search

charmbracelet / soft-serve

The mighty, self-hostable Git server for the command linešŸ¦
MIT License
5.21k stars 132 forks source link

feat(deps): bump golang.org/x/crypto from 0.15.0 to 0.16.0 #430

Closed dependabot[bot] closed 9 months ago

dependabot[bot] commented 9 months ago

Bumps golang.org/x/crypto from 0.15.0 to 0.16.0.

Commits
  • 325b735 ssh/test: skip TestSSHCLIAuth on Windows
  • 1eadac5 go.mod: update golang.org/x dependencies
  • b2d7c26 ssh: add (*Client).DialContext method
  • 1c17e20 ssh: fix certificate authentication with OpenSSH 7.2-7.7
  • 270bf25 curve25519/internal/field/_asm: go mod tidy to fix x/sys version
  • 1cf1811 ssh: use the correct token from the client
  • a2edfb5 cryptobyte: fix ReadOptionalASN1Boolean
  • ff15cd5 ssh: eliminate some goroutine leaks in tests and examples
  • See full diff in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
codecov[bot] commented 9 months ago

Codecov Report

Attention: 3823 lines in your changes are missing coverage. Please review.

Comparison is base (050a0d1) 50.52% compared to head (f32f477) 47.77%. Report is 89 commits behind head on main.

Files Patch % Lines
pkg/web/git_lfs.go 25.15% 574 Missing and 27 partials :warning:
pkg/git/lfs.go 1.98% 297 Missing :warning:
pkg/ui/pages/repo/stash.go 0.00% 185 Missing :warning:
pkg/backend/webhooks.go 17.82% 162 Missing and 4 partials :warning:
pkg/ssh/cmd/webhooks.go 45.90% 156 Missing and 9 partials :warning:
pkg/ui/pages/repo/files.go 5.00% 152 Missing :warning:
pkg/lfs/http_client.go 5.92% 127 Missing :warning:
pkg/ui/pages/repo/refsitem.go 5.38% 123 Missing :warning:
pkg/backend/repo.go 40.59% 93 Missing and 27 partials :warning:
pkg/store/database/lfs.go 22.05% 105 Missing and 1 partial :warning:
... and 82 more
Additional details and impacted files ```diff @@ Coverage Diff @@ ## main #430 +/- ## ========================================== - Coverage 50.52% 47.77% -2.76% ========================================== Files 107 154 +47 Lines 8209 13068 +4859 ========================================== + Hits 4148 6243 +2095 - Misses 3767 6337 +2570 - Partials 294 488 +194 ```

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.