1
0
mirror of https://github.com/goreleaser/goreleaser.git synced 2025-10-08 23:12:05 +02:00

7131 Commits

Author SHA1 Message Date
dependabot[bot]
37e1eff8c7 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.3 to 1.88.4 (#6155)
Bumps
[github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2)
from 1.88.3 to 1.88.4.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f64c8d06c7"><code>f64c8d0</code></a>
Release 2025-10-07</li>
<li><a
href="2ffc1613d9"><code>2ffc161</code></a>
Regenerated Clients</li>
<li><a
href="e08a899b39"><code>e08a899</code></a>
Update endpoints model</li>
<li><a
href="a4663ffcf0"><code>a4663ff</code></a>
Update API model</li>
<li><a
href="e4a4e2d65e"><code>e4a4e2d</code></a>
Feat checksum reuse (<a
href="https://redirect.github.com/aws/aws-sdk-go-v2/issues/3199">#3199</a>)</li>
<li><a
href="e9e5d66c8b"><code>e9e5d66</code></a>
Release 2025-10-06</li>
<li><a
href="08532b438e"><code>08532b4</code></a>
Regenerated Clients</li>
<li><a
href="b7bcc01efb"><code>b7bcc01</code></a>
Update API model</li>
<li><a
href="f382571d75"><code>f382571</code></a>
Release 2025-10-03</li>
<li><a
href="cb116e9aca"><code>cb116e9</code></a>
Regenerated Clients</li>
<li>Additional commits viewable in <a
href="https://github.com/aws/aws-sdk-go-v2/compare/service/s3/v1.88.3...service/s3/v1.88.4">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/aws/aws-sdk-go-v2/service/s3&package-manager=go_modules&previous-version=1.88.3&new-version=1.88.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-08 08:24:37 +00:00
dependabot[bot]
5ac8c78071 chore(deps): bump github.com/goreleaser/nfpm/v2 from 2.43.2 to 2.43.3 (#6148)
Bumps
[github.com/goreleaser/nfpm/v2](https://github.com/goreleaser/nfpm) from
2.43.2 to 2.43.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/goreleaser/nfpm/releases">github.com/goreleaser/nfpm/v2's
releases</a>.</em></p>
<blockquote>
<h2>v2.43.3</h2>
<h2>Changelog</h2>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/nfpm/compare/v2.43.2...v2.43.3">https://github.com/goreleaser/nfpm/compare/v2.43.2...v2.43.3</a></p>
<h2>Helping out</h2>
<p>This release is only possible thanks to <strong>all</strong> the
support of <strong>awesome people</strong>!</p>
<p>Want to be one of them?
You can <a href="https://goreleaser.com/sponsors/">sponsor</a> or <a
href="https://goreleaser.com/contributing">contribute with code</a>.</p>
<h2>Where to go next?</h2>
<ul>
<li>nFPM is a satellite project from GoReleaser. <a
href="https://goreleaser.com">Check it out</a>!</li>
<li>Find examples and commented usage of all options in our <a
href="https://nfpm.goreleaser.com/">website</a>.</li>
<li>Reach out on <a href="https://discord.gg/RGEBtg8vQ6">Discord</a> and
<a href="https://twitter.com/goreleaser">Twitter</a>!</li>
</ul>
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="58f5d315fe"><code>58f5d31</code></a>
chore: re-release v2.43.2</li>
<li>See full diff in <a
href="https://github.com/goreleaser/nfpm/compare/v2.43.2...v2.43.3">compare
view</a></li>
</ul>
</details>
<br />

<details>
<summary>Most Recent Ignore Conditions Applied to This Pull
Request</summary>

| Dependency Name | Ignore Conditions |
| --- | --- |
| github.com/goreleaser/nfpm/v2 | [>= 2.24.a, < 2.25] |
</details>


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/goreleaser/nfpm/v2&package-manager=go_modules&previous-version=2.43.2&new-version=2.43.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
nightly
2025-10-07 08:21:30 +00:00
dependabot[bot]
48ee92f3e5 chore(deps): bump gitlab.com/gitlab-org/api/client-go from 0.149.0 to 0.152.0 (#6149)
Bumps
[gitlab.com/gitlab-org/api/client-go](https://gitlab.com/gitlab-org/api/client-go)
from 0.149.0 to 0.152.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://gitlab.com/gitlab-org/api/client-go/tags">gitlab.com/gitlab-org/api/client-go's
releases</a>.</em></p>
<blockquote>
<h2>v0.152.0</h2>
<h2>0.152.0</h2>
<h3>🚀 Features</h3>
<ul>
<li>feat(api): add api support for listing users who starred a project
(<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2486">!2486</a>)
by <a href="https://gitlab.com/ajeymuthiah">ajey muthiah</a></li>
</ul>
<h3>🔄 Other Changes</h3>
<ul>
<li>chore(no-release): Update Duo Review Instructions (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2502">!2502</a>)
by <a href="https://gitlab.com/PatrickRice">Patrick Rice</a></li>
<li>feat(model_registry_api): Added api integration (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2501">!2501</a>)
by <a href="https://gitlab.com/elC0mpa">Jose Gabriel Companioni
Benitez</a></li>
<li>feat(no-release): Add AGENTS.md file (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2479">!2479</a>)
by <a href="https://gitlab.com/PatrickRice">Patrick Rice</a></li>
<li>chore(no-release): Disable dependency scanning on personal forks (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2500">!2500</a>)
by <a href="https://gitlab.com/PatrickRice">Patrick Rice</a></li>
</ul>
<h1><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.151.0...v0.152.0">0.152.0</a>
(2025-10-06)</h1>
<h3>Features</h3>
<ul>
<li><strong>api:</strong> add api support for listing users who starred
a project (<a
href="0cdb4ce539">0cdb4ce</a>)</li>
<li><strong>model_registry_api:</strong> Added api integration (<a
href="065dd639bc">065dd63</a>)</li>
<li><strong>no-release:</strong> Add AGENTS.md file (<a
href="b9febab318">b9febab</a>)</li>
</ul>
<h2>v0.151.0</h2>
<h2>0.151.0</h2>
<h3>🚀 Features</h3>
<ul>
<li>feat(api): add api support for delete enterprise user (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2492">!2492</a>)
by <a href="https://gitlab.com/ajeymuthiah">ajey muthiah</a></li>
</ul>
<h3>🔄 Other Changes</h3>
<ul>
<li>docs(no-release): Make it easier to find the docs on issues (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2497">!2497</a>)
by <a href="https://gitlab.com/heidi.berry">Heidi Berry</a></li>
</ul>
<h1><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.150.0...v0.151.0">0.151.0</a>
(2025-10-04)</h1>
<h3>Features</h3>
<ul>
<li><strong>api:</strong> add api support for delete enterprise user (<a
href="36ca8ab767">36ca8ab</a>)</li>
</ul>
<h2>v0.150.0</h2>
<h2>0.150.0</h2>
<h3>🚀 Features</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://gitlab.com/gitlab-org/api/client-go/blob/main/CHANGELOG.md">gitlab.com/gitlab-org/api/client-go's
changelog</a>.</em></p>
<blockquote>
<h2>0.152.0</h2>
<h3>🚀 Features</h3>
<ul>
<li>feat(api): add api support for listing users who starred a project
(<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2486">!2486</a>)
by <a href="https://gitlab.com/ajeymuthiah">ajey muthiah</a></li>
</ul>
<h3>🔄 Other Changes</h3>
<ul>
<li>chore(no-release): Update Duo Review Instructions (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2502">!2502</a>)
by <a href="https://gitlab.com/PatrickRice">Patrick Rice</a></li>
<li>feat(model_registry_api): Added api integration (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2501">!2501</a>)
by <a href="https://gitlab.com/elC0mpa">Jose Gabriel Companioni
Benitez</a></li>
<li>feat(no-release): Add AGENTS.md file (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2479">!2479</a>)
by <a href="https://gitlab.com/PatrickRice">Patrick Rice</a></li>
<li>chore(no-release): Disable dependency scanning on personal forks (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2500">!2500</a>)
by <a href="https://gitlab.com/PatrickRice">Patrick Rice</a></li>
</ul>
<h1><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.151.0...v0.152.0">0.152.0</a>
(2025-10-06)</h1>
<h3>Features</h3>
<ul>
<li><strong>api:</strong> add api support for listing users who starred
a project (<a
href="0cdb4ce539">0cdb4ce</a>)</li>
<li><strong>model_registry_api:</strong> Added api integration (<a
href="065dd639bc">065dd63</a>)</li>
<li><strong>no-release:</strong> Add AGENTS.md file (<a
href="b9febab318">b9febab</a>)</li>
</ul>
<h2>0.151.0</h2>
<h3>🚀 Features</h3>
<ul>
<li>feat(api): add api support for delete enterprise user (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2492">!2492</a>)
by <a href="https://gitlab.com/ajeymuthiah">ajey muthiah</a></li>
</ul>
<h3>🔄 Other Changes</h3>
<ul>
<li>docs(no-release): Make it easier to find the docs on issues (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2497">!2497</a>)
by <a href="https://gitlab.com/heidi.berry">Heidi Berry</a></li>
</ul>
<h1><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.150.0...v0.151.0">0.151.0</a>
(2025-10-04)</h1>
<h3>Features</h3>
<ul>
<li><strong>api:</strong> add api support for delete enterprise user (<a
href="36ca8ab767">36ca8ab</a>)</li>
</ul>
<h2>0.150.0</h2>
<h3>🚀 Features</h3>
<ul>
<li>feat: add Project Aliases API support (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2493">!2493</a>)
by <a href="https://gitlab.com/yashes7516">Yashesvinee V</a></li>
</ul>
<h3>🔄 Other Changes</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9a903e9596"><code>9a903e9</code></a>
chore(release): 0.152.0 [skip ci]</li>
<li><a
href="99eaeaf9aa"><code>99eaeaf</code></a>
Merge branch 'feature/list-project-starrers' into 'main'</li>
<li><a
href="0cdb4ce539"><code>0cdb4ce</code></a>
feat(api): add api support for listing users who starred a project</li>
<li><a
href="9bf96e26dc"><code>9bf96e2</code></a>
Merge branch 'update-duo-instructions' into 'main'</li>
<li><a
href="d7e6383bb4"><code>d7e6383</code></a>
chore(no-release): Update Duo Review Instructions</li>
<li><a
href="63502e90f0"><code>63502e9</code></a>
Merge branch 'feat/2158' into 'main'</li>
<li><a
href="065dd639bc"><code>065dd63</code></a>
feat(model_registry_api): Added api integration</li>
<li><a
href="a2e7374619"><code>a2e7374</code></a>
Merge branch 'add-agents-file' into 'main'</li>
<li><a
href="b9febab318"><code>b9febab</code></a>
feat(no-release): Add AGENTS.md file</li>
<li><a
href="eb92808dbc"><code>eb92808</code></a>
Merge branch 'disable-deps-scan-on-personal-forks' into 'main'</li>
<li>Additional commits viewable in <a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.149.0...v0.152.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gitlab.com/gitlab-org/api/client-go&package-manager=go_modules&previous-version=0.149.0&new-version=0.152.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-07 08:20:50 +00:00
Carlos Alexandro Becker
8c0d09e7c2 fix(git): retry on when network is unreachable
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2025-10-06 10:38:55 +02:00
dependabot[bot]
897999a945 chore(deps): bump github.com/caarlos0/log from 0.5.1 to 0.5.2 (#6146)
Bumps [github.com/caarlos0/log](https://github.com/caarlos0/log) from
0.5.1 to 0.5.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/caarlos0/log/releases">github.com/caarlos0/log's
releases</a>.</em></p>
<blockquote>
<h2>v0.5.2</h2>
<h2>Changelog</h2>
<h3>Other work</h3>
<ul>
<li>dc2c8d0bfcafeff428718061b5f9f6a28f9ff3ac: ci(deps): bump
github/codeql-action from 3.30.5 to 3.30.6 in the actions group (<a
href="https://redirect.github.com/caarlos0/log/issues/61">#61</a>)
(dependabot[bot] &lt;49699333+dependabot[bot]<a
href="https://github.com/users"><code>@​users</code></a>.noreply.github.com&gt;)</li>
</ul>
<hr />
<p><em>Released with <a href="https://goreleaser.com/pro">GoReleaser
Pro</a>!</em></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="dc2c8d0bfc"><code>dc2c8d0</code></a>
ci(deps): bump github/codeql-action from 3.30.5 to 3.30.6 in the actions
grou...</li>
<li><a
href="b999320e55"><code>b999320</code></a>
ci: fix</li>
<li><a
href="7fc1b041c2"><code>7fc1b04</code></a>
ci: workflow permissions</li>
<li><a
href="7a783ebc4f"><code>7a783eb</code></a>
ci: pin actions</li>
<li><a
href="29852fdf74"><code>29852fd</code></a>
fix(deps): right lipgloss version</li>
<li><a
href="e295e72ccd"><code>e295e72</code></a>
ci: security ci job</li>
<li><a
href="4b99beecaa"><code>4b99bee</code></a>
ci: fix dependabot config</li>
<li><a
href="0951e6980f"><code>0951e69</code></a>
chore(deps): bump actions/setup-go from 5 to 6 (<a
href="https://redirect.github.com/caarlos0/log/issues/59">#59</a>)</li>
<li><a
href="a50bb5db40"><code>a50bb5d</code></a>
chore(deps): bump github.com/charmbracelet/colorprofile from 0.3.1 to
0.3.2 (...</li>
<li><a
href="282b2ff36b"><code>282b2ff</code></a>
chore(deps): bump actions/checkout from 4 to 5 (<a
href="https://redirect.github.com/caarlos0/log/issues/57">#57</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/caarlos0/log/compare/v0.5.1...v0.5.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/caarlos0/log&package-manager=go_modules&previous-version=0.5.1&new-version=0.5.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-06 08:24:31 +00:00
dependabot[bot]
2b727651a1 chore(deps): bump github.com/goreleaser/nfpm/v2 from 2.43.1 to 2.43.2 (#6145)
Bumps
[github.com/goreleaser/nfpm/v2](https://github.com/goreleaser/nfpm) from
2.43.1 to 2.43.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/goreleaser/nfpm/releases">github.com/goreleaser/nfpm/v2's
releases</a>.</em></p>
<blockquote>
<h2>v2.43.2</h2>
<h2>Changelog</h2>
<h3>Bug fixes</h3>
<ul>
<li>2640cc5070c79947c3f4502d8498b157ea2d9d3e: fix: conffiles only when
files match (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/984">#984</a>)
(<a
href="https://github.com/terinjokes"><code>@​terinjokes</code></a>)</li>
<li>fba243decc01656984eb9fc9e9a81b22f8b90685: fix: lint (<a
href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
</ul>
<h3>Build process updates</h3>
<ul>
<li>41ba7dcf4370db5846f463993f2293dec9dc4858: ci: check licenses on
build (<a
href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
<li>e25ecf88683a66627ba6a492919e0ee27b96e73a: ci: fix docs jobs (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/976">#976</a>)
(<a href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
<li>04a215ef360bd280854e1377da218744b06af672: ci: fix missing perms (<a
href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
<li>f9c87a7e3ba748b0e4338f141af751b5b8ff29ed: ci: pin actions (<a
href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
<li>3076012f87988415a71f0fdfb1f2680c2b5fc7c2: ci: properly pin all
actions, more scans (<a
href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
<li>4e9d0bfbae9ac4b51e109f7fde600470d0b4d296: ci: update goreleaser
config (<a
href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
</ul>
<h3>Other work</h3>
<ul>
<li>a02cb70479aeb6cd6aad50ad8988f6a0096c8e19: docs: update cmd docs (<a
href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/nfpm/compare/v2.43.1...v2.43.2">https://github.com/goreleaser/nfpm/compare/v2.43.1...v2.43.2</a></p>
<h2>Helping out</h2>
<p>This release is only possible thanks to <strong>all</strong> the
support of <strong>awesome people</strong>!</p>
<p>Want to be one of them?
You can <a href="https://goreleaser.com/sponsors/">sponsor</a> or <a
href="https://goreleaser.com/contributing">contribute with code</a>.</p>
<h2>Where to go next?</h2>
<ul>
<li>nFPM is a satellite project from GoReleaser. <a
href="https://goreleaser.com">Check it out</a>!</li>
<li>Find examples and commented usage of all options in our <a
href="https://nfpm.goreleaser.com/">website</a>.</li>
<li>Reach out on <a href="https://discord.gg/RGEBtg8vQ6">Discord</a> and
<a href="https://twitter.com/goreleaser">Twitter</a>!</li>
</ul>
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4e9d0bfbae"><code>4e9d0bf</code></a>
ci: update goreleaser config</li>
<li><a
href="407dda90af"><code>407dda9</code></a>
chore(deps): update dependabot</li>
<li><a
href="92480f5037"><code>92480f5</code></a>
chore(deps): bump github/codeql-action from 3.30.5 to 3.30.6 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/983">#983</a>)</li>
<li><a
href="2640cc5070"><code>2640cc5</code></a>
fix: conffiles only when files match (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/984">#984</a>)</li>
<li><a
href="402429ce81"><code>402429c</code></a>
chore(deps): bump github.com/goreleaser/fileglob from 1.3.0 to 1.4.0 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/982">#982</a>)</li>
<li><a
href="6e2a80025f"><code>6e2a800</code></a>
chore(deps): bump docker/login-action from 3.5.0 to 3.6.0 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/981">#981</a>)</li>
<li><a
href="5ebcdf6036"><code>5ebcdf6</code></a>
chore(deps): bump github/codeql-action from 3.30.4 to 3.30.5 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/980">#980</a>)</li>
<li><a
href="886b107a9b"><code>886b107</code></a>
chore(deps): bump github/codeql-action from 3.30.3 to 3.30.4 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/979">#979</a>)</li>
<li><a
href="06100071db"><code>0610007</code></a>
chore(deps): bump cachix/install-nix-action from 31.6.2 to 31.7.0 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/978">#978</a>)</li>
<li><a
href="22876a7241"><code>22876a7</code></a>
chore(deps): bump actions/cache from 4.2.4 to 4.3.0 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/977">#977</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/goreleaser/nfpm/compare/v2.43.1...v2.43.2">compare
view</a></li>
</ul>
</details>
<br />

<details>
<summary>Most Recent Ignore Conditions Applied to This Pull
Request</summary>

| Dependency Name | Ignore Conditions |
| --- | --- |
| github.com/goreleaser/nfpm/v2 | [>= 2.24.a, < 2.25] |
</details>


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/goreleaser/nfpm/v2&package-manager=go_modules&previous-version=2.43.1&new-version=2.43.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-06 08:21:32 +00:00
actions-user
3ed2bbeafa chore: auto-update generated files 2025-10-06 08:10:11 +00:00
actions-user
8ebe137bc9 chore: auto-update generated files 2025-10-05 08:09:22 +00:00
dependabot[bot]
f8994920e3 chore(deps): bump github.com/goreleaser/fileglob from 1.3.0 to 1.4.0 (#6144)
Bumps
[github.com/goreleaser/fileglob](https://github.com/goreleaser/fileglob)
from 1.3.0 to 1.4.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/goreleaser/fileglob/releases">github.com/goreleaser/fileglob's
releases</a>.</em></p>
<blockquote>
<h2>v1.4.0</h2>
<h2>Changelog</h2>
<h3>New Features</h3>
<ul>
<li>7d09dae359ecfebd9ecb83b81f82189974c3650f: feat(deps): bump
github.com/matryer/is from 1.4.0 to 1.4.1 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/41">#41</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
</ul>
<h3>Bug fixes</h3>
<ul>
<li>960f9051666d681b1a34861346d0f91fcb1d10df: fix: lint, ci updates (<a
href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
</ul>
<h3>Other work</h3>
<ul>
<li>b66624b279684b736a3e88e1b25cc87d2a5735c7: build: fix lint (<a
href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
<li>ceb7e7f836abd0b96a8ab82434401587245fd3ef: chore(ci): fix stuff for
next release (<a
href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
<li>bd1ea91dbf67bf290faf4f2b631d7b84f6fdb5ef: chore(deps): bump
actions/cache from 2 to 3.0.11 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/40">#40</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>7a8dacb145ac06f78da603659772f26841902d48: chore(deps): bump
actions/cache from 3 to 4 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/48">#48</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>061e28a2a32469a044099401f29df6a3b1fe56d8: chore(deps): bump
actions/checkout from 2 to 3.1.0 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/39">#39</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>dfefcb71f843a178de6a9863cd9ba7d23cd95990: chore(deps): bump
actions/checkout from 3 to 4 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/45">#45</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>9e27485244b6280d7af21bc2788ee1c4beeb7d1a: chore(deps): bump
actions/setup-go from 2 to 4 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/42">#42</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>99738dd862b05f987a90e3f1098a9062af47d97c: chore(deps): bump
actions/setup-go from 4 to 5 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/47">#47</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>ab979126b3eda686d5754b96f3ec025f66b8a26d: chore(deps): bump
codecov/codecov-action from 2 to 3 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/34">#34</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>2dfd6bd712b15c0c45321a84849aa5cd3655e156: chore(deps): bump
codecov/codecov-action from 3 to 4 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/49">#49</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>af29275d713be600c42a5ecd1d70becfba74b001: chore(deps): bump
codecov/codecov-action from 4 to 5 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/55">#55</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>091c385e93a7468e958e102e83606a7fcae0e733: chore(deps): bump
golangci/golangci-lint-action from 2 to 3.2.0 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/37">#37</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>36ff4f1064c4539995b5c4b0473be03cc851aeb8: chore(deps): bump
golangci/golangci-lint-action from 3 to 4 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/50">#50</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>b0addbba781262016168beef8cbe8d28d1d34df7: chore(deps): bump
golangci/golangci-lint-action from 4 to 6 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/52">#52</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>df1f04c1648b2d652859927b8c8d5d43c3e9634d: chore(deps): bump
goreleaser/goreleaser-action from 2 to 4 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/44">#44</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>7efb0a02fca821940e7b85014cf4e4617b99266a: chore(deps): bump
goreleaser/goreleaser-action from 4 to 5 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/46">#46</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>09ec2d9c983d63696c91c22361f58cb2f15ca60e: chore(deps): bump
goreleaser/goreleaser-action from 5 to 6 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/53">#53</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>a0f7dacbb2bfe3db6072c3f404ca28dcc44c0d95: ci: add release workflow
(<a href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
<li>97bddb4248ba3c5ce398dc523e313d76e3160dbc: ci: dependabot update (<a
href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
<li>d0298f04152a191eccd471fef5da33eb78628cff: ci: update goreleaser (<a
href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
<li>7778a9bccd2591b258ceb66f69eace05b2fa9be7: docs: update badge et al
(<a href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="97bddb4248"><code>97bddb4</code></a>
ci: dependabot update</li>
<li><a
href="a0f7dacbb2"><code>a0f7dac</code></a>
ci: add release workflow</li>
<li><a
href="d0298f0415"><code>d0298f0</code></a>
ci: update goreleaser</li>
<li><a
href="960f905166"><code>960f905</code></a>
fix: lint, ci updates</li>
<li><a
href="7778a9bccd"><code>7778a9b</code></a>
docs: update badge et al</li>
<li><a
href="af29275d71"><code>af29275</code></a>
chore(deps): bump codecov/codecov-action from 4 to 5 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/55">#55</a>)</li>
<li><a
href="09ec2d9c98"><code>09ec2d9</code></a>
chore(deps): bump goreleaser/goreleaser-action from 5 to 6 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/53">#53</a>)</li>
<li><a
href="b0addbba78"><code>b0addbb</code></a>
chore(deps): bump golangci/golangci-lint-action from 4 to 6 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/52">#52</a>)</li>
<li><a
href="36ff4f1064"><code>36ff4f1</code></a>
chore(deps): bump golangci/golangci-lint-action from 3 to 4 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/50">#50</a>)</li>
<li><a
href="2dfd6bd712"><code>2dfd6bd</code></a>
chore(deps): bump codecov/codecov-action from 3 to 4 (<a
href="https://redirect.github.com/goreleaser/fileglob/issues/49">#49</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/goreleaser/fileglob/compare/v1.3.0...v1.4.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/goreleaser/fileglob&package-manager=go_modules&previous-version=1.3.0&new-version=1.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-03 08:28:58 +00:00
dependabot[bot]
c9bba76f19 chore(deps): bump gitlab.com/gitlab-org/api/client-go from 0.148.1 to 0.149.0 (#6143)
Bumps
[gitlab.com/gitlab-org/api/client-go](https://gitlab.com/gitlab-org/api/client-go)
from 0.148.1 to 0.149.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://gitlab.com/gitlab-org/api/client-go/tags">gitlab.com/gitlab-org/api/client-go's
releases</a>.</em></p>
<blockquote>
<h2>v0.149.0</h2>
<h2>0.149.0</h2>
<h3>🚀 Features</h3>
<ul>
<li>feat(no-release): Add dependency scanning (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2480">!2480</a>)
by <a href="https://gitlab.com/PatrickRice">Patrick Rice</a></li>
</ul>
<h3>🔄 Other Changes</h3>
<ul>
<li>ci(semantic-release): migrate to
<code>@gitlab/semantic-release-merge-request-analyzer</code> (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2490">!2490</a>)
by <a href="https://gitlab.com/fforster">Florian Forster</a></li>
<li>ci: add the <code>autolabels</code> job (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2489">!2489</a>)
by <a href="https://gitlab.com/fforster">Florian Forster</a></li>
<li>chore(deps): update module google.golang.org/protobuf to v1.36.10
(<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2488">!2488</a>)
by <a href="https://gitlab.com/gitlab-dependency-update-bot">GitLab
Dependency Bot</a></li>
<li>refactor(no-release): added tests for delete project hook method (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2482">!2482</a>)
by <a href="https://gitlab.com/elC0mpa">Jose Gabriel Companioni
Benitez</a></li>
<li>docs(no-release): Add guide for adding new APIs and issue templates
(<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2478">!2478</a>)
by <a href="https://gitlab.com/heidi.berry">Heidi Berry</a></li>
</ul>
<h1><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.148.1...v0.149.0">0.149.0</a>
(2025-10-02)</h1>
<h3>Features</h3>
<ul>
<li><strong>no-release:</strong> Add dependency scanning (<a
href="8b0ee10acb">8b0ee10</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://gitlab.com/gitlab-org/api/client-go/blob/main/CHANGELOG.md">gitlab.com/gitlab-org/api/client-go's
changelog</a>.</em></p>
<blockquote>
<h2>0.149.0</h2>
<h3>🚀 Features</h3>
<ul>
<li>feat(no-release): Add dependency scanning (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2480">!2480</a>)
by <a href="https://gitlab.com/PatrickRice">Patrick Rice</a></li>
</ul>
<h3>🔄 Other Changes</h3>
<ul>
<li>ci(semantic-release): migrate to
<code>@gitlab/semantic-release-merge-request-analyzer</code> (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2490">!2490</a>)
by <a href="https://gitlab.com/fforster">Florian Forster</a></li>
<li>ci: add the <code>autolabels</code> job (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2489">!2489</a>)
by <a href="https://gitlab.com/fforster">Florian Forster</a></li>
<li>chore(deps): update module google.golang.org/protobuf to v1.36.10
(<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2488">!2488</a>)
by <a href="https://gitlab.com/gitlab-dependency-update-bot">GitLab
Dependency Bot</a></li>
<li>refactor(no-release): added tests for delete project hook method (<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2482">!2482</a>)
by <a href="https://gitlab.com/elC0mpa">Jose Gabriel Companioni
Benitez</a></li>
<li>docs(no-release): Add guide for adding new APIs and issue templates
(<a
href="https://gitlab.com/gitlab-org/api/client-go/-/merge_requests/2478">!2478</a>)
by <a href="https://gitlab.com/heidi.berry">Heidi Berry</a></li>
</ul>
<h1><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.148.1...v0.149.0">0.149.0</a>
(2025-10-02)</h1>
<h3>Features</h3>
<ul>
<li><strong>no-release:</strong> Add dependency scanning (<a
href="8b0ee10acb">8b0ee10</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5e239bc0f6"><code>5e239bc</code></a>
chore(release): 0.149.0 [skip ci]</li>
<li><a
href="76ffaf1b5d"><code>76ffaf1</code></a>
Merge branch 'fforster/semantic-release' into 'main'</li>
<li><a
href="c31b900a17"><code>c31b900</code></a>
ci(semantic-release): migrate to
`@gitlab/semantic-release-merge-request-anal...</li>
<li><a
href="0682fbfcca"><code>0682fbf</code></a>
Merge branch 'fforster/autolabels' into 'main'</li>
<li><a
href="b9e67c7cb3"><code>b9e67c7</code></a>
Merge branch 'renovate/google.golang.org-protobuf-1.x' into 'main'</li>
<li><a
href="aecae0a7e1"><code>aecae0a</code></a>
ci: add the <code>autolabels</code> job</li>
<li><a
href="37ec771a06"><code>37ec771</code></a>
chore(deps): update module google.golang.org/protobuf to v1.36.10</li>
<li><a
href="8618e13758"><code>8618e13</code></a>
Merge branch 'refactor/2136' into 'main'</li>
<li><a
href="7de21ff8d7"><code>7de21ff</code></a>
refactor(no-release): added tests for delete project hook method</li>
<li><a
href="06e80fc2f5"><code>06e80fc</code></a>
Merge branch 'add-issue-templates-and-instructions' into 'main'</li>
<li>Additional commits viewable in <a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.148.1...v0.149.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gitlab.com/gitlab-org/api/client-go&package-manager=go_modules&previous-version=0.148.1&new-version=0.149.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-03 08:27:22 +00:00
dependabot[bot]
f42fdee54a chore(deps): bump github.com/charmbracelet/keygen from 0.5.3 to 0.5.4 (#6142)
Bumps
[github.com/charmbracelet/keygen](https://github.com/charmbracelet/keygen)
from 0.5.3 to 0.5.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/charmbracelet/keygen/releases">github.com/charmbracelet/keygen's
releases</a>.</em></p>
<blockquote>
<h2>v0.5.4</h2>
<h2>Changelog</h2>
<h3>Fixed</h3>
<ul>
<li>6563d7d995a6a05eade304d7c9a065d736570f62: fix: lint issues (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/46">#46</a>)
(<a href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
</ul>
<h3>Docs</h3>
<ul>
<li>39c47af5fcd23bd69b6512c84bf7d5027a272f60: docs: add contributing
guidelines (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/41">#41</a>)
(<a
href="https://github.com/bashbunni"><code>@​bashbunni</code></a>)</li>
<li>e27a7972ab26c8e2c4d237aebb7e18f966888920: docs: format example code
(<a href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
</ul>
<h3>Other stuff</h3>
<ul>
<li>b8de4997b336cd5e22ac80df3e847a7fd09acafe: ci: fix goreleaser config
(<a href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
<li>dad8e903c118bc15fa08540c6e3e99c2436fbcee: ci: sync dependabot config
(<a
href="https://redirect.github.com/charmbracelet/keygen/issues/37">#37</a>)
(<a href="https://github.com/charmcli"><code>@​charmcli</code></a>)</li>
<li>03355154bd9540a00aeb935cfcc99426b5c6d1f0: ci: sync dependabot config
(<a
href="https://redirect.github.com/charmbracelet/keygen/issues/44">#44</a>)
(<a href="https://github.com/charmcli"><code>@​charmcli</code></a>)</li>
<li>79c0f922ad463e85f13227d3c402ec87110c1b37: ci: sync golangci-lint
config (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/33">#33</a>)
(<a
href="https://github.com/github-actions"><code>@​github-actions</code></a>[bot])</li>
<li>0cb498f3474ec5a0532e99cb99bce37be512920f: ci: sync golangci-lint
config (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/34">#34</a>)
(<a
href="https://github.com/github-actions"><code>@​github-actions</code></a>[bot])</li>
<li>39c36d5108ee56032a90ce5eaf1fd6a26b2fd8f7: ci: sync golangci-lint
config (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/36">#36</a>)
(<a
href="https://github.com/github-actions"><code>@​github-actions</code></a>[bot])</li>
<li>7a5908fab5a393440f1b874dc67579effdb7b9c3: ci: sync golangci-lint
config (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/39">#39</a>)
(<a
href="https://github.com/github-actions"><code>@​github-actions</code></a>[bot])</li>
</ul>
<hr />
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
<p>Thoughts? Questions? We love hearing from you. Feel free to reach out
on <a href="https://x.com/charmcli">X</a>, <a
href="https://charm.land/discord">Discord</a>, <a
href="https://charm.land/slack">Slack</a>, <a
href="https://mastodon.social/@charmcli">The Fediverse</a>, <a
href="https://bsky.app/profile/charm.land">Bluesky</a>.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b8de4997b3"><code>b8de499</code></a>
ci: fix goreleaser config</li>
<li><a
href="e27a7972ab"><code>e27a797</code></a>
docs: format example code</li>
<li><a
href="6563d7d995"><code>6563d7d</code></a>
fix: lint issues (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/46">#46</a>)</li>
<li><a
href="39c47af5fc"><code>39c47af</code></a>
docs: add contributing guidelines (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/41">#41</a>)</li>
<li><a
href="03355154bd"><code>0335515</code></a>
ci: sync dependabot config (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/44">#44</a>)</li>
<li><a
href="f8e90e525a"><code>f8e90e5</code></a>
chore(deps): bump golang.org/x/crypto from 0.41.0 to 0.42.0 (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/45">#45</a>)</li>
<li><a
href="3a78fe71a3"><code>3a78fe7</code></a>
chore(deps): bump golang.org/x/crypto from 0.40.0 to 0.41.0 (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/43">#43</a>)</li>
<li><a
href="7a5908fab5"><code>7a5908f</code></a>
ci: sync golangci-lint config (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/39">#39</a>)</li>
<li><a
href="b5db69abf7"><code>b5db69a</code></a>
chore(deps): bump golang.org/x/crypto from 0.39.0 to 0.40.0 (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/42">#42</a>)</li>
<li><a
href="362b1c985c"><code>362b1c9</code></a>
chore(deps): bump golang.org/x/crypto from 0.38.0 to 0.39.0 (<a
href="https://redirect.github.com/charmbracelet/keygen/issues/40">#40</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/charmbracelet/keygen/compare/v0.5.3...v0.5.4">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/charmbracelet/keygen&package-manager=go_modules&previous-version=0.5.3&new-version=0.5.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-03 08:26:17 +00:00
dependabot[bot]
4b6833b81f chore(deps): bump github.com/docker/docker from 28.4.0+incompatible to 28.5.0+incompatible (#6141)
Bumps [github.com/docker/docker](https://github.com/docker/docker) from
28.4.0+incompatible to 28.5.0+incompatible.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/docker/releases">github.com/docker/docker's
releases</a>.</em></p>
<blockquote>
<h2>v28.5.0</h2>
<h1>28.5.0</h1>
<p>For a full list of pull requests and changes in this release, refer
to the relevant GitHub milestones:</p>
<ul>
<li><a
href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A28.5.0">docker/cli,
28.5.0 milestone</a></li>
<li><a
href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A28.5.0">moby/moby,
28.5.0 milestone</a></li>
<li>Deprecated and removed features, see <a
href="https://github.com/docker/cli/blob/v28.5.0/docs/deprecated.md">Deprecated
Features</a>.</li>
<li>Changes to the Engine API, see <a
href="https://github.com/moby/moby/blob/v28.5.0/docs/api/version-history.md">API
version history</a>.</li>
</ul>
<h3>Bug fixes and enhancements</h3>
<ul>
<li>Don't print warnings in <code>docker info</code> for broken symlinks
in CLI-plugin directories. <a
href="https://redirect.github.com/docker/cli/pull/6476">docker/cli#6476</a></li>
<li>Fix a panic during <code>stats</code> on empty event
<code>Actor.ID</code>. <a
href="https://redirect.github.com/docker/cli/pull/6471">docker/cli#6471</a></li>
</ul>
<h3>Packaging updates</h3>
<ul>
<li>Remove support for legacy CBC cipher suites. <a
href="https://redirect.github.com/docker/cli/pull/6474">docker/cli#6474</a></li>
<li>Update Buildkit to <a
href="https://github.com/moby/buildkit/releases/tag/v0.25.0">v0.25.0</a>.
<a
href="https://redirect.github.com/moby/moby/pull/51075">moby/moby#51075</a></li>
<li>Update Dockerfile syntax to <a
href="https://github.com/moby/buildkit/releases/tag/dockerfile%2F1.19.0">v1.19.0</a>.
<a
href="https://redirect.github.com/moby/moby/pull/51075">moby/moby#51075</a></li>
</ul>
<h3>Networking</h3>
<ul>
<li>Eliminated harmless warning about deletion of endpoint_count from
the data store. <a
href="https://redirect.github.com/moby/moby/pull/51064">moby/moby#51064</a></li>
<li>Fix a bug causing IPAM plugins to not be loaded on Windows. <a
href="https://redirect.github.com/moby/moby/pull/51035">moby/moby#51035</a></li>
</ul>
<h3>API</h3>
<ul>
<li>Deprecate support for kernel memory TCP accounting
(<code>KernelMemoryTCP</code>). <a
href="https://redirect.github.com/moby/moby/pull/51067">moby/moby#51067</a></li>
<li>Fix <code>GET containers/{name}/checkpoints</code> returning
<code>null</code> instead of empty JSON array when there are no
checkpoints. <a
href="https://redirect.github.com/moby/moby/pull/51052">moby/moby#51052</a></li>
</ul>
<h3>Go SDK</h3>
<ul>
<li>cli-plugins/plugin: Run: allow customizing the CLI. <a
href="https://redirect.github.com/docker/cli/pull/6481">docker/cli#6481</a></li>
<li>cli/command: add <code>WithUserAgent</code> option. <a
href="https://redirect.github.com/docker/cli/pull/6477">docker/cli#6477</a></li>
</ul>
<h3>Deprecations</h3>
<ul>
<li>Go-SDK: cli/command: deprecate <code>DockerCli.Apply</code>. This
method is no longer used and will be removed in the next release if
there are no remaining uses. <a
href="https://redirect.github.com/docker/cli/pull/6497">docker/cli#6497</a></li>
<li>Go-SDK: cli/command: deprecate
<code>DockerCli.ContentTrustEnabled</code>. This method is no longer
used and will be removed in the next release. <a
href="https://redirect.github.com/docker/cli/pull/6495">docker/cli#6495</a></li>
<li>Go-SDK: cli/command: deprecate
<code>DockerCli.DefaultVersion</code>. This method is no longer used and
will be removed in the next release. <a
href="https://redirect.github.com/docker/cli/pull/6491">docker/cli#6491</a></li>
<li>Go-SDK: cli/command: deprecate <code>ResolveDefaultContext</code>
utility. <a
href="https://redirect.github.com/docker/cli/pull/6529">docker/cli#6529</a></li>
<li>Go-SDK: cli/command: deprecate <code>WithContentTrustFromEnv</code>,
<code>WithContentTrust</code> options. These options were used
internally, and will be removed in the next release.. <a
href="https://redirect.github.com/docker/cli/pull/6489">docker/cli#6489</a></li>
<li>Go-SDK: cli/manifest/store: deprecate <code>IsNotFound()</code>. <a
href="https://redirect.github.com/docker/cli/pull/6514">docker/cli#6514</a></li>
<li>Go-SDK: templates: deprecate NewParse() function. <a
href="https://redirect.github.com/docker/cli/pull/6469">docker/cli#6469</a></li>
</ul>
<h2>v28.5.0-rc.1</h2>
<h2>28.5.0-rc.1</h2>
<p>For a full list of pull requests and changes in this release, refer
to the relevant GitHub milestones:</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="cd048300a4"><code>cd04830</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/docker/issues/51075">#51075</a>
from vvoland/51074-28.x</li>
<li><a
href="e29d6be7a5"><code>e29d6be</code></a>
vendor: github.com/moby/buildkit v0.25.0</li>
<li><a
href="9b4369035b"><code>9b43690</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/docker/issues/51069">#51069</a>
from thaJeztah/28.x_backport_docs_rm_deprecated_vir...</li>
<li><a
href="4f3572596b"><code>4f35725</code></a>
api: swagger: remove VirtualSize fields for API &gt; v1.43</li>
<li><a
href="79f310d4bc"><code>79f310d</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/docker/issues/51067">#51067</a>
from austinvazquez/cherry-pick-deprecate-kernel-mem...</li>
<li><a
href="deb4bbbfe0"><code>deb4bbb</code></a>
api: deprecate <code>KernelMemoryTCP</code> support</li>
<li><a
href="423a7fd6af"><code>423a7fd</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/docker/issues/51064">#51064</a>
from thaJeztah/28.x_backport_fix_epcnt_warning</li>
<li><a
href="fbf2fe8b7d"><code>fbf2fe8</code></a>
Eliminate warning about endpoint count store delete</li>
<li><a
href="252a1ebe7e"><code>252a1eb</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/docker/issues/51061">#51061</a>
from thaJeztah/28.x_backport_rm_email_example</li>
<li><a
href="2c15eb6617"><code>2c15eb6</code></a>
api/docs: remove email field from example auth</li>
<li>Additional commits viewable in <a
href="https://github.com/docker/docker/compare/v28.4.0...v28.5.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/docker/docker&package-manager=go_modules&previous-version=28.4.0+incompatible&new-version=28.5.0+incompatible)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-03 08:23:32 +00:00
dependabot[bot]
3728482b42 chore(deps): bump github/codeql-action from 3.30.5 to 3.30.6 (#6140)
Bumps [github/codeql-action](https://github.com/github/codeql-action)
from 3.30.5 to 3.30.6.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/releases">github/codeql-action's
releases</a>.</em></p>
<blockquote>
<h2>v3.30.6</h2>
<h1>CodeQL Action Changelog</h1>
<p>See the <a
href="https://github.com/github/codeql-action/releases">releases
page</a> for the relevant changes to the CodeQL CLI and language
packs.</p>
<h2>3.30.6 - 02 Oct 2025</h2>
<ul>
<li>Update default CodeQL bundle version to 2.23.2. <a
href="https://redirect.github.com/github/codeql-action/pull/3168">#3168</a></li>
</ul>
<p>See the full <a
href="https://github.com/github/codeql-action/blob/v3.30.6/CHANGELOG.md">CHANGELOG.md</a>
for more information.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's
changelog</a>.</em></p>
<blockquote>
<h1>CodeQL Action Changelog</h1>
<p>See the <a
href="https://github.com/github/codeql-action/releases">releases
page</a> for the relevant changes to the CodeQL CLI and language
packs.</p>
<h2>[UNRELEASED]</h2>
<p>No user facing changes.</p>
<h2>3.30.6 - 02 Oct 2025</h2>
<ul>
<li>Update default CodeQL bundle version to 2.23.2. <a
href="https://redirect.github.com/github/codeql-action/pull/3168">#3168</a></li>
</ul>
<h2>3.30.5 - 26 Sep 2025</h2>
<ul>
<li>We fixed a bug that was introduced in <code>3.30.4</code> with
<code>upload-sarif</code> which resulted in files without a
<code>.sarif</code> extension not getting uploaded. <a
href="https://redirect.github.com/github/codeql-action/pull/3160">#3160</a></li>
</ul>
<h2>3.30.4 - 25 Sep 2025</h2>
<ul>
<li>We have improved the CodeQL Action's ability to validate that the
workflow it is used in does not use different versions of the CodeQL
Action for different workflow steps. Mixing different versions of the
CodeQL Action in the same workflow is unsupported and can lead to
unpredictable results. A warning will now be emitted from the
<code>codeql-action/init</code> step if different versions of the CodeQL
Action are detected in the workflow file. Additionally, an error will
now be thrown by the other CodeQL Action steps if they load a
configuration file that was generated by a different version of the
<code>codeql-action/init</code> step. <a
href="https://redirect.github.com/github/codeql-action/pull/3099">#3099</a>
and <a
href="https://redirect.github.com/github/codeql-action/pull/3100">#3100</a></li>
<li>We added support for reducing the size of dependency caches for Java
analyses, which will reduce cache usage and speed up workflows. This
will be enabled automatically at a later time. <a
href="https://redirect.github.com/github/codeql-action/pull/3107">#3107</a></li>
<li>You can now run the latest CodeQL nightly bundle by passing
<code>tools: nightly</code> to the <code>init</code> action. In general,
the nightly bundle is unstable and we only recommend running it when
directed by GitHub staff. <a
href="https://redirect.github.com/github/codeql-action/pull/3130">#3130</a></li>
<li>Update default CodeQL bundle version to 2.23.1. <a
href="https://redirect.github.com/github/codeql-action/pull/3118">#3118</a></li>
</ul>
<h2>3.30.3 - 10 Sep 2025</h2>
<p>No user facing changes.</p>
<h2>3.30.2 - 09 Sep 2025</h2>
<ul>
<li>Fixed a bug which could cause language autodetection to fail. <a
href="https://redirect.github.com/github/codeql-action/pull/3084">#3084</a></li>
<li>Experimental: The <code>quality-queries</code> input that was added
in <code>3.29.2</code> as part of an internal experiment is now
deprecated and will be removed in an upcoming version of the CodeQL
Action. It has been superseded by a new <code>analysis-kinds</code>
input, which is part of the same internal experiment. Do not use this in
production as it is subject to change at any time. <a
href="https://redirect.github.com/github/codeql-action/pull/3064">#3064</a></li>
</ul>
<h2>3.30.1 - 05 Sep 2025</h2>
<ul>
<li>Update default CodeQL bundle version to 2.23.0. <a
href="https://redirect.github.com/github/codeql-action/pull/3077">#3077</a></li>
</ul>
<h2>3.30.0 - 01 Sep 2025</h2>
<ul>
<li>Reduce the size of the CodeQL Action, speeding up workflows by
approximately 4 seconds. <a
href="https://redirect.github.com/github/codeql-action/pull/3054">#3054</a></li>
</ul>
<h2>3.29.11 - 21 Aug 2025</h2>
<ul>
<li>Update default CodeQL bundle version to 2.22.4. <a
href="https://redirect.github.com/github/codeql-action/pull/3044">#3044</a></li>
</ul>
<h2>3.29.10 - 18 Aug 2025</h2>
<p>No user facing changes.</p>
<h2>3.29.9 - 12 Aug 2025</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="64d10c1313"><code>64d10c1</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3172">#3172</a>
from github/update-v3.30.6-10feb5d2a</li>
<li><a
href="909610e8a8"><code>909610e</code></a>
Update changelog for v3.30.6</li>
<li><a
href="10feb5d2a2"><code>10feb5d</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3167">#3167</a>
from github/mbg/upload-sarif/find-then-filter</li>
<li><a
href="4182ea3d4e"><code>4182ea3</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3168">#3168</a>
from github/update-bundle/codeql-bundle-v2.23.2</li>
<li><a
href="34afe5b7b1"><code>34afe5b</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3171">#3171</a>
from github/mbg/start-proxy/telemetry</li>
<li><a
href="096fe67f97"><code>096fe67</code></a>
Merge branch 'main' into update-bundle/codeql-bundle-v2.23.2</li>
<li><a
href="b4964014ad"><code>b496401</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3170">#3170</a>
from github/mbg/start-proxy/remove-update-workflow</li>
<li><a
href="d573787cca"><code>d573787</code></a>
Report registry types that are configured for CodeQL in
<code>start-proxy</code> telemetry</li>
<li><a
href="15916800df"><code>1591680</code></a>
Send a basic status report in <code>start-proxy</code> Action if it
succeeds</li>
<li><a
href="cb5a2849ac"><code>cb5a284</code></a>
Send status report when <code>start-proxy</code> fails</li>
<li>Additional commits viewable in <a
href="3599b3baa1...64d10c1313">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/codeql-action&package-manager=github_actions&previous-version=3.30.5&new-version=3.30.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-03 08:22:32 +00:00
Carlos Alexandro Becker
8d8a28afac docs: clean up docs
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2025-10-02 00:51:15 -03:00
actions-user
a288707ddf chore: auto-update generated files 2025-10-01 12:43:19 +00:00
actions-user
80d0ce95db chore: auto-update generated files 2025-10-01 12:33:01 +00:00
dependabot[bot]
8696231b52 chore(deps): bump squidfunk/mkdocs-material from 86d21da to 00f9276 in /www (#6135)
Bumps squidfunk/mkdocs-material from `86d21da` to `00f9276`.


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=squidfunk/mkdocs-material&package-manager=docker&previous-version=9&new-version=9)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
v2.12.5
2025-10-01 09:01:10 -03:00
dependabot[bot]
a054c27d3b chore(deps): bump mkdocs-material from 9.6.20 to 9.6.21 in /www (#6134)
Bumps [mkdocs-material](https://github.com/squidfunk/mkdocs-material)
from 9.6.20 to 9.6.21.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/squidfunk/mkdocs-material/releases">mkdocs-material's
releases</a>.</em></p>
<blockquote>
<h2>mkdocs-material-9.6.21</h2>
<ul>
<li>Updated Serbian translations</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8458">#8458</a>:
Temporary pin of click dependency</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/squidfunk/mkdocs-material/blob/master/CHANGELOG">mkdocs-material's
changelog</a>.</em></p>
<blockquote>
<p>mkdocs-material-9.6.21 (2025-09-30)</p>
<ul>
<li>Updated Serbian translations</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8458">#8458</a>:
Temporary pin of click dependency</li>
</ul>
<p>mkdocs-material-9.6.20 (2025-09-15)</p>
<ul>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8446">#8446</a>:
Deprecation warning as of Python 3.14 in Emoji extension</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8440">#8440</a>:
<code>&amp;</code> character not escaped in search highlighting</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8439">#8439</a>:
FontAwesome icons color not set in social cards (regression)</li>
</ul>
<p>mkdocs-material-9.6.19 (2025-09-07)</p>
<ul>
<li>Added support for Python 3.14</li>
<li>Updated Bahasa Malaysia translations</li>
</ul>
<p>mkdocs-material-9.6.18 (2025-08-22)</p>
<ul>
<li>Updated Azerbaijani translations</li>
<li>Fixed last compat issues with [minijinja], now 100% compatible</li>
</ul>
<p>mkdocs-material-9.6.17 (2025-08-15)</p>
<ul>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8396">#8396</a>:
Videos do not autoplay when inside a content tab</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8394">#8394</a>:
Stroke width not effective in Mermaid.js diagrams</li>
<li>Fixed disappearing version selector when hiding page title</li>
</ul>
<p>mkdocs-material-9.6.16 (2025-07-26)</p>
<ul>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8349">#8349</a>:
Info plugin doesn't correctly detect virtualenv in some cases</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8334">#8334</a>:
Find-in-page detects matches in hidden search result list</li>
</ul>
<p>mkdocs-material-9.6.15 (2025-07-01)</p>
<ul>
<li>Updated Mongolian translations</li>
<li>Improved semantic markup of &quot;edit this page&quot; button</li>
<li>Improved info plugin virtual environment resolution</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8291">#8291</a>:
Large font size setting throws of breakpoints in JavaScript</li>
</ul>
<p>mkdocs-material-9.6.14 (2025-05-13)</p>
<ul>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8215">#8215</a>:
Social plugin crashes when CairoSVG is updated to 2.8</li>
</ul>
<p>mkdocs-material-9.6.13 (2025-05-10)</p>
<ul>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8204">#8204</a>:
Annotations showing list markers in print view</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8153">#8153</a>:
Improve style of cardinality symbols in Mermaid.js ER diagrams</li>
</ul>
<p>mkdocs-material-9.6.12 (2025-04-17)</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f7cacc0089"><code>f7cacc0</code></a>
Prepare 9.6.21 release</li>
<li><a
href="6f715fbe06"><code>6f715fb</code></a>
Unpinned click</li>
<li><a
href="97e275c953"><code>97e275c</code></a>
Updated Serbian languages (<a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8445">#8445</a>)</li>
<li>See full diff in <a
href="https://github.com/squidfunk/mkdocs-material/compare/9.6.20...9.6.21">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=mkdocs-material&package-manager=pip&previous-version=9.6.20&new-version=9.6.21)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-01 09:01:01 -03:00
dependabot[bot]
a402b934a5 chore(deps): bump github.com/mark3labs/mcp-go from 0.41.0 to 0.41.1 (#6132)
Bumps [github.com/mark3labs/mcp-go](https://github.com/mark3labs/mcp-go)
from 0.41.0 to 0.41.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/mark3labs/mcp-go/releases">github.com/mark3labs/mcp-go's
releases</a>.</em></p>
<blockquote>
<h2>Release v0.41.1</h2>
<h2>What's Changed</h2>
<ul>
<li>fix: replace bufio.Scanner with bufio.Reader to support large
message… by <a
href="https://github.com/ezynda3"><code>@​ezynda3</code></a> in <a
href="https://redirect.github.com/mark3labs/mcp-go/pull/603">mark3labs/mcp-go#603</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/mark3labs/mcp-go/compare/v0.41.0...v0.41.1">https://github.com/mark3labs/mcp-go/compare/v0.41.0...v0.41.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a1dd4efa3c"><code>a1dd4ef</code></a>
fix: replace bufio.Scanner with bufio.Reader to support large messages
in std...</li>
<li><a
href="b8297f5b90"><code>b8297f5</code></a>
More tests</li>
<li><a
href="0e185e52f8"><code>0e185e5</code></a>
Update coverage job</li>
<li><a
href="6ee5d6c660"><code>6ee5d6c</code></a>
Fix linting issue</li>
<li><a
href="edba7f3815"><code>edba7f3</code></a>
Add simple tests</li>
<li><a
href="0f6be0566e"><code>0f6be05</code></a>
Fix action</li>
<li><a
href="d1a73bf01b"><code>d1a73bf</code></a>
Add coverage report</li>
<li>See full diff in <a
href="https://github.com/mark3labs/mcp-go/compare/v0.41.0...v0.41.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/mark3labs/mcp-go&package-manager=go_modules&previous-version=0.41.0&new-version=0.41.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-01 08:27:11 +00:00
dependabot[bot]
93904a8b9d chore(deps): bump github.com/charmbracelet/fang from 0.4.2 to 0.4.3 (#6133)
Bumps
[github.com/charmbracelet/fang](https://github.com/charmbracelet/fang)
from 0.4.2 to 0.4.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/charmbracelet/fang/releases">github.com/charmbracelet/fang's
releases</a>.</em></p>
<blockquote>
<h2>v0.4.3</h2>
<h2>Changelog</h2>
<h3>Bug fixes</h3>
<ul>
<li>87643980480f2e44fe4c50d6bda544e4d46e178b: fix: check term inside
default error handler (<a
href="https://redirect.github.com/charmbracelet/fang/issues/77">#77</a>)
(<a href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
<li>c3d013dfba6a664bdd97f90a890efe35fa7799b2: fix: preserve multiline
formatting in flag descriptions (<a
href="https://redirect.github.com/charmbracelet/fang/issues/71">#71</a>)
(<a href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
</ul>
<hr />
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
<p>Thoughts? Questions? We love hearing from you. Feel free to reach out
on <a href="https://x.com/charmcli">X</a>, <a
href="https://charm.land/discord">Discord</a>, <a
href="https://charm.land/slack">Slack</a>, <a
href="https://mastodon.social/@charmcli">The Fediverse</a>, <a
href="https://bsky.app/profile/charm.land">Bluesky</a>.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="8764398048"><code>8764398</code></a>
fix: check term inside default error handler (<a
href="https://redirect.github.com/charmbracelet/fang/issues/77">#77</a>)</li>
<li><a
href="c3d013dfba"><code>c3d013d</code></a>
fix: preserve multiline formatting in flag descriptions (<a
href="https://redirect.github.com/charmbracelet/fang/issues/71">#71</a>)</li>
<li>See full diff in <a
href="https://github.com/charmbracelet/fang/compare/v0.4.2...v0.4.3">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/charmbracelet/fang&package-manager=go_modules&previous-version=0.4.2&new-version=0.4.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-01 08:23:00 +00:00
dependabot[bot]
6b88cc16c3 chore(deps): bump astral-sh/setup-uv from 6.7.0 to 6.8.0 (#6131)
Bumps [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv) from
6.7.0 to 6.8.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="d0cc045d04"><code>d0cc045</code></a>
Always show prune cache output (<a
href="https://redirect.github.com/astral-sh/setup-uv/issues/597">#597</a>)</li>
<li><a
href="2841f9f5c1"><code>2841f9f</code></a>
Bump zizmorcore/zizmor-action from 0.1.2 to 0.2.0 (<a
href="https://redirect.github.com/astral-sh/setup-uv/issues/571">#571</a>)</li>
<li><a
href="e554b93b80"><code>e554b93</code></a>
Add **/*.py.lock to cache-dependency-glob (<a
href="https://redirect.github.com/astral-sh/setup-uv/issues/590">#590</a>)</li>
<li><a
href="c7d85d9988"><code>c7d85d9</code></a>
chore: update known versions for 0.8.20</li>
<li><a
href="07f2cb5db9"><code>07f2cb5</code></a>
persist credentials for version update (<a
href="https://redirect.github.com/astral-sh/setup-uv/issues/584">#584</a>)</li>
<li><a
href="208b0c0ee4"><code>208b0c0</code></a>
README.md: Fix Python versions and update checkout action (<a
href="https://redirect.github.com/astral-sh/setup-uv/issues/572">#572</a>)</li>
<li>See full diff in <a
href="b75a909f75...d0cc045d04">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=astral-sh/setup-uv&package-manager=github_actions&previous-version=6.7.0&new-version=6.8.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-01 08:18:44 +00:00
dependabot[bot]
e9351732e2 chore(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 (#6130)
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action)
from 2.4.2 to 2.4.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/ossf/scorecard-action/releases">ossf/scorecard-action's
releases</a>.</em></p>
<blockquote>
<h2>v2.4.3</h2>
<h2>What's Changed</h2>
<p>This update bumps the Scorecard version to the v5.3.0 release. For a
complete list of changes, please refer to the <a
href="https://github.com/ossf/scorecard/releases/tag/v5.3.0">Scorecard
v5.3.0 release notes</a>.</p>
<h2>Documentation</h2>
<ul>
<li>docs: clarify <code>GITHUB_TOKEN</code> permissions needed for
private repos by <a
href="https://github.com/pankajtaneja5"><code>@​pankajtaneja5</code></a>
in <a
href="https://redirect.github.com/ossf/scorecard-action/pull/1574">ossf/scorecard-action#1574</a></li>
<li>📖 Fix recommended command to test the image in development by
<a
href="https://github.com/deivid-rodriguez"><code>@​deivid-rodriguez</code></a>
in <a
href="https://redirect.github.com/ossf/scorecard-action/pull/1583">ossf/scorecard-action#1583</a></li>
</ul>
<h2>Other</h2>
<ul>
<li>add missing top-level token permissions to workflows by <a
href="https://github.com/timothyklee"><code>@​timothyklee</code></a> in
<a
href="https://redirect.github.com/ossf/scorecard-action/pull/1566">ossf/scorecard-action#1566</a></li>
<li>setup codeowners for requesting reviews by <a
href="https://github.com/spencerschrock"><code>@​spencerschrock</code></a>
in <a
href="https://redirect.github.com/ossf/scorecard-action/pull/1576">ossf/scorecard-action#1576</a></li>
<li>🌱 Improve printing options by <a
href="https://github.com/deivid-rodriguez"><code>@​deivid-rodriguez</code></a>
in <a
href="https://redirect.github.com/ossf/scorecard-action/pull/1584">ossf/scorecard-action#1584</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/timothyklee"><code>@​timothyklee</code></a>
made their first contribution in <a
href="https://redirect.github.com/ossf/scorecard-action/pull/1566">ossf/scorecard-action#1566</a></li>
<li><a
href="https://github.com/pankajtaneja5"><code>@​pankajtaneja5</code></a>
made their first contribution in <a
href="https://redirect.github.com/ossf/scorecard-action/pull/1574">ossf/scorecard-action#1574</a></li>
<li><a
href="https://github.com/deivid-rodriguez"><code>@​deivid-rodriguez</code></a>
made their first contribution in <a
href="https://redirect.github.com/ossf/scorecard-action/pull/1584">ossf/scorecard-action#1584</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/ossf/scorecard-action/compare/v2.4.2...v2.4.3">https://github.com/ossf/scorecard-action/compare/v2.4.2...v2.4.3</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4eaacf0543"><code>4eaacf0</code></a>
bump docker to ghcr v2.4.3 (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1587">#1587</a>)</li>
<li><a
href="42e3a017b9"><code>42e3a01</code></a>
🌱 Bump the github-actions group with 3 updates (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1585">#1585</a>)</li>
<li><a
href="88c07acb7b"><code>88c07ac</code></a>
🌱 Bump github.com/sigstore/cosign/v2 from 2.5.2 to 2.6.0 (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1579">#1579</a>)</li>
<li><a
href="6c690f2f38"><code>6c690f2</code></a>
Bump github.com/ossf/scorecard/v5 from v5.2.1 to v5.3.0 (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1586">#1586</a>)</li>
<li><a
href="92083b5269"><code>92083b5</code></a>
📖 Fix recommended command to test the image in development (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1583">#1583</a>)</li>
<li><a
href="7975ea6064"><code>7975ea6</code></a>
🌱 Bump the docker-images group across 1 directory with 2
updates (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1">#1</a>...</li>
<li><a
href="0d1a74394f"><code>0d1a743</code></a>
🌱 Bump github.com/spf13/cobra from 1.9.1 to 1.10.1 (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1575">#1575</a>)</li>
<li><a
href="46e6e0c0ac"><code>46e6e0c</code></a>
🌱 Bump the github-actions group with 2 updates (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1580">#1580</a>)</li>
<li><a
href="c3f1350159"><code>c3f1350</code></a>
🌱 Improve printing options (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1584">#1584</a>)</li>
<li><a
href="43e475b79a"><code>43e475b</code></a>
🌱 Bump golang.org/x/net from 0.42.0 to 0.44.0 (<a
href="https://redirect.github.com/ossf/scorecard-action/issues/1578">#1578</a>)</li>
<li>Additional commits viewable in <a
href="05b42c6244...4eaacf0543">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ossf/scorecard-action&package-manager=github_actions&previous-version=2.4.2&new-version=2.4.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-10-01 08:18:30 +00:00
actions-user
2fdc921caa chore: auto-update generated files 2025-10-01 02:24:01 +00:00
actions-user
5d21342dce chore: auto-update generated files 2025-10-01 01:30:36 +00:00
Carlos Alexandro Becker
806492d3ff fix(makeself): path to script, better tests
this fixes https://github.com/orgs/goreleaser/discussions/6129 and
improves testing to prevent it from happening again.

Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
v2.12.4
2025-09-30 21:25:16 -03:00
Carlos Alexandro Becker
5991ec9149 fix(deps): update fang, fix error handler
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2025-09-30 15:24:58 -03:00
dependabot[bot]
bbbfac088d chore(deps): bump docker/login-action from 3.5.0 to 3.6.0 (#6127)
Bumps [docker/login-action](https://github.com/docker/login-action) from
3.5.0 to 3.6.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/login-action/releases">docker/login-action's
releases</a>.</em></p>
<blockquote>
<h2>v3.6.0</h2>
<ul>
<li>Add <code>registry-auth</code> input for raw authentication to
registries by <a
href="https://github.com/crazy-max"><code>@​crazy-max</code></a> in <a
href="https://redirect.github.com/docker/login-action/pull/887">docker/login-action#887</a></li>
<li>Bump <code>@​aws-sdk/client-ecr</code> to 3.890.0 in <a
href="https://redirect.github.com/docker/login-action/pull/882">docker/login-action#882</a>
<a
href="https://redirect.github.com/docker/login-action/pull/890">docker/login-action#890</a></li>
<li>Bump <code>@​aws-sdk/client-ecr-public</code> to 3.890.0 in <a
href="https://redirect.github.com/docker/login-action/pull/882">docker/login-action#882</a>
<a
href="https://redirect.github.com/docker/login-action/pull/890">docker/login-action#890</a></li>
<li>Bump <code>@​docker/actions-toolkit</code> from 0.62.1 to 0.63.0 in
<a
href="https://redirect.github.com/docker/login-action/pull/883">docker/login-action#883</a></li>
<li>Bump brace-expansion from 1.1.11 to 1.1.12 in <a
href="https://redirect.github.com/docker/login-action/pull/880">docker/login-action#880</a></li>
<li>Bump undici from 5.28.4 to 5.29.0 in <a
href="https://redirect.github.com/docker/login-action/pull/879">docker/login-action#879</a></li>
<li>Bump tmp from 0.2.3 to 0.2.4 in <a
href="https://redirect.github.com/docker/login-action/pull/881">docker/login-action#881</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/docker/login-action/compare/v3.5.0...v3.6.0">https://github.com/docker/login-action/compare/v3.5.0...v3.6.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5e57cd1181"><code>5e57cd1</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/890">#890</a>
from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...</li>
<li><a
href="97e31439e8"><code>97e3143</code></a>
chore: update generated content</li>
<li><a
href="3a0796b57f"><code>3a0796b</code></a>
build(deps): bump the aws-sdk-dependencies group with 2 updates</li>
<li><a
href="5b7b28b1cc"><code>5b7b28b</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/882">#882</a>
from docker/dependabot/npm_and_yarn/aws-sdk-dependenc...</li>
<li><a
href="abc9fb3154"><code>abc9fb3</code></a>
chore: update generated content</li>
<li><a
href="d468688814"><code>d468688</code></a>
build(deps): bump the aws-sdk-dependencies group with 2 updates</li>
<li><a
href="a99b2f88fc"><code>a99b2f8</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/883">#883</a>
from docker/dependabot/npm_and_yarn/docker/actions-to...</li>
<li><a
href="0d7fae8057"><code>0d7fae8</code></a>
chore: update generated content</li>
<li><a
href="9832253cb7"><code>9832253</code></a>
build(deps): bump <code>@​docker/actions-toolkit</code> from 0.62.1 to
0.63.0</li>
<li><a
href="09e05bbdf6"><code>09e05bb</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/881">#881</a>
from docker/dependabot/npm_and_yarn/tmp-0.2.4</li>
<li>Additional commits viewable in <a
href="184bdaa072...5e57cd1181">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/login-action&package-manager=github_actions&previous-version=3.5.0&new-version=3.6.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-30 12:52:27 +00:00
Carlos Alexandro Becker
0ffcd8f444 fix: error handling in github actions
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2025-09-30 01:02:59 -03:00
Carlos Alexandro Becker
ed03d58222 fix(docker/v2): handle bad COPY/ADD
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2025-09-30 00:15:19 -03:00
Carlos Alexandro Becker
6c058569c5 fix(docker/v2): more logs
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2025-09-29 23:09:32 -03:00
dependabot[bot]
dd3d3008ce chore(deps): bump mkdocs-include-markdown-plugin from 7.1.7 to 7.2.0 in /www (#6125)
Bumps
[mkdocs-include-markdown-plugin](https://github.com/mondeja/mkdocs-include-markdown-plugin)
from 7.1.7 to 7.2.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/mondeja/mkdocs-include-markdown-plugin/releases">mkdocs-include-markdown-plugin's
releases</a>.</em></p>
<blockquote>
<h2>v7.2.0</h2>
<h2>New features</h2>
<ul>
<li>Add new argument <code>order</code> to sort multiple
inclusions.</li>
</ul>
<h2>v7.1.8</h2>
<h2>Bug fixes</h2>
<ul>
<li>Escape substitution placeholders to prevent malformed output in edge
cases.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="708a37495e"><code>708a374</code></a>
Add new argument <code>order</code> to sort inclusions (<a
href="https://redirect.github.com/mondeja/mkdocs-include-markdown-plugin/issues/279">#279</a>)</li>
<li><a
href="8b77f66168"><code>8b77f66</code></a>
Add a security policy (<a
href="https://redirect.github.com/mondeja/mkdocs-include-markdown-plugin/issues/278">#278</a>)</li>
<li><a
href="7466d67aa0"><code>7466d67</code></a>
Escape placeholders to avoid input collisions (<a
href="https://redirect.github.com/mondeja/mkdocs-include-markdown-plugin/issues/277">#277</a>)</li>
<li><a
href="1ae8fca510"><code>1ae8fca</code></a>
Cheaper placeholders (<a
href="https://redirect.github.com/mondeja/mkdocs-include-markdown-plugin/issues/276">#276</a>)</li>
<li><a
href="39fb30381e"><code>39fb303</code></a>
Fix tests for <code>comments</code> global config and update JSON Schema
(<a
href="https://redirect.github.com/mondeja/mkdocs-include-markdown-plugin/issues/275">#275</a>)</li>
<li><a
href="65816713ee"><code>6581671</code></a>
Bump pypa/gh-action-pypi-publish in /.github/workflows (<a
href="https://redirect.github.com/mondeja/mkdocs-include-markdown-plugin/issues/273">#273</a>)</li>
<li>See full diff in <a
href="https://github.com/mondeja/mkdocs-include-markdown-plugin/compare/v7.1.7...v7.2.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=mkdocs-include-markdown-plugin&package-manager=pip&previous-version=7.1.7&new-version=7.2.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-29 21:19:03 -03:00
dependabot[bot]
0bd1d6544e chore(deps): bump actions/dependency-review-action from 4.7.3 to 4.8.0 (#6121)
Bumps
[actions/dependency-review-action](https://github.com/actions/dependency-review-action)
from 4.7.3 to 4.8.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/dependency-review-action/releases">actions/dependency-review-action's
releases</a>.</em></p>
<blockquote>
<h2>v4.8.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Make Ruby Code Scannable by <a
href="https://github.com/ljones140"><code>@​ljones140</code></a> in <a
href="https://redirect.github.com/actions/dependency-review-action/pull/978">actions/dependency-review-action#978</a></li>
<li>Batch some contributions for release by <a
href="https://github.com/brrygrdn"><code>@​brrygrdn</code></a> in <a
href="https://redirect.github.com/actions/dependency-review-action/pull/986">actions/dependency-review-action#986</a>
<ul>
<li>Make license lists collapsable by <a
href="https://github.com/jasperkamerling"><code>@​jasperkamerling</code></a></li>
<li>feat: add large summary handling with artifact upload by <a
href="https://github.com/MattMencel"><code>@​MattMencel</code></a></li>
</ul>
</li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/ljones140"><code>@​ljones140</code></a>
made their first contribution in <a
href="https://redirect.github.com/actions/dependency-review-action/pull/978">actions/dependency-review-action#978</a></li>
<li><a
href="https://github.com/jasperkamerling"><code>@​jasperkamerling</code></a>
made their first contribution in <a
href="https://redirect.github.com/actions/dependency-review-action/pull/986">actions/dependency-review-action#986</a></li>
<li><a
href="https://github.com/MattMencel"><code>@​MattMencel</code></a> made
their first contribution in <a
href="https://redirect.github.com/actions/dependency-review-action/pull/986">actions/dependency-review-action#986</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/dependency-review-action/compare/v4...v4.8.0">https://github.com/actions/dependency-review-action/compare/v4...v4.8.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="56339e523c"><code>56339e5</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/dependency-review-action/issues/988">#988</a>
from actions/brrygrdn/rc-4.8.0</li>
<li><a
href="1688b745f3"><code>1688b74</code></a>
Bump to a 4.8.0</li>
<li><a
href="31c9f175b9"><code>31c9f17</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/dependency-review-action/issues/987">#987</a>
from actions/rc-4.7.4</li>
<li><a
href="eacde7836e"><code>eacde78</code></a>
Update version</li>
<li><a
href="81510090e4"><code>8151009</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/dependency-review-action/issues/986">#986</a>
from actions/brrygrdn/rc-4.7.4</li>
<li><a
href="b472ec914b"><code>b472ec9</code></a>
Add a quick regression test for the artefact summary</li>
<li><a
href="e0cedc52dc"><code>e0cedc5</code></a>
feat: add large summary handling with artifact upload</li>
<li><a
href="e3fdf0f899"><code>e3fdf0f</code></a>
This ensures large allow or deny lists don't create huge comments</li>
<li><a
href="6fad417932"><code>6fad417</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/dependency-review-action/issues/978">#978</a>
from actions/ljones140/make-ruby-code-scannable</li>
<li><a
href="e86e9692ad"><code>e86e969</code></a>
Update scripts/scan_pr_lib.rb</li>
<li>Additional commits viewable in <a
href="595b5aeba7...56339e523c">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/dependency-review-action&package-manager=github_actions&previous-version=4.7.3&new-version=4.8.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-29 21:18:50 -03:00
Carlos Alexandro Becker
58846e79fd ci: fix gitleaks job
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2025-09-29 21:18:27 -03:00
dependabot[bot]
a6df24b1c9 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.2 to 1.88.3 (#6126)
Bumps
[github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2)
from 1.88.2 to 1.88.3.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="67db6904b8"><code>67db690</code></a>
Release 2025-09-26</li>
<li><a
href="32ee1b5d75"><code>32ee1b5</code></a>
Regenerated Clients</li>
<li><a
href="0b43122330"><code>0b43122</code></a>
Update endpoints model</li>
<li><a
href="44786d920f"><code>44786d9</code></a>
Update API model</li>
<li><a
href="c98edb7380"><code>c98edb7</code></a>
update internal endpts comment that was wrong (<a
href="https://redirect.github.com/aws/aws-sdk-go-v2/issues/3194">#3194</a>)</li>
<li><a
href="88da3c8c55"><code>88da3c8</code></a>
Release 2025-09-25</li>
<li><a
href="74a74fc179"><code>74a74fc</code></a>
Regenerated Clients</li>
<li><a
href="5e6f7ae613"><code>5e6f7ae</code></a>
Update endpoints model</li>
<li><a
href="0e722ab42f"><code>0e722ab</code></a>
Update API model</li>
<li><a
href="41a7d004b9"><code>41a7d00</code></a>
Release 2025-09-24</li>
<li>Additional commits viewable in <a
href="https://github.com/aws/aws-sdk-go-v2/compare/service/s3/v1.88.2...service/s3/v1.88.3">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/aws/aws-sdk-go-v2/service/s3&package-manager=go_modules&previous-version=1.88.2&new-version=1.88.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-29 13:01:24 +00:00
dependabot[bot]
78e19b8273 chore(deps): bump gitlab.com/gitlab-org/api/client-go from 0.148.0 to 0.148.1 (#6124)
Bumps
[gitlab.com/gitlab-org/api/client-go](https://gitlab.com/gitlab-org/api/client-go)
from 0.148.0 to 0.148.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://gitlab.com/gitlab-org/api/client-go/tags">gitlab.com/gitlab-org/api/client-go's
releases</a>.</em></p>
<blockquote>
<h2>v0.148.1</h2>
<h2><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.148.0...v0.148.1">0.148.1</a>
(2025-09-26)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>label unmarshaling for <code>BasicMergeRequest</code> list
operations (<a
href="e80c453aa6">e80c453</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://gitlab.com/gitlab-org/api/client-go/blob/main/CHANGELOG.md">gitlab.com/gitlab-org/api/client-go's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.148.0...v0.148.1">0.148.1</a>
(2025-09-26)</h2>
<h3>Bug Fixes</h3>
<ul>
<li>label unmarshaling for <code>BasicMergeRequest</code> list
operations (<a
href="e80c453aa6">e80c453</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="8fb4236647"><code>8fb4236</code></a>
chore(release): 0.148.1 [skip ci]</li>
<li><a
href="ab80e89ba4"><code>ab80e89</code></a>
Merge branch 'fforster/mr-labels' into 'main'</li>
<li><a
href="e80c453aa6"><code>e80c453</code></a>
fix: label unmarshaling for <code>BasicMergeRequest</code> list
operations</li>
<li>See full diff in <a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.148.0...v0.148.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gitlab.com/gitlab-org/api/client-go&package-manager=go_modules&previous-version=0.148.0&new-version=0.148.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-29 10:08:37 +00:00
dependabot[bot]
c631c9d99c chore(deps): bump github/codeql-action from 3.30.4 to 3.30.5 (#6123)
Bumps [github/codeql-action](https://github.com/github/codeql-action)
from 3.30.4 to 3.30.5.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/releases">github/codeql-action's
releases</a>.</em></p>
<blockquote>
<h2>v3.30.5</h2>
<h1>CodeQL Action Changelog</h1>
<p>See the <a
href="https://github.com/github/codeql-action/releases">releases
page</a> for the relevant changes to the CodeQL CLI and language
packs.</p>
<h2>3.30.5 - 26 Sep 2025</h2>
<ul>
<li>We fixed a bug that was introduced in <code>3.30.4</code> with
<code>upload-sarif</code> which resulted in files without a
<code>.sarif</code> extension not getting uploaded. <a
href="https://redirect.github.com/github/codeql-action/pull/3160">#3160</a></li>
</ul>
<p>See the full <a
href="https://github.com/github/codeql-action/blob/v3.30.5/CHANGELOG.md">CHANGELOG.md</a>
for more information.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's
changelog</a>.</em></p>
<blockquote>
<h1>CodeQL Action Changelog</h1>
<p>See the <a
href="https://github.com/github/codeql-action/releases">releases
page</a> for the relevant changes to the CodeQL CLI and language
packs.</p>
<h2>[UNRELEASED]</h2>
<p>No user facing changes.</p>
<h2>3.30.5 - 26 Sep 2025</h2>
<ul>
<li>We fixed a bug that was introduced in <code>3.30.4</code> with
<code>upload-sarif</code> which resulted in files without a
<code>.sarif</code> extension not getting uploaded. <a
href="https://redirect.github.com/github/codeql-action/pull/3160">#3160</a></li>
</ul>
<h2>3.30.4 - 25 Sep 2025</h2>
<ul>
<li>We have improved the CodeQL Action's ability to validate that the
workflow it is used in does not use different versions of the CodeQL
Action for different workflow steps. Mixing different versions of the
CodeQL Action in the same workflow is unsupported and can lead to
unpredictable results. A warning will now be emitted from the
<code>codeql-action/init</code> step if different versions of the CodeQL
Action are detected in the workflow file. Additionally, an error will
now be thrown by the other CodeQL Action steps if they load a
configuration file that was generated by a different version of the
<code>codeql-action/init</code> step. <a
href="https://redirect.github.com/github/codeql-action/pull/3099">#3099</a>
and <a
href="https://redirect.github.com/github/codeql-action/pull/3100">#3100</a></li>
<li>We added support for reducing the size of dependency caches for Java
analyses, which will reduce cache usage and speed up workflows. This
will be enabled automatically at a later time. <a
href="https://redirect.github.com/github/codeql-action/pull/3107">#3107</a></li>
<li>You can now run the latest CodeQL nightly bundle by passing
<code>tools: nightly</code> to the <code>init</code> action. In general,
the nightly bundle is unstable and we only recommend running it when
directed by GitHub staff. <a
href="https://redirect.github.com/github/codeql-action/pull/3130">#3130</a></li>
<li>Update default CodeQL bundle version to 2.23.1. <a
href="https://redirect.github.com/github/codeql-action/pull/3118">#3118</a></li>
</ul>
<h2>3.30.3 - 10 Sep 2025</h2>
<p>No user facing changes.</p>
<h2>3.30.2 - 09 Sep 2025</h2>
<ul>
<li>Fixed a bug which could cause language autodetection to fail. <a
href="https://redirect.github.com/github/codeql-action/pull/3084">#3084</a></li>
<li>Experimental: The <code>quality-queries</code> input that was added
in <code>3.29.2</code> as part of an internal experiment is now
deprecated and will be removed in an upcoming version of the CodeQL
Action. It has been superseded by a new <code>analysis-kinds</code>
input, which is part of the same internal experiment. Do not use this in
production as it is subject to change at any time. <a
href="https://redirect.github.com/github/codeql-action/pull/3064">#3064</a></li>
</ul>
<h2>3.30.1 - 05 Sep 2025</h2>
<ul>
<li>Update default CodeQL bundle version to 2.23.0. <a
href="https://redirect.github.com/github/codeql-action/pull/3077">#3077</a></li>
</ul>
<h2>3.30.0 - 01 Sep 2025</h2>
<ul>
<li>Reduce the size of the CodeQL Action, speeding up workflows by
approximately 4 seconds. <a
href="https://redirect.github.com/github/codeql-action/pull/3054">#3054</a></li>
</ul>
<h2>3.29.11 - 21 Aug 2025</h2>
<ul>
<li>Update default CodeQL bundle version to 2.22.4. <a
href="https://redirect.github.com/github/codeql-action/pull/3044">#3044</a></li>
</ul>
<h2>3.29.10 - 18 Aug 2025</h2>
<p>No user facing changes.</p>
<h2>3.29.9 - 12 Aug 2025</h2>
<p>No user facing changes.</p>
<h2>3.29.8 - 08 Aug 2025</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3599b3baa1"><code>3599b3b</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3161">#3161</a>
from github/update-v3.30.5-0a67bd46a</li>
<li><a
href="2ca0085e58"><code>2ca0085</code></a>
Update changelog for v3.30.5</li>
<li><a
href="0a67bd46a0"><code>0a67bd4</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3160">#3160</a>
from github/mbg/fix/upload-sarif</li>
<li><a
href="8e34f2f3bf"><code>8e34f2f</code></a>
Add changelog</li>
<li><a
href="0b7fc56648"><code>0b7fc56</code></a>
Fix <code>upload-sarif</code> not uploading non-<code>.sarif</code>
files</li>
<li><a
href="94a9b7a110"><code>94a9b7a</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3155">#3155</a>
from github/mbg/node/no-install-in-actions</li>
<li><a
href="a0ae9ba202"><code>a0ae9ba</code></a>
Log what the script is doing</li>
<li><a
href="b27a8ef21f"><code>b27a8ef</code></a>
Exit if running in an Actions workflow</li>
<li><a
href="65925679a3"><code>6592567</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3139">#3139</a>
from github/henrymercer/fix-log-message</li>
<li><a
href="fa64a7dee6"><code>fa64a7d</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3154">#3154</a>
from github/mbg/node/check-up-to-date-deps</li>
<li>Additional commits viewable in <a
href="303c0aef88...3599b3baa1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/codeql-action&package-manager=github_actions&previous-version=3.30.4&new-version=3.30.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-29 09:58:40 +00:00
dependabot[bot]
b42a77ca8d chore(deps): bump github.com/mark3labs/mcp-go from 0.40.0 to 0.41.0 (#6122)
Bumps [github.com/mark3labs/mcp-go](https://github.com/mark3labs/mcp-go)
from 0.40.0 to 0.41.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/mark3labs/mcp-go/releases">github.com/mark3labs/mcp-go's
releases</a>.</em></p>
<blockquote>
<h2>Release v0.41.0</h2>
<h2>What's Changed</h2>
<ul>
<li>fix(oauth): use oauth-authorization-server discovery before default
endpoints by <a
href="https://github.com/trungutt"><code>@​trungutt</code></a> in <a
href="https://redirect.github.com/mark3labs/mcp-go/pull/581">mark3labs/mcp-go#581</a></li>
<li>Improve JSON-RPC error handling with typed errors and response
constructors by <a
href="https://github.com/peteski22"><code>@​peteski22</code></a> in <a
href="https://redirect.github.com/mark3labs/mcp-go/pull/595">mark3labs/mcp-go#595</a></li>
<li>fix: Streamable HTTP client ping response handling by <a
href="https://github.com/havasik"><code>@​havasik</code></a> in <a
href="https://redirect.github.com/mark3labs/mcp-go/pull/578">mark3labs/mcp-go#578</a></li>
<li>feat: add support for call tool result annotations by <a
href="https://github.com/Crescent617"><code>@​Crescent617</code></a> in
<a
href="https://redirect.github.com/mark3labs/mcp-go/pull/547">mark3labs/mcp-go#547</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/trungutt"><code>@​trungutt</code></a>
made their first contribution in <a
href="https://redirect.github.com/mark3labs/mcp-go/pull/581">mark3labs/mcp-go#581</a></li>
<li><a href="https://github.com/havasik"><code>@​havasik</code></a> made
their first contribution in <a
href="https://redirect.github.com/mark3labs/mcp-go/pull/578">mark3labs/mcp-go#578</a></li>
<li><a
href="https://github.com/Crescent617"><code>@​Crescent617</code></a>
made their first contribution in <a
href="https://redirect.github.com/mark3labs/mcp-go/pull/547">mark3labs/mcp-go#547</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/mark3labs/mcp-go/compare/v0.40.0...v0.41.0">https://github.com/mark3labs/mcp-go/compare/v0.40.0...v0.41.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="1737192c69"><code>1737192</code></a>
format</li>
<li><a
href="7657c1529d"><code>7657c15</code></a>
feat: add support for call tool result annotations (<a
href="https://redirect.github.com/mark3labs/mcp-go/issues/547">#547</a>)</li>
<li><a
href="aefdc0da3a"><code>aefdc0d</code></a>
fix: Streamable HTTP client ping response handling (<a
href="https://redirect.github.com/mark3labs/mcp-go/issues/578">#578</a>)</li>
<li><a
href="7c8a0823c8"><code>7c8a082</code></a>
Improve JSON-RPC error handling with typed errors and response
constructors (...</li>
<li><a
href="dd0058cb65"><code>dd0058c</code></a>
fix(oauth): use oauth-authorization-server discovery before default
endpoints...</li>
<li>See full diff in <a
href="https://github.com/mark3labs/mcp-go/compare/v0.40.0...v0.41.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/mark3labs/mcp-go&package-manager=go_modules&previous-version=0.40.0&new-version=0.41.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-29 09:45:04 +00:00
dependabot[bot]
5d7bd1349e chore(deps): bump cargo-bins/cargo-binstall from 1.15.5 to 1.15.6 (#6120)
Bumps
[cargo-bins/cargo-binstall](https://github.com/cargo-bins/cargo-binstall)
from 1.15.5 to 1.15.6.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/cargo-bins/cargo-binstall/releases">cargo-bins/cargo-binstall's
releases</a>.</em></p>
<blockquote>
<h2>v1.15.6</h2>
<p><em>Binstall is a tool to fetch and install Rust-based executables as
binaries. It aims to be a drop-in replacement for <code>cargo
install</code> in most cases. Install it today with <code>cargo install
cargo-binstall</code>, from the binaries below, or if you already have
it, upgrade with <code>cargo binstall cargo-binstall</code>.</em></p>
<h4>In this release:</h4>
<ul>
<li>Upgrade dependencies</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="38e8f5e4c3"><code>38e8f5e</code></a>
release: cargo-binstall v1.15.6 (<a
href="https://redirect.github.com/cargo-bins/cargo-binstall/issues/2323">#2323</a>)</li>
<li><a
href="2da41f3157"><code>2da41f3</code></a>
chore: release (<a
href="https://redirect.github.com/cargo-bins/cargo-binstall/issues/2322">#2322</a>)</li>
<li><a
href="96c132b32d"><code>96c132b</code></a>
dep: Upgrade transitive dependencies (<a
href="https://redirect.github.com/cargo-bins/cargo-binstall/issues/2321">#2321</a>)</li>
<li><a
href="abba1f11e5"><code>abba1f1</code></a>
ci: Fix action.yml (<a
href="https://redirect.github.com/cargo-bins/cargo-binstall/issues/2319">#2319</a>)</li>
<li><a
href="dfd1fa0d3a"><code>dfd1fa0</code></a>
build(deps): bump clap from 4.5.47 to 4.5.48 in the deps group (<a
href="https://redirect.github.com/cargo-bins/cargo-binstall/issues/2316">#2316</a>)</li>
<li><a
href="160e1f31d9"><code>160e1f3</code></a>
chore(detect-wasi): release v1.0.40 (<a
href="https://redirect.github.com/cargo-bins/cargo-binstall/issues/2315">#2315</a>)</li>
<li><a
href="6c16d05d76"><code>6c16d05</code></a>
dep: Upgrade transitive dependencies (<a
href="https://redirect.github.com/cargo-bins/cargo-binstall/issues/2314">#2314</a>)</li>
<li><a
href="cf49c6dbd5"><code>cf49c6d</code></a>
docs: edited the link to the tag badge (<a
href="https://redirect.github.com/cargo-bins/cargo-binstall/issues/2313">#2313</a>)</li>
<li><a
href="d020f1115f"><code>d020f11</code></a>
build(deps): bump tj-actions/changed-files from 46 to 47 (<a
href="https://redirect.github.com/cargo-bins/cargo-binstall/issues/2311">#2311</a>)</li>
<li>See full diff in <a
href="20aa316bab...38e8f5e4c3">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cargo-bins/cargo-binstall&package-manager=github_actions&previous-version=1.15.5&new-version=1.15.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-29 09:39:52 +00:00
dependabot[bot]
c52b9d90bf chore(deps): bump github/codeql-action from 3.30.3 to 3.30.4 (#6117)
Bumps [github/codeql-action](https://github.com/github/codeql-action)
from 3.30.3 to 3.30.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/releases">github/codeql-action's
releases</a>.</em></p>
<blockquote>
<h2>v3.30.4</h2>
<h1>CodeQL Action Changelog</h1>
<p>See the <a
href="https://github.com/github/codeql-action/releases">releases
page</a> for the relevant changes to the CodeQL CLI and language
packs.</p>
<h2>3.30.4 - 25 Sep 2025</h2>
<ul>
<li>We have improved the CodeQL Action's ability to validate that the
workflow it is used in does not use different versions of the CodeQL
Action for different workflow steps. Mixing different versions of the
CodeQL Action in the same workflow is unsupported and can lead to
unpredictable results. A warning will now be emitted from the
<code>codeql-action/init</code> step if different versions of the CodeQL
Action are detected in the workflow file. Additionally, an error will
now be thrown by the other CodeQL Action steps if they load a
configuration file that was generated by a different version of the
<code>codeql-action/init</code> step. <a
href="https://redirect.github.com/github/codeql-action/pull/3099">#3099</a>
and <a
href="https://redirect.github.com/github/codeql-action/pull/3100">#3100</a></li>
<li>We added support for reducing the size of dependency caches for Java
analyses, which will reduce cache usage and speed up workflows. This
will be enabled automatically at a later time. <a
href="https://redirect.github.com/github/codeql-action/pull/3107">#3107</a></li>
<li>You can now run the latest CodeQL nightly bundle by passing
<code>tools: nightly</code> to the <code>init</code> action. In general,
the nightly bundle is unstable and we only recommend running it when
directed by GitHub staff. <a
href="https://redirect.github.com/github/codeql-action/pull/3130">#3130</a></li>
<li>Update default CodeQL bundle version to 2.23.1. <a
href="https://redirect.github.com/github/codeql-action/pull/3118">#3118</a></li>
</ul>
<p>See the full <a
href="https://github.com/github/codeql-action/blob/v3.30.4/CHANGELOG.md">CHANGELOG.md</a>
for more information.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's
changelog</a>.</em></p>
<blockquote>
<h1>CodeQL Action Changelog</h1>
<p>See the <a
href="https://github.com/github/codeql-action/releases">releases
page</a> for the relevant changes to the CodeQL CLI and language
packs.</p>
<h2>[UNRELEASED]</h2>
<p>No user facing changes.</p>
<h2>3.30.4 - 25 Sep 2025</h2>
<ul>
<li>We have improved the CodeQL Action's ability to validate that the
workflow it is used in does not use different versions of the CodeQL
Action for different workflow steps. Mixing different versions of the
CodeQL Action in the same workflow is unsupported and can lead to
unpredictable results. A warning will now be emitted from the
<code>codeql-action/init</code> step if different versions of the CodeQL
Action are detected in the workflow file. Additionally, an error will
now be thrown by the other CodeQL Action steps if they load a
configuration file that was generated by a different version of the
<code>codeql-action/init</code> step. <a
href="https://redirect.github.com/github/codeql-action/pull/3099">#3099</a>
and <a
href="https://redirect.github.com/github/codeql-action/pull/3100">#3100</a></li>
<li>We added support for reducing the size of dependency caches for Java
analyses, which will reduce cache usage and speed up workflows. This
will be enabled automatically at a later time. <a
href="https://redirect.github.com/github/codeql-action/pull/3107">#3107</a></li>
<li>You can now run the latest CodeQL nightly bundle by passing
<code>tools: nightly</code> to the <code>init</code> action. In general,
the nightly bundle is unstable and we only recommend running it when
directed by GitHub staff. <a
href="https://redirect.github.com/github/codeql-action/pull/3130">#3130</a></li>
<li>Update default CodeQL bundle version to 2.23.1. <a
href="https://redirect.github.com/github/codeql-action/pull/3118">#3118</a></li>
</ul>
<h2>3.30.3 - 10 Sep 2025</h2>
<p>No user facing changes.</p>
<h2>3.30.2 - 09 Sep 2025</h2>
<ul>
<li>Fixed a bug which could cause language autodetection to fail. <a
href="https://redirect.github.com/github/codeql-action/pull/3084">#3084</a></li>
<li>Experimental: The <code>quality-queries</code> input that was added
in <code>3.29.2</code> as part of an internal experiment is now
deprecated and will be removed in an upcoming version of the CodeQL
Action. It has been superseded by a new <code>analysis-kinds</code>
input, which is part of the same internal experiment. Do not use this in
production as it is subject to change at any time. <a
href="https://redirect.github.com/github/codeql-action/pull/3064">#3064</a></li>
</ul>
<h2>3.30.1 - 05 Sep 2025</h2>
<ul>
<li>Update default CodeQL bundle version to 2.23.0. <a
href="https://redirect.github.com/github/codeql-action/pull/3077">#3077</a></li>
</ul>
<h2>3.30.0 - 01 Sep 2025</h2>
<ul>
<li>Reduce the size of the CodeQL Action, speeding up workflows by
approximately 4 seconds. <a
href="https://redirect.github.com/github/codeql-action/pull/3054">#3054</a></li>
</ul>
<h2>3.29.11 - 21 Aug 2025</h2>
<ul>
<li>Update default CodeQL bundle version to 2.22.4. <a
href="https://redirect.github.com/github/codeql-action/pull/3044">#3044</a></li>
</ul>
<h2>3.29.10 - 18 Aug 2025</h2>
<p>No user facing changes.</p>
<h2>3.29.9 - 12 Aug 2025</h2>
<p>No user facing changes.</p>
<h2>3.29.8 - 08 Aug 2025</h2>
<ul>
<li>Fix an issue where the Action would autodetect unsupported languages
such as HTML. <a
href="https://redirect.github.com/github/codeql-action/pull/3015">#3015</a></li>
</ul>
<h2>3.29.7 - 07 Aug 2025</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="303c0aef88"><code>303c0ae</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3149">#3149</a>
from github/update-v3.30.4-e4b85ab65</li>
<li><a
href="333a673809"><code>333a673</code></a>
Update changelog for v3.30.4</li>
<li><a
href="e4b85ab654"><code>e4b85ab</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3148">#3148</a>
from github/cklin/just-test_file-serial</li>
<li><a
href="1e72556714"><code>1e72556</code></a>
build: use --serial in 'just test_file'</li>
<li><a
href="39842d8f83"><code>39842d8</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3146">#3146</a>
from github/mbg/start-proxy/authenticate</li>
<li><a
href="6ccec2ac14"><code>6ccec2a</code></a>
Remove <code>url</code> from log messages</li>
<li><a
href="435f474d1e"><code>435f474</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3147">#3147</a>
from github/dependabot/npm_and_yarn/npm-76d2ab1078</li>
<li><a
href="f134e09015"><code>f134e09</code></a>
Rebuild</li>
<li><a
href="50a31df6ba"><code>50a31df</code></a>
Bump <code>@​actions/cache</code> from 4.0.5 to 4.1.0 in the npm
group</li>
<li><a
href="8e25b3435d"><code>8e25b34</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/3144">#3144</a>
from github/henrymercer/dependabot</li>
<li>Additional commits viewable in <a
href="192325c861...303c0aef88">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/codeql-action&package-manager=github_actions&previous-version=3.30.3&new-version=3.30.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-26 08:18:10 +00:00
dependabot[bot]
d38b6383f6 chore(deps): bump actions/cache from 4.2.4 to 4.3.0 (#6115)
Bumps [actions/cache](https://github.com/actions/cache) from 4.2.4 to
4.3.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/cache/releases">actions/cache's
releases</a>.</em></p>
<blockquote>
<h2>v4.3.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Add note on runner versions by <a
href="https://github.com/GhadimiR"><code>@​GhadimiR</code></a> in <a
href="https://redirect.github.com/actions/cache/pull/1642">actions/cache#1642</a></li>
<li>Prepare <code>v4.3.0</code> release by <a
href="https://github.com/Link"><code>@​Link</code></a>- in <a
href="https://redirect.github.com/actions/cache/pull/1655">actions/cache#1655</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/GhadimiR"><code>@​GhadimiR</code></a>
made their first contribution in <a
href="https://redirect.github.com/actions/cache/pull/1642">actions/cache#1642</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/cache/compare/v4...v4.3.0">https://github.com/actions/cache/compare/v4...v4.3.0</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/actions/cache/blob/main/RELEASES.md">actions/cache's
changelog</a>.</em></p>
<blockquote>
<h1>Releases</h1>
<h3>4.3.0</h3>
<ul>
<li>Bump <code>@actions/cache</code> to <a
href="https://redirect.github.com/actions/toolkit/pull/2132">v4.1.0</a></li>
</ul>
<h3>4.2.4</h3>
<ul>
<li>Bump <code>@actions/cache</code> to v4.0.5</li>
</ul>
<h3>4.2.3</h3>
<ul>
<li>Bump <code>@actions/cache</code> to v4.0.3 (obfuscates SAS token in
debug logs for cache entries)</li>
</ul>
<h3>4.2.2</h3>
<ul>
<li>Bump <code>@actions/cache</code> to v4.0.2</li>
</ul>
<h3>4.2.1</h3>
<ul>
<li>Bump <code>@actions/cache</code> to v4.0.1</li>
</ul>
<h3>4.2.0</h3>
<p>TLDR; The cache backend service has been rewritten from the ground up
for improved performance and reliability. <a
href="https://github.com/actions/cache">actions/cache</a> now integrates
with the new cache service (v2) APIs.</p>
<p>The new service will gradually roll out as of <strong>February 1st,
2025</strong>. The legacy service will also be sunset on the same date.
Changes in these release are <strong>fully backward
compatible</strong>.</p>
<p><strong>We are deprecating some versions of this action</strong>. We
recommend upgrading to version <code>v4</code> or <code>v3</code> as
soon as possible before <strong>February 1st, 2025.</strong> (Upgrade
instructions below).</p>
<p>If you are using pinned SHAs, please use the SHAs of versions
<code>v4.2.0</code> or <code>v3.4.0</code></p>
<p>If you do not upgrade, all workflow runs using any of the deprecated
<a href="https://github.com/actions/cache">actions/cache</a> will
fail.</p>
<p>Upgrading to the recommended versions will not break your
workflows.</p>
<h3>4.1.2</h3>
<ul>
<li>Add GitHub Enterprise Cloud instances hostname filters to inform API
endpoint choices - <a
href="https://redirect.github.com/actions/cache/pull/1474">#1474</a></li>
<li>Security fix: Bump braces from 3.0.2 to 3.0.3 - <a
href="https://redirect.github.com/actions/cache/pull/1475">#1475</a></li>
</ul>
<h3>4.1.1</h3>
<ul>
<li>Restore original behavior of <code>cache-hit</code> output - <a
href="https://redirect.github.com/actions/cache/pull/1467">#1467</a></li>
</ul>
<h3>4.1.0</h3>
<ul>
<li>Ensure <code>cache-hit</code> output is set when a cache is missed -
<a
href="https://redirect.github.com/actions/cache/pull/1404">#1404</a></li>
<li>Deprecate <code>save-always</code> input - <a
href="https://redirect.github.com/actions/cache/pull/1452">#1452</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0057852bfa"><code>0057852</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/cache/issues/1655">#1655</a>
from actions/Link-/prepare-4.3.0</li>
<li><a
href="4f5ea67f1c"><code>4f5ea67</code></a>
Update licensed cache</li>
<li><a
href="9fcad95d03"><code>9fcad95</code></a>
Upgrade actions/cache to 4.1.0 and prepare 4.3.0 release</li>
<li><a
href="638ed79f9d"><code>638ed79</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/cache/issues/1642">#1642</a>
from actions/GhadimiR-patch-1</li>
<li><a
href="3862dccb17"><code>3862dcc</code></a>
Add note on runner versions</li>
<li>See full diff in <a
href="0400d5f644...0057852bfa">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/cache&package-manager=github_actions&previous-version=4.2.4&new-version=4.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-25 17:15:31 +00:00
dependabot[bot]
033d2854ce chore(deps): bump cachix/install-nix-action from 31.6.2 to 31.7.0 (#6114)
Bumps
[cachix/install-nix-action](https://github.com/cachix/install-nix-action)
from 31.6.2 to 31.7.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/cachix/install-nix-action/releases">cachix/install-nix-action's
releases</a>.</em></p>
<blockquote>
<h2>v31.7.0</h2>
<h2>What's Changed</h2>
<ul>
<li>
<p>feat: set up the environment based on the installer shell scripts by
<a href="https://github.com/sandydoo"><code>@​sandydoo</code></a> in <a
href="https://redirect.github.com/cachix/install-nix-action/pull/251">cachix/install-nix-action#251</a></p>
<p>Configures the following environment variables:</p>
<ul>
<li><code>NIX_PROFILES</code></li>
<li><code>NIX_SSL_CERT_FILE</code> (if not set)</li>
</ul>
<p>Adds the bin directory from the user's profile to
<code>$PATH</code>.</p>
</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/cachix/install-nix-action/compare/v31.6.2...v31.7.0">https://github.com/cachix/install-nix-action/compare/v31.6.2...v31.7.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9280e7aca8"><code>9280e7a</code></a>
fix: use -e to check for certs</li>
<li><a
href="effa594a17"><code>effa594</code></a>
fix: simplify setting the user profile</li>
<li><a
href="eb0f6c7357"><code>eb0f6c7</code></a>
ci: document where to find available images to test against</li>
<li><a
href="6676c23a71"><code>6676c23</code></a>
ci: add ubuntu-22.04-arm</li>
<li><a
href="cbf4b16d11"><code>cbf4b16</code></a>
Merge pull request <a
href="https://redirect.github.com/cachix/install-nix-action/issues/251">#251</a>
from cachix/fix-env</li>
<li><a
href="29a4dac2fa"><code>29a4dac</code></a>
tests: refactor tests to run under a single matrix</li>
<li><a
href="7449e8905b"><code>7449e89</code></a>
tests: improve env tests and move to tests dir</li>
<li><a
href="d487f94a7a"><code>d487f94</code></a>
lint</li>
<li><a
href="581a134122"><code>581a134</code></a>
refactor: document ssl-cert-file vs NIX_SSL_CERT_FILE</li>
<li><a
href="d914f6d9e8"><code>d914f6d</code></a>
refactor: drop ssl handling for unsupported platforms</li>
<li>Additional commits viewable in <a
href="a809471b5c...9280e7aca8">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cachix/install-nix-action&package-manager=github_actions&previous-version=31.6.2&new-version=31.7.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-25 08:16:58 +00:00
actions-user
582e313ca0 chore: auto-update generated files 2025-09-25 03:10:07 +00:00
actions-user
5ce4412111 chore: auto-update generated files 2025-09-25 02:40:55 +00:00
Carlos Alexandro Becker
a1d945da61 fix(makeself): keep full binary name
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
v2.12.3
2025-09-24 17:36:00 -03:00
Carlos Alexandro Becker
54274e5142 fix(makeself): keep script name
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2025-09-24 17:35:21 -03:00
Carlos Alexandro Becker
1b33a12d0c ci: fix generate job
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2025-09-24 10:58:01 -03:00
dependabot[bot]
f391d90691 chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.88.1 to 1.88.2 (#6113)
Bumps
[github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2)
from 1.88.1 to 1.88.2.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="bf186e483b"><code>bf186e4</code></a>
Release 2025-09-23</li>
<li><a
href="2a07c38712"><code>2a07c38</code></a>
Regenerated Clients</li>
<li><a
href="fa42fab43e"><code>fa42fab</code></a>
Update partitions file</li>
<li><a
href="379a2ca376"><code>379a2ca</code></a>
Update endpoints model</li>
<li><a
href="81d1020f9f"><code>81d1020</code></a>
Update API model</li>
<li><a
href="f26b32c186"><code>f26b32c</code></a>
Release 2025-09-22</li>
<li><a
href="820fa2e0c1"><code>820fa2e</code></a>
Regenerated Clients</li>
<li><a
href="1245a24f68"><code>1245a24</code></a>
Update endpoints model</li>
<li><a
href="6d014ab7e0"><code>6d014ab</code></a>
Update API model</li>
<li><a
href="69ff935cd8"><code>69ff935</code></a>
Release 2025-09-19</li>
<li>Additional commits viewable in <a
href="https://github.com/aws/aws-sdk-go-v2/compare/service/s3/v1.88.1...service/s3/v1.88.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/aws/aws-sdk-go-v2/service/s3&package-manager=go_modules&previous-version=1.88.1&new-version=1.88.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-24 08:26:37 +00:00
dependabot[bot]
36ac862e85 chore(deps): bump actions/checkout from 4.2.2 to 5.0.0 (#6111)
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.2.2
to 5.0.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/checkout/releases">actions/checkout's
releases</a>.</em></p>
<blockquote>
<h2>v5.0.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Update actions checkout to use node 24 by <a
href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2226">actions/checkout#2226</a></li>
<li>Prepare v5.0.0 release by <a
href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2238">actions/checkout#2238</a></li>
</ul>
<h2>⚠️ Minimum Compatible Runner Version</h2>
<p><strong>v2.327.1</strong><br />
<a
href="https://github.com/actions/runner/releases/tag/v2.327.1">Release
Notes</a></p>
<p>Make sure your runner is updated to this version or newer to use this
release.</p>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/checkout/compare/v4...v5.0.0">https://github.com/actions/checkout/compare/v4...v5.0.0</a></p>
<h2>v4.3.0</h2>
<h2>What's Changed</h2>
<ul>
<li>docs: update README.md by <a
href="https://github.com/motss"><code>@​motss</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1971">actions/checkout#1971</a></li>
<li>Add internal repos for checking out multiple repositories by <a
href="https://github.com/mouismail"><code>@​mouismail</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1977">actions/checkout#1977</a></li>
<li>Documentation update - add recommended permissions to Readme by <a
href="https://github.com/benwells"><code>@​benwells</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2043">actions/checkout#2043</a></li>
<li>Adjust positioning of user email note and permissions heading by <a
href="https://github.com/joshmgross"><code>@​joshmgross</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2044">actions/checkout#2044</a></li>
<li>Update README.md by <a
href="https://github.com/nebuk89"><code>@​nebuk89</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2194">actions/checkout#2194</a></li>
<li>Update CODEOWNERS for actions by <a
href="https://github.com/TingluoHuang"><code>@​TingluoHuang</code></a>
in <a
href="https://redirect.github.com/actions/checkout/pull/2224">actions/checkout#2224</a></li>
<li>Update package dependencies by <a
href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2236">actions/checkout#2236</a></li>
<li>Prepare release v4.3.0 by <a
href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2237">actions/checkout#2237</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/motss"><code>@​motss</code></a> made
their first contribution in <a
href="https://redirect.github.com/actions/checkout/pull/1971">actions/checkout#1971</a></li>
<li><a href="https://github.com/mouismail"><code>@​mouismail</code></a>
made their first contribution in <a
href="https://redirect.github.com/actions/checkout/pull/1977">actions/checkout#1977</a></li>
<li><a href="https://github.com/benwells"><code>@​benwells</code></a>
made their first contribution in <a
href="https://redirect.github.com/actions/checkout/pull/2043">actions/checkout#2043</a></li>
<li><a href="https://github.com/nebuk89"><code>@​nebuk89</code></a> made
their first contribution in <a
href="https://redirect.github.com/actions/checkout/pull/2194">actions/checkout#2194</a></li>
<li><a href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a>
made their first contribution in <a
href="https://redirect.github.com/actions/checkout/pull/2236">actions/checkout#2236</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/checkout/compare/v4...v4.3.0">https://github.com/actions/checkout/compare/v4...v4.3.0</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/actions/checkout/blob/main/CHANGELOG.md">actions/checkout's
changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<h2>V5.0.0</h2>
<ul>
<li>Update actions checkout to use node 24 by <a
href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2226">actions/checkout#2226</a></li>
</ul>
<h2>V4.3.0</h2>
<ul>
<li>docs: update README.md by <a
href="https://github.com/motss"><code>@​motss</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1971">actions/checkout#1971</a></li>
<li>Add internal repos for checking out multiple repositories by <a
href="https://github.com/mouismail"><code>@​mouismail</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1977">actions/checkout#1977</a></li>
<li>Documentation update - add recommended permissions to Readme by <a
href="https://github.com/benwells"><code>@​benwells</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2043">actions/checkout#2043</a></li>
<li>Adjust positioning of user email note and permissions heading by <a
href="https://github.com/joshmgross"><code>@​joshmgross</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2044">actions/checkout#2044</a></li>
<li>Update README.md by <a
href="https://github.com/nebuk89"><code>@​nebuk89</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2194">actions/checkout#2194</a></li>
<li>Update CODEOWNERS for actions by <a
href="https://github.com/TingluoHuang"><code>@​TingluoHuang</code></a>
in <a
href="https://redirect.github.com/actions/checkout/pull/2224">actions/checkout#2224</a></li>
<li>Update package dependencies by <a
href="https://github.com/salmanmkc"><code>@​salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/2236">actions/checkout#2236</a></li>
</ul>
<h2>v4.2.2</h2>
<ul>
<li><code>url-helper.ts</code> now leverages well-known environment
variables by <a href="https://github.com/jww3"><code>@​jww3</code></a>
in <a
href="https://redirect.github.com/actions/checkout/pull/1941">actions/checkout#1941</a></li>
<li>Expand unit test coverage for <code>isGhes</code> by <a
href="https://github.com/jww3"><code>@​jww3</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1946">actions/checkout#1946</a></li>
</ul>
<h2>v4.2.1</h2>
<ul>
<li>Check out other refs/* by commit if provided, fall back to ref by <a
href="https://github.com/orhantoy"><code>@​orhantoy</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1924">actions/checkout#1924</a></li>
</ul>
<h2>v4.2.0</h2>
<ul>
<li>Add Ref and Commit outputs by <a
href="https://github.com/lucacome"><code>@​lucacome</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1180">actions/checkout#1180</a></li>
<li>Dependency updates by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a>- <a
href="https://redirect.github.com/actions/checkout/pull/1777">actions/checkout#1777</a>,
<a
href="https://redirect.github.com/actions/checkout/pull/1872">actions/checkout#1872</a></li>
</ul>
<h2>v4.1.7</h2>
<ul>
<li>Bump the minor-npm-dependencies group across 1 directory with 4
updates by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1739">actions/checkout#1739</a></li>
<li>Bump actions/checkout from 3 to 4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1697">actions/checkout#1697</a></li>
<li>Check out other refs/* by commit by <a
href="https://github.com/orhantoy"><code>@​orhantoy</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1774">actions/checkout#1774</a></li>
<li>Pin actions/checkout's own workflows to a known, good, stable
version. by <a href="https://github.com/jww3"><code>@​jww3</code></a> in
<a
href="https://redirect.github.com/actions/checkout/pull/1776">actions/checkout#1776</a></li>
</ul>
<h2>v4.1.6</h2>
<ul>
<li>Check platform to set archive extension appropriately by <a
href="https://github.com/cory-miller"><code>@​cory-miller</code></a> in
<a
href="https://redirect.github.com/actions/checkout/pull/1732">actions/checkout#1732</a></li>
</ul>
<h2>v4.1.5</h2>
<ul>
<li>Update NPM dependencies by <a
href="https://github.com/cory-miller"><code>@​cory-miller</code></a> in
<a
href="https://redirect.github.com/actions/checkout/pull/1703">actions/checkout#1703</a></li>
<li>Bump github/codeql-action from 2 to 3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1694">actions/checkout#1694</a></li>
<li>Bump actions/setup-node from 1 to 4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1696">actions/checkout#1696</a></li>
<li>Bump actions/upload-artifact from 2 to 4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1695">actions/checkout#1695</a></li>
<li>README: Suggest <code>user.email</code> to be
<code>41898282+github-actions[bot]@users.noreply.github.com</code> by <a
href="https://github.com/cory-miller"><code>@​cory-miller</code></a> in
<a
href="https://redirect.github.com/actions/checkout/pull/1707">actions/checkout#1707</a></li>
</ul>
<h2>v4.1.4</h2>
<ul>
<li>Disable <code>extensions.worktreeConfig</code> when disabling
<code>sparse-checkout</code> by <a
href="https://github.com/jww3"><code>@​jww3</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1692">actions/checkout#1692</a></li>
<li>Add dependabot config by <a
href="https://github.com/cory-miller"><code>@​cory-miller</code></a> in
<a
href="https://redirect.github.com/actions/checkout/pull/1688">actions/checkout#1688</a></li>
<li>Bump the minor-actions-dependencies group with 2 updates by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1693">actions/checkout#1693</a></li>
<li>Bump word-wrap from 1.2.3 to 1.2.5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/actions/checkout/pull/1643">actions/checkout#1643</a></li>
</ul>
<h2>v4.1.3</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="08c6903cd8"><code>08c6903</code></a>
Prepare v5.0.0 release (<a
href="https://redirect.github.com/actions/checkout/issues/2238">#2238</a>)</li>
<li><a
href="9f265659d3"><code>9f26565</code></a>
Update actions checkout to use node 24 (<a
href="https://redirect.github.com/actions/checkout/issues/2226">#2226</a>)</li>
<li><a
href="08eba0b27e"><code>08eba0b</code></a>
Prepare release v4.3.0 (<a
href="https://redirect.github.com/actions/checkout/issues/2237">#2237</a>)</li>
<li><a
href="631c7dc4f8"><code>631c7dc</code></a>
Update package dependencies (<a
href="https://redirect.github.com/actions/checkout/issues/2236">#2236</a>)</li>
<li><a
href="8edcb1bdb4"><code>8edcb1b</code></a>
Update CODEOWNERS for actions (<a
href="https://redirect.github.com/actions/checkout/issues/2224">#2224</a>)</li>
<li><a
href="09d2acae67"><code>09d2aca</code></a>
Update README.md (<a
href="https://redirect.github.com/actions/checkout/issues/2194">#2194</a>)</li>
<li><a
href="85e6279cec"><code>85e6279</code></a>
Adjust positioning of user email note and permissions heading (<a
href="https://redirect.github.com/actions/checkout/issues/2044">#2044</a>)</li>
<li><a
href="009b9ae9e4"><code>009b9ae</code></a>
Documentation update - add recommended permissions to Readme (<a
href="https://redirect.github.com/actions/checkout/issues/2043">#2043</a>)</li>
<li><a
href="cbb722410c"><code>cbb7224</code></a>
Update README.md (<a
href="https://redirect.github.com/actions/checkout/issues/1977">#1977</a>)</li>
<li><a
href="3b9b8c884f"><code>3b9b8c8</code></a>
docs: update README.md (<a
href="https://redirect.github.com/actions/checkout/issues/1971">#1971</a>)</li>
<li>See full diff in <a
href="https://github.com/actions/checkout/compare/v4.2.2...08c6903cd8c0fde910a37f88322edcfb5dd907a8">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/checkout&package-manager=github_actions&previous-version=4.2.2&new-version=5.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-24 04:31:23 +00:00
Carlos Alexandro Becker
24f73e8db9 ci: scorecard.yml pin fix
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2025-09-24 00:40:28 -03:00
Carlos Alexandro Becker
2f82c947e0 ci: better pinning
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2025-09-24 00:11:02 -03:00