Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.7.0
to 0.8.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h2>gopls/v0.8.0</h2>
<h2>Go version support</h2>
<h3>Support for Go 1.18</h3>
<p>Version 0.8.0 of gopls supports features added to Go 1.18,
specifically:</p>
<ul>
<li>Support for multi-module workspaces using <code>go.work</code>
files.</li>
<li>Diagnostics for Fuzz tests.</li>
<li>Improved support for generics.</li>
</ul>
<p>To use these features, gopls must be installed using Go 1.18. See <a
href="https://go.dev/dl/">go.dev/dl</a> for the latest status of Go 1.18
-- as of writing Go 1.18 is not yet released, but Go 1.18 RC1 may be
used.</p>
<h3>Dropped support for Go 1.12</h3>
<p>Version 0.8.0 of gopls no longer supports building at Go 1.12. See <a
href="https://redirect.github.com/golang/go/issues/50827">golang/go#50827</a>
for more details.</p>
<h2>New Features</h2>
<h3><code>go.work</code> integration</h3>
<p>Gopls now supports multi-module workspaces using <code>go.work</code>
files. To use this feature, create a <code>go.work</code> file that
includes the modules you want to work on, and then open your editor to
the directory containing <code>go.work</code>. For more information, see
the <a href="https://go.dev/ref/mod#workspaces"><code>go.work</code>
reference</a>, or the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/workspace.md">gopls
documentation</a> for multi-module workspaces.</p>
<h3>Diagnostics for Fuzz tests</h3>
<p>When writing <a href="https://go.dev/doc/fuzz/">Fuzz tests</a>, gopls
provides diagnostics for invalid arguments to <code>Fuzz</code>.
<img
src="https://user-images.githubusercontent.com/57144380/156475335-0a277e11-c113-460a-837b-d066b42898a6.png"
alt="image" /></p>
<h3>Improved support for generics</h3>
<h4>Honor the language version configured in <code>go.mod</code></h4>
<p>gopls now provides diagnostics for language features based on the <a
href="https://go.dev/ref/mod#go-mod-file-go"><code>go</code>
directive</a> in the applicable <code>go.mod</code> file for a
package.</p>
<p>For some errors related to incompatible language versions, gopls
offers a quick-fix to update the <code>go.mod</code> Go version. (note
that if the <code>go.mod</code> file is open, it may need to be saved in
order for language version changes to take effect)
<img
src="https://user-images.githubusercontent.com/57144380/156476752-7aacf34b-2835-41cb-b80d-7bf5103a43a0.gif"
alt="gomodedit" /></p>
<h4>Improved completion with type parameters</h4>
<p>Gopls autocompletion is improved in several contexts when using
generic types.</p>
<p><img
src="https://user-images.githubusercontent.com/57144380/156477933-a1aab4c7-06cd-4cac-85e6-a847b6515b91.gif"
alt="genericvarcompl" /></p>
<h3>New code action to add missing method stubs</h3>
<p>Gopls now provides a code action to implement missing methods.</p>
<p><img
src="https://user-images.githubusercontent.com/57144380/156479262-482958e2-69a3-4a97-81a5-5dd27ac250ba.gif"
alt="implementiface" /></p>
<h3>Improved performance and accuracy for workspace symbol requests</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5ef3193183"><code>5ef3193</code></a>
gopls/internal/lsp/source/typerefs: reexpress tests wrt
ExternalRefs</li>
<li><a
href="c5f768a46c"><code>c5f768a</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="7c33a56129"><code>7c33a56</code></a>
gopls/internal/lsp/source: show both the original declaration and the
value o...</li>
<li><a
href="4d205d81b5"><code>4d205d8</code></a>
gopls/doc: add instructions for using go.work with the Go
distribution</li>
<li><a
href="d5076cc64d"><code>d5076cc</code></a>
gopls/internal/lsp/cache: don't trace a region for MetadataForFile</li>
<li><a
href="f79636135d"><code>f796361</code></a>
gopls/internal/lsp: add tracing instrumentation for all Server
methods</li>
<li><a
href="e10450195e"><code>e104501</code></a>
gopls/internal/astutil: TestPurgeFuncBodies requires source code for
std</li>
<li><a
href="6520870190"><code>6520870</code></a>
gopls/internal/lsp/source/typerefs: allow for duplicate decls</li>
<li><a
href="902fdcadc1"><code>902fdca</code></a>
gopls/internal/lsp/source/typerefs: purge func bodies before
parsing</li>
<li><a
href="58c9a6328c"><code>58c9a63</code></a>
go/packages/internal/nodecount: count ast.Node frequency</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.7.0...v0.8.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.6.0
to 0.7.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="36075149c5"><code>3607514</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="4abfd87339"><code>4abfd87</code></a>
google: add CredentialsParams.EarlyTokenRefresh</li>
<li><a
href="1e7f329364"><code>1e7f329</code></a>
oauth2: add ReuseTokenSourceWithExpiry</li>
<li><a
href="86850e0723"><code>86850e0</code></a>
oauth2: fix typo</li>
<li><a
href="a6e37e7441"><code>a6e37e7</code></a>
google: Updating 3pi documentation</li>
<li><a
href="54b70c833f"><code>54b70c8</code></a>
google: update missing auth help URL</li>
<li><a
href="2fc4ef5a6f"><code>2fc4ef5</code></a>
README: encourage issues and proposals before changes</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.6.0...v0.7.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/text](https://github.com/golang/text) from 0.8.0 to
0.9.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="48e4a4a957"><code>48e4a4a</code></a>
all: fix some comments</li>
<li>See full diff in <a
href="https://github.com/golang/text/compare/v0.8.0...v0.9.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.81.0 to 0.82.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="20cdbe7f77"><code>20cdbe7</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1682">#1682</a>
from timofurrer/variables-raw</li>
<li><a
href="197113e10b"><code>197113e</code></a>
Implement raw field for instance variables API</li>
<li><a
href="b88a1b2a51"><code>b88a1b2</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1680">#1680</a>
from bmsareias/fix-UptadeProtectedBranch</li>
<li><a
href="71bce5a6b6"><code>71bce5a</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1673">#1673</a>
from chenggui53/update-project-event-struct</li>
<li><a
href="34980c231f"><code>34980c2</code></a>
Fix tests</li>
<li><a
href="cb40c20b4a"><code>cb40c20</code></a>
add push data</li>
<li><a
href="febd628d67"><code>febd628</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1678">#1678</a>
from MakingPRs/issue-field</li>
<li><a
href="295e7008ab"><code>295e700</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/1677">#1677</a>
from MakingPRs/master</li>
<li><a
href="c70482aa21"><code>c70482a</code></a>
Change order of Epic fields to reflect docs</li>
<li><a
href="3f5e72f6f5"><code>3f5e72f</code></a>
Change order of Issue fields to reflect docs</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.81.0...v0.82.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/docker/docker](https://github.com/docker/docker) from
23.0.1+incompatible to 23.0.3+incompatible.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/docker/releases">github.com/docker/docker's
releases</a>.</em></p>
<blockquote>
<h2>v23.0.3</h2>
<h2>23.0.3</h2>
<blockquote>
<p><strong>Note</strong></p>
<p>Due to an issue with CentOS 9 Stream's package repositories, packages
for
CentOS 9 are currently unavailable. Packages for CentOS 9 may be added
later,
or as part of the next (23.0.4) patch release.</p>
</blockquote>
<h3>Bug fixes and enhancements</h3>
<ul>
<li>Fixed a number of issues that can cause Swarm encrypted overlay
networks
to fail to uphold their guarantees, addressing <a
href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28841">CVE-2023-28841</a>,
<a
href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28840">CVE-2023-28840</a>,
and
<a
href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28842">CVE-2023-28842</a>.
<ul>
<li>A lack of kernel support for encrypted overlay networks now reports
as an error.</li>
<li>Encrypted overlay networks are eagerly set up, rather than waiting
for
multiple nodes to attach.</li>
<li>Encrypted overlay networks are now usable on Red Hat Enterprise
Linux 9
through the use of the <code>xt_bpf</code> kernel module.</li>
<li>Users of Swarm overlay networks should review <a
href="https://github.com/moby/moby/security/advisories/GHSA-vwm3-crmr-xfxw">GHSA-vwm3-crmr-xfxw</a>
to ensure that unintentional exposure has not occurred.</li>
</ul>
</li>
</ul>
<h3>Packaging Updates</h3>
<ul>
<li>Update containerd to <a
href="https://github.com/containerd/containerd/releases/tag/v1.6.20">v1.6.20</a>.</li>
<li>Update runc to <a
href="https://github.com/opencontainers/runc/releases/tag/v1.1.5">v1.1.5</a>.</li>
</ul>
<h2>v23.0.2</h2>
<h2>23.0.2</h2>
<p>For a full list of pull requests and changes in this release, refer
to the relevant GitHub milestones:</p>
<ul>
<li><a
href="https://github.com/docker/cli/milestone/75?closed=1">docker/cli,
23.0.2 milestone</a></li>
<li><a
href="https://github.com/moby/moby/milestone/114?closed=1">moby/moby,
23.0.2 milestone</a></li>
</ul>
<h3>Bug fixes and enhancements</h3>
<ul>
<li>Fully resolve missing checks for <code>apparmor_parser</code> when
an AppArmor enabled kernel is detected. <a
href="https://redirect.github.com/containerd/containerd/pull/8087">containerd/containerd#8087</a>,
<a
href="https://redirect.github.com/moby/moby/pull/45043">moby/moby#45043</a></li>
<li>Ensure that credentials are redacted from Git URLs when generating
BuildKit buildinfo. Fixes <a
href="https://github.com/moby/buildkit/security/advisories/GHSA-gc89-7gcr-jxqc">CVE-2023-26054</a>.
<a
href="https://redirect.github.com/moby/moby/pull/45110">moby/moby#45110</a></li>
<li>Fix anonymous volumes created by a <code>VOLUME</code> line in a
Dockerfile being excluded from volume prune. <a
href="https://redirect.github.com/moby/moby/pull/45159">moby/moby#45159</a></li>
<li>Fix a failure to properly propagate errors during removal of volumes
on a Swarm node. <a
href="https://redirect.github.com/moby/moby/pull/45155">moby/moby#45155</a></li>
<li>Temporarily work around a bug in BuildKit <code>COPY --link</code>
by disabling mergeop/diffop optimization. <a
href="https://redirect.github.com/moby/moby/pull/45112">moby/moby#45112</a></li>
<li>Properly clean up child tasks when a parent Swarm job is removed. <a
href="https://redirect.github.com/moby/swarmkit/pull/3112">moby/swarmkit#3112</a>,
<a
href="https://redirect.github.com/moby/moby/pull/45107">moby/moby#45107</a></li>
<li>Fix Swarm service creation logic so that both a GenericResource and
a non-default network can be used together. <a
href="https://redirect.github.com/moby/swarmkit/pull/3082">moby/swarmkit#3082</a>,
<a
href="https://redirect.github.com/moby/moby/pull/45107">moby/moby#45107</a></li>
<li>Fix Swarm CSI support requiring the CSI plugin to offer staging
endpoints in order to publish a volume. <a
href="https://redirect.github.com/moby/swarmkit/pull/3116">moby/swarmkit#3116</a>,
<a
href="https://redirect.github.com/moby/moby/pull/45107">moby/moby#45107</a></li>
<li>Fix a panic caused by log buffering in some configurations. <a
href="https://redirect.github.com/containerd/fifo/pull/47">containerd/fifo#47</a>,
<a
href="https://redirect.github.com/moby/moby/pull/45051">moby/moby#45051</a></li>
<li>Log errors in the REST to Swarm gRPC API translation layer at the
debug level to reduce redundancy and noise. <a
href="https://redirect.github.com/moby/moby/pull/45016">moby/moby#45016</a></li>
<li>Fix a DNS resolution issue affecting containers created with
<code>--dns-opt</code> or <code>--dns-search</code> when
<code>systemd-resolved</code> is used outside the container. <a
href="https://redirect.github.com/moby/moby/pull/45000">moby/moby#45000</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="59118bff50"><code>59118bf</code></a>
Merge pull request from GHSA-232p-vwff-86mp</li>
<li><a
href="219f21bf07"><code>219f21b</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/docker/issues/45196">#45196</a>
from vvoland/integration-restart-race-23</li>
<li><a
href="b87f7f18b8"><code>b87f7f1</code></a>
libnet/d/overlay: insert the input-drop rule</li>
<li><a
href="c6bf3071fe"><code>c6bf307</code></a>
StartWithLogFile: Fix d.cmd race</li>
<li><a
href="7f49ca259b"><code>7f49ca2</code></a>
TestDaemonRestartKillContainers: Fix loop capture</li>
<li><a
href="98cbcb8003"><code>98cbcb8</code></a>
libnet/d/overlay: add BPF-powered VNI matcher</li>
<li><a
href="5c5fac2374"><code>5c5fac2</code></a>
libnet/d/overlay: extract VNI match rule builder</li>
<li><a
href="c492a22287"><code>c492a22</code></a>
libn/d/overlay: enforce encryption on sandbox init</li>
<li><a
href="018edb0284"><code>018edb0</code></a>
libnet/d/overlay: document some encryption code</li>
<li><a
href="a1fd2f22f6"><code>a1fd2f2</code></a>
Merge pull request <a
href="https://redirect.github.com/docker/docker/issues/45157">#45157</a>
from thaJeztah/23.0_backport_update_shfmt</li>
<li>Additional commits viewable in <a
href="https://github.com/docker/docker/compare/v23.0.1...v23.0.3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/goreleaser/goreleaser/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
<!--
Hi, thanks for contributing!
Please make sure you read our CONTRIBUTING guide.
Also, add tests and the respective documentation changes as well.
-->
Currently Goreleaser uses `runtime.NumCPU()` as the default value if
`--parallelism` is not set.
However, this will get the number of CPUs on the host even when
Goreleaser is run in a container with a limit on the maximum number of
CPUs that can be used (typically in a Kubernetes pod).
Actually, `docker run --cpus=1 goreleaser/goreleaser --debug` shows
`parallelism: 4` on my machine.
This behavior causes CPU throttling, which increases execution time and,
in the worst case, terminates with an error.
I ran into this problem with Jenkins where the agent runs on pod
([Kubernetes plugin for
Jenkins](https://plugins.jenkins.io/kubernetes/)).
This commit introduces
[automaxprocs](https://github.com/uber-go/automaxprocs) to fix this
issue.
This library sets `GOMAXPROCS` to match Linux container CPU quota.
I have also looked for a library that can get CPU quota more directly,
but this seems to be the best I could find.
The reason it is set in a different notation from the automaxprocs
README is to prevent logs from being displayed
([comment](https://github.com/uber-go/automaxprocs/issues/18#issuecomment-511330567)).
I would have liked to write a test, but this change is dependent on the
number of CPUs in the execution environment, so I could not.
Instead, I wrote a Dockerfile for testing
```Dockerfile
FROM golang:1.20.2
WORKDIR /go/app
RUN sh -c "$(curl --location https://taskfile.dev/install.sh)" -- -d -b /usr/local/bin
COPY . .
RUN task build
```
and confirmed built binary shows expected parallelism by following
commands:
```sh
docker build --file Dockerfile.test . -t test-goreleaser
docker run --cpus=1 test-goreleaser ./goreleaser build --snapshot --debug # parallelism: 1
docker run test-goreleaser ./goreleaser build --snapshot --debug # parallelism: 4
```
I also ran the built binary on my Macbook and it was fine.
Bumps
[github.com/opencontainers/runc](https://github.com/opencontainers/runc)
from 1.1.2 to 1.1.5.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/opencontainers/runc/releases">github.com/opencontainers/runc's
releases</a>.</em></p>
<blockquote>
<h2>runc 1.1.5 -- "囚われた屈辱は 反撃の嚆矢だ"</h2>
<p>This is the fifth patch release in the 1.1.z series of runc, which
fixes
three CVEs found in runc.</p>
<ul>
<li>
<p>CVE-2023-25809 is a vulnerability involving rootless containers where
(under specific configurations), the container would have write access
to the /sys/fs/cgroup/user.slice/... cgroup hierarchy. No other
hierarchies on the host were affected. This vulnerability was
discovered by Akihiro Suda.
<a
href="https://github.com/opencontainers/runc/security/advisories/GHSA-m8cg-xc2p-r3fc">https://github.com/opencontainers/runc/security/advisories/GHSA-m8cg-xc2p-r3fc</a></p>
</li>
<li>
<p>CVE-2023-27561 was a regression which effectively re-introduced
CVE-2019-19921. This bug was present from v1.0.0-rc95 to v1.1.4. This
regression was discovered by <a
href="https://github.com/Beuc"><code>@Beuc</code></a>.
<a
href="https://github.com/advisories/GHSA-vpvm-3wq2-2wvm">https://github.com/advisories/GHSA-vpvm-3wq2-2wvm</a></p>
</li>
<li>
<p>CVE-2023-28642 is a variant of CVE-2023-27561 and was fixed by the
same
patch. This variant of the above vulnerability was reported by Lei
Wang.
<a
href="https://github.com/opencontainers/runc/security/advisories/GHSA-g2j6-57v7-gm8c">https://github.com/opencontainers/runc/security/advisories/GHSA-g2j6-57v7-gm8c</a></p>
</li>
</ul>
<p>In addition, the following other fixes are included in this
release:</p>
<ul>
<li>Fix the inability to use <code>/dev/null</code> when inside a
container. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3620">#3620</a>)</li>
<li>Fix changing the ownership of host's <code>/dev/null</code> caused
by fd redirection
(a regression in 1.1.1). (<a
href="https://redirect.github.com/opencontainers/runc/issues/3674">#3674</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/3731">#3731</a>)</li>
<li>Fix rare runc exec/enter unshare error on older kernels, including
CentOS < 7.7. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3776">#3776</a>)</li>
<li>nsexec: Check for errors in <code>write_log()</code>. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3721">#3721</a>)</li>
</ul>
<h3>Static Linking Notices</h3>
<p>The <code>runc</code> binary distributed with this release are
<em>statically linked</em> with
the following <a
href="https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html">GNU
LGPL-2.1</a> licensed libraries, with <code>runc</code> acting
as a "work that uses the Library":</p>
<ul>
<li><a href="https://github.com/seccomp/libseccomp">libseccomp</a></li>
</ul>
<p>The versions of these libraries were not modified from their upstream
versions,
but in order to comply with the LGPL-2.1 (§6(a)), we have attached the
complete source code for those libraries which (when combined with the
attached
runc source code) may be used to exercise your rights under the
LGPL-2.1.</p>
<p>However we strongly suggest that you make use of your distribution's
packages
or download them from the authoritative upstream sources, especially
since
these libraries are related to the security of your containers.</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/opencontainers/runc/blob/v1.1.5/CHANGELOG.md">github.com/opencontainers/runc's
changelog</a>.</em></p>
<blockquote>
<h2>[1.1.5] - 2023-03-29</h2>
<blockquote>
<p>囚われた屈辱は
反撃の嚆矢だ</p>
</blockquote>
<h3>Fixed</h3>
<ul>
<li>Prohibit container's <code>/proc</code> and <code>/sys</code> to be
symlinks (CVE-2019-19921,
CVE-2023-27561, CVE-2023-28642, <a
href="https://redirect.github.com/opencontainers/runc/issues/3785">#3785</a>)</li>
<li>rootless: rework /sys/fs/cgroup mounts to avoid exposing the host's
cgroup
hierarchy into the container. (CVE-2023-25809)</li>
<li>Fix the inability to use <code>/dev/null</code> when inside a
container. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3620">#3620</a>)</li>
<li>Fix changing the ownership of host's <code>/dev/null</code> caused
by fd redirection
(a regression in 1.1.1). (<a
href="https://redirect.github.com/opencontainers/runc/issues/3674">#3674</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/3731">#3731</a>)</li>
<li>Fix rare runc exec/enter unshare error on older kernels, inlcuding
CentOS < 7.7. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3776">#3776</a>)</li>
<li>nsexec: Check for errors in <code>write_log()</code>. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3721">#3721</a>)</li>
<li>Various CI fixes and updates. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3618">#3618</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/3630">#3630</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/3640">#3640</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/3729">#3729</a>)</li>
</ul>
<h2>[1.1.4] - 2022-08-24</h2>
<blockquote>
<p>If you look for perfection, you'll never be content.</p>
</blockquote>
<h3>Fixed</h3>
<ul>
<li>Fix mounting via wrong proc fd.
When the user and mount namespaces are used, and the bind mount is
followed by
the cgroup mount in the spec, the cgroup was mounted using the bind
mount's
mount fd. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3511">#3511</a>)</li>
<li>Switch <code>kill()</code> in <code>libcontainer/nsenter</code> to
<code>sane_kill()</code>. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3536">#3536</a>)</li>
<li>Fix "permission denied" error from <code>runc run</code>
on <code>noexec</code> fs. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3541">#3541</a>)</li>
<li>Fix failed exec after <code>systemctl daemon-reload</code>.
Due to a regression in v1.1.3, the <code>DeviceAllow=char-pts rwm</code>
rule was no
longer added and was causing an error <code>open /dev/pts/0: operation
not permitted: unknown</code>
when systemd was reloaded. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3554">#3554</a>)</li>
<li>Various CI fixes. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3538">#3538</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/3558">#3558</a>,
<a
href="https://redirect.github.com/opencontainers/runc/issues/3562">#3562</a>)</li>
</ul>
<h2>[1.1.3] - 2022-06-09</h2>
<blockquote>
<p>In the beginning there was nothing, which exploded.</p>
</blockquote>
<h3>Fixed</h3>
<ul>
<li>Our seccomp <code>-ENOSYS</code> stub now correctly handles
multiplexed syscalls on
s390 and s390x. This solves the issue where syscalls the host kernel did
not
support would return <code>-EPERM</code> despite the existence of the
<code>-ENOSYS</code> stub
code (this was due to how s390x does syscall multiplexing). (<a
href="https://redirect.github.com/opencontainers/runc/issues/3478">#3478</a>)</li>
<li>Retry on dbus disconnect logic in libcontainer/cgroups/systemd now
works as
intended; this fix does not affect runc binary itself but is important
for
libcontainer users such as Kubernetes. (<a
href="https://redirect.github.com/opencontainers/runc/issues/3476">#3476</a>)</li>
<li>Inability to compile with recent clang due to an issue with
duplicate</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f19387a6be"><code>f19387a</code></a>
VERSION: release v1.1.5</li>
<li><a
href="58a9abee21"><code>58a9abe</code></a>
Merge pull request from GHSA-m8cg-xc2p-r3fc</li>
<li><a
href="27fb72c7ff"><code>27fb72c</code></a>
merge branch 'pr-3776' into release-1.1</li>
<li><a
href="8ec02ea1b1"><code>8ec02ea</code></a>
nsexec: retry unshare on EINVAL</li>
<li><a
href="059d7730fc"><code>059d773</code></a>
merge branch 'pr-3785' into release-1.1</li>
<li><a
href="0abab45c9b"><code>0abab45</code></a>
Prohibit /proc and /sys to be symlinks</li>
<li><a
href="0e6b818a2b"><code>0e6b818</code></a>
rootless: fix /sys/fs/cgroup mounts</li>
<li><a
href="c6781d100a"><code>c6781d1</code></a>
Merge pull request <a
href="https://redirect.github.com/opencontainers/runc/issues/3721">#3721</a>
from kinvolk/rata/nsfixes-backport</li>
<li><a
href="f6e2cd3baf"><code>f6e2cd3</code></a>
nsexec: Check for errors in write_log()</li>
<li><a
href="3775df9fcb"><code>3775df9</code></a>
Merge pull request <a
href="https://redirect.github.com/opencontainers/runc/issues/3731">#3731</a>
from kolyshkin/1.1-fix-dev-null</li>
<li>Additional commits viewable in <a
href="https://github.com/opencontainers/runc/compare/v1.1.2...v1.1.5">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/goreleaser/goreleaser/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/imdario/mergo](https://github.com/imdario/mergo) from
0.3.14 to 0.3.15.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="fb3c082091"><code>fb3c082</code></a>
Update stackaid dependencies for imdario/mergo</li>
<li><a
href="c9e40b59db"><code>c9e40b5</code></a>
Merge pull request <a
href="https://redirect.github.com/imdario/mergo/issues/227">#227</a>
from eh-steve/should-not-dereference</li>
<li><a
href="acd16ec124"><code>acd16ec</code></a>
Merge branch 'master' into should-not-dereference</li>
<li><a
href="62d1cf2897"><code>62d1cf2</code></a>
Update stackaid dependencies for imdario/mergo</li>
<li><a
href="dcef160919"><code>dcef160</code></a>
Merge pull request <a
href="https://redirect.github.com/imdario/mergo/issues/226">#226</a>
from ronaudinho/fix/202</li>
<li><a
href="404749e66d"><code>404749e</code></a>
Update stackaid dependencies for imdario/mergo</li>
<li><a
href="bd316d34ac"><code>bd316d3</code></a>
Merge pull request <a
href="https://redirect.github.com/imdario/mergo/issues/221">#221</a>
from zhiyu0729/issue220</li>
<li><a
href="5b9bbdb8b6"><code>5b9bbdb</code></a>
Update stackaid dependencies for imdario/mergo</li>
<li><a
href="90db0ad2f4"><code>90db0ad</code></a>
Merge pull request <a
href="https://redirect.github.com/imdario/mergo/issues/170">#170</a>
from mdeltour/fix/naming-typo</li>
<li><a
href="0e73161ca2"><code>0e73161</code></a>
Add WithoutDereference config to prevent incorrect bool pointer
merges</li>
<li>Additional commits viewable in <a
href="https://github.com/imdario/mergo/compare/v0.3.14...v0.3.15">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.15.2 to 0.15.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.15.3</h2>
<h2>What's Changed</h2>
<ul>
<li>fix goroutine leaks from reconnects & resumes by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/246">disgoorg/disgo#246</a></li>
<li>Added Len func to each XCache interface by <a
href="https://github.com/TisLeo"><code>@TisLeo</code></a> in <a
href="https://redirect.github.com/disgoorg/disgo/pull/248">disgoorg/disgo#248</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/TisLeo"><code>@TisLeo</code></a> made
their first contribution in <a
href="https://redirect.github.com/disgoorg/disgo/pull/248">disgoorg/disgo#248</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.15.2...v0.15.3">https://github.com/disgoorg/disgo/compare/v0.15.2...v0.15.3</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="8369a3b972"><code>8369a3b</code></a>
Added Len func to each XCache interface (<a
href="https://redirect.github.com/disgoorg/disgo/issues/248">#248</a>)</li>
<li><a
href="381f278234"><code>381f278</code></a>
maybe fix goroutine leaks from reconnects & resumes (<a
href="https://redirect.github.com/disgoorg/disgo/issues/246">#246</a>)</li>
<li>See full diff in <a
href="https://github.com/disgoorg/disgo/compare/v0.15.2...v0.15.3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps
[google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go)
from 1.29.0 to 1.29.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/protocolbuffers/protobuf-go/releases">google.golang.org/protobuf's
releases</a>.</em></p>
<blockquote>
<h2>v1.29.1</h2>
<ul>
<li><a
href="https://github.com/protocolbuffers/protobuf-go/blob/HEAD/#v1.29.1-notable-changes">Notable
changes</a></li>
</ul>
<h2>Notable changes <!-- raw HTML omitted --><!-- raw HTML omitted
--></h2>
<p><strong>Bug fixes</strong></p>
<ul>
<li><a href="https://go.dev/cl/475995">CL/475995</a>:
internal/encoding/text: fix parsing of incomplete numbers</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="095a62b71f"><code>095a62b</code></a>
all: release v1.29.1</li>
<li><a
href="edaf511a7a"><code>edaf511</code></a>
internal/encoding/text: fix parsing of incomplete numbers</li>
<li><a
href="fe5bc54041"><code>fe5bc54</code></a>
all: start v1.29.0-devel</li>
<li><a
href="d3c9826520"><code>d3c9826</code></a>
all: release v1.29.0</li>
<li>See full diff in <a
href="https://github.com/protocolbuffers/protobuf-go/compare/v1.29.0...v1.29.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/goreleaser/goreleaser/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.80.2 to 0.81.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="7c78a6c1e0"><code>7c78a6c</code></a>
Update dependencies</li>
<li><a
href="711e0b4cc5"><code>711e0b4</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1663">#1663</a>
from xanzy/feature/rate-limiter</li>
<li><a
href="40e5bfd65b"><code>40e5bfd</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1665">#1665</a>
from PatrickRice-KSC/add-omit-empty-to-project-options</li>
<li><a
href="77f5aac6fb"><code>77f5aac</code></a>
Fix lint errors</li>
<li><a
href="8f5194d531"><code>8f5194d</code></a>
Add omitempty and test</li>
<li><a
href="824308adfd"><code>824308a</code></a>
Prevent additional call to config the rate limiter</li>
<li><a
href="ae46dbc110"><code>ae46dbc</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1661">#1661</a>
from KingCrunch/feature/add-missing-fields-to-project</li>
<li><a
href="1e98371450"><code>1e98371</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1662">#1662</a>
from timofurrer/deploy-token</li>
<li><a
href="74e732fb03"><code>74e732f</code></a>
Tweak PR just a little…</li>
<li><a
href="507b9ece5e"><code>507b9ec</code></a>
Expose Revoked and Expired field for Deploy Tokens</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.80.2...v0.81.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [github.com/caarlos0/env/v7](https://github.com/caarlos0/env) from
7.0.0 to 7.1.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/caarlos0/env/releases">github.com/caarlos0/env/v7's
releases</a>.</em></p>
<blockquote>
<h2>v7.1.0</h2>
<h2>Changelog</h2>
<h3>New Features</h3>
<ul>
<li>b135bbd86c4110736a91edf6ac242ef0d4b43bd7: feat: error types (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/240">#240</a>)
(<a href="https://github.com/akutuev"><code>@akutuev</code></a>)</li>
<li>17f0a63edccb660238923ac0d02ab0432edb100d: feat: implement Is on
AggregateError (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/254">#254</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>266f68b264d486a75ebf4b2371aab58a072b52fc: feat: support map kind env
(<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/244">#244</a>)
(<a href="https://github.com/ken8203"><code>@ken8203</code></a>)</li>
<li>c08b0f906b39a1fbc978eeeb262840f9acd735ff: feat: use field name by
default (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/253">#253</a>)
(<a href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Bug fixes</h3>
<ul>
<li>dfd68b2d5d324ecfe910012fe415a24c64d34e4b: fix: improve map handling,
coverage (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>e5472ec015521ddbef81bfa12e752e86ee09fa4a: fix: remove untested
behavior (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<h3>Documentation updates</h3>
<ul>
<li>65ba2db37013ed6bc2ebfadbbd2dc251ee528e0e: docs: caveats (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>f434e985558517cce98d345ea72faa1082e50640: docs: document how to
handle error (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>2d26ce1cd4c10a7fa055c643cfde3a4a295f8e6d: docs: fix examples (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>91e69e8f885b30466508baca6220fec4e4307338: docs: maps (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
<li>850c2d8068a4e311cf2bd6f65a22dce5a66d5edd: docs: update to v7 (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/249">#249</a>)
(<a
href="https://github.com/alexandear"><code>@alexandear</code></a>)</li>
</ul>
<hr />
<p><em>Released with <a href="https://goreleaser.com/pro">GoReleaser
Pro</a>!</em></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="17f0a63edc"><code>17f0a63</code></a>
feat: implement Is on AggregateError (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/254">#254</a>)</li>
<li><a
href="2d26ce1cd4"><code>2d26ce1</code></a>
docs: fix examples</li>
<li><a
href="c08b0f906b"><code>c08b0f9</code></a>
feat: use field name by default (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/253">#253</a>)</li>
<li><a
href="65ba2db370"><code>65ba2db</code></a>
docs: caveats</li>
<li><a
href="91e69e8f88"><code>91e69e8</code></a>
docs: maps</li>
<li><a
href="dfd68b2d5d"><code>dfd68b2</code></a>
fix: improve map handling, coverage</li>
<li><a
href="266f68b264"><code>266f68b</code></a>
feat: support map kind env (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/244">#244</a>)</li>
<li><a
href="f434e98555"><code>f434e98</code></a>
docs: document how to handle error</li>
<li><a
href="e5472ec015"><code>e5472ec</code></a>
fix: remove untested behavior</li>
<li><a
href="b135bbd86c"><code>b135bbd</code></a>
feat: error types (<a
href="https://github-redirect.dependabot.com/caarlos0/env/issues/240">#240</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/caarlos0/env/compare/v7.0.0...v7.1.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.6.0
to 0.7.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h1>gopls/v0.7.0</h1>
<h2>Features</h2>
<h3>Postfix completions</h3>
<p>Postfix completions are a new style of completions that can save you
time by inserting more complex pieces of commonly-written code. All of
the results end with <code>!</code>. This feature was added
experimentally in <code>gopls/v0.6.10</code> and is now enabled by
default.</p>
<p>See this example:</p>
<p><img
src="https://user-images.githubusercontent.com/5856771/114612163-c5df9800-9c6f-11eb-959c-8fe529018a21.gif"
alt="ezgif-3-a82b2077ff38" /></p>
<h3>New commands: <a
href="https://github.com/golang/tools/blob/master/gopls/doc/commands.md#retrieves-a-list-of-packages">List
known packages</a> and <a
href="https://github.com/golang/tools/blob/master/gopls/doc/commands.md#asks-the-server-to-add-an-import-path-to-a-given-go-file">add
import</a></h3>
<p>These commands can be used to manually list available packages to
import and then add an import to your file. They are currently not used
by any known clients, but they will be made available through the
Command Palette in VS Code in the next VS Code Go release.</p>
<h2>Improvements</h2>
<h3>Memory usage</h3>
<p>Improved trimming of the ASTs of dependency packages results in
reduced memory usage, especially for projects with many dependencies.
This may result in some hard-to-diagnose bugs that we're not yet aware
of, so please report any surprising behavior via <a
href="https://golang.org/issues/new">https://golang.org/issues/new</a>.</p>
<h2>Fixes</h2>
<p>A full list of all issues fixed can be found in the <a
href="https://github.com/golang/go/milestone/213?closed=1">gopls/v0.7.0
milestone</a>. To report a new problem, please file a new issue at <a
href="https://golang.org/issues/new">https://golang.org/issues/new</a>.</p>
<h2>Thank you to our contributors!</h2>
<p><a href="https://github.com/muirdm"><code>@muirdm</code></a> <a
href="https://github.com/marwan-at-work"><code>@marwan-at-work</code></a>
<a href="https://github.com/dominikh"><code>@dominikh</code></a> <a
href="https://github.com/leitzler"><code>@leitzler</code></a> <a
href="https://github.com/OneOfOne"><code>@OneOfOne</code></a> <a
href="https://github.com/zyctree"><code>@zyctree</code></a> <a
href="https://github.com/ShoshinNikita"><code>@ShoshinNikita</code></a>
<a
href="https://github.com/KarthikNayak"><code>@KarthikNayak</code></a>
<a href="https://github.com/suzmue"><code>@suzmue</code></a> <a
href="https://github.com/bcmills"><code>@bcmills</code></a></p>
<h1>gopls/v0.6.11</h1>
<p>This release contains mainly bug fixes. A full list of all issues
fixed can be found in the <a
href="https://github.com/golang/go/milestone/211?closed=1">gopls/v0.6.11
milestone</a>. To report a new problem, please file a new issue at <a
href="https://golang.org/issues/new">https://golang.org/issues/new</a>.</p>
<h2>Thank you to our contributors!</h2>
<p><a
href="https://github.com/ShoshinNikita"><code>@ShoshinNikita</code></a>
<a href="https://github.com/sakateka"><code>@sakateka</code></a> <a
href="https://github.com/muirdm"><code>@muirdm</code></a> Will Langford
<a href="https://github.com/empire"><code>@empire</code></a> <a
href="https://github.com/justplesh"><code>@justplesh</code></a> <a
href="https://github.com/suzmue"><code>@suzmue</code></a></p>
<h1>gopls/v0.6.10</h1>
<h2>Features</h2>
<h3><code>t.Fatal</code> snippet</h3>
<p>If you trigger completion in a test function, on the line after a
call to a function that returns an error, you will be offered a
completion snippet for:</p>
<pre lang="go"><code>if err != nil {
t.Fatal(err)
}
</tr></table>
</code></pre>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="031fc75960"><code>031fc75</code></a>
gopls/internal/regtest/bench: don't run the iwl test with -short</li>
<li><a
href="f477bf4a41"><code>f477bf4</code></a>
gopls/internal/lsp/source/completion: avoid Snapshot.CachedPackages</li>
<li><a
href="b72edd12e5"><code>b72edd1</code></a>
gopls/internal/lsp/filecache: GOPLS_CACHE -> GOPLSCACHE</li>
<li><a
href="d566927635"><code>d566927</code></a>
gopls/internal/lsp/regtest: add <a
href="https://github.com/suggestedfix"><code>@suggestedfix</code></a>
marker</li>
<li><a
href="fdb0da65a1"><code>fdb0da6</code></a>
gopls/internal/regtest/bench: add a benchmark for diagnosing a
change</li>
<li><a
href="6eb432f3b0"><code>6eb432f</code></a>
gopls/internal/regtest/bench: add benchmarks in a wider variety of
repos</li>
<li><a
href="c91d0b88c3"><code>c91d0b8</code></a>
gopls/internal/lsp/source: guard against concurrent writes in xrefs</li>
<li><a
href="c0742f584b"><code>c0742f5</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="21d2256f2c"><code>21d2256</code></a>
gopls/internal/lsp/cache: make type-checking incremental</li>
<li><a
href="ae05609bd0"><code>ae05609</code></a>
internal/lsp/cache: add an LRU parse cache</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.6.0...v0.7.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [gocloud.dev](https://github.com/google/go-cloud) from 0.28.0 to
0.29.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/google/go-cloud/releases">gocloud.dev's
releases</a>.</em></p>
<blockquote>
<h2>v0.29.0</h2>
<p><strong>BREAKING CHANGES</strong></p>
<ul>
<li>Updated to latest <code>azureblob</code>, which had some
non-backward-compatible changes (again).</li>
</ul>
<p><strong>all</strong></p>
<ul>
<li>Defaulting to <code>go</code> version <code>1.2</code>.</li>
<li><strong>aws</strong>: Added support for custom endpoints for AWS SDK
v2.</li>
<li><strong>gcp</strong>: Updated imports for
<code>credentialspb</code>.</li>
</ul>
<p><strong>blob</strong></p>
<ul>
<li><strong>azureblob</strong>: Updated to latest (breaking
change).</li>
</ul>
<p><strong>pubsub</strong></p>
<ul>
<li><strong>kafkapub</strong>: Fixed nil Options pointer
dereference.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="62397121ec"><code>6239712</code></a>
all: prep for release (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3236">#3236</a>)</li>
<li><a
href="973ec87371"><code>973ec87</code></a>
all: prep for release (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3235">#3235</a>)</li>
<li><a
href="3348a6a4a0"><code>3348a6a</code></a>
aws: fix typo on awssdk=v2 docstring</li>
<li><a
href="ec0a2bbc3f"><code>ec0a2bb</code></a>
pubsub/rabbitpubsub: give rabbitmq more time to come up (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3233">#3233</a>)</li>
<li><a
href="082a495894"><code>082a495</code></a>
docstore/gcpfirestore: update proto import (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3229">#3229</a>)</li>
<li><a
href="53ba9013f0"><code>53ba901</code></a>
pubsub/gcppubsub: update proto import (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3230">#3230</a>)</li>
<li><a
href="b3612581b1"><code>b361258</code></a>
runtimevar/gcpsecretmanager: update proto import (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3231">#3231</a>)</li>
<li><a
href="e5235d85eb"><code>e5235d8</code></a>
blob/gcsblob: update proto import (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3228">#3228</a>)</li>
<li><a
href="7cd8b2b9f6"><code>7cd8b2b</code></a>
secrets/gcpkms: update proto import (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3227">#3227</a>)</li>
<li><a
href="8cddf16323"><code>8cddf16</code></a>
all: update deps BREAKING_CHANGE_OK (<a
href="https://github-redirect.dependabot.com/google/go-cloud/issues/3225">#3225</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/google/go-cloud/compare/v0.28.0...v0.29.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.6.0
to 0.7.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="776e461a4e"><code>776e461</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="ebe92624d1"><code>ebe9262</code></a>
ssh: add support for <a
href="mailto:aes256-gcm@openssh.com">aes256-gcm@openssh.com</a></li>
<li>See full diff in <a
href="https://github.com/golang/crypto/compare/v0.6.0...v0.7.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.5.0
to 0.6.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="62b4eedd72"><code>62b4eed</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="885f294722"><code>885f294</code></a>
google: Add support for OAuth2 token exchange over mTLS</li>
<li><a
href="6f9c1a18cc"><code>6f9c1a1</code></a>
google: use Credentials instead of deprecated DefaultCredentials</li>
<li><a
href="c82d0e16dc"><code>c82d0e1</code></a>
google/internal/externalaccount: Removed URL validation for google URLs
in AD...</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.5.0...v0.6.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.15.1 to 0.15.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.15.2</h2>
<h2>What's Changed</h2>
<ul>
<li>fix voice by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="a3ddd4aaca</a></li>
<li>add helper to sync commands for guilds or globally by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="3dbf6a6c06</a></li>
<li>simplify oauth2 by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/241">disgoorg/disgo#241</a></li>
<li>add <code>CustomMessage</code> to
<code>AutoModerationActionMetadata</code> by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/243">disgoorg/disgo#243</a></li>
</ul>
<h1>Breaking Changes</h1>
<ul>
<li>removal of <code>oauth2.SessionController</code></li>
<li><code>oauth2.Session</code> is now a struct instead of
interface</li>
<li>removal of <code>identifier</code> param in
<code>oauth2.Client.StartSession()</code> and
<code>oauth2.Client.RefreshSession()</code></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.15.1...v0.15.2">https://github.com/disgoorg/disgo/compare/v0.15.1...v0.15.2</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2ac4b5df9b"><code>2ac4b5d</code></a>
use handler.SyncCommands in handler example</li>
<li><a
href="a3ddd4aaca"><code>a3ddd4a</code></a>
fix voice ip discovery packet size</li>
<li><a
href="3dbf6a6c06"><code>3dbf6a6</code></a>
handler add helper to sync commands for guilds or globally</li>
<li><a
href="2fc89bc438"><code>2fc89bc</code></a>
minor refactor & cleanup of oauth2 suff</li>
<li><a
href="0b775b65f2"><code>0b775b6</code></a>
fix json tag name</li>
<li><a
href="9ab5fbde32"><code>9ab5fbd</code></a>
Bump golang.org/x/sys in /_examples/application_commands/http (<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/244">#244</a>)</li>
<li><a
href="14761a3785"><code>14761a3</code></a>
Bump golang.org/x/sys from 0.0.0-20211019181941-9d821ace8654 to 0.1.0
(<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/245">#245</a>)</li>
<li><a
href="8cb8e68a90"><code>8cb8e68</code></a>
add CustomMessage to AutoModerationActionMetadata (<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/243">#243</a>)</li>
<li><a
href="a32b7f1d36"><code>a32b7f1</code></a>
fix README example (<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/242">#242</a>)</li>
<li><a
href="faa79470af"><code>faa7947</code></a>
simplify oauth2 by removing session controller & converting a
session to a st...</li>
<li>Additional commits viewable in <a
href="https://github.com/disgoorg/disgo/compare/v0.15.1...v0.15.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/disgoorg/disgo](https://github.com/disgoorg/disgo)
from 0.15.0 to 0.15.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/disgoorg/disgo/releases">github.com/disgoorg/disgo's
releases</a>.</em></p>
<blockquote>
<h2>v0.15.1</h2>
<h2>What's Changed</h2>
<ul>
<li><code>handler</code> package improvements by <a
href="https://github.com/Thunder33345"><code>@Thunder33345</code></a>
in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/240">disgoorg/disgo#240</a></li>
<li>add noop ratelimiter by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="24260e4bca</a></li>
<li>fix some minor broken/incorrect stuff by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/237">disgoorg/disgo#237</a></li>
<li>allow easy replacing of rest url by <a
href="https://github.com/TopiSenpai"><code>@TopiSenpai</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/236">disgoorg/disgo#236</a></li>
<li>add <code>MessageFlagSuppressNotifications</code> and
<code>MessageFlagFailedToMentionSomeRolesInThread</code> by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="9cbba0bb75</a></li>
<li>add stage message types by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="12bf0cce55</a></li>
<li>add <code>ConnectionTypeInstagram</code> by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="https://github-redirect.dependabot.com/disgoorg/disgo/pull/234">disgoorg/disgo#234</a></li>
<li>add <code>NSFW</code> and <code>VideoQualityMode</code> to
<code>GuildStageVoiceChannelUpdate</code> by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="0f4d6ca243</a></li>
<li>add <code>StorePageAsset</code> cdn endpoint by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="84cfc8d278</a></li>
<li>match <code>MemberFlags</code> const names with other flags by <a
href="https://github.com/caneleex"><code>@caneleex</code></a> in <a
href="4aca7c2ba9</a></li>
</ul>
<h2>Breaking</h2>
<ul>
<li><code>MemberFlags</code> consts have been renamed to follow
appropriate flag naming</li>
<li>renamed <code>Router.HandleCommand</code> to
<code>Router.Command</code></li>
<li>renamed <code>Router.HandleAutocomplete</code> to
<code>Router.Autocomplete</code></li>
<li>renamed <code>Router.HandleComponent</code> to
<code>Router.Component</code></li>
<li>renamed <code>Router.HandleModal</code> to
<code>Router.Modal</code></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/disgoorg/disgo/compare/v0.15.0...v0.15.1">https://github.com/disgoorg/disgo/compare/v0.15.0...v0.15.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="604780dafa"><code>604780d</code></a>
handler improvements (<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/240">#240</a>)</li>
<li><a
href="12bf0cce55"><code>12bf0cc</code></a>
add stage message types (again)</li>
<li><a
href="0f4d6ca243"><code>0f4d6ca</code></a>
add NSFW and VideoQualityMode to GuildStageVoiceChannelUpdate</li>
<li><a
href="356ddcbf0f"><code>356ddcb</code></a>
fix StickerPackBanner cdn endpoint path</li>
<li><a
href="84cfc8d278"><code>84cfc8d</code></a>
add StorePageAsset cdn endpoint</li>
<li><a
href="c377083bc3"><code>c377083</code></a>
add ConnectionTypeInstagram (<a
href="https://github-redirect.dependabot.com/disgoorg/disgo/issues/234">#234</a>)</li>
<li><a
href="5c4a0c559b"><code>5c4a0c5</code></a>
fix double slash in endpoint</li>
<li><a
href="24260e4bca"><code>24260e4</code></a>
add noop rate limiter and proxy example and always send shard info</li>
<li><a
href="b780a98e18"><code>b780a98</code></a>
fix field name capitalization</li>
<li><a
href="4aca7c2ba9"><code>4aca7c2</code></a>
match flag const names</li>
<li>Additional commits viewable in <a
href="https://github.com/disgoorg/disgo/compare/v0.15.0...v0.15.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.80.0 to 0.80.2.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b91e64b2b0"><code>b91e64b</code></a>
Reorder a few project fields</li>
<li><a
href="0fa6158375"><code>0fa6158</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1636">#1636</a>
from apricote/project-import-url</li>
<li><a
href="1ab89ad306"><code>1ab89ad</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1651">#1651</a>
from xanzy/feature/links</li>
<li><a
href="1fd8df4983"><code>1fd8df4</code></a>
Add release links</li>
<li><a
href="e837f2de87"><code>e837f2d</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1650">#1650</a>
from blacknon/master</li>
<li><a
href="df4112ac7b"><code>df4112a</code></a>
Rename the option structs and add missing <code>url</code> tags</li>
<li><a
href="f8929bf7ef"><code>f8929bf</code></a>
update. <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/pull/1650#discussion_r1102998538">xanzy/go-gitlab#1650</a></li>
<li><a
href="172b5e0c3f"><code>172b5e0</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1648">#1648</a>
from theoriginalstove/1501-add-changelog-api-support</li>
<li><a
href="39bce07acd"><code>39bce07</code></a>
Refactor…</li>
<li><a
href="3f26370513"><code>3f26370</code></a>
style: added whitespace between license and package name in new
files</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.80.0...v0.80.2">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[github.com/goreleaser/nfpm/v2](https://github.com/goreleaser/nfpm) from
2.25.1 to 2.26.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/goreleaser/nfpm/releases">github.com/goreleaser/nfpm/v2's
releases</a>.</em></p>
<blockquote>
<h2>v2.26.0</h2>
<h2>Changelog</h2>
<h3>New Features</h3>
<ul>
<li>34276432d6614e28108b2851b298c86342c41e4c: feat(deps): bump
github.com/goreleaser/chglog from 0.4.0 to 0.4.1 (<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/616">#616</a>)
(<a
href="https://github.com/dependabot"><code>@dependabot</code></a>[bot])</li>
</ul>
<h3>Bug fixes</h3>
<ul>
<li>4d89ab846ee135cbcf3085316bf15c739e8f1cc8: fix: use --clean instead
of --rm-dist (<a
href="https://github.com/caarlos0"><code>@caarlos0</code></a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/goreleaser/nfpm/compare/v2.25.1...v2.26.0">https://github.com/goreleaser/nfpm/compare/v2.25.1...v2.26.0</a></p>
<hr />
<ul>
<li>Check out <a href="https://goreleaser.com">GoReleaser</a>: it
integrates nFPM to the release pipeline of your Go projects.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="34276432d6"><code>3427643</code></a>
feat(deps): bump github.com/goreleaser/chglog from 0.4.0 to 0.4.1 (<a
href="https://github-redirect.dependabot.com/goreleaser/nfpm/issues/616">#616</a>)</li>
<li><a
href="4d89ab846e"><code>4d89ab8</code></a>
fix: use --clean instead of --rm-dist</li>
<li>See full diff in <a
href="https://github.com/goreleaser/nfpm/compare/v2.25.1...v2.26.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
**Note:** Dependabot was ignoring updates to this dependency, but since
you've updated it yourself we've started tracking it for you again. 🤖
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.5.0
to 0.6.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h1>gopls/v0.6.0</h1>
<h2>Features</h2>
<h3>Default to <code>-mod=readonly</code></h3>
<p>In Go 1.16, the Go command will no longer modify user's
<code>go.mod</code> and <code>go.sum</code> files automatically (<a
href="https://tip.golang.org/doc/go1.16#tools">https://tip.golang.org/doc/go1.16#tools</a>).
In order to match this behavior, <code>gopls</code> now also uses
<code>-mod=readonly</code> when running the <code>go</code> command. Any
errors reported by the <code>go</code> command will be presented with a
suggested fix to make the necessary fixes to your <code>go.mod</code> or
<code>go.sum</code> files. As a consequence, your workspace may be in a
partially broken state while you have errors in your <code>go.mod</code>
or <code>go.sum</code> file. <a
href="https://github-redirect.dependabot.com/golang/go/issues/42266">golang/go#42266</a>
will mitigate this, but it will likely not be resolved until
February.</p>
<p><strong>Not recommended</strong>: If you must opt out of this
behavior, you can set the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#allowmodfilemodifications-bool"><code>allowModfileModifications</code></a>
configuration to <code>true</code>.</p>
<h3>Default to <code>GOPROXY=off</code></h3>
<p><code>gopls</code> no longer accesses the network implicitly. This
should improve latency in all cases, but it also means that
<code>gopls</code> will no longer automatically download modules that
are not found in your local module cache. The one exception is that
<code>gopls</code> will still download dependencies on start-up, so it
will continue to work as expected if you have cloned a repository for
the first time. If <code>gopls</code> detects a missing module, it will
offer you a suggested fix that downloads it.</p>
<p><strong>Not recommended</strong>: If you must opt out of this
behavior, you can set the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#allowimplicitnetworkaccess-bool"><code>allowImplicitNetworkaccess</code></a>
configuration to <code>true</code>.</p>
<h3>Inclusion/exclusion filters for directories</h3>
<p><code>gopls</code> now supports excluding certain directories in your
workspace from analysis. This may be useful if you are only working on a
subset of a large repository. Note that these filters are not propagated
to the <code>go</code> command, so <code>gopls</code> will still load
metadata for these directories, which may be expensive.
<strong>Configure the included/excluded directories through the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#directoryfilters-string"><code>directoryFilters</code></a>
setting.</strong></p>
<h3>Debouncing for diagnostics</h3>
<p>Diagnostics are now reported instantly only for the packages
currently being edited. Diagnostics for other packages in the workspace
will now only be computed after 250 milliseconds, meaning that, if you
are actively typing, <code>gopls</code> will not start these more costly
operations. This should significantly reduce CPU utilization. This
debounce delay can be optionally configured via the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#experimentaldiagnosticsdelay-timeduration"><code>experimentalDiagnosticsDelay</code></a>
setting.</p>
<h3>"Upgrade direct dependencies" code lens</h3>
<p>In <a
href="https://github.com/golang/tools/releases/tag/gopls%2Fv0.5.4"><code>gopls/v0.5.4</code></a>,
we removed the per-require "Upgrade dependency" code lens, as
it was very high latency, and its UX did not meet user needs. Some users
have expressed disappointment about this, so, to bridge the gap, we have
separated the existing "Upgrade all dependencies" code lens
into two: "Upgrade transitive dependencies" and "Upgrade
direct dependencies". The first is the equivalent of running
<code>go get -u all</code>, while the second <code>go get</code>s each
of your module's requires independently. We are continuing to work on
improving these features and will likely bring back the "Upgrade
dependency" code lens as a suggested fix (learn more: <a
href="https://github-redirect.dependabot.com/golang/go/issues/38339">golang/go#38339</a>).</p>
<h3>Support for filling a partially-populated struct</h3>
<p>The "Fill struct" suggested fix will now be suggested for
structs that have some, but not all, fields set.</p>
<h3>Experimental</h3>
<h4>Field alignment analyzer</h4>
<p>A new analyzer has been added to suggest reordering fields in a
struct in order to achieve the optimal alignment in memory. It is still
off by default, but can be enabled by adding the following to your
<code>gopls</code> settings:</p>
<pre lang="json5"><code>"analyses": {
"fieldalignment": true
}
</code></pre>
<h2>Fixes</h2>
<h3>Improvements to diagnostics tracking</h3>
<p>Diagnostic messages were not being updated correctly when the <a
href="https://github.com/golang/tools/blob/master/gopls/doc/settings.md#codelenses-mapstringbool"><code>GC
details</code></a> code lens was toggled on. New handling to
differentiate diagnostics by sources should have resolved this
issue.</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="d0863f03da"><code>d0863f0</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="545ca87cb5"><code>545ca87</code></a>
gopls/internal/regtest/marker: require go/packages</li>
<li><a
href="1ace7dbcb0"><code>1ace7db</code></a>
go,gopls: remove license from package doc comments</li>
<li><a
href="ebad375bab"><code>ebad375</code></a>
gopls/internal/lsp/protocol: prevent license rendering in godoc</li>
<li><a
href="10a39ef32d"><code>10a39ef</code></a>
gopls/internal/lsp/regtest: address additional comments on
marker.go</li>
<li><a
href="69920f2e63"><code>69920f2</code></a>
gopls/internal/regtest/marker: add missing tests for hover</li>
<li><a
href="24a13c6fad"><code>24a13c6</code></a>
gopls/internal/regtest: fill out features of the new marker tests</li>
<li><a
href="2b149ce94b"><code>2b149ce</code></a>
gopls/internal/regtest: add a regtest-based version of the marker
tests</li>
<li><a
href="edddc5fc32"><code>edddc5f</code></a>
go/packages: don't discard errors loading export data</li>
<li><a
href="a762c82c1b"><code>a762c82</code></a>
go/ssa: add MultiConvert instruction</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.5.0...v0.6.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.79.1 to 0.80.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9e8a56f022"><code>9e8a56f</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1645">#1645</a>
from blacknon/master</li>
<li><a
href="c6a3d13acd"><code>c6a3d13</code></a>
Merge remote-tracking branch 'refs/remotes/origin/master'</li>
<li><a
href="2544230e10"><code>2544230</code></a>
UpdateSnippetOptionにFilesを追加</li>
<li><a
href="9e38892900"><code>9e38892</code></a>
Formatted the project using gofumpt</li>
<li><a
href="f46a273ab9"><code>f46a273</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1597">#1597</a>
from abdellaui/bugfix/rename_projects_NameRegexDelet...</li>
<li><a
href="79679f4c0b"><code>79679f4</code></a>
Tweak PR a little…</li>
<li><a
href="4b328c1100"><code>4b328c1</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1612">#1612</a>
from FantasyTeddy/update-protected-branches</li>
<li><a
href="1b76c1c3c7"><code>1b76c1c</code></a>
Few minor tweaks…</li>
<li><a
href="51f101e636"><code>51f101e</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1642">#1642</a>
from theoriginalstove/1583-custom-headers</li>
<li><a
href="ab870cff19"><code>ab870cf</code></a>
Tweak the PR a little</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.79.1...v0.80.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.5.0
to 0.6.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a9f661cb6e"><code>a9f661c</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="310bfa40f1"><code>310bfa4</code></a>
cryptobyte: reject negative Unwrite argument</li>
<li><a
href="59ff47295c"><code>59ff472</code></a>
all: fix some comments</li>
<li>See full diff in <a
href="https://github.com/golang/crypto/compare/v0.5.0...v0.6.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.4.0
to 0.5.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="adbaf66a0b"><code>adbaf66</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="e07593a4c4"><code>e07593a</code></a>
oauth2: remove direct dependency on golang.org/x/net</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.4.0...v0.5.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.79.0 to 0.79.1.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4620d0f31d"><code>4620d0f</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1638">#1638</a>
from PatrickRice-KSC/revert-project-member-change</li>
<li><a
href="e21596f6d3"><code>e21596f</code></a>
Revert the change to project member accepting ISO time</li>
<li>See full diff in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.79.0...v0.79.1">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.78.0 to 0.79.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="36b86c5b7f"><code>36b86c5</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1632">#1632</a>
from timofurrer/get-pull-mirror</li>
<li><a
href="5d8c3e5c45"><code>5d8c3e5</code></a>
Change model name</li>
<li><a
href="dda6e96e5e"><code>dda6e96</code></a>
Update projects.go</li>
<li><a
href="8ea7323dc6"><code>8ea7323</code></a>
Update projects.go</li>
<li><a
href="5d94d607fe"><code>5d94d60</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1635">#1635</a>
from mycrEEpy/user-login-failed-event</li>
<li><a
href="d2a481edeb"><code>d2a481e</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1634">#1634</a>
from PatrickRice-KSC/align-pages-domain-attributes</li>
<li><a
href="c56397a6c8"><code>c56397a</code></a>
Add missing system hook event for user_failed_login</li>
<li><a
href="7ac72bd6ad"><code>7ac72bd</code></a>
Add the ability to retrieve certificate information to Pages
Domains</li>
<li><a
href="ceca19a225"><code>ceca19a</code></a>
Implement function to get pull mirror details from a project</li>
<li><a
href="cec93a2c94"><code>cec93a2</code></a>
Merge pull request <a
href="https://github-redirect.dependabot.com/xanzy/go-gitlab/issues/1631">#1631</a>
from mrf/mrf/1630-projectmember-struct-expires-date</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.78.0...v0.79.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.2.0
to 0.5.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang/tools/releases">golang.org/x/tools's
releases</a>.</em></p>
<blockquote>
<h2>gopls/v0.5.0</h2>
<p>A full list of issues closed can be found in the <a
href="https://github.com/golang/go/milestone/138?closed=1">gopls/v0.5.0
milestone</a>.</p>
<h2>Memory usage</h2>
<ul>
<li>Rewrite of caching model, resulting in significant memory usage
improvements (<a
href="https://github.com/heschik"><code>@heschik</code></a>).</li>
</ul>
<h2>New features</h2>
<ul>
<li>Extract to function: Support for extracting code blocks that contain
return statements (<a
href="https://github.com/joshbaum"><code>@joshbaum</code></a>).</li>
<li>Workspace symbols: Support for <a
href="https://github.com/junegunn/fzf#search-syntax">fzf-style search
syntax</a> (<a
href="https://github.com/findleyr"><code>@findleyr</code></a>). The
following syntax is supported:
<ul>
<li><code>'</code> for exact matching</li>
<li><code>^</code> for prefix matching</li>
<li><code>$</code> for suffix matching</li>
</ul>
</li>
</ul>
<p><strong>Note</strong>: This feature does not yet work in VS Code. See
<a
href="https://github-redirect.dependabot.com/golang/vscode-go/issues/647">golang/vscode-go#647</a>
and <a
href="https://github-redirect.dependabot.com/microsoft/vscode/issues/106788">microsoft/vscode#106788</a>.</p>
<ul>
<li>An experimental new code lens to view GC optimization details (<a
href="https://github.com/pjweinb"><code>@pjweinb</code></a>). Once the
code lens is enabled, you will see a <code>Toggle gc details</code>
annotation at the top of your file. Clicking it will show optimization
diagnostics produced by the Go compiler, and clicking it once again will
hide these diagnostics. Enable the code lens by adding the following to
your settings:
<pre lang="json5"><code>"codelens": {
"gc_details": true
}
</code></pre>
</li>
<li><code>go mod tidy</code> and <code>go mod vendor</code> code lenses
for <code>go.mod</code> files (<a
href="https://github.com/dandua98"><code>@dandua98</code></a>).</li>
<li>Support for filling in matching in-scope variables instead of just
empty values in fillstruct and fillreturns (<a
href="https://github.com/joshbaum"><code>@joshbaum</code></a>).</li>
<li>Autocompletion within import statements (<a
href="https://github.com/dandua98"><code>@dandua98</code></a>).</li>
<li>Autocompletion within package declarations (<a
href="https://github.com/dandua98"><code>@dandua98</code></a>).</li>
</ul>
<h2>Improvements</h2>
<ul>
<li>Improvements to workspace symbols ranking and fuzzy matching (<a
href="https://github.com/findleyr"><code>@findleyr</code></a>, <a
href="https://github.com/myitcv"><code>@myitcv</code></a>).</li>
<li>Better completion suggestions in type switch case clauses and for
calls to <code>append</code>, function literals, and unnamed types (<a
href="https://github.com/muirdm"><code>@muirdm</code></a>).</li>
</ul>
<h2>Thank you</h2>
<p>Thank you to everyone who contributed to this release!</p>
<p><a href="https://github.com/heschik"><code>@heschik</code></a>
<a href="https://github.com/findleyr"><code>@findleyr</code></a>
<a href="https://github.com/pjweinb"><code>@pjweinb</code></a>
<a href="https://github.com/joshbaum"><code>@joshbaum</code></a>
<a href="https://github.com/mcjcloud"><code>@mcjcloud</code></a>
<a href="https://github.com/dandua98"><code>@dandua98</code></a>
<a href="https://github.com/muirdm"><code>@muirdm</code></a>
<a href="https://github.com/leitzler"><code>@leitzler</code></a>
<a href="https://github.com/myitcv"><code>@myitcv</code></a>
<a href="https://github.com/matloob"><code>@matloob</code></a>
<a href="https://github.com/tennashi"><code>@tennashi</code></a>
<a href="https://github.com/ainar-g"><code>@ainar-g</code></a>
<a href="https://github.com/hasheddan"><code>@hasheddan</code></a></p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="7db99dd126"><code>7db99dd</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="1e0dff28f4"><code>1e0dff2</code></a>
gopls/internal/regtest: avoid race in
TestSwitchFromGOPATHToModuleMode</li>
<li><a
href="0441b432ca"><code>0441b43</code></a>
gopls/internal/lsp/cache: use specific mutexes for module data</li>
<li><a
href="33071fbe1a"><code>33071fb</code></a>
internal/robustio: move robustio</li>
<li><a
href="b01e7a4e75"><code>b01e7a4</code></a>
gopls/internal/regtest/watch: don't run
TestSwitchFromGOPATHToModuleMode</li>
<li><a
href="e417ea36ba"><code>e417ea3</code></a>
gopls: remove dead analysis code</li>
<li><a
href="1a08d01ac9"><code>1a08d01</code></a>
gopls/internal/lsp: update replace directives in go.mod for package
renaming</li>
<li><a
href="eac36cb2ac"><code>eac36cb</code></a>
gopls/internal/regtest: port experimental workspace tests to
go.work</li>
<li><a
href="224a61b354"><code>224a61b</code></a>
gopls/internal/lsp/source: delete Snapshot.WriteEnv method</li>
<li><a
href="81e741e32f"><code>81e741e</code></a>
gopls/internal/lsp/safetoken: funnel more calls through this
package</li>
<li>Additional commits viewable in <a
href="https://github.com/golang/tools/compare/v0.2.0...v0.5.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
continuing the PR by @developer-guy
- [x] should be a publisher, as it does publish the images it builds
every time
- [x] `Default` method does not work
- [x] the `fromConfig` thing should probably be on the defaults, too
- [x] wire `--skip-ko`
- [x] documentation
- [x] more tests
- [x] use same registry as docker tests does
- [ ] see if we can make the log output match goreleaser's
- [ ] ??
closes#2556closes#3490
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com>
Signed-off-by: Carlos A Becker <caarlos0@users.noreply.github.com>
Co-authored-by: actions-user <actions@github.com>
Co-authored-by: Jason Hall <jason@chainguard.dev>
Co-authored-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com>
dependabot[bot]
Carlos A Becker
Kazuki Matsumaru
