mirror of
https://github.com/goreleaser/goreleaser.git
synced 2025-01-28 04:44:34 +02:00
5948 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
dependabot[bot]
|
d23f2c7681
|
chore(deps): bump golang.org/x/text from 0.18.0 to 0.19.0 (#5179)
Bumps [golang.org/x/text](https://github.com/golang/text) from 0.18.0 to 0.19.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
156f49522b
|
chore(deps): bump sigstore/cosign-installer from 3.6.0 to 3.7.0 (#5183) | ||
|
dependabot[bot]
|
42185b6db0
|
chore(deps): bump actions/cache from 4.0.2 to 4.1.0 (#5184) | ||
Bob Callaway
|
012cfc391c
|
point to GHCR instead of GCR for cosign container (#5176)
This changes the Dockerfile to pull the cosign container image from GHCR instead of Google Cloud. This helps the Sigstore team manage their cloud spend (as GHCR is provided for free and Google Cloud Artifact Registry is not). Note the container hash does not change and images are posted to both locations upon cosign's release process. |
||
|
dependabot[bot]
|
10980311a5
|
chore(deps): bump cachix/install-nix-action from 29 to 30 (#5169)
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action) from 29 to 30. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cachix/install-nix-action/releases">cachix/install-nix-action's releases</a>.</em></p> <blockquote> <h2>v30</h2> <ul> <li>Nix: 2.24.7 -> 2.24.9, fixing <a href="https://github.com/NixOS/nix/security/advisories/GHSA-6fjr-mq49-mm2c">GHSA-6fjr-mq49-mm2c</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
2841417574
|
chore(deps): bump docker/setup-buildx-action from 3.7.0 to 3.7.1 (#5170) | ||
|
dependabot[bot]
|
e62db3c9ba
|
chore(deps): bump github/codeql-action from 3.26.9 to 3.26.11 (#5171) | ||
|
dependabot[bot]
|
8f1f86a660
|
chore(deps): bump codecov/codecov-action from 4.5.0 to 4.6.0 (#5163)
[//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.5.0 to 4.6.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v4.6.0</h2> <h2>What's Changed</h2> <ul> <li>build(deps): bump github/codeql-action from 3.25.8 to 3.25.10 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1481">codecov/codecov-action#1481</a></li> <li>build(deps): bump actions/checkout from 4.1.6 to 4.1.7 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1480">codecov/codecov-action#1480</a></li> <li>build(deps-dev): bump ts-jest from 29.1.4 to 29.1.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1479">codecov/codecov-action#1479</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.13.0 to 7.13.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1485">codecov/codecov-action#1485</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 7.13.0 to 7.13.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1484">codecov/codecov-action#1484</a></li> <li>build(deps-dev): bump typescript from 5.4.5 to 5.5.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1490">codecov/codecov-action#1490</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.13.1 to 7.14.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1493">codecov/codecov-action#1493</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 7.13.1 to 7.14.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1492">codecov/codecov-action#1492</a></li> <li>build(deps): bump github/codeql-action from 3.25.10 to 3.25.11 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1496">codecov/codecov-action#1496</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 7.14.1 to 7.15.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1501">codecov/codecov-action#1501</a></li> <li>build(deps-dev): bump typescript from 5.5.2 to 5.5.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1500">codecov/codecov-action#1500</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.14.1 to 7.15.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1499">codecov/codecov-action#1499</a></li> <li>build(deps): bump actions/upload-artifact from 4.3.3 to 4.3.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1502">codecov/codecov-action#1502</a></li> <li>build(deps-dev): bump ts-jest from 29.1.5 to 29.2.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1504">codecov/codecov-action#1504</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 7.15.0 to 7.16.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1503">codecov/codecov-action#1503</a></li> <li>build(deps-dev): bump ts-jest from 29.2.0 to 29.2.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1507">codecov/codecov-action#1507</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.15.0 to 7.16.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1505">codecov/codecov-action#1505</a></li> <li>build(deps): bump github/codeql-action from 3.25.11 to 3.25.12 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1509">codecov/codecov-action#1509</a></li> <li>chore(ci): restrict scorecards to codecov/codecov-action by <a href="https://github.com/thomasrockhu-codecov"><code>@thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1512">codecov/codecov-action#1512</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 7.16.0 to 7.16.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1514">codecov/codecov-action#1514</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.16.0 to 7.16.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1513">codecov/codecov-action#1513</a></li> <li>test: <code>versionInfo</code> by <a href="https://github.com/marcobiedermann"><code>@marcobiedermann</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1407">codecov/codecov-action#1407</a></li> <li>build(deps-dev): bump ts-jest from 29.2.2 to 29.2.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1515">codecov/codecov-action#1515</a></li> <li>build(deps): bump github/codeql-action from 3.25.12 to 3.25.13 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1516">codecov/codecov-action#1516</a></li> <li>build(deps-dev): bump typescript from 5.5.3 to 5.5.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1521">codecov/codecov-action#1521</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.16.1 to 7.17.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1520">codecov/codecov-action#1520</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.17.0 to 7.18.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1528">codecov/codecov-action#1528</a></li> <li>build(deps): bump github/codeql-action from 3.25.13 to 3.25.15 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1526">codecov/codecov-action#1526</a></li> <li>build(deps): bump ossf/scorecard-action from 2.3.3 to 2.4.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1525">codecov/codecov-action#1525</a></li> <li>build(deps-dev): bump ts-jest from 29.2.3 to 29.2.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1532">codecov/codecov-action#1532</a></li> <li>build(deps): bump actions/upload-artifact from 4.3.4 to 4.3.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1534">codecov/codecov-action#1534</a></li> <li>build(deps): bump github/codeql-action from 3.25.15 to 3.26.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1542">codecov/codecov-action#1542</a></li> <li>build(deps): bump actions/upload-artifact from 4.3.5 to 4.3.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1541">codecov/codecov-action#1541</a></li> <li>ref: Tidy up types and remove string coercion by <a href="https://github.com/nicholas-codecov"><code>@nicholas-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1536">codecov/codecov-action#1536</a></li> <li>build(deps-dev): bump <code>@octokit/webhooks-types</code> from 3.77.1 to 7.5.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1545">codecov/codecov-action#1545</a></li> <li>build(deps): bump github/codeql-action from 3.26.0 to 3.26.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1551">codecov/codecov-action#1551</a></li> <li>feat: pass tokenless value as branch override by <a href="https://github.com/joseph-sentry"><code>@joseph-sentry</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1511">codecov/codecov-action#1511</a></li> <li>build(deps): bump actions/upload-artifact from 4.3.6 to 4.4.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1563">codecov/codecov-action#1563</a></li> <li>Create makefile.yml by <a href="https://github.com/Hawthorne001"><code>@Hawthorne001</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1555">codecov/codecov-action#1555</a></li> <li>build(deps): bump github/codeql-action from 3.26.2 to 3.26.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1562">codecov/codecov-action#1562</a></li> <li>build(deps-dev): bump ts-jest from 29.2.4 to 29.2.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1557">codecov/codecov-action#1557</a></li> <li>Spell <code>evenName</code> in the logs correctly by <a href="https://github.com/webknjaz"><code>@webknjaz</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1560">codecov/codecov-action#1560</a></li> <li>build(deps-dev): bump typescript from 5.5.4 to 5.6.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1566">codecov/codecov-action#1566</a></li> <li>build(deps-dev): bump <code>@types/jest</code> from 29.5.12 to 29.5.13 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1567">codecov/codecov-action#1567</a></li> <li>build(deps): bump github/codeql-action from 3.26.6 to 3.26.7 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1569">codecov/codecov-action#1569</a></li> <li>build(deps-dev): bump eslint from 8.57.0 to 8.57.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1571">codecov/codecov-action#1571</a></li> <li>build(deps): bump github/codeql-action from 3.26.7 to 3.26.8 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1575">codecov/codecov-action#1575</a></li> <li>build(deps-dev): bump <code>@vercel/ncc</code> from 0.38.1 to 0.38.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1577">codecov/codecov-action#1577</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
7b697a854d
|
chore(deps): bump golang from 1.23.1-alpine to 1.23.2-alpine (#5164)
Bumps golang from 1.23.1-alpine to 1.23.2-alpine. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
747c11d833
|
chore(deps): bump docker/setup-buildx-action from 3.6.1 to 3.7.0 (#5165)
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3.6.1 to 3.7.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/setup-buildx-action/releases">docker/setup-buildx-action's releases</a>.</em></p> <blockquote> <h2>v3.7.0</h2> <ul> <li>Always set <code>buildkitd-flags</code> if opt-in by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/docker/setup-buildx-action/pull/363">docker/setup-buildx-action#363</a></li> <li>Remove <code>uuid</code> package and switch to <code>crypto</code> by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/docker/setup-buildx-action/pull/366">docker/setup-buildx-action#366</a></li> <li>Bump <code>@docker/actions-toolkit</code> from 0.35.0 to 0.39.0 in <a href="https://redirect.github.com/docker/setup-buildx-action/pull/362">docker/setup-buildx-action#362</a></li> <li>Bump path-to-regexp from 6.2.2 to 6.3.0 in <a href="https://redirect.github.com/docker/setup-buildx-action/pull/354">docker/setup-buildx-action#354</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/setup-buildx-action/compare/v3.6.1...v3.7.0">https://github.com/docker/setup-buildx-action/compare/v3.6.1...v3.7.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
71e7a63ca1
|
chore(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 (#5166)
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 6.1.0 to 6.1.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/golangci/golangci-lint-action/releases">golangci/golangci-lint-action's releases</a>.</em></p> <blockquote> <h2>v6.1.1</h2> <!-- raw HTML omitted --> <h2>What's Changed</h2> <h3>Changes</h3> <ul> <li>fix: clean go install output by <a href="https://github.com/ldez"><code>@ldez</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1102">golangci/golangci-lint-action#1102</a></li> </ul> <h3>Documentation</h3> <ul> <li>docs: update README.md to use golangci-lint v1.60 by <a href="https://github.com/dunglas"><code>@dunglas</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1087">golangci/golangci-lint-action#1087</a></li> </ul> <h3>Dependencies</h3> <ul> <li>build(deps-dev): bump the dev-dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1082">golangci/golangci-lint-action#1082</a></li> <li>build(deps): bump <code>@types/node</code> from 22.0.0 to 22.1.0 in the dependencies group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1083">golangci/golangci-lint-action#1083</a></li> <li>build(deps-dev): bump the dev-dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1084">golangci/golangci-lint-action#1084</a></li> <li>build(deps): bump <code>@types/node</code> from 22.1.0 to 22.2.0 in the dependencies group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1085">golangci/golangci-lint-action#1085</a></li> <li>build(deps-dev): bump the dev-dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1088">golangci/golangci-lint-action#1088</a></li> <li>build(deps-dev): bump the dev-dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1093">golangci/golangci-lint-action#1093</a></li> <li>build(deps): bump the dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1089">golangci/golangci-lint-action#1089</a></li> <li>build(deps): bump the dependencies group across 1 directory with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1096">golangci/golangci-lint-action#1096</a></li> <li>build(deps-dev): bump the dev-dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1097">golangci/golangci-lint-action#1097</a></li> <li>build(deps): bump <code>@types/node</code> from 22.5.1 to 22.5.2 in the dependencies group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1098">golangci/golangci-lint-action#1098</a></li> <li>build(deps): bump <code>@types/node</code> from 22.5.2 to 22.5.4 in the dependencies group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1100">golangci/golangci-lint-action#1100</a></li> <li>build(deps-dev): bump the dev-dependencies group with 3 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1099">golangci/golangci-lint-action#1099</a></li> <li>build(deps-dev): bump the dev-dependencies group with 3 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1103">golangci/golangci-lint-action#1103</a></li> <li>build(deps): bump <code>@types/node</code> from 22.5.4 to 22.5.5 in the dependencies group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1104">golangci/golangci-lint-action#1104</a></li> <li>build(deps-dev): bump the dev-dependencies group with 3 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1105">golangci/golangci-lint-action#1105</a></li> <li>build(deps): bump <code>@types/node</code> from 22.5.5 to 22.7.4 in the dependencies group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1109">golangci/golangci-lint-action#1109</a></li> <li>build(deps-dev): bump the dev-dependencies group with 3 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1108">golangci/golangci-lint-action#1108</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/dunglas"><code>@dunglas</code></a> made their first contribution in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1087">golangci/golangci-lint-action#1087</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/golangci/golangci-lint-action/compare/v6.1.0...v6.1.1">https://github.com/golangci/golangci-lint-action/compare/v6.1.0...v6.1.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
Oleksandr Redko
|
c1f8b686db
|
test: add missing file.Close() calls (#5167)
This PR adds missing `file.Close()` calls in tests. All files that are opened using `os.Open` should be closed after finishing reading. |
||
Eng Zer Jun
|
b8aef100f2
|
perf(changelog): improve changelog sort performance (#5161)
This commit removes the unnecessary slice copy in `sortEntries`, and
replaces `sort.Slice` [^1] with the new `slices.SortFunc` [^2].
As recommended by the Go documentation, `slices.SortFunc` is generally
faster because it uses generic, whereas `sort.Slice` relies on
reflection, which incurs additional allocations
The benchmark result from the newly added `Benchmark_sortEntries` show
approximately a 64% performance improvement.
Benchmark result:
```
│ old.txt │ new.txt │
│ sec/op │ sec/op vs base │
_sortEntries/asc-16 16.458µ ± 1% 5.958µ ± 1% -63.80% (p=0.000 n=10)
_sortEntries/desc-16 17.675µ ± 1% 6.020µ ± 0% -65.94% (p=0.000 n=10)
geomean 17.06µ 5.989µ -64.89%
│ old.txt │ new.txt │
│ B/op │ B/op vs base │
_sortEntries/asc-16 3.164Ki ± 0% 1.164Ki ± 0% -63.21% (p=0.000 n=10)
_sortEntries/desc-16 3.422Ki ± 0% 1.164Ki ± 0% -65.98% (p=0.000 n=10)
geomean 3.290Ki 1.164Ki -64.62%
│ old.txt │ new.txt │
│ allocs/op │ allocs/op vs base │
_sortEntries/asc-16 68.00 ± 0% 25.00 ± 0% -63.24% (p=0.000 n=10)
_sortEntries/desc-16 72.00 ± 0% 25.00 ± 0% -65.28% (p=0.000 n=10)
geomean 69.97 25.00 -64.27%
```
[^1]: https://pkg.go.dev/sort#Slice
[^2]: https://pkg.go.dev/slices#SortFunc
Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>
|
||
Carlos Alexandro Becker
|
d2469666b8
|
docs: experiment version | ||
|
Carlos Alexandro Becker
|
0468da12fd
|
feat: default GOARM change to 7 (#5157)
Guarded by an environment variable for now. Closes #5155 |
||
|
dependabot[bot]
|
15d54735ab
|
chore(deps): bump actions/checkout from 4.1.7 to 4.2.0 (#5158)
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.7 to 4.2.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p> <blockquote> <h2>v4.2.0</h2> <h2>What's Changed</h2> <ul> <li>Add Ref and Commit outputs by <a href="https://github.com/lucacome"><code>@lucacome</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1180">actions/checkout#1180</a></li> <li>Dependabot updates in <a href="https://redirect.github.com/actions/checkout/pull/1777">actions/checkout#1777</a> & <a href="https://redirect.github.com/actions/checkout/pull/1872">actions/checkout#1872</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/yasonk"><code>@yasonk</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1869">actions/checkout#1869</a></li> <li><a href="https://github.com/lucacome"><code>@lucacome</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1180">actions/checkout#1180</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v4.1.7...v4.2.0">https://github.com/actions/checkout/compare/v4.1.7...v4.2.0</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/blob/main/CHANGELOG.md">actions/checkout's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <h2>v4.2.0</h2> <ul> <li>Add Ref and Commit outputs by <a href="https://github.com/lucacome"><code>@lucacome</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1180">actions/checkout#1180</a></li> <li>Dependency updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a>- <a href="https://redirect.github.com/actions/checkout/pull/1777">actions/checkout#1777</a>, <a href="https://redirect.github.com/actions/checkout/pull/1872">actions/checkout#1872</a></li> </ul> <h2>v4.1.7</h2> <ul> <li>Bump the minor-npm-dependencies group across 1 directory with 4 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1739">actions/checkout#1739</a></li> <li>Bump actions/checkout from 3 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1697">actions/checkout#1697</a></li> <li>Check out other refs/* by commit by <a href="https://github.com/orhantoy"><code>@orhantoy</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1774">actions/checkout#1774</a></li> <li>Pin actions/checkout's own workflows to a known, good, stable version. by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1776">actions/checkout#1776</a></li> </ul> <h2>v4.1.6</h2> <ul> <li>Check platform to set archive extension appropriately by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1732">actions/checkout#1732</a></li> </ul> <h2>v4.1.5</h2> <ul> <li>Update NPM dependencies by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1703">actions/checkout#1703</a></li> <li>Bump github/codeql-action from 2 to 3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1694">actions/checkout#1694</a></li> <li>Bump actions/setup-node from 1 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1696">actions/checkout#1696</a></li> <li>Bump actions/upload-artifact from 2 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1695">actions/checkout#1695</a></li> <li>README: Suggest <code>user.email</code> to be <code>41898282+github-actions[bot]@users.noreply.github.com</code> by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1707">actions/checkout#1707</a></li> </ul> <h2>v4.1.4</h2> <ul> <li>Disable <code>extensions.worktreeConfig</code> when disabling <code>sparse-checkout</code> by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1692">actions/checkout#1692</a></li> <li>Add dependabot config by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1688">actions/checkout#1688</a></li> <li>Bump the minor-actions-dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1693">actions/checkout#1693</a></li> <li>Bump word-wrap from 1.2.3 to 1.2.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1643">actions/checkout#1643</a></li> </ul> <h2>v4.1.3</h2> <ul> <li>Check git version before attempting to disable <code>sparse-checkout</code> by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1656">actions/checkout#1656</a></li> <li>Add SSH user parameter by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1685">actions/checkout#1685</a></li> <li>Update <code>actions/checkout</code> version in <code>update-main-version.yml</code> by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1650">actions/checkout#1650</a></li> </ul> <h2>v4.1.2</h2> <ul> <li>Fix: Disable sparse checkout whenever <code>sparse-checkout</code> option is not present <a href="https://github.com/dscho"><code>@dscho</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1598">actions/checkout#1598</a></li> </ul> <h2>v4.1.1</h2> <ul> <li>Correct link to GitHub Docs by <a href="https://github.com/peterbe"><code>@peterbe</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1511">actions/checkout#1511</a></li> <li>Link to release page from what's new section by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1514">actions/checkout#1514</a></li> </ul> <h2>v4.1.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/1396">Add support for partial checkout filters</a></li> </ul> <h2>v4.0.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/1067">Support fetching without the --progress option</a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/1436">Update to node20</a></li> </ul> <h2>v3.6.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/1377">Fix: Mark test scripts with Bash'isms to be run via Bash</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
Carlos Alexandro Becker
|
ae301b3773
|
test: update golden files
refs 33dfbce4823a9f80854b7f063541d155260a79e0 Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
Leo Robinovitch
|
33dfbce482
|
fix: remove filetype exe from chocolatey template (#5159)
When submitting a new project to chocolatey using goreleaser, a reviewer told me that a line in the template is incorrect: <img width="1054" alt="image" src="https://github.com/user-attachments/assets/423c4493-85fa-4cc5-8a74-97d2a561743b"> <img width="1052" alt="image" src="https://github.com/user-attachments/assets/04425da1-eb90-4504-9308-9a2e49ca85d8"> > since that is not a valid parameter to the Install-ChocolateyZipPackage function: https://docs.chocolatey.org/en-us/create/functions/install-chocolateyzippackage/ This PR aims to correct that by removing the line from the template as requested |
||
|
dependabot[bot]
|
962973441b
|
chore(deps): bump cachix/install-nix-action from V28 to 29 (#5160) | ||
|
dependabot[bot]
|
c8cb976e1b
|
chore(deps): bump github/codeql-action from 3.26.8 to 3.26.9 (#5156)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.8 to 3.26.9. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <p>Note that the only difference between <code>v2</code> and <code>v3</code> of the CodeQL Action is the node version they support, with <code>v3</code> running on node 20 while we continue to release <code>v2</code> to support running on node 16. For example <code>3.22.11</code> was the first <code>v3</code> release and is functionally identical to <code>2.22.11</code>. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.</p> <h2>[UNRELEASED]</h2> <p>No user facing changes.</p> <h2>3.26.9 - 24 Sep 2024</h2> <p>No user facing changes.</p> <h2>3.26.8 - 19 Sep 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.19.0. <a href="https://redirect.github.com/github/codeql-action/pull/2483">#2483</a></li> </ul> <h2>3.26.7 - 13 Sep 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.4. <a href="https://redirect.github.com/github/codeql-action/pull/2471">#2471</a></li> </ul> <h2>3.26.6 - 29 Aug 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.3. <a href="https://redirect.github.com/github/codeql-action/pull/2449">#2449</a></li> </ul> <h2>3.26.5 - 23 Aug 2024</h2> <ul> <li>Fix an issue where the <code>csrutil</code> system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled. <a href="https://redirect.github.com/github/codeql-action/pull/2441">#2441</a></li> </ul> <h2>3.26.4 - 21 Aug 2024</h2> <ul> <li><em>Deprecation:</em> The <code>add-snippets</code> input on the <code>analyze</code> Action is deprecated and will be removed in the first release in August 2025. <a href="https://redirect.github.com/github/codeql-action/pull/2436">#2436</a></li> <li>Fix an issue where the disk usage system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled, and then surface a warning. The system call is now disabled for these machines. <a href="https://redirect.github.com/github/codeql-action/pull/2434">#2434</a></li> </ul> <h2>3.26.3 - 19 Aug 2024</h2> <ul> <li>Fix an issue where the CodeQL Action could not write diagnostic messages on Windows. This issue did not impact analysis quality. <a href="https://redirect.github.com/github/codeql-action/pull/2430">#2430</a></li> </ul> <h2>3.26.2 - 14 Aug 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.2. <a href="https://redirect.github.com/github/codeql-action/pull/2417">#2417</a></li> </ul> <h2>3.26.1 - 13 Aug 2024</h2> <p>No user facing changes.</p> <h2>3.26.0 - 06 Aug 2024</h2> <ul> <li><em>Deprecation:</em> Swift analysis on Ubuntu runner images is no longer supported. Please migrate to a macOS runner if this affects you. <a href="https://redirect.github.com/github/codeql-action/pull/2403">#2403</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
Carlos Alexandro Becker
|
d4b8c6b6e5
|
docs: improve ko docs
refs #5154 |
||
|
dependabot[bot]
|
86fe795084
|
chore(deps): bump go.uber.org/automaxprocs from 1.5.3 to 1.6.0 (#5152)
Bumps [go.uber.org/automaxprocs](https://github.com/uber-go/automaxprocs) from 1.5.3 to 1.6.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/uber-go/automaxprocs/releases">go.uber.org/automaxprocs's releases</a>.</em></p> <blockquote> <h2>v1.6.0</h2> <ul> <li>Add RoundQuotaFunc option that allows configuration of rounding behavior for floating point CPU quota.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/uber-go/automaxprocs/blob/master/CHANGELOG.md">go.uber.org/automaxprocs's changelog</a>.</em></p> <blockquote> <h2>v1.6.0 (2024-07-24)</h2> <ul> <li>Add RoundQuotaFunc option that allows configuration of rounding behavior for floating point CPU quota.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
dde4f8f5ac
|
chore(deps): bump github.com/klauspost/compress from 1.17.9 to 1.17.10 (#5151)
Bumps [github.com/klauspost/compress](https://github.com/klauspost/compress) from 1.17.9 to 1.17.10. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/klauspost/compress/releases">github.com/klauspost/compress's releases</a>.</em></p> <blockquote> <h2>v1.17.10</h2> <h2>What's Changed</h2> <ul> <li>gzhttp: Add TransportAlwaysDecompress option. by <a href="https://github.com/klauspost"><code>@klauspost</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/978">klauspost/compress#978</a></li> <li>s2: Add EncodeBuffer buffer recycling callback by <a href="https://github.com/klauspost"><code>@klauspost</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/982">klauspost/compress#982</a></li> <li>zstd: Improve memory usage on small streaming encodes by <a href="https://github.com/klauspost"><code>@klauspost</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/1007">klauspost/compress#1007</a></li> <li>gzhttp: Add supported decompress request body by <a href="https://github.com/mirecl"><code>@mirecl</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/1002">klauspost/compress#1002</a></li> <li>flate: read data written with partial flush by <a href="https://github.com/vajexal"><code>@vajexal</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/996">klauspost/compress#996</a></li> <li>ci: Upgrade Go & other by <a href="https://github.com/klauspost"><code>@klauspost</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/1008">klauspost/compress#1008</a></li> <li>docs: Small typofix in comment by <a href="https://github.com/Jille"><code>@Jille</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/976">klauspost/compress#976</a></li> <li>build(deps): bump the github-actions group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/979">klauspost/compress#979</a></li> <li>docs: Fix URL typo when installing builddict by <a href="https://github.com/Wikidepia"><code>@Wikidepia</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/980">klauspost/compress#980</a></li> <li>build(deps): bump the github-actions group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/985">klauspost/compress#985</a></li> <li>Fix typos by <a href="https://github.com/deining"><code>@deining</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/986">klauspost/compress#986</a></li> <li>build(deps): bump github/codeql-action from 3.25.15 to 3.26.6 in the github-actions group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/997">klauspost/compress#997</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/Wikidepia"><code>@Wikidepia</code></a> made their first contribution in <a href="https://redirect.github.com/klauspost/compress/pull/980">klauspost/compress#980</a></li> <li><a href="https://github.com/deining"><code>@deining</code></a> made their first contribution in <a href="https://redirect.github.com/klauspost/compress/pull/986">klauspost/compress#986</a></li> <li><a href="https://github.com/vajexal"><code>@vajexal</code></a> made their first contribution in <a href="https://redirect.github.com/klauspost/compress/pull/996">klauspost/compress#996</a></li> <li><a href="https://github.com/mirecl"><code>@mirecl</code></a> made their first contribution in <a href="https://redirect.github.com/klauspost/compress/pull/1002">klauspost/compress#1002</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/klauspost/compress/compare/v1.17.9...v1.17.10">https://github.com/klauspost/compress/compare/v1.17.9...v1.17.10</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
James Telfer
|
2bdfbdcbfe
|
fix: signature template failed silently after signing process completed (#5148)
The presence of an artifact field in the `signature` or `certificate` template field caused a silent failure in the template when re-applied after the external signing process was called. This was due to the artifact being presence in the template context before the signing process, but not after. An error here was also ignored. The fix supplies the artifact to the template context, and also allows a template failure to fail the overall process. As far as I can tell, this change aligns behaviour to match existing documentation. Fixes #5147 |
||
|
dependabot[bot]
|
d456f7937b
|
chore(deps): bump dagger/dagger-for-github from 6.9.0 to 6.11.0 (#5150)
Bumps [dagger/dagger-for-github](https://github.com/dagger/dagger-for-github) from 6.9.0 to 6.11.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/dagger/dagger-for-github/releases">dagger/dagger-for-github's releases</a>.</em></p> <blockquote> <h2>v6.11.0</h2> <h2>What's Changed</h2> <ul> <li>bump to engine v0.13.3 by <a href="https://github.com/vito"><code>@vito</code></a> in <a href="https://redirect.github.com/dagger/dagger-for-github/pull/149">dagger/dagger-for-github#149</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/dagger/dagger-for-github/compare/v6.10.0...v6.11.0">https://github.com/dagger/dagger-for-github/compare/v6.10.0...v6.11.0</a></p> <h2>v6.10.0</h2> <h2>What's Changed</h2> <ul> <li>bump to engine v0.13.2 by <a href="https://github.com/vito"><code>@vito</code></a> in <a href="https://redirect.github.com/dagger/dagger-for-github/pull/148">dagger/dagger-for-github#148</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/dagger/dagger-for-github/compare/v6.9.0...v6.10.0">https://github.com/dagger/dagger-for-github/compare/v6.9.0...v6.10.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
Wayne
|
c08d7cd9ad
|
docs: correct spelling errors in documentation (#5149)
## Description Corrected some spelling errors in the `www/docs/install.md` and `www/docs/blog/posts/2024-09-12-v2.3.md` . Signed-off-by: Ruihua Wen <spiffyeight77@gmail.com> |
||
|
dependabot[bot]
|
8428a1e481
|
chore(deps): bump github/codeql-action from 3.26.7 to 3.26.8 (#5143)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.7 to 3.26.8. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <p>Note that the only difference between <code>v2</code> and <code>v3</code> of the CodeQL Action is the node version they support, with <code>v3</code> running on node 20 while we continue to release <code>v2</code> to support running on node 16. For example <code>3.22.11</code> was the first <code>v3</code> release and is functionally identical to <code>2.22.11</code>. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.</p> <h2>[UNRELEASED]</h2> <p>No user facing changes.</p> <h2>3.26.8 - 19 Sep 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.19.0. <a href="https://redirect.github.com/github/codeql-action/pull/2483">#2483</a></li> </ul> <h2>3.26.7 - 13 Sep 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.4. <a href="https://redirect.github.com/github/codeql-action/pull/2471">#2471</a></li> </ul> <h2>3.26.6 - 29 Aug 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.3. <a href="https://redirect.github.com/github/codeql-action/pull/2449">#2449</a></li> </ul> <h2>3.26.5 - 23 Aug 2024</h2> <ul> <li>Fix an issue where the <code>csrutil</code> system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled. <a href="https://redirect.github.com/github/codeql-action/pull/2441">#2441</a></li> </ul> <h2>3.26.4 - 21 Aug 2024</h2> <ul> <li><em>Deprecation:</em> The <code>add-snippets</code> input on the <code>analyze</code> Action is deprecated and will be removed in the first release in August 2025. <a href="https://redirect.github.com/github/codeql-action/pull/2436">#2436</a></li> <li>Fix an issue where the disk usage system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled, and then surface a warning. The system call is now disabled for these machines. <a href="https://redirect.github.com/github/codeql-action/pull/2434">#2434</a></li> </ul> <h2>3.26.3 - 19 Aug 2024</h2> <ul> <li>Fix an issue where the CodeQL Action could not write diagnostic messages on Windows. This issue did not impact analysis quality. <a href="https://redirect.github.com/github/codeql-action/pull/2430">#2430</a></li> </ul> <h2>3.26.2 - 14 Aug 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.2. <a href="https://redirect.github.com/github/codeql-action/pull/2417">#2417</a></li> </ul> <h2>3.26.1 - 13 Aug 2024</h2> <p>No user facing changes.</p> <h2>3.26.0 - 06 Aug 2024</h2> <ul> <li><em>Deprecation:</em> Swift analysis on Ubuntu runner images is no longer supported. Please migrate to a macOS runner if this affects you. <a href="https://redirect.github.com/github/codeql-action/pull/2403">#2403</a></li> <li>Bump the minimum CodeQL bundle version to 2.13.5. <a href="https://redirect.github.com/github/codeql-action/pull/2408">#2408</a></li> </ul> <h2>3.25.15 - 26 Jul 2024</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
4021d4389f
|
chore(deps): bump dagger/dagger-for-github from 6.8.0 to 6.9.0 (#5144)
Bumps
[dagger/dagger-for-github](https://github.com/dagger/dagger-for-github)
from 6.8.0 to 6.9.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/dagger/dagger-for-github/releases">dagger/dagger-for-github's
releases</a>.</em></p>
<blockquote>
<h2>v6.9.0</h2>
<h2>What's Changed</h2>
<ul>
<li>bump dagger version to v0.13.1 by <a
href="https://github.com/sipsma"><code>@sipsma</code></a> in <a
href="https://redirect.github.com/dagger/dagger-for-github/pull/147">dagger/dagger-for-github#147</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/dagger/dagger-for-github/compare/v6...v6.9.0">https://github.com/dagger/dagger-for-github/compare/v6...v6.9.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="
|
||
|
Carlos Alexandro Becker
|
d3f8bbf31a
|
fix: snapshot version template should not have the leading 'v'
closes #5142 |
||
|
Carlos Alexandro Becker
|
bce9035aa2
|
docs: update contributing
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
Kyle Penfound
|
d594cdd436
|
ci: daggerize test pipeline (#4969)
## What is this? This daggerizes the lint, test, and build pipelines for Goreleaser. ## Why? For context, the previous pass at this can be found here https://github.com/goreleaser/goreleaser/pull/4186 . Since that time, the DX for using Dagger has been considerably improved. The benefit this brings to the Goreleaser project is that the test pipeline can be run locally the same as it is run in CI without requiring contributors to configure additional tools in their developer environments. Additionally, by codifying the test and build execution environments, you no longer need to be concerned with changing or outdated Github Actions runner environments. ## How? As a contributor, you can simply clone/fork Goreleaser and run: `dagger functions` to see which commands are available. To lint local code: `dagger call --source . lint` To run tests against local code: `dagger call --source . test output` To run tests against local code and get the coverage report: `dagger call --source . test coverage-report -o ./coverage.txt` To run tests on the main branch on Github: `dagger call --source=https://github.com/goreleaser/goreleaser test output` To run tests against a PR branch on Github: `dagger call --source=https://github.com/goreleaser/goreleaser#pull/4958/head test output` To run tests against a PR branch using the dagger pipeline committed to the main branch, without checking out goreleaser: `dagger -m github.com/goreleaser/goreleaser call --source=https://github.com/goreleaser/goreleaser#pull/4958/head test output` And so on 😃 ## Also In addition to the Dagger code, I've updated the build.yml workflow to use the test pipeline and updated CONTRIBUTING.md with the command to run tests with Dagger. Note that I did not update the Taskfile.yml to avoid breaking anything for contributors comfortable with their existing workflows. Do you feel that this will benefit the Goreleaser project? Would you like to see the Dagger functions doing more/less? --------- Signed-off-by: kpenfound <kyle@dagger.io> Signed-off-by: Lev Lazinskiy <lev@levlaz.org> Signed-off-by: Lev Lazinskiy <lev@dagger.io> Co-authored-by: Lev Lazinskiy <lev@levlaz.org> Co-authored-by: Lev Lazinskiy <lev@dagger.io> |
||
actions-user
|
0a42a983b0 | chore: auto-update generated files | ||
|
Carlos Alexandro Becker
|
e8c2ef7735
|
fix: upx UnknownExecutableFormatException
closes #5141v2.3.2 |
||
|
Carlos Alexandro Becker
|
527485c58f
|
chore(deps): update go-github to v65
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
dependabot[bot]
|
7d1063f07d
|
chore(deps): bump github/codeql-action from 3.26.6 to 3.26.7 (#5140)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.6 to 3.26.7. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <p>Note that the only difference between <code>v2</code> and <code>v3</code> of the CodeQL Action is the node version they support, with <code>v3</code> running on node 20 while we continue to release <code>v2</code> to support running on node 16. For example <code>3.22.11</code> was the first <code>v3</code> release and is functionally identical to <code>2.22.11</code>. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.</p> <h2>[UNRELEASED]</h2> <p>No user facing changes.</p> <h2>3.26.7 - 13 Sep 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.4. <a href="https://redirect.github.com/github/codeql-action/pull/2471">#2471</a></li> </ul> <h2>3.26.6 - 29 Aug 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.3. <a href="https://redirect.github.com/github/codeql-action/pull/2449">#2449</a></li> </ul> <h2>3.26.5 - 23 Aug 2024</h2> <ul> <li>Fix an issue where the <code>csrutil</code> system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled. <a href="https://redirect.github.com/github/codeql-action/pull/2441">#2441</a></li> </ul> <h2>3.26.4 - 21 Aug 2024</h2> <ul> <li><em>Deprecation:</em> The <code>add-snippets</code> input on the <code>analyze</code> Action is deprecated and will be removed in the first release in August 2025. <a href="https://redirect.github.com/github/codeql-action/pull/2436">#2436</a></li> <li>Fix an issue where the disk usage system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled, and then surface a warning. The system call is now disabled for these machines. <a href="https://redirect.github.com/github/codeql-action/pull/2434">#2434</a></li> </ul> <h2>3.26.3 - 19 Aug 2024</h2> <ul> <li>Fix an issue where the CodeQL Action could not write diagnostic messages on Windows. This issue did not impact analysis quality. <a href="https://redirect.github.com/github/codeql-action/pull/2430">#2430</a></li> </ul> <h2>3.26.2 - 14 Aug 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.2. <a href="https://redirect.github.com/github/codeql-action/pull/2417">#2417</a></li> </ul> <h2>3.26.1 - 13 Aug 2024</h2> <p>No user facing changes.</p> <h2>3.26.0 - 06 Aug 2024</h2> <ul> <li><em>Deprecation:</em> Swift analysis on Ubuntu runner images is no longer supported. Please migrate to a macOS runner if this affects you. <a href="https://redirect.github.com/github/codeql-action/pull/2403">#2403</a></li> <li>Bump the minimum CodeQL bundle version to 2.13.5. <a href="https://redirect.github.com/github/codeql-action/pull/2408">#2408</a></li> </ul> <h2>3.25.15 - 26 Jul 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.1. <a href="https://redirect.github.com/github/codeql-action/pull/2385">#2385</a></li> </ul> <h2>3.25.14 - 25 Jul 2024</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
actions-user
|
ff84a3d703 | chore: auto-update generated files | ||
|
dependabot[bot]
|
c16bd53142
|
chore(deps): bump cachix/install-nix-action from V27 to 28 (#5135)
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action) from V27 to 28. This release includes the previously tagged commit. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cachix/install-nix-action/releases">cachix/install-nix-action's releases</a>.</em></p> <blockquote> <h2>v28</h2> <p>Nix 2.24.6 - <a href="https://github.com/NixOS/nix/security/advisories/GHSA-h4vv-h3jq-v493">https://github.com/NixOS/nix/security/advisories/GHSA-h4vv-h3jq-v493</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="v2.3.1 |
||
Jun Xiang (カエデ)
|
46b3d88ae5
|
docs: Add GH Actions OIDC permission docs (#5137)
## What is this? Just adding documentation for using cosign with GitHub's OIDC in CI. ## Why? I spent 4 hours looking through goreleaser and GitHub's docs before I finally discovered I was missing the `id-token: write` permission in my workflow file. This PR serves to just include the `id-token: write` scope in the `CI -> (GH) actions` section of the docs to hopefully save other devs the trouble 🤣 ### Additional I also considered adding this to docs for the other CI providers, but I am not too familiar on the OIDC side of things; might be worth considering for the team? Cheers --- Been using goreleaser for one of my [oss projects](https://github.com/caffeine-addictt/waku) recently and it's been great! Just wanted to contribute something back, keep up the great work! :> Signed-off-by: AlexNg <contact@ngjx.org> |
||
|
Carlos Alexandro Becker
|
586ce73ddb
|
docs: announce v2.3 (#5134)
prepping |
||
|
Carlos Alexandro Becker
|
3149a36750
|
docs: update schema
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
Carlos Alexandro Becker
|
9f485838a3
|
Merge remote-tracking branch 'origin/main' | ||
|
Carlos Alexandro Becker
|
c7e5038077
|
fix: jsonschema | ||
|
actions-user
|
34974df0c6 | chore: auto-update generated files | ||
|
Carlos Alexandro Becker
|
a9f07ef2ea
|
docs: fix wrong links v2.3.0 | ||
|
Carlos Alexandro Becker
|
1014db44ff
|
docs: update
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
Andrej Giesbrecht
|
377ced6577
|
feat: add upx to our docker images (#5131)
I like to use the goreleaser for my private project and would like to have the binary scaled down with the UPX in the GitLab build pipeline. Therefore, it would be nice if the UPX tool is pre-installed in the Docker container. Signed-off-by: Andrej Giesbrecht <giesan@gmx.net> |
||
|
dependabot[bot]
|
0c5e4fd336
|
chore(deps): bump golang.org/x/tools from 0.24.0 to 0.25.0 (#5129)
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.24.0 to 0.25.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
Carlos Alexandro Becker
|
5495b670ae
|
chore(deps): update nfpm
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
Julien Salleyron
|
40668d4382
|
fix(build): c-shared build and release when target is wasm (#5128)
This commit fixes the automatic extension when building the wasip1_wasm target. Additionally, in future Go versions, support will be added for generating c-shared WASM binaries. https://github.com/golang/go/issues/65199 Therefore, this PR corrects the extension in the build process and removes the .h file from the release when c-shared is enabled and the target is WASM. |
||
|
Carlos Alexandro Becker
|
04dfb72d57
|
fix(brew): version and os not being considered
closes #5123 Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |