Bump golangci/golangci-lint-action from 4.0.0 to 5.0.0

[dependabot[bot]]

Bumps golangci/golangci-lint-action from 4.0.0 to 5.0.0.

Release notes

Sourced from golangci/golangci-lint-action's releases.

v5.0.0

What's Changed

Changes

• feat: add support for pull_request_target and only-new-issues by @​kovetskiy in golangci/golangci-lint-action#506
• feat: add option to not save cache by @​navijation in golangci/golangci-lint-action#851
• feat: remove Go cache management by @​ldez in golangci/golangci-lint-action#1024

New Contributors

• @​kovetskiy made their first contribution in golangci/golangci-lint-action#506
• @​navijation made their first contribution in golangci/golangci-lint-action#851

Full Changelog: https://github.com/golangci/golangci-lint-action/compare/v4.0.1...v5.0.0

v4.0.1

What's Changed

Documentation

• docs: update the version of the action used in the README example by @​178inaba in golangci/golangci-lint-action#977

Dependencies

• build(deps): bump @​types/semver from 7.5.6 to 7.5.7 by @​dependabot in golangci/golangci-lint-action#969
• build(deps-dev): bump @​typescript-eslint/parser from 6.20.0 to 6.21.0 by @​dependabot in golangci/golangci-lint-action#970
• build(deps-dev): bump eslint-plugin-simple-import-sort from 10.0.0 to 12.0.0 by @​dependabot in golangci/golangci-lint-action#971
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 6.20.0 to 6.21.0 by @​dependabot in golangci/golangci-lint-action#973
• build(deps): bump @​types/node from 20.11.16 to 20.11.17 by @​dependabot in golangci/golangci-lint-action#972
• build(deps): bump @​types/node from 20.11.17 to 20.11.19 by @​dependabot in golangci/golangci-lint-action#979
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 6.21.0 to 7.0.0 by @​dependabot in golangci/golangci-lint-action#980
• build(deps): bump undici from 5.26.3 to 5.28.3 by @​dependabot in golangci/golangci-lint-action#976
• build(deps): bump @​types/node from 20.11.19 to 20.11.20 by @​dependabot in golangci/golangci-lint-action#985
• build(deps): bump @​types/semver from 7.5.7 to 7.5.8 by @​dependabot in golangci/golangci-lint-action#986
• build(deps-dev): bump eslint from 8.56.0 to 8.57.0 by @​dependabot in golangci/golangci-lint-action#987
• build(deps): bump tmp from 0.2.1 to 0.2.3 by @​dependabot in golangci/golangci-lint-action#989
• build(deps-dev): bump @​typescript-eslint/parser from 6.21.0 to 7.1.0 by @​dependabot in golangci/golangci-lint-action#988
• build(deps): bump @​types/node from 20.11.20 to 20.11.24 by @​dependabot in golangci/golangci-lint-action#990
• build(deps-dev): bump @​typescript-eslint/parser from 7.1.0 to 7.1.1 by @​dependabot in golangci/golangci-lint-action#991
• build(deps): bump @​types/node from 20.11.24 to 20.11.25 by @​dependabot in golangci/golangci-lint-action#992
• build(deps-dev): bump typescript from 5.3.3 to 5.4.2 by @​dependabot in golangci/golangci-lint-action#993
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.1.0 to 7.1.1 by @​dependabot in golangci/golangci-lint-action#994
• build(deps): bump @​actions/http-client from 2.2.0 to 2.2.1 by @​dependabot in golangci/golangci-lint-action#995
• build(deps): bump google.golang.org/protobuf from 1.28.0 to 1.33.0 in /sample-go-mod by @​dependabot in golangci/golangci-lint-action#997
• build(deps-dev): bump @​typescript-eslint/parser from 7.1.1 to 7.2.0 by @​dependabot in golangci/golangci-lint-action#998
• build(deps): bump @​types/node from 20.11.25 to 20.11.28 by @​dependabot in golangci/golangci-lint-action#1000
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.1.1 to 7.2.0 by @​dependabot in golangci/golangci-lint-action#999
• build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.2.0 to 7.3.1 by @​dependabot in golangci/golangci-lint-action#1003
• build(deps): bump @​types/node from 20.11.28 to 20.11.30 by @​dependabot in golangci/golangci-lint-action#1004
• build(deps-dev): bump typescript from 5.4.2 to 5.4.3 by @​dependabot in golangci/golangci-lint-action#1005
• build(deps-dev): bump @​typescript-eslint/parser from 7.2.0 to 7.3.1 by @​dependabot in golangci/golangci-lint-action#1006
• build(deps): bump @​types/node from 20.11.30 to 20.12.2 by @​dependabot in golangci/golangci-lint-action#1007

... (truncated)

Commits

• 82d40c2 feat: remove Go cache management (#1024)
• c683728 feat: add option to not save cache (#851)
• bf6479d feat: add support for pull_request_target and only-new-issues (#506)
• d6238b0 build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.6.0 to 7.7.0 (#...
• 847b9ef build(deps-dev): bump @​typescript-eslint/parser from 7.5.0 to 7.7.0 (#1022)
• 019c5ec build(deps-dev): bump eslint-plugin-simple-import-sort from 12.0.0 to 12.1.0 ...
• 3dea681 build(deps-dev): bump @​typescript-eslint/eslint-plugin from 7.5.0 to 7.6.0 (#...
• 155e5eb build(deps-dev): bump typescript from 5.4.4 to 5.4.5 (#1017)
• 1411782 build(deps): bump @​types/node from 20.12.5 to 20.12.7 (#1016)
• e3c1789 build(deps-dev): bump @​typescript-eslint/parser from 7.4.0 to 7.5.0 (#1014)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
actions/golangci/golangci-lint-action	82d40c283aeb1f2b6595839195e95c2d6a49081b	:green_circle: 5.9	Details Check Score Reason Code-Review :green_circle: 4 Found 2/5 approved changesets -- score normalized to 4 Maintained :green_circle: 10 30 commit(s) and 8 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases :warning: -1 no releases found Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :green_circle: 10 SAST tool is run on all commits Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
actions/golangci/golangci-lint-action	3cfe3a4abbb849e10058ce4af15d205b6da42804	:green_circle: 5.9	Details Check Score Reason Code-Review :green_circle: 4 Found 2/5 approved changesets -- score normalized to 4 Maintained :green_circle: 10 30 commit(s) and 8 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases :warning: -1 no releases found Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :green_circle: 10 SAST tool is run on all commits Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected

Scanned Manifest Files

.github/workflows/test.yml

• golangci/golangci-lint-action@82d40c283aeb1f2b6595839195e95c2d6a49081b
• golangci/golangci-lint-action@3cfe3a4abbb849e10058ce4af15d205b6da42804

[codeclimate[bot]]

Code Climate has analyzed commit 3f3d9f83 and detected 0 issues on this pull request.

View more on Code Climate.

[github-actions[bot]]

Test Results

  4 files  ±0   20 suites  ±0   1s :stopwatch: ±0s  64 tests ±0   64 :white_check_mark: ±0  0 :zzz: ±0  0 :x: ±0  256 runs  ±0  256 :white_check_mark: ±0  0 :zzz: ±0  0 :x: ±0 

Results for commit 3f3d9f83. ± Comparison against base commit f8424353.