go/goreleaser
go/goreleaser
1
0
Fork 0
mirror of https://github.com/goreleaser/goreleaser.git synced 2025-01-10 03:47:03 +02:00
Code Issues Releases Activity
4,388 Commits 8 Branches 558 Tags 41 MiB
3461f1f871
Commit Graph

4388 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
actions-user
3461f1f871 chore: docs releases json auto-update 2023-02-02 03:51:07 +00:00
actions-user
b7900887be chore: docs releases json auto-update 2023-02-02 03:20:00 +00:00
Carlos Alexandro Becker
7c6bd86b28
fix: do not do fancy 3rd party process logging (#3747) 
do not write fields et al, let it just roll, otherwise its too noisy,
and we might expose things we are not supposed to.

closes #3741

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-02-01 23:25:36 -03:00
Carlos A Becker
1dbb55854d
fix: make the warning clearer 
refs #3745

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-02-01 22:34:24 -03:00
Carlos A Becker
b0a59a1185
Revert "feat(deps): bump github.com/goreleaser/nfpm/v2 from 2.23.0 to 2.24.0 (#3715)" 
This reverts commit 7375a39591.
 2023-02-01 20:07:53 -03:00
Kamesh Sampath
f22987a026
fix: honouring ko bare option (#3743) 
The commit will add the `bare` option to ko publisher options when
set/passed via config `.goreleaser.yaml`.

Currently, even the `bare: true` is set via config, the option was never
passed to `ko` PublisherOptions.

#3742

---------

Co-authored-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com>
 2023-02-01 19:46:38 -03:00
dependabot[bot]
599f9b4c6a
chore(deps): bump arduino/setup-task from 1.0.2 to 1.0.3 (#3736) 
Bumps [arduino/setup-task](https://github.com/arduino/setup-task) from
1.0.2 to 1.0.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/arduino/setup-task/releases">arduino/setup-task's
releases</a>.</em></p>
<blockquote>
<h2>1.0.3</h2>
<h2>Changelog</h2>
<h4>Enhancement</h4>
<ul>
<li>Add support for all Task build architectures
(43e1bb8c37ce39c24e88b4622c2f66b6d7d9ebbd)</li>
</ul>
<h2>Full Changeset</h2>
<p><a
href="https://github.com/arduino/setup-task/compare/1.0.2...1.0.3">https://github.com/arduino/setup-task/compare/1.0.2...1.0.3</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="e26d897557"><code>e26d897</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/arduino/setup-task/issues/636">#636</a>
from per1234/arm-arch</li>
<li><a
href="43e1bb8c37"><code>43e1bb8</code></a>
Add support for all Task build architectures</li>
<li><a
href="bf9d22fbca"><code>bf9d22f</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/arduino/setup-task/issues/637">#637</a>
from arduino/dependabot/npm_and_yarn/eslint-8.33.0</li>
<li><a
href="f307193035"><code>f307193</code></a>
build(deps-dev): bump eslint from 8.32.0 to 8.33.0</li>
<li><a
href="9a385911a6"><code>9a38591</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/arduino/setup-task/issues/635">#635</a>
from arduino/dependabot/npm_and_yarn/jest-circus-29.4.1</li>
<li><a
href="446dc59e7a"><code>446dc59</code></a>
build(deps-dev): bump jest-circus from 29.4.0 to 29.4.1</li>
<li><a
href="fe65533e09"><code>fe65533</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/arduino/setup-task/issues/634">#634</a>
from arduino/dependabot/npm_and_yarn/vercel/ncc-0.36.1</li>
<li><a
href="af97840bda"><code>af97840</code></a>
build(deps-dev): bump <code>@​vercel/ncc</code> from 0.36.0 to
0.36.1</li>
<li><a
href="88a5c5cdc0"><code>88a5c5c</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/arduino/setup-task/issues/632">#632</a>
from arduino/dependabot/npm_and_yarn/jest-circus-29.4.0</li>
<li><a
href="4d2bca9f30"><code>4d2bca9</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/arduino/setup-task/issues/631">#631</a>
from arduino/dependabot/npm_and_yarn/typescript-eslin...</li>
<li>Additional commits viewable in <a
href="d665c6beeb...e26d897557">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=arduino/setup-task&package-manager=github_actions&previous-version=1.0.2&new-version=1.0.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-01 09:19:19 -03:00
dependabot[bot]
ce5826ff36
chore(deps): bump docker/setup-buildx-action from 2.3.0 to 2.4.0 (#3737) 
Bumps
[docker/setup-buildx-action](https://github.com/docker/setup-buildx-action)
from 2.3.0 to 2.4.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/setup-buildx-action/releases">docker/setup-buildx-action's
releases</a>.</em></p>
<blockquote>
<h2>v2.4.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Don't depend on the GitHub API to check release by <a
href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a
href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/196">#196</a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/docker/setup-buildx-action/compare/v2.3.0...v2.4.0">https://github.com/docker/setup-buildx-action/compare/v2.3.0...v2.4.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="15c905b16b"><code>15c905b</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/196">#196</a>
from crazy-max/dl-no-token</li>
<li><a
href="a25d6a0130"><code>a25d6a0</code></a>
update generated content</li>
<li><a
href="39322d9057"><code>39322d9</code></a>
don't depend on the GitHub API to check release</li>
<li><a
href="0648fd6fd6"><code>0648fd6</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/195">#195</a>
from crazy-max/fix-readme</li>
<li><a
href="30d8a59ee0"><code>30d8a59</code></a>
fix action version in README</li>
<li><a
href="71320d2e17"><code>71320d2</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/193">#193</a>
from fevrin/update-gh-doc-url</li>
<li><a
href="272f8b84cf"><code>272f8b8</code></a>
update GH doc URL</li>
<li>See full diff in <a
href="5e716dcfd6...15c905b16b">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/setup-buildx-action&package-manager=github_actions&previous-version=2.3.0&new-version=2.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-01 09:15:36 -03:00
dependabot[bot]
a6d558af0a
feat(deps): bump github.com/xanzy/go-gitlab from 0.79.0 to 0.79.1 (#3739) 
[//]: # (dependabot-start)
⚠️  **Dependabot is rebasing this PR** ⚠️ 

Rebasing might not happen immediately, so don't worry if this takes some
time.

Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.

---

[//]: # (dependabot-end)

Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.79.0 to 0.79.1.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4620d0f31d"><code>4620d0f</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1638">#1638</a>
from PatrickRice-KSC/revert-project-member-change</li>
<li><a
href="e21596f6d3"><code>e21596f</code></a>
Revert the change to project member accepting ISO time</li>
<li>See full diff in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.79.0...v0.79.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/xanzy/go-gitlab&package-manager=go_modules&previous-version=0.79.0&new-version=0.79.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-01 09:15:23 -03:00
dependabot[bot]
ca6ee15bb8
chore(deps): bump actions/cache from 3.2.3 to 3.2.4 (#3738) 
Bumps [actions/cache](https://github.com/actions/cache) from 3.2.3 to
3.2.4.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/cache/releases">actions/cache's
releases</a>.</em></p>
<blockquote>
<h2>v3.2.4</h2>
<h2>What's Changed</h2>
<ul>
<li>Update json5 package version by <a
href="https://github.com/vsvipul"><code>@​vsvipul</code></a> in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1065">actions/cache#1065</a></li>
<li>Cache recipes for cache, restore and save actions by <a
href="https://github.com/kotewar"><code>@​kotewar</code></a> in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1055">actions/cache#1055</a></li>
<li>Add gnu tar and zstd as pre-requisites for windows self-hosted
runners by <a href="https://github.com/pdotl"><code>@​pdotl</code></a>
in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1068">actions/cache#1068</a></li>
<li>Fix a whitespace typo by <a
href="https://github.com/kurtmckee"><code>@​kurtmckee</code></a> in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1074">actions/cache#1074</a></li>
<li>📝 <a
href="https://github-redirect.dependabot.com/actions/cache/issues/1045">#1045</a>
update using the <code>set-output</code> command is deprecated by <a
href="https://github.com/siguikesse"><code>@​siguikesse</code></a> in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1046">actions/cache#1046</a></li>
<li>Fix referenced output key in save action readme by <a
href="https://github.com/ruudk"><code>@​ruudk</code></a> in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1061">actions/cache#1061</a></li>
<li>Update workflows to use reusable-workflows by <a
href="https://github.com/jongwooo"><code>@​jongwooo</code></a> in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1066">actions/cache#1066</a></li>
<li>Introduce add-to-project step &amp; rename workflow files by <a
href="https://github.com/pallavx"><code>@​pallavx</code></a> in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1077">actions/cache#1077</a></li>
<li>chore: Fix syntax error typo by <a
href="https://github.com/vHeemstra"><code>@​vHeemstra</code></a> in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1081">actions/cache#1081</a></li>
<li>Update caching-strategies.md by <a
href="https://github.com/kpfleming"><code>@​kpfleming</code></a> in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1084">actions/cache#1084</a></li>
<li>Added another usage hint to foresee <a
href="https://github-redirect.dependabot.com/actions/cache/issues/1072">#1072</a>
by <a href="https://github.com/maybeec"><code>@​maybeec</code></a> in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1089">actions/cache#1089</a></li>
<li>Add <code>fail-on-cache-miss</code> option by <a
href="https://github.com/cdce8p"><code>@​cdce8p</code></a> in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1036">actions/cache#1036</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/kurtmckee"><code>@​kurtmckee</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1074">actions/cache#1074</a></li>
<li><a
href="https://github.com/siguikesse"><code>@​siguikesse</code></a> made
their first contribution in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1046">actions/cache#1046</a></li>
<li><a href="https://github.com/ruudk"><code>@​ruudk</code></a> made
their first contribution in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1061">actions/cache#1061</a></li>
<li><a href="https://github.com/pallavx"><code>@​pallavx</code></a> made
their first contribution in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1077">actions/cache#1077</a></li>
<li><a href="https://github.com/vHeemstra"><code>@​vHeemstra</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1081">actions/cache#1081</a></li>
<li><a href="https://github.com/kpfleming"><code>@​kpfleming</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1084">actions/cache#1084</a></li>
<li><a href="https://github.com/maybeec"><code>@​maybeec</code></a> made
their first contribution in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1089">actions/cache#1089</a></li>
<li><a href="https://github.com/cdce8p"><code>@​cdce8p</code></a> made
their first contribution in <a
href="https://github-redirect.dependabot.com/actions/cache/pull/1036">actions/cache#1036</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/cache/compare/v3...v3.2.4">https://github.com/actions/cache/compare/v3...v3.2.4</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/actions/cache/blob/main/RELEASES.md">actions/cache's
changelog</a>.</em></p>
<blockquote>
<h1>Releases</h1>
<h3>3.0.0</h3>
<ul>
<li>Updated minimum runner version support from node 12 -&gt; node
16</li>
</ul>
<h3>3.0.1</h3>
<ul>
<li>Added support for caching from GHES 3.5.</li>
<li>Fixed download issue for files &gt; 2GB during restore.</li>
</ul>
<h3>3.0.2</h3>
<ul>
<li>Added support for dynamic cache size cap on GHES.</li>
</ul>
<h3>3.0.3</h3>
<ul>
<li>Fixed avoiding empty cache save when no files are available for
caching. (<a
href="https://github-redirect.dependabot.com/actions/cache/issues/624">issue</a>)</li>
</ul>
<h3>3.0.4</h3>
<ul>
<li>Fixed tar creation error while trying to create tar with path as
<code>~/</code> home folder on <code>ubuntu-latest</code>. (<a
href="https://github-redirect.dependabot.com/actions/cache/issues/689">issue</a>)</li>
</ul>
<h3>3.0.5</h3>
<ul>
<li>Removed error handling by consuming actions/cache 3.0 toolkit, Now
cache server error handling will be done by toolkit. (<a
href="https://github-redirect.dependabot.com/actions/cache/pull/834">PR</a>)</li>
</ul>
<h3>3.0.6</h3>
<ul>
<li>Fixed <a
href="https://github-redirect.dependabot.com/actions/cache/issues/809">#809</a>
- zstd -d: no such file or directory error</li>
<li>Fixed <a
href="https://github-redirect.dependabot.com/actions/cache/issues/833">#833</a>
- cache doesn't work with github workspace directory</li>
</ul>
<h3>3.0.7</h3>
<ul>
<li>Fixed <a
href="https://github-redirect.dependabot.com/actions/cache/issues/810">#810</a>
- download stuck issue. A new timeout is introduced in the download
process to abort the download if it gets stuck and doesn't finish within
an hour.</li>
</ul>
<h3>3.0.8</h3>
<ul>
<li>Fix zstd not working for windows on gnu tar in issues <a
href="https://github-redirect.dependabot.com/actions/cache/issues/888">#888</a>
and <a
href="https://github-redirect.dependabot.com/actions/cache/issues/891">#891</a>.</li>
<li>Allowing users to provide a custom timeout as input for aborting
download of a cache segment using an environment variable
<code>SEGMENT_DOWNLOAD_TIMEOUT_MINS</code>. Default is 60 minutes.</li>
</ul>
<h3>3.0.9</h3>
<ul>
<li>Enhanced the warning message for cache unavailablity in case of
GHES.</li>
</ul>
<h3>3.0.10</h3>
<ul>
<li>Fix a bug with sorting inputs.</li>
<li>Update definition for restore-keys in README.md</li>
</ul>
<h3>3.0.11</h3>
<ul>
<li>Update toolkit version to 3.0.5 to include
<code>@actions/core@^1.10.0</code></li>
<li>Update <code>@actions/cache</code> to use updated
<code>saveState</code> and <code>setOutput</code> functions from
<code>@actions/core@^1.10.0</code></li>
</ul>
<h3>3.1.0-beta.1</h3>
<ul>
<li>Update <code>@actions/cache</code> on windows to use gnu tar and
zstd by default and fallback to bsdtar and zstd if gnu tar is not
available. (<a
href="https://github-redirect.dependabot.com/actions/cache/issues/984">issue</a>)</li>
</ul>
<h3>3.1.0-beta.2</h3>
<ul>
<li>Added support for fallback to gzip to restore old caches on
windows.</li>
</ul>
<h3>3.1.0-beta.3</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="627f0f41f6"><code>627f0f4</code></a>
Add <code>fail-on-cache-miss</code> option (<a
href="https://github-redirect.dependabot.com/actions/cache/issues/1036">#1036</a>)</li>
<li><a
href="8e3048d0f7"><code>8e3048d</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/actions/cache/issues/1089">#1089</a>
from maybeec/patch-1</li>
<li><a
href="1b004e8a69"><code>1b004e8</code></a>
Update tips-and-workarounds.md</li>
<li><a
href="75b110bc85"><code>75b110b</code></a>
Added another hint to foresee <a
href="https://github-redirect.dependabot.com/actions/cache/issues/1072">#1072</a></li>
<li><a
href="2b5a782c64"><code>2b5a782</code></a>
Update caching-strategies.md (<a
href="https://github-redirect.dependabot.com/actions/cache/issues/1084">#1084</a>)</li>
<li><a
href="6c2de3ba98"><code>6c2de3b</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/actions/cache/issues/1081">#1081</a>
from vHeemstra/patch-1</li>
<li><a
href="b63536828e"><code>b635368</code></a>
there as well ;)</li>
<li><a
href="cd2aaa9df8"><code>cd2aaa9</code></a>
chore: Fix syntax error typo</li>
<li><a
href="9b7ef12f3e"><code>9b7ef12</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/actions/cache/issues/1077">#1077</a>
from actions/pallavx-patch-1</li>
<li><a
href="3c08cab74f"><code>3c08cab</code></a>
Introduce add-to-project step &amp; rename add-reviewer-pr workflow
file</li>
<li>Additional commits viewable in <a
href="58c146cc91...627f0f41f6">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/cache&package-manager=github_actions&previous-version=3.2.3&new-version=3.2.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-01 09:12:12 -03:00
Carlos A Becker
aa3aff3cfe
docs: improve git dirty err page 
Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-30 23:25:23 -03:00
Carlos Alexandro Becker
f25e3b307a
build: increase release timeout (#3734) 
our build is too close to the default 30m timeout, this should prevent
it from failing, as it [did
today](https://github.com/goreleaser/goreleaser/actions/runs/4049530951/jobs/6966004880)

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-30 23:07:12 -03:00
Carlos A Becker
53fdcd7709
docs: reference --clean instead of --rm-dist everywhere 
Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-30 23:06:46 -03:00
actions-user
9b462fedf3 chore: docs releases json auto-update 2023-01-31 01:52:26 +00:00
Carlos A Becker
b1dc5b8daf
chore: comment 
Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-30 21:35:27 -03:00
actions-user
0b290bbeb6 chore: docs releases json auto-update 2023-01-31 00:24:53 +00:00
Yulian Kuncheff
5c4c7de539
docs: fix deprecation notice for --rm-dist -> --clean (#3733) 
<!-- If applied, this commit will... -->
Fix the deprecation notice page to reference the correct new flag
replacing `--rm-dist`

...

<!-- Why is this change being made? -->
The documentation for this deprecation seems incorrect, and live on the
main page.

...

<!-- # Provide links to any relevant tickets, URLs or other resources
-->
https://goreleaser.com/deprecations/#-rm-dist
...

I used this commit to reference what it was being changed to:
4954815ae4
 2023-01-30 20:56:40 -03:00
Jo
050f5a43c2
docs: fix typo in changelog page (#3730) 
Fix a typo in https://goreleaser.com/customization/changelog/
 2023-01-30 10:04:39 -03:00
dependabot[bot]
5c1fd3582b
chore(deps): bump docker/setup-buildx-action from 2.2.1 to 2.3.0 (#3729) 
Bumps
[docker/setup-buildx-action](https://github.com/docker/setup-buildx-action)
from 2.2.1 to 2.3.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/setup-buildx-action/releases">docker/setup-buildx-action's
releases</a>.</em></p>
<blockquote>
<h2>v2.3.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Use Octokit to check Buildx release on GitHub by <a
href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a
href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/191">#191</a>
<a
href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/192">#192</a>)</li>
<li>Add version pinning information to the README by <a
href="https://github.com/jedevc"><code>@​jedevc</code></a> (<a
href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/189">#189</a>)</li>
<li>Bump minimatch from 3.0.4 to 3.1.2 (<a
href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/182">#182</a>)</li>
<li>Bump csv-parse from 5.3.1 to 5.3.3 (<a
href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/181">#181</a>)</li>
<li>Bump json5 from 2.2.0 to 2.2.3 (<a
href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/184">#184</a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/docker/setup-buildx-action/compare/v2.2.1...v2.3.0">https://github.com/docker/setup-buildx-action/compare/v2.2.1...v2.3.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5e716dcfd6"><code>5e716dc</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/192">#192</a>
from crazy-max/support-ghes</li>
<li><a
href="a83788eef0"><code>a83788e</code></a>
update generated content</li>
<li><a
href="d0d9a72195"><code>d0d9a72</code></a>
pass the token input through on GHES</li>
<li><a
href="a8165e7b70"><code>a8165e7</code></a>
enforce baseUrl to api.github.com if action used on GHES</li>
<li><a
href="a024221c60"><code>a024221</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/191">#191</a>
from crazy-max/fix-dl-release</li>
<li><a
href="4c3fce4ab2"><code>4c3fce4</code></a>
update generated content</li>
<li><a
href="7c965aebec"><code>7c965ae</code></a>
use Octokit client to download buildx</li>
<li><a
href="7932f6210d"><code>7932f62</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/189">#189</a>
from docker/version-pinning-docs</li>
<li><a
href="70deadb37a"><code>70deadb</code></a>
docs: add version pinning information to the README</li>
<li><a
href="165fe681b8"><code>165fe68</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/184">#184</a>
from docker/dependabot/npm_and_yarn/json5-2.2.3</li>
<li>Additional commits viewable in <a
href="8c0edbc76e...5e716dcfd6">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/setup-buildx-action&package-manager=github_actions&previous-version=2.2.1&new-version=2.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-30 09:50:59 -03:00
Carlos Alexandro Becker
4954815ae4
fix: improve handling of --rm-dist deprecation (#3728) 
- improved how we handle `--rm-dist` deprecation so it looks more like
other deprecations
- improved deprecation error message a bit as well

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-29 00:24:11 -03:00
Carlos Alexandro Becker
90a82157ca
refactor: improve tmpls that eval to a bool (#3726) 
- added a tmpl.Bool that checks if the result of a template is "true"
- added an ErrSkipper interface so Skip() methods can return errors as well

---------

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-28 23:21:43 -03:00
Carlos A Becker
750664f449
docs: fix nfpm override depends 
should be dependencies

closes #3721

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-27 21:45:58 -03:00
dependabot[bot]
b192de9162
chore(deps): bump github/codeql-action from 2.2.0 to 2.2.1 (#3725) 
Bumps [github/codeql-action](https://github.com/github/codeql-action)
from 2.2.0 to 2.2.1.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's
changelog</a>.</em></p>
<blockquote>
<h1>CodeQL Action Changelog</h1>
<h2>[UNRELEASED]</h2>
<p>No user facing changes.</p>
<h2>2.2.1 - 27 Jan 2023</h2>
<p>No user facing changes.</p>
<h2>2.2.0 - 26 Jan 2023</h2>
<ul>
<li>Improve stability when choosing the default version of CodeQL to use
in code scanning workflow runs on Actions on GitHub.com. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1475">#1475</a>
<ul>
<li>This change addresses customer reports of code scanning alerts on
GitHub.com being closed and reopened during the rollout of new versions
of CodeQL in the GitHub Actions <a
href="https://github.com/actions/runner-images">runner images</a>.</li>
<li><strong>No change is required for the majority of
workflows</strong>, including:
<ul>
<li>Workflows on GitHub.com hosted runners using the latest version
(<code>v2</code>) of the CodeQL Action.</li>
<li>Workflows on GitHub.com hosted runners that are pinned to specific
versions of the CodeQL Action from <code>v2.2.0</code> onwards.</li>
<li>Workflows on GitHub Enterprise Server.</li>
</ul>
</li>
<li><strong>A change may be required</strong> for workflows on
GitHub.com hosted runners that are pinned to specific versions of the
CodeQL Action before <code>v2.2.0</code> (e.g. <code>v2.1.32</code>):
<ul>
<li>Previously, these workflows would obtain the latest version of
CodeQL from the Actions runner image.</li>
<li>Now, these workflows will download an older, compatible version of
CodeQL from GitHub Releases. To use this older version, no change is
required. To use the newest version of CodeQL, please update your
workflows to reference the latest version of the CodeQL Action
(<code>v2</code>).</li>
</ul>
</li>
<li><strong>Internal changes</strong>
<ul>
<li>These changes will not affect the majority of code scanning
workflows. Continue reading only if your workflow uses <a
href="https://github.com/actions/toolkit/tree/main/packages/tool-cache"><code>@​actions/tool-cache</code></a>
or relies on the precise location of CodeQL within the Actions tool
cache.</li>
<li>The tool cache now contains <strong>two</strong> recent CodeQL
versions (previously <strong>one</strong>).</li>
<li>Each CodeQL version is located under a directory named after the
release date and version number, e.g. CodeQL 2.11.6 is now located under
<code>CodeQL/2.11.6-20221211/x64/codeql</code> (previously
<code>CodeQL/0.0.0-20221211/x64/codeql</code>).</li>
</ul>
</li>
</ul>
</li>
<li>The maximum number of <a
href="https://docs.github.com/en/code-security/code-scanning/integrating-with-code-scanning/sarif-support-for-code-scanning#run-object">SARIF
runs</a> per file has been increased from 15 to 20 for users uploading
SARIF files to GitHub.com. This change will help ensure that Code
Scanning can process SARIF files generated by third-party tools that
have many runs. See the <a
href="https://docs.github.com/en/rest/code-scanning#upload-an-analysis-as-sarif-data">GitHub
API documentation</a> for a list of all the limits around uploading
SARIF. This change will be released to GitHub Enterprise Server as part
of GHES 3.9.</li>
<li>Update default CodeQL bundle version to 2.12.1. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1498">#1498</a></li>
<li>Fix a bug that forced the <code>init</code> Action to run for at
least two minutes on JavaScript. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1494">#1494</a></li>
</ul>
<h2>2.1.39 - 18 Jan 2023</h2>
<ul>
<li>CodeQL Action v1 is now deprecated, and is no longer updated or
supported. For better performance, improved security, and new features,
upgrade to v2. For more information, see <a
href="https://github.blog/changelog/2023-01-18-code-scanning-codeql-action-v1-is-now-deprecated/">this
changelog post</a>. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1466">#1467</a></li>
<li>Python automatic dependency installation will no longer fail for
projects using Poetry that specify <code>virtualenvs.options.no-pip =
true</code> in their <code>poetry.toml</code>. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1431">#1431</a></li>
<li>Avoid printing a stack trace and error message when the action fails
to find the SHA at the
current directory. This will happen in several non-error states and so
we now avoid cluttering the
log with this message. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1485">#1485</a></li>
</ul>
<h2>2.1.38 - 12 Jan 2023</h2>
<ul>
<li>Update default CodeQL bundle version to 2.12.0. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1466">#1466</a></li>
</ul>
<h2>2.1.37 - 14 Dec 2022</h2>
<ul>
<li>Update default CodeQL bundle version to 2.11.6. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1433">#1433</a></li>
</ul>
<h2>2.1.36 - 08 Dec 2022</h2>
<ul>
<li>Update default CodeQL bundle version to 2.11.5. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1412">#1412</a></li>
<li>Add a step that tries to upload a SARIF file for the workflow run
when that workflow run fails. This will help better surface failed code
scanning workflow runs. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1393">#1393</a></li>
<li>Python automatic dependency installation will no longer consider
dependency code installed in venv as user-written, for projects using
Poetry that specify <code>virtualenvs.in-project = true</code> in their
<code>poetry.toml</code>. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1419">#1419</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3ebbd71c74"><code>3ebbd71</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/github/codeql-action/issues/1514">#1514</a>
from github/update-v2.2.1-4664f3969</li>
<li><a
href="2ae6e13cc3"><code>2ae6e13</code></a>
Update changelog for v2.2.1</li>
<li><a
href="4664f39699"><code>4664f39</code></a>
Ensure that <code>tools_download_duration_ms</code> is int (<a
href="https://github-redirect.dependabot.com/github/codeql-action/issues/1513">#1513</a>)</li>
<li><a
href="b2e16761f3"><code>b2e1676</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/github/codeql-action/issues/1512">#1512</a>
from github/mergeback/v2.2.0-to-main-436dbd91</li>
<li><a
href="592a896a53"><code>592a896</code></a>
Update checked-in dependencies</li>
<li><a
href="4a6b5a54c2"><code>4a6b5a5</code></a>
Update changelog and version after v2.2.0</li>
<li>See full diff in <a
href="436dbd9100...3ebbd71c74">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/codeql-action&package-manager=github_actions&previous-version=2.2.0&new-version=2.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-27 08:57:40 -03:00
dependabot[bot]
31fbe515c1
chore(deps): bump github/codeql-action from 2.1.39 to 2.2.0 (#3722) 
Bumps [github/codeql-action](https://github.com/github/codeql-action)
from 2.1.39 to 2.2.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's
changelog</a>.</em></p>
<blockquote>
<h1>CodeQL Action Changelog</h1>
<h2>[UNRELEASED]</h2>
<p>No user facing changes.</p>
<h2>2.2.0 - 26 Jan 2023</h2>
<ul>
<li>Improve stability when choosing the default version of CodeQL to use
in code scanning workflow runs on Actions on GitHub.com. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1475">#1475</a>
<ul>
<li>This change addresses customer reports of code scanning alerts on
GitHub.com being closed and reopened during the rollout of new versions
of CodeQL in the GitHub Actions <a
href="https://github.com/actions/runner-images">runner images</a>.</li>
<li><strong>No change is required for the majority of
workflows</strong>, including:
<ul>
<li>Workflows on GitHub.com hosted runners using the latest version
(<code>v2</code>) of the CodeQL Action.</li>
<li>Workflows on GitHub.com hosted runners that are pinned to specific
versions of the CodeQL Action from <code>v2.2.0</code> onwards.</li>
<li>Workflows on GitHub Enterprise Server.</li>
</ul>
</li>
<li><strong>A change may be required</strong> for workflows on
GitHub.com hosted runners that are pinned to specific versions of the
CodeQL Action before <code>v2.2.0</code> (e.g. <code>v2.1.32</code>):
<ul>
<li>Previously, these workflows would obtain the latest version of
CodeQL from the Actions runner image.</li>
<li>Now, these workflows will download an older, compatible version of
CodeQL from GitHub Releases. To use this older version, no change is
required. To use the newest version of CodeQL, please update your
workflows to reference the latest version of the CodeQL Action
(<code>v2</code>).</li>
</ul>
</li>
<li><strong>Internal changes</strong>
<ul>
<li>These changes will not affect the majority of code scanning
workflows. Continue reading only if your workflow uses <a
href="https://github.com/actions/toolkit/tree/main/packages/tool-cache"><code>@​actions/tool-cache</code></a>
or relies on the precise location of CodeQL within the Actions tool
cache.</li>
<li>The tool cache now contains <strong>two</strong> recent CodeQL
versions (previously <strong>one</strong>).</li>
<li>Each CodeQL version is located under a directory named after the
release date and version number, e.g. CodeQL 2.11.6 is now located under
<code>CodeQL/2.11.6-20221211/x64/codeql</code> (previously
<code>CodeQL/0.0.0-20221211/x64/codeql</code>).</li>
</ul>
</li>
</ul>
</li>
<li>The maximum number of <a
href="https://docs.github.com/en/code-security/code-scanning/integrating-with-code-scanning/sarif-support-for-code-scanning#run-object">SARIF
runs</a> per file has been increased from 15 to 20 for users uploading
SARIF files to GitHub.com. This change will help ensure that Code
Scanning can process SARIF files generated by third-party tools that
have many runs. See the <a
href="https://docs.github.com/en/rest/code-scanning#upload-an-analysis-as-sarif-data">GitHub
API documentation</a> for a list of all the limits around uploading
SARIF. This change will be released to GitHub Enterprise Server as part
of GHES 3.9.</li>
<li>Update default CodeQL bundle version to 2.12.1. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1498">#1498</a></li>
<li>Fix a bug that forced the <code>init</code> Action to run for at
least two minutes on JavaScript. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1494">#1494</a></li>
</ul>
<h2>2.1.39 - 18 Jan 2023</h2>
<ul>
<li>CodeQL Action v1 is now deprecated, and is no longer updated or
supported. For better performance, improved security, and new features,
upgrade to v2. For more information, see <a
href="https://github.blog/changelog/2023-01-18-code-scanning-codeql-action-v1-is-now-deprecated/">this
changelog post</a>. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1466">#1467</a></li>
<li>Python automatic dependency installation will no longer fail for
projects using Poetry that specify <code>virtualenvs.options.no-pip =
true</code> in their <code>poetry.toml</code>. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1431">#1431</a></li>
<li>Avoid printing a stack trace and error message when the action fails
to find the SHA at the
current directory. This will happen in several non-error states and so
we now avoid cluttering the
log with this message. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1485">#1485</a></li>
</ul>
<h2>2.1.38 - 12 Jan 2023</h2>
<ul>
<li>Update default CodeQL bundle version to 2.12.0. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1466">#1466</a></li>
</ul>
<h2>2.1.37 - 14 Dec 2022</h2>
<ul>
<li>Update default CodeQL bundle version to 2.11.6. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1433">#1433</a></li>
</ul>
<h2>2.1.36 - 08 Dec 2022</h2>
<ul>
<li>Update default CodeQL bundle version to 2.11.5. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1412">#1412</a></li>
<li>Add a step that tries to upload a SARIF file for the workflow run
when that workflow run fails. This will help better surface failed code
scanning workflow runs. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1393">#1393</a></li>
<li>Python automatic dependency installation will no longer consider
dependency code installed in venv as user-written, for projects using
Poetry that specify <code>virtualenvs.in-project = true</code> in their
<code>poetry.toml</code>. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1419">#1419</a></li>
</ul>
<h2>2.1.35 - 01 Dec 2022</h2>
<p>No user facing changes.</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="436dbd9100"><code>436dbd9</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/github/codeql-action/issues/1511">#1511</a>
from github/update-v2.2.0-43f1a6c70</li>
<li><a
href="d966969093"><code>d966969</code></a>
Remove $ from version number</li>
<li><a
href="f6d03f448d"><code>f6d03f4</code></a>
Update changelog for v2.2.0</li>
<li><a
href="43f1a6c701"><code>43f1a6c</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/github/codeql-action/issues/1510">#1510</a>
from github/henrymercer/fix-fallback-version-number</li>
<li><a
href="75ae065ae6"><code>75ae065</code></a>
Fix computation of fallback version</li>
<li><a
href="0a9e9db27f"><code>0a9e9db</code></a>
Add failing regression test</li>
<li><a
href="24ca6b0400"><code>24ca6b0</code></a>
Send tools telemetry to <code>init</code> status report (<a
href="https://github-redirect.dependabot.com/github/codeql-action/issues/1497">#1497</a>)</li>
<li><a
href="ebf6415a7d"><code>ebf6415</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/github/codeql-action/issues/1493">#1493</a>
from github/aeisenberg/upload-sarif-limits</li>
<li><a
href="a58e90a9da"><code>a58e90a</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/github/codeql-action/issues/1508">#1508</a>
from github/henrymercer/default-version-fallback</li>
<li><a
href="fdff4b0a17"><code>fdff4b0</code></a>
Update CHANGELOG.md</li>
<li>Additional commits viewable in <a
href="a34ca99b46...436dbd9100">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/codeql-action&package-manager=github_actions&previous-version=2.1.39&new-version=2.2.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-27 08:55:41 -03:00
dependabot[bot]
4192f38550
chore(deps): bump actions/github-script from 6.3.3 to 6.4.0 (#3723) 
Bumps [actions/github-script](https://github.com/actions/github-script)
from 6.3.3 to 6.4.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/github-script/releases">actions/github-script's
releases</a>.</em></p>
<blockquote>
<h2>v6.4.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Bump json5 from 2.1.3 to 2.2.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/actions/github-script/pull/319">actions/github-script#319</a></li>
<li>Bump minimatch from 3.0.4 to 3.1.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/actions/github-script/pull/320">actions/github-script#320</a></li>
<li>Add node-fetch by <a
href="https://github.com/danmichaelo"><code>@​danmichaelo</code></a> in
<a
href="https://github-redirect.dependabot.com/actions/github-script/pull/321">actions/github-script#321</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/jongwooo"><code>@​jongwooo</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/actions/github-script/pull/313">actions/github-script#313</a></li>
<li><a
href="https://github.com/austinvazquez"><code>@​austinvazquez</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/actions/github-script/pull/306">actions/github-script#306</a></li>
<li><a
href="https://github.com/danmichaelo"><code>@​danmichaelo</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/actions/github-script/pull/321">actions/github-script#321</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/github-script/compare/v6.3.3...v6.4.0">https://github.com/actions/github-script/compare/v6.3.3...v6.4.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="98814c53be"><code>98814c5</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/actions/github-script/issues/339">#339</a>
from actions/joshmgross/bump-package-version</li>
<li><a
href="ba6cf3fe7c"><code>ba6cf3f</code></a>
Bump version to 6.4.0</li>
<li><a
href="bcc389184d"><code>bcc3891</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/actions/github-script/issues/321">#321</a>
from danmichaelo/node-fetch</li>
<li><a
href="da8818015e"><code>da88180</code></a>
Merge <code>main</code></li>
<li><a
href="4d93f38890"><code>4d93f38</code></a>
Update dist and audit deps</li>
<li><a
href="0550e85801"><code>0550e85</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/actions/github-script/issues/336">#336</a>
from actions/joshmgross/minimatch-license</li>
<li><a
href="5420835fff"><code>5420835</code></a>
Merge branch 'main' into joshmgross/minimatch-license</li>
<li><a
href="03377835c3"><code>0337783</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/actions/github-script/issues/338">#338</a>
from actions/joshmgross/fix-dist</li>
<li><a
href="8c6dda0186"><code>8c6dda0</code></a>
Regenerate <code>dist</code></li>
<li><a
href="ee0d992b06"><code>ee0d992</code></a>
Use Node 16 in CI and examples</li>
<li>Additional commits viewable in <a
href="d556feaca3...98814c53be">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/github-script&package-manager=github_actions&previous-version=6.3.3&new-version=6.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-27 08:55:28 -03:00
dependabot[bot]
71bc3f9ba1
chore(deps): bump anchore/sbom-action from 0.13.2 to 0.13.3 (#3724) 
Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from
0.13.2 to 0.13.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/anchore/sbom-action/releases">anchore/sbom-action's
releases</a>.</em></p>
<blockquote>
<h2>v0.13.3</h2>
<h2>Changes in v0.13.3</h2>
<ul>
<li>Update Syft to v0.68.1 (<a
href="https://github-redirect.dependabot.com/anchore/sbom-action/issues/391">#391</a>)
[<a
href="https://github.com/anchore-actions-token-generator">anchore-actions-token-generator</a>]</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="07978da4bd"><code>07978da</code></a>
Update Syft to v0.68.1 (<a
href="https://github-redirect.dependabot.com/anchore/sbom-action/issues/391">#391</a>)</li>
<li>See full diff in <a
href="https://github.com/anchore/sbom-action/compare/v0.13.2...v0.13.3">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=anchore/sbom-action&package-manager=github_actions&previous-version=0.13.2&new-version=0.13.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-27 08:55:18 -03:00
Carlos A Becker
71f3952f18
feat(deps): update go-github from v48 to v50 2023-01-26 23:36:02 -03:00
dependabot[bot]
d120e4dd36
chore(deps): bump anchore/sbom-action from 0.13.1 to 0.13.2 (#3720) 
Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from
0.13.1 to 0.13.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/anchore/sbom-action/releases">anchore/sbom-action's
releases</a>.</em></p>
<blockquote>
<h2>v0.13.2</h2>
<h2>Changes in v0.13.2</h2>
<ul>
<li>Update Syft to v0.68.0 (<a
href="https://github-redirect.dependabot.com/anchore/sbom-action/issues/387">#387</a>)
[<a
href="https://github.com/anchore-actions-token-generator">anchore-actions-token-generator</a>]</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="54e36e45f3"><code>54e36e4</code></a>
feat: update Syft to v0.68.0 (<a
href="https://github-redirect.dependabot.com/anchore/sbom-action/issues/387">#387</a>)</li>
<li>See full diff in <a
href="https://github.com/anchore/sbom-action/compare/v0.13.1...v0.13.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=anchore/sbom-action&package-manager=github_actions&previous-version=0.13.1&new-version=0.13.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-26 09:48:38 -03:00
Carlos Alexandro Becker
caaf9973ee
fix: only debs should create iphoneos pkgs (#3719) 
problem was made evident in the last nfpm update... this should fix it.

refs #3715

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-25 15:10:17 -03:00
Carlos A Becker
e27e3a6478
build: release for ppc64 
closes #3703

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-25 14:23:44 -03:00
Carlos A Becker
98e3a7ff71
docs: update 
Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-25 14:17:48 -03:00
dependabot[bot]
12d5ed0b0b
feat(deps): bump github.com/disgoorg/disgo from 0.14.1 to 0.15.0 (#3718) 
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.14.1 to 0.15.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.15.0</h2>
<h2>What's Changed</h2>
<ul>
<li>voice support by <a
href="https://github.com/TopiSenpai"><code>@​TopiSenpai</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/164">disgoorg/disgo#164</a></li>
<li>cache refactor by <a
href="https://github.com/TopiSenpai"><code>@​TopiSenpai</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/211">disgoorg/disgo#211</a></li>
<li>simple interaction handler by <a
href="https://github.com/TopiSenpai"><code>@​TopiSenpai</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/222">disgoorg/disgo#222</a></li>
<li>small gateway cleanup by <a
href="https://github.com/TopiSenpai"><code>@​TopiSenpai</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/213">disgoorg/disgo#213</a></li>
<li>log unknown events &amp; ops on debug by <a
href="https://github.com/TopiSenpai"><code>@​TopiSenpai</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/228">disgoorg/disgo#228</a></li>
<li>add <code>EventGuildAuditLogEntryCreate</code> by <a
href="https://github.com/caneleex"><code>@​caneleex</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/232">disgoorg/disgo#232</a></li>
<li>add <code>after</code> param to audit log endpoints by <a
href="https://github.com/caneleex"><code>@​caneleex</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/227">disgoorg/disgo#227</a></li>
<li>add support for thread member pagination by <a
href="https://github.com/caneleex"><code>@​caneleex</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/231">disgoorg/disgo#231</a></li>
<li>add support for gif stickers by <a
href="https://github.com/caneleex"><code>@​caneleex</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/230">disgoorg/disgo#230</a></li>
<li>add <code>MemberFlags</code> by <a
href="https://github.com/caneleex"><code>@​caneleex</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/233">disgoorg/disgo#233</a></li>
<li>add <code>MessageTypeInteractionPremiumUpsell</code> and
<code>MessageTypeGuildApplicationPremiumSubscription</code> by <a
href="https://github.com/caneleex"><code>@​caneleex</code></a></li>
<li>add <code>ConnectionTypeTikTok</code> by <a
href="https://github.com/caneleex"><code>@​caneleex</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/210">disgoorg/disgo#210</a></li>
<li>add <code>GuildConnections</code> to <code>RoleTag</code> by <a
href="https://github.com/caneleex"><code>@​caneleex</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/224">disgoorg/disgo#224</a></li>
<li>add missing <code>SystemChannelFlags</code> by <a
href="https://github.com/caneleex"><code>@​caneleex</code></a> in <a
href="2f7b02b6da</a></li>
<li>add <code>IntegrationExpireBehavior</code> type by <a
href="https://github.com/caneleex"><code>@​caneleex</code></a> in <a
href="0df3fba6c9</a></li>
</ul>
<h2>Breaking</h2>
<ul>
<li><code>GetAuditLog</code> function signature was changed to include
the <code>after</code> parameter</li>
<li><code>GetThreadMember</code> function signature was changed to
include the <code>withMember</code> parameter</li>
<li><code>Caches.X().Get</code>, <code>Caches.X().Put</code>,
<code>Caches.X().Remove</code>, etc have been replaced with
<code>Caches.X()</code>, <code>Caches.AddX()</code>,
<code>Caches.RemoveX()</code>, etc</li>
<li><code>WithCacheFlags</code> has been renamed to
<code>WithCaches</code></li>
<li><code>Connect</code> and <code>Disconnect</code> has been replaced
with <code>UpdateVoiceState</code></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.14.1...v0.15.0">https://github.com/disgoorg/disgo/compare/v0.14.1...v0.15.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="1030fa904b"><code>1030fa9</code></a>
add flags helper (<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/235">#235</a>)</li>
<li><a
href="48a0d77805"><code>48a0d77</code></a>
simple command, autocomplete, component &amp; modals handler (<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/222">#222</a>)</li>
<li><a
href="6565a1f870"><code>6565a1f</code></a>
change MessageFlags type to int</li>
<li><a
href="48d18102ed"><code>48d1810</code></a>
add MemberFlags (<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/233">#233</a>)</li>
<li><a
href="b3f872d7fd"><code>b3f872d</code></a>
add EventGuildAuditLogEntryCreate (<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/232">#232</a>)</li>
<li><a
href="81cf08ca89"><code>81cf08c</code></a>
fix unmarshalling of EventUnknown</li>
<li><a
href="05c2c2793a"><code>05c2c27</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/231">#231</a>
from disgoorg/patch/thread-member-pagination</li>
<li><a
href="0ed77b1064"><code>0ed77b1</code></a>
fix method signature &amp; add helper method</li>
<li><a
href="539176413f"><code>5391764</code></a>
fix topi moment</li>
<li><a
href="63c2ad47fd"><code>63c2ad4</code></a>
Update discord/thread_member.go</li>
<li>Additional commits viewable in <a
href="https://github.com/disgoorg/disgo/compare/v0.14.1...v0.15.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/disgoorg/disgo&package-manager=go_modules&previous-version=0.14.1&new-version=0.15.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-25 10:33:05 -03:00
dependabot[bot]
f979a6347e
feat(deps): bump github.com/xanzy/go-gitlab from 0.78.0 to 0.79.0 (#3717) 
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.78.0 to 0.79.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="36b86c5b7f"><code>36b86c5</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1632">#1632</a>
from timofurrer/get-pull-mirror</li>
<li><a
href="5d8c3e5c45"><code>5d8c3e5</code></a>
Change model name</li>
<li><a
href="dda6e96e5e"><code>dda6e96</code></a>
Update projects.go</li>
<li><a
href="8ea7323dc6"><code>8ea7323</code></a>
Update projects.go</li>
<li><a
href="5d94d607fe"><code>5d94d60</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1635">#1635</a>
from mycrEEpy/user-login-failed-event</li>
<li><a
href="d2a481edeb"><code>d2a481e</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1634">#1634</a>
from PatrickRice-KSC/align-pages-domain-attributes</li>
<li><a
href="c56397a6c8"><code>c56397a</code></a>
Add missing system hook event for user_failed_login</li>
<li><a
href="7ac72bd6ad"><code>7ac72bd</code></a>
Add the ability to retrieve certificate information to Pages
Domains</li>
<li><a
href="ceca19a225"><code>ceca19a</code></a>
Implement function to get pull mirror details from a project</li>
<li><a
href="cec93a2c94"><code>cec93a2</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1631">#1631</a>
from mrf/mrf/1630-projectmember-struct-expires-date</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.78.0...v0.79.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/xanzy/go-gitlab&package-manager=go_modules&previous-version=0.78.0&new-version=0.79.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-25 10:32:51 -03:00
dependabot[bot]
54ef103bfc
feat(deps): bump github.com/google/go-containerregistry from 0.12.1 to 0.13.0 (#3716) 
Bumps
[github.com/google/go-containerregistry](https://github.com/google/go-containerregistry)
from 0.12.1 to 0.13.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/go-containerregistry/releases">github.com/google/go-containerregistry's
releases</a>.</em></p>
<blockquote>
<h2>v0.13.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Bump slsa-framework/slsa-github-generator to 1.2.2 by <a
href="https://github.com/jonjohnsonjr"><code>@​jonjohnsonjr</code></a>
in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1489">google/go-containerregistry#1489</a></li>
<li>Features: Allow eliding <code>serviceaccount</code> lookups. by <a
href="https://github.com/mattmoor"><code>@​mattmoor</code></a> in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1490">google/go-containerregistry#1490</a></li>
<li>Bump golangci/golangci-lint-action from 3.3.0 to 3.3.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1491">google/go-containerregistry#1491</a></li>
<li>add source archive checksum into the checksums.txt by <a
href="https://github.com/developer-guy"><code>@​developer-guy</code></a>
in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1492">google/go-containerregistry#1492</a></li>
<li>Fix calculating tarball size when duplicated layers exist by <a
href="https://github.com/tydra-wang"><code>@​tydra-wang</code></a> in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1495">google/go-containerregistry#1495</a></li>
<li>Add support for zstd compression by <a
href="https://github.com/LFrobeen"><code>@​LFrobeen</code></a> in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1487">google/go-containerregistry#1487</a></li>
<li>docs: pull latest instead of debug by <a
href="https://github.com/AndrewCharlesHay"><code>@​AndrewCharlesHay</code></a>
in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1497">google/go-containerregistry#1497</a></li>
<li>Make credential warning slightly more accurate by <a
href="https://github.com/jonjohnsonjr"><code>@​jonjohnsonjr</code></a>
in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1499">google/go-containerregistry#1499</a></li>
<li>Make unit tests substantially faster by <a
href="https://github.com/jonjohnsonjr"><code>@​jonjohnsonjr</code></a>
in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1498">google/go-containerregistry#1498</a></li>
<li>Use the default retry predicate in transport by <a
href="https://github.com/jonjohnsonjr"><code>@​jonjohnsonjr</code></a>
in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1502">google/go-containerregistry#1502</a></li>
<li>Revert &quot;docs: pull latest instead of debug (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1497">#1497</a>)&quot;
by <a
href="https://github.com/jonjohnsonjr"><code>@​jonjohnsonjr</code></a>
in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1504">google/go-containerregistry#1504</a></li>
<li>Update Arch Linux install instructions by <a
href="https://github.com/kpcyrd"><code>@​kpcyrd</code></a> in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1508">google/go-containerregistry#1508</a></li>
<li>Fix various lints by <a
href="https://github.com/jonjohnsonjr"><code>@​jonjohnsonjr</code></a>
in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1507">google/go-containerregistry#1507</a></li>
<li>Fix missing doc comment by <a
href="https://github.com/jonjohnsonjr"><code>@​jonjohnsonjr</code></a>
in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1509">google/go-containerregistry#1509</a></li>
<li>Treat empty registry config as anonymous by <a
href="https://github.com/lcarva"><code>@​lcarva</code></a> in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1512">google/go-containerregistry#1512</a></li>
<li>Bump goreleaser/goreleaser-action from 3.2.0 to 4.1.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1511">google/go-containerregistry#1511</a></li>
<li>Bump actions/stale from 6 to 7 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1519">google/go-containerregistry#1519</a></li>
<li>Race http fallback ping by <a
href="https://github.com/jonjohnsonjr"><code>@​jonjohnsonjr</code></a>
in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1521">google/go-containerregistry#1521</a></li>
<li>FIX mutate.Time not respecting history by <a
href="https://github.com/miguelvalerio"><code>@​miguelvalerio</code></a>
in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1520">google/go-containerregistry#1520</a></li>
<li>test: use <code>T.TempDir</code> to create temporary test directory
by <a href="https://github.com/Juneezee"><code>@​Juneezee</code></a> in
<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1522">google/go-containerregistry#1522</a></li>
<li>crane: add digest --full by <a
href="https://github.com/imjasonh"><code>@​imjasonh</code></a> in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1524">google/go-containerregistry#1524</a></li>
<li>Hack around DockerHub plugin scope handling by <a
href="https://github.com/jonjohnsonjr"><code>@​jonjohnsonjr</code></a>
in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1527">google/go-containerregistry#1527</a></li>
<li>crane: support --full-ref for crane ls by <a
href="https://github.com/imjasonh"><code>@​imjasonh</code></a> in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1525">google/go-containerregistry#1525</a></li>
<li>Revert plugin scope hack by <a
href="https://github.com/jonjohnsonjr"><code>@​jonjohnsonjr</code></a>
in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1531">google/go-containerregistry#1531</a></li>
<li>clarify crane download readme by <a
href="https://github.com/dtanner"><code>@​dtanner</code></a> in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1533">google/go-containerregistry#1533</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/LFrobeen"><code>@​LFrobeen</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1487">google/go-containerregistry#1487</a></li>
<li><a
href="https://github.com/AndrewCharlesHay"><code>@​AndrewCharlesHay</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1497">google/go-containerregistry#1497</a></li>
<li><a href="https://github.com/kpcyrd"><code>@​kpcyrd</code></a> made
their first contribution in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1508">google/go-containerregistry#1508</a></li>
<li><a
href="https://github.com/miguelvalerio"><code>@​miguelvalerio</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1520">google/go-containerregistry#1520</a></li>
<li><a href="https://github.com/Juneezee"><code>@​Juneezee</code></a>
made their first contribution in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1522">google/go-containerregistry#1522</a></li>
<li><a href="https://github.com/dtanner"><code>@​dtanner</code></a> made
their first contribution in <a
href="https://github-redirect.dependabot.com/google/go-containerregistry/pull/1533">google/go-containerregistry#1533</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/google/go-containerregistry/compare/v0.12.1...v0.13.0">https://github.com/google/go-containerregistry/compare/v0.12.1...v0.13.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="1e09daa93e"><code>1e09daa</code></a>
clarify crane download readme (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1533">#1533</a>)</li>
<li><a
href="8e08d51670"><code>8e08d51</code></a>
Revert &quot;Hack around DockerHub plugin scope handling&quot; (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1531">#1531</a>)</li>
<li><a
href="5ad0a76120"><code>5ad0a76</code></a>
crane: support --full-ref for crane ls (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1525">#1525</a>)</li>
<li><a
href="b063f6aeac"><code>b063f6a</code></a>
Hack around DockerHub plugin scope handling (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1527">#1527</a>)</li>
<li><a
href="e797859b62"><code>e797859</code></a>
crane: add digest --full (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1524">#1524</a>)</li>
<li><a
href="3986cf4645"><code>3986cf4</code></a>
test: use <code>T.TempDir</code> to create temporary test directory (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1522">#1522</a>)</li>
<li><a
href="9db616f1da"><code>9db616f</code></a>
FIX mutate.Time not respecting history (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1520">#1520</a>)</li>
<li><a
href="804866391d"><code>8048663</code></a>
Race http fallback ping (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1521">#1521</a>)</li>
<li><a
href="e64ff3accb"><code>e64ff3a</code></a>
Bump actions/stale from 6 to 7 (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1519">#1519</a>)</li>
<li><a
href="9bd82373fd"><code>9bd8237</code></a>
Bump goreleaser/goreleaser-action from 3.2.0 to 4.1.0 (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1511">#1511</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/google/go-containerregistry/compare/v0.12.1...v0.13.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/google/go-containerregistry&package-manager=go_modules&previous-version=0.12.1&new-version=0.13.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-25 09:45:54 -03:00
dependabot[bot]
7375a39591
feat(deps): bump github.com/goreleaser/nfpm/v2 from 2.23.0 to 2.24.0 (#3715) 
Bumps
[github.com/goreleaser/nfpm/v2](https://github.com/goreleaser/nfpm) from
2.23.0 to 2.24.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/goreleaser/nfpm/releases">github.com/goreleaser/nfpm/v2's
releases</a>.</em></p>
<blockquote>
<h2>v2.24.0</h2>
<h2>Changelog</h2>
<h3>New Features</h3>
<ul>
<li>656cf867f939c28734a180911890b0cf9c5d38a9: feat(deps): bump
github.com/goreleaser/chglog from 0.2.2 to 0.3.0 (<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/604">#604</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>b547d33731995914394f3aface4bd98fd108c827: feat(deps): bump
github.com/klauspost/compress from 1.15.13 to 1.15.14 (<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/599">#599</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>32c13de89c90d7a44b69a7cd3e02b374f527ffc9: feat(deps): bump
github.com/klauspost/compress from 1.15.14 to 1.15.15 (<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/605">#605</a>)
(<a
href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot])</li>
<li>c195d93dfbedde1116c88964d7a054adcf0187f2: feat: expand variables in
platform field (<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/601">#601</a>)
(<a
href="https://github.com/afbjorklund"><code>@​afbjorklund</code></a>)</li>
</ul>
<h3>Bug fixes</h3>
<ul>
<li>daae772558f0c72d5fe270575133f1e6f0f25fa0: fix: do not allow empty
items in deb.provides (<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/606">#606</a>)
(<a href="https://github.com/caarlos0"><code>@​caarlos0</code></a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/nfpm/compare/v2.23.0...v2.24.0">https://github.com/goreleaser/nfpm/compare/v2.23.0...v2.24.0</a></p>
<hr />
<ul>
<li>Check out <a href="https://goreleaser.com">GoReleaser</a>: it
integrates nFPM to the release pipeline of your Go projects.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="daae772558"><code>daae772</code></a>
fix: do not allow empty items in deb.provides (<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/606">#606</a>)</li>
<li><a
href="656cf867f9"><code>656cf86</code></a>
feat(deps): bump github.com/goreleaser/chglog from 0.2.2 to 0.3.0 (<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/604">#604</a>)</li>
<li><a
href="32c13de89c"><code>32c13de</code></a>
feat(deps): bump github.com/klauspost/compress from 1.15.14 to 1.15.15
(<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/605">#605</a>)</li>
<li><a
href="c816571b14"><code>c816571</code></a>
test: improve test code (<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/602">#602</a>)</li>
<li><a
href="c195d93dfb"><code>c195d93</code></a>
feat: expand variables in platform field (<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/601">#601</a>)</li>
<li><a
href="b547d33731"><code>b547d33</code></a>
feat(deps): bump github.com/klauspost/compress from 1.15.13 to 1.15.14
(<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/599">#599</a>)</li>
<li><a
href="d0f5dde746"><code>d0f5dde</code></a>
docs: update cmd docs</li>
<li><a
href="5b082c88bc"><code>5b082c8</code></a>
docs: udpate</li>
<li><a
href="475f856f83"><code>475f856</code></a>
test: fix wrong path</li>
<li><a
href="11d8f44aa5"><code>11d8f44</code></a>
docs: update cmd docs</li>
<li>See full diff in <a
href="https://github.com/goreleaser/nfpm/compare/v2.23.0...v2.24.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/goreleaser/nfpm/v2&package-manager=go_modules&previous-version=2.23.0&new-version=2.24.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-24 10:00:51 -03:00
dependabot[bot]
acaf730976
chore(deps): bump golangci/golangci-lint-action from 3.3.1 to 3.4.0 (#3714) 
Bumps
[golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action)
from 3.3.1 to 3.4.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golangci/golangci-lint-action/releases">golangci/golangci-lint-action's
releases</a>.</em></p>
<blockquote>
<h2>v3.4.0</h2>
<h2>What's Changed</h2>
<ul>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 5.42.0 to 5.42.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/601">golangci/golangci-lint-action#601</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
5.42.0 to 5.42.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/602">golangci/golangci-lint-action#602</a></li>
<li>build(deps-dev): bump eslint from 8.27.0 to 8.28.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/604">golangci/golangci-lint-action#604</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
5.42.1 to 5.43.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/605">golangci/golangci-lint-action#605</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 5.42.1 to 5.43.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/607">golangci/golangci-lint-action#607</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 5.43.0 to 5.44.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/609">golangci/golangci-lint-action#609</a></li>
<li>build(deps-dev): bump prettier from 2.7.1 to 2.8.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/611">golangci/golangci-lint-action#611</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
5.43.0 to 5.44.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/610">golangci/golangci-lint-action#610</a></li>
<li>build(deps-dev): bump typescript from 4.8.4 to 4.9.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/606">golangci/golangci-lint-action#606</a></li>
<li>build(deps): bump <code>@​types/node</code> from 18.11.9 to 18.11.10
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/614">golangci/golangci-lint-action#614</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
5.44.0 to 5.45.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/615">golangci/golangci-lint-action#615</a></li>
<li>build(deps-dev): bump eslint from 8.28.0 to 8.29.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/617">golangci/golangci-lint-action#617</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 5.44.0 to 5.45.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/616">golangci/golangci-lint-action#616</a></li>
<li>build(deps-dev): bump typescript from 4.9.3 to 4.9.4 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/619">golangci/golangci-lint-action#619</a></li>
<li>build(deps-dev): bump <code>@​vercel/ncc</code> from 0.34.0 to
0.36.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/620">golangci/golangci-lint-action#620</a></li>
<li>build(deps-dev): bump prettier from 2.8.0 to 2.8.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/622">golangci/golangci-lint-action#622</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
5.45.0 to 5.46.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/621">golangci/golangci-lint-action#621</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 5.45.0 to 5.46.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/623">golangci/golangci-lint-action#623</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
5.46.0 to 5.46.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/625">golangci/golangci-lint-action#625</a></li>
<li>build(deps): bump <code>@​types/node</code> from 18.11.10 to
18.11.17 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/628">golangci/golangci-lint-action#628</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 5.46.0 to 5.46.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/626">golangci/golangci-lint-action#626</a></li>
<li>build(deps-dev): bump eslint from 8.29.0 to 8.30.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/627">golangci/golangci-lint-action#627</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
5.46.1 to 5.47.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/633">golangci/golangci-lint-action#633</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 5.46.1 to 5.47.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/634">golangci/golangci-lint-action#634</a></li>
<li>build(deps): bump <code>@​actions/cache</code> from 3.0.6 to 3.1.0
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/632">golangci/golangci-lint-action#632</a></li>
<li>build(deps-dev): bump eslint from 8.30.0 to 8.31.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/635">golangci/golangci-lint-action#635</a></li>
<li>build(deps): bump <code>@​types/node</code> from 18.11.17 to
18.11.18 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/636">golangci/golangci-lint-action#636</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
5.47.0 to 5.47.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/637">golangci/golangci-lint-action#637</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 5.47.0 to 5.47.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/639">golangci/golangci-lint-action#639</a></li>
<li>build(deps): bump <code>@​actions/cache</code> from 3.1.0 to 3.1.1
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/638">golangci/golangci-lint-action#638</a></li>
<li>build(deps): bump json5 from 1.0.1 to 1.0.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/642">golangci/golangci-lint-action#642</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 5.47.1 to 5.48.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/643">golangci/golangci-lint-action#643</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
5.47.1 to 5.48.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/644">golangci/golangci-lint-action#644</a></li>
<li>build(deps-dev): bump prettier from 2.8.1 to 2.8.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/645">golangci/golangci-lint-action#645</a></li>
<li>build(deps-dev): bump eslint-config-prettier from 8.5.0 to 8.6.0 by
<a href="https://github.com/dependabot"><code>@​dependabot</code></a> in
<a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/646">golangci/golangci-lint-action#646</a></li>
<li>build(deps): bump <code>@​actions/cache</code> from 3.1.1 to 3.1.2
by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>
in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/647">golangci/golangci-lint-action#647</a></li>
<li>Support Caching in Mono Repo by <a
href="https://github.com/bbernays"><code>@​bbernays</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/629">golangci/golangci-lint-action#629</a></li>
<li>build(deps-dev): bump eslint-plugin-import from 2.26.0 to 2.27.4 by
<a href="https://github.com/dependabot"><code>@​dependabot</code></a> in
<a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/650">golangci/golangci-lint-action#650</a></li>
<li>build(deps-dev): bump prettier from 2.8.2 to 2.8.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/651">golangci/golangci-lint-action#651</a></li>
<li>build(deps-dev): bump eslint from 8.31.0 to 8.32.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/652">golangci/golangci-lint-action#652</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
5.48.0 to 5.48.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/653">golangci/golangci-lint-action#653</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 5.48.0 to 5.48.1 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/654">golangci/golangci-lint-action#654</a></li>
<li>build(deps-dev): bump eslint-plugin-import from 2.27.4 to 2.27.5 by
<a href="https://github.com/dependabot"><code>@​dependabot</code></a> in
<a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/655">golangci/golangci-lint-action#655</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
5.48.1 to 5.48.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/656">golangci/golangci-lint-action#656</a></li>
<li>build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 5.48.1 to 5.48.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/657">golangci/golangci-lint-action#657</a></li>
<li>build(deps-dev): bump eslint-plugin-simple-import-sort from 8.0.0 to
9.0.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/658">golangci/golangci-lint-action#658</a></li>
</ul>
<h2>New Contributors</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="08e2f20817"><code>08e2f20</code></a>
build(deps-dev): bump eslint-plugin-simple-import-sort from 8.0.0 to
9.0.0 (#...</li>
<li><a
href="8d110786c7"><code>8d11078</code></a>
build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 5.48.1 to 5.48.2 ...</li>
<li><a
href="724a5425db"><code>724a542</code></a>
build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
5.48.1 to 5.48.2 (<a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/issues/656">#656</a>)</li>
<li><a
href="ac0edcd804"><code>ac0edcd</code></a>
build(deps-dev): bump eslint-plugin-import from 2.27.4 to 2.27.5 (<a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/issues/655">#655</a>)</li>
<li><a
href="d6404ce293"><code>d6404ce</code></a>
build(deps-dev): bump <code>@​typescript-eslint/eslint-plugin</code>
from 5.48.0 to 5.48.1 ...</li>
<li><a
href="cb88bde406"><code>cb88bde</code></a>
build(deps-dev): bump <code>@​typescript-eslint/parser</code> from
5.48.0 to 5.48.1 (<a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/issues/653">#653</a>)</li>
<li><a
href="f26018a9c0"><code>f26018a</code></a>
build(deps-dev): bump eslint from 8.31.0 to 8.32.0 (<a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/issues/652">#652</a>)</li>
<li><a
href="78451d099c"><code>78451d0</code></a>
build(deps-dev): bump prettier from 2.8.2 to 2.8.3 (<a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/issues/651">#651</a>)</li>
<li><a
href="5570e66705"><code>5570e66</code></a>
build(deps-dev): bump eslint-plugin-import from 2.26.0 to 2.27.4 (<a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/issues/650">#650</a>)</li>
<li><a
href="1626f2bd94"><code>1626f2b</code></a>
Support Caching in Mono Repo (<a
href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/issues/629">#629</a>)</li>
<li>Additional commits viewable in <a
href="0ad9a0988b...08e2f20817">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golangci/golangci-lint-action&package-manager=github_actions&previous-version=3.3.1&new-version=3.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-24 09:49:46 -03:00
actions-user
b036b49c52 chore: docs auto-update 2023-01-24 01:28:55 +00:00
Carlos Alexandro Becker
afc38b79a9
feat: allow to template release.disable and releaser.skip_upload (#3710) 
closes https://github.com/goreleaser/goreleaser/issues/3705

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-23 22:27:01 -03:00
Carlos Alexandro Becker
d386cbf3ce
feat: allow to template snaps.grade (#3712) 
refs
d73320559b

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-23 22:05:24 -03:00
Carlos A Becker
a1876e3eca
docs: GO_VERSION in the examples might cause confusion 
refs #3709

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-22 17:23:31 -03:00
Carlos A Becker
d6504aaa1d
docs: keep --rm-dist for now 
refs #3702

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-21 18:25:37 -03:00
Carlos A Becker
3eb759f039
docs: keep --rm-dist on docs for now 
refs #3702
 2023-01-21 18:23:50 -03:00
Carlos Alexandro Becker
c42b3ec6af
refactor: improve go mod proxy usage (#3698) 
Thanks for the suggestions @mvdan!

refs https://github.com/goreleaser/goreleaser/issues/3624

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-20 23:47:20 -03:00
Carlos Alexandro Becker
d18adfb57e
feat: deprecate --rm-dist in favor of new --clean flag (#3702) 
After talking with @perylemke, we realized that probably most people
will likely expect it to be called --clean instead of --rm-dist, as its
more similar to the popular `make clean` task.

This adds the --clean flag, and make the --rm-dist one deprecated.

Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-20 23:47:08 -03:00
Carlos A Becker
1381e02f59
docs: quote strings in docker manifests docs 2023-01-20 12:01:08 -03:00
dependabot[bot]
93b582b4bb
chore(deps): bump github/codeql-action from 2.1.38 to 2.1.39 (#3704) 
Bumps [github/codeql-action](https://github.com/github/codeql-action)
from 2.1.38 to 2.1.39.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's
changelog</a>.</em></p>
<blockquote>
<h1>CodeQL Action Changelog</h1>
<h2>[UNRELEASED]</h2>
<p>No user facing changes.</p>
<h2>2.1.39 - 18 Jan 2023</h2>
<ul>
<li>CodeQL Action v1 is now deprecated, and is no longer updated or
supported. For better performance, improved security, and new features,
upgrade to v2. For more information, see <a
href="https://github.blog/changelog/2023-01-18-code-scanning-codeql-action-v1-is-now-deprecated/">this
changelog post</a>. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1466">#1467</a></li>
<li>Python automatic dependency installation will no longer fail for
projects using Poetry that specify <code>virtualenvs.options.no-pip =
true</code> in their <code>poetry.toml</code>. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1431">#1431</a></li>
<li>Avoid printing a stack trace and error message when the action fails
to find the SHA at the
current directory. This will happen in several non-error states and so
we now avoid cluttering the
log with this message. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1485">#1485</a></li>
</ul>
<h2>2.1.38 - 12 Jan 2023</h2>
<ul>
<li>Update default CodeQL bundle version to 2.12.0. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1466">#1466</a></li>
</ul>
<h2>2.1.37 - 14 Dec 2022</h2>
<ul>
<li>Update default CodeQL bundle version to 2.11.6. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1433">#1433</a></li>
</ul>
<h2>2.1.36 - 08 Dec 2022</h2>
<ul>
<li>Update default CodeQL bundle version to 2.11.5. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1412">#1412</a></li>
<li>Add a step that tries to upload a SARIF file for the workflow run
when that workflow run fails. This will help better surface failed code
scanning workflow runs. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1393">#1393</a></li>
<li>Python automatic dependency installation will no longer consider
dependency code installed in venv as user-written, for projects using
Poetry that specify <code>virtualenvs.in-project = true</code> in their
<code>poetry.toml</code>. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1419">#1419</a></li>
</ul>
<h2>2.1.35 - 01 Dec 2022</h2>
<p>No user facing changes.</p>
<h2>2.1.34 - 25 Nov 2022</h2>
<ul>
<li>Update default CodeQL bundle version to 2.11.4. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1391">#1391</a></li>
<li>Fixed a bug where some the <code>init</code> action and the
<code>analyze</code> action would have different sets of experimental
feature flags enabled. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1384">#1384</a></li>
</ul>
<h2>2.1.33 - 16 Nov 2022</h2>
<ul>
<li>Go is now analyzed in the same way as other compiled languages such
as C/C++, C#, and Java. This completes the rollout of the feature
described in <a
href="https://github.com/github/codeql-action/blob/main/#2127---06-oct-2022">CodeQL
Action version 2.1.27</a>. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1322">#1322</a></li>
<li>Bump the minimum CodeQL bundle version to 2.6.3. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1358">#1358</a></li>
</ul>
<h2>2.1.32 - 14 Nov 2022</h2>
<ul>
<li>Update default CodeQL bundle version to 2.11.3. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1348">#1348</a></li>
<li>Update the ML-powered additional query pack for JavaScript to
version 0.4.0. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1351">#1351</a></li>
</ul>
<h2>2.1.31 - 04 Nov 2022</h2>
<ul>
<li>The <code>rb/weak-cryptographic-algorithm</code> Ruby query has been
updated to no longer report uses of hash functions such as
<code>MD5</code> and <code>SHA1</code> even if they are known to be
weak. These hash algorithms are used very often in non-sensitive
contexts, making the query too imprecise in practice. For more
information, see the corresponding change in the <a
href="https://github-redirect.dependabot.com/github/codeql/pull/11129">github/codeql
repository</a>. <a
href="https://github-redirect.dependabot.com/github/codeql-action/pull/1344">#1344</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a34ca99b46"><code>a34ca99</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/github/codeql-action/issues/1489">#1489</a>
from github/update-v2.1.39-597c2041</li>
<li><a
href="48fa82899a"><code>48fa828</code></a>
Update changelog for v2.1.39</li>
<li><a
href="597c204127"><code>597c204</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/github/codeql-action/issues/1481">#1481</a>
from github/henrymercer/discontinue-v1</li>
<li><a
href="e0fd640b0c"><code>e0fd640</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/github/codeql-action/issues/1487">#1487</a>
from github/aeisenberg/queries-check</li>
<li><a
href="d731c012c4"><code>d731c01</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/github/codeql-action/issues/1486">#1486</a>
from github/update-supported-enterprise-server-versions</li>
<li><a
href="6dfc772b5f"><code>6dfc772</code></a>
Add link to new changelog post</li>
<li><a
href="60e58b4a21"><code>60e58b4</code></a>
Merge branch 'main' into henrymercer/discontinue-v1</li>
<li><a
href="9b1206e898"><code>9b1206e</code></a>
Fix a bug in cli config parsing</li>
<li><a
href="40cfcb0a3f"><code>40cfcb0</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/github/codeql-action/issues/1485">#1485</a>
from github/aeisenberg/comitoid-message</li>
<li><a
href="e199504667"><code>e199504</code></a>
Update supported GitHub Enterprise Server versions.</li>
<li>Additional commits viewable in <a
href="515828d974...a34ca99b46">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/codeql-action&package-manager=github_actions&previous-version=2.1.38&new-version=2.1.39)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-19 09:42:30 -03:00
dependabot[bot]
571cde5d9e
feat(deps): bump golang.org/x/tools from 0.2.0 to 0.5.0 (#3700) 
[//]: # (dependabot-start)
⚠️  **Dependabot is rebasing this PR** ⚠️ 

Rebasing might not happen immediately, so don't worry if this takes some
time.

Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.

---

[//]: # (dependabot-end)

Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.2.0
to 0.5.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h2>gopls/v0.5.0</h2>
<p>A full list of issues closed can be found in the <a
href="https://github.com/golang/go/milestone/138?closed=1">gopls/v0.5.0
milestone</a>.</p>
<h2>Memory usage</h2>
<ul>
<li>Rewrite of caching model, resulting in significant memory usage
improvements (<a
href="https://github.com/heschik"><code>@​heschik</code></a>).</li>
</ul>
<h2>New features</h2>
<ul>
<li>Extract to function: Support for extracting code blocks that contain
return statements (<a
href="https://github.com/joshbaum"><code>@​joshbaum</code></a>).</li>
<li>Workspace symbols: Support for <a
href="https://github.com/junegunn/fzf#search-syntax">fzf-style search
syntax</a> (<a
href="https://github.com/findleyr"><code>@​findleyr</code></a>). The
following syntax is supported:
<ul>
<li><code>'</code> for exact matching</li>
<li><code>^</code> for prefix matching</li>
<li><code>$</code> for suffix matching</li>
</ul>
</li>
</ul>
<p><strong>Note</strong>: This feature does not yet work in VS Code. See
<a
href="https://github-redirect.dependabot.com/golang/vscode-go/issues/647">golang/vscode-go#647</a>
and <a
href="https://github-redirect.dependabot.com/microsoft/vscode/issues/106788">microsoft/vscode#106788</a>.</p>
<ul>
<li>An experimental new code lens to view GC optimization details (<a
href="https://github.com/pjweinb"><code>@​pjweinb</code></a>). Once the
code lens is enabled, you will see a <code>Toggle gc details</code>
annotation at the top of your file. Clicking it will show optimization
diagnostics produced by the Go compiler, and clicking it once again will
hide these diagnostics. Enable the code lens by adding the following to
your settings:
<pre lang="json5"><code>&quot;codelens&quot;: {
	&quot;gc_details&quot;: true
}
</code></pre>
</li>
<li><code>go mod tidy</code> and <code>go mod vendor</code> code lenses
for <code>go.mod</code> files (<a
href="https://github.com/dandua98"><code>@​dandua98</code></a>).</li>
<li>Support for filling in matching in-scope variables instead of just
empty values in fillstruct and fillreturns (<a
href="https://github.com/joshbaum"><code>@​joshbaum</code></a>).</li>
<li>Autocompletion within import statements (<a
href="https://github.com/dandua98"><code>@​dandua98</code></a>).</li>
<li>Autocompletion within package declarations (<a
href="https://github.com/dandua98"><code>@​dandua98</code></a>).</li>
</ul>
<h2>Improvements</h2>
<ul>
<li>Improvements to workspace symbols ranking and fuzzy matching (<a
href="https://github.com/findleyr"><code>@​findleyr</code></a>, <a
href="https://github.com/myitcv"><code>@​myitcv</code></a>).</li>
<li>Better completion suggestions in type switch case clauses and for
calls to <code>append</code>, function literals, and unnamed types (<a
href="https://github.com/muirdm"><code>@​muirdm</code></a>).</li>
</ul>
<h2>Thank you</h2>
<p>Thank you to everyone who contributed to this release!</p>
<p><a href="https://github.com/heschik"><code>@​heschik</code></a>
<a href="https://github.com/findleyr"><code>@​findleyr</code></a>
<a href="https://github.com/pjweinb"><code>@​pjweinb</code></a>
<a href="https://github.com/joshbaum"><code>@​joshbaum</code></a>
<a href="https://github.com/mcjcloud"><code>@​mcjcloud</code></a>
<a href="https://github.com/dandua98"><code>@​dandua98</code></a>
<a href="https://github.com/muirdm"><code>@​muirdm</code></a>
<a href="https://github.com/leitzler"><code>@​leitzler</code></a>
<a href="https://github.com/myitcv"><code>@​myitcv</code></a>
<a href="https://github.com/matloob"><code>@​matloob</code></a>
<a href="https://github.com/tennashi"><code>@​tennashi</code></a>
<a href="https://github.com/ainar-g"><code>@​ainar-g</code></a>
<a href="https://github.com/hasheddan"><code>@​hasheddan</code></a></p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="7db99dd126"><code>7db99dd</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="1e0dff28f4"><code>1e0dff2</code></a>
gopls/internal/regtest: avoid race in
TestSwitchFromGOPATHToModuleMode</li>
<li><a
href="0441b432ca"><code>0441b43</code></a>
gopls/internal/lsp/cache: use specific mutexes for module data</li>
<li><a
href="33071fbe1a"><code>33071fb</code></a>
internal/robustio: move robustio</li>
<li><a
href="b01e7a4e75"><code>b01e7a4</code></a>
gopls/internal/regtest/watch: don't run
TestSwitchFromGOPATHToModuleMode</li>
<li><a
href="e417ea36ba"><code>e417ea3</code></a>
gopls: remove dead analysis code</li>
<li><a
href="1a08d01ac9"><code>1a08d01</code></a>
gopls/internal/lsp: update replace directives in go.mod for package
renaming</li>
<li><a
href="eac36cb2ac"><code>eac36cb</code></a>
gopls/internal/regtest: port experimental workspace tests to
go.work</li>
<li><a
href="224a61b354"><code>224a61b</code></a>
gopls/internal/lsp/source: delete Snapshot.WriteEnv method</li>
<li><a
href="81e741e32f"><code>81e741e</code></a>
gopls/internal/lsp/safetoken: funnel more calls through this
package</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.2.0...v0.5.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang.org/x/tools&package-manager=go_modules&previous-version=0.2.0&new-version=0.5.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-17 08:56:54 -03:00
dependabot[bot]
599ed6527d
feat(deps): bump github.com/google/go-containerregistry from 0.11.0 to 0.12.1 (#3699) 
Bumps
[github.com/google/go-containerregistry](https://github.com/google/go-containerregistry)
from 0.11.0 to 0.12.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/go-containerregistry/releases">github.com/google/go-containerregistry's
releases</a>.</em></p>
<blockquote>
<h2>v0.12.1</h2>
<h2>Changelog</h2>
<ul>
<li>426de7d4 Bump golangci/golangci-lint-action from 3.2.0 to 3.3.0 (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1475">#1475</a>)</li>
<li>6442b027 Bump goreleaser/goreleaser-action from 3.1.0 to 3.2.0 (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1476">#1476</a>)</li>
<li>76ae8192 Fix context.DeadlineExceeded comparison (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1488">#1488</a>)</li>
<li>1711cefd Fix missing body.Close() in bearer auth (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1482">#1482</a>)</li>
<li>02f47e13 bump version of slsa generator (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1468">#1468</a>)</li>
<li>353a1176 crane: add catalog argument use annotation (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1473">#1473</a>)</li>
<li>a0cca8a0 k8schain: Log and proceed if secret or SA are not found (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1472">#1472</a>)</li>
</ul>
<h3>Container Images</h3>
<p><a
href="https://gcr.io/go-containerregistry/crane:v0.12.1">https://gcr.io/go-containerregistry/crane:v0.12.1</a>
<a
href="https://gcr.io/go-containerregistry/gcrane:v0.12.1">https://gcr.io/go-containerregistry/gcrane:v0.12.1</a></p>
<p>For example:</p>
<pre><code>docker pull gcr.io/go-containerregistry/crane:v0.12.1
docker pull gcr.io/go-containerregistry/gcrane:v0.12.1
</code></pre>
<h2>v0.12.0</h2>
<h2>Changelog</h2>
<ul>
<li>9b4fdd50 Bump actions/setup-go from 2 to 3 (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1463">#1463</a>)</li>
<li>7268da01 Bump actions/stale from 5 to 6 (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1452">#1452</a>)</li>
<li>7196cf3d Bump aws-actions/configure-aws-credentials from 1.6.1 to
1.7.0 (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1424">#1424</a>)</li>
<li>8eae069f Bump codecov/codecov-action from 3.1.0 to 3.1.1 (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1453">#1453</a>)</li>
<li>969699e7 Bump deps using ./hack/bump-deps.sh (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1467">#1467</a>)</li>
<li>c1f9836a Bump opencontainers/image-spec (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1423">#1423</a>)</li>
<li>49cdb8b4 Correct usage of authn.NewKeychainFromHelper in docs (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1419">#1419</a>)</li>
<li>3ba4c511 Fix tar PAX format handling (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1414">#1414</a>)</li>
<li>24a1c335 Ignore docker config if it's a directory (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1420">#1420</a>)</li>
<li>a0f66878 Make ErrBadName checkable via errors.Is() (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1462">#1462</a>)</li>
<li>19e3eff7 Retry ECONNRESET errors (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1415">#1415</a>)</li>
<li>5749ee68 Support the platform specific authentication of krane in
&quot;auth get&quot; command (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1413">#1413</a>)</li>
<li>e3b94c7e allow remote.DefaultTransport to be overridden by an
http.RoundTripper (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1449">#1449</a>)</li>
<li>f981b4c0 deps: update goreleaser-action for bug (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1444">#1444</a>)</li>
<li>771a9b44 e2e: pull and export stdin and stdout (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1436">#1436</a>)</li>
<li>87b3a796 feat: Add krane to release archive (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1443">#1443</a>)</li>
<li>2859a0d0 feat: generate slsa provenance on github release artifacts
(<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1438">#1438</a>)</li>
<li>9a5c14ad fix crane's root.go after DefaultTransport change (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1450">#1450</a>)</li>
<li>2b54510b fix: consider base image media type when appending layers
(<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1437">#1437</a>)</li>
<li>d3ed4089 registry: implement blob deletion (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1432">#1432</a>)</li>
<li>3413eb6c registry: implement pagination (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1430">#1430</a>)</li>
<li>e2d575cf update crane installation instructions and release
verification (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1440">#1440</a>)</li>
</ul>
<h3>Container Images</h3>
<p><a
href="https://gcr.io/go-containerregistry/crane:v0.12.0">https://gcr.io/go-containerregistry/crane:v0.12.0</a>
<a
href="https://gcr.io/go-containerregistry/gcrane:v0.12.0">https://gcr.io/go-containerregistry/gcrane:v0.12.0</a></p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="76ae8192ef"><code>76ae819</code></a>
Fix context.DeadlineExceeded comparison (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1488">#1488</a>)</li>
<li><a
href="353a117661"><code>353a117</code></a>
crane: add catalog argument use annotation (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1473">#1473</a>)</li>
<li><a
href="1711cefd7e"><code>1711cef</code></a>
Fix missing body.Close() in bearer auth (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1482">#1482</a>)</li>
<li><a
href="426de7d42a"><code>426de7d</code></a>
Bump golangci/golangci-lint-action from 3.2.0 to 3.3.0 (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1475">#1475</a>)</li>
<li><a
href="6442b027bf"><code>6442b02</code></a>
Bump goreleaser/goreleaser-action from 3.1.0 to 3.2.0 (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1476">#1476</a>)</li>
<li><a
href="a0cca8a048"><code>a0cca8a</code></a>
k8schain: Log and proceed if secret or SA are not found (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1472">#1472</a>)</li>
<li><a
href="02f47e132c"><code>02f47e1</code></a>
bump version of slsa generator (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1468">#1468</a>)</li>
<li><a
href="3413eb6ce4"><code>3413eb6</code></a>
registry: implement pagination (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1430">#1430</a>)</li>
<li><a
href="d3ed40890c"><code>d3ed408</code></a>
registry: implement blob deletion (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1432">#1432</a>)</li>
<li><a
href="969699e7d1"><code>969699e</code></a>
Bump deps using ./hack/bump-deps.sh (<a
href="https://github-redirect.dependabot.com/google/go-containerregistry/issues/1467">#1467</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/google/go-containerregistry/compare/v0.11.0...v0.12.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/google/go-containerregistry&package-manager=go_modules&previous-version=0.11.0&new-version=0.12.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-01-17 08:55:56 -03:00
Carlos A Becker
9c5b4d56d9
docs: consistent formatting 
Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-16 23:48:34 -03:00
Carlos A Becker
44012cc2a0
docs: update 
Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
 2023-01-16 22:45:17 -03:00