mirror of
https://github.com/goreleaser/goreleaser.git
synced 2025-01-14 03:51:24 +02:00
e6a5a258c5
6111 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
Carlos Alexandro Becker
|
efd9edc51c
|
fix(gitlab): improve artifact upload retry (#5185)
this makes it more similar to github's implementation. should fix #5177 |
||
dependabot[bot]
|
8843f09b21
|
chore(deps): bump dagger/dagger-for-github from 6.12.0 to 6.13.0 (#5193)
Bumps
[dagger/dagger-for-github](https://github.com/dagger/dagger-for-github)
from 6.12.0 to 6.13.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/dagger/dagger-for-github/releases">dagger/dagger-for-github's
releases</a>.</em></p>
<blockquote>
<h2>v6.13.0</h2>
<h2>What's Changed</h2>
<ul>
<li>chore: bump default version to v0.13.5 by <a
href="https://github.com/sipsma"><code>@sipsma</code></a> in <a
href="https://redirect.github.com/dagger/dagger-for-github/pull/152">dagger/dagger-for-github#152</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/dagger/dagger-for-github/compare/v6...v6.13.0">https://github.com/dagger/dagger-for-github/compare/v6...v6.13.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="
|
||
|
dependabot[bot]
|
ce90955872
|
chore(deps): bump github.com/xanzy/go-gitlab from 0.110.0 to 0.111.0 (#5195)
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.110.0 to 0.111.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/xanzy/go-gitlab/releases">github.com/xanzy/go-gitlab's releases</a>.</em></p> <blockquote> <h2>v0.111.0</h2> <h2>What's Changed</h2> <ul> <li>Add event_name field to the audit events. by <a href="https://github.com/lstout"><code>@lstout</code></a> in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2024">xanzy/go-gitlab#2024</a></li> <li>Add Description field in Environments API by <a href="https://github.com/timofurrer"><code>@timofurrer</code></a> in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2025">xanzy/go-gitlab#2025</a></li> <li>Add 'default_branch' attribute by <a href="https://github.com/jgangemi"><code>@jgangemi</code></a> in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2030">xanzy/go-gitlab#2030</a></li> <li>Add support for Harbor Integration by <a href="https://github.com/houstonj1"><code>@houstonj1</code></a> in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2027">xanzy/go-gitlab#2027</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/jgangemi"><code>@jgangemi</code></a> made their first contribution in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2030">xanzy/go-gitlab#2030</a></li> <li><a href="https://github.com/houstonj1"><code>@houstonj1</code></a> made their first contribution in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2027">xanzy/go-gitlab#2027</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/xanzy/go-gitlab/compare/v0.110.0...v0.111.0">https://github.com/xanzy/go-gitlab/compare/v0.110.0...v0.111.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
Paul Querna
|
47212a5410
|
fix(brew): Fix Forumla Class Name builder (#5192)
- Fixes #5191 - I added a test case, but I don't have a great mechanism to test this fully in a live environment. --------- Co-authored-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
dependabot[bot]
|
3a859db169
|
chore(deps): bump dagger/dagger-for-github from 6.11.0 to 6.12.0 (#5190)
Bumps
[dagger/dagger-for-github](https://github.com/dagger/dagger-for-github)
from 6.11.0 to 6.12.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/dagger/dagger-for-github/releases">dagger/dagger-for-github's
releases</a>.</em></p>
<blockquote>
<h2>v6.12.0</h2>
<h2>What's Changed</h2>
<ul>
<li>chore: bump default dagger version to v0.13.4 by <a
href="https://github.com/jedevc"><code>@jedevc</code></a> in <a
href="https://redirect.github.com/dagger/dagger-for-github/pull/150">dagger/dagger-for-github#150</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/dagger/dagger-for-github/compare/v6...v6.12.0">https://github.com/dagger/dagger-for-github/compare/v6...v6.12.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="
|
||
|
dependabot[bot]
|
4871e768aa
|
chore(deps): bump actions/cache from 4.1.0 to 4.1.1 (#5189)
Bumps [actions/cache](https://github.com/actions/cache) from 4.1.0 to 4.1.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/cache/releases">actions/cache's releases</a>.</em></p> <blockquote> <h2>v4.1.1</h2> <h2>What's Changed</h2> <ul> <li>Restore original behavior of <code>cache-hit</code> output by <a href="https://github.com/joshmgross"><code>@joshmgross</code></a> in <a href="https://redirect.github.com/actions/cache/pull/1467">actions/cache#1467</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/cache/compare/v4.1.0...v4.1.1">https://github.com/actions/cache/compare/v4.1.0...v4.1.1</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/actions/cache/blob/main/RELEASES.md">actions/cache's changelog</a>.</em></p> <blockquote> <h1>Releases</h1> <h3>4.1.1</h3> <ul> <li>Restore original behavior of <code>cache-hit</code> output - <a href="https://redirect.github.com/actions/cache/pull/1467">#1467</a></li> </ul> <h3>4.1.0</h3> <ul> <li>Ensure <code>cache-hit</code> output is set when a cache is missed - <a href="https://redirect.github.com/actions/cache/pull/1404">#1404</a></li> <li>Deprecate <code>save-always</code> input - <a href="https://redirect.github.com/actions/cache/pull/1452">#1452</a></li> </ul> <h3>4.0.2</h3> <ul> <li>Fixed restore <code>fail-on-cache-miss</code> not working.</li> </ul> <h3>4.0.1</h3> <ul> <li>Updated <code>isGhes</code> check</li> </ul> <h3>4.0.0</h3> <ul> <li>Updated minimum runner version support from node 12 -> node 20</li> </ul> <h3>3.3.3</h3> <ul> <li>Updates <code>@actions/cache</code> to v3.2.3 to fix accidental mutated path arguments to <code>getCacheVersion</code> <a href="https://redirect.github.com/actions/toolkit/pull/1378">actions/toolkit#1378</a></li> <li>Additional audit fixes of npm package(s)</li> </ul> <h3>3.3.2</h3> <ul> <li>Fixes bug with Azure SDK causing blob downloads to get stuck.</li> </ul> <h3>3.3.1</h3> <ul> <li>Reduced segment size to 128MB and segment timeout to 10 minutes to fail fast in case the cache download is stuck.</li> </ul> <h3>3.3.0</h3> <ul> <li>Added option to lookup cache without downloading it.</li> </ul> <h3>3.2.6</h3> <ul> <li>Fix zstd not being used after zstd version upgrade to 1.5.4 on hosted runners.</li> </ul> <h3>3.2.5</h3> <ul> <li>Added fix to prevent from setting MYSYS environment variable globally.</li> </ul> <h3>3.2.4</h3> <ul> <li>Added option to fail job on cache miss.</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
13f8857c20
|
chore(deps): bump github/codeql-action from 3.26.11 to 3.26.12 (#5188)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.11 to 3.26.12. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <p>Note that the only difference between <code>v2</code> and <code>v3</code> of the CodeQL Action is the node version they support, with <code>v3</code> running on node 20 while we continue to release <code>v2</code> to support running on node 16. For example <code>3.22.11</code> was the first <code>v3</code> release and is functionally identical to <code>2.22.11</code>. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.</p> <h2>[UNRELEASED]</h2> <p>No user facing changes.</p> <h2>3.26.12 - 07 Oct 2024</h2> <ul> <li> <p><em>Upcoming breaking change</em>: Add a deprecation warning for customers using CodeQL version 2.14.5 and earlier. These versions of CodeQL were discontinued on 24 September 2024 alongside GitHub Enterprise Server 3.10, and will be unsupported by CodeQL Action versions 3.27.0 and later and versions 2.27.0 and later. <a href="https://redirect.github.com/github/codeql-action/pull/2520">#2520</a></p> <ul> <li> <p>If you are using one of these versions, please update to CodeQL CLI version 2.14.6 or later. For instance, if you have specified a custom version of the CLI using the 'tools' input to the 'init' Action, you can remove this input to use the default version.</p> </li> <li> <p>Alternatively, if you want to continue using a version of the CodeQL CLI between 2.13.5 and 2.14.5, you can replace <code>github/codeql-action/*@v3</code> by <code>github/codeql-action/*@v3.26.11</code> and <code>github/codeql-action/*@v2</code> by <code>github/codeql-action/*@v2.26.11</code> in your code scanning workflow to ensure you continue using this version of the CodeQL Action.</p> </li> </ul> </li> </ul> <h2>3.26.11 - 03 Oct 2024</h2> <ul> <li> <p><em>Upcoming breaking change</em>: Add support for using <code>actions/download-artifact@v4</code> to programmatically consume CodeQL Action debug artifacts.</p> <p>Starting November 30, 2024, GitHub.com customers will <a href="https://github.blog/changelog/2024-04-16-deprecation-notice-v3-of-the-artifact-actions/">no longer be able to use <code>actions/download-artifact@v3</code></a>. Therefore, to avoid breakage, customers who programmatically download the CodeQL Action debug artifacts should set the <code>CODEQL_ACTION_ARTIFACT_V4_UPGRADE</code> environment variable to <code>true</code> and bump <code>actions/download-artifact@v3</code> to <code>actions/download-artifact@v4</code> in their workflows. The CodeQL Action will enable this behavior by default in early November and workflows that have not yet bumped to <code>actions/download-artifact@v3</code> to <code>actions/download-artifact@v4</code> will begin failing then.</p> <p>This change is currently unavailable for GitHub Enterprise Server customers, as <code>actions/upload-artifact@v4</code> and <code>actions/download-artifact@v4</code> are not yet compatible with GHES.</p> </li> <li> <p>Update default CodeQL bundle version to 2.19.1. <a href="https://redirect.github.com/github/codeql-action/pull/2519">#2519</a></p> </li> </ul> <h2>3.26.10 - 30 Sep 2024</h2> <ul> <li>We are rolling out a feature in September/October 2024 that sets up CodeQL using a bundle compressed with <a href="http://facebook.github.io/zstd/">Zstandard</a>. Our aim is to improve the performance of setting up CodeQL. <a href="https://redirect.github.com/github/codeql-action/pull/2502">#2502</a></li> </ul> <h2>3.26.9 - 24 Sep 2024</h2> <p>No user facing changes.</p> <h2>3.26.8 - 19 Sep 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.19.0. <a href="https://redirect.github.com/github/codeql-action/pull/2483">#2483</a></li> </ul> <h2>3.26.7 - 13 Sep 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.4. <a href="https://redirect.github.com/github/codeql-action/pull/2471">#2471</a></li> </ul> <h2>3.26.6 - 29 Aug 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.3. <a href="https://redirect.github.com/github/codeql-action/pull/2449">#2449</a></li> </ul> <h2>3.26.5 - 23 Aug 2024</h2> <ul> <li>Fix an issue where the <code>csrutil</code> system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled. <a href="https://redirect.github.com/github/codeql-action/pull/2441">#2441</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
ec2447f9af
|
chore(deps): bump actions/checkout from 4.2.0 to 4.2.1 (#5187)
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.2.0 to 4.2.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p> <blockquote> <h2>v4.2.1</h2> <h2>What's Changed</h2> <ul> <li>Check out other refs/* by commit if provided, fall back to ref by <a href="https://github.com/orhantoy"><code>@orhantoy</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1924">actions/checkout#1924</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/Jcambass"><code>@Jcambass</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1919">actions/checkout#1919</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v4.2.0...v4.2.1">https://github.com/actions/checkout/compare/v4.2.0...v4.2.1</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/blob/main/CHANGELOG.md">actions/checkout's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <h2>v4.2.1</h2> <ul> <li>Check out other refs/* by commit if provided, fall back to ref by <a href="https://github.com/orhantoy"><code>@orhantoy</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1924">actions/checkout#1924</a></li> </ul> <h2>v4.2.0</h2> <ul> <li>Add Ref and Commit outputs by <a href="https://github.com/lucacome"><code>@lucacome</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1180">actions/checkout#1180</a></li> <li>Dependency updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a>- <a href="https://redirect.github.com/actions/checkout/pull/1777">actions/checkout#1777</a>, <a href="https://redirect.github.com/actions/checkout/pull/1872">actions/checkout#1872</a></li> </ul> <h2>v4.1.7</h2> <ul> <li>Bump the minor-npm-dependencies group across 1 directory with 4 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1739">actions/checkout#1739</a></li> <li>Bump actions/checkout from 3 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1697">actions/checkout#1697</a></li> <li>Check out other refs/* by commit by <a href="https://github.com/orhantoy"><code>@orhantoy</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1774">actions/checkout#1774</a></li> <li>Pin actions/checkout's own workflows to a known, good, stable version. by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1776">actions/checkout#1776</a></li> </ul> <h2>v4.1.6</h2> <ul> <li>Check platform to set archive extension appropriately by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1732">actions/checkout#1732</a></li> </ul> <h2>v4.1.5</h2> <ul> <li>Update NPM dependencies by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1703">actions/checkout#1703</a></li> <li>Bump github/codeql-action from 2 to 3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1694">actions/checkout#1694</a></li> <li>Bump actions/setup-node from 1 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1696">actions/checkout#1696</a></li> <li>Bump actions/upload-artifact from 2 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1695">actions/checkout#1695</a></li> <li>README: Suggest <code>user.email</code> to be <code>41898282+github-actions[bot]@users.noreply.github.com</code> by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1707">actions/checkout#1707</a></li> </ul> <h2>v4.1.4</h2> <ul> <li>Disable <code>extensions.worktreeConfig</code> when disabling <code>sparse-checkout</code> by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1692">actions/checkout#1692</a></li> <li>Add dependabot config by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1688">actions/checkout#1688</a></li> <li>Bump the minor-actions-dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1693">actions/checkout#1693</a></li> <li>Bump word-wrap from 1.2.3 to 1.2.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1643">actions/checkout#1643</a></li> </ul> <h2>v4.1.3</h2> <ul> <li>Check git version before attempting to disable <code>sparse-checkout</code> by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1656">actions/checkout#1656</a></li> <li>Add SSH user parameter by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1685">actions/checkout#1685</a></li> <li>Update <code>actions/checkout</code> version in <code>update-main-version.yml</code> by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1650">actions/checkout#1650</a></li> </ul> <h2>v4.1.2</h2> <ul> <li>Fix: Disable sparse checkout whenever <code>sparse-checkout</code> option is not present <a href="https://github.com/dscho"><code>@dscho</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1598">actions/checkout#1598</a></li> </ul> <h2>v4.1.1</h2> <ul> <li>Correct link to GitHub Docs by <a href="https://github.com/peterbe"><code>@peterbe</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1511">actions/checkout#1511</a></li> <li>Link to release page from what's new section by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1514">actions/checkout#1514</a></li> </ul> <h2>v4.1.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/1396">Add support for partial checkout filters</a></li> </ul> <h2>v4.0.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/1067">Support fetching without the --progress option</a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/1436">Update to node20</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
Eng Zer Jun
|
b2a02b582f
|
fix(changelog): fix random order of first commit in first release (#5173)
## Background This is a bug that occurs randomly under a very specific condition. Not sure how long this bug has been around. I first noticed it in the failed Dagger test job in https://github.com/goreleaser/goreleaser/pull/5161 after the `TestGroup` unit test was updated to use regex matching https://github.com/goreleaser/goreleaser/pull/5161#discussion_r1781302054. Log: https://github.com/goreleaser/goreleaser/actions/runs/11108665571/job/30862144417#step:4:680 ``` --- FAIL: TestGroup (0.23s) changelog_test.go:843: Error Trace: /src/internal/pipe/changelog/changelog_test.go:843 Error: Expect "## Changelog ### Features * a77c0b89a457ee6a78447f6c9113b79cf4dce8ce feat: added that thing ### Bug Fixes * 3e2908a87e5fdfdbd5efaad013c0b2d196c64c40 bug: Merge pull request #999 from goreleaser/some-branch ### Bots * e2b7fbaaf1387cd4af575f5e329d9441ce1a917b feat(deps): update foobar [bot] ### Others * 3643389d7150dc191eca4ac8428274fb31213a12 this is not a Merge pull request * 3e1421263cd99fbd9a1a6c0196a355efe96e631d chore: something about cArs we dont need * c094f150bc948d76f920219ef9729fd63747324b docs: whatever * 242178ede64b3ff570dfbde6416f2c4718dd5b68 fix: whatever * 02b7e77076dfed7475d42d728d69d13d19a10a39 ignored: whatever * c3b78e347e5c38acc6b78e5a963b28221ac0cfee fixed bug 2 * fc5f56a9d915d19bc3630dc40aabd99a3eede02b added feature 1 * dc67ddaae25db36fe70d3b96311243621c176169 first " to match "## Changelog ### Features \* \w+ feat: added that thing ### Bug Fixes \* \w+ bug: Merge pull request #999 from goreleaser\/some-branch ### Bots \* \w+ feat\(deps\): update foobar \[bot\] ### Others \* \w+ first \* \w+ this is not a Merge pull request \* \w+ chore: something about cArs we dont need \* \w+ docs: whatever \* \w+ fix: whatever \* \w+ ignored: whatever \* \w+ fixed bug 2 \* \w+ added feature 1 " Test: TestGroup ``` Then it also failed in: 1. |
||
|
Carlos Alexandro Becker
|
a2257ee415
|
chore(deps): update go-github to v66
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
dependabot[bot]
|
daf917fee5
|
chore(deps): bump golang.org/x/tools from 0.25.0 to 0.26.0 (#5182)
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.25.0 to 0.26.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
adfe828c88
|
chore(deps): bump github.com/xanzy/go-gitlab from 0.109.0 to 0.110.0 (#5181)
[//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.109.0 to 0.110.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/xanzy/go-gitlab/releases">github.com/xanzy/go-gitlab's releases</a>.</em></p> <blockquote> <h2>v0.110.0</h2> <h2>Breaking Changes</h2> <ul> <li>New options when calling DeleteProject by <a href="https://github.com/heidiberry"><code>@heidiberry</code></a> in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2010">xanzy/go-gitlab#2010</a></li> </ul> <h2>What's Changed</h2> <ul> <li>Support Kubernetes-related Environments API fields by <a href="https://github.com/timofurrer"><code>@timofurrer</code></a> in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2013">xanzy/go-gitlab#2013</a></li> <li>add MergeStatus filed to struct MergeEvent by <a href="https://github.com/cestlive"><code>@cestlive</code></a> in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2016">xanzy/go-gitlab#2016</a></li> <li>Add ListServiceAccounts function to list all service accounts by <a href="https://github.com/Atoms"><code>@Atoms</code></a> in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2012">xanzy/go-gitlab#2012</a></li> <li>Add support for the Redmine Integration by <a href="https://github.com/heidiberry"><code>@heidiberry</code></a> in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2007">xanzy/go-gitlab#2007</a></li> <li>feat(runners): add maintenance_note on put/get runner details by <a href="https://github.com/jaredallard"><code>@jaredallard</code></a> in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2017">xanzy/go-gitlab#2017</a></li> <li>feat: add deployment approval config attribute by <a href="https://github.com/loozhengyuan"><code>@loozhengyuan</code></a> in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2022">xanzy/go-gitlab#2022</a></li> <li>feat: add new pages api endpoint by <a href="https://github.com/nickshine"><code>@nickshine</code></a> in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2019">xanzy/go-gitlab#2019</a></li> <li>Support API endpoint: List memberships for a billable member of a group by <a href="https://github.com/Iridias"><code>@Iridias</code></a> in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2021">xanzy/go-gitlab#2021</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/cestlive"><code>@cestlive</code></a> made their first contribution in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2016">xanzy/go-gitlab#2016</a></li> <li><a href="https://github.com/Atoms"><code>@Atoms</code></a> made their first contribution in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2012">xanzy/go-gitlab#2012</a></li> <li><a href="https://github.com/jaredallard"><code>@jaredallard</code></a> made their first contribution in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2017">xanzy/go-gitlab#2017</a></li> <li><a href="https://github.com/loozhengyuan"><code>@loozhengyuan</code></a> made their first contribution in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2022">xanzy/go-gitlab#2022</a></li> <li><a href="https://github.com/Iridias"><code>@Iridias</code></a> made their first contribution in <a href="https://redirect.github.com/xanzy/go-gitlab/pull/2021">xanzy/go-gitlab#2021</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/xanzy/go-gitlab/compare/v0.109.0...v0.110.0">https://github.com/xanzy/go-gitlab/compare/v0.109.0...v0.110.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
0949389662
|
chore(deps): bump golang.org/x/crypto from 0.27.0 to 0.28.0 (#5180)
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.27.0 to 0.28.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
d23f2c7681
|
chore(deps): bump golang.org/x/text from 0.18.0 to 0.19.0 (#5179)
Bumps [golang.org/x/text](https://github.com/golang/text) from 0.18.0 to 0.19.0. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
156f49522b
|
chore(deps): bump sigstore/cosign-installer from 3.6.0 to 3.7.0 (#5183) | ||
|
dependabot[bot]
|
42185b6db0
|
chore(deps): bump actions/cache from 4.0.2 to 4.1.0 (#5184) | ||
Bob Callaway
|
012cfc391c
|
point to GHCR instead of GCR for cosign container (#5176)
This changes the Dockerfile to pull the cosign container image from GHCR instead of Google Cloud. This helps the Sigstore team manage their cloud spend (as GHCR is provided for free and Google Cloud Artifact Registry is not). Note the container hash does not change and images are posted to both locations upon cosign's release process. |
||
|
dependabot[bot]
|
10980311a5
|
chore(deps): bump cachix/install-nix-action from 29 to 30 (#5169)
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action) from 29 to 30. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cachix/install-nix-action/releases">cachix/install-nix-action's releases</a>.</em></p> <blockquote> <h2>v30</h2> <ul> <li>Nix: 2.24.7 -> 2.24.9, fixing <a href="https://github.com/NixOS/nix/security/advisories/GHSA-6fjr-mq49-mm2c">GHSA-6fjr-mq49-mm2c</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
2841417574
|
chore(deps): bump docker/setup-buildx-action from 3.7.0 to 3.7.1 (#5170) | ||
|
dependabot[bot]
|
e62db3c9ba
|
chore(deps): bump github/codeql-action from 3.26.9 to 3.26.11 (#5171) | ||
|
dependabot[bot]
|
8f1f86a660
|
chore(deps): bump codecov/codecov-action from 4.5.0 to 4.6.0 (#5163)
[//]: # (dependabot-start) ⚠️ **Dependabot is rebasing this PR** ⚠️ Rebasing might not happen immediately, so don't worry if this takes some time. Note: if you make any changes to this PR yourself, they will take precedence over the rebase. --- [//]: # (dependabot-end) Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 4.5.0 to 4.6.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/codecov/codecov-action/releases">codecov/codecov-action's releases</a>.</em></p> <blockquote> <h2>v4.6.0</h2> <h2>What's Changed</h2> <ul> <li>build(deps): bump github/codeql-action from 3.25.8 to 3.25.10 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1481">codecov/codecov-action#1481</a></li> <li>build(deps): bump actions/checkout from 4.1.6 to 4.1.7 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1480">codecov/codecov-action#1480</a></li> <li>build(deps-dev): bump ts-jest from 29.1.4 to 29.1.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1479">codecov/codecov-action#1479</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.13.0 to 7.13.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1485">codecov/codecov-action#1485</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 7.13.0 to 7.13.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1484">codecov/codecov-action#1484</a></li> <li>build(deps-dev): bump typescript from 5.4.5 to 5.5.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1490">codecov/codecov-action#1490</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.13.1 to 7.14.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1493">codecov/codecov-action#1493</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 7.13.1 to 7.14.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1492">codecov/codecov-action#1492</a></li> <li>build(deps): bump github/codeql-action from 3.25.10 to 3.25.11 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1496">codecov/codecov-action#1496</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 7.14.1 to 7.15.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1501">codecov/codecov-action#1501</a></li> <li>build(deps-dev): bump typescript from 5.5.2 to 5.5.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1500">codecov/codecov-action#1500</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.14.1 to 7.15.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1499">codecov/codecov-action#1499</a></li> <li>build(deps): bump actions/upload-artifact from 4.3.3 to 4.3.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1502">codecov/codecov-action#1502</a></li> <li>build(deps-dev): bump ts-jest from 29.1.5 to 29.2.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1504">codecov/codecov-action#1504</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 7.15.0 to 7.16.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1503">codecov/codecov-action#1503</a></li> <li>build(deps-dev): bump ts-jest from 29.2.0 to 29.2.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1507">codecov/codecov-action#1507</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.15.0 to 7.16.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1505">codecov/codecov-action#1505</a></li> <li>build(deps): bump github/codeql-action from 3.25.11 to 3.25.12 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1509">codecov/codecov-action#1509</a></li> <li>chore(ci): restrict scorecards to codecov/codecov-action by <a href="https://github.com/thomasrockhu-codecov"><code>@thomasrockhu-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1512">codecov/codecov-action#1512</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 7.16.0 to 7.16.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1514">codecov/codecov-action#1514</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.16.0 to 7.16.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1513">codecov/codecov-action#1513</a></li> <li>test: <code>versionInfo</code> by <a href="https://github.com/marcobiedermann"><code>@marcobiedermann</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1407">codecov/codecov-action#1407</a></li> <li>build(deps-dev): bump ts-jest from 29.2.2 to 29.2.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1515">codecov/codecov-action#1515</a></li> <li>build(deps): bump github/codeql-action from 3.25.12 to 3.25.13 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1516">codecov/codecov-action#1516</a></li> <li>build(deps-dev): bump typescript from 5.5.3 to 5.5.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1521">codecov/codecov-action#1521</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.16.1 to 7.17.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1520">codecov/codecov-action#1520</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 7.17.0 to 7.18.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1528">codecov/codecov-action#1528</a></li> <li>build(deps): bump github/codeql-action from 3.25.13 to 3.25.15 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1526">codecov/codecov-action#1526</a></li> <li>build(deps): bump ossf/scorecard-action from 2.3.3 to 2.4.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1525">codecov/codecov-action#1525</a></li> <li>build(deps-dev): bump ts-jest from 29.2.3 to 29.2.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1532">codecov/codecov-action#1532</a></li> <li>build(deps): bump actions/upload-artifact from 4.3.4 to 4.3.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1534">codecov/codecov-action#1534</a></li> <li>build(deps): bump github/codeql-action from 3.25.15 to 3.26.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1542">codecov/codecov-action#1542</a></li> <li>build(deps): bump actions/upload-artifact from 4.3.5 to 4.3.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1541">codecov/codecov-action#1541</a></li> <li>ref: Tidy up types and remove string coercion by <a href="https://github.com/nicholas-codecov"><code>@nicholas-codecov</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1536">codecov/codecov-action#1536</a></li> <li>build(deps-dev): bump <code>@octokit/webhooks-types</code> from 3.77.1 to 7.5.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1545">codecov/codecov-action#1545</a></li> <li>build(deps): bump github/codeql-action from 3.26.0 to 3.26.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1551">codecov/codecov-action#1551</a></li> <li>feat: pass tokenless value as branch override by <a href="https://github.com/joseph-sentry"><code>@joseph-sentry</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1511">codecov/codecov-action#1511</a></li> <li>build(deps): bump actions/upload-artifact from 4.3.6 to 4.4.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1563">codecov/codecov-action#1563</a></li> <li>Create makefile.yml by <a href="https://github.com/Hawthorne001"><code>@Hawthorne001</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1555">codecov/codecov-action#1555</a></li> <li>build(deps): bump github/codeql-action from 3.26.2 to 3.26.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1562">codecov/codecov-action#1562</a></li> <li>build(deps-dev): bump ts-jest from 29.2.4 to 29.2.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1557">codecov/codecov-action#1557</a></li> <li>Spell <code>evenName</code> in the logs correctly by <a href="https://github.com/webknjaz"><code>@webknjaz</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1560">codecov/codecov-action#1560</a></li> <li>build(deps-dev): bump typescript from 5.5.4 to 5.6.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1566">codecov/codecov-action#1566</a></li> <li>build(deps-dev): bump <code>@types/jest</code> from 29.5.12 to 29.5.13 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1567">codecov/codecov-action#1567</a></li> <li>build(deps): bump github/codeql-action from 3.26.6 to 3.26.7 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1569">codecov/codecov-action#1569</a></li> <li>build(deps-dev): bump eslint from 8.57.0 to 8.57.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1571">codecov/codecov-action#1571</a></li> <li>build(deps): bump github/codeql-action from 3.26.7 to 3.26.8 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1575">codecov/codecov-action#1575</a></li> <li>build(deps-dev): bump <code>@vercel/ncc</code> from 0.38.1 to 0.38.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/codecov/codecov-action/pull/1577">codecov/codecov-action#1577</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
7b697a854d
|
chore(deps): bump golang from 1.23.1-alpine to 1.23.2-alpine (#5164)
Bumps golang from 1.23.1-alpine to 1.23.2-alpine. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
747c11d833
|
chore(deps): bump docker/setup-buildx-action from 3.6.1 to 3.7.0 (#5165)
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3.6.1 to 3.7.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/setup-buildx-action/releases">docker/setup-buildx-action's releases</a>.</em></p> <blockquote> <h2>v3.7.0</h2> <ul> <li>Always set <code>buildkitd-flags</code> if opt-in by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/docker/setup-buildx-action/pull/363">docker/setup-buildx-action#363</a></li> <li>Remove <code>uuid</code> package and switch to <code>crypto</code> by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/docker/setup-buildx-action/pull/366">docker/setup-buildx-action#366</a></li> <li>Bump <code>@docker/actions-toolkit</code> from 0.35.0 to 0.39.0 in <a href="https://redirect.github.com/docker/setup-buildx-action/pull/362">docker/setup-buildx-action#362</a></li> <li>Bump path-to-regexp from 6.2.2 to 6.3.0 in <a href="https://redirect.github.com/docker/setup-buildx-action/pull/354">docker/setup-buildx-action#354</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/setup-buildx-action/compare/v3.6.1...v3.7.0">https://github.com/docker/setup-buildx-action/compare/v3.6.1...v3.7.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
71e7a63ca1
|
chore(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 (#5166)
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 6.1.0 to 6.1.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/golangci/golangci-lint-action/releases">golangci/golangci-lint-action's releases</a>.</em></p> <blockquote> <h2>v6.1.1</h2> <!-- raw HTML omitted --> <h2>What's Changed</h2> <h3>Changes</h3> <ul> <li>fix: clean go install output by <a href="https://github.com/ldez"><code>@ldez</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1102">golangci/golangci-lint-action#1102</a></li> </ul> <h3>Documentation</h3> <ul> <li>docs: update README.md to use golangci-lint v1.60 by <a href="https://github.com/dunglas"><code>@dunglas</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1087">golangci/golangci-lint-action#1087</a></li> </ul> <h3>Dependencies</h3> <ul> <li>build(deps-dev): bump the dev-dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1082">golangci/golangci-lint-action#1082</a></li> <li>build(deps): bump <code>@types/node</code> from 22.0.0 to 22.1.0 in the dependencies group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1083">golangci/golangci-lint-action#1083</a></li> <li>build(deps-dev): bump the dev-dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1084">golangci/golangci-lint-action#1084</a></li> <li>build(deps): bump <code>@types/node</code> from 22.1.0 to 22.2.0 in the dependencies group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1085">golangci/golangci-lint-action#1085</a></li> <li>build(deps-dev): bump the dev-dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1088">golangci/golangci-lint-action#1088</a></li> <li>build(deps-dev): bump the dev-dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1093">golangci/golangci-lint-action#1093</a></li> <li>build(deps): bump the dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1089">golangci/golangci-lint-action#1089</a></li> <li>build(deps): bump the dependencies group across 1 directory with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1096">golangci/golangci-lint-action#1096</a></li> <li>build(deps-dev): bump the dev-dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1097">golangci/golangci-lint-action#1097</a></li> <li>build(deps): bump <code>@types/node</code> from 22.5.1 to 22.5.2 in the dependencies group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1098">golangci/golangci-lint-action#1098</a></li> <li>build(deps): bump <code>@types/node</code> from 22.5.2 to 22.5.4 in the dependencies group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1100">golangci/golangci-lint-action#1100</a></li> <li>build(deps-dev): bump the dev-dependencies group with 3 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1099">golangci/golangci-lint-action#1099</a></li> <li>build(deps-dev): bump the dev-dependencies group with 3 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1103">golangci/golangci-lint-action#1103</a></li> <li>build(deps): bump <code>@types/node</code> from 22.5.4 to 22.5.5 in the dependencies group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1104">golangci/golangci-lint-action#1104</a></li> <li>build(deps-dev): bump the dev-dependencies group with 3 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1105">golangci/golangci-lint-action#1105</a></li> <li>build(deps): bump <code>@types/node</code> from 22.5.5 to 22.7.4 in the dependencies group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1109">golangci/golangci-lint-action#1109</a></li> <li>build(deps-dev): bump the dev-dependencies group with 3 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1108">golangci/golangci-lint-action#1108</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/dunglas"><code>@dunglas</code></a> made their first contribution in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/1087">golangci/golangci-lint-action#1087</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/golangci/golangci-lint-action/compare/v6.1.0...v6.1.1">https://github.com/golangci/golangci-lint-action/compare/v6.1.0...v6.1.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
Oleksandr Redko
|
c1f8b686db
|
test: add missing file.Close() calls (#5167)
This PR adds missing `file.Close()` calls in tests. All files that are opened using `os.Open` should be closed after finishing reading. |
||
|
Eng Zer Jun
|
b8aef100f2
|
perf(changelog): improve changelog sort performance (#5161)
This commit removes the unnecessary slice copy in `sortEntries`, and
replaces `sort.Slice` [^1] with the new `slices.SortFunc` [^2].
As recommended by the Go documentation, `slices.SortFunc` is generally
faster because it uses generic, whereas `sort.Slice` relies on
reflection, which incurs additional allocations
The benchmark result from the newly added `Benchmark_sortEntries` show
approximately a 64% performance improvement.
Benchmark result:
```
│ old.txt │ new.txt │
│ sec/op │ sec/op vs base │
_sortEntries/asc-16 16.458µ ± 1% 5.958µ ± 1% -63.80% (p=0.000 n=10)
_sortEntries/desc-16 17.675µ ± 1% 6.020µ ± 0% -65.94% (p=0.000 n=10)
geomean 17.06µ 5.989µ -64.89%
│ old.txt │ new.txt │
│ B/op │ B/op vs base │
_sortEntries/asc-16 3.164Ki ± 0% 1.164Ki ± 0% -63.21% (p=0.000 n=10)
_sortEntries/desc-16 3.422Ki ± 0% 1.164Ki ± 0% -65.98% (p=0.000 n=10)
geomean 3.290Ki 1.164Ki -64.62%
│ old.txt │ new.txt │
│ allocs/op │ allocs/op vs base │
_sortEntries/asc-16 68.00 ± 0% 25.00 ± 0% -63.24% (p=0.000 n=10)
_sortEntries/desc-16 72.00 ± 0% 25.00 ± 0% -65.28% (p=0.000 n=10)
geomean 69.97 25.00 -64.27%
```
[^1]: https://pkg.go.dev/sort#Slice
[^2]: https://pkg.go.dev/slices#SortFunc
Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>
|
||
|
Carlos Alexandro Becker
|
d2469666b8
|
docs: experiment version | ||
|
Carlos Alexandro Becker
|
0468da12fd
|
feat: default GOARM change to 7 (#5157)
Guarded by an environment variable for now. Closes #5155 |
||
|
dependabot[bot]
|
15d54735ab
|
chore(deps): bump actions/checkout from 4.1.7 to 4.2.0 (#5158)
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.7 to 4.2.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p> <blockquote> <h2>v4.2.0</h2> <h2>What's Changed</h2> <ul> <li>Add Ref and Commit outputs by <a href="https://github.com/lucacome"><code>@lucacome</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1180">actions/checkout#1180</a></li> <li>Dependabot updates in <a href="https://redirect.github.com/actions/checkout/pull/1777">actions/checkout#1777</a> & <a href="https://redirect.github.com/actions/checkout/pull/1872">actions/checkout#1872</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/yasonk"><code>@yasonk</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1869">actions/checkout#1869</a></li> <li><a href="https://github.com/lucacome"><code>@lucacome</code></a> made their first contribution in <a href="https://redirect.github.com/actions/checkout/pull/1180">actions/checkout#1180</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v4.1.7...v4.2.0">https://github.com/actions/checkout/compare/v4.1.7...v4.2.0</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/blob/main/CHANGELOG.md">actions/checkout's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <h2>v4.2.0</h2> <ul> <li>Add Ref and Commit outputs by <a href="https://github.com/lucacome"><code>@lucacome</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1180">actions/checkout#1180</a></li> <li>Dependency updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a>- <a href="https://redirect.github.com/actions/checkout/pull/1777">actions/checkout#1777</a>, <a href="https://redirect.github.com/actions/checkout/pull/1872">actions/checkout#1872</a></li> </ul> <h2>v4.1.7</h2> <ul> <li>Bump the minor-npm-dependencies group across 1 directory with 4 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1739">actions/checkout#1739</a></li> <li>Bump actions/checkout from 3 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1697">actions/checkout#1697</a></li> <li>Check out other refs/* by commit by <a href="https://github.com/orhantoy"><code>@orhantoy</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1774">actions/checkout#1774</a></li> <li>Pin actions/checkout's own workflows to a known, good, stable version. by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1776">actions/checkout#1776</a></li> </ul> <h2>v4.1.6</h2> <ul> <li>Check platform to set archive extension appropriately by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1732">actions/checkout#1732</a></li> </ul> <h2>v4.1.5</h2> <ul> <li>Update NPM dependencies by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1703">actions/checkout#1703</a></li> <li>Bump github/codeql-action from 2 to 3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1694">actions/checkout#1694</a></li> <li>Bump actions/setup-node from 1 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1696">actions/checkout#1696</a></li> <li>Bump actions/upload-artifact from 2 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1695">actions/checkout#1695</a></li> <li>README: Suggest <code>user.email</code> to be <code>41898282+github-actions[bot]@users.noreply.github.com</code> by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1707">actions/checkout#1707</a></li> </ul> <h2>v4.1.4</h2> <ul> <li>Disable <code>extensions.worktreeConfig</code> when disabling <code>sparse-checkout</code> by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1692">actions/checkout#1692</a></li> <li>Add dependabot config by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1688">actions/checkout#1688</a></li> <li>Bump the minor-actions-dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1693">actions/checkout#1693</a></li> <li>Bump word-wrap from 1.2.3 to 1.2.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1643">actions/checkout#1643</a></li> </ul> <h2>v4.1.3</h2> <ul> <li>Check git version before attempting to disable <code>sparse-checkout</code> by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1656">actions/checkout#1656</a></li> <li>Add SSH user parameter by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1685">actions/checkout#1685</a></li> <li>Update <code>actions/checkout</code> version in <code>update-main-version.yml</code> by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1650">actions/checkout#1650</a></li> </ul> <h2>v4.1.2</h2> <ul> <li>Fix: Disable sparse checkout whenever <code>sparse-checkout</code> option is not present <a href="https://github.com/dscho"><code>@dscho</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1598">actions/checkout#1598</a></li> </ul> <h2>v4.1.1</h2> <ul> <li>Correct link to GitHub Docs by <a href="https://github.com/peterbe"><code>@peterbe</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1511">actions/checkout#1511</a></li> <li>Link to release page from what's new section by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1514">actions/checkout#1514</a></li> </ul> <h2>v4.1.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/1396">Add support for partial checkout filters</a></li> </ul> <h2>v4.0.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/1067">Support fetching without the --progress option</a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/1436">Update to node20</a></li> </ul> <h2>v3.6.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/1377">Fix: Mark test scripts with Bash'isms to be run via Bash</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
Carlos Alexandro Becker
|
ae301b3773
|
test: update golden files
refs
|
||
Leo Robinovitch
|
33dfbce482
|
fix: remove filetype exe from chocolatey template (#5159)
When submitting a new project to chocolatey using goreleaser, a reviewer told me that a line in the template is incorrect: <img width="1054" alt="image" src="https://github.com/user-attachments/assets/423c4493-85fa-4cc5-8a74-97d2a561743b"> <img width="1052" alt="image" src="https://github.com/user-attachments/assets/04425da1-eb90-4504-9308-9a2e49ca85d8"> > since that is not a valid parameter to the Install-ChocolateyZipPackage function: https://docs.chocolatey.org/en-us/create/functions/install-chocolateyzippackage/ This PR aims to correct that by removing the line from the template as requested |
||
|
dependabot[bot]
|
962973441b
|
chore(deps): bump cachix/install-nix-action from V28 to 29 (#5160) | ||
|
dependabot[bot]
|
c8cb976e1b
|
chore(deps): bump github/codeql-action from 3.26.8 to 3.26.9 (#5156)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.8 to 3.26.9. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <p>Note that the only difference between <code>v2</code> and <code>v3</code> of the CodeQL Action is the node version they support, with <code>v3</code> running on node 20 while we continue to release <code>v2</code> to support running on node 16. For example <code>3.22.11</code> was the first <code>v3</code> release and is functionally identical to <code>2.22.11</code>. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.</p> <h2>[UNRELEASED]</h2> <p>No user facing changes.</p> <h2>3.26.9 - 24 Sep 2024</h2> <p>No user facing changes.</p> <h2>3.26.8 - 19 Sep 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.19.0. <a href="https://redirect.github.com/github/codeql-action/pull/2483">#2483</a></li> </ul> <h2>3.26.7 - 13 Sep 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.4. <a href="https://redirect.github.com/github/codeql-action/pull/2471">#2471</a></li> </ul> <h2>3.26.6 - 29 Aug 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.3. <a href="https://redirect.github.com/github/codeql-action/pull/2449">#2449</a></li> </ul> <h2>3.26.5 - 23 Aug 2024</h2> <ul> <li>Fix an issue where the <code>csrutil</code> system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled. <a href="https://redirect.github.com/github/codeql-action/pull/2441">#2441</a></li> </ul> <h2>3.26.4 - 21 Aug 2024</h2> <ul> <li><em>Deprecation:</em> The <code>add-snippets</code> input on the <code>analyze</code> Action is deprecated and will be removed in the first release in August 2025. <a href="https://redirect.github.com/github/codeql-action/pull/2436">#2436</a></li> <li>Fix an issue where the disk usage system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled, and then surface a warning. The system call is now disabled for these machines. <a href="https://redirect.github.com/github/codeql-action/pull/2434">#2434</a></li> </ul> <h2>3.26.3 - 19 Aug 2024</h2> <ul> <li>Fix an issue where the CodeQL Action could not write diagnostic messages on Windows. This issue did not impact analysis quality. <a href="https://redirect.github.com/github/codeql-action/pull/2430">#2430</a></li> </ul> <h2>3.26.2 - 14 Aug 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.2. <a href="https://redirect.github.com/github/codeql-action/pull/2417">#2417</a></li> </ul> <h2>3.26.1 - 13 Aug 2024</h2> <p>No user facing changes.</p> <h2>3.26.0 - 06 Aug 2024</h2> <ul> <li><em>Deprecation:</em> Swift analysis on Ubuntu runner images is no longer supported. Please migrate to a macOS runner if this affects you. <a href="https://redirect.github.com/github/codeql-action/pull/2403">#2403</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
Carlos Alexandro Becker
|
d4b8c6b6e5
|
docs: improve ko docs
refs #5154 |
||
|
dependabot[bot]
|
86fe795084
|
chore(deps): bump go.uber.org/automaxprocs from 1.5.3 to 1.6.0 (#5152)
Bumps [go.uber.org/automaxprocs](https://github.com/uber-go/automaxprocs) from 1.5.3 to 1.6.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/uber-go/automaxprocs/releases">go.uber.org/automaxprocs's releases</a>.</em></p> <blockquote> <h2>v1.6.0</h2> <ul> <li>Add RoundQuotaFunc option that allows configuration of rounding behavior for floating point CPU quota.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/uber-go/automaxprocs/blob/master/CHANGELOG.md">go.uber.org/automaxprocs's changelog</a>.</em></p> <blockquote> <h2>v1.6.0 (2024-07-24)</h2> <ul> <li>Add RoundQuotaFunc option that allows configuration of rounding behavior for floating point CPU quota.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
dde4f8f5ac
|
chore(deps): bump github.com/klauspost/compress from 1.17.9 to 1.17.10 (#5151)
Bumps [github.com/klauspost/compress](https://github.com/klauspost/compress) from 1.17.9 to 1.17.10. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/klauspost/compress/releases">github.com/klauspost/compress's releases</a>.</em></p> <blockquote> <h2>v1.17.10</h2> <h2>What's Changed</h2> <ul> <li>gzhttp: Add TransportAlwaysDecompress option. by <a href="https://github.com/klauspost"><code>@klauspost</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/978">klauspost/compress#978</a></li> <li>s2: Add EncodeBuffer buffer recycling callback by <a href="https://github.com/klauspost"><code>@klauspost</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/982">klauspost/compress#982</a></li> <li>zstd: Improve memory usage on small streaming encodes by <a href="https://github.com/klauspost"><code>@klauspost</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/1007">klauspost/compress#1007</a></li> <li>gzhttp: Add supported decompress request body by <a href="https://github.com/mirecl"><code>@mirecl</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/1002">klauspost/compress#1002</a></li> <li>flate: read data written with partial flush by <a href="https://github.com/vajexal"><code>@vajexal</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/996">klauspost/compress#996</a></li> <li>ci: Upgrade Go & other by <a href="https://github.com/klauspost"><code>@klauspost</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/1008">klauspost/compress#1008</a></li> <li>docs: Small typofix in comment by <a href="https://github.com/Jille"><code>@Jille</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/976">klauspost/compress#976</a></li> <li>build(deps): bump the github-actions group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/979">klauspost/compress#979</a></li> <li>docs: Fix URL typo when installing builddict by <a href="https://github.com/Wikidepia"><code>@Wikidepia</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/980">klauspost/compress#980</a></li> <li>build(deps): bump the github-actions group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/985">klauspost/compress#985</a></li> <li>Fix typos by <a href="https://github.com/deining"><code>@deining</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/986">klauspost/compress#986</a></li> <li>build(deps): bump github/codeql-action from 3.25.15 to 3.26.6 in the github-actions group by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/klauspost/compress/pull/997">klauspost/compress#997</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/Wikidepia"><code>@Wikidepia</code></a> made their first contribution in <a href="https://redirect.github.com/klauspost/compress/pull/980">klauspost/compress#980</a></li> <li><a href="https://github.com/deining"><code>@deining</code></a> made their first contribution in <a href="https://redirect.github.com/klauspost/compress/pull/986">klauspost/compress#986</a></li> <li><a href="https://github.com/vajexal"><code>@vajexal</code></a> made their first contribution in <a href="https://redirect.github.com/klauspost/compress/pull/996">klauspost/compress#996</a></li> <li><a href="https://github.com/mirecl"><code>@mirecl</code></a> made their first contribution in <a href="https://redirect.github.com/klauspost/compress/pull/1002">klauspost/compress#1002</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/klauspost/compress/compare/v1.17.9...v1.17.10">https://github.com/klauspost/compress/compare/v1.17.9...v1.17.10</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
James Telfer
|
2bdfbdcbfe
|
fix: signature template failed silently after signing process completed (#5148)
The presence of an artifact field in the `signature` or `certificate` template field caused a silent failure in the template when re-applied after the external signing process was called. This was due to the artifact being presence in the template context before the signing process, but not after. An error here was also ignored. The fix supplies the artifact to the template context, and also allows a template failure to fail the overall process. As far as I can tell, this change aligns behaviour to match existing documentation. Fixes #5147 |
||
|
dependabot[bot]
|
d456f7937b
|
chore(deps): bump dagger/dagger-for-github from 6.9.0 to 6.11.0 (#5150)
Bumps [dagger/dagger-for-github](https://github.com/dagger/dagger-for-github) from 6.9.0 to 6.11.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/dagger/dagger-for-github/releases">dagger/dagger-for-github's releases</a>.</em></p> <blockquote> <h2>v6.11.0</h2> <h2>What's Changed</h2> <ul> <li>bump to engine v0.13.3 by <a href="https://github.com/vito"><code>@vito</code></a> in <a href="https://redirect.github.com/dagger/dagger-for-github/pull/149">dagger/dagger-for-github#149</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/dagger/dagger-for-github/compare/v6.10.0...v6.11.0">https://github.com/dagger/dagger-for-github/compare/v6.10.0...v6.11.0</a></p> <h2>v6.10.0</h2> <h2>What's Changed</h2> <ul> <li>bump to engine v0.13.2 by <a href="https://github.com/vito"><code>@vito</code></a> in <a href="https://redirect.github.com/dagger/dagger-for-github/pull/148">dagger/dagger-for-github#148</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/dagger/dagger-for-github/compare/v6.9.0...v6.10.0">https://github.com/dagger/dagger-for-github/compare/v6.9.0...v6.10.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
Wayne
|
c08d7cd9ad
|
docs: correct spelling errors in documentation (#5149)
## Description Corrected some spelling errors in the `www/docs/install.md` and `www/docs/blog/posts/2024-09-12-v2.3.md` . Signed-off-by: Ruihua Wen <spiffyeight77@gmail.com> |
||
|
dependabot[bot]
|
8428a1e481
|
chore(deps): bump github/codeql-action from 3.26.7 to 3.26.8 (#5143)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.7 to 3.26.8. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <p>Note that the only difference between <code>v2</code> and <code>v3</code> of the CodeQL Action is the node version they support, with <code>v3</code> running on node 20 while we continue to release <code>v2</code> to support running on node 16. For example <code>3.22.11</code> was the first <code>v3</code> release and is functionally identical to <code>2.22.11</code>. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.</p> <h2>[UNRELEASED]</h2> <p>No user facing changes.</p> <h2>3.26.8 - 19 Sep 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.19.0. <a href="https://redirect.github.com/github/codeql-action/pull/2483">#2483</a></li> </ul> <h2>3.26.7 - 13 Sep 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.4. <a href="https://redirect.github.com/github/codeql-action/pull/2471">#2471</a></li> </ul> <h2>3.26.6 - 29 Aug 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.3. <a href="https://redirect.github.com/github/codeql-action/pull/2449">#2449</a></li> </ul> <h2>3.26.5 - 23 Aug 2024</h2> <ul> <li>Fix an issue where the <code>csrutil</code> system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled. <a href="https://redirect.github.com/github/codeql-action/pull/2441">#2441</a></li> </ul> <h2>3.26.4 - 21 Aug 2024</h2> <ul> <li><em>Deprecation:</em> The <code>add-snippets</code> input on the <code>analyze</code> Action is deprecated and will be removed in the first release in August 2025. <a href="https://redirect.github.com/github/codeql-action/pull/2436">#2436</a></li> <li>Fix an issue where the disk usage system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled, and then surface a warning. The system call is now disabled for these machines. <a href="https://redirect.github.com/github/codeql-action/pull/2434">#2434</a></li> </ul> <h2>3.26.3 - 19 Aug 2024</h2> <ul> <li>Fix an issue where the CodeQL Action could not write diagnostic messages on Windows. This issue did not impact analysis quality. <a href="https://redirect.github.com/github/codeql-action/pull/2430">#2430</a></li> </ul> <h2>3.26.2 - 14 Aug 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.2. <a href="https://redirect.github.com/github/codeql-action/pull/2417">#2417</a></li> </ul> <h2>3.26.1 - 13 Aug 2024</h2> <p>No user facing changes.</p> <h2>3.26.0 - 06 Aug 2024</h2> <ul> <li><em>Deprecation:</em> Swift analysis on Ubuntu runner images is no longer supported. Please migrate to a macOS runner if this affects you. <a href="https://redirect.github.com/github/codeql-action/pull/2403">#2403</a></li> <li>Bump the minimum CodeQL bundle version to 2.13.5. <a href="https://redirect.github.com/github/codeql-action/pull/2408">#2408</a></li> </ul> <h2>3.25.15 - 26 Jul 2024</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
4021d4389f
|
chore(deps): bump dagger/dagger-for-github from 6.8.0 to 6.9.0 (#5144)
Bumps
[dagger/dagger-for-github](https://github.com/dagger/dagger-for-github)
from 6.8.0 to 6.9.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/dagger/dagger-for-github/releases">dagger/dagger-for-github's
releases</a>.</em></p>
<blockquote>
<h2>v6.9.0</h2>
<h2>What's Changed</h2>
<ul>
<li>bump dagger version to v0.13.1 by <a
href="https://github.com/sipsma"><code>@sipsma</code></a> in <a
href="https://redirect.github.com/dagger/dagger-for-github/pull/147">dagger/dagger-for-github#147</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/dagger/dagger-for-github/compare/v6...v6.9.0">https://github.com/dagger/dagger-for-github/compare/v6...v6.9.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="
|
||
|
Carlos Alexandro Becker
|
d3f8bbf31a
|
fix: snapshot version template should not have the leading 'v'
closes #5142 |
||
|
Carlos Alexandro Becker
|
bce9035aa2
|
docs: update contributing
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
Kyle Penfound
|
d594cdd436
|
ci: daggerize test pipeline (#4969)
## What is this? This daggerizes the lint, test, and build pipelines for Goreleaser. ## Why? For context, the previous pass at this can be found here https://github.com/goreleaser/goreleaser/pull/4186 . Since that time, the DX for using Dagger has been considerably improved. The benefit this brings to the Goreleaser project is that the test pipeline can be run locally the same as it is run in CI without requiring contributors to configure additional tools in their developer environments. Additionally, by codifying the test and build execution environments, you no longer need to be concerned with changing or outdated Github Actions runner environments. ## How? As a contributor, you can simply clone/fork Goreleaser and run: `dagger functions` to see which commands are available. To lint local code: `dagger call --source . lint` To run tests against local code: `dagger call --source . test output` To run tests against local code and get the coverage report: `dagger call --source . test coverage-report -o ./coverage.txt` To run tests on the main branch on Github: `dagger call --source=https://github.com/goreleaser/goreleaser test output` To run tests against a PR branch on Github: `dagger call --source=https://github.com/goreleaser/goreleaser#pull/4958/head test output` To run tests against a PR branch using the dagger pipeline committed to the main branch, without checking out goreleaser: `dagger -m github.com/goreleaser/goreleaser call --source=https://github.com/goreleaser/goreleaser#pull/4958/head test output` And so on 😃 ## Also In addition to the Dagger code, I've updated the build.yml workflow to use the test pipeline and updated CONTRIBUTING.md with the command to run tests with Dagger. Note that I did not update the Taskfile.yml to avoid breaking anything for contributors comfortable with their existing workflows. Do you feel that this will benefit the Goreleaser project? Would you like to see the Dagger functions doing more/less? --------- Signed-off-by: kpenfound <kyle@dagger.io> Signed-off-by: Lev Lazinskiy <lev@levlaz.org> Signed-off-by: Lev Lazinskiy <lev@dagger.io> Co-authored-by: Lev Lazinskiy <lev@levlaz.org> Co-authored-by: Lev Lazinskiy <lev@dagger.io> |
||
actions-user
|
0a42a983b0 | chore: auto-update generated files | ||
|
Carlos Alexandro Becker
|
e8c2ef7735
|
fix: upx UnknownExecutableFormatException
closes #5141 |
||
|
Carlos Alexandro Becker
|
527485c58f
|
chore(deps): update go-github to v65
Signed-off-by: Carlos Alexandro Becker <caarlos0@users.noreply.github.com> |
||
|
dependabot[bot]
|
7d1063f07d
|
chore(deps): bump github/codeql-action from 3.26.6 to 3.26.7 (#5140)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.6 to 3.26.7. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action Changelog</h1> <p>See the <a href="https://github.com/github/codeql-action/releases">releases page</a> for the relevant changes to the CodeQL CLI and language packs.</p> <p>Note that the only difference between <code>v2</code> and <code>v3</code> of the CodeQL Action is the node version they support, with <code>v3</code> running on node 20 while we continue to release <code>v2</code> to support running on node 16. For example <code>3.22.11</code> was the first <code>v3</code> release and is functionally identical to <code>2.22.11</code>. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.</p> <h2>[UNRELEASED]</h2> <p>No user facing changes.</p> <h2>3.26.7 - 13 Sep 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.4. <a href="https://redirect.github.com/github/codeql-action/pull/2471">#2471</a></li> </ul> <h2>3.26.6 - 29 Aug 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.3. <a href="https://redirect.github.com/github/codeql-action/pull/2449">#2449</a></li> </ul> <h2>3.26.5 - 23 Aug 2024</h2> <ul> <li>Fix an issue where the <code>csrutil</code> system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled. <a href="https://redirect.github.com/github/codeql-action/pull/2441">#2441</a></li> </ul> <h2>3.26.4 - 21 Aug 2024</h2> <ul> <li><em>Deprecation:</em> The <code>add-snippets</code> input on the <code>analyze</code> Action is deprecated and will be removed in the first release in August 2025. <a href="https://redirect.github.com/github/codeql-action/pull/2436">#2436</a></li> <li>Fix an issue where the disk usage system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled, and then surface a warning. The system call is now disabled for these machines. <a href="https://redirect.github.com/github/codeql-action/pull/2434">#2434</a></li> </ul> <h2>3.26.3 - 19 Aug 2024</h2> <ul> <li>Fix an issue where the CodeQL Action could not write diagnostic messages on Windows. This issue did not impact analysis quality. <a href="https://redirect.github.com/github/codeql-action/pull/2430">#2430</a></li> </ul> <h2>3.26.2 - 14 Aug 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.2. <a href="https://redirect.github.com/github/codeql-action/pull/2417">#2417</a></li> </ul> <h2>3.26.1 - 13 Aug 2024</h2> <p>No user facing changes.</p> <h2>3.26.0 - 06 Aug 2024</h2> <ul> <li><em>Deprecation:</em> Swift analysis on Ubuntu runner images is no longer supported. Please migrate to a macOS runner if this affects you. <a href="https://redirect.github.com/github/codeql-action/pull/2403">#2403</a></li> <li>Bump the minimum CodeQL bundle version to 2.13.5. <a href="https://redirect.github.com/github/codeql-action/pull/2408">#2408</a></li> </ul> <h2>3.25.15 - 26 Jul 2024</h2> <ul> <li>Update default CodeQL bundle version to 2.18.1. <a href="https://redirect.github.com/github/codeql-action/pull/2385">#2385</a></li> </ul> <h2>3.25.14 - 25 Jul 2024</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
actions-user
|
ff84a3d703 | chore: auto-update generated files | ||
|
dependabot[bot]
|
c16bd53142
|
chore(deps): bump cachix/install-nix-action from V27 to 28 (#5135)
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action) from V27 to 28. This release includes the previously tagged commit. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cachix/install-nix-action/releases">cachix/install-nix-action's releases</a>.</em></p> <blockquote> <h2>v28</h2> <p>Nix 2.24.6 - <a href="https://github.com/NixOS/nix/security/advisories/GHSA-h4vv-h3jq-v493">https://github.com/NixOS/nix/security/advisories/GHSA-h4vv-h3jq-v493</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |