1
0
mirror of https://github.com/goreleaser/goreleaser.git synced 2025-03-17 20:47:50 +02:00

6045 Commits

Author SHA1 Message Date
dependabot[bot]
e5862356a5
chore(deps): bump golang.org/x/crypto from 0.28.0 to 0.29.0 (#5261)
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from
0.28.0 to 0.29.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="6018723c74"><code>6018723</code></a>
go.mod: update golang.org/x dependencies</li>
<li><a
href="71ed71b4fa"><code>71ed71b</code></a>
README: don't recommend go get</li>
<li><a
href="750a45fe5e"><code>750a45f</code></a>
sha3: add MarshalBinary, AppendBinary, and UnmarshalBinary</li>
<li><a
href="36b172546b"><code>36b1725</code></a>
sha3: avoid trailing permutation</li>
<li><a
href="80ea76eb17"><code>80ea76e</code></a>
sha3: fix padding for long cSHAKE parameters</li>
<li><a
href="c17aa50fbd"><code>c17aa50</code></a>
sha3: avoid buffer copy</li>
<li><a
href="7cfb9161e8"><code>7cfb916</code></a>
ssh: return unexpected msg error when server fails keyboard-interactive
auth ...</li>
<li><a
href="b61b08db44"><code>b61b08d</code></a>
chacha20: extend ppc64le support to ppc64</li>
<li><a
href="6c21748958"><code>6c21748</code></a>
internal/poly1305: extend ppc64le support to ppc64</li>
<li>See full diff in <a
href="https://github.com/golang/crypto/compare/v0.28.0...v0.29.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang.org/x/crypto&package-manager=go_modules&previous-version=0.28.0&new-version=0.29.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-08 09:18:33 +00:00
dependabot[bot]
9256232d6a
chore(deps): bump golang.org/x/oauth2 from 0.23.0 to 0.24.0 (#5262)
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from
0.23.0 to 0.24.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="22134a4103"><code>22134a4</code></a>
README: don't recommend go get</li>
<li>See full diff in <a
href="https://github.com/golang/oauth2/compare/v0.23.0...v0.24.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang.org/x/oauth2&package-manager=go_modules&previous-version=0.23.0&new-version=0.24.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-08 09:00:24 +00:00
dependabot[bot]
906a9ab7c4
chore(deps): bump github.com/distribution/distribution/v3 from 3.0.0-beta.1 to 3.0.0-rc.1 (#5260)
Bumps
[github.com/distribution/distribution/v3](https://github.com/distribution/distribution)
from 3.0.0-beta.1 to 3.0.0-rc.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/distribution/distribution/releases">github.com/distribution/distribution/v3's
releases</a>.</em></p>
<blockquote>
<h2>v3.0.0-rc.1</h2>
<p>Welcome to the <code>v3.0.0-rc.1</code> release of registry!</p>
<p>This is the the first <strong>release candidate</strong> of
registry!</p>
<p>See the changelog below for full list of changes.</p>
<h3>Deprecated</h3>
<ul>
<li><code>ManifestBuilder</code> interface <a
href="https://redirect.github.com/distribution/distribution/pull/3886">3886</a></li>
<li><code>Versioned</code> in favor of <code>oci.Versioned</code> <a
href="https://redirect.github.com/distribution/distribution/pull/3887">3887</a></li>
</ul>
<h3>Notable Changes</h3>
<ul>
<li>Attempt HeadObject on Stat call first before failing over to List in
S3 driver <a
href="https://redirect.github.com/distribution/distribution/pull/4401">4401</a></li>
<li>Use a consistent multipart chunk size in S3 driver <a
href="https://redirect.github.com/distribution/distribution/pull/4424">4424</a></li>
<li>Build artifacts and images for linux/riscv64 <a
href="https://redirect.github.com/distribution/distribution/pull/4444">4444</a></li>
<li>Fix token verification chain in auth <a
href="https://redirect.github.com/distribution/distribution/pull/4415">4415</a></li>
<li>Support custom exec-based credential helper in proxy mode <a
href="https://redirect.github.com/distribution/distribution/pull/4438">distribution/distribution#4438</a></li>
</ul>
<h2>What's Changed</h2>
<ul>
<li>vendor: github.com/opencontainers/image-spec v1.1.0 by <a
href="https://github.com/thaJeztah"><code>@​thaJeztah</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/3889">distribution/distribution#3889</a></li>
<li>Descriptor: do not implement Describable interface by <a
href="https://github.com/thaJeztah"><code>@​thaJeztah</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/3886">distribution/distribution#3886</a></li>
<li>S3 driver: Attempt HeadObject on Stat first, fail over to List by <a
href="https://github.com/milosgajdos"><code>@​milosgajdos</code></a> in
<a
href="https://redirect.github.com/distribution/distribution/pull/4401">distribution/distribution#4401</a></li>
<li>manifest: slight cleanup of init / registration by <a
href="https://github.com/thaJeztah"><code>@​thaJeztah</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4403">distribution/distribution#4403</a></li>
<li>ci:bump Go version by <a
href="https://github.com/milosgajdos"><code>@​milosgajdos</code></a> in
<a
href="https://redirect.github.com/distribution/distribution/pull/4402">distribution/distribution#4402</a></li>
<li>deprecate Versioned in favor of oci.Versioned by <a
href="https://github.com/thaJeztah"><code>@​thaJeztah</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/3887">distribution/distribution#3887</a></li>
<li>fix logic for handling regionEndpoint by <a
href="https://github.com/Ankurk99"><code>@​Ankurk99</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4341">distribution/distribution#4341</a></li>
<li>fix nil pointer in s3 list api by <a
href="https://github.com/jkroepke"><code>@​jkroepke</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4412">distribution/distribution#4412</a></li>
<li>build(deps): bump softprops/action-gh-release from 1 to 2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4407">distribution/distribution#4407</a></li>
<li>build(deps): bump docker/bake-action from 4 to 5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4410">distribution/distribution#4410</a></li>
<li>build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4416">distribution/distribution#4416</a></li>
<li>chore: fix typos returned in some errors by <a
href="https://github.com/milosgajdos"><code>@​milosgajdos</code></a> in
<a
href="https://redirect.github.com/distribution/distribution/pull/4414">distribution/distribution#4414</a></li>
<li>auth: fix token verification chain by <a
href="https://github.com/milosgajdos"><code>@​milosgajdos</code></a> in
<a
href="https://redirect.github.com/distribution/distribution/pull/4415">distribution/distribution#4415</a></li>
<li>build(deps): bump github/codeql-action from 2.22.12 to 3.25.15 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4426">distribution/distribution#4426</a></li>
<li>build(deps): bump ossf/scorecard-action from 2.3.3 to 2.4.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4422">distribution/distribution#4422</a></li>
<li>build(deps): bump actions/configure-pages from 4 to 5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4409">distribution/distribution#4409</a></li>
<li>fix: skip removing layer's link file when '--dry-run' option
specified by <a
href="https://github.com/microyahoo"><code>@​microyahoo</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4425">distribution/distribution#4425</a></li>
<li>build(deps): bump actions/upload-artifact from 4.3.0 to 4.3.5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4428">distribution/distribution#4428</a></li>
<li>Use <code>x.y.0</code> format for the go module version by <a
href="https://github.com/ialidzhikov"><code>@​ialidzhikov</code></a> in
<a
href="https://redirect.github.com/distribution/distribution/pull/4423">distribution/distribution#4423</a></li>
<li>build(deps): bump actions/upload-artifact from 4.3.5 to 4.3.6 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4430">distribution/distribution#4430</a></li>
<li>build(deps): bump github/codeql-action from 3.25.15 to 3.26.0 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4431">distribution/distribution#4431</a></li>
<li>build(deps): bump github/codeql-action from 3.26.0 to 3.26.2 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4434">distribution/distribution#4434</a></li>
<li>chore: fix typo in rewrite storage middleware init by <a
href="https://github.com/milosgajdos"><code>@​milosgajdos</code></a> in
<a
href="https://redirect.github.com/distribution/distribution/pull/4435">distribution/distribution#4435</a></li>
<li>build(deps): bump github/codeql-action from 3.26.2 to 3.26.3 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4441">distribution/distribution#4441</a></li>
<li>Build artifacts and images for linux/riscv64 by <a
href="https://github.com/macabu"><code>@​macabu</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4444">distribution/distribution#4444</a></li>
<li>build(deps): bump github/codeql-action from 3.26.3 to 3.26.5 by <a
href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4446">distribution/distribution#4446</a></li>
<li>chore: bump golangci-lint and fix govet issues by <a
href="https://github.com/milosgajdos"><code>@​milosgajdos</code></a> in
<a
href="https://redirect.github.com/distribution/distribution/pull/4454">distribution/distribution#4454</a></li>
<li>Remove deprecated version field by <a
href="https://github.com/tiborrr"><code>@​tiborrr</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4459">distribution/distribution#4459</a></li>
<li>Add a note regarding redirects to pre-signed URLs by <a
href="https://github.com/Felixoid"><code>@​Felixoid</code></a> in <a
href="https://redirect.github.com/distribution/distribution/pull/4466">distribution/distribution#4466</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3ddd142339"><code>3ddd142</code></a>
Prep for v3-rc.1 release (<a
href="https://redirect.github.com/distribution/distribution/issues/4502">#4502</a>)</li>
<li><a
href="4118c80a99"><code>4118c80</code></a>
Prep for v3-rc.1 release</li>
<li><a
href="d67b46a05b"><code>d67b46a</code></a>
Bump dependencies (<a
href="https://redirect.github.com/distribution/distribution/issues/4498">#4498</a>)</li>
<li><a
href="f7236ab041"><code>f7236ab</code></a>
feat: support custom exec-based credential helper in proxy mode (<a
href="https://redirect.github.com/distribution/distribution/issues/4438">#4438</a>)</li>
<li><a
href="099201adde"><code>099201a</code></a>
fix(registry/storage/driver/s3-aws): use a consistent multipart chunk
size (#...</li>
<li><a
href="3ac2285631"><code>3ac2285</code></a>
Bump otel dependencies</li>
<li><a
href="bd52394e81"><code>bd52394</code></a>
Update lint.Dockerfile</li>
<li><a
href="85e99bce34"><code>85e99bc</code></a>
docs: update hugo and theme versions (<a
href="https://redirect.github.com/distribution/distribution/issues/4499">#4499</a>)</li>
<li><a
href="da2f24e205"><code>da2f24e</code></a>
docs: update hugo and theme versions</li>
<li><a
href="5ee5aaa058"><code>5ee5aaa</code></a>
fix(registry/storage/driver/s3-aws): use a consistent multipart chunk
size</li>
<li>Additional commits viewable in <a
href="https://github.com/distribution/distribution/compare/v3.0.0-beta.1...v3.0.0-rc.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/distribution/distribution/v3&package-manager=go_modules&previous-version=3.0.0-beta.1&new-version=3.0.0-rc.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-08 08:34:16 +00:00
dependabot[bot]
b7ddd735c3
chore(deps): bump golang.org/x/sync from 0.8.0 to 0.9.0 (#5258)
Bumps [golang.org/x/sync](https://github.com/golang/sync) from 0.8.0 to
0.9.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="151027eb56"><code>151027e</code></a>
README: don't recommend go get</li>
<li>See full diff in <a
href="https://github.com/golang/sync/compare/v0.8.0...v0.9.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang.org/x/sync&package-manager=go_modules&previous-version=0.8.0&new-version=0.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-08 08:33:09 +00:00
Oleksandr Redko
4ef174a1d8
chore: fix typo in script name (#5256) 2024-11-07 13:33:54 -03:00
dependabot[bot]
85a7ce067d
chore(deps): bump golang from 1.23.2-alpine to 1.23.3-alpine (#5255)
Bumps golang from 1.23.2-alpine to 1.23.3-alpine.


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang&package-manager=docker&previous-version=1.23.2-alpine&new-version=1.23.3-alpine)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-07 08:53:11 +00:00
Carlos Alexandro Becker
befa144da9
docs: clarify some things about ko templates
refs #5247
2024-11-06 22:54:16 -03:00
Oleksandr Redko
2b76fb266f
test: remove redundant require.Error (#5253)
The PR refactors tests by removing redundant `require.Error` statements
that are followed by `require.ErrorContains`. `require.ErrorContains`
will fail if `err` is `nil`, so `require.Error` is not needed.
2024-11-06 22:16:31 -03:00
dependabot[bot]
9f042fa273
chore(deps): bump github.com/xanzy/go-gitlab from 0.112.0 to 0.113.0 (#5252)
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab)
from 0.112.0 to 0.113.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/xanzy/go-gitlab/releases">github.com/xanzy/go-gitlab's
releases</a>.</em></p>
<blockquote>
<h2>v0.113.0</h2>
<h2>Breaking changes</h2>
<ul>
<li>Support ListOptions for ListMembershipsForBillableGroupMember by <a
href="https://github.com/Iridias"><code>@​Iridias</code></a> in <a
href="https://redirect.github.com/xanzy/go-gitlab/pull/2043">xanzy/go-gitlab#2043</a></li>
<li>Make the (group)labels methods compatible with old and new API
versions by <a
href="https://github.com/svanharmelen"><code>@​svanharmelen</code></a>
in <a
href="https://redirect.github.com/xanzy/go-gitlab/pull/2049">xanzy/go-gitlab#2049</a></li>
<li>Update all services to return the service on update by <a
href="https://github.com/svanharmelen"><code>@​svanharmelen</code></a>
in <a
href="https://redirect.github.com/xanzy/go-gitlab/pull/2042">xanzy/go-gitlab#2042</a></li>
</ul>
<h2>What's Changed</h2>
<ul>
<li>Add username to AddGroupMemberOptions by <a
href="https://github.com/xinau"><code>@​xinau</code></a> in <a
href="https://redirect.github.com/xanzy/go-gitlab/pull/2047">xanzy/go-gitlab#2047</a></li>
<li>Add TriggerTestGroupHook by <a
href="https://github.com/smit-modi"><code>@​smit-modi</code></a> in <a
href="https://redirect.github.com/xanzy/go-gitlab/pull/2046">xanzy/go-gitlab#2046</a></li>
<li>API pipeline update metadata by <a
href="https://github.com/alexpts"><code>@​alexpts</code></a> in <a
href="https://redirect.github.com/xanzy/go-gitlab/pull/2051">xanzy/go-gitlab#2051</a></li>
<li>Add Web URL to response when comparing in a repository by <a
href="https://github.com/heidiberry"><code>@​heidiberry</code></a> in <a
href="https://redirect.github.com/xanzy/go-gitlab/pull/2055">xanzy/go-gitlab#2055</a></li>
<li>Add support for updating a project's GitLab Pages settings by <a
href="https://github.com/heidiberry"><code>@​heidiberry</code></a> in <a
href="https://redirect.github.com/xanzy/go-gitlab/pull/2053">xanzy/go-gitlab#2053</a></li>
<li>Add expires_at field when creating project deploy keys by <a
href="https://github.com/heidiberry"><code>@​heidiberry</code></a> in <a
href="https://redirect.github.com/xanzy/go-gitlab/pull/2054">xanzy/go-gitlab#2054</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/xinau"><code>@​xinau</code></a> made
their first contribution in <a
href="https://redirect.github.com/xanzy/go-gitlab/pull/2047">xanzy/go-gitlab#2047</a></li>
<li><a href="https://github.com/alexpts"><code>@​alexpts</code></a> made
their first contribution in <a
href="https://redirect.github.com/xanzy/go-gitlab/pull/2051">xanzy/go-gitlab#2051</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/xanzy/go-gitlab/compare/v0.112.0...v0.113.0">https://github.com/xanzy/go-gitlab/compare/v0.112.0...v0.113.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="e5d92f6abc"><code>e5d92f6</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/2054">#2054</a>
from heidiberry/project-deploy-key-expires-at</li>
<li><a
href="75ad5f4a64"><code>75ad5f4</code></a>
Fix the expires_at type</li>
<li><a
href="e53b7a1f56"><code>e53b7a1</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/2042">#2042</a>
from xanzy/fix/slack</li>
<li><a
href="bc6554d887"><code>bc6554d</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/2053">#2053</a>
from heidiberry/add-update-pages-settings</li>
<li><a
href="fb6678a73c"><code>fb6678a</code></a>
Use standard naming convention for initialisms</li>
<li><a
href="c09e0ae441"><code>c09e0ae</code></a>
Fix tests</li>
<li><a
href="5548b4fbba"><code>5548b4f</code></a>
Merge pull request <a
href="https://redirect.github.com/xanzy/go-gitlab/issues/2055">#2055</a>
from heidiberry/add-repositories-web-url</li>
<li><a
href="4755022a3f"><code>4755022</code></a>
Use standard naming convention for initialisms</li>
<li><a
href="f13ce6c9b7"><code>f13ce6c</code></a>
Add Web URL to response when comparing in a repository</li>
<li><a
href="0a4134b500"><code>0a4134b</code></a>
Add expires_at field when creating project deploy keys</li>
<li>Additional commits viewable in <a
href="https://github.com/xanzy/go-gitlab/compare/v0.112.0...v0.113.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/xanzy/go-gitlab&package-manager=go_modules&previous-version=0.112.0&new-version=0.113.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-06 14:58:21 -03:00
Carlos Alexandro Becker
ed86703d73
ci: dependabot fix 2024-11-06 14:55:31 -03:00
Oleksandr Redko
1e80f5f5b7
chore: fix typos in test names (#5249)
The PR corrects grammar mistakes in test names.
2024-11-06 14:54:56 -03:00
dependabot[bot]
442f70abd3
chore(deps): bump anchore/sbom-action from 0.17.6 to 0.17.7 (#5250)
Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from
0.17.6 to 0.17.7.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/anchore/sbom-action/releases">anchore/sbom-action's
releases</a>.</em></p>
<blockquote>
<h2>v0.17.7</h2>
<h2>Changes in v0.17.7</h2>
<ul>
<li>chore(deps): update Syft to v1.16.0 (<a
href="https://redirect.github.com/anchore/sbom-action/issues/506">#506</a>)
[<a
href="https://github.com/anchore-actions-token-generator">anchore-actions-token-generator</a>]</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="fc46e51fd3"><code>fc46e51</code></a>
chore(deps): update Syft to v1.16.0 (<a
href="https://redirect.github.com/anchore/sbom-action/issues/506">#506</a>)</li>
<li>See full diff in <a
href="https://github.com/anchore/sbom-action/compare/v0.17.6...v0.17.7">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=anchore/sbom-action&package-manager=github_actions&previous-version=0.17.6&new-version=0.17.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-06 14:54:35 -03:00
Oleksandr Redko
699adf4fc5
fix: typo in JSON property for OpenCollective announce (#5251)
The PR corrects grammar mistake in the property name for
`OpenCollective` in the JSON schema.
2024-11-06 14:52:54 -03:00
Oleksandr Redko
8dad0d8229
docs: fix typos in comments (#5246) 2024-11-05 20:28:16 -03:00
dependabot[bot]
118b626d31
chore(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 (#5244)
Bumps [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt)
from 4.5.0 to 4.5.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golang-jwt/jwt/releases">github.com/golang-jwt/jwt/v4's
releases</a>.</em></p>
<blockquote>
<h2>v4.5.1</h2>
<h1>Security</h1>
<p>Unclear documentation of the error behavior in
<code>ParseWithClaims</code> in &lt;= 4.5.0 could lead to situation
where users are potentially not checking errors in the way they should
be. Especially, if a token is both expired and invalid, the errors
returned by <code>ParseWithClaims</code> return both error codes. If
users only check for the <code>jwt.ErrTokenExpired </code> using
<code>error.Is</code>, they will ignore the embedded
<code>jwt.ErrTokenSignatureInvalid</code> and thus potentially accept
invalid tokens.</p>
<p>This issue was documented in <a
href="https://github.com/golang-jwt/jwt/security/advisories/GHSA-29wx-vh33-7x7r">https://github.com/golang-jwt/jwt/security/advisories/GHSA-29wx-vh33-7x7r</a>
and fixed in this release.</p>
<p>Note: <code>v5</code> was not affected by this issue. So upgrading to
this release version is also recommended.</p>
<h1>What's Changed</h1>
<ul>
<li>Back-ported error-handling logic in <code>ParseWithClaims</code>
from <code>v5</code> branch. This fixes <a
href="https://github.com/golang-jwt/jwt/security/advisories/GHSA-29wx-vh33-7x7r">https://github.com/golang-jwt/jwt/security/advisories/GHSA-29wx-vh33-7x7r</a>.</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/golang-jwt/jwt/compare/v4.5.0...v4.5.1">https://github.com/golang-jwt/jwt/compare/v4.5.0...v4.5.1</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="7b1c1c00a1"><code>7b1c1c0</code></a>
Merge commit from fork</li>
<li>See full diff in <a
href="https://github.com/golang-jwt/jwt/compare/v4.5.0...v4.5.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/golang-jwt/jwt/v4&package-manager=go_modules&previous-version=4.5.0&new-version=4.5.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/goreleaser/goreleaser/network/alerts).

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2024-11-05 09:37:47 -03:00
Carlos Alexandro Becker
a4d2564fb2
ci: approve before merge 2024-11-05 09:28:34 -03:00
actions-user
2e8d84bb63 chore: auto-update generated files 2024-11-05 02:56:13 +00:00
Carlos Alexandro Becker
606c0e724f
fix(cmd): handle --skip=,names...
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
v2.4.4
2024-11-04 23:08:34 -03:00
actions-user
cc4427f346 chore: auto-update generated files 2024-11-04 18:20:39 +00:00
Carlos Alexandro Becker
9a68c54d53
fix(changelog): first release default to git changelogger (#5242)
the `/compare` api doesn't allow to omit the previous reference, nor to
use a git commit, so, if `previous tag` is empty, we're now defaulting
to the git changelog implementation, which should resolve the problem.

closes #5240

---------

Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
v2.4.3
2024-11-04 14:13:30 -03:00
André Lademann
973dde6879
docs: update deprecated config documentation (#5243)
This pull request updates the documentation to reflect changes in the
`goreleaser-action` version and modifies the `.goreleaser.yaml`
configuration for better clarity.

Documentation updates:

*
[`www/docs/errors/resource-not-accessible-by-integration.md`](diffhunk://#diff-165fd8d8fb477ae98173556cce7fbd52eb9c5fca03b713c7c8d59bc96e46fe50L32-R32):
Updated the `goreleaser-action` version from `v4` to `v6` in the
workflow file examples.
[[1]](diffhunk://#diff-165fd8d8fb477ae98173556cce7fbd52eb9c5fca03b713c7c8d59bc96e46fe50L32-R32)
[[2]](diffhunk://#diff-165fd8d8fb477ae98173556cce7fbd52eb9c5fca03b713c7c8d59bc96e46fe50L49-R49)

Configuration changes:

*
[`www/docs/errors/resource-not-accessible-by-integration.md`](diffhunk://#diff-165fd8d8fb477ae98173556cce7fbd52eb9c5fca03b713c7c8d59bc96e46fe50L63-R63):
Changed the `.goreleaser.yaml` configuration to use `repository` instead
of `tap` for specifying the brew repository.
2024-11-04 14:12:48 -03:00
Carlos Alexandro Becker
a8315bca8f
fix: missing equal sign in environment variable
closes #5241
2024-11-04 12:35:50 -03:00
Carlos Alexandro Becker
efb4bd41f1
ci: delete local nightly tag on release 2024-11-04 11:00:21 -03:00
actions-user
79c6dd923f chore: auto-update generated files 2024-11-04 13:49:47 +00:00
Carlos Alexandro Becker
23f35021ae
docs: update
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
v2.4.2
2024-11-04 09:07:44 -03:00
Carlos Alexandro Becker
2a892f29aa
docs: update 2024-11-04 09:06:38 -03:00
Carlos Alexandro Becker
2cbb4303d3
chore: schema update
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2024-11-04 08:59:50 -03:00
Carlos Alexandro Becker
cb8997e76b
fix: goreleaser build --single-target on arm64
refs https://github.com/goreleaser/goreleaser/issues/5238#issuecomment-2454334189
2024-11-04 08:51:43 -03:00
Carlos Alexandro Becker
431b18f6ee
docs: update builds 2024-11-04 08:31:53 -03:00
Carlos Alexandro Becker
a4ead4ba28
fix: build override consider goarm64
plus more tests
2024-11-04 08:27:09 -03:00
世界
6ef6623d46
fix: build override (#5239)
Since Go386 now has a default value, existing configurations no longer
match 386 builds (d583861e0606f2bb9e97c0d0e28f9b82df6a187a).

Since we used to need to write goamd64=1 to match _amd64 builds, I added
new opts to fix that. (If you think you need to set some default for
override, that would be even better)
2024-11-04 08:11:52 -03:00
Carlos Alexandro Becker
ad60dcaf1f
docs: update
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2024-11-03 13:58:42 -03:00
Carlos Alexandro Becker
2f2ae3007a
docs: update
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2024-11-03 13:36:31 -03:00
Carlos Alexandro Becker
e185a4cb23
docs: fix announcement
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2024-11-03 13:10:14 -03:00
actions-user
0639bdb965 chore: auto-update generated files 2024-11-02 18:50:54 +00:00
actions-user
1b1a2be4c8 chore: auto-update generated files v2.4.1 2024-11-02 18:20:48 +00:00
Carlos Alexandro Becker
a2c63b539b
docs: announcement
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2024-11-02 15:19:14 -03:00
Carlos Alexandro Becker
e0a21a1f5d
fix(nfpm): bad filename for 386
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2024-11-02 15:08:58 -03:00
Carlos Alexandro Becker
1455d462f1
test(nfpm): goppc64, goriscv64, etc v2.4.0 2024-11-02 13:58:05 -03:00
Carlos Alexandro Becker
f65c757073
fix(nfpm): wrong filename for arm64
refs #5186
closes #5238
2024-11-02 13:50:41 -03:00
Carlos Alexandro Becker
3cf2556a26
ci: auto-merge dependabot PRs 2024-11-01 09:59:48 -03:00
dependabot[bot]
c92ffb4298
chore(deps): bump github.com/charmbracelet/lipgloss from 0.13.1 to 1.0.0 (#5237)
Bumps
[github.com/charmbracelet/lipgloss](https://github.com/charmbracelet/lipgloss)
from 0.13.1 to 1.0.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/charmbracelet/lipgloss/releases">github.com/charmbracelet/lipgloss's
releases</a>.</em></p>
<blockquote>
<h2>v1.0.0</h2>
<h1>At last: v1.0.0</h1>
<!-- raw HTML omitted -->
<p>This is an honorary release indicating that Lip Gloss is now stable.
Thank you, open source community, for all your love, support,
contributions, and great style.</p>
<p>Stay tuned for a v2 alpha!</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="761d265f76"><code>761d265</code></a>
feat(deps): bump github.com/charmbracelet/x/ansi from 0.4.0 to
0.4.2</li>
<li><a
href="342e7b051b"><code>342e7b0</code></a>
chore(ci): sync golangci-lint config</li>
<li><a
href="da324b123d"><code>da324b1</code></a>
feat(deps): bump github.com/charmbracelet/x/ansi from 0.3.2 to
0.4.0</li>
<li><a
href="78fd6fd42f"><code>78fd6fd</code></a>
chore(ci): sync golangci-lint config</li>
<li><a
href="407dc3d2cf"><code>407dc3d</code></a>
feat(ci): add lint-sync workflow</li>
<li>See full diff in <a
href="https://github.com/charmbracelet/lipgloss/compare/v0.13.1...v1.0.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/charmbracelet/lipgloss&package-manager=go_modules&previous-version=0.13.1&new-version=1.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-01 09:16:39 -03:00
Oleksandr Redko
12155a336b
refactor: remove empty lines, fix //nolint (#5235)
The PR formats code by removing redundant empty lines and fixes
`//nolint` directives. Additionally, this PR adds two more rules to the
`revive` configuration: `empty-lines` and `comment-spacings`.

Removing unnecessary empty lines helps to keep the codebase clean and
concise. This issue is identified by the `revive.empty-lines` rule.

In the `//nolint` directive, there must be no spaces between `:` and the
linter name: `//nolint:gosec`. See ["Nolint
Directive"](https://golangci-lint.run/usage/false-positives/#nolint-directive).
This issue is identified by the `revive.comment-spacings` rule.

Note that it's not possible to add just a few additional rules to the
`revive.enable` list. We need to specify all: default rules plus
additional rules. See the detailed explanation
[here](https://github.com/prometheus/prometheus/pull/13068).
2024-10-31 13:51:54 -03:00
Oleksandr Redko
b269cc9229
feat: use context for HTTP request in discord (#5232)
The PR adds using `context.Context` in the `POST` request.

Context is a request scoped paradigm according to [the
doc](https://pkg.go.dev/context).

The PR adds `API` field into the `Config` for utilizing it in tests.
2024-10-31 08:57:46 -03:00
Oleksandr Redko
57365c1630
refactor: rename archive.Copying to archive.Copy (#5233)
This PR renames `Copying` functions in the `archive` package to `Copy`
because it is a more common method name.
2024-10-31 08:53:27 -03:00
dependabot[bot]
7e48917d1a
chore(deps): bump anchore/sbom-action from 0.17.5 to 0.17.6 (#5231)
Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from
0.17.5 to 0.17.6.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/anchore/sbom-action/releases">anchore/sbom-action's
releases</a>.</em></p>
<blockquote>
<h2>v0.17.6</h2>
<h2>Changes in v0.17.6</h2>
<ul>
<li>chore(deps): update Syft to v1.15.0 (<a
href="https://redirect.github.com/anchore/sbom-action/issues/505">#505</a>)
[<a
href="https://github.com/anchore-actions-token-generator">anchore-actions-token-generator</a>]</li>
<li>chore(deps): bump actions/checkout from 4.2.1 to 4.2.2 (<a
href="https://redirect.github.com/anchore/sbom-action/issues/504">#504</a>)
[<a href="https://github.com/dependabot">dependabot</a>]</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="251a468eed"><code>251a468</code></a>
chore(deps): update Syft to v1.15.0 (<a
href="https://redirect.github.com/anchore/sbom-action/issues/505">#505</a>)</li>
<li><a
href="6bb446c6c5"><code>6bb446c</code></a>
chore(deps): bump actions/checkout from 4.2.1 to 4.2.2 (<a
href="https://redirect.github.com/anchore/sbom-action/issues/504">#504</a>)</li>
<li>See full diff in <a
href="https://github.com/anchore/sbom-action/compare/v0.17.5...v0.17.6">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=anchore/sbom-action&package-manager=github_actions&previous-version=0.17.5&new-version=0.17.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-30 22:21:02 -03:00
dependabot[bot]
f92937b2a9
chore(deps): bump dagger/dagger-for-github from 6.13.0 to 6.14.0 (#5228)
Bumps
[dagger/dagger-for-github](https://github.com/dagger/dagger-for-github)
from 6.13.0 to 6.14.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/dagger/dagger-for-github/releases">dagger/dagger-for-github's
releases</a>.</em></p>
<blockquote>
<h2>v6.14.0</h2>
<h2>What's Changed</h2>
<ul>
<li>feat: allow specifying nightly builds by <a
href="https://github.com/jedevc"><code>@​jedevc</code></a> in <a
href="https://redirect.github.com/dagger/dagger-for-github/pull/151">dagger/dagger-for-github#151</a></li>
<li>chore: bump default dagger version to v0.13.6 by <a
href="https://github.com/jedevc"><code>@​jedevc</code></a> in <a
href="https://redirect.github.com/dagger/dagger-for-github/pull/154">dagger/dagger-for-github#154</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/dagger/dagger-for-github/compare/v6.13.0...v6.14.0">https://github.com/dagger/dagger-for-github/compare/v6.13.0...v6.14.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="ad6a4e308a"><code>ad6a4e3</code></a>
chore: bump default dagger version to v0.13.6</li>
<li><a
href="49dd901156"><code>49dd901</code></a>
feat: allow specifying nightly builds (<a
href="https://redirect.github.com/dagger/dagger-for-github/issues/151">#151</a>)</li>
<li>See full diff in <a
href="https://github.com/dagger/dagger-for-github/compare/v6.13.0...v6.14.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dagger/dagger-for-github&package-manager=github_actions&previous-version=6.13.0&new-version=6.14.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-28 08:01:16 -03:00
Maxime Brunet
d722aac36b
feat(ko): support annotations and user (#5227)
Add support for the newly added annotations and user options in [ko
v0.17.0](https://github.com/ko-build/ko/releases/tag/v0.17.0)
2024-10-27 16:01:09 -03:00
Carlos Alexandro Becker
ca5ad8c5ed
docs: update
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2024-10-26 14:06:55 -03:00
Carlos Alexandro Becker
244bbf0afe
fix: quill dependency conflics
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com>
2024-10-26 14:05:40 -03:00