search

Darkness4 / auth-htmx

Experiment with Go + HTMX and OAuth2/OIDC + WebAuthn
https://auth-htmx.mnguyen.fr
Apache License 2.0
95 stars 4 forks source link

chore(): Update module github.com/coreos/go-oidc/v3 to v3.7.0 - autoclosed #2

Closed renovate[bot] closed 1 year ago

renovate[bot] commented 1 year ago

Mend Renovate

This PR contains the following updates:

Package Type Update Change
github.com/coreos/go-oidc/v3 require minor v3.6.0 -> v3.7.0

Release Notes

coreos/go-oidc (github.com/coreos/go-oidc/v3) ### [`v3.7.0`](https://togithub.com/coreos/go-oidc/releases/tag/v3.7.0) [Compare Source](https://togithub.com/coreos/go-oidc/compare/v3.6.0...v3.7.0) #### What's Changed - io/ioutil deprecated by [@​testwill](https://togithub.com/testwill) in [https://github.com/coreos/go-oidc/pull/380](https://togithub.com/coreos/go-oidc/pull/380) - oidc: use %w verb for wrapping errors by [@​rliebz](https://togithub.com/rliebz) in [https://github.com/coreos/go-oidc/pull/381](https://togithub.com/coreos/go-oidc/pull/381) - vulnerability: bump dependencies \[CVE-2023-44487] by [@​joshua-auchincloss](https://togithub.com/joshua-auchincloss) in [https://github.com/coreos/go-oidc/pull/393](https://togithub.com/coreos/go-oidc/pull/393) #### New Contributors - [@​testwill](https://togithub.com/testwill) made their first contribution in [https://github.com/coreos/go-oidc/pull/380](https://togithub.com/coreos/go-oidc/pull/380) - [@​rliebz](https://togithub.com/rliebz) made their first contribution in [https://github.com/coreos/go-oidc/pull/381](https://togithub.com/coreos/go-oidc/pull/381) - [@​joshua-auchincloss](https://togithub.com/joshua-auchincloss) made their first contribution in [https://github.com/coreos/go-oidc/pull/393](https://togithub.com/coreos/go-oidc/pull/393) **Full Changelog**: https://github.com/coreos/go-oidc/compare/v3.6.0...v3.7.0

Configuration

📅 Schedule: Branch creation - "before 4am" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.

guardrails[bot] commented 1 year ago

:warning: We detected 2 security issues in this pull request:

Vulnerable Libraries (2)
Severity | Details :-: | :-- High | [pkg:golang/github.com/coreos/go-oidc/v3@v3.7.0](https://github.com/Darkness4/auth-htmx/blob/1c1d600adf37a1241442441009c88a00816bb4d1/go.mod#L6) upgrade to: *> v3.7.0* High | [pkg:golang/golang.org/x/oauth2@v0.13.0](https://github.com/Darkness4/auth-htmx/blob/1c1d600adf37a1241442441009c88a00816bb4d1/go.mod#L17) upgrade to: *> v0.13.0* More info on how to fix Vulnerable Libraries in [Go](https://docs.guardrails.io/docs/en/vulnerabilities/go/using_vulnerable_libraries.html?utm_source=ghpr).

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.