Scalingo / terraform-provider-scalingo

Terraform provider to provision Scalingo applications and databases
Mozilla Public License 2.0
10 stars 3 forks source link

chore(deps): bump the dependencies group with 9 updates #199

Closed dependabot[bot] closed 7 months ago

dependabot[bot] commented 8 months ago

Bumps the dependencies group with 9 updates:

Package From To
github.com/Scalingo/go-scalingo/v6 6.7.5 6.7.7
github.com/hashicorp/terraform-plugin-sdk/v2 2.32.0 2.33.0
github.com/Scalingo/go-utils/errors/v2 2.3.0 2.4.0
github.com/hashicorp/hcl/v2 2.19.1 2.20.0
github.com/hashicorp/terraform-plugin-go 0.21.0 0.22.0
github.com/zclconf/go-cty 1.14.2 1.14.3
golang.org/x/net 0.20.0 0.21.0
golang.org/x/sys 0.16.0 0.17.0
google.golang.org/grpc 1.61.0 1.61.1

Updates github.com/Scalingo/go-scalingo/v6 from 6.7.5 to 6.7.7

Release notes

Sourced from github.com/Scalingo/go-scalingo/v6's releases.

v6.7.7

What's Changed

Full Changelog: https://github.com/Scalingo/go-scalingo/compare/v6.7.6...v6.7.7

v6.7.6

What's Changed

Full Changelog: https://github.com/Scalingo/go-scalingo/compare/v6.7.5...v6.7.6

Changelog

Sourced from github.com/Scalingo/go-scalingo/v6's changelog.

6.7.7

  • feat(databases): add databases user update

6.7.6

  • fix(errors): IsOTPRequired detects 'OTP Required' API errors
Commits
  • 747659e Merge pull request #376 from Scalingo/release/6.7.7
  • 11c9940 Bump v6.7.7
  • c8f2b1e Merge pull request #373 from Scalingo/fix/cli/642/database_user_update
  • 6e32bbe style(http): fix typo
  • c2015d2 feat(database): add database user password update route
  • 07661a2 Merge pull request #374 from Scalingo/release/6.7.6
  • 951d4a8 Bump v6.7.6
  • f7f2be8 Merge pull request #371fix/cli#1029
  • 94a6965 test(errors): add spec for IsOTPRequired
  • 48f9057 fix(http): invalid return on IsOtpError
  • Additional commits viewable in compare view


Updates github.com/hashicorp/terraform-plugin-sdk/v2 from 2.32.0 to 2.33.0

Release notes

Sourced from github.com/hashicorp/terraform-plugin-sdk/v2's releases.

v2.33.0

NOTES:

  • helper/schema: While this Go module will not receive support for provider defined functions, the provider server is updated to handle the new operation, which will be required to prevent errors when updating terraform-plugin-framework or terraform-plugin-mux in the future (#1316)
Changelog

Sourced from github.com/hashicorp/terraform-plugin-sdk/v2's changelog.

2.33.0 (February 23, 2024)

NOTES:

  • helper/schema: While this Go module will not receive support for provider defined functions, the provider server is updated to handle the new operation, which will be required to prevent errors when updating terraform-plugin-framework or terraform-plugin-mux in the future (#1316)
Commits
  • 71cadbe Update changelog
  • b3a5571 Update meta package SDKVersion
  • 70fb6b9 all: Modify CallFunction implementations (#1316) (#1316)
  • 34d8a9e Result of tsccr-helper -log-level=info gha update -latest . (#1313)
  • 43cfd32 build(deps): Bump github.com/hashicorp/hc-install from 0.6.2 to 0.6.3 (#1312)
  • fee8c9c build(deps): Bump golang.org/x/crypto from 0.18.0 to 0.19.0 (#1310)
  • 19a0da0 Result of tsccr-helper -log-level=info gha update -latest . (#1309)
  • 3e7e2e0 Added GHA dependabot config for managing hashicorp actions (#1308)
  • See full diff in compare view


Updates github.com/Scalingo/go-utils/errors/v2 from 2.3.0 to 2.4.0

Commits
  • 16c9a45 Merge pull request #839 from Scalingo/release/errors/2.4.0
  • 97b9c83 [errors] Bump v2.4.0
  • 812847e Merge pull request #838 from Scalingo/fix/errors/deprecate_errgo
  • 50ee664 fix(errors): do not use errgo in New methods
  • 49be268 docs(errors): deprecate use of errgo in ErrCtx
  • 6a50320 Merge pull request #837 from Scalingo/dependabot/go_modules/nsqproducer/depen...
  • 30ca3ed build(deps): bump the dependencies group in /nsqproducer with 1 update
  • f6d9ddb Merge pull request #836 from Scalingo/dependabot/go_modules/mongo/dependencie...
  • dd12d74 build(deps): bump the dependencies group in /mongo with 1 update
  • dc2acd5 Merge pull request #835 from Scalingo/dependabot/go_modules/concurrency/depen...
  • Additional commits viewable in compare view


Updates github.com/hashicorp/hcl/v2 from 2.19.1 to 2.20.0

Release notes

Sourced from github.com/hashicorp/hcl/v2's releases.

v2.20.0

What's Changed

New Contributors

Full Changelog: https://github.com/hashicorp/hcl/compare/v2.19.1...v2.20.0

Changelog

Sourced from github.com/hashicorp/hcl/v2's changelog.

v2.20.0 (February 29, 2024)

Enhancements

  • Support for namespaced functions (#639)

Bugs Fixed

  • ext/dynblock: if iterator is invalid return this error instead of consequential errors (#656)

v2.19.0 (October 16, 2023)

Enhancements

  • ext/dynblock: dynblock.Expand now supports an optional hook for calling applications to check and potentially veto (by returning error diagnostics) particular for_each values. The behavior is unchanged for callers that don't set the new option. (#634)

Bugs Fixed

  • hclsyntax: Further fixes for treatment of "marked" values in the conditional expression, and better tracking of refined values into the conditional expression results, building on the fixes from v2.18.1. (#633)

v2.18.1 (October 5, 2023)

Bugs Fixed

  • hclsyntax: Conditional expressions will no longer panic when one or both of their results are "marked", as is the case for situations like how HashiCorp Terraform tracks its concept of "sensitive values". (#630)

v2.18.0 (August 30, 2023)

Enhancements

  • HCL now uses the tables from Unicode 15 when performing string normalization and character segmentation. HCL was previously using the Unicode 13 tables.

    For calling applications where consistent Unicode support is important, consider also upgrading to Go 1.21 at the same time as adopting HCL v2.18.0 so that the standard library unicode tables (used for case folding, etc) will also be from Unicode 15.

v2.17.1 (August 30, 2023)

Enhancements

  • hclsyntax: When evaluating string templates that have a long known constant prefix, HCL will truncate the known prefix to avoid creating excessively-large refinements. String prefix refinements are intended primarily for relatively-short fixed prefixes, such as https:// at the start of a URL known to use that scheme. (#617)
  • ext/tryfunc: The "try" and "can" functions now handle unknown values slightly more precisely, and so can return known values in more situations when given expressions referring to unknown symbols. (#622)

Bugs Fixed

  • ext/typeexpr: Will no longer try to refine unknown values of unknown type when dealing with a user-specified type constraint containing the any keyword, avoiding an incorrect panic at runtime. (#625)
  • ext/typeexpr: Now correctly handles attempts to declare the same object type attribute multiple times by returning an error. Previously this could potentially panic by creating an incoherent internal state. (#624)

v2.17.0 (May 31, 2023)

Enhancements

... (truncated)

Commits
  • 57f8bbf update CHANGELOG.md for v2.20
  • 21a05d5 Merge pull request #663 from hashicorp/ci-workflow-updates
  • 1f6a0f7 Use make targets in CI
  • c152f81 Merge pull request #661 from hashicorp/add-makefile
  • 76bf60b Merge pull request #659 from hashicorp/fix-license-headers
  • bd58136 Merge pull request #660 from hashicorp/ci-test-on-macos
  • 3cf7572 Add make targets for common checks + fixes
  • 63380ba Update CHANGELOG.md
  • 6055ebc Update CHANGELOG.md
  • b079b8b Update changelog
  • Additional commits viewable in compare view


Updates github.com/hashicorp/terraform-plugin-go from 0.21.0 to 0.22.0

Release notes

Sourced from github.com/hashicorp/terraform-plugin-go's releases.

v0.22.0

BREAKING CHANGES:

  • tfprotov5+tfprotov6: Modified the response returned from the CallFunction RPC, replacing diagnostics with function error (#380)

NOTES:

  • all: This Go module has been updated to Go 1.21 per the Go support policy. It is recommended to review the Go 1.21 release notes before upgrading. Any consumers building on earlier Go versions may experience errors. (#381)
  • all: If using terraform-plugin-framework, terraform-plugin-mux, or terraform-plugin-sdk, only upgrade this Go module when upgrading those Go modules to terraform-plugin-framework@v1.6.0, terraform-plugin-mux@v0.15.0, and terraform-plugin-sdk/v2@v2.33.0, or greater, respectively (#380)
Changelog

Sourced from github.com/hashicorp/terraform-plugin-go's changelog.

0.22.0 (February 22, 2024)

BREAKING CHANGES:

  • tfprotov5+tfprotov6: Modified the response returned from the CallFunction RPC, replacing diagnostics with function error (#380)

NOTES:

  • all: This Go module has been updated to Go 1.21 per the Go support policy. It is recommended to review the Go 1.21 release notes before upgrading. Any consumers building on earlier Go versions may experience errors. (#381)
  • all: If using terraform-plugin-framework, terraform-plugin-mux, or terraform-plugin-sdk, only upgrade this Go module when upgrading those Go modules to terraform-plugin-framework@v1.6.0, terraform-plugin-mux@v0.15.0, and terraform-plugin-sdk/v2@v2.33.0, or greater, respectively (#380)
Commits
  • 01b86e9 Update changelog
  • d39a78e all: Update Go Module to Go 1.21 (#381)
  • 90a82fe tfprotov5+tfprotov6: Replace usage of diagnostics in CallFunction RPC with fu...
  • 0624268 Result of tsccr-helper -log-level=info gha update -latest . (#379)
  • 72a8cdf build(deps): Bump google.golang.org/grpc from 1.61.0 to 1.61.1 (#378)
  • de5d97e Result of tsccr-helper -log-level=info gha update -latest . (#377)
  • 266801d Result of tsccr-helper -log-level=info gha update -latest . (#376)
  • a3f1922 build(deps): Bump hashicorp/setup-terraform from 2.0.3 to 3.0.0 (#375)
  • 950148e Added GHA dependabot config for managing hashicorp actions (#374)
  • 8aaa80a Result of tsccr-helper -log-level=info gha update -latest . (#373)
  • See full diff in compare view


Updates github.com/zclconf/go-cty from 1.14.2 to 1.14.3

Changelog

Sourced from github.com/zclconf/go-cty's changelog.

1.14.3 (February 29, 2024)

  • msgpack: Fixed edge-case bug that could cause loss of floating point precision when round-tripping due to incorrectly using a MessagePack integer to represent a large non-integral number. #176
  • cty: Fixed some false-negative numeric equality test results by comparing numbers as integers when possible. #176
Commits


Updates golang.org/x/net from 0.20.0 to 0.21.0

Commits
  • 73d21fd go.mod: update golang.org/x dependencies
  • 643fd16 html: fix SOLIDUS '/' handling in attribute parsing
  • 73e4b50 dns/dnsmessage: allow name compression for SRV resource parsing
  • b2208d0 internal/quic/qlog: fix typo
  • 0d0b98c http2: avoid goroutine starvation in TestServer_Push_RejectAfterGoAway
  • 07e05fd http2: remove suspicious uint32->v conversion in frame code
  • 26b646e quic: avoid deadlock in Endpoint.Close
  • See full diff in compare view


Updates golang.org/x/sys from 0.16.0 to 0.17.0

Commits
  • 914b96c windows: support ill-formed UTF-16 in UTF16PtrToString
  • 511ec84 Revert "windows: support nil done parameter in ReadFile and WriteFile"
  • 628365d windows: support nil done parameter in ReadFile and WriteFile
  • bef1bd8 unix: move mksyscall regexp to package level variables
  • 5710a32 unix/linux: update Linux kernel to 6.7
  • b3ce6a3 windows: build env_windows_test.go only go Go 1.21 and above
  • c3fa2b8 windows: fix parsing of non-ASCII entries in token.Environ
  • f69d32a unix: in TestDirent, make as many ReadDirent calls as are needed
  • 0d9df52 unix: add more SECCOMP constants
  • See full diff in compare view


Updates google.golang.org/grpc from 1.61.0 to 1.61.1

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.61.1

Bug Fixes

  • server: wait to close connection until incoming socket is drained (with timeout) to prevent data loss on client-side (#6977)
Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
dependabot[bot] commented 8 months ago

Dependabot tried to add @johnsudaar as a reviewer to this PR, but received the following error from GitHub:

POST https://api.github.com/repos/Scalingo/terraform-provider-scalingo/pulls/199/requested_reviewers: 422 - Reviews may only be requested from collaborators. One or more of the users or teams you specified is not a collaborator of the Scalingo/terraform-provider-scalingo repository. // See: https://docs.github.com/rest/pulls/review-requests#request-reviewers-for-a-pull-request
dependabot[bot] commented 7 months ago

Looks like these dependencies are updatable in another way, so this is no longer needed.