Bumps golang from `8c9183f` to `ff45d87`.
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang&package-manager=docker&previous-version=1.22.5-alpine&new-version=1.22.5-alpine)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps
[docker/setup-qemu-action](https://github.com/docker/setup-qemu-action)
from 3.1.0 to 3.2.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/setup-qemu-action/releases">docker/setup-qemu-action's
releases</a>.</em></p>
<blockquote>
<h2>v3.2.0</h2>
<ul>
<li>Bump <code>@docker/actions-toolkit</code> from 0.31.0 to 0.35.0 in
<a
href="https://redirect.github.com/docker/setup-qemu-action/pull/154">docker/setup-qemu-action#154</a>
<a
href="https://redirect.github.com/docker/setup-qemu-action/pull/155">docker/setup-qemu-action#155</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/docker/setup-qemu-action/compare/v3.1.0...v3.2.0">https://github.com/docker/setup-qemu-action/compare/v3.1.0...v3.2.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="49b3bc8e6b"><code>49b3bc8</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/setup-qemu-action/issues/155">#155</a>
from docker/dependabot/npm_and_yarn/docker/actions-to...</li>
<li><a
href="9dec05bc9d"><code>9dec05b</code></a>
chore: update generated content</li>
<li><a
href="73387bcb62"><code>73387bc</code></a>
build(deps): bump <code>@docker/actions-toolkit</code> from 0.34.0 to
0.35.0</li>
<li><a
href="fcfabe0054"><code>fcfabe0</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/setup-qemu-action/issues/154">#154</a>
from docker/dependabot/npm_and_yarn/docker/actions-to...</li>
<li><a
href="948a838253"><code>948a838</code></a>
chore: update generated content</li>
<li><a
href="31629f69bf"><code>31629f6</code></a>
switch to Docker exec</li>
<li><a
href="6ae1d4dea8"><code>6ae1d4d</code></a>
build(deps): bump <code>@docker/actions-toolkit</code> from 0.31.0 to
0.34.0</li>
<li>See full diff in <a
href="5927c834f5...49b3bc8e6b">compare
view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/setup-qemu-action&package-manager=github_actions&previous-version=3.1.0&new-version=3.2.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[docker/setup-buildx-action](https://github.com/docker/setup-buildx-action)
from 3.4.0 to 3.5.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/setup-buildx-action/releases">docker/setup-buildx-action's
releases</a>.</em></p>
<blockquote>
<h2>v3.5.0</h2>
<ul>
<li>Bump <code>@docker/actions-toolkit</code> from 0.31.0 to 0.35.0 in
<a
href="https://redirect.github.com/docker/setup-buildx-action/pull/340">docker/setup-buildx-action#340</a>
<a
href="https://redirect.github.com/docker/setup-buildx-action/pull/344">docker/setup-buildx-action#344</a>
<a
href="https://redirect.github.com/docker/setup-buildx-action/pull/345">docker/setup-buildx-action#345</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/docker/setup-buildx-action/compare/v3.4.0...v3.5.0">https://github.com/docker/setup-buildx-action/compare/v3.4.0...v3.5.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="aa33708b10"><code>aa33708</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/setup-buildx-action/issues/345">#345</a>
from docker/dependabot/npm_and_yarn/docker/actions-to...</li>
<li><a
href="2d99e3412d"><code>2d99e34</code></a>
chore: update generated content</li>
<li><a
href="4dab43650b"><code>4dab436</code></a>
build(deps): bump <code>@docker/actions-toolkit</code> from 0.34.0 to
0.35.0</li>
<li><a
href="49a04d6890"><code>49a04d6</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/setup-buildx-action/issues/344">#344</a>
from docker/dependabot/npm_and_yarn/docker/actions-to...</li>
<li><a
href="a6ade2e34f"><code>a6ade2e</code></a>
chore: update generated content</li>
<li><a
href="2f2694b8d1"><code>2f2694b</code></a>
switch to Docker exec</li>
<li><a
href="0a4bab6632"><code>0a4bab6</code></a>
build(deps): bump <code>@docker/actions-toolkit</code> from 0.32.0 to
0.34.0</li>
<li><a
href="2ad185228a"><code>2ad1852</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/setup-buildx-action/issues/340">#340</a>
from docker/dependabot/npm_and_yarn/docker/actions-to...</li>
<li><a
href="560ac469d6"><code>560ac46</code></a>
chore: update generated content</li>
<li><a
href="b3a341759e"><code>b3a3417</code></a>
build(deps): bump <code>@docker/actions-toolkit</code> from 0.31.0 to
0.32.0</li>
<li>See full diff in <a
href="4fd812986e...aa33708b10">compare
view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/setup-buildx-action&package-manager=github_actions&previous-version=3.4.0&new-version=3.5.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [docker/login-action](https://github.com/docker/login-action) from
3.2.0 to 3.3.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/login-action/releases">docker/login-action's
releases</a>.</em></p>
<blockquote>
<h2>v3.3.0</h2>
<ul>
<li>Bump <code>@docker/actions-toolkit</code> from 0.24.0 to 0.35.0 in
<a
href="https://redirect.github.com/docker/login-action/pull/754">docker/login-action#754</a></li>
<li>Bump https-proxy-agent from 7.0.4 to 7.0.5 in <a
href="https://redirect.github.com/docker/login-action/pull/741">docker/login-action#741</a></li>
<li>Bump braces from 3.0.2 to 3.0.3 in <a
href="https://redirect.github.com/docker/login-action/pull/730">docker/login-action#730</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/docker/login-action/compare/v3.2.0...v3.3.0">https://github.com/docker/login-action/compare/v3.2.0...v3.3.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9780b0c442"><code>9780b0c</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/741">#741</a>
from docker/dependabot/npm_and_yarn/proxy-agent-depen...</li>
<li><a
href="2fa130caf4"><code>2fa130c</code></a>
chore: update generated content</li>
<li><a
href="5e87b2aca7"><code>5e87b2a</code></a>
build(deps): bump https-proxy-agent</li>
<li><a
href="e0394952ce"><code>e039495</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/754">#754</a>
from docker/dependabot/npm_and_yarn/docker/actions-to...</li>
<li><a
href="9af18aa7d8"><code>9af18aa</code></a>
chore: update generated content</li>
<li><a
href="668190adc5"><code>668190a</code></a>
switch to Docker exec</li>
<li><a
href="be5150d9fe"><code>be5150d</code></a>
build(deps): bump <code>@docker/actions-toolkit</code> from 0.24.0 to
0.35.0</li>
<li><a
href="e80ebcad71"><code>e80ebca</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/730">#730</a>
from docker/dependabot/npm_and_yarn/braces-3.0.3</li>
<li><a
href="75ee3eaf53"><code>75ee3ea</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/login-action/issues/733">#733</a>
from docker/dependabot/github_actions/docker/bake-act...</li>
<li><a
href="793c19c8fc"><code>793c19c</code></a>
build(deps): bump docker/bake-action from 4 to 5</li>
<li>Additional commits viewable in <a
href="0d4c9c5ea7...9780b0c442">compare
view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/login-action&package-manager=github_actions&previous-version=3.2.0&new-version=3.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.54.18 to 1.55.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.55.0 (2024-07-22)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/datazone</code>: Updates service API, documentation,
and paginators</li>
<li><code>service/ivs</code>: Updates service API and documentation</li>
<li><code>service/redshift-serverless</code>: Updates service API and
documentation</li>
</ul>
<h3>SDK Features</h3>
<ul>
<li><code>service/mobile</code>: Remove Mobile
<ul>
<li>This change removes the Mobile service, which has been
deprecated.</li>
</ul>
</li>
</ul>
<h3>SDK Bugs</h3>
<ul>
<li>Apply sensitive struct tag to lists/maps with sensitive members.
<ul>
<li>This change propagates existing sensitive protection to
lists/maps.</li>
</ul>
</li>
</ul>
<h1>Release v1.54.20 (2024-07-18)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/acm-pca</code>: Updates service waiters</li>
<li><code>service/connect</code>: Updates service API, documentation,
and paginators</li>
<li><code>service/ec2</code>: Updates service API and documentation
<ul>
<li>Amazon VPC IP Address Manager (IPAM) now supports Bring-Your-Own-IP
(BYOIP) for IP addresses registered with any Internet Registry. This
feature uses DNS TXT records to validate ownership of a public IP
address range.</li>
</ul>
</li>
<li><code>service/firehose</code>: Updates service API and documentation
<ul>
<li>This release 1) Add configurable buffering hints for Snowflake as
destination. 2) Add ReadFromTimestamp for MSK As Source. Firehose will
start reading data from MSK Cluster using offset associated with this
timestamp. 3) Gated public beta release to add Apache Iceberg tables as
destination.</li>
</ul>
</li>
<li><code>service/ivschat</code>: Updates service API, documentation,
and waiters</li>
<li><code>service/medialive</code>: Updates service API and
documentation
<ul>
<li>AWS Elemental MediaLive now supports the SRT protocol via the new
SRT Caller input type.</li>
</ul>
</li>
<li><code>service/rds</code>: Updates service API, documentation,
waiters, paginators, and examples
<ul>
<li>Updates Amazon RDS documentation to specify an eventual consistency
model for DescribePendingMaintenanceActions.</li>
</ul>
</li>
<li><code>service/sagemaker</code>: Updates service API
<ul>
<li>SageMaker Training supports R5, T3 and R5D instances family. And
SageMaker Processing supports G5 and R5D instances family.</li>
</ul>
</li>
<li><code>service/secretsmanager</code>: Updates service documentation
<ul>
<li>Doc only update for Secrets Manager</li>
</ul>
</li>
<li><code>service/taxsettings</code>: Updates service API</li>
<li><code>service/timestream-query</code>: Updates service API and
documentation</li>
<li><code>service/workspaces-thin-client</code>: Updates service API and
documentation</li>
</ul>
<h1>Release v1.54.19 (2024-07-12)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/acm-pca</code>: Updates service API, documentation,
waiters, and paginators</li>
<li><code>service/arc-zonal-shift</code>: Updates service API and
documentation</li>
<li><code>service/autoscaling</code>: Adds new service
<ul>
<li>Add v2 smoke tests and smithy smokeTests trait for SDK testing.</li>
</ul>
</li>
<li><code>service/codebuild</code>: Adds new service
<ul>
<li>Add v2 smoke tests and smithy smokeTests trait for SDK testing.</li>
</ul>
</li>
<li><code>service/dynamodb</code>: Updates service API, documentation,
waiters, paginators, and examples</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3c1fb65900"><code>3c1fb65</code></a>
Release v1.55.0 (2024-07-22) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5314">#5314</a>)</li>
<li><a
href="e65d388936"><code>e65d388</code></a>
Merge pull request <a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5313">#5313</a>
from aws/fix-sensitivelistmap</li>
<li><a
href="4e433e17ad"><code>4e433e1</code></a>
fix sensitive missing on list/map</li>
<li><a
href="e8ff775f9a"><code>e8ff775</code></a>
remove deprecated mobile service (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5312">#5312</a>)</li>
<li><a
href="019bed03fa"><code>019bed0</code></a>
Release v1.54.20 (2024-07-18) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5311">#5311</a>)</li>
<li><a
href="943e6659c3"><code>943e665</code></a>
Release v1.54.19 (2024-07-12) (<a
href="https://redirect.github.com/aws/aws-sdk-go/issues/5309">#5309</a>)</li>
<li>See full diff in <a
href="https://github.com/aws/aws-sdk-go/compare/v1.54.18...v1.55.0">compare
view</a></li>
</ul>
</details>
<br />
<details>
<summary>Most Recent Ignore Conditions Applied to This Pull
Request</summary>
| Dependency Name | Ignore Conditions |
| --- | --- |
| github.com/aws/aws-sdk-go | [< 1.53, > 1.52.0] |
| github.com/aws/aws-sdk-go | [< 1.54, > 1.53.0] |
| github.com/aws/aws-sdk-go | [< 1.55, > 1.54.0] |
</details>
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/aws/aws-sdk-go&package-manager=go_modules&previous-version=1.54.18&new-version=1.55.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
**Note:** Dependabot was ignoring updates to this dependency, but since
you've updated it yourself we've started tracking it for you again. 🤖
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github/codeql-action](https://github.com/github/codeql-action)
from 3.25.12 to 3.25.13.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's
changelog</a>.</em></p>
<blockquote>
<h1>CodeQL Action Changelog</h1>
<p>See the <a
href="https://github.com/github/codeql-action/releases">releases
page</a> for the relevant changes to the CodeQL CLI and language
packs.</p>
<p>Note that the only difference between <code>v2</code> and
<code>v3</code> of the CodeQL Action is the node version they support,
with <code>v3</code> running on node 20 while we continue to release
<code>v2</code> to support running on node 16. For example
<code>3.22.11</code> was the first <code>v3</code> release and is
functionally identical to <code>2.22.11</code>. This approach ensures an
easy way to track exactly which features are included in different
versions, indicated by the minor and patch version numbers.</p>
<h2>[UNRELEASED]</h2>
<p>No user facing changes.</p>
<h2>3.25.13 - 19 Jul 2024</h2>
<ul>
<li>Add <code>codeql-version</code> to outputs. <a
href="https://redirect.github.com/github/codeql-action/pull/2368">#2368</a></li>
<li>Add a deprecation warning for customers using CodeQL version 2.13.4
and earlier. These versions of CodeQL were discontinued on 9 July 2024
alongside GitHub Enterprise Server 3.9, and will be unsupported by
CodeQL Action versions 3.26.0 and later and versions 2.26.0 and later.
<a
href="https://redirect.github.com/github/codeql-action/pull/2375">#2375</a>
<ul>
<li>If you are using one of these versions, please update to CodeQL CLI
version 2.13.5 or later. For instance, if you have specified a custom
version of the CLI using the 'tools' input to the 'init' Action, you can
remove this input to use the default version.</li>
<li>Alternatively, if you want to continue using a version of the CodeQL
CLI between 2.12.6 and 2.13.4, you can replace
<code>github/codeql-action/*@v3</code> by
<code>github/codeql-action/*@v3.25.13</code> and
<code>github/codeql-action/*@v2</code> by
<code>github/codeql-action/*@v2.25.13</code> in your code scanning
workflow to ensure you continue using this version of the CodeQL
Action.</li>
</ul>
</li>
</ul>
<h2>3.25.12 - 12 Jul 2024</h2>
<ul>
<li>Improve the reliability and performance of analyzing code when
analyzing a compiled language with the <code>autobuild</code> <a
href="https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages#codeql-build-modes">build
mode</a> on GitHub Enterprise Server. This feature is already available
to GitHub.com users. <a
href="https://redirect.github.com/github/codeql-action/pull/2353">#2353</a></li>
<li>Update default CodeQL bundle version to 2.18.0. <a
href="https://redirect.github.com/github/codeql-action/pull/2364">#2364</a></li>
</ul>
<h2>3.25.11 - 28 Jun 2024</h2>
<ul>
<li>Avoid failing the workflow run if there is an error while uploading
debug artifacts. <a
href="https://redirect.github.com/github/codeql-action/pull/2349">#2349</a></li>
<li>Update default CodeQL bundle version to 2.17.6. <a
href="https://redirect.github.com/github/codeql-action/pull/2352">#2352</a></li>
</ul>
<h2>3.25.10 - 13 Jun 2024</h2>
<ul>
<li>Update default CodeQL bundle version to 2.17.5. <a
href="https://redirect.github.com/github/codeql-action/pull/2327">#2327</a></li>
</ul>
<h2>3.25.9 - 12 Jun 2024</h2>
<ul>
<li>Avoid failing database creation if the database folder already
exists and contains some unexpected files. Requires CodeQL 2.18.0 or
higher. <a
href="https://redirect.github.com/github/codeql-action/pull/2330">#2330</a></li>
<li>The init Action will attempt to clean up the database cluster
directory before creating a new database and at the end of the job. This
will help to avoid issues where the database cluster directory is left
in an inconsistent state. <a
href="https://redirect.github.com/github/codeql-action/pull/2332">#2332</a></li>
</ul>
<h2>3.25.8 - 04 Jun 2024</h2>
<ul>
<li>Update default CodeQL bundle version to 2.17.4. <a
href="https://redirect.github.com/github/codeql-action/pull/2321">#2321</a></li>
</ul>
<h2>3.25.7 - 31 May 2024</h2>
<ul>
<li>We are rolling out a feature in May/June 2024 that will reduce the
Actions cache usage of the Action by keeping only the newest TRAP cache
for each language. <a
href="https://redirect.github.com/github/codeql-action/pull/2306">#2306</a></li>
</ul>
<h2>3.25.6 - 20 May 2024</h2>
<ul>
<li>Update default CodeQL bundle version to 2.17.3. <a
href="https://redirect.github.com/github/codeql-action/pull/2295">#2295</a></li>
</ul>
<h2>3.25.5 - 13 May 2024</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2d790406f5"><code>2d79040</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2379">#2379</a>
from github/update-v3.25.13-270a29d1c</li>
<li><a
href="232a8bc80e"><code>232a8bc</code></a>
Update changelog for v3.25.13</li>
<li><a
href="270a29d1cc"><code>270a29d</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2375">#2375</a>
from github/update-supported-enterprise-server-versions</li>
<li><a
href="58f46da2c3"><code>58f46da</code></a>
Add changelog note</li>
<li><a
href="f2166816d7"><code>f216681</code></a>
Announce deprecation of CodeQL v2.13.4 and earlier</li>
<li><a
href="8e147925e0"><code>8e14792</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2374">#2374</a>
from github/aeisenberg/eslint</li>
<li><a
href="e6663d9fa2"><code>e6663d9</code></a>
Update supported GitHub Enterprise Server versions</li>
<li><a
href="455bd98666"><code>455bd98</code></a>
Update checked-in dependencies</li>
<li><a
href="778c2bc28d"><code>778c2bc</code></a>
Fix eslint configuration</li>
<li><a
href="3cf7236447"><code>3cf7236</code></a>
Migrate to <code>eslint.config.mjs</code></li>
<li>Additional commits viewable in <a
href="4fa2a79536...2d790406f5">compare
view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/codeql-action&package-manager=github_actions&previous-version=3.25.12&new-version=3.25.13)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/google/go-containerregistry](https://github.com/google/go-containerregistry)
from 0.20.0 to 0.20.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/go-containerregistry/releases">github.com/google/go-containerregistry's
releases</a>.</em></p>
<blockquote>
<h2>v0.20.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Create <code>remote.Push</code> by <a
href="https://github.com/mattmoor"><code>@mattmoor</code></a> in <a
href="https://redirect.github.com/google/go-containerregistry/pull/1978">google/go-containerregistry#1978</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/google/go-containerregistry/compare/v0.20.0...v0.20.1">https://github.com/google/go-containerregistry/compare/v0.20.0...v0.20.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="c3d1dcc932"><code>c3d1dcc</code></a>
Create <code>remote.Push</code> (<a
href="https://redirect.github.com/google/go-containerregistry/issues/1978">#1978</a>)</li>
<li>See full diff in <a
href="https://github.com/google/go-containerregistry/compare/v0.20.0...v0.20.1">compare
view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/google/go-containerregistry&package-manager=go_modules&previous-version=0.20.0&new-version=0.20.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
<!--
Hi, thanks for contributing!
Please make sure you read our CONTRIBUTING guide.
Also, add tests and the respective documentation changes as well.
-->
<!-- If applied, this commit will... -->
...
<!-- Why is this change being made? -->
Even though `^\.?(\.\/[^\/]?.*)?$` was matching with `./cmd/main.go`, I
spent ~10m to figure this out why it was complaining. And noticed that,
we were returning the same error on different case, which is `HasSuffix`
check. Let's clarify the error message a bit for better UX.
<!-- # Provide links to any relevant tickets, URLs or other resources
-->
...
Signed-off-by: Furkan <furkan.turkal@trendyol.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.106.0 to 0.107.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="32b7839081"><code>32b7839</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1971">#1971</a>
from PatrickRice-KSC/add-support-for-default-branch-...</li>
<li><a
href="473bbdf7a0"><code>473bbdf</code></a>
Fix comments and pointers</li>
<li><a
href="69412a46b5"><code>69412a4</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1966">#1966</a>
from bearx3f/main</li>
<li><a
href="2ea42f2787"><code>2ea42f2</code></a>
small change as suggestion</li>
<li><a
href="7116698cfa"><code>7116698</code></a>
Add support to Groups APIs for DefaultBranchDefaults</li>
<li><a
href="ec404fa24d"><code>ec404fa</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1969">#1969</a>
from perrze/change-VariableType-type</li>
<li><a
href="7f1e0f7e20"><code>7f1e0f7</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1970">#1970</a>
from deepflame/feature/update-jira-integration</li>
<li><a
href="138b042615"><code>138b042</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1958">#1958</a>
from nanjingfm/feat/add-group-member-api</li>
<li><a
href="c22fdc7ab9"><code>c22fdc7</code></a>
feat: add inherited group member api</li>
<li><a
href="e43897f34d"><code>e43897f</code></a>
Add tests for authentication types</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.106.0...v0.107.0">compare
view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/xanzy/go-gitlab&package-manager=go_modules&previous-version=0.106.0&new-version=0.107.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/charmbracelet/lipgloss](https://github.com/charmbracelet/lipgloss)
from 0.12.0 to 0.12.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/charmbracelet/lipgloss/releases">github.com/charmbracelet/lipgloss's
releases</a>.</em></p>
<blockquote>
<h2>v0.12.1</h2>
<p>This release fixes a regression with regard to border calculations
introduced in Lip Gloss v0.11.1.</p>
<hr />
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
<p>Thoughts? Questions? We love hearing from you. Feel free to reach out
on <a href="https://twitter.com/charmcli">Twitter</a>, <a
href="https://mastodon.technology/@charm">The Fediverse</a>, or on <a
href="https://charm.sh/chat">Discord</a>.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="670898dc36"><code>670898d</code></a>
chore: retract v0.11.1</li>
<li><a
href="1b3672b319"><code>1b3672b</code></a>
chore: upgrade x/ansi to v0.1.4</li>
<li>See full diff in <a
href="https://github.com/charmbracelet/lipgloss/compare/v0.12.0...v0.12.1">compare
view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/charmbracelet/lipgloss&package-manager=go_modules&previous-version=0.12.0&new-version=0.12.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/caarlos0/log](https://github.com/caarlos0/log) from
0.4.5 to 0.4.6.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/caarlos0/log/releases">github.com/caarlos0/log's
releases</a>.</em></p>
<blockquote>
<h2>v0.4.6</h2>
<h2>Changelog</h2>
<h3>Other work</h3>
<ul>
<li>06d70bcb12eea57ffa7971bc77e6c9f96824db3f: ci: update goreleaser conf
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<hr />
<p><em>Released with <a href="https://goreleaser.com/pro">GoReleaser
Pro</a>!</em></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5a2932ab1d"><code>5a2932a</code></a>
chore(deps): bump github.com/charmbracelet/lipgloss from 0.11.0 to
0.12.0 (<a
href="https://redirect.github.com/caarlos0/log/issues/36">#36</a>)</li>
<li><a
href="3e89e5b88f"><code>3e89e5b</code></a>
chore(deps): bump goreleaser/goreleaser-action from 5 to 6 (<a
href="https://redirect.github.com/caarlos0/log/issues/34">#34</a>)</li>
<li><a
href="06d70bcb12"><code>06d70bc</code></a>
ci: update goreleaser conf</li>
<li>See full diff in <a
href="https://github.com/caarlos0/log/compare/v0.4.5...v0.4.6">compare
view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/caarlos0/log&package-manager=go_modules&previous-version=0.4.5&new-version=0.4.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github/codeql-action](https://github.com/github/codeql-action)
from 3.25.11 to 3.25.12.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's
changelog</a>.</em></p>
<blockquote>
<h1>CodeQL Action Changelog</h1>
<p>See the <a
href="https://github.com/github/codeql-action/releases">releases
page</a> for the relevant changes to the CodeQL CLI and language
packs.</p>
<p>Note that the only difference between <code>v2</code> and
<code>v3</code> of the CodeQL Action is the node version they support,
with <code>v3</code> running on node 20 while we continue to release
<code>v2</code> to support running on node 16. For example
<code>3.22.11</code> was the first <code>v3</code> release and is
functionally identical to <code>2.22.11</code>. This approach ensures an
easy way to track exactly which features are included in different
versions, indicated by the minor and patch version numbers.</p>
<h2>[UNRELEASED]</h2>
<ul>
<li>Add <code>codeql-version</code> to outputs. <a
href="https://redirect.github.com/github/codeql-action/pull/2368">#2368</a></li>
</ul>
<h2>3.25.12 - 12 Jul 2024</h2>
<ul>
<li>Improve the reliability and performance of analyzing code when
analyzing a compiled language with the <code>autobuild</code> <a
href="https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages#codeql-build-modes">build
mode</a> on GitHub Enterprise Server. This feature is already available
to GitHub.com users. <a
href="https://redirect.github.com/github/codeql-action/pull/2353">#2353</a></li>
<li>Update default CodeQL bundle version to 2.18.0. <a
href="https://redirect.github.com/github/codeql-action/pull/2364">#2364</a></li>
</ul>
<h2>3.25.11 - 28 Jun 2024</h2>
<ul>
<li>Avoid failing the workflow run if there is an error while uploading
debug artifacts. <a
href="https://redirect.github.com/github/codeql-action/pull/2349">#2349</a></li>
<li>Update default CodeQL bundle version to 2.17.6. <a
href="https://redirect.github.com/github/codeql-action/pull/2352">#2352</a></li>
</ul>
<h2>3.25.10 - 13 Jun 2024</h2>
<ul>
<li>Update default CodeQL bundle version to 2.17.5. <a
href="https://redirect.github.com/github/codeql-action/pull/2327">#2327</a></li>
</ul>
<h2>3.25.9 - 12 Jun 2024</h2>
<ul>
<li>Avoid failing database creation if the database folder already
exists and contains some unexpected files. Requires CodeQL 2.18.0 or
higher. <a
href="https://redirect.github.com/github/codeql-action/pull/2330">#2330</a></li>
<li>The init Action will attempt to clean up the database cluster
directory before creating a new database and at the end of the job. This
will help to avoid issues where the database cluster directory is left
in an inconsistent state. <a
href="https://redirect.github.com/github/codeql-action/pull/2332">#2332</a></li>
</ul>
<h2>3.25.8 - 04 Jun 2024</h2>
<ul>
<li>Update default CodeQL bundle version to 2.17.4. <a
href="https://redirect.github.com/github/codeql-action/pull/2321">#2321</a></li>
</ul>
<h2>3.25.7 - 31 May 2024</h2>
<ul>
<li>We are rolling out a feature in May/June 2024 that will reduce the
Actions cache usage of the Action by keeping only the newest TRAP cache
for each language. <a
href="https://redirect.github.com/github/codeql-action/pull/2306">#2306</a></li>
</ul>
<h2>3.25.6 - 20 May 2024</h2>
<ul>
<li>Update default CodeQL bundle version to 2.17.3. <a
href="https://redirect.github.com/github/codeql-action/pull/2295">#2295</a></li>
</ul>
<h2>3.25.5 - 13 May 2024</h2>
<ul>
<li>Add a compatibility matrix of supported CodeQL Action, CodeQL CLI,
and GitHub Enterprise Server versions to the <a
href="https://github.com/github/codeql-action/blob/main/README.md">https://github.com/github/codeql-action/blob/main/README.md</a>.
<a
href="https://redirect.github.com/github/codeql-action/pull/2273">#2273</a></li>
<li>Avoid printing out a warning for a missing <code>on.push</code>
trigger when the CodeQL Action is triggered via a
<code>workflow_call</code> event. <a
href="https://redirect.github.com/github/codeql-action/pull/2274">#2274</a></li>
<li>The <code>tools: latest</code> input to the <code>init</code> Action
has been renamed to <code>tools: linked</code>. This option specifies
that the Action should use the tools shipped at the same time as the
Action. The old name will continue to work for backwards compatibility,
but we recommend that new workflows use the new name. <a
href="https://redirect.github.com/github/codeql-action/pull/2281">#2281</a></li>
</ul>
<h2>3.25.4 - 08 May 2024</h2>
<ul>
<li>Update default CodeQL bundle version to 2.17.2. <a
href="https://redirect.github.com/github/codeql-action/pull/2270">#2270</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4fa2a79536"><code>4fa2a79</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2369">#2369</a>
from github/update-v3.25.12-947b18fb7</li>
<li><a
href="dec6fb713c"><code>dec6fb7</code></a>
Update changelog for v3.25.12</li>
<li><a
href="947b18fb72"><code>947b18f</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2365">#2365</a>
from github/dependabot/npm_and_yarn/npm-88aac57241</li>
<li><a
href="9ab727712f"><code>9ab7277</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2364">#2364</a>
from github/update-bundle/codeql-bundle-v2.18.0</li>
<li><a
href="1c60bf167b"><code>1c60bf1</code></a>
Merge branch 'main' into update-bundle/codeql-bundle-v2.18.0</li>
<li><a
href="be825d5eef"><code>be825d5</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2353">#2353</a>
from github/henrymercer/enable-direct-tracing</li>
<li><a
href="243e392ed0"><code>243e392</code></a>
Fix PR number in changelog</li>
<li><a
href="026682fb73"><code>026682f</code></a>
Fix bad auto merge in changelog</li>
<li><a
href="264cbe20c6"><code>264cbe2</code></a>
Merge branch 'main' into henrymercer/enable-direct-tracing</li>
<li><a
href="0b65015a1d"><code>0b65015</code></a>
Update checked-in dependencies</li>
<li>Additional commits viewable in <a
href="b611370bb5...4fa2a79536">compare
view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/codeql-action&package-manager=github_actions&previous-version=3.25.11&new-version=3.25.12)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Adds code to expose the ipk configuration values and registers the ipk
package format with nfpm.
Updates the documentation with how to use the new ipk specific
configuration parameters.
**This isn't ready to merge, but I have some questions**
1. I copied the `TestIPKSpecificConfig()`
([code](https://github.com/goreleaser/goreleaser/compare/main...schmidtw:goreleaser:main#diff-912a4af69daf4d89537b6bea43a1b7fe65683128ea1be66d6ec77046c76d064dR1358))
from the `TestAPKSpecificConfig()` and found it only is really testing
if specific scripts are there or not. Since IPK doesn't have any
additional scripts, just fields in one file do I need this test
function? Is there a better way to validate the output?
2. I have run into issues where the tests expect `goreleaser` to be the
org & repo - is there a way to override this in my fork without changing
the code?
3. Is the `ToNFPAlts()` and `ToNFP()` living in the config.go file ok?
There wasn't much code in that file, so I figured I'd ask if you'd
rather this code be elsewhere.
---------
Co-authored-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 5.0.1
to 5.0.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/setup-go/releases">actions/setup-go's
releases</a>.</em></p>
<blockquote>
<h2>v5.0.2</h2>
<h2>What's Changed</h2>
<h3>Bug fixes:</h3>
<ul>
<li>Fix versions check failure by <a
href="https://github.com/HarithaVattikuti"><code>@HarithaVattikuti</code></a>
in <a
href="https://redirect.github.com/actions/setup-go/pull/479">actions/setup-go#479</a></li>
</ul>
<h3>Dependency updates:</h3>
<ul>
<li>Bump braces from 3.0.2 to 3.0.3 and undici from 5.28.3 to 5.28.4 by
<a href="https://github.com/dependabot"><code>@dependabot</code></a> in
<a
href="https://redirect.github.com/actions/setup-go/pull/487">actions/setup-go#487</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/HarithaVattikuti"><code>@HarithaVattikuti</code></a>
made their first contribution in <a
href="https://redirect.github.com/actions/setup-go/pull/479">actions/setup-go#479</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/setup-go/compare/v5...v5.0.2">https://github.com/actions/setup-go/compare/v5...v5.0.2</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0a12ed9d6a"><code>0a12ed9</code></a>
Bump braces from 3.0.2 to 3.0.3 (<a
href="https://redirect.github.com/actions/setup-go/issues/487">#487</a>)</li>
<li><a
href="4ab57d7ea2"><code>4ab57d7</code></a>
Fix versions check failure (<a
href="https://redirect.github.com/actions/setup-go/issues/479">#479</a>)</li>
<li>See full diff in <a
href="cdcb360436...0a12ed9d6a">compare
view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-go&package-manager=github_actions&previous-version=5.0.1&new-version=5.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.22.0
to 0.23.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="33be3ef892"><code>33be3ef</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="0e7ccc0478"><code>0e7ccc0</code></a>
gopls/internal/golang: provide version info for stdlib in pkgdoc</li>
<li><a
href="fcf5463260"><code>fcf5463</code></a>
gopls/internal/server: add counters to inform v0.17.0</li>
<li><a
href="70a59b2f22"><code>70a59b2</code></a>
gopls/doc: respond to Hana's review of CL 583316</li>
<li><a
href="799a47185d"><code>799a471</code></a>
gopls/doc: document all of gopls' features</li>
<li><a
href="2e239ad1ba"><code>2e239ad</code></a>
gopls/internal/golang: provide version info for stdlib fields</li>
<li><a
href="bc15dd8597"><code>bc15dd8</code></a>
gopls/internal/analysis/fillstruct: use package name (not path) in
UI</li>
<li><a
href="72edac2ff3"><code>72edac2</code></a>
internal/typeparams: fix crash in interface hover with empty type
set</li>
<li><a
href="c0ae6bbd24"><code>c0ae6bb</code></a>
gopls/internal/golang: splitlines: s/parameter/arguments/ in
CallExpr</li>
<li><a
href="5cc2d0b12c"><code>5cc2d0b</code></a>
gopls/internal/golang: splitlines: remove workaround for <a
href="https://redirect.github.com/golang/go/issues/68202">golang/go#68202</a></li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.22.0...v0.23.0">compare
view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang.org/x/tools&package-manager=go_modules&previous-version=0.22.0&new-version=0.23.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/goreleaser/nfpm/v2](https://github.com/goreleaser/nfpm) from
2.37.1 to 2.38.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/goreleaser/nfpm/releases">github.com/goreleaser/nfpm/v2's
releases</a>.</em></p>
<blockquote>
<h2>v2.38.0</h2>
<h2>Changelog</h2>
<h3>Bug fixes</h3>
<ul>
<li>2c264e3d6671c19768b05476396e550fa4efe040: fix: better handle files
owned by the fs (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/834">#834</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>250d102bdc1cc068df69605de75058d7517442ae: fix: rpm doesnt allow
dashes in prerelease (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/836">#836</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>d8bf0865ce3d71763ff38d674a84eaf1468e74af: fix: system fs paths on
windows (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/838">#838</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Dependency updates</h3>
<ul>
<li>441470e641ccf2de80c82cc7f6625267a830e30d: feat(deps): bump
github.com/klauspost/compress from 1.17.8 to 1.17.9 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/831">#831</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
<li>784fa6ca608192d378fbd9572acd49e77e9411e3: feat(deps): bump
github.com/spf13/cobra from 1.8.0 to 1.8.1 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/832">#832</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
</ul>
<h3>Build process updates</h3>
<ul>
<li>912091cb2b68c06fbc5659183590cd6824c41500: ci: update goreleaser
config (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Other work</h3>
<ul>
<li>745b0f59d9cbab3cb4d0a3373e7569bec4ca1bd9: --- (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/824">#824</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
<li>d33a9233bb7acf04621b78114114476196d79779: docs: clarify trailing
slash in dst (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>a3416c563b15a3b435df80f5e46f97bc8e4a6ee8: docs: update (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>893ce5ee6580e6d2b068310f03c718f2b5b4e581: docs: update (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>ba2bebd36d2aadd8b18b9f325191872f259e3518: docs: update cmd docs (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/nfpm/compare/v2.37.1...v2.38.0">https://github.com/goreleaser/nfpm/compare/v2.37.1...v2.38.0</a></p>
<h2>Helping out</h2>
<p>This release is only possible thanks to <strong>all</strong> the
support of <strong>awesome people</strong>!</p>
<p>Want to be one of them?
You can <a href="https://goreleaser.com/sponsors/">sponsor</a> or <a
href="https://goreleaser.com/contributing">contribute with code</a>.</p>
<h2>Where to go next?</h2>
<ul>
<li>nFPM is a satellite project from GoReleaser. <a
href="https://goreleaser.com">Check it out</a>!</li>
<li>Find examples and commented usage of all options in our <a
href="https://nfpm.goreleaser.com/">website</a>.</li>
<li>Reach out on <a href="https://discord.gg/RGEBtg8vQ6">Discord</a> and
<a href="https://twitter.com/goreleaser">Twitter</a>!</li>
</ul>
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="d33a9233bb"><code>d33a923</code></a>
docs: clarify trailing slash in dst</li>
<li><a
href="d8bf0865ce"><code>d8bf086</code></a>
fix: system fs paths on windows (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/838">#838</a>)</li>
<li><a
href="f7e93efc2c"><code>f7e93ef</code></a>
test: centos8 mirrorlist has been down for a long time (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/837">#837</a>)</li>
<li><a
href="250d102bdc"><code>250d102</code></a>
fix: rpm doesnt allow dashes in prerelease (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/836">#836</a>)</li>
<li><a
href="2c264e3d66"><code>2c264e3</code></a>
fix: better handle files owned by the fs (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/834">#834</a>)</li>
<li><a
href="41b334968e"><code>41b3349</code></a>
chore: cleanup</li>
<li><a
href="893ce5ee65"><code>893ce5e</code></a>
docs: update</li>
<li><a
href="a3416c563b"><code>a3416c5</code></a>
docs: update</li>
<li><a
href="784fa6ca60"><code>784fa6c</code></a>
feat(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/832">#832</a>)</li>
<li><a
href="441470e641"><code>441470e</code></a>
feat(deps): bump github.com/klauspost/compress from 1.17.8 to 1.17.9 (<a
href="https://redirect.github.com/goreleaser/nfpm/issues/831">#831</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/goreleaser/nfpm/compare/v2.37.1...v2.38.0">compare
view</a></li>
</ul>
</details>
<br />
<details>
<summary>Most Recent Ignore Conditions Applied to This Pull
Request</summary>
| Dependency Name | Ignore Conditions |
| --- | --- |
| github.com/goreleaser/nfpm/v2 | [>= 2.24.a, < 2.25] |
</details>
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/goreleaser/nfpm/v2&package-manager=go_modules&previous-version=2.37.1&new-version=2.38.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from
0.24.0 to 0.25.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9fadb0b165"><code>9fadb0b</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="a6a393ffd6"><code>a6a393f</code></a>
all: bump go.mod version and drop compatibility shims</li>
<li><a
href="1c7450041f"><code>1c74500</code></a>
ssh/test: make struct comment match struct name</li>
<li><a
href="d4e7c9cb6c"><code>d4e7c9c</code></a>
ssh: fail client auth immediately on receiving disconnect message</li>
<li>See full diff in <a
href="https://github.com/golang/crypto/compare/v0.24.0...v0.25.0">compare
view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang.org/x/crypto&package-manager=go_modules&previous-version=0.24.0&new-version=0.25.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>