[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
**Note:** Dependabot was ignoring updates to this dependency, but since
you've updated it yourself we've started tracking it for you again. 🤖
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once it's up-to-date and CI passes on it,
as requested by @caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.99.0 to 0.100.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="65c4275d1c"><code>65c4275</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1893">#1893</a>
from beekeep/feat/add-group-inheritance-type-to-depl...</li>
<li><a
href="a603b9dd9c"><code>a603b9d</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1894">#1894</a>
from Poulpatine/main</li>
<li><a
href="b6e96f9afe"><code>b6e96f9</code></a>
Rename the new structs and functions</li>
<li><a
href="7c17fafb68"><code>7c17faf</code></a>
Add support for groups job token</li>
<li><a
href="c49b7d634e"><code>c49b7d6</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1892">#1892</a>
from PatrickRice-KSC/add-custom-webhook-template-opt...</li>
<li><a
href="7488e8ecbc"><code>7488e8e</code></a>
Add attribute to project/group protected environments</li>
<li><a
href="98d4f2775c"><code>98d4f27</code></a>
Fix lint failures</li>
<li><a
href="bfb9b36378"><code>bfb9b36</code></a>
Add support for the CustomWebhookTemplate</li>
<li>See full diff in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.99.0...v0.100.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/charmbracelet/lipgloss](https://github.com/charmbracelet/lipgloss)
from 0.9.1 to 0.10.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/charmbracelet/lipgloss/releases">github.com/charmbracelet/lipgloss's
releases</a>.</em></p>
<blockquote>
<h2>v0.10.0</h2>
<h1>String Transforms 💄</h1>
<p>Lip Gloss <code>v0.10.0</code> features a brand new
<code>Transform</code> function for Styles to alter strings at render
time. As well as some bug fixes, like ANSI-aware table cell truncation.
🧹</p>
<p>Simply define a <code>Transform</code> function as <code>func
(string) string</code> and apply it to any style:</p>
<pre lang="go"><code>// Example:
s := NewStyle().Transform(strings.ToUpper)
fmt.Println(s.Render("raow!") // "RAOW!"
</code></pre>
<p>Or, if you prefer:</p>
<pre lang="go"><code>// Example:
reverse := func(s string) string {
n := 0
rune := make([]rune, len(s))
for _, r := range s {
rune[n] = r
n++
}
rune = rune[0:n]
for i := 0; i < n/2; i++ {
rune[i], rune[n-1-i] = rune[n-1-i], rune[i]
}
return string(rune)
}
<p>s := NewStyle().Transform(reverse)
fmt.Println(s.Render("The quick brown 狐 jumped over the lazy
犬")
// "犬 yzal eht revo depmuj 狐 nworb kciuq ehT",
</code></pre></p>
<h2>What's Changed?</h2>
<ul>
<li>Corrected border shorthand functions explanation by <a
href="https://github.com/ReidMason"><code>@ReidMason</code></a> in <a
href="https://redirect.github.com/charmbracelet/lipgloss/pull/237">charmbracelet/lipgloss#237</a></li>
<li>Align help by <a
href="https://github.com/schmurfy"><code>@schmurfy</code></a> in <a
href="https://redirect.github.com/charmbracelet/lipgloss/pull/239">charmbracelet/lipgloss#239</a></li>
<li><code>Style.Transform</code> for altering strings at render time by
<a href="https://github.com/meowgorithm"><code>@meowgorithm</code></a>
in <a
href="https://redirect.github.com/charmbracelet/lipgloss/pull/232">charmbracelet/lipgloss#232</a></li>
<li>Adding right padding to empty string by <a
href="https://github.com/mikelorant"><code>@mikelorant</code></a> in <a
href="https://redirect.github.com/charmbracelet/lipgloss/pull/253">charmbracelet/lipgloss#253</a></li>
<li>Refactor padding functions by <a
href="https://github.com/mikelorant"><code>@mikelorant</code></a> in <a
href="https://redirect.github.com/charmbracelet/lipgloss/pull/254">charmbracelet/lipgloss#254</a></li>
<li>Fix truncate of table cells containing ANSI by <a
href="https://github.com/mikelorant"><code>@mikelorant</code></a> in <a
href="https://redirect.github.com/charmbracelet/lipgloss/pull/256">charmbracelet/lipgloss#256</a></li>
<li>Improve maximum width of characters in a string by <a
href="https://github.com/mikelorant"><code>@mikelorant</code></a> in <a
href="https://redirect.github.com/charmbracelet/lipgloss/pull/257">charmbracelet/lipgloss#257</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/ReidMason"><code>@ReidMason</code></a>
made their first contribution in <a
href="https://redirect.github.com/charmbracelet/lipgloss/pull/237">charmbracelet/lipgloss#237</a></li>
<li><a href="https://github.com/schmurfy"><code>@schmurfy</code></a>
made their first contribution in <a
href="https://redirect.github.com/charmbracelet/lipgloss/pull/239">charmbracelet/lipgloss#239</a></li>
<li><a
href="https://github.com/mikelorant"><code>@mikelorant</code></a> made
their first contribution in <a
href="https://redirect.github.com/charmbracelet/lipgloss/pull/253">charmbracelet/lipgloss#253</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="439c06fae6"><code>439c06f</code></a>
docs(table): ANSI-aware cell example</li>
<li><a
href="652c37dd07"><code>652c37d</code></a>
feat(deps): bump github.com/rivo/uniseg from 0.4.6 to 0.4.7 (<a
href="https://redirect.github.com/charmbracelet/lipgloss/issues/262">#262</a>)</li>
<li><a
href="8464a7c90b"><code>8464a7c</code></a>
chore(deps): bump golangci/golangci-lint-action from 3 to 4 (<a
href="https://redirect.github.com/charmbracelet/lipgloss/issues/259">#259</a>)</li>
<li><a
href="207eb25c9f"><code>207eb25</code></a>
Create CODEOWNERS</li>
<li><a
href="13584f26de"><code>13584f2</code></a>
chore: go mod tidy</li>
<li><a
href="bb7ffe226d"><code>bb7ffe2</code></a>
fix(ci): update coverage workflow</li>
<li><a
href="2745d8a3d8"><code>2745d8a</code></a>
Improve maximum width of characters in a string (<a
href="https://redirect.github.com/charmbracelet/lipgloss/issues/257">#257</a>)</li>
<li><a
href="de4601232b"><code>de46012</code></a>
Fix truncate of table cells containing ANSI (<a
href="https://redirect.github.com/charmbracelet/lipgloss/issues/256">#256</a>)</li>
<li><a
href="92946d34c2"><code>92946d3</code></a>
chore: refactor padding functions (<a
href="https://redirect.github.com/charmbracelet/lipgloss/issues/254">#254</a>)</li>
<li><a
href="59874c2afa"><code>59874c2</code></a>
chore: apply gofumpt to all files (<a
href="https://redirect.github.com/charmbracelet/lipgloss/issues/255">#255</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/charmbracelet/lipgloss/compare/v0.9.1...v0.10.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps gopkg.in/go-jose/go-jose.v2 from 2.6.1 to 2.6.3.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/goreleaser/goreleaser/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.97.0 to 0.98.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ceac9862fe"><code>ceac986</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1883">#1883</a>
from KqLLL/feature/support-for-the-gitlab-for-slack-app</li>
<li><a
href="a8f2a84364"><code>a8f2a84</code></a>
Support for the GitLab for Slack app</li>
<li><a
href="d2769882a4"><code>d276988</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1886">#1886</a>
from jmajaca/drone-integration-missing-set-fields</li>
<li><a
href="2f95cf4014"><code>2f95cf4</code></a>
Add missing fields to SetDroneCIServiceOptions</li>
<li><a
href="d720e554a0"><code>d720e55</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1885">#1885</a>
from jmajaca/jmajaca-jenkins-integration-enable-ssl-...</li>
<li><a
href="3b8b8b164a"><code>3b8b8b1</code></a>
Change field type to bool</li>
<li><a
href="c9387f1f10"><code>c9387f1</code></a>
Add EnableSSLVerification to SetJenkinsCIServiceOptions</li>
<li><a
href="fbde0597f1"><code>fbde059</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1884">#1884</a>
from DaanRosendal/typo</li>
<li><a
href="b78f4bec83"><code>b78f4be</code></a>
Fix typo in Ptr function description</li>
<li><a
href="1fdce67c6a"><code>1fdce67</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1882">#1882</a>
from colinodell/project-ci_forward_deployment_rollba...</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.97.0...v0.98.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/slack-go/slack](https://github.com/slack-go/slack)
from 0.12.4 to 0.12.5.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/slack-go/slack/releases">github.com/slack-go/slack's
releases</a>.</em></p>
<blockquote>
<h2>v0.12.5</h2>
<h2>What's Changed</h2>
<p>BUGFIX - deal with "true", true, "false",
false.</p>
<ul>
<li>Parse string or boolean for SlashCommand.IsEnterpriseInstall by <a
href="https://github.com/kpaulisse"><code>@kpaulisse</code></a> in <a
href="https://redirect.github.com/slack-go/slack/pull/1266">slack-go/slack#1266</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/slack-go/slack/compare/v0.12.4...v0.12.5">https://github.com/slack-go/slack/compare/v0.12.4...v0.12.5</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="af783b3055"><code>af783b3</code></a>
Merge pull request <a
href="https://redirect.github.com/slack-go/slack/issues/1266">#1266</a>
from kpaulisse/kpaulisse-is-enterprise-install</li>
<li><a
href="9a23f7a387"><code>9a23f7a</code></a>
Parse string or boolean for SlashCommand.IsEnterpriseInstall</li>
<li>See full diff in <a
href="https://github.com/slack-go/slack/compare/v0.12.4...v0.12.5">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from
0.19.0 to 0.20.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0aab8d07ae"><code>0aab8d0</code></a>
all: update go.mod x/net dependency</li>
<li><a
href="5bead598a0"><code>5bead59</code></a>
ocsp: don't use iota for externally defined constants</li>
<li><a
href="1a865804d5"><code>1a86580</code></a>
x/crypto/internal/poly1305: improve sum_ppc64le.s</li>
<li><a
href="1c981e6f81"><code>1c981e6</code></a>
ssh/test: don't use DSA keys in integrations tests, update test RSA
key</li>
<li><a
href="62c9f1799c"><code>62c9f17</code></a>
x509roots/nss: manually exclude a confusingly constrained root</li>
<li>See full diff in <a
href="https://github.com/golang/crypto/compare/v0.19.0...v0.20.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from
0.16.0 to 0.17.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ebe81ad837"><code>ebe81ad</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="adffd94437"><code>adffd94</code></a>
google/internal/externalaccount: update serviceAccountImpersonationRE to
supp...</li>
<li><a
href="deefa7e836"><code>deefa7e</code></a>
google/downscope: add DownscopingConfig.UniverseDomain to support
TPC</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.16.0...v0.17.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.17.0
to 0.18.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="c5643e9baf"><code>c5643e9</code></a>
gopls/internal/server: fix two bugs related to dynamic
configuration</li>
<li><a
href="50b4f1b124"><code>50b4f1b</code></a>
gopls/internal/golang: close open file</li>
<li><a
href="f0ef3c6902"><code>f0ef3c6</code></a>
gopls: update x/telemetry dependency to fix crash</li>
<li><a
href="8cf0a8e204"><code>8cf0a8e</code></a>
gopls: record that v0.15 will be the last to support go1.18</li>
<li><a
href="730dc3c170"><code>730dc3c</code></a>
gopls/internal/settings: add a hidden option to disable zero config</li>
<li><a
href="95f04f4ae8"><code>95f04f4</code></a>
gopls/internal/golang: add resolve support for inline refactorings</li>
<li><a
href="9619683231"><code>9619683</code></a>
gopls/internal/cache: treat local replaces as workspace modules</li>
<li><a
href="a5af84e3f3"><code>a5af84e</code></a>
gopls/internal/cache: check views on any on-disk change to go.mod
files</li>
<li><a
href="a7407facde"><code>a7407fa</code></a>
gopls: update telemetry</li>
<li><a
href="314368ddf0"><code>314368d</code></a>
go/analysis/passes/deepequalerrors: audit for types.Alias safety</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.17.0...v0.18.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
<!--
Hi, thanks for contributing!
Please make sure you read our CONTRIBUTING guide.
Also, add tests and the respective documentation changes as well.
-->
<!-- If applied, this commit will... -->
...
<!-- Why is this change being made? -->
...
<!-- # Provide links to any relevant tickets, URLs or other resources
-->
...
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from
0.18.0 to 0.19.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="405cb3bdea"><code>405cb3b</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="913d3ae741"><code>913d3ae</code></a>
x509roots/fallback: update bundle</li>
<li>See full diff in <a
href="https://github.com/golang/crypto/compare/v0.18.0...v0.19.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.96.0 to 0.97.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="997404ba93"><code>997404b</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1872">#1872</a>
from johannges/main</li>
<li><a
href="cd614822bf"><code>cd61482</code></a>
Properly fix <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1744">#1744</a></li>
<li><a
href="b3aeb3b678"><code>b3aeb3b</code></a>
✨ Group-level CI/CD variables API: add description</li>
<li><a
href="def3c90df5"><code>def3c90</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1870">#1870</a>
from PatrickRice-KSC/add-restrict-pipeline-cancellat...</li>
<li><a
href="0342a41aaf"><code>0342a41</code></a>
Add support for the new ci_restrict_pipeline_cancellation_role attribute
to P...</li>
<li><a
href="0826177612"><code>0826177</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1869">#1869</a>
from PatrickRice-KSC/fix-path-encoding-for-protected...</li>
<li><a
href="88e8a9dca6"><code>88e8a9d</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1868">#1868</a>
from dfredell/main</li>
<li><a
href="0dfb7251a5"><code>0dfb725</code></a>
Fix an issue with environment names not being encoded</li>
<li><a
href="7af6bec41d"><code>7af6bec</code></a>
Use capital ID to follow go standards <a
href="https://go.dev/wiki/CodeReviewComments%5C">https://go.dev/wiki/CodeReviewComments\</a>...</li>
<li><a
href="68e79f23c2"><code>68e79f2</code></a>
Allow setting custom roles to users on projects</li>
<li>See full diff in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.96.0...v0.97.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.50.5 to 1.50.9.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.50.9 (2024-02-01)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/cognito-idp</code>: Updates service API and
documentation</li>
<li><code>service/ivs</code>: Updates service API, documentation, and
paginators</li>
<li><code>service/managedblockchain-query</code>: Updates service API
and documentation</li>
<li><code>service/mediaconvert</code>: Updates service API and
documentation
<ul>
<li>This release includes support for broadcast-mixed audio description
tracks.</li>
</ul>
</li>
</ul>
<h1>Release v1.50.8 (2024-01-31)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/cloudformation</code>: Updates service API,
documentation, paginators, and examples
<ul>
<li>CloudFormation IaC generator allows you to scan existing resources
in your account and select resources to generate a template for a new or
existing CloudFormation stack.</li>
</ul>
</li>
<li><code>service/elasticloadbalancingv2</code>: Updates service API and
documentation</li>
<li><code>service/glue</code>: Updates service API and documentation
<ul>
<li>Update page size limits for GetJobRuns and GetTriggers APIs.</li>
</ul>
</li>
<li><code>service/ssm</code>: Updates service API and documentation
<ul>
<li>This release adds an optional Duration parameter to StateManager
Associations. This allows customers to specify how long an
apply-only-on-cron association execution should run. Once the specified
Duration is out all the ongoing cancellable commands or automations are
cancelled.</li>
</ul>
</li>
</ul>
<h1>Release v1.50.7 (2024-01-30)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/datazone</code>: Updates service API and
documentation</li>
<li><code>service/route53</code>: Updates service documentation
<ul>
<li>Update the SDKs for text changes in the APIs.</li>
</ul>
</li>
</ul>
<h1>Release v1.50.6 (2024-01-29)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/autoscaling</code>: Updates service API and
documentation
<ul>
<li>EC2 Auto Scaling customers who use attribute based instance-type
selection can now intuitively define their Spot instances price
protection limit as a percentage of the lowest priced On-Demand instance
type.</li>
</ul>
</li>
<li><code>service/comprehend</code>: Updates service documentation</li>
<li><code>service/ec2</code>: Updates service API and documentation
<ul>
<li>EC2 Fleet customers who use attribute based instance-type selection
can now intuitively define their Spot instances price protection limit
as a percentage of the lowest priced On-Demand instance type.</li>
</ul>
</li>
<li><code>service/mwaa</code>: Updates service API and
documentation</li>
<li><code>service/rds</code>: Updates service API, documentation,
waiters, paginators, and examples
<ul>
<li>Introduced support for the InsufficientDBInstanceCapacityFault error
in the RDS RestoreDBClusterFromSnapshot and
RestoreDBClusterToPointInTime API methods. This provides enhanced error
handling, ensuring a more robust experience.</li>
</ul>
</li>
<li><code>service/snowball</code>: Updates service documentation
<ul>
<li>Modified description of createaddress to include direction to add
path when providing a JSON file.</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3248e69e16"><code>3248e69</code></a>
Release v1.50.9 (2024-02-01) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5159">#5159</a>)</li>
<li><a
href="3e2c844a50"><code>3e2c844</code></a>
Release v1.50.8 (2024-01-31) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5158">#5158</a>)</li>
<li><a
href="87be112c47"><code>87be112</code></a>
Merge pull request <a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5155">#5155</a>
from kellertk/main</li>
<li><a
href="160195237e"><code>1601952</code></a>
Release v1.50.7 (2024-01-30) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5157">#5157</a>)</li>
<li><a
href="e8a5e0e401"><code>e8a5e0e</code></a>
Release v1.50.6 (2024-01-29) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5156">#5156</a>)</li>
<li><a
href="9adcf752a6"><code>9adcf75</code></a>
chore: relax stale issue timings</li>
<li><a
href="8eb22a1123"><code>8eb22a1</code></a>
chore: a more polite closed issue message</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.50.5...v1.50.9">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/goreleaser/nfpm/v2](https://github.com/goreleaser/nfpm) from
2.35.2 to 2.35.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/goreleaser/nfpm/releases">github.com/goreleaser/nfpm/v2's
releases</a>.</em></p>
<blockquote>
<h2>v2.35.3</h2>
<h2>Changelog</h2>
<h3>Bug fixes</h3>
<ul>
<li>f8ccc9df94eb9a4c91c3a1c78d4759a65f156731: fix: file mode when type:
tree (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/779">#779</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>e1ebfdad10ef98fe6c9d424efe3f97d7b2322f04: fix: honor
SOURCE_DATE_EPOCH for files (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/775">#775</a>)
(<a href="https://github.com/osm"><code>@osm</code></a>)</li>
</ul>
<h3>Dependency updates</h3>
<ul>
<li>9c48b79596993dd653087f91861794b7da6267e6: feat(deps): bump
github.com/ProtonMail/go-crypto (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/771">#771</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
<li>d7a5dc79573e4bf5d65c3f00d9cac81736f12597: feat(deps): bump
github.com/cloudflare/circl from 1.3.3 to 1.3.7 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/765">#765</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
<li>fbc55c56be14ac5de4207becb98c908c615dee7e: feat(deps): bump
github.com/klauspost/compress from 1.17.4 to 1.17.5 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/774">#774</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
<li>9bb94d758ce739fc27c19bbe04bf1c1d33ce3fa9: fix(deps): update
go-rpmutils (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/764">#764</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Build process updates</h3>
<ul>
<li>5ace4da2fd3162383a16218e2ef405dc2676bdfc: ci: update changelog (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Other work</h3>
<ul>
<li>cd6b94108561b9ef1b06e1db8bfe9e3b3f643253: docs: update cmd docs (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>672f8c6537228848062786d7ad2d2956f6808986: docs: update starchart url
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/nfpm/compare/v2.35.2...v2.35.3">https://github.com/goreleaser/nfpm/compare/v2.35.2...v2.35.3</a></p>
<h2>Helping out</h2>
<p>This release is only possible thanks to <strong>all</strong> the
support of <strong>awesome people</strong>!</p>
<p>Want to be one of them?
You can <a href="https://goreleaser.com/sponsors/">sponsor</a> or <a
href="https://goreleaser.com/contributing">contribute with code</a>.</p>
<h2>Where to go next?</h2>
<ul>
<li>nFPM is a satellite project from GoReleaser. <a
href="https://goreleaser.com">Check it out</a>!</li>
<li>Find examples and commented usage of all options in our <a
href="https://nfpm.goreleaser.com/">website</a>.</li>
<li>Reach out on <a href="https://discord.gg/RGEBtg8vQ6">Discord</a> and
<a href="https://twitter.com/goreleaser">Twitter</a>!</li>
</ul>
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5ace4da2fd"><code>5ace4da</code></a>
ci: update changelog</li>
<li><a
href="f8ccc9df94"><code>f8ccc9d</code></a>
fix: file mode when type: tree (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/779">#779</a>)</li>
<li><a
href="48d1a19eb6"><code>48d1a19</code></a>
chore(deps): bump anchore/sbom-action from 0.15.6 to 0.15.7 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/778">#778</a>)</li>
<li><a
href="e1ebfdad10"><code>e1ebfda</code></a>
fix: honor SOURCE_DATE_EPOCH for files (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/775">#775</a>)</li>
<li><a
href="25f6f2b736"><code>25f6f2b</code></a>
chore(deps): bump anchore/sbom-action from 0.15.5 to 0.15.6 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/776">#776</a>)</li>
<li><a
href="fbc55c56be"><code>fbc55c5</code></a>
feat(deps): bump github.com/klauspost/compress from 1.17.4 to 1.17.5 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/774">#774</a>)</li>
<li><a
href="d83a672428"><code>d83a672</code></a>
chore(deps): bump anchore/sbom-action from 0.15.4 to 0.15.5 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/773">#773</a>)</li>
<li><a
href="995a27a6fb"><code>995a27a</code></a>
chore(deps): bump anchore/sbom-action from 0.15.3 to 0.15.4 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/772">#772</a>)</li>
<li><a
href="9c48b79596"><code>9c48b79</code></a>
feat(deps): bump github.com/ProtonMail/go-crypto (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/771">#771</a>)</li>
<li><a
href="e8832cc97b"><code>e8832cc</code></a>
chore(deps): bump actions/cache from 3.3.3 to 4.0.0 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/770">#770</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/goreleaser/nfpm/compare/v2.35.2...v2.35.3">compare
view</a></li>
</ul>
</details>
<br />
<details>
<summary>Most Recent Ignore Conditions Applied to This Pull
Request</summary>
| Dependency Name | Ignore Conditions |
| --- | --- |
| github.com/goreleaser/nfpm/v2 | [>= 2.24.a, < 2.25] |
</details>
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once it's up-to-date and CI passes on it,
as requested by @caarlos0.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/opencontainers/runc](https://github.com/opencontainers/runc)
from 1.1.5 to 1.1.12.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/opencontainers/runc/releases">github.com/opencontainers/runc's
releases</a>.</em></p>
<blockquote>
<h2>runc 1.1.12 -- "Now you're thinking with Portals™!"</h2>
<p>This is the twelfth patch release in the 1.1.z release branch of
runc.
It fixes a high-severity container breakout vulnerability involving
leaked file descriptors, and users are strongly encouraged to update as
soon as possible.</p>
<ul>
<li>
<p>Fix <a
href="https://github.com/opencontainers/runc/security/advisories/GHSA-xr7r-f8xq-vfvv">CVE-2024-21626</a>,
a container breakout attack that took advantage of
a file descriptor that was leaked internally within runc (but never
leaked to the container process).</p>
<p>In addition to fixing the leak, several strict hardening measures
were
added to ensure that future internal leaks could not be used to break
out in this manner again.</p>
<p>Based on our research, while no other container runtime had a similar
leak, none had any of the hardening steps we've introduced (and some
runtimes would not check for any file descriptors that a calling
process may have leaked to them, allowing for container breakouts due
to basic user error).</p>
</li>
</ul>
<h3>Static Linking Notices</h3>
<p>The <code>runc</code> binary distributed with this release are
<em>statically linked</em> with
the following <a
href="https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html">GNU
LGPL-2.1</a> licensed libraries, with <code>runc</code> acting
as a "work that uses the Library":</p>
<ul>
<li><a href="https://github.com/seccomp/libseccomp">libseccomp</a></li>
</ul>
<p>The versions of these libraries were not modified from their upstream
versions,
but in order to comply with the LGPL-2.1 (§6(a)), we have attached the
complete source code for those libraries which (when combined with the
attached
runc source code) may be used to exercise your rights under the
LGPL-2.1.</p>
<p>However we strongly suggest that you make use of your distribution's
packages
or download them from the authoritative upstream sources, especially
since
these libraries are related to the security of your containers.</p>
<!-- raw HTML omitted -->
<p>Thanks to all of the contributors who made this release possible:</p>
<ul>
<li>Aleksa Sarai <a
href="mailto:cyphar@cyphar.com">cyphar@cyphar.com</a></li>
<li>hang.jiang <a
href="mailto:hang.jiang@daocloud.io">hang.jiang@daocloud.io</a></li>
<li>lfbzhm <a
href="mailto:lifubang@acmcoder.com">lifubang@acmcoder.com</a></li>
</ul>
<p>Signed-off-by: Aleksa Sarai <a
href="mailto:cyphar@cyphar.com">cyphar@cyphar.com</a></p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/opencontainers/runc/blob/v1.1.12/CHANGELOG.md">github.com/opencontainers/runc's
changelog</a>.</em></p>
<blockquote>
<h2>[1.1.12] - 2024-01-31</h2>
<blockquote>
<p>Now you're thinking with Portals™!</p>
</blockquote>
<h3>Security</h3>
<ul>
<li>Fix <a
href="https://github.com/opencontainers/runc/security/advisories/GHSA-xr7r-f8xq-vfvv">CVE-2024-21626</a>,
a container breakout attack that took
advantage of a file descriptor that was leaked internally within runc
(but
never leaked to the container process). In addition to fixing the leak,
several strict hardening measures were added to ensure that future
internal
leaks could not be used to break out in this manner again. Based on our
research, while no other container runtime had a similar leak, none had
any
of the hardening steps we've introduced (and some runtimes would not
check
for any file descriptors that a calling process may have leaked to them,
allowing for container breakouts due to basic user error).</li>
</ul>
<h2>[1.1.11] - 2024-01-01</h2>
<blockquote>
<p>Happy New Year!</p>
</blockquote>
<h3>Fixed</h3>
<ul>
<li>Fix several issues with userns path handling. (<a
href="https://redirect.github.com/opencontainers/runc/issues/4122">#4122</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/4124">#4124</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/4134">#4134</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/4144">#4144</a>)</li>
</ul>
<h3>Changed</h3>
<ul>
<li>Support memory.peak and memory.swap.peak in cgroups v2.
Add <code>swapOnlyUsage</code> in <code>MemoryStats</code>. This field
reports swap-only usage.
For cgroupv1, <code>Usage</code> and <code>Failcnt</code> are set by
subtracting memory usage
from memory+swap usage. For cgroupv2, <code>Usage</code>,
<code>Limit</code>, and <code>MaxUsage</code>
are set. (<a
href="https://redirect.github.com/opencontainers/runc/issues/4000">#4000</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/4010">#4010</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/4131">#4131</a>)</li>
<li>build(deps): bump github.com/cyphar/filepath-securejoin. (<a
href="https://redirect.github.com/opencontainers/runc/issues/4140">#4140</a>)</li>
</ul>
<h2>[1.1.10] - 2023-10-31</h2>
<blockquote>
<p>Śruba, przykręcona we śnie, nie zmieni sytuacji, jaka panuje na
jawie.</p>
</blockquote>
<h3>Added</h3>
<ul>
<li>Support for <code>hugetlb.<pagesize>.rsvd</code> limiting and
accounting. Fixes the
issue of postres failing when hugepage limits are set. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3859">#3859</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/4077">#4077</a>)</li>
</ul>
<h3>Fixed</h3>
<ul>
<li>Fixed permissions of a newly created directories to not depend on
the value
of umask in tmpcopyup feature implementation. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3991">#3991</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/4060">#4060</a>)</li>
<li>libcontainer: cgroup v1 GetStats now ignores missing
<code>kmem.limit_in_bytes</code>
(fixes the compatibility with Linux kernel 6.1+). (<a
href="https://redirect.github.com/opencontainers/runc/issues/4028">#4028</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="51d5e94601"><code>51d5e94</code></a>
VERSION: release 1.1.12</li>
<li><a
href="2a4ed3e75b"><code>2a4ed3e</code></a>
merge 1.1-ghsa-xr7r-f8xq-vfvv into release-1.1</li>
<li><a
href="e9665f4d60"><code>e9665f4</code></a>
init: don't special-case logrus fds</li>
<li><a
href="683ad2ff3b"><code>683ad2f</code></a>
libcontainer: mark all non-stdio fds O_CLOEXEC before spawning init</li>
<li><a
href="b6633f48a8"><code>b6633f4</code></a>
cgroup: plug leaks of /sys/fs/cgroup handle</li>
<li><a
href="284ba3057e"><code>284ba30</code></a>
init: close internal fds before execve</li>
<li><a
href="fbe3eed1e5"><code>fbe3eed</code></a>
setns init: do explicit lookup of execve argument early</li>
<li><a
href="0994249a5e"><code>0994249</code></a>
init: verify after chdir that cwd is inside the container</li>
<li><a
href="506552a88b"><code>506552a</code></a>
Fix File to Close</li>
<li><a
href="099ff69336"><code>099ff69</code></a>
merge <a
href="https://redirect.github.com/opencontainers/runc/issues/4177">#4177</a>
into opencontainers/runc:release-1.1</li>
<li>Additional commits viewable in <a
href="https://github.com/opencontainers/runc/compare/v1.1.5...v1.1.12">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/goreleaser/goreleaser/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/google/go-containerregistry](https://github.com/google/go-containerregistry)
from 0.18.0 to 0.19.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/go-containerregistry/releases">github.com/google/go-containerregistry's
releases</a>.</em></p>
<blockquote>
<h2>v0.19.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Work around docker v25 tarballs by <a
href="https://github.com/jonjohnsonjr"><code>@jonjohnsonjr</code></a>
in <a
href="https://redirect.github.com/google/go-containerregistry/pull/1872">google/go-containerregistry#1872</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/google/go-containerregistry/compare/v0.18.0...v0.19.0">https://github.com/google/go-containerregistry/compare/v0.18.0...v0.19.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="8dadbe76ff"><code>8dadbe7</code></a>
Work around docker v25 tarballs (<a
href="https://redirect.github.com/google/go-containerregistry/issues/1872">#1872</a>)</li>
<li>See full diff in <a
href="https://github.com/google/go-containerregistry/compare/v0.18.0...v0.19.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.50.2 to 1.50.5.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.50.5 (2024-01-26)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/connect</code>: Updates service API</li>
<li><code>service/inspector2</code>: Updates service API and
documentation</li>
<li><code>service/sagemaker</code>: Updates service API and
documentation
<ul>
<li>Amazon SageMaker Automatic Model Tuning now provides an API to
programmatically delete tuning jobs.</li>
</ul>
</li>
</ul>
<h1>Release v1.50.4 (2024-01-25)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/acm-pca</code>: Updates service API, documentation,
and waiters</li>
<li><code>service/lightsail</code>: Updates service API and
documentation
<ul>
<li>This release adds support for IPv6-only instance plans.</li>
</ul>
</li>
</ul>
<h1>Release v1.50.3 (2024-01-24)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/ec2</code>: Updates service API and documentation
<ul>
<li>Introduced a new clientToken request parameter on CreateNetworkAcl
and CreateRouteTable APIs. The clientToken parameter allows idempotent
operations on the APIs.</li>
</ul>
</li>
<li><code>service/ecs</code>: Updates service documentation
<ul>
<li>Documentation updates for Amazon ECS.</li>
</ul>
</li>
<li><code>service/outposts</code>: Updates service API</li>
<li><code>service/rds</code>: Updates service API, documentation,
waiters, paginators, and examples
<ul>
<li>This release adds support for Aurora Limitless Database.</li>
</ul>
</li>
<li><code>service/storagegateway</code>: Updates service API and
documentation
<ul>
<li>Add DeprecationDate and SoftwareVersion to response of
ListGateways.</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="32e0058e28"><code>32e0058</code></a>
Release v1.50.5 (2024-01-26) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5154">#5154</a>)</li>
<li><a
href="d5e1369ac3"><code>d5e1369</code></a>
Release v1.50.4 (2024-01-25) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5152">#5152</a>)</li>
<li><a
href="15beed0ddd"><code>15beed0</code></a>
Release v1.50.3 (2024-01-24) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5151">#5151</a>)</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.50.2...v1.50.5">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.50.1 to 1.50.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.50.2 (2024-01-23)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/inspector2</code>: Updates service API, documentation,
and paginators</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="8fd61086a3"><code>8fd6108</code></a>
Release v1.50.2 (2024-01-23) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5150">#5150</a>)</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.50.1...v1.50.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.50.0 to 1.50.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.50.1 (2024-01-22)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/appconfigdata</code>: Adds new service</li>
<li><code>service/cloud9</code>: Updates service documentation
<ul>
<li>Doc-only update around removing AL1 from list of available AMIs for
Cloud9</li>
</ul>
</li>
<li><code>service/connectcases</code>: Updates service API,
documentation, and paginators</li>
<li><code>service/ec2</code>: Updates service documentation
<ul>
<li>Documentation updates for Amazon EC2.</li>
</ul>
</li>
<li><code>service/ecs</code>: Updates service API and documentation
<ul>
<li>This release adds support for Transport Layer Security (TLS) and
Configurable Timeout to ECS Service Connect. TLS facilitates privacy and
data security for inter-service communications, while Configurable
Timeout allows customized per-request timeout and idle timeout for
Service Connect services.</li>
</ul>
</li>
<li><code>service/finspace</code>: Updates service API</li>
<li><code>service/organizations</code>: Updates service documentation
<ul>
<li>Doc only update for quota increase change</li>
</ul>
</li>
<li><code>service/rds</code>: Updates service API, documentation,
waiters, paginators, and examples
<ul>
<li>Introduced support for the InsufficientDBInstanceCapacityFault error
in the RDS CreateDBCluster API method. This provides enhanced error
handling, ensuring a more robust experience when creating database
clusters with insufficient instance capacity.</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a91b4e6eea"><code>a91b4e6</code></a>
Release v1.50.1 (2024-01-22) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5149">#5149</a>)</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.50.0...v1.50.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.49.24 to 1.50.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.50.0 (2024-01-19)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/athena</code>: Updates service API and documentation
<ul>
<li>Introducing new NotebookS3LocationUri parameter to Athena
ImportNotebook API. Payload is no longer required and either Payload or
NotebookS3LocationUri needs to be provided (not both) for a successful
ImportNotebook API call. If both are provided, an
InvalidRequestException will be thrown.</li>
</ul>
</li>
<li><code>service/codebuild</code>: Updates service API, documentation,
and paginators
<ul>
<li>Release CodeBuild Reserved Capacity feature</li>
</ul>
</li>
<li><code>service/dynamodb</code>: Updates service API, documentation,
waiters, paginators, and examples
<ul>
<li>This release adds support for including
ApproximateCreationDateTimePrecision configurations in
EnableKinesisStreamingDestination API, adds the same as an optional
field in the response of DescribeKinesisStreamingDestination, and adds
support for a new UpdateKinesisStreamingDestination API.</li>
</ul>
</li>
<li><code>service/qconnect</code>: Updates service API</li>
</ul>
<h3>SDK Features</h3>
<ul>
<li><code>service/cloudfrontkeyvaluestore</code>: Deprecate
cloudfrontkeyvaluestore
<ul>
<li>This change removes the cloudfrontkeyvaluestore service, since it
does not support sigv4a.</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="63e7f600c2"><code>63e7f60</code></a>
Release v1.50.0 (2024-01-19) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5147">#5147</a>)</li>
<li><a
href="f55d9b1149"><code>f55d9b1</code></a>
Remove cloudfrontkeyvaluestore (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5146">#5146</a>)</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.49.24...v1.50.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.49.22 to 1.49.23.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.49.23 (2024-01-17)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/dynamodb</code>: Updates service API, documentation,
waiters, paginators, and examples
<ul>
<li>Updating note for enabling streams for UpdateTable.</li>
</ul>
</li>
<li><code>service/keyspaces</code>: Updates service API and
documentation</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="d264d16096"><code>d264d16</code></a>
Release v1.49.23 (2024-01-17) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5144">#5144</a>)</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.49.22...v1.49.23">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.95.2 to 0.96.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="63caa488c1"><code>63caa48</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1866">#1866</a>
from cenkalti/notes</li>
<li><a
href="42426a3f2b"><code>42426a3</code></a>
Try to follow order in the docs</li>
<li><a
href="4bbd9e29e1"><code>4bbd9e2</code></a>
add missing fields in Note struct</li>
<li><a
href="57c03d9cba"><code>57c03d9</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1863">#1863</a>
from TheCodear/feat/update-project-variables</li>
<li><a
href="28f5cd4ed8"><code>28f5cd4</code></a>
Fix test after reodering</li>
<li><a
href="c3f82c2c7a"><code>c3f82c2</code></a>
format source code</li>
<li><a
href="80a3897b5a"><code>80a3897</code></a>
update project variables client with description field</li>
<li><a
href="4e7fdb74c0"><code>4e7fdb7</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1864">#1864</a>
from xuxiaowei-com-cn/project_level_variables/descri...</li>
<li><a
href="8e7e14bedd"><code>8e7e14b</code></a>
Update ordering</li>
<li><a
href="1256139f16"><code>1256139</code></a>
✨ Project-level CI/CD variables API: add description</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.95.2...v0.96.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.49.21 to 1.49.22.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.49.22 (2024-01-16)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/iot</code>: Updates service API
<ul>
<li>Revert release of LogTargetTypes</li>
</ul>
</li>
<li><code>service/iotfleetwise</code>: Updates service API and
documentation</li>
<li><code>service/macie2</code>: Updates service API and
documentation</li>
<li><code>service/payment-cryptography</code>: Updates service API and
documentation</li>
<li><code>service/personalize</code>: Updates service documentation</li>
<li><code>service/personalize-runtime</code>: Updates service
documentation</li>
<li><code>service/rekognition</code>: Updates service API and
documentation
<ul>
<li>This release adds ContentType and TaxonomyLevel attributes to
DetectModerationLabels and GetMediaAnalysisJob API responses.</li>
</ul>
</li>
<li><code>service/securityhub</code>: Updates service documentation</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="d9a3e6a5dd"><code>d9a3e6a</code></a>
Release v1.49.22 (2024-01-16) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5143">#5143</a>)</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.49.21...v1.49.22">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [gocloud.dev](https://github.com/google/go-cloud) from 0.35.0 to
0.36.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/go-cloud/releases">gocloud.dev's
releases</a>.</em></p>
<blockquote>
<h2>v0.36.0</h2>
<p><strong>blob</strong></p>
<ul>
<li><strong>all</strong>: Allow disabling of <code>ContentType</code>
auto-detection during writes.</li>
</ul>
<p><strong>pubsub</strong></p>
<ul>
<li><strong>azuresb</strong>: Added a new auth method to support Service
principal/kubelet identity/Workload identity auth methods.</li>
</ul>
<p><strong>docstore</strong></p>
<ul>
<li><strong>all</strong>: Add in/not-in operators for Query.</li>
<li><strong>gcpfirestore</strong>: Added a missing resource header when
running query.</li>
</ul>
<p><strong>mysql</strong></p>
<ul>
<li>Pass TLS config directly to MySQL's config</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="01064b751a"><code>01064b7</code></a>
all: prerelease</li>
<li><a
href="92114ef433"><code>92114ef</code></a>
mysql: pass TLS config directly to MySQL's config (<a
href="https://redirect.github.com/google/go-cloud/issues/3348">#3348</a>)</li>
<li><a
href="97fe9d0425"><code>97fe9d0</code></a>
docstore/all: Add in/not-in operators for Query</li>
<li><a
href="4fe95eea2d"><code>4fe95ee</code></a>
blob/all: Allow disabling of ContentType auto-detection during writes
(<a
href="https://redirect.github.com/google/go-cloud/issues/3371">#3371</a>)</li>
<li><a
href="1dbbbb3e64"><code>1dbbbb3</code></a>
pubsub/azuresb: minor comments and fixes (<a
href="https://redirect.github.com/google/go-cloud/issues/3370">#3370</a>)</li>
<li><a
href="2090984208"><code>2090984</code></a>
all: update golang.org/x/crypto (<a
href="https://redirect.github.com/google/go-cloud/issues/3369">#3369</a>)</li>
<li><a
href="ddc7b99101"><code>ddc7b99</code></a>
pubsub/azuresb: new auth method to support Service principal/kubelet
identit...</li>
<li><a
href="c770de8217"><code>c770de8</code></a>
docstore/gcpfirestore: Add missing resource header when running
query</li>
<li><a
href="e86400ea40"><code>e86400e</code></a>
pubsub/awssnssqs: Remove hack for broken AWS error codes now that
they've fix...</li>
<li><a
href="8c8f558aff"><code>8c8f558</code></a>
all: postrelease (<a
href="https://redirect.github.com/google/go-cloud/issues/3351">#3351</a>)</li>
<li>See full diff in <a
href="https://github.com/google/go-cloud/compare/v0.35.0...v0.36.0">compare
view</a></li>
</ul>
</details>
<br />
<details>
<summary>Most Recent Ignore Conditions Applied to This Pull
Request</summary>
| Dependency Name | Ignore Conditions |
| --- | --- |
| gocloud.dev | [>= 0.25.a, < 0.26] |
</details>
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/sync](https://github.com/golang/sync) from 0.5.0 to
0.6.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="59c1ca1e46"><code>59c1ca1</code></a>
errgroup: add reference to sync.WaitGroup</li>
<li>See full diff in <a
href="https://github.com/golang/sync/compare/v0.5.0...v0.6.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
dependabot[bot]
Carlos Alexandro Becker