Bumps
[actions/upload-artifact](https://github.com/actions/upload-artifact)
from 4.6.1 to 4.6.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/upload-artifact/releases">actions/upload-artifact's
releases</a>.</em></p>
<blockquote>
<h2>v4.6.2</h2>
<h2>What's Changed</h2>
<ul>
<li>Update to use artifact 2.3.2 package & prepare for new
upload-artifact release by <a
href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a
href="https://redirect.github.com/actions/upload-artifact/pull/685">actions/upload-artifact#685</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a>
made their first contribution in <a
href="https://redirect.github.com/actions/upload-artifact/pull/685">actions/upload-artifact#685</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/upload-artifact/compare/v4...v4.6.2">https://github.com/actions/upload-artifact/compare/v4...v4.6.2</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ea165f8d65"><code>ea165f8</code></a>
Merge pull request <a
href="https://redirect.github.com/actions/upload-artifact/issues/685">#685</a>
from salmanmkc/salmanmkc/3-new-upload-artifacts-release</li>
<li><a
href="08396203c1"><code>0839620</code></a>
Prepare for new release of actions/upload-artifact with new toolkit
cache ver...</li>
<li>See full diff in <a
href="4cec3d8aa0...ea165f8d65">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[gitlab.com/gitlab-org/api/client-go](https://gitlab.com/gitlab-org/api/client-go)
from 0.147.0 to 0.148.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://gitlab.com/gitlab-org/api/client-go/tags">gitlab.com/gitlab-org/api/client-go's
releases</a>.</em></p>
<blockquote>
<h2>v0.148.0</h2>
<h1><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.147.1...v0.148.0">0.148.0</a>
(2025-09-23)</h1>
<h3>Features</h3>
<ul>
<li><strong>ResourceGroup:</strong> add <code>newest_ready_first</code>
to resource group <code>process_mode</code> (<a
href="fc8f7431da">fc8f743</a>)</li>
</ul>
<h2>v0.147.1</h2>
<h2><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.147.0...v0.147.1">0.147.1</a>
(2025-09-22)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>client:</strong> use default retry policy from retryablehttp
(<a
href="2a72511311">2a72511</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://gitlab.com/gitlab-org/api/client-go/blob/main/CHANGELOG.md">gitlab.com/gitlab-org/api/client-go's
changelog</a>.</em></p>
<blockquote>
<h1><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.147.1...v0.148.0">0.148.0</a>
(2025-09-23)</h1>
<h3>Features</h3>
<ul>
<li><strong>ResourceGroup:</strong> add <code>newest_ready_first</code>
to resource group <code>process_mode</code> (<a
href="fc8f7431da">fc8f743</a>)</li>
</ul>
<h2><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.147.0...v0.147.1">0.147.1</a>
(2025-09-22)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><strong>client:</strong> use default retry policy from retryablehttp
(<a
href="2a72511311">2a72511</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3558d3b9fe"><code>3558d3b</code></a>
chore(release): 0.148.0 [skip ci]</li>
<li><a
href="0da9441600"><code>0da9441</code></a>
Merge branch 'add-newest-ready-first-to-resource-group-process-mode'
into 'main'</li>
<li><a
href="fc8f7431da"><code>fc8f743</code></a>
feat(ResourceGroup): add <code>newest_ready_first</code> to resource
group <code>process_mode</code></li>
<li><a
href="5ae628595a"><code>5ae6285</code></a>
chore(release): 0.147.1 [skip ci]</li>
<li><a
href="2762ea0207"><code>2762ea0</code></a>
Merge branch 'use-retryablehttp-default-retry-policy' into 'main'</li>
<li><a
href="2a72511311"><code>2a72511</code></a>
fix(client): use default retry policy from retryablehttp</li>
<li>See full diff in <a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.147.0...v0.148.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[gitlab.com/gitlab-org/api/client-go](https://gitlab.com/gitlab-org/api/client-go)
from 0.146.0 to 0.147.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://gitlab.com/gitlab-org/api/client-go/tags">gitlab.com/gitlab-org/api/client-go's
releases</a>.</em></p>
<blockquote>
<h2>v0.147.0</h2>
<h1><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.146.0...v0.147.0">0.147.0</a>
(2025-09-22)</h1>
<h3>Features</h3>
<ul>
<li><strong>Project:</strong> add resource_group_default_process_mode
(<a
href="7804fafa18">7804faf</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://gitlab.com/gitlab-org/api/client-go/blob/main/CHANGELOG.md">gitlab.com/gitlab-org/api/client-go's
changelog</a>.</em></p>
<blockquote>
<h1><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.146.0...v0.147.0">0.147.0</a>
(2025-09-22)</h1>
<h3>Features</h3>
<ul>
<li><strong>Project:</strong> add resource_group_default_process_mode
(<a
href="7804fafa18">7804faf</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="1b7f4d1832"><code>1b7f4d1</code></a>
chore(release): 0.147.0 [skip ci]</li>
<li><a
href="2b455d539f"><code>2b455d5</code></a>
Merge branch 'renovate/golangci-golangci-lint-2.x' into 'main'</li>
<li><a
href="9a999ca95b"><code>9a999ca</code></a>
Merge branch 'add-default-resource-group-process-mode-to-project' into
'main'</li>
<li><a
href="7804fafa18"><code>7804faf</code></a>
feat(Project): add resource_group_default_process_mode</li>
<li><a
href="fb8017b434"><code>fb8017b</code></a>
chore(deps): update golangci/golangci-lint docker tag to v2.5.0</li>
<li>See full diff in <a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.146.0...v0.147.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[cachix/install-nix-action](https://github.com/cachix/install-nix-action)
from 31.6.1 to 31.6.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/cachix/install-nix-action/releases">cachix/install-nix-action's
releases</a>.</em></p>
<blockquote>
<h2>v31.6.2</h2>
<h2>What's Changed</h2>
<ul>
<li>nix: 2.31.1 -> 2.31.2 by <a
href="https://github.com/github-actions"><code>@github-actions</code></a>[bot]
in <a
href="https://redirect.github.com/cachix/install-nix-action/pull/256">cachix/install-nix-action#256</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/cachix/install-nix-action/compare/v31...v31.6.2">https://github.com/cachix/install-nix-action/compare/v31...v31.6.2</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a809471b5c"><code>a809471</code></a>
Merge pull request <a
href="https://redirect.github.com/cachix/install-nix-action/issues/256">#256</a>
from cachix/create-pull-request/patch</li>
<li><a
href="d5f1c043d0"><code>d5f1c04</code></a>
nix: 2.31.1 -> 2.31.2</li>
<li>See full diff in <a
href="7be5dee142...a809471b5c">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Fedora: Move the OSS/Pro exclude config to the repo config That way it
works even with yum update later on
**If applied, this commit will...**
Provide a better outcome for people using goreleaser on Fedora (like me)
**Why is this change being made?**
The install instructions are not optimal and I keep getting
goreleaser-pro installed when I do yum update
Bumps
[gitlab.com/gitlab-org/api/client-go](https://gitlab.com/gitlab-org/api/client-go)
from 0.145.0 to 0.146.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://gitlab.com/gitlab-org/api/client-go/tags">gitlab.com/gitlab-org/api/client-go's
releases</a>.</em></p>
<blockquote>
<h2>v0.146.0</h2>
<h1><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.145.0...v0.146.0">0.146.0</a>
(2025-09-18)</h1>
<h3>Features</h3>
<ul>
<li><strong>pipelines:</strong> Add compile-time type-safe pipeline
inputs support (<a
href="4b30e60260">4b30e60</a>),
closes <a
href="https://gitlab.com/gitlab-org/api/client-go/issues/2154">gitlab-org/api/client-go#2154</a></li>
<li><strong>PipelinesService:</strong> Add support for pipeline inputs
with type validation (<a
href="ab3056f403">ab3056f</a>),
closes <a
href="https://gitlab.com/gitlab-org/api/client-go/issues/2154">gitlab-org/api/client-go#2154</a></li>
<li><strong>PipelineTriggersService:</strong> Add support for pipeline
inputs to trigger API (<a
href="9ad770e49e">9ad770e</a>),
closes <a
href="https://gitlab.com/gitlab-org/api/client-go/issues/2154">gitlab-org/api/client-go#2154</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://gitlab.com/gitlab-org/api/client-go/blob/main/CHANGELOG.md">gitlab.com/gitlab-org/api/client-go's
changelog</a>.</em></p>
<blockquote>
<h1><a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.145.0...v0.146.0">0.146.0</a>
(2025-09-18)</h1>
<h3>Features</h3>
<ul>
<li><strong>pipelines:</strong> Add compile-time type-safe pipeline
inputs support (<a
href="4b30e60260">4b30e60</a>),
closes <a
href="https://gitlab.com/gitlab-org/api/client-go/issues/2154">gitlab-org/api/client-go#2154</a></li>
<li><strong>PipelinesService:</strong> Add support for pipeline inputs
with type validation (<a
href="ab3056f403">ab3056f</a>),
closes <a
href="https://gitlab.com/gitlab-org/api/client-go/issues/2154">gitlab-org/api/client-go#2154</a></li>
<li><strong>PipelineTriggersService:</strong> Add support for pipeline
inputs to trigger API (<a
href="9ad770e49e">9ad770e</a>),
closes <a
href="https://gitlab.com/gitlab-org/api/client-go/issues/2154">gitlab-org/api/client-go#2154</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="7108931a3b"><code>7108931</code></a>
chore(release): 0.146.0 [skip ci]</li>
<li><a
href="a4ca419374"><code>a4ca419</code></a>
Merge branch 'fforster/pipeline-inputs' into 'main'</li>
<li><a
href="6242a7dc40"><code>6242a7d</code></a>
refactor(PipelinesService): Move interface assetion into the test
file</li>
<li><a
href="4b30e60260"><code>4b30e60</code></a>
feat(pipelines): Add compile-time type-safe pipeline inputs support</li>
<li><a
href="9ad770e49e"><code>9ad770e</code></a>
feat(PipelineTriggersService): Add support for pipeline inputs to
trigger API</li>
<li><a
href="ab3056f403"><code>ab3056f</code></a>
feat(PipelinesService): Add support for pipeline inputs with type
validation</li>
<li><a
href="1af9b22dd7"><code>1af9b22</code></a>
Merge branch 'renovate/node-24.x' into 'main'</li>
<li><a
href="c078b17bfa"><code>c078b17</code></a>
chore(deps): update node docker tag to v24</li>
<li><a
href="ea0d0f7bf8"><code>ea0d0f7</code></a>
Merge branch 'remove-dependency-proxy' into 'main'</li>
<li><a
href="4c1543a428"><code>4c1543a</code></a>
ci(no-release): remove dependency proxy from pipeline</li>
<li>See full diff in <a
href="https://gitlab.com/gitlab-org/api/client-go/compare/v0.145.0...v0.146.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/charmbracelet/fang](https://github.com/charmbracelet/fang)
from 0.4.1 to 0.4.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/charmbracelet/fang/releases">github.com/charmbracelet/fang's
releases</a>.</em></p>
<blockquote>
<h2>v0.4.2</h2>
<h2>Changelog</h2>
<hr />
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
<p>Thoughts? Questions? We love hearing from you. Feel free to reach out
on <a href="https://x.com/charmcli">X</a>, <a
href="https://charm.land/discord">Discord</a>, <a
href="https://charm.land/slack">Slack</a>, <a
href="https://mastodon.social/@charmcli">The Fediverse</a>, <a
href="https://bsky.app/profile/charm.land">Bluesky</a>.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="055c2e3dda"><code>055c2e3</code></a>
chore: bump dependencies to fix <a
href="https://redirect.github.com/charmbracelet/fang/issues/73">#73</a></li>
<li>See full diff in <a
href="https://github.com/charmbracelet/fang/compare/v0.4.1...v0.4.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[cargo-bins/cargo-binstall](https://github.com/cargo-bins/cargo-binstall)
from cf49c6dbd5eb6865966cf4fae3ab1ecfb82ed87e to
6c16d05d76228d6ebb51c9db4595e86015d8df9d.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/cargo-bins/cargo-binstall/blob/main/install-from-binstall-release.ps1">cargo-bins/cargo-binstall's
changelog</a>.</em></p>
<blockquote>
<p>$ErrorActionPreference = "Stop"
Set-PSDebug -Trace 1
$tmpdir = $Env:TEMP
$BINSTALL_VERSION = $Env:BINSTALL_VERSION
if ($BINSTALL_VERSION -and $BINSTALL_VERSION -notlike 'v*') {
# prefix version with v
$BINSTALL_VERSION = "v$BINSTALL_VERSION"
}</p>
<h1>Fetch binaries from <code>[..]/releases/latest/download/[..]</code>
if <em>no</em> version is</h1>
<h1>given, otherwise from
<code>[..]/releases/download/VERSION/[..]</code>. Note the shifted</h1>
<h1>location of '/download'.</h1>
<p>$base_url = if (-not $BINSTALL_VERSION) {
"<a
href="https://github.com/cargo-bins/cargo-binstall/releases/latest/download/cargo-binstall-">https://github.com/cargo-bins/cargo-binstall/releases/latest/download/cargo-binstall-</a>"
} else {
"<a
href="https://github.com/cargo-bins/cargo-binstall/releases/download/$BINSTALL_VERSION/cargo-binstall-">https://github.com/cargo-bins/cargo-binstall/releases/download/$BINSTALL_VERSION/cargo-binstall-</a>"
}</p>
<p>$proc_arch =
[Environment]::GetEnvironmentVariable("PROCESSOR_ARCHITECTURE",
[EnvironmentVariableTarget]::Machine)
if ($proc_arch -eq "AMD64") {
$arch = "x86_64"
} elseif ($proc_arch -eq "ARM64") {
$arch = "aarch64"
} else {
Write-Host "Unsupported Architecture: $type" -ForegroundColor
Red
[Environment]::Exit(1)
}
$url = "$base_url$arch-pc-windows-msvc.zip"
Invoke-WebRequest $url -OutFile $tmpdir\cargo-binstall.zip
Expand-Archive -Force $tmpdir\cargo-binstall.zip $tmpdir\cargo-binstall
Write-Host ""</p>
<p>$ps = Start-Process -PassThru -Wait
"$tmpdir\cargo-binstall\cargo-binstall.exe"
"--self-install"
if ($ps.ExitCode -ne 0) {
Invoke-Expression "$tmpdir\cargo-binstall\cargo-binstall.exe -y
--force cargo-binstall"
}</p>
<p>Remove-Item -Force $tmpdir\cargo-binstall.zip
Remove-Item -Recurse -Force $tmpdir\cargo-binstall
$cargo_home = if ($Env:CARGO_HOME -ne $null) { $Env:CARGO_HOME } else {
"$HOME.cargo" }
if ($Env:Path -split ";" -notcontains
"$cargo_home\bin") {
if (($Env:CI -ne $null) -and ($Env:GITHUB_PATH -ne $null)) {
Add-Content -Path "$Env:GITHUB_PATH" -Value
"$cargo_home\bin"
} else {
Write-Host ""
Write-Host "Your path is missing $cargo_home\bin, you might want to
add it." -ForegroundColor Red
Write-Host ""
}
}</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="6c16d05d76"><code>6c16d05</code></a>
dep: Upgrade transitive dependencies (<a
href="https://redirect.github.com/cargo-bins/cargo-binstall/issues/2314">#2314</a>)</li>
<li>See full diff in <a
href="cf49c6dbd5...6c16d05d76">compare
view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
currently the generated SBOMs might not be too useful without enriching,
as they won't have dependencies licenses and things like that.
enriching fixes it. It's done on goreleaser `main`, not sure if we
should make this the default or not 🤔
you can verify a SBOM with:
```sh
jq -r '.components[] | .name + " " + ([.licenses[]?.license.id] | join(","))' file.sbom.json
```
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
Bumps
[cargo-bins/cargo-binstall](https://github.com/cargo-bins/cargo-binstall)
from d020f1115f5ef21c966a766b15e98f8aad36a049 to
cf49c6dbd5eb6865966cf4fae3ab1ecfb82ed87e.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/cargo-bins/cargo-binstall/blob/main/install-from-binstall-release.ps1">cargo-bins/cargo-binstall's
changelog</a>.</em></p>
<blockquote>
<p>$ErrorActionPreference = "Stop"
Set-PSDebug -Trace 1
$tmpdir = $Env:TEMP
$BINSTALL_VERSION = $Env:BINSTALL_VERSION
if ($BINSTALL_VERSION -and $BINSTALL_VERSION -notlike 'v*') {
# prefix version with v
$BINSTALL_VERSION = "v$BINSTALL_VERSION"
}</p>
<h1>Fetch binaries from <code>[..]/releases/latest/download/[..]</code>
if <em>no</em> version is</h1>
<h1>given, otherwise from
<code>[..]/releases/download/VERSION/[..]</code>. Note the shifted</h1>
<h1>location of '/download'.</h1>
<p>$base_url = if (-not $BINSTALL_VERSION) {
"<a
href="https://github.com/cargo-bins/cargo-binstall/releases/latest/download/cargo-binstall-">https://github.com/cargo-bins/cargo-binstall/releases/latest/download/cargo-binstall-</a>"
} else {
"<a
href="https://github.com/cargo-bins/cargo-binstall/releases/download/$BINSTALL_VERSION/cargo-binstall-">https://github.com/cargo-bins/cargo-binstall/releases/download/$BINSTALL_VERSION/cargo-binstall-</a>"
}</p>
<p>$proc_arch =
[Environment]::GetEnvironmentVariable("PROCESSOR_ARCHITECTURE",
[EnvironmentVariableTarget]::Machine)
if ($proc_arch -eq "AMD64") {
$arch = "x86_64"
} elseif ($proc_arch -eq "ARM64") {
$arch = "aarch64"
} else {
Write-Host "Unsupported Architecture: $type" -ForegroundColor
Red
[Environment]::Exit(1)
}
$url = "$base_url$arch-pc-windows-msvc.zip"
Invoke-WebRequest $url -OutFile $tmpdir\cargo-binstall.zip
Expand-Archive -Force $tmpdir\cargo-binstall.zip $tmpdir\cargo-binstall
Write-Host ""</p>
<p>$ps = Start-Process -PassThru -Wait
"$tmpdir\cargo-binstall\cargo-binstall.exe"
"--self-install"
if ($ps.ExitCode -ne 0) {
Invoke-Expression "$tmpdir\cargo-binstall\cargo-binstall.exe -y
--force cargo-binstall"
}</p>
<p>Remove-Item -Force $tmpdir\cargo-binstall.zip
Remove-Item -Recurse -Force $tmpdir\cargo-binstall
$cargo_home = if ($Env:CARGO_HOME -ne $null) { $Env:CARGO_HOME } else {
"$HOME.cargo" }
if ($Env:Path -split ";" -notcontains
"$cargo_home\bin") {
if (($Env:CI -ne $null) -and ($Env:GITHUB_PATH -ne $null)) {
Add-Content -Path "$Env:GITHUB_PATH" -Value
"$cargo_home\bin"
} else {
Write-Host ""
Write-Host "Your path is missing $cargo_home\bin, you might want to
add it." -ForegroundColor Red
Write-Host ""
}
}</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="cf49c6dbd5"><code>cf49c6d</code></a>
docs: edited the link to the tag badge (<a
href="https://redirect.github.com/cargo-bins/cargo-binstall/issues/2313">#2313</a>)</li>
<li>See full diff in <a
href="d020f1115f...cf49c6dbd5">compare
view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
this will actually get the licenses of each dependency and put them in
the SBOMs.
You can verify that with:
jq -r '.components[] | .name + " " + ([.licenses[]?.license.id] | join(","))' goreleaser_*.sbom.json
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
<!--
Hi, thanks for contributing!
Please make sure you read our CONTRIBUTING guide.
Also, add tests and the respective documentation changes as well.
-->
<!-- If applied, this commit will... -->
...
<!-- Why is this change being made? -->
...
<!-- # Provide links to any relevant tickets, URLs or other resources
-->
...
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
Bumps [mkdocs-material](https://github.com/squidfunk/mkdocs-material)
from 9.6.19 to 9.6.20.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/squidfunk/mkdocs-material/releases">mkdocs-material's
releases</a>.</em></p>
<blockquote>
<h2>mkdocs-material-9.6.20</h2>
<ul>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8446">#8446</a>:
Deprecation warning as of Python 3.14 in Emoji extension</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8440">#8440</a>:
<code>&</code> character not escaped in search highlighting</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8439">#8439</a>:
FontAwesome icons color not set in social cards (regression)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/squidfunk/mkdocs-material/blob/master/CHANGELOG">mkdocs-material's
changelog</a>.</em></p>
<blockquote>
<p>mkdocs-material-9.6.20 (2025-09-05)</p>
<ul>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8446">#8446</a>:
Deprecation warning as of Python 3.14 in Emoji extension</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8440">#8440</a>:
<code>&</code> character not escaped in search highlighting</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8439">#8439</a>:
FontAwesome icons color not set in social cards (regression)</li>
</ul>
<p>mkdocs-material-9.6.19 (2025-09-07)</p>
<ul>
<li>Added support for Python 3.14</li>
<li>Updated Bahasa Malaysia translations</li>
</ul>
<p>mkdocs-material-9.6.18 (2025-08-22)</p>
<ul>
<li>Updated Azerbaijani translations</li>
<li>Fixed last compat issues with [minijinja], now 100% compatible</li>
</ul>
<p>mkdocs-material-9.6.17 (2025-08-15)</p>
<ul>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8396">#8396</a>:
Videos do not autoplay when inside a content tab</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8394">#8394</a>:
Stroke width not effective in Mermaid.js diagrams</li>
<li>Fixed disappearing version selector when hiding page title</li>
</ul>
<p>mkdocs-material-9.6.16 (2025-07-26)</p>
<ul>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8349">#8349</a>:
Info plugin doesn't correctly detect virtualenv in some cases</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8334">#8334</a>:
Find-in-page detects matches in hidden search result list</li>
</ul>
<p>mkdocs-material-9.6.15 (2025-07-01)</p>
<ul>
<li>Updated Mongolian translations</li>
<li>Improved semantic markup of "edit this page" button</li>
<li>Improved info plugin virtual environment resolution</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8291">#8291</a>:
Large font size setting throws of breakpoints in JavaScript</li>
</ul>
<p>mkdocs-material-9.6.14 (2025-05-13)</p>
<ul>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8215">#8215</a>:
Social plugin crashes when CairoSVG is updated to 2.8</li>
</ul>
<p>mkdocs-material-9.6.13 (2025-05-10)</p>
<ul>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8204">#8204</a>:
Annotations showing list markers in print view</li>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8153">#8153</a>:
Improve style of cardinality symbols in Mermaid.js ER diagrams</li>
</ul>
<p>mkdocs-material-9.6.12 (2025-04-17)</p>
<ul>
<li>Fixed <a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8158">#8158</a>:
Flip footnote back reference icon for right-to-left languages</li>
</ul>
<p>mkdocs-material-9.6.11 (2025-04-01)</p>
<ul>
<li>Updated Docker image to latest Alpine Linux</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f0b0b5931a"><code>f0b0b59</code></a>
Prepare 9.6.20 release</li>
<li><a
href="900981b6f8"><code>900981b</code></a>
Fixed deprecation warning as of Python 3.14 in Emoji extension</li>
<li><a
href="ed0026322f"><code>ed00263</code></a>
Documentation (<a
href="https://redirect.github.com/squidfunk/mkdocs-material/issues/8443">#8443</a>)</li>
<li><a
href="a4f42bbfcd"><code>a4f42bb</code></a>
Updated Premium sponsors</li>
<li><a
href="63d7e746be"><code>63d7e74</code></a>
Fixed FontAwesome icons having fill attributes</li>
<li><a
href="ee678455e9"><code>ee67845</code></a>
Fixed & not escaped in search highlighting</li>
<li>See full diff in <a
href="https://github.com/squidfunk/mkdocs-material/compare/9.6.19...9.6.20">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
