mirror of
https://github.com/goreleaser/goreleaser.git
synced 2025-01-04 03:11:55 +02:00
7982a33a06
641 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Stepan Rabotkin
|
7982a33a06
|
fix: telegram default message (#4821)
Hi, there is another fix of default message. I tried this message, now everything works |
||
dependabot[bot]
|
0c632b5842
|
chore(deps): bump github.com/aws/aws-sdk-go from 1.51.6 to 1.52.0 (#4824)
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.51.6 to 1.52.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's releases</a>.</em></p> <blockquote> <h1>Release v1.52.0 (2024-05-01)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/bedrock-agent</code>: Updates service API and documentation</li> <li><code>service/ec2</code>: Updates service documentation <ul> <li>Documentation updates for Amazon EC2.</li> </ul> </li> <li><code>service/personalize-runtime</code>: Updates service API and documentation</li> <li><code>service/securityhub</code>: Updates service API and documentation</li> <li><code>service/sesv2</code>: Updates service API</li> </ul> <h3>SDK Features</h3> <ul> <li><code>service/alexaforbusiness</code>: Remove Alexaforbusiness <ul> <li>This change removes the Alexaforbusiness service, since it is deprecated.</li> </ul> </li> </ul> <h1>Release v1.51.32 (2024-04-30)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/chime-sdk-voice</code>: Updates service API and documentation</li> <li><code>service/codeartifact</code>: Updates service API and documentation</li> <li><code>service/fms</code>: Updates service API and documentation</li> <li><code>service/omics</code>: Updates service API and documentation</li> <li><code>service/opensearch</code>: Updates service API and documentation</li> <li><code>service/pinpoint-sms-voice-v2</code>: Updates service API, documentation, and paginators</li> <li><code>service/qbusiness</code>: Updates service API, documentation, and waiters</li> <li><code>service/quicksight</code>: Updates service API and documentation <ul> <li>New Q embedding supporting Generative Q&A</li> </ul> </li> <li><code>service/route53resolver</code>: Updates service API and documentation</li> <li><code>service/sagemaker</code>: Updates service API and documentation <ul> <li>Amazon SageMaker Training now supports the use of attribute-based access control (ABAC) roles for training job execution roles. Amazon SageMaker Inference now supports G6 instance types.</li> </ul> </li> <li><code>service/signer</code>: Updates service API and documentation <ul> <li>Documentation updates for AWS Signer. Adds cross-account signing constraint and definitions for cross-account actions.</li> </ul> </li> </ul> <h1>Release v1.51.31 (2024-04-29)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/amplify</code>: Updates service API and documentation</li> <li><code>service/connectcases</code>: Updates service API and documentation</li> <li><code>service/inspector2</code>: Updates service API and documentation</li> <li><code>service/timestream-query</code>: Updates service API and documentation</li> <li><code>service/transcribe</code>: Updates service API and documentation</li> <li><code>service/trustedadvisor</code>: Updates service API and documentation</li> </ul> <h1>Release v1.51.30 (2024-04-26)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/codepipeline</code>: Updates service API and documentation</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
Carlos Alexandro Becker
|
c052ccc691
|
sec(deps): update runc for CVE-2024-3154 | ||
|
Carlos Alexandro Becker
|
8391ce56e1
|
fix(deps): update go-set to fix armv7 build
refs #4801 Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
0c97ed1cec
|
chore: go mod tidy
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
Josh Ghiloni
|
de72cab5d9
|
feat(announce): add BlueSky support (#4779)
<!-- Hi, thanks for contributing! Please make sure you read our CONTRIBUTING guide. Also, add tests and the respective documentation changes as well. --> <!-- If applied, this commit will... --> If applied, this commit will allow users to create BlueSky posts (skeets) about their Goreleaser-built projects <!-- Why is this change being made? --> Because I wanted to post to BlueSky when projects I work on relating to BlueSky are built! <!-- # Provide links to any relevant tickets, URLs or other resources --> Example post made during unit testing (requires an account to see): https://bsky.app/profile/jaygles.bsky.social/post/3kpv573c2pc2k --------- Co-authored-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
3cd2e07c68
|
feat: notarize macos binaries (#4774)
this includes anchore/quill as a pipe to sign and notarize macos binaries TODO: - [x] find a way to test this - [x] docs - [x] maybe get someone from anchore to take a look? --------- Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
dependabot[bot]
|
5de5e61eff
|
chore(deps): bump github.com/xanzy/go-gitlab from 0.102.0 to 0.103.0 (#4791)
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.102.0 to 0.103.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
d09c77cd73
|
chore(deps): bump code.gitea.io/sdk/gitea from 0.17.1 to 0.18.0 (#4790)
Bumps code.gitea.io/sdk/gitea from 0.17.1 to 0.18.0. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
262c8dcbfe
|
chore(deps): update env from v9 to v11 (#4789)
updated env to latest Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
dependabot[bot]
|
4ccfee546f
|
chore(deps): bump github.com/sigstore/cosign/v2 from 2.2.3 to 2.2.4 (#4777) | ||
|
dependabot[bot]
|
db84c67d90
|
chore(deps): bump golang.org/x/oauth2 from 0.18.0 to 0.19.0 (#4760)
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
eadf3ef4a0
|
chore(deps): bump github.com/xanzy/go-gitlab from 0.101.0 to 0.102.0 (#4758)
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
bc1883ebfd
|
chore(deps): bump golang.org/x/tools from 0.19.0 to 0.20.0 (#4762)
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
826438b865
|
chore(deps): bump github.com/ulikunitz/xz from 0.5.11 to 0.5.12 (#4751)
Bumps [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) from 0.5.11 to 0.5.12. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
Carlos Alexandro Becker
|
19160164cf
|
chore(deps): update go-github | ||
|
Carlos Alexandro Becker
|
92cb40373b
|
chore(deps): update nfpm
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
dependabot[bot]
|
10a4a20122
|
chore(deps): bump github.com/docker/docker from 25.0.3+incompatible to 25.0.5+incompatible (#4717)
Bumps [github.com/docker/docker](https://github.com/docker/docker) from 25.0.3+incompatible to 25.0.5+incompatible. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/docker/releases">github.com/docker/docker's releases</a>.</em></p> <blockquote> <h2>25.0.5</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.5">docker/cli, 25.0.5 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.5">moby/moby, 25.0.5 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v25.0.5/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v25.0.5/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Security</h3> <p>This release contains a security fix for <a href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx">CVE-2024-29018</a>, a potential data exfiltration from 'internal' networks via authoritative DNS servers.</p> <h3>Bug fixes and enhancements</h3> <ul> <li><a href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx">CVE-2024-29018</a>: Do not forward requests to external DNS servers for a container that is only connected to an 'internal' network. Previously, requests were forwarded if the host's DNS server was running on a loopback address, like systemd's 127.0.0.53. <a href="https://redirect.github.com/moby/moby/pull/47589">moby/moby#47589</a></li> <li>plugin: fix mounting /etc/hosts when running in UserNS. <a href="https://redirect.github.com/moby/moby/pull/47588">moby/moby#47588</a></li> <li>rootless: fix <code>open /etc/docker/plugins: permission denied</code>. <a href="https://redirect.github.com/moby/moby/pull/47587">moby/moby#47587</a></li> <li>Fix multiple parallel <code>docker build</code> runs leaking disk space. <a href="https://redirect.github.com/moby/moby/pull/47527">moby/moby#47527</a></li> </ul> <h2>v25.0.4</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.4">docker/cli, 25.0.4 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.4">moby/moby, 25.0.4 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v25.0.4/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v25.0.4/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Bug fixes and enhancements</h3> <ul> <li>Restore DNS names for containers in the default "nat" network on Windows. <a href="https://redirect.github.com/moby/moby/pull/47490">moby/moby#47490</a></li> <li>Fix <code>docker start</code> failing when used with <code>--checkpoint</code> <a href="https://redirect.github.com/moby/moby/pull/47466">moby/moby#47466</a></li> <li>Don't enforce new validation rules for existing swarm networks <a href="https://redirect.github.com/moby/moby/pull/47482">moby/moby#47482</a></li> <li>Restore IP connectivity between the host and containers on an internal bridge network. <a href="https://redirect.github.com/moby/moby/pull/47481">moby/moby#47481</a></li> <li>Fix a regression introduced in v25.0 that prevented the classic builder from ADDing a tar archive with xattrs created on a non-Linux OS <a href="https://redirect.github.com/moby/moby/pull/47483">moby/moby#47483</a></li> <li>containerd image store: Fix image pull not emitting <code>Pulling fs layer</code> status <a href="https://redirect.github.com/moby/moby/pull/47484">moby/moby#47484</a></li> </ul> <h3>API</h3> <ul> <li>To preserve backwards compatibility, make read-only mounts not recursive by default when using older clients (API version < v1.44). <a href="https://redirect.github.com/moby/moby/pull/47393">moby/moby#47393</a></li> <li><code>GET /images/{id}/json</code> omits the <code>Created</code> field (previously it was <code>0001-01-01T00:00:00Z</code>) if the <code>Created</code> field is missing from the image config. <a href="https://redirect.github.com/moby/moby/pull/47451">moby/moby#47451</a></li> <li>Populate a missing <code>Created</code> field in <code>GET /images/{id}/json</code> with <code>0001-01-01T00:00:00Z</code> for API version <= 1.43. <a href="https://redirect.github.com/moby/moby/pull/47387">moby/moby#47387</a></li> <li>Fix a regression that caused API socket connection failures to report an API version negotiation failure instead. <a href="https://redirect.github.com/moby/moby/pull/47470">moby/moby#47470</a></li> <li>Preserve supplied endpoint configuration in a container-create API request, when a container-wide MAC address is specified, but <code>NetworkMode</code> name-or-id is not the same as the name-or-id used in <code>NetworkSettings.Networks</code>. <a href="https://redirect.github.com/moby/moby/pull/47510">moby/moby#47510</a></li> </ul> <h3>Packaging updates</h3> <ul> <li>Upgrade Go runtime to <a href="https://go.dev/doc/devel/release#go1.21.8">1.21.8</a>. <a href="https://redirect.github.com/moby/moby/pull/47503">moby/moby#47503</a></li> <li>Upgrade RootlessKit to <a href="https://github.com/rootless-containers/rootlesskit/releases/tag/v2.0.2">v2.0.2</a>. <a href="https://redirect.github.com/moby/moby/pull/47508">moby/moby#47508</a></li> <li>Upgrade Compose to <a href="https://github.com/docker/compose/releases/tag/v2.24.7">v2.24.7</a>. <a href="https://redirect.github.com/docker/docker-ce-packaging/pull/998">docker/docker-ce-packaging#998</a></li> <li>Upgrade Buildx to <a href="https://github.com/docker/buildx/releases/tag/v0.13.0">v0.13.0</a>. <a href="https://redirect.github.com/docker/docker-ce-packaging/pull/997">docker/docker-ce-packaging#997</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
f958321dc9
|
chore(deps): bump github.com/xanzy/go-gitlab from 0.100.0 to 0.101.0 (#4722)
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.100.0 to 0.101.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
1007d766a5
|
chore(deps): bump github.com/aws/aws-sdk-go from 1.51.0 to 1.51.1 (#4709)
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go)
from 1.51.0 to 1.51.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's
releases</a>.</em></p>
<blockquote>
<h1>Release v1.51.1 (2024-03-15)</h1>
<h3>Service Client Updates</h3>
<ul>
<li><code>service/backup</code>: Updates service API and
documentation</li>
<li><code>service/codebuild</code>: Updates service API and
documentation
<ul>
<li>AWS CodeBuild now supports overflow behavior on Reserved
Capacity.</li>
</ul>
</li>
<li><code>service/connect</code>: Updates service API and
documentation</li>
<li><code>service/ec2</code>: Updates service API and documentation
<ul>
<li>Add media accelerator and neuron device information on the describe
instance types API.</li>
</ul>
</li>
<li><code>service/kinesisanalyticsv2</code>: Updates service API and
documentation</li>
<li><code>service/s3</code>: Updates service documentation and examples
<ul>
<li>Documentation updates for Amazon S3.</li>
</ul>
</li>
<li><code>service/sagemaker</code>: Updates service API and
documentation
<ul>
<li>Adds m6i, m6id, m7i, c6i, c6id, c7i, r6i r6id, r7i, p5 instance type
support to Sagemaker Notebook Instances and miscellaneous wording fixes
for previous Sagemaker documentation.</li>
</ul>
</li>
<li><code>service/workspaces-thin-client</code>: Updates service API and
documentation</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="
|
||
|
dependabot[bot]
|
c923fa40f5
|
chore(deps): bump github.com/google/go-containerregistry from 0.19.0 to 0.19.1 (#4698)
Bumps [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) from 0.19.0 to 0.19.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/google/go-containerregistry/releases">github.com/google/go-containerregistry's releases</a>.</em></p> <blockquote> <h2>v0.19.1</h2> <h2>What's Changed</h2> <ul> <li>Bump golang.org/x/net from 0.10.0 to 0.17.0 in /pkg/authn/k8schain by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/google/go-containerregistry/pull/1815">google/go-containerregistry#1815</a></li> <li>Bump golang.org/x/ packages by <a href="https://github.com/jonjohnsonjr"><code>@jonjohnsonjr</code></a> in <a href="https://redirect.github.com/google/go-containerregistry/pull/1892">google/go-containerregistry#1892</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/google/go-containerregistry/compare/v0.19.0...v0.19.1">https://github.com/google/go-containerregistry/compare/v0.19.0...v0.19.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
508f3c9e48
|
chore(deps): bump github.com/aws/aws-sdk-go from 1.50.36 to 1.51.0 (#4699)
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- **Note:** Dependabot was ignoring updates to this dependency, but since you've updated it yourself we've started tracking it for you again. 🤖 <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
a18c633f96
|
chore(deps): bump gocloud.dev from 0.36.0 to 0.37.0 (#4688)
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) Dependabot will merge this PR once it's up-to-date and CI passes on it, as requested by @caarlos0. [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
566e99ad73
|
feat: fig is being sunset, remove (#4694)
see https://fig.io |
||
|
Carlos Alexandro Becker
|
92669cf6ef
|
chore: bump google.golang.org/protobuf from v1.32.0 to v1.33.0
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
e618905ca7
|
chore(deps): bump github.com/docker/cli from v24 to v25
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
205a6ce8fb
|
chore(deps): bump github.com/google/ko from 0.15.1 to 0.15.2
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
dependabot[bot]
|
e1f95cff19
|
chore(deps): bump github.com/xanzy/go-gitlab from 0.99.0 to 0.100.0 (#4681)
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.99.0 to 0.100.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
605197a239
|
chore(deps): bump github.com/charmbracelet/lipgloss from 0.9.1 to 0.10.0 (#4672)
Bumps [github.com/charmbracelet/lipgloss](https://github.com/charmbracelet/lipgloss) from 0.9.1 to 0.10.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/charmbracelet/lipgloss/releases">github.com/charmbracelet/lipgloss's releases</a>.</em></p> <blockquote> <h2>v0.10.0</h2> <h1>String Transforms 💄</h1> <p>Lip Gloss <code>v0.10.0</code> features a brand new <code>Transform</code> function for Styles to alter strings at render time. As well as some bug fixes, like ANSI-aware table cell truncation. 🧹</p> <p>Simply define a <code>Transform</code> function as <code>func (string) string</code> and apply it to any style:</p> <pre lang="go"><code>// Example: s := NewStyle().Transform(strings.ToUpper) fmt.Println(s.Render("raow!") // "RAOW!" </code></pre> <p>Or, if you prefer:</p> <pre lang="go"><code>// Example: reverse := func(s string) string { n := 0 rune := make([]rune, len(s)) for _, r := range s { rune[n] = r n++ } rune = rune[0:n] for i := 0; i < n/2; i++ { rune[i], rune[n-1-i] = rune[n-1-i], rune[i] } return string(rune) } <p>s := NewStyle().Transform(reverse) fmt.Println(s.Render("The quick brown 狐 jumped over the lazy 犬") // "犬 yzal eht revo depmuj 狐 nworb kciuq ehT", </code></pre></p> <h2>What's Changed?</h2> <ul> <li>Corrected border shorthand functions explanation by <a href="https://github.com/ReidMason"><code>@ReidMason</code></a> in <a href="https://redirect.github.com/charmbracelet/lipgloss/pull/237">charmbracelet/lipgloss#237</a></li> <li>Align help by <a href="https://github.com/schmurfy"><code>@schmurfy</code></a> in <a href="https://redirect.github.com/charmbracelet/lipgloss/pull/239">charmbracelet/lipgloss#239</a></li> <li><code>Style.Transform</code> for altering strings at render time by <a href="https://github.com/meowgorithm"><code>@meowgorithm</code></a> in <a href="https://redirect.github.com/charmbracelet/lipgloss/pull/232">charmbracelet/lipgloss#232</a></li> <li>Adding right padding to empty string by <a href="https://github.com/mikelorant"><code>@mikelorant</code></a> in <a href="https://redirect.github.com/charmbracelet/lipgloss/pull/253">charmbracelet/lipgloss#253</a></li> <li>Refactor padding functions by <a href="https://github.com/mikelorant"><code>@mikelorant</code></a> in <a href="https://redirect.github.com/charmbracelet/lipgloss/pull/254">charmbracelet/lipgloss#254</a></li> <li>Fix truncate of table cells containing ANSI by <a href="https://github.com/mikelorant"><code>@mikelorant</code></a> in <a href="https://redirect.github.com/charmbracelet/lipgloss/pull/256">charmbracelet/lipgloss#256</a></li> <li>Improve maximum width of characters in a string by <a href="https://github.com/mikelorant"><code>@mikelorant</code></a> in <a href="https://redirect.github.com/charmbracelet/lipgloss/pull/257">charmbracelet/lipgloss#257</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/ReidMason"><code>@ReidMason</code></a> made their first contribution in <a href="https://redirect.github.com/charmbracelet/lipgloss/pull/237">charmbracelet/lipgloss#237</a></li> <li><a href="https://github.com/schmurfy"><code>@schmurfy</code></a> made their first contribution in <a href="https://redirect.github.com/charmbracelet/lipgloss/pull/239">charmbracelet/lipgloss#239</a></li> <li><a href="https://github.com/mikelorant"><code>@mikelorant</code></a> made their first contribution in <a href="https://redirect.github.com/charmbracelet/lipgloss/pull/253">charmbracelet/lipgloss#253</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
afcbb68e54
|
chore(deps): bump gopkg.in/go-jose/go-jose.v2 from 2.6.1 to 2.6.3 (#4674)
Bumps gopkg.in/go-jose/go-jose.v2 from 2.6.1 to 2.6.3. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/goreleaser/goreleaser/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
8c5a91c689
|
chore(deps): bump golang.org/x/tools from 0.18.0 to 0.19.0 (#4666) | ||
|
dependabot[bot]
|
3fad627fb5
|
chore(deps): bump github.com/xanzy/go-gitlab from 0.98.0 to 0.99.0 (#4667) | ||
|
dependabot[bot]
|
b6c6fb39ae
|
chore(deps): bump golang.org/x/oauth2 from 0.17.0 to 0.18.0 (#4668) | ||
|
dependabot[bot]
|
3556408e2e
|
chore(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0 (#4663)
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.4 to 1.9.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/stretchr/testify/releases">github.com/stretchr/testify's releases</a>.</em></p> <blockquote> <h2>v1.9.0</h2> <h2>What's Changed</h2> <ul> <li>Fix Go modules version by <a href="https://github.com/SuperQ"><code>@SuperQ</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1394">stretchr/testify#1394</a></li> <li>Document that require is not safe to call in created goroutines by <a href="https://github.com/programmer04"><code>@programmer04</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1392">stretchr/testify#1392</a></li> <li>Remove myself from MAINTAINERS.md by <a href="https://github.com/mvdkleijn"><code>@mvdkleijn</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1367">stretchr/testify#1367</a></li> <li>Correct spelling/grammar by <a href="https://github.com/echarrod"><code>@echarrod</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1389">stretchr/testify#1389</a></li> <li>docs: Update URLs in README by <a href="https://github.com/davidjb"><code>@davidjb</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1349">stretchr/testify#1349</a></li> <li>Update mockery link to Github Pages in README by <a href="https://github.com/LandonTClipp"><code>@LandonTClipp</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1346">stretchr/testify#1346</a></li> <li>docs: Fix typos in tests and comments by <a href="https://github.com/alexandear"><code>@alexandear</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1410">stretchr/testify#1410</a></li> <li>CI: tests from go1.17 by <a href="https://github.com/SuperQ"><code>@SuperQ</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1409">stretchr/testify#1409</a></li> <li>Fix adding ? when no values passed by <a href="https://github.com/lesichkovm"><code>@lesichkovm</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1320">stretchr/testify#1320</a></li> <li>codegen: use standard header for generated files by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1406">stretchr/testify#1406</a></li> <li>mock: AssertExpectations log reason only on failure by <a href="https://github.com/hikyaru-suzuki"><code>@hikyaru-suzuki</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1360">stretchr/testify#1360</a></li> <li>assert: fix flaky TestNeverTrue by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1417">stretchr/testify#1417</a></li> <li>README: fix typos "set up" vs "setup" by <a href="https://github.com/ossan-dev"><code>@ossan-dev</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1428">stretchr/testify#1428</a></li> <li>mock: move regexp compilation outside of <code>Called</code> by <a href="https://github.com/aud10slave"><code>@aud10slave</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/631">stretchr/testify#631</a></li> <li>assert: refactor internal func getLen() by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1445">stretchr/testify#1445</a></li> <li>mock: deprecate type AnythingOfTypeArgument (<a href="https://redirect.github.com/stretchr/testify/issues/1434">#1434</a>) by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1441">stretchr/testify#1441</a></li> <li>Remove no longer needed assert.canConvert by <a href="https://github.com/alexandear"><code>@alexandear</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1470">stretchr/testify#1470</a></li> <li>assert: ObjectsAreEqual: use time.Equal for time.Time types by <a href="https://github.com/tscales"><code>@tscales</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1464">stretchr/testify#1464</a></li> <li>Bump actions/checkout from 3 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1466">stretchr/testify#1466</a></li> <li>Bump actions/setup-go from 3.2.0 to 4.1.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1451">stretchr/testify#1451</a></li> <li>fix: make EventuallyWithT concurrency safe by <a href="https://github.com/czeslavo"><code>@czeslavo</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1395">stretchr/testify#1395</a></li> <li>assert: fix httpCode and HTTPBody occur panic when http.Handler read Body by <a href="https://github.com/hidu"><code>@hidu</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1484">stretchr/testify#1484</a></li> <li>assert.EqualExportedValues: fix handling of arrays by <a href="https://github.com/zrbecker"><code>@zrbecker</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1473">stretchr/testify#1473</a></li> <li>.github: use latest Go versions by <a href="https://github.com/kevinburkesegment"><code>@kevinburkesegment</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1489">stretchr/testify#1489</a></li> <li>assert: Deprecate EqualExportedValues by <a href="https://github.com/HaraldNordgren"><code>@HaraldNordgren</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1488">stretchr/testify#1488</a></li> <li>suite: refactor test assertions by <a href="https://github.com/alexandear"><code>@alexandear</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1474">stretchr/testify#1474</a></li> <li>suite: fix SetupSubTest and TearDownSubTest execution order by <a href="https://github.com/linusbarth"><code>@linusbarth</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1471">stretchr/testify#1471</a></li> <li>docs: Fix deprecation comments for http package by <a href="https://github.com/alexandear"><code>@alexandear</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1335">stretchr/testify#1335</a></li> <li>Add map support doc comments to Subset and NotSubset by <a href="https://github.com/jedevc"><code>@jedevc</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1306">stretchr/testify#1306</a></li> <li>TestErrorIs/TestNotErrorIs: check error message contents by <a href="https://github.com/craig65535"><code>@craig65535</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1435">stretchr/testify#1435</a></li> <li>suite: fix subtest names (fix <a href="https://redirect.github.com/stretchr/testify/issues/1501">#1501</a>) by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1504">stretchr/testify#1504</a></li> <li>assert: improve unsafe.Pointer tests by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1505">stretchr/testify#1505</a></li> <li>assert: simplify isNil implementation by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1506">stretchr/testify#1506</a></li> <li>assert.InEpsilonSlice: fix expected/actual order and other improvements by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1483">stretchr/testify#1483</a></li> <li>Fix dependency cycle with objx <a href="https://redirect.github.com/stretchr/testify/issues/1292">#1292</a> by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1453">stretchr/testify#1453</a></li> <li>mock: refactor TestIsArgsEqual by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1444">stretchr/testify#1444</a></li> <li>mock: optimize argument matching checks by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1416">stretchr/testify#1416</a></li> <li>assert: fix TestEventuallyTimeout by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1412">stretchr/testify#1412</a></li> <li>CI: add go 1.21 in GitHub Actions by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1450">stretchr/testify#1450</a></li> <li>suite: fix recoverAndFailOnPanic to report test failure at the right location by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1502">stretchr/testify#1502</a></li> <li>Update maintainers by <a href="https://github.com/brackendawson"><code>@brackendawson</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1533">stretchr/testify#1533</a></li> <li>assert: Fix EqualValues to handle overflow/underflow by <a href="https://github.com/arjunmahishi"><code>@arjunmahishi</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1531">stretchr/testify#1531</a></li> <li>assert: better formatting for Len() error by <a href="https://github.com/kevinburkesegment"><code>@kevinburkesegment</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1485">stretchr/testify#1485</a></li> <li>Ensure AssertExpectations does not fail in skipped tests by <a href="https://github.com/ianrose14"><code>@ianrose14</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1331">stretchr/testify#1331</a></li> <li>suite: fix deadlock in suite.Require()/Assert() by <a href="https://github.com/arjunmahishi"><code>@arjunmahishi</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1535">stretchr/testify#1535</a></li> <li>Revert "assert: ObjectsAreEqual: use time.Equal for time.Time type" by <a href="https://github.com/brackendawson"><code>@brackendawson</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1537">stretchr/testify#1537</a></li> <li>[chore] Add issue templates by <a href="https://github.com/arjunmahishi"><code>@arjunmahishi</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1538">stretchr/testify#1538</a></li> <li>Update the build status badge by <a href="https://github.com/brackendawson"><code>@brackendawson</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1540">stretchr/testify#1540</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
f0f88c2e4b
|
chore(deps): bump github.com/xanzy/go-gitlab from 0.97.0 to 0.98.0 (#4649)
[//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.97.0 to 0.98.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
16ac0e90f2
|
chore(deps): bump github.com/dghubble/oauth1 from 0.7.2 to 0.7.3 (#4650)
Bumps [github.com/dghubble/oauth1](https://github.com/dghubble/oauth1) from 0.7.2 to 0.7.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/dghubble/oauth1/releases">github.com/dghubble/oauth1's releases</a>.</em></p> <blockquote> <h2>v0.7.3</h2> <h2>Changes</h2> <ul> <li>Percent encode special characters in HMAC-SHA1 secrets (<a href="https://redirect.github.com/dghubble/oauth1/pull/72">#72</a>)</li> <li>Strip whitespace from request token body (<a href="https://redirect.github.com/dghubble/oauth1/pull/56">#56</a>)</li> <li>Update Go module dependencies</li> </ul> <h2>Contributions</h2> <ul> <li>Use a centrally managed GitHub Workflow for go tests by <a href="https://github.com/dghubble"><code>@dghubble</code></a> in <a href="https://redirect.github.com/dghubble/oauth1/pull/68">dghubble/oauth1#68</a></li> <li>Allow Go test Workflow to run on PRs by <a href="https://github.com/dghubble"><code>@dghubble</code></a> in <a href="https://redirect.github.com/dghubble/oauth1/pull/69">dghubble/oauth1#69</a></li> <li>Fix HMAC-SHA1 key creation. by <a href="https://github.com/jerryryle"><code>@jerryryle</code></a> in <a href="https://redirect.github.com/dghubble/oauth1/pull/72">dghubble/oauth1#72</a></li> <li>Fix oauth_callback_confirmed comparison when server returns extra whitespace by <a href="https://github.com/pscohn"><code>@pscohn</code></a> in <a href="https://redirect.github.com/dghubble/oauth1/pull/56">dghubble/oauth1#56</a></li> <li>Add changelog for new release by <a href="https://github.com/dghubble"><code>@dghubble</code></a> in <a href="https://redirect.github.com/dghubble/oauth1/pull/73A">dghubble/oauth1#73</a></li> </ul> <h2>Dependencies</h2> <ul> <li>Bump github.com/stretchr/testify from 1.8.1 to 1.8.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/dghubble/oauth1/pull/67">dghubble/oauth1#67</a></li> <li>Bump github.com/stretchr/testify from 1.8.2 to 1.8.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/dghubble/oauth1/pull/70">dghubble/oauth1#70</a></li> <li>Bump github.com/stretchr/testify from 1.8.3 to 1.8.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/dghubble/oauth1/pull/71">dghubble/oauth1#71</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/jerryryle"><code>@jerryryle</code></a> made their first contribution in <a href="https://redirect.github.com/dghubble/oauth1/pull/72">dghubble/oauth1#72</a></li> <li><a href="https://github.com/pscohn"><code>@pscohn</code></a> made their first contribution in <a href="https://redirect.github.com/dghubble/oauth1/pull/56">dghubble/oauth1#56</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/dghubble/oauth1/compare/v0.7.2...v0.7.3">https://github.com/dghubble/oauth1/compare/v0.7.2...v0.7.3</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/dghubble/oauth1/blob/main/CHANGES.md">github.com/dghubble/oauth1's changelog</a>.</em></p> <blockquote> <h2>v0.7.3</h2> <ul> <li>Percent encode special characters in HMAC-SHA1 secrets (<a href="https://redirect.github.com/dghubble/oauth1/pull/72">#72</a>)</li> <li>Strip whitespace from request token body (<a href="https://redirect.github.com/dghubble/oauth1/pull/56">#56</a>)</li> <li>Update Go module dependencies</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
cadd7a9bdf
|
chore(deps): bump github.com/slack-go/slack from 0.12.4 to 0.12.5 (#4654)
Bumps [github.com/slack-go/slack](https://github.com/slack-go/slack) from 0.12.4 to 0.12.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/slack-go/slack/releases">github.com/slack-go/slack's releases</a>.</em></p> <blockquote> <h2>v0.12.5</h2> <h2>What's Changed</h2> <p>BUGFIX - deal with "true", true, "false", false.</p> <ul> <li>Parse string or boolean for SlashCommand.IsEnterpriseInstall by <a href="https://github.com/kpaulisse"><code>@kpaulisse</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1266">slack-go/slack#1266</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/slack-go/slack/compare/v0.12.4...v0.12.5">https://github.com/slack-go/slack/compare/v0.12.4...v0.12.5</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
d66d901a86
|
chore(deps): bump golang.org/x/crypto from 0.19.0 to 0.20.0 (#4655)
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.19.0 to 0.20.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
bd0c985398
|
chore(deps): bump github.com/atc0005/go-teams-notify/v2 from 2.9.0 to 2.10.0 (#4645)
Bumps [github.com/atc0005/go-teams-notify/v2](https://github.com/atc0005/go-teams-notify) from 2.9.0 to 2.10.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/atc0005/go-teams-notify/releases">github.com/atc0005/go-teams-notify/v2's releases</a>.</em></p> <blockquote> <h2>v2.10.0</h2> <!-- raw HTML omitted --> <h2>What's Changed</h2> <h3>New Features or Enhancements 🎉</h3> <ul> <li>Add <code>IsSublte</code> and <code>HorizontalAlignment</code> to <code>Element</code> by <a href="https://github.com/codello"><code>@codello</code></a> in <a href="https://redirect.github.com/atc0005/go-teams-notify/pull/255">atc0005/go-teams-notify#255</a></li> </ul> <h3>Dependency Updates</h3> <ul> <li>Update Dependabot PR prefixes by <a href="https://github.com/atc0005"><code>@atc0005</code></a> in <a href="https://redirect.github.com/atc0005/go-teams-notify/pull/256">atc0005/go-teams-notify#256</a></li> </ul> <h3>Other Changes</h3> <ul> <li>Update CHANGELOG for v2.10.0 release by <a href="https://github.com/atc0005"><code>@atc0005</code></a> in <a href="https://redirect.github.com/atc0005/go-teams-notify/pull/257">atc0005/go-teams-notify#257</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/codello"><code>@codello</code></a> made their first contribution in <a href="https://redirect.github.com/atc0005/go-teams-notify/pull/255">atc0005/go-teams-notify#255</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/atc0005/go-teams-notify/compare/v2.9.0...v2.10.0">https://github.com/atc0005/go-teams-notify/compare/v2.9.0...v2.10.0</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/atc0005/go-teams-notify/blob/master/CHANGELOG.md">github.com/atc0005/go-teams-notify/v2's changelog</a>.</em></p> <blockquote> <h2>[v2.10.0] - 2024-02-22</h2> <h3>Added</h3> <ul> <li>(<a href="https://redirect.github.com/atc0005/go-teams-notify/issues/255">GH-255</a>) Add <code>IsSublte</code> and <code>HorizontalAlignment</code> to <code>Element</code> <ul> <li>credit: <a href="https://github.com/codello"><code>@codello</code></a></li> </ul> </li> </ul> <h3>Changed</h3> <h4>Dependency Updates</h4> <ul> <li>(<a href="https://redirect.github.com/atc0005/go-teams-notify/issues/256">GH-256</a>) Update Dependabot PR prefixes</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
aaa1181abf
|
chore(deps): bump github.com/slack-go/slack from 0.12.3 to 0.12.4 (#4639)
Bumps [github.com/slack-go/slack](https://github.com/slack-go/slack) from 0.12.3 to 0.12.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/slack-go/slack/releases">github.com/slack-go/slack's releases</a>.</em></p> <blockquote> <h2>Non-breaking updates roll-up</h2> <h2>What's Changed</h2> <ul> <li>chore: unnecessary use of fmt.Sprintf by <a href="https://github.com/testwill"><code>@testwill</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1212">slack-go/slack#1212</a></li> <li>Add Video Block by <a href="https://github.com/walkure"><code>@walkure</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1210">slack-go/slack#1210</a></li> <li>Add connected_team_ids optional field to Conversation by <a href="https://github.com/zFlabmonsta"><code>@zFlabmonsta</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1253">slack-go/slack#1253</a></li> <li>Add blocks in slackevents.MessageEvent by <a href="https://github.com/invzhi"><code>@invzhi</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1227">slack-go/slack#1227</a></li> <li>Add support for Rich Text Lists by <a href="https://github.com/daniel-pieper-personio"><code>@daniel-pieper-personio</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1155">slack-go/slack#1155</a></li> <li>Add support for Rich Text Input by <a href="https://github.com/peimanja"><code>@peimanja</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1240">slack-go/slack#1240</a></li> <li>Fix: always add context to errors during block serde by <a href="https://github.com/yunginnanet"><code>@yunginnanet</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1259">slack-go/slack#1259</a></li> <li>Edited field in the app mention event by <a href="https://github.com/IbirbyZh"><code>@IbirbyZh</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1256">slack-go/slack#1256</a></li> <li>Expose is_enterprise_install field by <a href="https://github.com/7ail"><code>@7ail</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1255">slack-go/slack#1255</a></li> <li>feat: Add the ability to set <code>URL</code> on <code>NewButtonBlockElement</code> via <code>.WithURL()</code> by <a href="https://github.com/joshbranham"><code>@joshbranham</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1250">slack-go/slack#1250</a></li> <li>Add block element type FileInput by <a href="https://github.com/elct9620"><code>@elct9620</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1249">slack-go/slack#1249</a></li> <li>Openid connect by <a href="https://github.com/danielmichaels"><code>@danielmichaels</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1242">slack-go/slack#1242</a></li> <li>Add is_enterprise_install flag for org wide installation support by <a href="https://github.com/hussachai"><code>@hussachai</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1225">slack-go/slack#1225</a></li> <li>Add an example of updating modal by <a href="https://github.com/KouWakai"><code>@KouWakai</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1142">slack-go/slack#1142</a></li> <li>add deleted timestamp for deleted msg events by <a href="https://github.com/zFlabmonsta"><code>@zFlabmonsta</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1261">slack-go/slack#1261</a></li> <li>Add slack connect events & tests by <a href="https://github.com/Birtato"><code>@Birtato</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1262">slack-go/slack#1262</a></li> <li>Add rich_text_quote and rich_text_preformatted by <a href="https://github.com/rusq"><code>@rusq</code></a> in <a href="https://redirect.github.com/slack-go/slack/pull/1260">slack-go/slack#1260</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/testwill"><code>@testwill</code></a> made their first contribution in <a href="https://redirect.github.com/slack-go/slack/pull/1212">slack-go/slack#1212</a></li> <li><a href="https://github.com/walkure"><code>@walkure</code></a> made their first contribution in <a href="https://redirect.github.com/slack-go/slack/pull/1210">slack-go/slack#1210</a></li> <li><a href="https://github.com/zFlabmonsta"><code>@zFlabmonsta</code></a> made their first contribution in <a href="https://redirect.github.com/slack-go/slack/pull/1253">slack-go/slack#1253</a></li> <li><a href="https://github.com/invzhi"><code>@invzhi</code></a> made their first contribution in <a href="https://redirect.github.com/slack-go/slack/pull/1227">slack-go/slack#1227</a></li> <li><a href="https://github.com/daniel-pieper-personio"><code>@daniel-pieper-personio</code></a> made their first contribution in <a href="https://redirect.github.com/slack-go/slack/pull/1155">slack-go/slack#1155</a></li> <li><a href="https://github.com/peimanja"><code>@peimanja</code></a> made their first contribution in <a href="https://redirect.github.com/slack-go/slack/pull/1240">slack-go/slack#1240</a></li> <li><a href="https://github.com/yunginnanet"><code>@yunginnanet</code></a> made their first contribution in <a href="https://redirect.github.com/slack-go/slack/pull/1259">slack-go/slack#1259</a></li> <li><a href="https://github.com/IbirbyZh"><code>@IbirbyZh</code></a> made their first contribution in <a href="https://redirect.github.com/slack-go/slack/pull/1256">slack-go/slack#1256</a></li> <li><a href="https://github.com/joshbranham"><code>@joshbranham</code></a> made their first contribution in <a href="https://redirect.github.com/slack-go/slack/pull/1250">slack-go/slack#1250</a></li> <li><a href="https://github.com/elct9620"><code>@elct9620</code></a> made their first contribution in <a href="https://redirect.github.com/slack-go/slack/pull/1249">slack-go/slack#1249</a></li> <li><a href="https://github.com/danielmichaels"><code>@danielmichaels</code></a> made their first contribution in <a href="https://redirect.github.com/slack-go/slack/pull/1242">slack-go/slack#1242</a></li> <li><a href="https://github.com/KouWakai"><code>@KouWakai</code></a> made their first contribution in <a href="https://redirect.github.com/slack-go/slack/pull/1142">slack-go/slack#1142</a></li> <li><a href="https://github.com/Birtato"><code>@Birtato</code></a> made their first contribution in <a href="https://redirect.github.com/slack-go/slack/pull/1262">slack-go/slack#1262</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/slack-go/slack/compare/v0.12.3...v0.12.4">https://github.com/slack-go/slack/compare/v0.12.3...v0.12.4</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
1e8aac0f9d
|
chore(deps): bump golang.org/x/oauth2 from 0.16.0 to 0.17.0 (#4620)
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.16.0 to 0.17.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
7da29ec45e
|
chore(deps): bump golang.org/x/tools from 0.17.0 to 0.18.0 (#4628)
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.17.0 to 0.18.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
Carlos Alexandro Becker
|
c9cc1065b4
|
chore(deps): update go-github to v59 (#4622)
<!-- Hi, thanks for contributing! Please make sure you read our CONTRIBUTING guide. Also, add tests and the respective documentation changes as well. --> <!-- If applied, this commit will... --> ... <!-- Why is this change being made? --> ... <!-- # Provide links to any relevant tickets, URLs or other resources --> ... Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
dependabot[bot]
|
bba4ee2be7
|
chore(deps): bump github.com/distribution/distribution/v3 from 3.0.0-20221021092657-c47a966fded8 to 3.0.0-alpha.1 (#4604)
Bumps
[github.com/distribution/distribution/v3](https://github.com/distribution/distribution)
from 3.0.0-20221021092657-c47a966fded8 to 3.0.0-alpha.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/distribution/distribution/releases">github.com/distribution/distribution/v3's
releases</a>.</em></p>
<blockquote>
<h2>v3.0.0-alpha.1</h2>
<p>This is the first major release in years!</p>
<p>It's an accumulation of effort that's bringing major improvements in
performance, security and general code quality!</p>
<p>See the abridged changelog below and the full release log <a
href="
|
||
|
dependabot[bot]
|
0265aa7eda
|
chore(deps): bump golang.org/x/crypto from 0.18.0 to 0.19.0 (#4612)
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.18.0 to 0.19.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
f77eea3cca
|
chore(deps): bump github.com/xanzy/go-gitlab from 0.96.0 to 0.97.0 (#4603)
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.96.0 to 0.97.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
Carlos Alexandro Becker
|
b1a7192ba8
|
chore(deps): update aws-sdk-go
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
dependabot[bot]
|
3779dfd6a6
|
chore(deps): bump github.com/aws/aws-sdk-go from 1.50.5 to 1.50.9 (#4601)
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.50.5 to 1.50.9. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's releases</a>.</em></p> <blockquote> <h1>Release v1.50.9 (2024-02-01)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/cognito-idp</code>: Updates service API and documentation</li> <li><code>service/ivs</code>: Updates service API, documentation, and paginators</li> <li><code>service/managedblockchain-query</code>: Updates service API and documentation</li> <li><code>service/mediaconvert</code>: Updates service API and documentation <ul> <li>This release includes support for broadcast-mixed audio description tracks.</li> </ul> </li> </ul> <h1>Release v1.50.8 (2024-01-31)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/cloudformation</code>: Updates service API, documentation, paginators, and examples <ul> <li>CloudFormation IaC generator allows you to scan existing resources in your account and select resources to generate a template for a new or existing CloudFormation stack.</li> </ul> </li> <li><code>service/elasticloadbalancingv2</code>: Updates service API and documentation</li> <li><code>service/glue</code>: Updates service API and documentation <ul> <li>Update page size limits for GetJobRuns and GetTriggers APIs.</li> </ul> </li> <li><code>service/ssm</code>: Updates service API and documentation <ul> <li>This release adds an optional Duration parameter to StateManager Associations. This allows customers to specify how long an apply-only-on-cron association execution should run. Once the specified Duration is out all the ongoing cancellable commands or automations are cancelled.</li> </ul> </li> </ul> <h1>Release v1.50.7 (2024-01-30)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/datazone</code>: Updates service API and documentation</li> <li><code>service/route53</code>: Updates service documentation <ul> <li>Update the SDKs for text changes in the APIs.</li> </ul> </li> </ul> <h1>Release v1.50.6 (2024-01-29)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/autoscaling</code>: Updates service API and documentation <ul> <li>EC2 Auto Scaling customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type.</li> </ul> </li> <li><code>service/comprehend</code>: Updates service documentation</li> <li><code>service/ec2</code>: Updates service API and documentation <ul> <li>EC2 Fleet customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type.</li> </ul> </li> <li><code>service/mwaa</code>: Updates service API and documentation</li> <li><code>service/rds</code>: Updates service API, documentation, waiters, paginators, and examples <ul> <li>Introduced support for the InsufficientDBInstanceCapacityFault error in the RDS RestoreDBClusterFromSnapshot and RestoreDBClusterToPointInTime API methods. This provides enhanced error handling, ensuring a more robust experience.</li> </ul> </li> <li><code>service/snowball</code>: Updates service documentation <ul> <li>Modified description of createaddress to include direction to add path when providing a JSON file.</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
cf997f7ac4
|
chore(deps): bump github.com/goreleaser/nfpm/v2 from 2.35.2 to 2.35.3 (#4596)
Bumps [github.com/goreleaser/nfpm/v2](https://github.com/goreleaser/nfpm) from 2.35.2 to 2.35.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/goreleaser/nfpm/releases">github.com/goreleaser/nfpm/v2's releases</a>.</em></p> <blockquote> <h2>v2.35.3</h2> <h2>Changelog</h2> <h3>Bug fixes</h3> <ul> <li>f8ccc9df94eb9a4c91c3a1c78d4759a65f156731: fix: file mode when type: tree (<a href="https://redirect.github.com/goreleaser/nfpm/issues/779">#779</a>) (<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li> <li>e1ebfdad10ef98fe6c9d424efe3f97d7b2322f04: fix: honor SOURCE_DATE_EPOCH for files (<a href="https://redirect.github.com/goreleaser/nfpm/issues/775">#775</a>) (<a href="https://github.com/osm"><code>@osm</code></a>)</li> </ul> <h3>Dependency updates</h3> <ul> <li>9c48b79596993dd653087f91861794b7da6267e6: feat(deps): bump github.com/ProtonMail/go-crypto (<a href="https://redirect.github.com/goreleaser/nfpm/issues/771">#771</a>) (<a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li> <li>d7a5dc79573e4bf5d65c3f00d9cac81736f12597: feat(deps): bump github.com/cloudflare/circl from 1.3.3 to 1.3.7 (<a href="https://redirect.github.com/goreleaser/nfpm/issues/765">#765</a>) (<a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li> <li>fbc55c56be14ac5de4207becb98c908c615dee7e: feat(deps): bump github.com/klauspost/compress from 1.17.4 to 1.17.5 (<a href="https://redirect.github.com/goreleaser/nfpm/issues/774">#774</a>) (<a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li> <li>9bb94d758ce739fc27c19bbe04bf1c1d33ce3fa9: fix(deps): update go-rpmutils (<a href="https://redirect.github.com/goreleaser/nfpm/issues/764">#764</a>) (<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li> </ul> <h3>Build process updates</h3> <ul> <li>5ace4da2fd3162383a16218e2ef405dc2676bdfc: ci: update changelog (<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li> </ul> <h3>Other work</h3> <ul> <li>cd6b94108561b9ef1b06e1db8bfe9e3b3f643253: docs: update cmd docs (<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li> <li>672f8c6537228848062786d7ad2d2956f6808986: docs: update starchart url (<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/goreleaser/nfpm/compare/v2.35.2...v2.35.3">https://github.com/goreleaser/nfpm/compare/v2.35.2...v2.35.3</a></p> <h2>Helping out</h2> <p>This release is only possible thanks to <strong>all</strong> the support of <strong>awesome people</strong>!</p> <p>Want to be one of them? You can <a href="https://goreleaser.com/sponsors/">sponsor</a> or <a href="https://goreleaser.com/contributing">contribute with code</a>.</p> <h2>Where to go next?</h2> <ul> <li>nFPM is a satellite project from GoReleaser. <a href="https://goreleaser.com">Check it out</a>!</li> <li>Find examples and commented usage of all options in our <a href="https://nfpm.goreleaser.com/">website</a>.</li> <li>Reach out on <a href="https://discord.gg/RGEBtg8vQ6">Discord</a> and <a href="https://twitter.com/goreleaser">Twitter</a>!</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML omitted --></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
c68d830eb3
|
chore(deps): bump github.com/opencontainers/runc from 1.1.5 to 1.1.12 (#4594)
Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.5 to 1.1.12. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/opencontainers/runc/releases">github.com/opencontainers/runc's releases</a>.</em></p> <blockquote> <h2>runc 1.1.12 -- "Now you're thinking with Portals™!"</h2> <p>This is the twelfth patch release in the 1.1.z release branch of runc. It fixes a high-severity container breakout vulnerability involving leaked file descriptors, and users are strongly encouraged to update as soon as possible.</p> <ul> <li> <p>Fix <a href="https://github.com/opencontainers/runc/security/advisories/GHSA-xr7r-f8xq-vfvv">CVE-2024-21626</a>, a container breakout attack that took advantage of a file descriptor that was leaked internally within runc (but never leaked to the container process).</p> <p>In addition to fixing the leak, several strict hardening measures were added to ensure that future internal leaks could not be used to break out in this manner again.</p> <p>Based on our research, while no other container runtime had a similar leak, none had any of the hardening steps we've introduced (and some runtimes would not check for any file descriptors that a calling process may have leaked to them, allowing for container breakouts due to basic user error).</p> </li> </ul> <h3>Static Linking Notices</h3> <p>The <code>runc</code> binary distributed with this release are <em>statically linked</em> with the following <a href="https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html">GNU LGPL-2.1</a> licensed libraries, with <code>runc</code> acting as a "work that uses the Library":</p> <ul> <li><a href="https://github.com/seccomp/libseccomp">libseccomp</a></li> </ul> <p>The versions of these libraries were not modified from their upstream versions, but in order to comply with the LGPL-2.1 (§6(a)), we have attached the complete source code for those libraries which (when combined with the attached runc source code) may be used to exercise your rights under the LGPL-2.1.</p> <p>However we strongly suggest that you make use of your distribution's packages or download them from the authoritative upstream sources, especially since these libraries are related to the security of your containers.</p> <!-- raw HTML omitted --> <p>Thanks to all of the contributors who made this release possible:</p> <ul> <li>Aleksa Sarai <a href="mailto:cyphar@cyphar.com">cyphar@cyphar.com</a></li> <li>hang.jiang <a href="mailto:hang.jiang@daocloud.io">hang.jiang@daocloud.io</a></li> <li>lfbzhm <a href="mailto:lifubang@acmcoder.com">lifubang@acmcoder.com</a></li> </ul> <p>Signed-off-by: Aleksa Sarai <a href="mailto:cyphar@cyphar.com">cyphar@cyphar.com</a></p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/opencontainers/runc/blob/v1.1.12/CHANGELOG.md">github.com/opencontainers/runc's changelog</a>.</em></p> <blockquote> <h2>[1.1.12] - 2024-01-31</h2> <blockquote> <p>Now you're thinking with Portals™!</p> </blockquote> <h3>Security</h3> <ul> <li>Fix <a href="https://github.com/opencontainers/runc/security/advisories/GHSA-xr7r-f8xq-vfvv">CVE-2024-21626</a>, a container breakout attack that took advantage of a file descriptor that was leaked internally within runc (but never leaked to the container process). In addition to fixing the leak, several strict hardening measures were added to ensure that future internal leaks could not be used to break out in this manner again. Based on our research, while no other container runtime had a similar leak, none had any of the hardening steps we've introduced (and some runtimes would not check for any file descriptors that a calling process may have leaked to them, allowing for container breakouts due to basic user error).</li> </ul> <h2>[1.1.11] - 2024-01-01</h2> <blockquote> <p>Happy New Year!</p> </blockquote> <h3>Fixed</h3> <ul> <li>Fix several issues with userns path handling. (<a href="https://redirect.github.com/opencontainers/runc/issues/4122">#4122</a>, <a href="https://redirect.github.com/opencontainers/runc/issues/4124">#4124</a>, <a href="https://redirect.github.com/opencontainers/runc/issues/4134">#4134</a>, <a href="https://redirect.github.com/opencontainers/runc/issues/4144">#4144</a>)</li> </ul> <h3>Changed</h3> <ul> <li>Support memory.peak and memory.swap.peak in cgroups v2. Add <code>swapOnlyUsage</code> in <code>MemoryStats</code>. This field reports swap-only usage. For cgroupv1, <code>Usage</code> and <code>Failcnt</code> are set by subtracting memory usage from memory+swap usage. For cgroupv2, <code>Usage</code>, <code>Limit</code>, and <code>MaxUsage</code> are set. (<a href="https://redirect.github.com/opencontainers/runc/issues/4000">#4000</a>, <a href="https://redirect.github.com/opencontainers/runc/issues/4010">#4010</a>, <a href="https://redirect.github.com/opencontainers/runc/issues/4131">#4131</a>)</li> <li>build(deps): bump github.com/cyphar/filepath-securejoin. (<a href="https://redirect.github.com/opencontainers/runc/issues/4140">#4140</a>)</li> </ul> <h2>[1.1.10] - 2023-10-31</h2> <blockquote> <p>Śruba, przykręcona we śnie, nie zmieni sytuacji, jaka panuje na jawie.</p> </blockquote> <h3>Added</h3> <ul> <li>Support for <code>hugetlb.<pagesize>.rsvd</code> limiting and accounting. Fixes the issue of postres failing when hugepage limits are set. (<a href="https://redirect.github.com/opencontainers/runc/issues/3859">#3859</a>, <a href="https://redirect.github.com/opencontainers/runc/issues/4077">#4077</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed permissions of a newly created directories to not depend on the value of umask in tmpcopyup feature implementation. (<a href="https://redirect.github.com/opencontainers/runc/issues/3991">#3991</a>, <a href="https://redirect.github.com/opencontainers/runc/issues/4060">#4060</a>)</li> <li>libcontainer: cgroup v1 GetStats now ignores missing <code>kmem.limit_in_bytes</code> (fixes the compatibility with Linux kernel 6.1+). (<a href="https://redirect.github.com/opencontainers/runc/issues/4028">#4028</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |