Closed dependabot[bot] closed 1 month ago
@dependabot ignore helm.sh/helm/v3 minor version
OK, I won't notify you about version 3.15.x of helm.sh/helm/v3 again, unless you unignore it.
Looks like these dependencies are updatable in another way, so this is no longer needed.
Bumps the all group in /tools with 4 updates: github.com/golangci/golangci-lint, github.com/tektoncd/chains, helm.sh/helm/v3 and sigs.k8s.io/kustomize/kustomize/v5.
Updates
github.com/golangci/golangci-lint
from 1.58.1 to 1.59.0Release notes
Sourced from github.com/golangci/golangci-lint's releases.
Changelog
Sourced from github.com/golangci/golangci-lint's changelog.
Commits
2059b18
build(deps): bump github.com/securego/gosec/v2 from 2.20.0 to 5f0084eb01a9 (#...95ca3c3
dev: fix badges495321c
dev: improve issue chooser (#4747)62c83cc
build(deps): bump github.com/BurntSushi/toml from 1.3.2 to 1.4.0 (#4746)e14ae4b
build(deps): bump github.com/hashicorp/go-version from 1.6.0 to 1.7.0 (#4745)010b4f8
chore: use global security policyb99d529
feat: allow the analysis of generated files (#4740)08deff4
feat: add warning about disabled and deprecated linters (level 2) (#4742)b9868e1
chore: add html to the JSONSchema (#4737)0cb1418
build(deps): bump github.com/go-critic/go-critic from 0.11.3 to 0.11.4 (#4738)Updates
github.com/tektoncd/chains
from 0.19.1 to 0.21.0Changelog
Sourced from github.com/tektoncd/chains's changelog.
... (truncated)
Commits
9a67b0f
PipelineRuns with v2alpha4 to process StepActions (#1118)8e9373e
Add new v2alpha4 version for TaskRuns (#1111)b1773f8
Deprecate v2alpha1 and v2alpha2 (#1122)c17cdfc
Set readOnlyRootFilesystem as true in Controller (#1121)2391a43
Configure depguard with "lax" mode (#1119)5c0d83b
Bump golang.org/x/net from 0.22.0 to 0.23.0 (#1107)fd18dd5
Make chains QPS and Burst configuration consistent (#1100)b8fb5f1
Update metrics documentation with the prefix (#1112)5986f44
Move external paramenters and resolved dependencies logic out of v2alpha3 (#1...2b5054e
Actually use golangci-lint config. (#1106)Updates
helm.sh/helm/v3
from 3.14.4 to 3.15.1Release notes
Sourced from helm.sh/helm/v3's releases.
... (truncated)
Commits
e211f2a
Fixing build issue where wrong version is usedc4e37b3
Updating to k8s 1.30d7afa3b
bump version to v3.15.07743467
bump version tocf823d4
Merge pull request #12971 from dirkmueller/cert_extended_range1df0064
Merge pull request #12966 from helm/dependabot/go_modules/golang.org/x/net-0....c6beb16
Merge pull request #12979 from CalvinKrist/fix-namespace-on-kube-error214fb6e
Fix namespace on kubeconfig error1b75d48
Update testdata PKI with keys that have validity until 3393 (Fixes #12880)dac23c8
chore(deps): bump golang.org/x/net from 0.17.0 to 0.23.0Updates
sigs.k8s.io/kustomize/kustomize/v5
from 5.4.1 to 5.4.2Release notes
Sourced from sigs.k8s.io/kustomize/kustomize/v5's releases.
Commits
f309dfc
Merge pull request #5704 from koba1t/pinToApia34ac31
Update api to v0.17.29cc25a5
Merge pull request #5703 from koba1t/pinToCmdConfigf6ad718
Update cmd/config to v0.14.1da14e76
Merge pull request #5702 from koba1t/pinToKyaml7424956
Update kyaml to v0.17.1e244b83
Merge pull request #5688 from emirot/refactor/indexOff983846
refactor: function in stdlib now49a645f
Merge pull request #5294 from typeid/localize_absolute_pathse7a1549
fix: usefmt.Errorf
instead of non-existingerrors.New
(#5651)Most Recent Ignore Conditions Applied to This Pull Request
| Dependency Name | Ignore Conditions | | --- | --- | | github.com/tektoncd/chains | [>= 0.20.a, < 0.21] |Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show