Bump github.com/go-git/go-git/v5 from 5.4.2 to 5.5.0

dependabot[bot] commented 1 year ago

Bumps github.com/go-git/go-git/v5 from 5.4.2 to 5.5.0.

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.5.0

What's Changed

*: add collision resistent SHA1 implementation by @pjbgf in go-git/go-git#618

*: replace go-homedir with os.UserHomeDir by @mvdan in go-git/go-git#535

Remote: add RemoteURL to {Fetch,Pull,Push}Options by @noerw in go-git/go-git#375

Remote: Push, add support to push commits per hashes by @tjamet in go-git/go-git#325

Remote: Push, add ForceWithLease Push Option by @john-cai in go-git/go-git#404

Remote: PushOptions add push-options by @S-Bohn in go-git/go-git#399

Remote: Push, add atomic to push options by @john-cai in go-git/go-git#406

Remote: add FollowTags option for pushes by @john-cai in go-git/go-git#385

Worktree: use syscall.Timespec.Unix by @tklauser in go-git/go-git#437

Worktree: Checkout, simplified sparse checkout by @john-cai in go-git/go-git#410

Repository: don't crash accessing invalid pathinfo by @muesli in go-git/go-git#443

storage: filesystem, switch from os.SEEK_* to io.Seek* by @abhinav in go-git/go-git#421

config: add branch description support by @ninedraft in go-git/go-git#409

revision: fix endless looping in revision parser by @michenriksen in go-git/go-git#475

pumbling: optimise zlib reader and consolidate sync.Pools by @pjbgf in go-git/go-git#608

pumbling: parse optimisations by @pjbgf in go-git/go-git#602

plumbing: object, rename calculation uses too much memory by @jfontan in go-git/go-git#503

plumbing: protocol/pakp and server, include the contents of GO_GIT_USER_AGENT_EXTRA. Fixes #529 by @stewing in go-git/go-git#531

plumbing: protocol/pakp, avoid duplicate encoding when overriding a Capability value. by @tylerchr in go-git/go-git#521

plumbing: protocol/pakp, update agent by @caarlos0 in go-git/go-git#453

plumbing: protocol/pakp: Actions should have type Action by @abhinav in go-git/go-git#420

plumbing: protocol/pakp: allow unsupported multi_ack capability by @pjbgf in go-git/go-git#613

plumbing: transport/ssh, auto-populate HostKeyAlgorithms. Fixes #411 by @evanelias in go-git/go-git#548

pumbling: format/packfile, resolve external reference delta by @ga-paul-t in go-git/go-git#392

plumbing: format/packfile, prevent large objects from being read into memory completely by @zeripath in go-git/go-git#330

plumbing: format/index, support v3 index by @john-cai in go-git/go-git#407

plumbing: format/gitignore, Read .git/info/exclude file too. by @enisdenjo in go-git/go-git#402

plumbing: format/gitattributes, Avoid index out of range by @To1ne in go-git/go-git#598

plumbing: format/config, Branch name with hash can be cloned. Fixes #309 by @dowy in go-git/go-git#354

go.mod: update github.com/xanzy/ssh-agent to v0.3.1 by @tklauser in go-git/go-git#403

go.mod: update dependencies to remove supply chain CVEs by @pjbgf in go-git/go-git#620

examples: added "tag find if head is tagged" by @snebel29 in go-git/go-git#374

examples: remote fix typo by @nep-0 in go-git/go-git#408

Full Changelog: https://github.com/go-git/go-git/compare/v5.4.2...v5.5.0

Commits

3e07c50 Merge pull request #620 from fluxcd/update-deps
f2d68c4 build: bump git workflow to Go 1.19
6629ba6 Update dependencies
b80af01 Update test.yml
5132549 Merge pull request #622 from go-git/test-1.19
67fb0c0 .github: update go version
0966a00 Merge pull request #618 from fluxcd/collision_detection
7c37589 sha1: Add collision resistent implementation
c798d4a Merge pull request #503 from jfontan/fix/similarity-matrix-too-big
acd6c65 Merge pull request #354 from dowy/issue/#309-clone-branch-with-hash-in-name
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)