Closed dependabot[bot] closed 3 months ago
Not sure if that's the primary failure, but I can see go mod tidy
in the acceptance test output.
Running go mod tidy in acceptance produces this diff:
diff --git a/acceptance/go.mod b/acceptance/go.mod
index bdb3ecf4..0eca8a2f 100644
--- a/acceptance/go.mod
+++ b/acceptance/go.mod
@@ -1,6 +1,7 @@
module github.com/enterprise-contract/ec-cli/acceptance
-go 1.21.4
+go 1.22.0
+
toolchain go1.22.4
require (
Not sure what to do about it..
See also https://issues.redhat.com/browse/EC-598 .
https://github.com/dependabot ignore github.com/sigstore/sigstore minor version
OK, I won't notify you about version 1.8.x of github.com/sigstore/sigstore again, unless you unignore it.
@dependabot recreate
Looks like these dependencies are updatable in another way, so this is no longer needed.
Bumps the all group in /acceptance with 4 updates: cuelang.org/go, github.com/sigstore/sigstore, github.com/tektoncd/pipeline and golang.org/x/exp.
Updates
cuelang.org/go
from 0.9.1 to 0.9.2Updates
github.com/sigstore/sigstore
from 1.8.4 to 1.8.6Release notes
Sourced from github.com/sigstore/sigstore's releases.
Commits
5d4e11e
Bump goodkey, fix breakage (#1761)63cab17
sync go mod115c2b2
build(deps): Bump the all group across 1 directory with 6 updates8503e22
build(deps): Bump github.com/Azure/azure-sdk-for-go/sdk/azidentity39973a8
build(deps): Bump the all group in /pkg/signature/kms/gcp with 2 updates58a8301
build(deps): Bump the all group in /pkg/signature/kms/aws with 4 updates71ace11
build(deps): Bump github.com/hashicorp/go-retryablehttpb777e4b
build(deps): Bump github.com/Azure/azure-sdk-for-go/sdk/azidentity5ea648c
build(deps): Bump the all group in /pkg/signature/kms/gcp with 2 updatesa3666d9
build(deps): Bump the all group in /test/e2e with 2 updatesUpdates
github.com/tektoncd/pipeline
from 0.60.2 to 0.61.0Release notes
Sourced from github.com/tektoncd/pipeline's releases.
... (truncated)
Commits
c2dc17a
Add a flag on controllers to configure resyncPeriod89ff137
Bump k8s.io/code-generator from 0.29.2 to 0.29.63224946
Bump k8s.io/client-go from 0.29.2 to 0.29.69b5a100
Bump k8s.io/client-go in /test/custom-task-ctrls/wait-task-beta3ca7423
Makefile: install golangci-lint version from tools/go.mod9bdb19a
.github/workflow: use setup-go in codeql-analysis639e836
Update golangci-lint to 1.59.x and fix lintingdefcd64
golangci-lint: exclude G601 from gosece3f05b2
go.mod: remove k8s.io replace directive84a3408
go.mod: switch go version to 1.22Updates
golang.org/x/exp
from 0.0.0-20231108232855-2478ac86f678 to 0.0.0-20240112132812-db7319d0e0e3Commits
Most Recent Ignore Conditions Applied to This Pull Request
| Dependency Name | Ignore Conditions | | --- | --- | | github.com/tektoncd/pipeline | [>= 0.43.a, < 0.44] |Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show