mirror of
https://github.com/goreleaser/goreleaser.git
synced 2025-02-13 13:48:40 +02:00
5482 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Oleksandr Redko
|
dab740dd8f
|
test(pipe): fix tests cleanup (#4636) | ||
Carlos Alexandro Becker
|
554ca5f3e0
|
fix(build): buildmode: pie (#4631)
closes #4629 |
||
dependabot[bot]
|
1e8aac0f9d
|
chore(deps): bump golang.org/x/oauth2 from 0.16.0 to 0.17.0 (#4620)
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.16.0 to 0.17.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
7da29ec45e
|
chore(deps): bump golang.org/x/tools from 0.17.0 to 0.18.0 (#4628)
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.17.0 to 0.18.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
Carlos Alexandro Becker
|
be511eb341
|
fix(nix): update licenses | ||
|
Carlos Alexandro Becker
|
87e7cc3647
|
build: update flake.nix, taskfile | ||
|
Carlos Alexandro Becker
|
b33f14c0fa
|
fix: better universalbinary message (#4627)
<!-- Hi, thanks for contributing! Please make sure you read our CONTRIBUTING guide. Also, add tests and the respective documentation changes as well. --> <!-- If applied, this commit will... --> ... <!-- Why is this change being made? --> ... <!-- # Provide links to any relevant tickets, URLs or other resources --> ... Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
c9cc1065b4
|
chore(deps): update go-github to v59 (#4622)
<!-- Hi, thanks for contributing! Please make sure you read our CONTRIBUTING guide. Also, add tests and the respective documentation changes as well. --> <!-- If applied, this commit will... --> ... <!-- Why is this change being made? --> ... <!-- # Provide links to any relevant tickets, URLs or other resources --> ... Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
e43604f4a0
|
feat: use go 1.22 (#4614)
- use go 1.22 Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
dependabot[bot]
|
4b57e61514
|
chore(deps): bump golangci/golangci-lint-action from 3.7.0 to 3.7.1 (#4619)
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 3.7.0 to 3.7.1. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
Brian Strauch
|
306999b78b
|
fix: sort order of brew artifacts (#4617)
<!-- Hi, thanks for contributing! Please make sure you read our CONTRIBUTING guide. Also, add tests and the respective documentation changes as well. --> <!-- If applied, this commit will... --> Fix the order in which brew artifacts are sorted. <!-- Why is this change being made? --> * The order occasionally switches, which results in a larger diff: https://github.com/confluentinc/homebrew-tap/pull/41 * The artifacts are already grouped by OS before `lessFnFor()` is called, so `list[i].OS > list[j].OS` always evaluates to `false` and the order remains unchanged. This PR removes that statement. * It looks like a `map` is used earlier, while filtering the artifacts, which might explain why the order occasionally switches. * Update the remaining statement in `lessFnFor()` to actually use `<` as the function suggests. <!-- # Provide links to any relevant tickets, URLs or other resources --> |
||
|
dependabot[bot]
|
bba4ee2be7
|
chore(deps): bump github.com/distribution/distribution/v3 from 3.0.0-20221021092657-c47a966fded8 to 3.0.0-alpha.1 (#4604)
Bumps
[github.com/distribution/distribution/v3](https://github.com/distribution/distribution)
from 3.0.0-20221021092657-c47a966fded8 to 3.0.0-alpha.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/distribution/distribution/releases">github.com/distribution/distribution/v3's
releases</a>.</em></p>
<blockquote>
<h2>v3.0.0-alpha.1</h2>
<p>This is the first major release in years!</p>
<p>It's an accumulation of effort that's bringing major improvements in
performance, security and general code quality!</p>
<p>See the abridged changelog below and the full release log <a
href="
|
||
|
dependabot[bot]
|
0265aa7eda
|
chore(deps): bump golang.org/x/crypto from 0.18.0 to 0.19.0 (#4612)
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.18.0 to 0.19.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
a813e91134
|
chore(deps): bump golang from 1.21.6-alpine to 1.22.0-alpine (#4611)
Bumps golang from 1.21.6-alpine to 1.22.0-alpine. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
842828a711
|
chore(deps): bump arduino/setup-task from 1.0.3 to 2.0.0 (#4607)
Bumps [arduino/setup-task](https://github.com/arduino/setup-task) from 1.0.3 to 2.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/arduino/setup-task/releases">arduino/setup-task's releases</a>.</em></p> <blockquote> <h2>2.0.0</h2> <h2>Migration Guide</h2> <p>The version of the <a href="https://nodejs.org/en/about"><strong>Node.js</strong></a> runtime used to execute the action has been updated from 16 to 20. This could be a breaking change for certain GitHub Actions workflows.</p> <p>If a workflow with dependency on the <strong>arduino/setup-task</strong> action uses only <a href="https://docs.github.com/actions/using-github-hosted-runners/about-github-hosted-runners/about-github-hosted-runners">GitHub-hosted GitHub Actions runners</a>, no changes are required.</p> <p>If the workflow uses a <a href="https://docs.github.com/actions/hosting-your-own-runners/managing-self-hosted-runners/about-self-hosted-runners">self-hosted runner</a>, the workflow run might fail after updating <strong>arduino/setup-task</strong>:</p> <pre lang="text"><code>Error: System.ArgumentOutOfRangeException: Specified argument was out of the range of valid values. (Parameter ''using: node20' is not supported, use 'docker', 'node12' or 'node16' instead.') at GitHub.Runner.Worker.ActionManifestManager.ConvertRuns(IExecutionContext executionContext, TemplateContext templateContext, TemplateToken inputsToken, String fileRelativePath, MappingToken outputs) at GitHub.Runner.Worker.ActionManifestManager.Load(IExecutionContext executionContext, String manifestFile) Error: Fail to load arduino/setup-task/v2/action.yml </code></pre> <p>This means an older runner version that does not provide Node.js 20.x is installed on the runner machine and you must update the runner version.</p> <h2>Changelog</h2> <h4>Breaking</h4> <ul> <li>Update Node.js runtime for action from 16 to 20 (<a href="https://redirect.github.com/arduino/setup-task/issues/919">#919</a>)</li> </ul> <h4>Enhancement</h4> <ul> <li><a href="https://github.com/arduino/compile-sketches/pulls?q=merged%3A2023-01-31..2024-02-05+author%3Aapp%2Fdependabot">Various dependency updates</a></li> </ul> <h2>Full Changeset</h2> <p><a href="https://github.com/arduino/setup-task/compare/1.0.3...2.0.0">https://github.com/arduino/setup-task/compare/1.0.3...2.0.0</a></p> <h2>Contributors</h2> <ul> <li><a href="https://github.com/gdraynz"><code>@gdraynz</code></a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
Carlos Alexandro Becker
|
ec8819a95c
|
docs: update | ||
|
Carlos Alexandro Becker
|
099345f167
|
ci: do not include nightly in releases.json
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
12fe252827
|
docs: fix link
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
actions-user
|
4f2dc3c569 | chore: docs auto-update | ||
|
Carlos Alexandro Becker
|
00c2ff7337
|
docs: announce v1.24 (#4602)
v1.24 announcement, release planned for tomorrow. This also includes the updated docs generated from goreleaser pro source code. --------- Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>v1.24.0 |
||
|
dependabot[bot]
|
f77eea3cca
|
chore(deps): bump github.com/xanzy/go-gitlab from 0.96.0 to 0.97.0 (#4603)
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.96.0 to 0.97.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
Carlos Alexandro Becker
|
b1a7192ba8
|
chore(deps): update aws-sdk-go
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
5df54b79ed
|
sec: do not log env when --verbose
This is an empty commit to properly generate the changelog. This was fixed in d5b6a533ca1dc3366983d5d31ee2d2b6232b83c0. Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
4d82016038
|
build(nix): shell dont need CC
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
87aa3b6251
|
docs(blog): fixed backlinks, imported last post
refs #3503 Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
29d55a74f8
|
docs(blog): import more posts
refs #3503 Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
dependabot[bot]
|
3779dfd6a6
|
chore(deps): bump github.com/aws/aws-sdk-go from 1.50.5 to 1.50.9 (#4601)
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.50.5 to 1.50.9. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's releases</a>.</em></p> <blockquote> <h1>Release v1.50.9 (2024-02-01)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/cognito-idp</code>: Updates service API and documentation</li> <li><code>service/ivs</code>: Updates service API, documentation, and paginators</li> <li><code>service/managedblockchain-query</code>: Updates service API and documentation</li> <li><code>service/mediaconvert</code>: Updates service API and documentation <ul> <li>This release includes support for broadcast-mixed audio description tracks.</li> </ul> </li> </ul> <h1>Release v1.50.8 (2024-01-31)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/cloudformation</code>: Updates service API, documentation, paginators, and examples <ul> <li>CloudFormation IaC generator allows you to scan existing resources in your account and select resources to generate a template for a new or existing CloudFormation stack.</li> </ul> </li> <li><code>service/elasticloadbalancingv2</code>: Updates service API and documentation</li> <li><code>service/glue</code>: Updates service API and documentation <ul> <li>Update page size limits for GetJobRuns and GetTriggers APIs.</li> </ul> </li> <li><code>service/ssm</code>: Updates service API and documentation <ul> <li>This release adds an optional Duration parameter to StateManager Associations. This allows customers to specify how long an apply-only-on-cron association execution should run. Once the specified Duration is out all the ongoing cancellable commands or automations are cancelled.</li> </ul> </li> </ul> <h1>Release v1.50.7 (2024-01-30)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/datazone</code>: Updates service API and documentation</li> <li><code>service/route53</code>: Updates service documentation <ul> <li>Update the SDKs for text changes in the APIs.</li> </ul> </li> </ul> <h1>Release v1.50.6 (2024-01-29)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/autoscaling</code>: Updates service API and documentation <ul> <li>EC2 Auto Scaling customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type.</li> </ul> </li> <li><code>service/comprehend</code>: Updates service documentation</li> <li><code>service/ec2</code>: Updates service API and documentation <ul> <li>EC2 Fleet customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type.</li> </ul> </li> <li><code>service/mwaa</code>: Updates service API and documentation</li> <li><code>service/rds</code>: Updates service API, documentation, waiters, paginators, and examples <ul> <li>Introduced support for the InsufficientDBInstanceCapacityFault error in the RDS RestoreDBClusterFromSnapshot and RestoreDBClusterToPointInTime API methods. This provides enhanced error handling, ensuring a more robust experience.</li> </ul> </li> <li><code>service/snowball</code>: Updates service documentation <ul> <li>Modified description of createaddress to include direction to add path when providing a JSON file.</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
1c31f3b0b7
|
chore(deps): bump codecov/codecov-action from 4.0.0 to 4.0.1 (#4600)
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.0.0 to 4.0.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v4.0.1</h2> <h2>What's Changed</h2> <ul> <li>Update README.md by <a href="https://github.com/thomasrockhu-codecov"><code>@thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1243">codecov/codecov-action#1243</a></li> <li>Add all args by <a href="https://github.com/thomasrockhu-codecov"><code>@thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1245">codecov/codecov-action#1245</a></li> <li>fix: show both token uses in readme by <a href="https://github.com/thomasrockhu-codecov"><code>@thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1250">codecov/codecov-action#1250</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v4.0.0...v4.0.1">https://github.com/codecov/codecov-action/compare/v4.0.0...v4.0.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
Carlos Alexandro Becker
|
6f72ac3459
|
fix: improve linkedin error message
refs https://github.com/goreleaser/goreleaser/issues/4421 |
||
|
Carlos Alexandro Becker
|
f62e94528f
|
docs: format | ||
|
Carlos Alexandro Becker
|
46c639bc8b
|
docs: update gitlab docs
closes #4474 |
||
|
dependabot[bot]
|
cf997f7ac4
|
chore(deps): bump github.com/goreleaser/nfpm/v2 from 2.35.2 to 2.35.3 (#4596)
Bumps [github.com/goreleaser/nfpm/v2](https://github.com/goreleaser/nfpm) from 2.35.2 to 2.35.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/goreleaser/nfpm/releases">github.com/goreleaser/nfpm/v2's releases</a>.</em></p> <blockquote> <h2>v2.35.3</h2> <h2>Changelog</h2> <h3>Bug fixes</h3> <ul> <li>f8ccc9df94eb9a4c91c3a1c78d4759a65f156731: fix: file mode when type: tree (<a href="https://redirect.github.com/goreleaser/nfpm/issues/779">#779</a>) (<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li> <li>e1ebfdad10ef98fe6c9d424efe3f97d7b2322f04: fix: honor SOURCE_DATE_EPOCH for files (<a href="https://redirect.github.com/goreleaser/nfpm/issues/775">#775</a>) (<a href="https://github.com/osm"><code>@osm</code></a>)</li> </ul> <h3>Dependency updates</h3> <ul> <li>9c48b79596993dd653087f91861794b7da6267e6: feat(deps): bump github.com/ProtonMail/go-crypto (<a href="https://redirect.github.com/goreleaser/nfpm/issues/771">#771</a>) (<a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li> <li>d7a5dc79573e4bf5d65c3f00d9cac81736f12597: feat(deps): bump github.com/cloudflare/circl from 1.3.3 to 1.3.7 (<a href="https://redirect.github.com/goreleaser/nfpm/issues/765">#765</a>) (<a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li> <li>fbc55c56be14ac5de4207becb98c908c615dee7e: feat(deps): bump github.com/klauspost/compress from 1.17.4 to 1.17.5 (<a href="https://redirect.github.com/goreleaser/nfpm/issues/774">#774</a>) (<a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li> <li>9bb94d758ce739fc27c19bbe04bf1c1d33ce3fa9: fix(deps): update go-rpmutils (<a href="https://redirect.github.com/goreleaser/nfpm/issues/764">#764</a>) (<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li> </ul> <h3>Build process updates</h3> <ul> <li>5ace4da2fd3162383a16218e2ef405dc2676bdfc: ci: update changelog (<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li> </ul> <h3>Other work</h3> <ul> <li>cd6b94108561b9ef1b06e1db8bfe9e3b3f643253: docs: update cmd docs (<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li> <li>672f8c6537228848062786d7ad2d2956f6808986: docs: update starchart url (<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/goreleaser/nfpm/compare/v2.35.2...v2.35.3">https://github.com/goreleaser/nfpm/compare/v2.35.2...v2.35.3</a></p> <h2>Helping out</h2> <p>This release is only possible thanks to <strong>all</strong> the support of <strong>awesome people</strong>!</p> <p>Want to be one of them? You can <a href="https://goreleaser.com/sponsors/">sponsor</a> or <a href="https://goreleaser.com/contributing">contribute with code</a>.</p> <h2>Where to go next?</h2> <ul> <li>nFPM is a satellite project from GoReleaser. <a href="https://goreleaser.com">Check it out</a>!</li> <li>Find examples and commented usage of all options in our <a href="https://nfpm.goreleaser.com/">website</a>.</li> <li>Reach out on <a href="https://discord.gg/RGEBtg8vQ6">Discord</a> and <a href="https://twitter.com/goreleaser">Twitter</a>!</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML omitted --></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
cefe72700f
|
chore(deps): bump codecov/codecov-action from 3.1.6 to 4.0.0 (#4597) | ||
|
dependabot[bot]
|
5099aef865
|
chore(deps): bump anchore/sbom-action from 0.15.7 to 0.15.8 (#4598) | ||
|
dependabot[bot]
|
6b4248cb57
|
chore(deps): bump sigstore/cosign-installer from 3.3.0 to 3.4.0 (#4599) | ||
|
dependabot[bot]
|
c68d830eb3
|
chore(deps): bump github.com/opencontainers/runc from 1.1.5 to 1.1.12 (#4594)
Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.5 to 1.1.12. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/opencontainers/runc/releases">github.com/opencontainers/runc's releases</a>.</em></p> <blockquote> <h2>runc 1.1.12 -- "Now you're thinking with Portals™!"</h2> <p>This is the twelfth patch release in the 1.1.z release branch of runc. It fixes a high-severity container breakout vulnerability involving leaked file descriptors, and users are strongly encouraged to update as soon as possible.</p> <ul> <li> <p>Fix <a href="https://github.com/opencontainers/runc/security/advisories/GHSA-xr7r-f8xq-vfvv">CVE-2024-21626</a>, a container breakout attack that took advantage of a file descriptor that was leaked internally within runc (but never leaked to the container process).</p> <p>In addition to fixing the leak, several strict hardening measures were added to ensure that future internal leaks could not be used to break out in this manner again.</p> <p>Based on our research, while no other container runtime had a similar leak, none had any of the hardening steps we've introduced (and some runtimes would not check for any file descriptors that a calling process may have leaked to them, allowing for container breakouts due to basic user error).</p> </li> </ul> <h3>Static Linking Notices</h3> <p>The <code>runc</code> binary distributed with this release are <em>statically linked</em> with the following <a href="https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html">GNU LGPL-2.1</a> licensed libraries, with <code>runc</code> acting as a "work that uses the Library":</p> <ul> <li><a href="https://github.com/seccomp/libseccomp">libseccomp</a></li> </ul> <p>The versions of these libraries were not modified from their upstream versions, but in order to comply with the LGPL-2.1 (§6(a)), we have attached the complete source code for those libraries which (when combined with the attached runc source code) may be used to exercise your rights under the LGPL-2.1.</p> <p>However we strongly suggest that you make use of your distribution's packages or download them from the authoritative upstream sources, especially since these libraries are related to the security of your containers.</p> <!-- raw HTML omitted --> <p>Thanks to all of the contributors who made this release possible:</p> <ul> <li>Aleksa Sarai <a href="mailto:cyphar@cyphar.com">cyphar@cyphar.com</a></li> <li>hang.jiang <a href="mailto:hang.jiang@daocloud.io">hang.jiang@daocloud.io</a></li> <li>lfbzhm <a href="mailto:lifubang@acmcoder.com">lifubang@acmcoder.com</a></li> </ul> <p>Signed-off-by: Aleksa Sarai <a href="mailto:cyphar@cyphar.com">cyphar@cyphar.com</a></p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/opencontainers/runc/blob/v1.1.12/CHANGELOG.md">github.com/opencontainers/runc's changelog</a>.</em></p> <blockquote> <h2>[1.1.12] - 2024-01-31</h2> <blockquote> <p>Now you're thinking with Portals™!</p> </blockquote> <h3>Security</h3> <ul> <li>Fix <a href="https://github.com/opencontainers/runc/security/advisories/GHSA-xr7r-f8xq-vfvv">CVE-2024-21626</a>, a container breakout attack that took advantage of a file descriptor that was leaked internally within runc (but never leaked to the container process). In addition to fixing the leak, several strict hardening measures were added to ensure that future internal leaks could not be used to break out in this manner again. Based on our research, while no other container runtime had a similar leak, none had any of the hardening steps we've introduced (and some runtimes would not check for any file descriptors that a calling process may have leaked to them, allowing for container breakouts due to basic user error).</li> </ul> <h2>[1.1.11] - 2024-01-01</h2> <blockquote> <p>Happy New Year!</p> </blockquote> <h3>Fixed</h3> <ul> <li>Fix several issues with userns path handling. (<a href="https://redirect.github.com/opencontainers/runc/issues/4122">#4122</a>, <a href="https://redirect.github.com/opencontainers/runc/issues/4124">#4124</a>, <a href="https://redirect.github.com/opencontainers/runc/issues/4134">#4134</a>, <a href="https://redirect.github.com/opencontainers/runc/issues/4144">#4144</a>)</li> </ul> <h3>Changed</h3> <ul> <li>Support memory.peak and memory.swap.peak in cgroups v2. Add <code>swapOnlyUsage</code> in <code>MemoryStats</code>. This field reports swap-only usage. For cgroupv1, <code>Usage</code> and <code>Failcnt</code> are set by subtracting memory usage from memory+swap usage. For cgroupv2, <code>Usage</code>, <code>Limit</code>, and <code>MaxUsage</code> are set. (<a href="https://redirect.github.com/opencontainers/runc/issues/4000">#4000</a>, <a href="https://redirect.github.com/opencontainers/runc/issues/4010">#4010</a>, <a href="https://redirect.github.com/opencontainers/runc/issues/4131">#4131</a>)</li> <li>build(deps): bump github.com/cyphar/filepath-securejoin. (<a href="https://redirect.github.com/opencontainers/runc/issues/4140">#4140</a>)</li> </ul> <h2>[1.1.10] - 2023-10-31</h2> <blockquote> <p>Śruba, przykręcona we śnie, nie zmieni sytuacji, jaka panuje na jawie.</p> </blockquote> <h3>Added</h3> <ul> <li>Support for <code>hugetlb.<pagesize>.rsvd</code> limiting and accounting. Fixes the issue of postres failing when hugepage limits are set. (<a href="https://redirect.github.com/opencontainers/runc/issues/3859">#3859</a>, <a href="https://redirect.github.com/opencontainers/runc/issues/4077">#4077</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed permissions of a newly created directories to not depend on the value of umask in tmpcopyup feature implementation. (<a href="https://redirect.github.com/opencontainers/runc/issues/3991">#3991</a>, <a href="https://redirect.github.com/opencontainers/runc/issues/4060">#4060</a>)</li> <li>libcontainer: cgroup v1 GetStats now ignores missing <code>kmem.limit_in_bytes</code> (fixes the compatibility with Linux kernel 6.1+). (<a href="https://redirect.github.com/opencontainers/runc/issues/4028">#4028</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
Carlos Alexandro Becker
|
b294759d95
|
feat(nfpm): add .Format tmpl var
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
765d534c2e
|
feat(nfpm): support libraries (#4587)
This adds `nfpm.libdirs` to allow to set where to put libraries built, as well as include them in the search for artifacts when building the package. closes #4346 --- PS: I'm not sure about the default dirs, let me know what you think! --------- Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
dependabot[bot]
|
fd86f66de9
|
chore(deps): bump codecov/codecov-action from 3.1.5 to 3.1.6 (#4592)
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.5 to 3.1.6. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v3.1.6</h2> <p><strong>Full Changelog</strong>: <a href="https://github.com/codecov/codecov-action/compare/v3.1.5...v3.1.6">https://github.com/codecov/codecov-action/compare/v3.1.5...v3.1.6</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
ffb1a7c0b6
|
chore(deps): bump anchore/sbom-action from 0.15.6 to 0.15.7 (#4593)
Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from
0.15.6 to 0.15.7.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/anchore/sbom-action/releases">anchore/sbom-action's
releases</a>.</em></p>
<blockquote>
<h2>v0.15.7</h2>
<h2>Changes in v0.15.7</h2>
<ul>
<li>chore: migrate action to use node v20.11.0 (Iron) FROM node v16.x.x
(<a
href="https://redirect.github.com/anchore/sbom-action/issues/440">#440</a>)
[<a href="https://github.com/spiffcs">spiffcs</a>]</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="
|
||
|
dependabot[bot]
|
242aacae1b
|
chore(deps): bump anchore/sbom-action from 0.15.5 to 0.15.6 (#4588)
Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from
0.15.5 to 0.15.6.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/anchore/sbom-action/releases">anchore/sbom-action's
releases</a>.</em></p>
<blockquote>
<h2>v0.15.6</h2>
<h2>Changes in v0.15.6</h2>
<ul>
<li>chore(deps): update Syft to v0.102.0 (<a
href="https://redirect.github.com/anchore/sbom-action/issues/438">#438</a>)
[<a
href="https://github.com/anchore-actions-token-generator">anchore-actions-token-generator</a>]</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="
|
||
|
dependabot[bot]
|
714530b524
|
chore(deps): bump github.com/google/go-containerregistry from 0.18.0 to 0.19.0 (#4589)
Bumps
[github.com/google/go-containerregistry](https://github.com/google/go-containerregistry)
from 0.18.0 to 0.19.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/go-containerregistry/releases">github.com/google/go-containerregistry's
releases</a>.</em></p>
<blockquote>
<h2>v0.19.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Work around docker v25 tarballs by <a
href="https://github.com/jonjohnsonjr"><code>@jonjohnsonjr</code></a>
in <a
href="https://redirect.github.com/google/go-containerregistry/pull/1872">google/go-containerregistry#1872</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/google/go-containerregistry/compare/v0.18.0...v0.19.0">https://github.com/google/go-containerregistry/compare/v0.18.0...v0.19.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="
|
||
|
Carlos Alexandro Becker
|
d5b6a533ca
|
Merge pull request from GHSA-h3q2-8whx-c29h
this could potentially leak environment variables. closes GHSA-h3q2-8whx-c29h Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
75c6d1a580
|
ci: improve changelog
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
ee7a1e66ab
|
feat(artifactory): publish source archives too, log when no archives found (#4586)
Logs when no artifacts were found, and also allow to publish source archives. refs https://github.com/orgs/goreleaser/discussions/4585 Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
Aaron U'Ren
|
917cae54f0
|
fix(config): handle relative git repos (#4575)
## If applied, this commit will...
If applied this change will allow goreleaser to handle relative remotes
when attempting to parse a repo URL from git.
## Why is this change being made?
To fix the error that I recently came across while trying to test my
goreleaser configuration:
```
% goreleaser check
• checking path=
⨯ configuration is invalid error=invalid scm url: .
⨯ .goreleaser.yml error=configuration is invalid: invalid scm url: .
⨯ command failed error=1 out of 1 configuration file(s) have issues
```
This change happened while on a branch doing some development. As part
of that development I needed to test a change to my goreleaser config.
My git config at the time looked like (repo obfuscated):
```
% cat .git/config
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
[remote "origin"]
url = git@gitlab.com:some/repo
fetch = +refs/heads/*:refs/remotes/origin/*
[branch "main"]
remote = origin
merge = refs/heads/main
[branch "release_fixes"]
remote = .
merge = refs/heads/main
```
It is fairly common for git to add remotes with a `.` when branch
tracking is enabled.
While, in general, there aren't many use cases that require a user to
need to release from a non-primary branch, there are cases where the
user may want to test their configuration with `goreleaser check` and
the error of `invalid scm url: .` isn't very helpful.
---------
Co-authored-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
|
||
|
Carlos Alexandro Becker
|
a4ecc87986
|
docs: update users.md
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
dd365c2f23
|
docs: github changeloger needs tags to be pushed
refs https://github.com/orgs/goreleaser/discussions/4580 |
||
|
dependabot[bot]
|
9c293cf527
|
chore(deps): bump github.com/aws/aws-sdk-go from 1.50.2 to 1.50.5 (#4583)
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.50.2 to 1.50.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/aws/aws-sdk-go/releases">github.com/aws/aws-sdk-go's releases</a>.</em></p> <blockquote> <h1>Release v1.50.5 (2024-01-26)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/connect</code>: Updates service API</li> <li><code>service/inspector2</code>: Updates service API and documentation</li> <li><code>service/sagemaker</code>: Updates service API and documentation <ul> <li>Amazon SageMaker Automatic Model Tuning now provides an API to programmatically delete tuning jobs.</li> </ul> </li> </ul> <h1>Release v1.50.4 (2024-01-25)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/acm-pca</code>: Updates service API, documentation, and waiters</li> <li><code>service/lightsail</code>: Updates service API and documentation <ul> <li>This release adds support for IPv6-only instance plans.</li> </ul> </li> </ul> <h1>Release v1.50.3 (2024-01-24)</h1> <h3>Service Client Updates</h3> <ul> <li><code>service/ec2</code>: Updates service API and documentation <ul> <li>Introduced a new clientToken request parameter on CreateNetworkAcl and CreateRouteTable APIs. The clientToken parameter allows idempotent operations on the APIs.</li> </ul> </li> <li><code>service/ecs</code>: Updates service documentation <ul> <li>Documentation updates for Amazon ECS.</li> </ul> </li> <li><code>service/outposts</code>: Updates service API</li> <li><code>service/rds</code>: Updates service API, documentation, waiters, paginators, and examples <ul> <li>This release adds support for Aurora Limitless Database.</li> </ul> </li> <li><code>service/storagegateway</code>: Updates service API and documentation <ul> <li>Add DeprecationDate and SoftwareVersion to response of ListGateways.</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
f436213256
|
chore(deps): bump golang from 51a7800 to a6a7f1f (#4584)
Bumps golang from `51a7800` to `a6a7f1f`. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |