Bump the go-deps group with 13 updates#1691
Open
dependabot[bot] wants to merge 1 commit into
Open
Conversation
Bumps the go-deps group with 13 updates: | Package | From | To | | --- | --- | --- | | [github.com/cyphar/filepath-securejoin](https://github.com/cyphar/filepath-securejoin) | `0.6.1` | `0.7.0` | | [github.com/fluxcd/cli-utils](https://github.com/fluxcd/cli-utils) | `1.2.1` | `1.2.2` | | [github.com/fluxcd/pkg/apis/event](https://github.com/fluxcd/pkg) | `0.27.0` | `0.28.0` | | [github.com/fluxcd/pkg/apis/kustomize](https://github.com/fluxcd/pkg) | `1.19.0` | `1.20.0` | | [github.com/fluxcd/pkg/apis/meta](https://github.com/fluxcd/pkg) | `1.30.0` | `1.31.0` | | [github.com/fluxcd/pkg/auth](https://github.com/fluxcd/pkg) | `0.54.0` | `0.55.0` | | [github.com/fluxcd/pkg/kustomize](https://github.com/fluxcd/pkg) | `1.35.0` | `1.36.0` | | [github.com/fluxcd/pkg/runtime](https://github.com/fluxcd/pkg) | `0.110.0` | `0.111.0` | | [github.com/fluxcd/pkg/ssa](https://github.com/fluxcd/pkg) | `0.76.0` | `0.77.0` | | [github.com/getsops/sops/v3](https://github.com/getsops/sops) | `3.13.1` | `3.13.2` | | [github.com/google/cel-go](https://github.com/google/cel-go) | `0.26.1` | `0.28.1` | | [github.com/onsi/gomega](https://github.com/onsi/gomega) | `1.41.0` | `1.42.1` | | [golang.org/x/net](https://github.com/golang/net) | `0.55.0` | `0.56.0` | Updates `github.com/cyphar/filepath-securejoin` from 0.6.1 to 0.7.0 - [Release notes](https://github.com/cyphar/filepath-securejoin/releases) - [Changelog](https://github.com/cyphar/filepath-securejoin/blob/main/CHANGELOG.md) - [Commits](cyphar/filepath-securejoin@v0.6.1...v0.7.0) Updates `github.com/fluxcd/cli-utils` from 1.2.1 to 1.2.2 - [Release notes](https://github.com/fluxcd/cli-utils/releases) - [Commits](fluxcd/cli-utils@v1.2.1...v1.2.2) Updates `github.com/fluxcd/pkg/apis/event` from 0.27.0 to 0.28.0 - [Commits](fluxcd/pkg@git/v0.27.0...git/v0.28.0) Updates `github.com/fluxcd/pkg/apis/kustomize` from 1.19.0 to 1.20.0 - [Commits](fluxcd/pkg@apis/meta/v1.19.0...apis/meta/v1.20.0) Updates `github.com/fluxcd/pkg/apis/meta` from 1.30.0 to 1.31.0 - [Commits](fluxcd/pkg@apis/meta/v1.30.0...apis/meta/v1.31.0) Updates `github.com/fluxcd/pkg/auth` from 0.54.0 to 0.55.0 - [Commits](fluxcd/pkg@oci/v0.54.0...oci/v0.55.0) Updates `github.com/fluxcd/pkg/kustomize` from 1.35.0 to 1.36.0 - [Commits](fluxcd/pkg@kustomize/v1.35.0...kustomize/v1.36.0) Updates `github.com/fluxcd/pkg/runtime` from 0.110.0 to 0.111.0 - [Commits](fluxcd/pkg@runtime/v0.110.0...runtime/v0.111.0) Updates `github.com/fluxcd/pkg/ssa` from 0.76.0 to 0.77.0 - [Commits](fluxcd/pkg@ssa/v0.76.0...ssa/v0.77.0) Updates `github.com/getsops/sops/v3` from 3.13.1 to 3.13.2 - [Release notes](https://github.com/getsops/sops/releases) - [Changelog](https://github.com/getsops/sops/blob/main/CHANGELOG.md) - [Commits](getsops/sops@v3.13.1...v3.13.2) Updates `github.com/google/cel-go` from 0.26.1 to 0.28.1 - [Release notes](https://github.com/google/cel-go/releases) - [Commits](cel-expr/cel-go@v0.26.1...v0.28.1) Updates `github.com/onsi/gomega` from 1.41.0 to 1.42.1 - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](onsi/gomega@v1.41.0...v1.42.1) Updates `golang.org/x/net` from 0.55.0 to 0.56.0 - [Commits](golang/net@v0.55.0...v0.56.0) --- updated-dependencies: - dependency-name: github.com/cyphar/filepath-securejoin dependency-version: 0.7.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps - dependency-name: github.com/fluxcd/cli-utils dependency-version: 1.2.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go-deps - dependency-name: github.com/fluxcd/pkg/apis/event dependency-version: 0.28.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps - dependency-name: github.com/fluxcd/pkg/apis/kustomize dependency-version: 1.20.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps - dependency-name: github.com/fluxcd/pkg/apis/meta dependency-version: 1.31.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps - dependency-name: github.com/fluxcd/pkg/auth dependency-version: 0.55.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps - dependency-name: github.com/fluxcd/pkg/kustomize dependency-version: 1.36.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps - dependency-name: github.com/fluxcd/pkg/runtime dependency-version: 0.111.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps - dependency-name: github.com/fluxcd/pkg/ssa dependency-version: 0.77.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps - dependency-name: github.com/getsops/sops/v3 dependency-version: 3.13.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go-deps - dependency-name: github.com/google/cel-go dependency-version: 0.28.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps - dependency-name: github.com/onsi/gomega dependency-version: 1.42.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps - dependency-name: golang.org/x/net dependency-version: 0.56.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-deps ... Signed-off-by: dependabot[bot] <support@github.com>
|
I'd like the sops update, due to getsops/sops#2188 which makes decryption of my |
Member
|
@agravgaard Cool we can upgrade to the latest patch release of SOPS v3.13 in a separate PR and backport it to kustomize-controller v1.9, we are going to release a patch this Monday. This PR is upgrading more things that we won't ship in a patch. Can you please open a separate PR only with SOPS v3.13.2? |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.

Bumps the go-deps group with 13 updates:
0.6.10.7.01.2.11.2.20.27.00.28.01.19.01.20.01.30.01.31.00.54.00.55.01.35.01.36.00.110.00.111.00.76.00.77.03.13.13.13.20.26.10.28.11.41.01.42.10.55.00.56.0Updates
github.com/cyphar/filepath-securejoinfrom 0.6.1 to 0.7.0Changelog
Sourced from github.com/cyphar/filepath-securejoin's changelog.
Commits
8096a95VERSION: release v0.7.01324ccbmerge #101 into cyphar/filepath-securejoin:maindd8f0bbdeps: bump to cyphar.com/go-pathrs@v0.2.5c9a7725gha: bump golangci-lint to v2.122e968bdMerge pull request #91 from cyphar/dependabot/github_actions/actions/download...2879148Merge pull request #90 from cyphar/dependabot/github_actions/actions/upload-a...07b805bbuild(deps): bump actions/download-artifact from 6 to 78507844build(deps): bump actions/upload-artifact from 5 to 6daef0cfMerge pull request #89 from cyphar/dependabot/github_actions/actions/checkout-695f8ea4build(deps): bump actions/checkout from 5 to 6Updates
github.com/fluxcd/cli-utilsfrom 1.2.1 to 1.2.2Release notes
Sourced from github.com/fluxcd/cli-utils's releases.
Commits
5620149Merge pull request #37 from fluxcd/upgrade-k8s-36.21e5951fUpgrade kubernetes to 1.36.294614cdMerge pull request #36 from fluxcd/upgrade-depse7fc06fUpgrade golang.org/x/net to v0.55.0Updates
github.com/fluxcd/pkg/apis/eventfrom 0.27.0 to 0.28.0Commits
00782edMerge pull request #917 from fluxcd/test-auth-providers3976c50[RFC-0010] Add tests for auth providers182841aMerge pull request #916 from fluxcd/cache-op-label1e41450Introduce operation label for cache event metricaa3cde9Merge pull request #909 from fluxcd/auth-azure9e0e8bc[RFC-0010] Add azure auth library7eae091Merge pull request #908 from fluxcd/auth-gcp9f68942Merge pull request #907 from fluxcd/auth-awsbb7cb58Merge pull request #906 from fluxcd/auth-core45fbfee[RFC-0010] Add gcp auth libraryUpdates
github.com/fluxcd/pkg/apis/kustomizefrom 1.19.0 to 1.20.0Commits
a5e02ceMerge pull request #1013 from fluxcd/meta-history71c0a08Prepare release4aaf176meta: AddHistoryAPI for tracking reconcile runs in statusUpdates
github.com/fluxcd/pkg/apis/metafrom 1.30.0 to 1.31.0Commits
b98e2b0Merge pull request #1251 from fluxcd/release-main2dfcb7cPrepare for releasedd6b016Merge pull request #1253 from fluxcd/upgrade-k8s-36.22d00796Upgrade kubernetes to 1.36.2827f6c3Merge pull request #1249 from fluxcd/upgrade-go-git-providersbe6d462Upgrade go-git-providers and go-github023a357Merge pull request #1248 from fluxcd/label-2.97e8856dAdd backport label for Flux 2.9ae10469Merge pull request #1246 from fluxcd/ks-always-subst2cd36cbkustomize: add tests for empty vars with strict sub and omitted withoutUpdates
github.com/fluxcd/pkg/authfrom 0.54.0 to 0.55.0Commits
6ce1a83Merge pull request #1019 from fluxcd/update-otel828f74fPrepare releasee7a2b15Update otel to v1.38.0d2f54ddMerge pull request #1018 from fluxcd/meta-artifact9adb480apis: AddArtifacttype tometapackage7201e2cMerge pull request #1017 from fluxcd/kustomize-ignore-components929f4b4kustomize: AddignoreMissingComponentsoptiona5e02ceMerge pull request #1013 from fluxcd/meta-history71c0a08Prepare release4aaf176meta: AddHistoryAPI for tracking reconcile runs in statusUpdates
github.com/fluxcd/pkg/kustomizefrom 1.35.0 to 1.36.0Commits
b98e2b0Merge pull request #1251 from fluxcd/release-main2dfcb7cPrepare for releasedd6b016Merge pull request #1253 from fluxcd/upgrade-k8s-36.22d00796Upgrade kubernetes to 1.36.2827f6c3Merge pull request #1249 from fluxcd/upgrade-go-git-providersbe6d462Upgrade go-git-providers and go-github023a357Merge pull request #1248 from fluxcd/label-2.97e8856dAdd backport label for Flux 2.9Updates
github.com/fluxcd/pkg/runtimefrom 0.110.0 to 0.111.0Commits
b98e2b0Merge pull request #1251 from fluxcd/release-main2dfcb7cPrepare for releasedd6b016Merge pull request #1253 from fluxcd/upgrade-k8s-36.22d00796Upgrade kubernetes to 1.36.2827f6c3Merge pull request #1249 from fluxcd/upgrade-go-git-providersbe6d462Upgrade go-git-providers and go-github023a357Merge pull request #1248 from fluxcd/label-2.97e8856dAdd backport label for Flux 2.9ae10469Merge pull request #1246 from fluxcd/ks-always-subst2cd36cbkustomize: add tests for empty vars with strict sub and omitted withoutUpdates
github.com/fluxcd/pkg/ssafrom 0.76.0 to 0.77.0Commits
b98e2b0Merge pull request #1251 from fluxcd/release-main2dfcb7cPrepare for releasedd6b016Merge pull request #1253 from fluxcd/upgrade-k8s-36.22d00796Upgrade kubernetes to 1.36.2827f6c3Merge pull request #1249 from fluxcd/upgrade-go-git-providersbe6d462Upgrade go-git-providers and go-github023a357Merge pull request #1248 from fluxcd/label-2.97e8856dAdd backport label for Flux 2.9ae10469Merge pull request #1246 from fluxcd/ks-always-subst2cd36cbkustomize: add tests for empty vars with strict sub and omitted withoutUpdates
github.com/getsops/sops/v3from 3.13.1 to 3.13.2Release notes
Sourced from github.com/getsops/sops/v3's releases.
... (truncated)
Changelog
Sourced from github.com/getsops/sops/v3's changelog.
Commits
15e36f9Merge pull request #2232 from felixfontein/release-3.13.20d49dffAdd changelog for 3.13.2.72d9f5aBump version to 3.13.2.8a62945Merge pull request #2236 from getsops/dependabot/github_actions/ci-35246068e459d36c6build(deps): Bump the ci group with 2 updatesed14c0bMerge pull request #2233 from getsops/dependabot/go_modules/github.com/openco...ff43b27build(deps): Bump github.com/opencontainers/runc from 1.2.8 to 1.3.61c13f06Merge pull request #2231 from felixfontein/deps818f7d9Update all dependencies.bb4f688Merge pull request #2206 from felixfontein/mdl2Updates
github.com/google/cel-gofrom 0.26.1 to 0.28.1Release notes
Sourced from github.com/google/cel-go's releases.
... (truncated)
Commits
a82c68bUpdate repl type assessment for doubles (#1308)c9d7048Cost estimation and tracking for strings extension (#1307)646cdc1Use shorthand type specifiers in env yaml files (#1305)7263793Preserve operation interrupted in ContextEval error (#1303)b826162Support shorthand types in env yaml and REPL (#1301)339269bfix: deletedIntToDurationoverload (#1300)6b8f6d6fix: cap format string precision to prevent memory exhaustion (#1292)d942970Default enable identifier escaping with backticks (#1295)7114ed2Preserve runtime error node IDs from Resolve (#1290)d91350bfix: cache concatList.Size() to prevent O(N^2) evaluation time (#1291)Updates
github.com/onsi/gomegafrom 1.41.0 to 1.42.1Release notes
Sourced from github.com/onsi/gomega's releases.
Changelog
Sourced from github.com/onsi/gomega's changelog.
Commits
ced6c1cv1.42.12beb9fbv1.42.1 (full)006cd2cbump al lthe things35ca084v1.42.0d72697bv1.42.0 (full)1f95d86add a set of claude skills as a marketplace pluginUpdates
golang.org/x/netfrom 0.55.0 to 0.56.0Commits
9e7fdbfinternal/http3: fix wrong argument being given when validating header valueb686e5finternal/http3: add gzip support to transport8a34885go.mod: update golang.org/x dependencies72eaf98dns/dnsmessage: correctly validate SVCB record parameter order82e7868dns/dnsmessage: avoid panic when parsing SVCB record with truncated datab64f1fainternal/http3: add server support for "Trailer:" magic prefix2707ee2internal/http3: implement HTTP/3 clientConn methods31358ccinternal/http3: snapshot response headers at WriteHeader time8ecbaa9html: don't adjust xml:base8ae811ahtml: properly handle end script tag in fragment modeDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions