goreleaser

mirror of https://github.com/goreleaser/goreleaser.git synced 2025-01-08 03:31:59 +02:00

Deliver Go binaries as fast and easily as possible https://goreleaser.com/

apk deb docker github-actions go golang hacktoberfest homebrew package release-automation rpm snapcraft travis

Go to file

dependabot[bot] 4bdf2e9ba6 chore(deps): bump actions/dependency-review-action from 2 to 3 (#3551 ) Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 2 to 3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/dependency-review-action/releases">actions/dependency-review-action's releases</a>.</em></p> <blockquote> <h2>3.0.0</h2> <h2>Breaking Changes</h2> <p>By default the action now expects <a href="https://spdx.org/licenses/">SPDX-compliant licenses</a> everywhere. If you were previously using license names in the allow or deny lists make sure they're valid!</p> <h2>What's Changed</h2> <h3>Support for external configuration files</h3> <p>You can now specify a <a href="https://github.com/actions/dependency-review-action/#configuration-file">configuration file external to your repository</a>. This allows organizations to have a single configuration file for all their repos.</p> <h3>Broader license support</h3> <p>We've added support for a much broader set of project licenses by using GitHub's <a href="https://docs.github.com/en/rest/licenses">Licenses API</a>.</p> <h3>SPDX Compliance</h3> <p>All of our license-related code now expects <a href="https://spdx.org/licenses/">SPDX-compliant licenses or expressions</a>. This allows us to standardize on a license naming scheme that already supports <code>OR</code>/<code>AND</code> expressions.</p> <h3>Disable individual checks</h3> <p>You can now use the boolean options <code>license-check</code> and <code>vulnerability-check</code> to disable either one of the checks. More information in <a href="https://github.com/actions/dependency-review-action/#configuration-options">our configuration options</a>.</p> <h2>Thanks</h2> <p>Contributors for this release include:</p> <ul> <li><a href="https://github.com/cnagadya"><code>@cnagadya</code></a></li> <li><a href="https://github.com/courtneycl"><code>@courtneycl</code></a></li> <li><a href="https://github.com/ericcornelissen"><code>@ericcornelissen</code></a></li> <li><a href="https://github.com/elireisman"><code>@elireisman</code></a></li> <li><a href="https://github.com/hmaurer"><code>@hmaurer</code></a></li> </ul> <p>Thanks everyone! <strong>Full Changelog</strong>: <a href="https://github.com/actions/dependency-review-action/compare/v2...v3.0.0">https://github.com/actions/dependency-review-action/compare/v2...v3.0.0</a></p> <h2>2.5.1</h2> <p>Adding some quality-of-life improvements to the local development experience. You can now pass a flag to the <code>scripts/scan_pr</code> script using the <code>-c/--config-file</code> flags to use an external configuration file:</p> <p>Example:</p> <pre><code> scripts/scan_pr https://github.com/actions/dependency-review-action/pull/294 </code></pre> <h2>2.5.0</h2> <p>Fallback on GitHub Licenses API data for missing Dependency Review API Licenses. This should improve our license coverage.</p> <h2>2.4.1</h2> <p>This patch release fixes the bugs below:</p> <ul> <li>Display the dependency name instead of the manifest name in the detailed list of dependents.</li> <li>Fix an issue where undefined GHSAs would remove filter out all changes.</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="`30d5821115`"><code>30d5821</code></a> Bumping version number</li> <li><a href="`6e42c3395a`"><code>6e42c33</code></a> Remove defaults from the recently added fields.</li> <li><a href="`a3074cd699`"><code>a3074cd</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/actions/dependency-review-action/issues/327">#327</a> from actions/adding-extra-options</li> <li><a href="`51a29d6960`"><code>51a29d6</code></a> Updating action.yml to include <code>*-check</code> config</li> <li><a href="`235a221cf4`"><code>235a221</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/actions/dependency-review-action/issues/324">#324</a> from actions/readme-update</li> <li><a href="`9b3a7f61dd`"><code>9b3a7f6</code></a> Minor README tweaks.</li> <li><a href="`a4761312ac`"><code>a476131</code></a> Add <code>pull_request</code> to the list of events that don't need refs.</li> <li><a href="`28c7c8c314`"><code>28c7c8c</code></a> Set the correct default for license-check in README.</li> <li><a href="`9da0fd4871`"><code>9da0fd4</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/actions/dependency-review-action/issues/325">#325</a> from actions/dependabot/npm_and_yarn/eslint-plugin-je...</li> <li><a href="`fe45fd6645`"><code>fe45fd6</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/actions/dependency-review-action/issues/326">#326</a> from actions/dependabot/npm_and_yarn/esbuild-register...</li> <li>Additional commits viewable in <a href="https://github.com/actions/dependency-review-action/compare/v2...v3">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/dependency-review-action&package-manager=github_actions&previous-version=2&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>		2022-11-14 09:38:04 -03:00
.github	chore(deps): bump actions/dependency-review-action from 2 to 3 (#3551 )	2022-11-14 09:38:04 -03:00
cmd	fix: annotate flags so they complete better (#3444 )	2022-10-06 11:24:13 +02:00
internal	test: fix broken test	2022-11-12 17:57:02 -03:00
pkg	feat: chocolatey support (#3509 )	2022-11-11 23:52:32 -03:00
scripts	docs: ensure pip is up to date	2022-11-08 00:15:24 -03:00
www	chore: schema update	2022-11-11 23:57:03 -03:00
.editorconfig	feat: arch user repository integration (#2838 )	2022-01-20 14:59:39 -03:00
.gitattributes	docs: update with jsonschema	2021-10-26 15:15:26 -03:00
.gitignore	chore(ci): tparse (#3131 )	2022-06-11 23:25:04 -03:00
.gitleaks.toml	fix: run gitleaks and grype on prs (#3332 )	2022-08-21 15:20:31 -03:00
.golangci.yaml	feat(ci): compile with go 1.19 (#3278 )	2022-08-06 18:44:23 -03:00
.goreleaser.yaml	fix(changelog): group regexps (#3527 )	2022-11-07 09:28:52 -03:00
.grype.yaml	fix(grype): ignore unfixed vulns	2022-08-21 15:36:37 -03:00
.mailmap	chore: update mailmap	2022-10-31 16:06:50 -03:00
CONTRIBUTING.md	docs: /twitter, discord, linkedin etc	2022-11-08 00:06:24 -03:00
Dockerfile	feat(deps): bump golang from `8558ae6` to `dc4f475` (#3544 )	2022-11-11 09:42:55 -03:00
EULA.md	docs: goreleaser pro eula	2022-05-02 20:30:19 -03:00
go.mod	feat(deps): update nfpm to v2.22.0	2022-11-12 17:52:15 -03:00
go.sum	feat(deps): update nfpm to v2.22.0	2022-11-12 17:52:15 -03:00
LICENSE.md	docs: update license year	2022-02-08 14:21:36 -03:00
main_test.go	test: fix version test	2021-12-20 21:34:34 -03:00
main.go	feat(deps): update caarlos0/log	2022-08-08 09:26:09 -03:00
README.md	docs: gif (#3504 )	2022-10-27 15:06:26 -03:00
SECURITY.md	docs: update email addresses	2022-05-18 12:12:42 -03:00
Taskfile.yml	docs: added /security	2022-11-08 00:05:36 -03:00
USERS.md	docs: adds openfeature to user list	2022-10-11 09:17:06 -03:00
vercel.json	docs: fix trailing slashes (#2529 )	2021-09-27 23:19:23 -03:00

README.md

GoReleaser Logo

GoReleaser

Deliver Go binaries as fast and easily as possible.

GoReleaser builds Go binaries for several platforms, creates a GitHub release and then pushes a Homebrew formula to a tap repository. All that wrapped in your favorite CI.

Get GoReleaser

Documentation

Documentation is hosted live at https://goreleaser.com

Community

You have questions, need support and or just want to talk about GoReleaser?

Here are ways to get in touch with the GoReleaser community:

You can find the links above and all others here.

Code of Conduct

This project adheres to the Contributor Covenant code of conduct. By participating, you are expected to uphold this code. We appreciate your contribution. Please refer to our contributing guidelines for further information.

README.md

GoReleaser

Get GoReleaser

Documentation

Community

Code of Conduct

Badges

Sponsors

Backers

Contributors

Stargazers over time