>COPY --link</code>
by disabling mergeop/diffop optimization. <a
href="https://redirect.github.com/moby/moby/pull/45112">moby/moby#45112</a></li>
<li>Properly clean up child tasks when a parent Swarm job is removed. <a
href="https://redirect.github.com/moby/swarmkit/pull/3112">moby/swarmkit#3112</a>,
<a
href="https://redirect.github.com/moby/moby/pull/45107">moby/moby#45107</a></li>
<li>Fix Swarm service creation logic so that both a GenericResource and
a non-default network can be used together. <a
href="https://redirect.github.com/moby/swarmkit/pull/3082">moby/swarmkit#3082</a>,
<a
href="https://redirect.github.com/moby/moby/pull/45107">moby/moby#45107</a></li>
<li>Fix Swarm CSI support requiring the CSI plugin to offer staging
endpoints in order to publish a volume. <a
href="https://redirect.github.com/moby/swarmkit/pull/3116">moby/swarmkit#3116</a>,
<a
href="https://redirect.github.com/moby/moby/pull/45107">moby/moby#45107</a></li>
<li>Fix a panic caused by log buffering in some configurations. <a
href="https://redirect.github.com/containerd/fifo/pull/47">containerd/fifo#47</a>,
<a
href="https://redirect.github.com/moby/moby/pull/45051">moby/moby#45051</a></li>
<li>Log errors in the REST to Swarm gRPC API translation layer at the
debug level to reduce redundancy and noise. <a
href="https://redirect.github.com/moby/moby/pull/45016">moby/moby#45016</a></li>
<li>Fix a DNS resolution issue affecting containers created with
<code>--dns-opt</code> or <code>--dns-search</code> when
<code>systemd-resolved</code> is used outside the container. <a
href="https://redirect.github.com/moby/moby/pull/45000">moby/moby#45000</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="59118bff50"><code>59118bf</code></a>
Merge pull request from GHSA-232p-vwff-86mp</li>
<li><a
href="219f21bf07"><code>219f21b</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/docker/issues/45196">#45196</a>
from vvoland/integration-restart-race-23</li>
<li><a
href="b87f7f18b8"><code>b87f7f1</code></a>
libnet/d/overlay: insert the input-drop rule</li>
<li><a
href="c6bf3071fe"><code>c6bf307</code></a>
StartWithLogFile: Fix d.cmd race</li>
<li><a
href="7f49ca259b"><code>7f49ca2</code></a>
TestDaemonRestartKillContainers: Fix loop capture</li>
<li><a
href="98cbcb8003"><code>98cbcb8</code></a>
libnet/d/overlay: add BPF-powered VNI matcher</li>
<li><a
href="5c5fac2374"><code>5c5fac2</code></a>
libnet/d/overlay: extract VNI match rule builder</li>
<li><a
href="c492a22287"><code>c492a22</code></a>
libn/d/overlay: enforce encryption on sandbox init</li>
<li><a
href="018edb0284"><code>018edb0</code></a>
libnet/d/overlay: document some encryption code</li>
<li><a
href="a1fd2f22f6"><code>a1fd2f2</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/docker/issues/45157">#45157</a>
from thaJeztah/23.0_backport_update_shfmt</li>
<li>Additional commits viewable in <a
href="https://github.com/docker/docker/compare/v23.0.1...v23.0.3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/goreleaser/goreleaser/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
<!--
Hi, thanks for contributing!
Please make sure you read our CONTRIBUTING guide.
Also, add tests and the respective documentation changes as well.
-->
Currently Goreleaser uses `runtime.NumCPU()` as the default value if
`--parallelism` is not set.
However, this will get the number of CPUs on the host even when
Goreleaser is run in a container with a limit on the maximum number of
CPUs that can be used (typically in a Kubernetes pod).
Actually, `docker run --cpus=1 goreleaser/goreleaser --debug` shows
`parallelism: 4` on my machine.
This behavior causes CPU throttling, which increases execution time and,
in the worst case, terminates with an error.
I ran into this problem with Jenkins where the agent runs on pod
([Kubernetes plugin for
Jenkins](https://plugins.jenkins.io/kubernetes/)).
This commit introduces
[automaxprocs](https://github.com/uber-go/automaxprocs) to fix this
issue.
This library sets `GOMAXPROCS` to match Linux container CPU quota.
I have also looked for a library that can get CPU quota more directly,
but this seems to be the best I could find.
The reason it is set in a different notation from the automaxprocs
README is to prevent logs from being displayed
([comment](https://github.com/uber-go/automaxprocs/issues/18#issuecomment-511330567)).
I would have liked to write a test, but this change is dependent on the
number of CPUs in the execution environment, so I could not.
Instead, I wrote a Dockerfile for testing
```Dockerfile
FROM golang:1.20.2
WORKDIR /go/app
RUN sh -c "$(curl --location https://taskfile.dev/install.sh)" -- -d -b /usr/local/bin
COPY . .
RUN task build
```
and confirmed built binary shows expected parallelism by following
commands:
```sh
docker build --file Dockerfile.test . -t test-goreleaser
docker run --cpus=1 test-goreleaser ./goreleaser build --snapshot --debug # parallelism: 1
docker run test-goreleaser ./goreleaser build --snapshot --debug # parallelism: 4
```
I also ran the built binary on my Macbook and it was fine.
Bumps
[github.com/opencontainers/runc](https://github.com/opencontainers/runc)
from 1.1.2 to 1.1.5.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/opencontainers/runc/releases">github.com/opencontainers/runc's
releases</a>.</em></p>
<blockquote>
<h2>runc 1.1.5 -- "囚われた屈辱は 反撃の嚆矢だ"</h2>
<p>This is the fifth patch release in the 1.1.z series of runc, which
fixes
three CVEs found in runc.</p>
<ul>
<li>
<p>CVE-2023-25809 is a vulnerability involving rootless containers where
(under specific configurations), the container would have write access
to the /sys/fs/cgroup/user.slice/... cgroup hierarchy. No other
hierarchies on the host were affected. This vulnerability was
discovered by Akihiro Suda.
<a
href="https://github.com/opencontainers/runc/security/advisories/GHSA-m8cg-xc2p-r3fc">https://github.com/opencontainers/runc/security/advisories/GHSA-m8cg-xc2p-r3fc</a></p>
</li>
<li>
<p>CVE-2023-27561 was a regression which effectively re-introduced
CVE-2019-19921. This bug was present from v1.0.0-rc95 to v1.1.4. This
regression was discovered by <a
href="https://github.com/Beuc"><code>@Beuc</code></a>.
<a
href="https://github.com/advisories/GHSA-vpvm-3wq2-2wvm">https://github.com/advisories/GHSA-vpvm-3wq2-2wvm</a></p>
</li>
<li>
<p>CVE-2023-28642 is a variant of CVE-2023-27561 and was fixed by the
same
patch. This variant of the above vulnerability was reported by Lei
Wang.
<a
href="https://github.com/opencontainers/runc/security/advisories/GHSA-g2j6-57v7-gm8c">https://github.com/opencontainers/runc/security/advisories/GHSA-g2j6-57v7-gm8c</a></p>
</li>
</ul>
<p>In addition, the following other fixes are included in this
release:</p>
<ul>
<li>Fix the inability to use <code>/dev/null</code> when inside a
container. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3620">#3620</a>)</li>
<li>Fix changing the ownership of host's <code>/dev/null</code> caused
by fd redirection
(a regression in 1.1.1). (<a
href="https://redirect.github.com/opencontainers/runc/issues/3674">#3674</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/3731">#3731</a>)</li>
<li>Fix rare runc exec/enter unshare error on older kernels, including
CentOS < 7.7. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3776">#3776</a>)</li>
<li>nsexec: Check for errors in <code>write_log()</code>. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3721">#3721</a>)</li>
</ul>
<h3>Static Linking Notices</h3>
<p>The <code>runc</code> binary distributed with this release are
<em>statically linked</em> with
the following <a
href="https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html">GNU
LGPL-2.1</a> licensed libraries, with <code>runc</code> acting
as a "work that uses the Library":</p>
<ul>
<li><a href="https://github.com/seccomp/libseccomp">libseccomp</a></li>
</ul>
<p>The versions of these libraries were not modified from their upstream
versions,
but in order to comply with the LGPL-2.1 (§6(a)), we have attached the
complete source code for those libraries which (when combined with the
attached
runc source code) may be used to exercise your rights under the
LGPL-2.1.</p>
<p>However we strongly suggest that you make use of your distribution's
packages
or download them from the authoritative upstream sources, especially
since
these libraries are related to the security of your containers.</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/opencontainers/runc/blob/v1.1.5/CHANGELOG.md">github.com/opencontainers/runc's
changelog</a>.</em></p>
<blockquote>
<h2>[1.1.5] - 2023-03-29</h2>
<blockquote>
<p>囚われた屈辱は
反撃の嚆矢だ</p>
</blockquote>
<h3>Fixed</h3>
<ul>
<li>Prohibit container's <code>/proc</code> and <code>/sys</code> to be
symlinks (CVE-2019-19921,
CVE-2023-27561, CVE-2023-28642, <a
href="https://redirect.github.com/opencontainers/runc/issues/3785">#3785</a>)</li>
<li>rootless: rework /sys/fs/cgroup mounts to avoid exposing the host's
cgroup
hierarchy into the container. (CVE-2023-25809)</li>
<li>Fix the inability to use <code>/dev/null</code> when inside a
container. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3620">#3620</a>)</li>
<li>Fix changing the ownership of host's <code>/dev/null</code> caused
by fd redirection
(a regression in 1.1.1). (<a
href="https://redirect.github.com/opencontainers/runc/issues/3674">#3674</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/3731">#3731</a>)</li>
<li>Fix rare runc exec/enter unshare error on older kernels, inlcuding
CentOS < 7.7. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3776">#3776</a>)</li>
<li>nsexec: Check for errors in <code>write_log()</code>. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3721">#3721</a>)</li>
<li>Various CI fixes and updates. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3618">#3618</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/3630">#3630</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/3640">#3640</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/3729">#3729</a>)</li>
</ul>
<h2>[1.1.4] - 2022-08-24</h2>
<blockquote>
<p>If you look for perfection, you'll never be content.</p>
</blockquote>
<h3>Fixed</h3>
<ul>
<li>Fix mounting via wrong proc fd.
When the user and mount namespaces are used, and the bind mount is
followed by
the cgroup mount in the spec, the cgroup was mounted using the bind
mount's
mount fd. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3511">#3511</a>)</li>
<li>Switch <code>kill()</code> in <code>libcontainer/nsenter</code> to
<code>sane_kill()</code>. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3536">#3536</a>)</li>
<li>Fix "permission denied" error from <code>runc run</code>
on <code>noexec</code> fs. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3541">#3541</a>)</li>
<li>Fix failed exec after <code>systemctl daemon-reload</code>.
Due to a regression in v1.1.3, the <code>DeviceAllow=char-pts rwm</code>
rule was no
longer added and was causing an error <code>open /dev/pts/0: operation
not permitted: unknown</code>
when systemd was reloaded. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3554">#3554</a>)</li>
<li>Various CI fixes. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3538">#3538</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/3558">#3558</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/3562">#3562</a>)</li>
</ul>
<h2>[1.1.3] - 2022-06-09</h2>
<blockquote>
<p>In the beginning there was nothing, which exploded.</p>
</blockquote>
<h3>Fixed</h3>
<ul>
<li>Our seccomp <code>-ENOSYS</code> stub now correctly handles
multiplexed syscalls on
s390 and s390x. This solves the issue where syscalls the host kernel did
not
support would return <code>-EPERM</code> despite the existence of the
<code>-ENOSYS</code> stub
code (this was due to how s390x does syscall multiplexing). (<a
href="https://redirect.github.com/opencontainers/runc/issues/3478">#3478</a>)</li>
<li>Retry on dbus disconnect logic in libcontainer/cgroups/systemd now
works as
intended; this fix does not affect runc binary itself but is important
for
libcontainer users such as Kubernetes. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3476">#3476</a>)</li>
<li>Inability to compile with recent clang due to an issue with
duplicate</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f19387a6be"><code>f19387a</code></a>
VERSION: release v1.1.5</li>
<li><a
href="58a9abee21"><code>58a9abe</code></a>
Merge pull request from GHSA-m8cg-xc2p-r3fc</li>
<li><a
href="27fb72c7ff"><code>27fb72c</code></a>
merge branch 'pr-3776' into release-1.1</li>
<li><a
href="8ec02ea1b1"><code>8ec02ea</code></a>
nsexec: retry unshare on EINVAL</li>
<li><a
href="059d7730fc"><code>059d773</code></a>
merge branch 'pr-3785' into release-1.1</li>
<li><a
href="0abab45c9b"><code>0abab45</code></a>
Prohibit /proc and /sys to be symlinks</li>
<li><a
href="0e6b818a2b"><code>0e6b818</code></a>
rootless: fix /sys/fs/cgroup mounts</li>
<li><a
href="c6781d100a"><code>c6781d1</code></a>
Merge pull request <a
href="https://redirect.github.com/opencontainers/runc/issues/3721">#3721</a>
from kinvolk/rata/nsfixes-backport</li>
<li><a
href="f6e2cd3baf"><code>f6e2cd3</code></a>
nsexec: Check for errors in write_log()</li>
<li><a
href="3775df9fcb"><code>3775df9</code></a>
Merge pull request <a
href="https://redirect.github.com/opencontainers/runc/issues/3731">#3731</a>
from kolyshkin/1.1-fix-dev-null</li>
<li>Additional commits viewable in <a
href="https://github.com/opencontainers/runc/compare/v1.1.2...v1.1.5">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/goreleaser/goreleaser/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/imdario/mergo](https://github.com/imdario/mergo) from
0.3.14 to 0.3.15.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="fb3c082091"><code>fb3c082</code></a>
Update stackaid dependencies for imdario/mergo</li>
<li><a
href="c9e40b59db"><code>c9e40b5</code></a>
Merge pull request <a
href="https://redirect.github.com/imdario/mergo/issues/227">#227</a>
from eh-steve/should-not-dereference</li>
<li><a
href="acd16ec124"><code>acd16ec</code></a>
Merge branch 'master' into should-not-dereference</li>
<li><a
href="62d1cf2897"><code>62d1cf2</code></a>
Update stackaid dependencies for imdario/mergo</li>
<li><a
href="dcef160919"><code>dcef160</code></a>
Merge pull request <a
href="https://redirect.github.com/imdario/mergo/issues/226">#226</a>
from ronaudinho/fix/202</li>
<li><a
href="404749e66d"><code>404749e</code></a>
Update stackaid dependencies for imdario/mergo</li>
<li><a
href="bd316d34ac"><code>bd316d3</code></a>
Merge pull request <a
href="https://redirect.github.com/imdario/mergo/issues/221">#221</a>
from zhiyu0729/issue220</li>
<li><a
href="5b9bbdb8b6"><code>5b9bbdb</code></a>
Update stackaid dependencies for imdario/mergo</li>
<li><a
href="90db0ad2f4"><code>90db0ad</code></a>
Merge pull request <a
href="https://redirect.github.com/imdario/mergo/issues/170">#170</a>
from mdeltour/fix/naming-typo</li>
<li><a
href="0e73161ca2"><code>0e73161</code></a>
Add WithoutDereference config to prevent incorrect bool pointer
merges</li>
<li>Additional commits viewable in <a
href="https://github.com/imdario/mergo/compare/v0.3.14...v0.3.15">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.15.2 to 0.15.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.15.3</h2>
<h2>What's Changed</h2>
<ul>
<li>fix goroutine leaks from reconnects & resumes by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/246">disgoorg/disgo#246</a></li>
<li>Added Len func to each XCache interface by <a
href="https://github.com/TisLeo"><code>@TisLeo</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/248">disgoorg/disgo#248</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/TisLeo"><code>@TisLeo</code></a> made
their first contribution in <a
href="https://redirect.github.com/disgoorg/disgo/pull/248">disgoorg/disgo#248</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.15.2...v0.15.3">https://github.com/disgoorg/disgo/compare/v0.15.2...v0.15.3</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="8369a3b972"><code>8369a3b</code></a>
Added Len func to each XCache interface (<a
href="https://redirect.github.com/disgoorg/disgo/issues/248">#248</a>)</li>
<li><a
href="381f278234"><code>381f278</code></a>
maybe fix goroutine leaks from reconnects & resumes (<a
href="https://redirect.github.com/disgoorg/disgo/issues/246">#246</a>)</li>
<li>See full diff in <a
href="https://github.com/disgoorg/disgo/compare/v0.15.2...v0.15.3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps
[google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go)
from 1.29.0 to 1.29.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/protocolbuffers/protobuf-go/releases">google.golang.org/protobuf's
releases</a>.</em></p>
<blockquote>
<h2>v1.29.1</h2>
<ul>
<li><a
href="https://github.com/protocolbuffers/protobuf-go/blob/HEAD/#v1.29.1-notable-changes">Notable
changes</a></li>
</ul>
<h2>Notable changes <!-- raw HTML omitted --><!-- raw HTML omitted
--></h2>
<p><strong>Bug fixes</strong></p>
<ul>
<li><a href="https://go.dev/cl/475995">CL/475995</a>:
internal/encoding/text: fix parsing of incomplete numbers</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="095a62b71f"><code>095a62b</code></a>
all: release v1.29.1</li>
<li><a
href="edaf511a7a"><code>edaf511</code></a>
internal/encoding/text: fix parsing of incomplete numbers</li>
<li><a
href="fe5bc54041"><code>fe5bc54</code></a>
all: start v1.29.0-devel</li>
<li><a
href="d3c9826520"><code>d3c9826</code></a>
all: release v1.29.0</li>
<li>See full diff in <a
href="https://github.com/protocolbuffers/protobuf-go/compare/v1.29.0...v1.29.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/goreleaser/goreleaser/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.80.2 to 0.81.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="7c78a6c1e0"><code>7c78a6c</code></a>
Update dependencies</li>
<li><a
href="711e0b4cc5"><code>711e0b4</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1663">#1663</a>
from xanzy/feature/rate-limiter</li>
<li><a
href="40e5bfd65b"><code>40e5bfd</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1665">#1665</a>
from PatrickRice-KSC/add-omit-empty-to-project-options</li>
<li><a
href="77f5aac6fb"><code>77f5aac</code></a>
Fix lint errors</li>
<li><a
href="8f5194d531"><code>8f5194d</code></a>
Add omitempty and test</li>
<li><a
href="824308adfd"><code>824308a</code></a>
Prevent additional call to config the rate limiter</li>
<li><a
href="ae46dbc110"><code>ae46dbc</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1661">#1661</a>
from KingCrunch/feature/add-missing-fields-to-project</li>
<li><a
href="1e98371450"><code>1e98371</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1662">#1662</a>
from timofurrer/deploy-token</li>
<li><a
href="74e732fb03"><code>74e732f</code></a>
Tweak PR just a little…</li>
<li><a
href="507b9ece5e"><code>507b9ec</code></a>
Expose Revoked and Expired field for Deploy Tokens</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.80.2...v0.81.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [github.com/caarlos0/env/v7](https://github.com/caarlos0/env) from
7.0.0 to 7.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/caarlos0/env/releases">github.com/caarlos0/env/v7's
releases</a>.</em></p>
<blockquote>
<h2>v7.1.0</h2>
<h2>Changelog</h2>
<h3>New Features</h3>
<ul>
<li>b135bbd86c4110736a91edf6ac242ef0d4b43bd7: feat: error types (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/240">#240</a>)
(<a href="https://github.com/akutuev"><code>@akutuev</code></a>)</li>
<li>17f0a63edccb660238923ac0d02ab0432edb100d: feat: implement Is on
AggregateError (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/254">#254</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>266f68b264d486a75ebf4b2371aab58a072b52fc: feat: support map kind env
(<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/244">#244</a>)
(<a href="https://github.com/ken8203"><code>@ken8203</code></a>)</li>
<li>c08b0f906b39a1fbc978eeeb262840f9acd735ff: feat: use field name by
default (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/253">#253</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Bug fixes</h3>
<ul>
<li>dfd68b2d5d324ecfe910012fe415a24c64d34e4b: fix: improve map handling,
coverage (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>e5472ec015521ddbef81bfa12e752e86ee09fa4a: fix: remove untested
behavior (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Documentation updates</h3>
<ul>
<li>65ba2db37013ed6bc2ebfadbbd2dc251ee528e0e: docs: caveats (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>f434e985558517cce98d345ea72faa1082e50640: docs: document how to
handle error (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>2d26ce1cd4c10a7fa055c643cfde3a4a295f8e6d: docs: fix examples (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>91e69e8f885b30466508baca6220fec4e4307338: docs: maps (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>850c2d8068a4e311cf2bd6f65a22dce5a66d5edd: docs: update to v7 (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/249">#249</a>)
(<a
href="https://github.com/alexandear"><code>@alexandear</code></a>)</li>
</ul>
<hr />
<p><em>Released with <a href="https://goreleaser.com/pro">GoReleaser
Pro</a>!</em></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="17f0a63edc"><code>17f0a63</code></a>
feat: implement Is on AggregateError (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/254">#254</a>)</li>
<li><a
href="2d26ce1cd4"><code>2d26ce1</code></a>
docs: fix examples</li>
<li><a
href="c08b0f906b"><code>c08b0f9</code></a>
feat: use field name by default (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/253">#253</a>)</li>
<li><a
href="65ba2db370"><code>65ba2db</code></a>
docs: caveats</li>
<li><a
href="91e69e8f88"><code>91e69e8</code></a>
docs: maps</li>
<li><a
href="dfd68b2d5d"><code>dfd68b2</code></a>
fix: improve map handling, coverage</li>
<li><a
href="266f68b264"><code>266f68b</code></a>
feat: support map kind env (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/244">#244</a>)</li>
<li><a
href="f434e98555"><code>f434e98</code></a>
docs: document how to handle error</li>
<li><a
href="e5472ec015"><code>e5472ec</code></a>
fix: remove untested behavior</li>
<li><a
href="b135bbd86c"><code>b135bbd</code></a>
feat: error types (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/240">#240</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/caarlos0/env/compare/v7.0.0...v7.1.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.6.0
to 0.7.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h1>gopls/v0.7.0</h1>
<h2>Features</h2>
<h3>Postfix completions</h3>
<p>Postfix completions are a new style of completions that can save you
time by inserting more complex pieces of commonly-written code. All of
the results end with <code>!</code>. This feature was added
experimentally in <code>gopls/v0.6.10</code> and is now enabled by
default.</p>
<p>See this example:</p>
<p><img
src="https://user-images.githubusercontent.com/5856771/114612163-c5df9800-9c6f-11eb-959c-8fe529018a21.gif"
alt="ezgif-3-a82b2077ff38" /></p>
<h3>New commands: <a
href="https://github.com/golang/tools/blob/master/gopls/doc/commands.md#retrieves-a-list-of-packages">List
known packages</a> and <a
href="https://github.com/golang/tools/blob/master/gopls/doc/commands.md#asks-the-server-to-add-an-import-path-to-a-given-go-file">add
import</a></h3>
<p>These commands can be used to manually list available packages to
import and then add an import to your file. They are currently not used
by any known clients, but they will be made available through the
Command Palette in VS Code in the next VS Code Go release.</p>
<h2>Improvements</h2>
<h3>Memory usage</h3>
<p>Improved trimming of the ASTs of dependency packages results in
reduced memory usage, especially for projects with many dependencies.
This may result in some hard-to-diagnose bugs that we're not yet aware
of, so please report any surprising behavior via <a
href="https://golang.org/issues/new">https://golang.org/issues/new</a>.</p>
<h2>Fixes</h2>
<p>A full list of all issues fixed can be found in the <a
href="https://github.com/golang/go/milestone/213?closed=1">gopls/v0.7.0
milestone</a>. To report a new problem, please file a new issue at <a
href="https://golang.org/issues/new">https://golang.org/issues/new</a>.</p>
<h2>Thank you to our contributors!</h2>
<p><a href="https://github.com/muirdm"><code>@muirdm</code></a> <a
href="https://github.com/marwan-at-work"><code>@marwan-at-work</code></a>
<a href="https://github.com/dominikh"><code>@dominikh</code></a> <a
href="https://github.com/leitzler"><code>@leitzler</code></a> <a
href="https://github.com/OneOfOne"><code>@OneOfOne</code></a> <a
href="https://github.com/zyctree"><code>@zyctree</code></a> <a
href="https://github.com/ShoshinNikita"><code>@ShoshinNikita</code></a>
<a
href="https://github.com/KarthikNayak"><code>@KarthikNayak</code></a>
<a href="https://github.com/suzmue"><code>@suzmue</code></a> <a
href="https://github.com/bcmills"><code>@bcmills</code></a></p>
<h1>gopls/v0.6.11</h1>
<p>This release contains mainly bug fixes. A full list of all issues
fixed can be found in the <a
href="https://github.com/golang/go/milestone/211?closed=1">gopls/v0.6.11
milestone</a>. To report a new problem, please file a new issue at <a
href="https://golang.org/issues/new">https://golang.org/issues/new</a>.</p>
<h2>Thank you to our contributors!</h2>
<p><a
href="https://github.com/ShoshinNikita"><code>@ShoshinNikita</code></a>
<a href="https://github.com/sakateka"><code>@sakateka</code></a> <a
href="https://github.com/muirdm"><code>@muirdm</code></a> Will Langford
<a href="https://github.com/empire"><code>@empire</code></a> <a
href="https://github.com/justplesh"><code>@justplesh</code></a> <a
href="https://github.com/suzmue"><code>@suzmue</code></a></p>
<h1>gopls/v0.6.10</h1>
<h2>Features</h2>
<h3><code>t.Fatal</code> snippet</h3>
<p>If you trigger completion in a test function, on the line after a
call to a function that returns an error, you will be offered a
completion snippet for:</p>
<pre lang="go"><code>if err != nil {
t.Fatal(err)
}
</tr></table>
</code></pre>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="031fc75960"><code>031fc75</code></a>
gopls/internal/regtest/bench: don't run the iwl test with -short</li>
<li><a
href="f477bf4a41"><code>f477bf4</code></a>
gopls/internal/lsp/source/completion: avoid Snapshot.CachedPackages</li>
<li><a
href="b72edd12e5"><code>b72edd1</code></a>
gopls/internal/lsp/filecache: GOPLS_CACHE -> GOPLSCACHE</li>
<li><a
href="d566927635"><code>d566927</code></a>
gopls/internal/lsp/regtest: add <a
href="https://github.com/suggestedfix"><code>@suggestedfix</code></a>
marker</li>
<li><a
href="fdb0da65a1"><code>fdb0da6</code></a>
gopls/internal/regtest/bench: add a benchmark for diagnosing a
change</li>
<li><a
href="6eb432f3b0"><code>6eb432f</code></a>
gopls/internal/regtest/bench: add benchmarks in a wider variety of
repos</li>
<li><a
href="c91d0b88c3"><code>c91d0b8</code></a>
gopls/internal/lsp/source: guard against concurrent writes in xrefs</li>
<li><a
href="c0742f584b"><code>c0742f5</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="21d2256f2c"><code>21d2256</code></a>
gopls/internal/lsp/cache: make type-checking incremental</li>
<li><a
href="ae05609bd0"><code>ae05609</code></a>
internal/lsp/cache: add an LRU parse cache</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.6.0...v0.7.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [gocloud.dev](https://github.com/google/go-cloud) from 0.28.0 to
0.29.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/go-cloud/releases">gocloud.dev's
releases</a>.</em></p>
<blockquote>
<h2>v0.29.0</h2>
<p><strong>BREAKING CHANGES</strong></p>
<ul>
<li>Updated to latest <code>azureblob</code>, which had some
non-backward-compatible changes (again).</li>
</ul>
<p><strong>all</strong></p>
<ul>
<li>Defaulting to <code>go</code> version <code>1.2</code>.</li>
<li><strong>aws</strong>: Added support for custom endpoints for AWS SDK
v2.</li>
<li><strong>gcp</strong>: Updated imports for
<code>credentialspb</code>.</li>
</ul>
<p><strong>blob</strong></p>
<ul>
<li><strong>azureblob</strong>: Updated to latest (breaking
change).</li>
</ul>
<p><strong>pubsub</strong></p>
<ul>
<li><strong>kafkapub</strong>: Fixed nil Options pointer
dereference.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="62397121ec"><code>6239712</code></a>
all: prep for release (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3236">#3236</a>)</li>
<li><a
href="973ec87371"><code>973ec87</code></a>
all: prep for release (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3235">#3235</a>)</li>
<li><a
href="3348a6a4a0"><code>3348a6a</code></a>
aws: fix typo on awssdk=v2 docstring</li>
<li><a
href="ec0a2bbc3f"><code>ec0a2bb</code></a>
pubsub/rabbitpubsub: give rabbitmq more time to come up (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3233">#3233</a>)</li>
<li><a
href="082a495894"><code>082a495</code></a>
docstore/gcpfirestore: update proto import (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3229">#3229</a>)</li>
<li><a
href="53ba9013f0"><code>53ba901</code></a>
pubsub/gcppubsub: update proto import (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3230">#3230</a>)</li>
<li><a
href="b3612581b1"><code>b361258</code></a>
runtimevar/gcpsecretmanager: update proto import (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3231">#3231</a>)</li>
<li><a
href="e5235d85eb"><code>e5235d8</code></a>
blob/gcsblob: update proto import (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3228">#3228</a>)</li>
<li><a
href="7cd8b2b9f6"><code>7cd8b2b</code></a>
secrets/gcpkms: update proto import (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3227">#3227</a>)</li>
<li><a
href="8cddf16323"><code>8cddf16</code></a>
all: update deps BREAKING_CHANGE_OK (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3225">#3225</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/google/go-cloud/compare/v0.28.0...v0.29.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.6.0
to 0.7.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="776e461a4e"><code>776e461</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="ebe92624d1"><code>ebe9262</code></a>
ssh: add support for <a
href="mailto:aes256-gcm@openssh.com">aes256-gcm@openssh.com</a></li>
<li>See full diff in <a
href="https://github.com/golang/crypto/compare/v0.6.0...v0.7.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.5.0
to 0.6.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="62b4eedd72"><code>62b4eed</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="885f294722"><code>885f294</code></a>
google: Add support for OAuth2 token exchange over mTLS</li>
<li><a
href="6f9c1a18cc"><code>6f9c1a1</code></a>
google: use Credentials instead of deprecated DefaultCredentials</li>
<li><a
href="c82d0e16dc"><code>c82d0e1</code></a>
google/internal/externalaccount: Removed URL validation for google URLs
in AD...</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.5.0...v0.6.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.15.1 to 0.15.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.15.2</h2>
<h2>What's Changed</h2>
<ul>
<li>fix voice by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="a3ddd4aaca</a></li>
<li>add helper to sync commands for guilds or globally by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="3dbf6a6c06</a></li>
<li>simplify oauth2 by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/241">disgoorg/disgo#241</a></li>
<li>add <code>CustomMessage</code> to
<code>AutoModerationActionMetadata</code> by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/243">disgoorg/disgo#243</a></li>
</ul>
<h1>Breaking Changes</h1>
<ul>
<li>removal of <code>oauth2.SessionController</code></li>
<li><code>oauth2.Session</code> is now a struct instead of
interface</li>
<li>removal of <code>identifier</code> param in
<code>oauth2.Client.StartSession()</code> and
<code>oauth2.Client.RefreshSession()</code></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.15.1...v0.15.2">https://github.com/disgoorg/disgo/compare/v0.15.1...v0.15.2</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2ac4b5df9b"><code>2ac4b5d</code></a>
use handler.SyncCommands in handler example</li>
<li><a
href="a3ddd4aaca"><code>a3ddd4a</code></a>
fix voice ip discovery packet size</li>
<li><a
href="3dbf6a6c06"><code>3dbf6a6</code></a>
handler add helper to sync commands for guilds or globally</li>
<li><a
href="2fc89bc438"><code>2fc89bc</code></a>
minor refactor & cleanup of oauth2 suff</li>
<li><a
href="0b775b65f2"><code>0b775b6</code></a>
fix json tag name</li>
<li><a
href="9ab5fbde32"><code>9ab5fbd</code></a>
Bump golang.org/x/sys in /_examples/application_commands/http (<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/244">#244</a>)</li>
<li><a
href="14761a3785"><code>14761a3</code></a>
Bump golang.org/x/sys from 0.0.0-20211019181941-9d821ace8654 to 0.1.0
(<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/245">#245</a>)</li>
<li><a
href="8cb8e68a90"><code>8cb8e68</code></a>
add CustomMessage to AutoModerationActionMetadata (<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/243">#243</a>)</li>
<li><a
href="a32b7f1d36"><code>a32b7f1</code></a>
fix README example (<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/242">#242</a>)</li>
<li><a
href="faa79470af"><code>faa7947</code></a>
simplify oauth2 by removing session controller & converting a
session to a st...</li>
<li>Additional commits viewable in <a
href="https://github.com/disgoorg/disgo/compare/v0.15.1...v0.15.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.15.0 to 0.15.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.15.1</h2>
<h2>What's Changed</h2>
<ul>
<li><code>handler</code> package improvements by <a
href="https://github.com/Thunder33345"><code>@Thunder33345</code></a>
in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/240">disgoorg/disgo#240</a></li>
<li>add noop ratelimiter by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="24260e4bca</a></li>
<li>fix some minor broken/incorrect stuff by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/237">disgoorg/disgo#237</a></li>
<li>allow easy replacing of rest url by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/236">disgoorg/disgo#236</a></li>
<li>add <code>MessageFlagSuppressNotifications</code> and
<code>MessageFlagFailedToMentionSomeRolesInThread</code> by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="9cbba0bb75</a></li>
<li>add stage message types by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="12bf0cce55</a></li>
<li>add <code>ConnectionTypeInstagram</code> by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/234">disgoorg/disgo#234</a></li>
<li>add <code>NSFW</code> and <code>VideoQualityMode</code> to
<code>GuildStageVoiceChannelUpdate</code> by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="0f4d6ca243</a></li>
<li>add <code>StorePageAsset</code> cdn endpoint by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="84cfc8d278</a></li>
<li>match <code>MemberFlags</code> const names with other flags by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="4aca7c2ba9</a></li>
</ul>
<h2>Breaking</h2>
<ul>
<li><code>MemberFlags</code> consts have been renamed to follow
appropriate flag naming</li>
<li>renamed <code>Router.HandleCommand</code> to
<code>Router.Command</code></li>
<li>renamed <code>Router.HandleAutocomplete</code> to
<code>Router.Autocomplete</code></li>
<li>renamed <code>Router.HandleComponent</code> to
<code>Router.Component</code></li>
<li>renamed <code>Router.HandleModal</code> to
<code>Router.Modal</code></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.15.0...v0.15.1">https://github.com/disgoorg/disgo/compare/v0.15.0...v0.15.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="604780dafa"><code>604780d</code></a>
handler improvements (<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/240">#240</a>)</li>
<li><a
href="12bf0cce55"><code>12bf0cc</code></a>
add stage message types (again)</li>
<li><a
href="0f4d6ca243"><code>0f4d6ca</code></a>
add NSFW and VideoQualityMode to GuildStageVoiceChannelUpdate</li>
<li><a
href="356ddcbf0f"><code>356ddcb</code></a>
fix StickerPackBanner cdn endpoint path</li>
<li><a
href="84cfc8d278"><code>84cfc8d</code></a>
add StorePageAsset cdn endpoint</li>
<li><a
href="c377083bc3"><code>c377083</code></a>
add ConnectionTypeInstagram (<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/234">#234</a>)</li>
<li><a
href="5c4a0c559b"><code>5c4a0c5</code></a>
fix double slash in endpoint</li>
<li><a
href="24260e4bca"><code>24260e4</code></a>
add noop rate limiter and proxy example and always send shard info</li>
<li><a
href="b780a98e18"><code>b780a98</code></a>
fix field name capitalization</li>
<li><a
href="4aca7c2ba9"><code>4aca7c2</code></a>
match flag const names</li>
<li>Additional commits viewable in <a
href="https://github.com/disgoorg/disgo/compare/v0.15.0...v0.15.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.80.0 to 0.80.2.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b91e64b2b0"><code>b91e64b</code></a>
Reorder a few project fields</li>
<li><a
href="0fa6158375"><code>0fa6158</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1636">#1636</a>
from apricote/project-import-url</li>
<li><a
href="1ab89ad306"><code>1ab89ad</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1651">#1651</a>
from xanzy/feature/links</li>
<li><a
href="1fd8df4983"><code>1fd8df4</code></a>
Add release links</li>
<li><a
href="e837f2de87"><code>e837f2d</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1650">#1650</a>
from blacknon/master</li>
<li><a
href="df4112ac7b"><code>df4112a</code></a>
Rename the option structs and add missing <code>url</code> tags</li>
<li><a
href="f8929bf7ef"><code>f8929bf</code></a>
update. <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/pull/1650#discussion_r1102998538">xanzy/go-gitlab#1650</a></li>
<li><a
href="172b5e0c3f"><code>172b5e0</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1648">#1648</a>
from theoriginalstove/1501-add-changelog-api-support</li>
<li><a
href="39bce07acd"><code>39bce07</code></a>
Refactor…</li>
<li><a
href="3f26370513"><code>3f26370</code></a>
style: added whitespace between license and package name in new
files</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.80.0...v0.80.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/goreleaser/nfpm/v2](https://github.com/goreleaser/nfpm) from
2.25.1 to 2.26.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/goreleaser/nfpm/releases">github.com/goreleaser/nfpm/v2's
releases</a>.</em></p>
<blockquote>
<h2>v2.26.0</h2>
<h2>Changelog</h2>
<h3>New Features</h3>
<ul>
<li>34276432d6614e28108b2851b298c86342c41e4c: feat(deps): bump
github.com/goreleaser/chglog from 0.4.0 to 0.4.1 (<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/616">#616</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
</ul>
<h3>Bug fixes</h3>
<ul>
<li>4d89ab846ee135cbcf3085316bf15c739e8f1cc8: fix: use --clean instead
of --rm-dist (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/nfpm/compare/v2.25.1...v2.26.0">https://github.com/goreleaser/nfpm/compare/v2.25.1...v2.26.0</a></p>
<hr />
<ul>
<li>Check out <a href="https://goreleaser.com">GoReleaser</a>: it
integrates nFPM to the release pipeline of your Go projects.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="34276432d6"><code>3427643</code></a>
feat(deps): bump github.com/goreleaser/chglog from 0.4.0 to 0.4.1 (<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/616">#616</a>)</li>
<li><a
href="4d89ab846e"><code>4d89ab8</code></a>
fix: use --clean instead of --rm-dist</li>
<li>See full diff in <a
href="https://github.com/goreleaser/nfpm/compare/v2.25.1...v2.26.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
**Note:** Dependabot was ignoring updates to this dependency, but since
you've updated it yourself we've started tracking it for you again. 🤖
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.5.0
to 0.6.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h1>gopls/v0.6.0</h1>
<h2>Features</h2>
<h3>Default to <code>-mod=readonly</code></h3>
<p>In Go 1.16, the Go command will no longer modify user's
<code>go.mod</code> and <code>go.sum</code> files automatically (<a
href="https://tip.golang.org/doc/go1.16#tools">https://tip.golang.org/doc/go1.16#tools</a>).
In order to match this behavior, <code>gopls</code> now also uses
<code>-mod=readonly</code> when running the <code>go</code> command. Any
errors reported by the <code>go</code> command will be presented with a
suggested fix to make the necessary fixes to your <code>go.mod</code> or
<code>go.sum</code> files. As a consequence, your workspace may be in a
partially broken state while you have errors in your <code>go.mod</code>
or <code>go.sum</code> file. <a
href="https://github-redirect.dependabot.com/golang/go/issues/42266">golang/go#42266</a>
will mitigate this, but it will likely not be resolved until
February.</p>
<p><strong>Not recommended</strong>: If you must opt out of this
behavior, you can set the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#allowmodfilemodifications-bool"><code>allowModfileModifications</code></a>
configuration to <code>true</code>.</p>
<h3>Default to <code>GOPROXY=off</code></h3>
<p><code>gopls</code> no longer accesses the network implicitly. This
should improve latency in all cases, but it also means that
<code>gopls</code> will no longer automatically download modules that
are not found in your local module cache. The one exception is that
<code>gopls</code> will still download dependencies on start-up, so it
will continue to work as expected if you have cloned a repository for
the first time. If <code>gopls</code> detects a missing module, it will
offer you a suggested fix that downloads it.</p>
<p><strong>Not recommended</strong>: If you must opt out of this
behavior, you can set the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#allowimplicitnetworkaccess-bool"><code>allowImplicitNetworkaccess</code></a>
configuration to <code>true</code>.</p>
<h3>Inclusion/exclusion filters for directories</h3>
<p><code>gopls</code> now supports excluding certain directories in your
workspace from analysis. This may be useful if you are only working on a
subset of a large repository. Note that these filters are not propagated
to the <code>go</code> command, so <code>gopls</code> will still load
metadata for these directories, which may be expensive.
<strong>Configure the included/excluded directories through the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#directoryfilters-string"><code>directoryFilters</code></a>
setting.</strong></p>
<h3>Debouncing for diagnostics</h3>
<p>Diagnostics are now reported instantly only for the packages
currently being edited. Diagnostics for other packages in the workspace
will now only be computed after 250 milliseconds, meaning that, if you
are actively typing, <code>gopls</code> will not start these more costly
operations. This should significantly reduce CPU utilization. This
debounce delay can be optionally configured via the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#experimentaldiagnosticsdelay-timeduration"><code>experimentalDiagnosticsDelay</code></a>
setting.</p>
<h3>"Upgrade direct dependencies" code lens</h3>
<p>In <a
href="https://github.com/golang/tools/releases/tag/gopls%2Fv0.5.4"><code>gopls/v0.5.4</code></a>,
we removed the per-require "Upgrade dependency" code lens, as
it was very high latency, and its UX did not meet user needs. Some users
have expressed disappointment about this, so, to bridge the gap, we have
separated the existing "Upgrade all dependencies" code lens
into two: "Upgrade transitive dependencies" and "Upgrade
direct dependencies". The first is the equivalent of running
<code>go get -u all</code>, while the second <code>go get</code>s each
of your module's requires independently. We are continuing to work on
improving these features and will likely bring back the "Upgrade
dependency" code lens as a suggested fix (learn more: <a
href="https://github-redirect.dependabot.com/golang/go/issues/38339">golang/go#38339</a>).</p>
<h3>Support for filling a partially-populated struct</h3>
<p>The "Fill struct" suggested fix will now be suggested for
structs that have some, but not all, fields set.</p>
<h3>Experimental</h3>
<h4>Field alignment analyzer</h4>
<p>A new analyzer has been added to suggest reordering fields in a
struct in order to achieve the optimal alignment in memory. It is still
off by default, but can be enabled by adding the following to your
<code>gopls</code> settings:</p>
<pre lang="json5"><code>"analyses": {
"fieldalignment": true
}
</code></pre>
<h2>Fixes</h2>
<h3>Improvements to diagnostics tracking</h3>
<p>Diagnostic messages were not being updated correctly when the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#codelenses-mapstringbool"><code>GC
details</code></a> code lens was toggled on. New handling to
differentiate diagnostics by sources should have resolved this
issue.</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="d0863f03da"><code>d0863f0</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="545ca87cb5"><code>545ca87</code></a>
gopls/internal/regtest/marker: require go/packages</li>
<li><a
href="1ace7dbcb0"><code>1ace7db</code></a>
go,gopls: remove license from package doc comments</li>
<li><a
href="ebad375bab"><code>ebad375</code></a>
gopls/internal/lsp/protocol: prevent license rendering in godoc</li>
<li><a
href="10a39ef32d"><code>10a39ef</code></a>
gopls/internal/lsp/regtest: address additional comments on
marker.go</li>
<li><a
href="69920f2e63"><code>69920f2</code></a>
gopls/internal/regtest/marker: add missing tests for hover</li>
<li><a
href="24a13c6fad"><code>24a13c6</code></a>
gopls/internal/regtest: fill out features of the new marker tests</li>
<li><a
href="2b149ce94b"><code>2b149ce</code></a>
gopls/internal/regtest: add a regtest-based version of the marker
tests</li>
<li><a
href="edddc5fc32"><code>edddc5f</code></a>
go/packages: don't discard errors loading export data</li>
<li><a
href="a762c82c1b"><code>a762c82</code></a>
go/ssa: add MultiConvert instruction</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.5.0...v0.6.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.79.1 to 0.80.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9e8a56f022"><code>9e8a56f</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1645">#1645</a>
from blacknon/master</li>
<li><a
href="c6a3d13acd"><code>c6a3d13</code></a>
Merge remote-tracking branch 'refs/remotes/origin/master'</li>
<li><a
href="2544230e10"><code>2544230</code></a>
UpdateSnippetOptionにFilesを追加</li>
<li><a
href="9e38892900"><code>9e38892</code></a>
Formatted the project using gofumpt</li>
<li><a
href="f46a273ab9"><code>f46a273</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1597">#1597</a>
from abdellaui/bugfix/rename_projects_NameRegexDelet...</li>
<li><a
href="79679f4c0b"><code>79679f4</code></a>
Tweak PR a little…</li>
<li><a
href="4b328c1100"><code>4b328c1</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1612">#1612</a>
from FantasyTeddy/update-protected-branches</li>
<li><a
href="1b76c1c3c7"><code>1b76c1c</code></a>
Few minor tweaks…</li>
<li><a
href="51f101e636"><code>51f101e</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1642">#1642</a>
from theoriginalstove/1583-custom-headers</li>
<li><a
href="ab870cff19"><code>ab870cf</code></a>
Tweak the PR a little</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.79.1...v0.80.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.5.0
to 0.6.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a9f661cb6e"><code>a9f661c</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="310bfa40f1"><code>310bfa4</code></a>
cryptobyte: reject negative Unwrite argument</li>
<li><a
href="59ff47295c"><code>59ff472</code></a>
all: fix some comments</li>
<li>See full diff in <a
href="https://github.com/golang/crypto/compare/v0.5.0...v0.6.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.4.0
to 0.5.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="adbaf66a0b"><code>adbaf66</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="e07593a4c4"><code>e07593a</code></a>
oauth2: remove direct dependency on golang.org/x/net</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.4.0...v0.5.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
dependabot[bot]
Carlos Alexandro Becker
Kazuki Matsumaru
