dexidp/dex (ghcr.io/dexidp/dex)
### [`v2.37.0`](https://togithub.com/dexidp/dex/releases/tag/v2.37.0)
[Compare Source](https://togithub.com/dexidp/dex/compare/v2.36.0...v2.37.0)
The official container image for this release can be pulled from
ghcr.io/dexidp/dex:v2.37.0
#### What's Changed
##### Exciting New Features 🎉
- TLS cert reloader by [@seankhliao](https://togithub.com/seankhliao) in [https://github.com/dexidp/dex/pull/2964](https://togithub.com/dexidp/dex/pull/2964)
##### Enhancements 🚀
- Add xx to cross-compile binaries in Docker by [@sagikazarmark](https://togithub.com/sagikazarmark) in [https://github.com/dexidp/dex/pull/2898](https://togithub.com/dexidp/dex/pull/2898)
- Spelling by [@jsoref](https://togithub.com/jsoref) in [https://github.com/dexidp/dex/pull/2919](https://togithub.com/dexidp/dex/pull/2919)
- LDAP case-insensitive DN attribute by [@nabokihms](https://togithub.com/nabokihms) in [https://github.com/dexidp/dex/pull/2829](https://togithub.com/dexidp/dex/pull/2829)
- Utilize native git diff --exit-code by [@marcofranssen](https://togithub.com/marcofranssen) in [https://github.com/dexidp/dex/pull/2981](https://togithub.com/dexidp/dex/pull/2981)
- Google: Add Support for Multiple Admin Emails to Retrieve Group Lists by [@vsychov](https://togithub.com/vsychov) in [https://github.com/dexidp/dex/pull/2911](https://togithub.com/dexidp/dex/pull/2911)
##### Bug Fixes 🐛
- Do not skip approval screen by default by [@nabokihms](https://togithub.com/nabokihms) in [https://github.com/dexidp/dex/pull/2897](https://togithub.com/dexidp/dex/pull/2897)
- Fail if OIDC config contains hosted domains by [@nabokihms](https://togithub.com/nabokihms) in [https://github.com/dexidp/dex/pull/2937](https://togithub.com/dexidp/dex/pull/2937)
##### Dependency Updates ⬆️
- build(deps): bump alpine from 3.17.2 to 3.17.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2879](https://togithub.com/dexidp/dex/pull/2879)
- build(deps): bump mheap/github-action-required-labels from 3 to 4 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2881](https://togithub.com/dexidp/dex/pull/2881)
- build(deps): bump google.golang.org/grpc from 1.53.0 to 1.54.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2873](https://togithub.com/dexidp/dex/pull/2873)
- build(deps): bump golang.org/x/oauth2 from 0.6.0 to 0.7.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2892](https://togithub.com/dexidp/dex/pull/2892)
- build(deps): bump golang from 1.20.2-alpine3.16 to 1.20.3-alpine3.16 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2884](https://togithub.com/dexidp/dex/pull/2884)
- build(deps): bump github.com/spf13/cobra from 1.6.1 to 1.7.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2885](https://togithub.com/dexidp/dex/pull/2885)
- build(deps): bump aquasecurity/trivy-action from 0.9.2 to 0.10.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2905](https://togithub.com/dexidp/dex/pull/2905)
- build(deps): bump github.com/prometheus/client_golang from 1.14.0 to 1.15.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2900](https://togithub.com/dexidp/dex/pull/2900)
- build(deps): bump golang.org/x/crypto from 0.7.0 to 0.8.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2891](https://togithub.com/dexidp/dex/pull/2891)
- build(deps): bump github.com/russellhaering/goxmldsig from 1.3.0 to 1.4.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2920](https://togithub.com/dexidp/dex/pull/2920)
- build(deps): bump golang from 1.20.3-alpine3.16 to 1.20.4-alpine3.16 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2924](https://togithub.com/dexidp/dex/pull/2924)
- build(deps): bump github.com/lib/pq from 1.10.7 to 1.10.9 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2922](https://togithub.com/dexidp/dex/pull/2922)
- build(deps): bump golang.org/x/oauth2 from 0.7.0 to 0.8.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2929](https://togithub.com/dexidp/dex/pull/2929)
- build(deps): bump google.golang.org/grpc from 1.54.0 to 1.55.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2932](https://togithub.com/dexidp/dex/pull/2932)
- build(deps): bump go.etcd.io/etcd/client/pkg/v3 from 3.5.7 to 3.5.8 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2899](https://togithub.com/dexidp/dex/pull/2899)
- build(deps): bump github.com/beevik/etree from 1.1.0 to 1.1.4 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2939](https://togithub.com/dexidp/dex/pull/2939)
- build(deps): bump github.com/go-sql-driver/mysql from 1.7.0 to 1.7.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2938](https://togithub.com/dexidp/dex/pull/2938)
- build(deps): bump go.etcd.io/etcd/client/pkg/v3 from 3.5.8 to 3.5.9 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2946](https://togithub.com/dexidp/dex/pull/2946)
- build(deps): bump github/codeql-action from 2.3.1 to 2.3.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2943](https://togithub.com/dexidp/dex/pull/2943)
- build(deps): bump anchore/sbom-action from 0.14.1 to 0.14.2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2942](https://togithub.com/dexidp/dex/pull/2942)
- build(deps): bump alpine from 3.17.3 to 3.18.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2930](https://togithub.com/dexidp/dex/pull/2930)
- build(deps): bump google.golang.org/grpc from 1.53.0 to 1.55.0 in /api/v2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2927](https://togithub.com/dexidp/dex/pull/2927)
- build(deps): bump google.golang.org/api from 0.114.0 to 0.122.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2931](https://togithub.com/dexidp/dex/pull/2931)
- build(deps): bump entgo.io/ent from 0.11.10 to 0.12.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2923](https://togithub.com/dexidp/dex/pull/2923)
- build(deps): bump go.etcd.io/etcd/client/v3 from 3.5.7 to 3.5.9 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2944](https://togithub.com/dexidp/dex/pull/2944)
- build(deps): bump github.com/prometheus/client_golang from 1.15.0 to 1.15.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2945](https://togithub.com/dexidp/dex/pull/2945)
- build(deps): bump helm/kind-action from 1.5.0 to 1.7.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2956](https://togithub.com/dexidp/dex/pull/2956)
- build(deps): bump github.com/sirupsen/logrus from 1.9.0 to 1.9.2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2957](https://togithub.com/dexidp/dex/pull/2957)
- build(deps): bump actions/setup-go from 4.0.0 to 4.0.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2949](https://togithub.com/dexidp/dex/pull/2949)
- build(deps): bump golang.org/x/crypto from 0.8.0 to 0.9.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2948](https://togithub.com/dexidp/dex/pull/2948)
- build(deps): bump google.golang.org/api from 0.122.0 to 0.123.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2959](https://togithub.com/dexidp/dex/pull/2959)
- build(deps): bump github.com/beevik/etree from 1.1.4 to 1.2.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2947](https://togithub.com/dexidp/dex/pull/2947)
- build(deps): bump github/codeql-action from 2.3.3 to 2.3.5 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2970](https://togithub.com/dexidp/dex/pull/2970)
- build(deps): bump google.golang.org/api from 0.123.0 to 0.124.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2968](https://togithub.com/dexidp/dex/pull/2968)
- build(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2958](https://togithub.com/dexidp/dex/pull/2958)
- build(deps): bump aquasecurity/trivy-action from 0.10.0 to 0.11.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2984](https://togithub.com/dexidp/dex/pull/2984)
- build(deps): bump github/codeql-action from 2.3.5 to 2.3.6 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2982](https://togithub.com/dexidp/dex/pull/2982)
- build(deps): bump actions/dependency-review-action from 3.0.4 to 3.0.6 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2978](https://togithub.com/dexidp/dex/pull/2978)
- build(deps): bump github.com/sirupsen/logrus from 1.9.2 to 1.9.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2983](https://togithub.com/dexidp/dex/pull/2983)
- build(deps): bump github.com/mattn/go-sqlite3 from 1.14.16 to 1.14.17 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2979](https://togithub.com/dexidp/dex/pull/2979)
- build(deps): bump google.golang.org/api from 0.124.0 to 0.125.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2976](https://togithub.com/dexidp/dex/pull/2976)
- build(deps): bump github.com/stretchr/testify from 1.8.3 to 1.8.4 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2977](https://togithub.com/dexidp/dex/pull/2977)
- build(deps): bump docker/login-action from 2.1.0 to 2.2.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2987](https://togithub.com/dexidp/dex/pull/2987)
- build(deps): bump docker/setup-qemu-action from 2.1.0 to 2.2.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2985](https://togithub.com/dexidp/dex/pull/2985)
- build(deps): bump docker/metadata-action from 4.4.0 to 4.5.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2986](https://togithub.com/dexidp/dex/pull/2986)
- build(deps): bump docker/setup-buildx-action from 2.5.0 to 2.6.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2988](https://togithub.com/dexidp/dex/pull/2988)
- build(deps): bump mheap/github-action-required-labels from 4 to 5 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2990](https://togithub.com/dexidp/dex/pull/2990)
- build(deps): bump aquasecurity/trivy-action from 0.11.0 to 0.11.2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2995](https://togithub.com/dexidp/dex/pull/2995)
- build(deps): bump github/codeql-action from 2.3.6 to 2.20.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3002](https://togithub.com/dexidp/dex/pull/3002)
- build(deps): bump google.golang.org/api from 0.125.0 to 0.127.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2999](https://togithub.com/dexidp/dex/pull/2999)
- build(deps): bump docker/setup-buildx-action from 2.6.0 to 2.7.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3001](https://togithub.com/dexidp/dex/pull/3001)
- build(deps): bump docker/build-push-action from 4.0.0 to 4.1.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3003](https://togithub.com/dexidp/dex/pull/3003)
- build(deps): bump actions/checkout from 3.5.2 to 3.5.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2993](https://togithub.com/dexidp/dex/pull/2993)
- build(deps): bump github.com/go-ldap/ldap/v3 from 3.4.4 to 3.4.5 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2997](https://togithub.com/dexidp/dex/pull/2997)
- build(deps): bump golang.org/x/net from 0.10.0 to 0.11.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3004](https://togithub.com/dexidp/dex/pull/3004)
- build(deps): bump alpine from 3.18.0 to 3.18.2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3008](https://togithub.com/dexidp/dex/pull/3008)
- build(deps): bump docker/metadata-action from 4.5.0 to 4.6.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3007](https://togithub.com/dexidp/dex/pull/3007)
- build(deps): bump golang.org/x/oauth2 from 0.8.0 to 0.9.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3005](https://togithub.com/dexidp/dex/pull/3005)
- build(deps): bump google.golang.org/grpc from 1.55.0 to 1.56.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3009](https://togithub.com/dexidp/dex/pull/3009)
- build(deps): bump github.com/prometheus/client_golang from 1.15.1 to 1.16.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3010](https://togithub.com/dexidp/dex/pull/3010)
- build(deps): bump google.golang.org/grpc from 1.56.0 to 1.56.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3016](https://togithub.com/dexidp/dex/pull/3016)
- build(deps): bump github/codeql-action from 2.20.0 to 2.20.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3015](https://togithub.com/dexidp/dex/pull/3015)
- build(deps): bump anchore/sbom-action from 0.14.2 to 0.14.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3014](https://togithub.com/dexidp/dex/pull/3014)
- build(deps): bump ossf/scorecard-action from 2.1.3 to 2.2.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3019](https://togithub.com/dexidp/dex/pull/3019)
- build(deps): bump google.golang.org/api from 0.127.0 to 0.129.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3022](https://togithub.com/dexidp/dex/pull/3022)
- build(deps): bump docker/setup-buildx-action from 2.7.0 to 2.8.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3023](https://togithub.com/dexidp/dex/pull/3023)
#### New Contributors
- [@marcofranssen](https://togithub.com/marcofranssen) made their first contribution in [https://github.com/dexidp/dex/pull/2981](https://togithub.com/dexidp/dex/pull/2981)
- [@vsychov](https://togithub.com/vsychov) made their first contribution in [https://github.com/dexidp/dex/pull/2911](https://togithub.com/dexidp/dex/pull/2911)
**Full Changelog**: https://github.com/dexidp/dex/compare/v2.36.0...v2.37.0
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
[ ] If you want to rebase/retry this PR, check this box
This PR has been generated by Mend Renovate. View repository job log here.
This PR contains the following updates:
v2.36.0-distroless->v2.37.0-distrolessRelease Notes
dexidp/dex (ghcr.io/dexidp/dex)
### [`v2.37.0`](https://togithub.com/dexidp/dex/releases/tag/v2.37.0) [Compare Source](https://togithub.com/dexidp/dex/compare/v2.36.0...v2.37.0) The official container image for this release can be pulled from ghcr.io/dexidp/dex:v2.37.0 #### What's Changed ##### Exciting New Features 🎉 - TLS cert reloader by [@seankhliao](https://togithub.com/seankhliao) in [https://github.com/dexidp/dex/pull/2964](https://togithub.com/dexidp/dex/pull/2964) ##### Enhancements 🚀 - Add xx to cross-compile binaries in Docker by [@sagikazarmark](https://togithub.com/sagikazarmark) in [https://github.com/dexidp/dex/pull/2898](https://togithub.com/dexidp/dex/pull/2898) - Spelling by [@jsoref](https://togithub.com/jsoref) in [https://github.com/dexidp/dex/pull/2919](https://togithub.com/dexidp/dex/pull/2919) - LDAP case-insensitive DN attribute by [@nabokihms](https://togithub.com/nabokihms) in [https://github.com/dexidp/dex/pull/2829](https://togithub.com/dexidp/dex/pull/2829) - Utilize native git diff --exit-code by [@marcofranssen](https://togithub.com/marcofranssen) in [https://github.com/dexidp/dex/pull/2981](https://togithub.com/dexidp/dex/pull/2981) - Google: Add Support for Multiple Admin Emails to Retrieve Group Lists by [@vsychov](https://togithub.com/vsychov) in [https://github.com/dexidp/dex/pull/2911](https://togithub.com/dexidp/dex/pull/2911) ##### Bug Fixes 🐛 - Do not skip approval screen by default by [@nabokihms](https://togithub.com/nabokihms) in [https://github.com/dexidp/dex/pull/2897](https://togithub.com/dexidp/dex/pull/2897) - Fail if OIDC config contains hosted domains by [@nabokihms](https://togithub.com/nabokihms) in [https://github.com/dexidp/dex/pull/2937](https://togithub.com/dexidp/dex/pull/2937) ##### Dependency Updates ⬆️ - build(deps): bump alpine from 3.17.2 to 3.17.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2879](https://togithub.com/dexidp/dex/pull/2879) - build(deps): bump mheap/github-action-required-labels from 3 to 4 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2881](https://togithub.com/dexidp/dex/pull/2881) - build(deps): bump google.golang.org/grpc from 1.53.0 to 1.54.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2873](https://togithub.com/dexidp/dex/pull/2873) - build(deps): bump golang.org/x/oauth2 from 0.6.0 to 0.7.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2892](https://togithub.com/dexidp/dex/pull/2892) - build(deps): bump golang from 1.20.2-alpine3.16 to 1.20.3-alpine3.16 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2884](https://togithub.com/dexidp/dex/pull/2884) - build(deps): bump github.com/spf13/cobra from 1.6.1 to 1.7.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2885](https://togithub.com/dexidp/dex/pull/2885) - build(deps): bump aquasecurity/trivy-action from 0.9.2 to 0.10.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2905](https://togithub.com/dexidp/dex/pull/2905) - build(deps): bump github.com/prometheus/client_golang from 1.14.0 to 1.15.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2900](https://togithub.com/dexidp/dex/pull/2900) - build(deps): bump golang.org/x/crypto from 0.7.0 to 0.8.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2891](https://togithub.com/dexidp/dex/pull/2891) - build(deps): bump github.com/russellhaering/goxmldsig from 1.3.0 to 1.4.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2920](https://togithub.com/dexidp/dex/pull/2920) - build(deps): bump golang from 1.20.3-alpine3.16 to 1.20.4-alpine3.16 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2924](https://togithub.com/dexidp/dex/pull/2924) - build(deps): bump github.com/lib/pq from 1.10.7 to 1.10.9 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2922](https://togithub.com/dexidp/dex/pull/2922) - build(deps): bump golang.org/x/oauth2 from 0.7.0 to 0.8.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2929](https://togithub.com/dexidp/dex/pull/2929) - build(deps): bump google.golang.org/grpc from 1.54.0 to 1.55.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2932](https://togithub.com/dexidp/dex/pull/2932) - build(deps): bump go.etcd.io/etcd/client/pkg/v3 from 3.5.7 to 3.5.8 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2899](https://togithub.com/dexidp/dex/pull/2899) - build(deps): bump github.com/beevik/etree from 1.1.0 to 1.1.4 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2939](https://togithub.com/dexidp/dex/pull/2939) - build(deps): bump github.com/go-sql-driver/mysql from 1.7.0 to 1.7.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2938](https://togithub.com/dexidp/dex/pull/2938) - build(deps): bump go.etcd.io/etcd/client/pkg/v3 from 3.5.8 to 3.5.9 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2946](https://togithub.com/dexidp/dex/pull/2946) - build(deps): bump github/codeql-action from 2.3.1 to 2.3.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2943](https://togithub.com/dexidp/dex/pull/2943) - build(deps): bump anchore/sbom-action from 0.14.1 to 0.14.2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2942](https://togithub.com/dexidp/dex/pull/2942) - build(deps): bump alpine from 3.17.3 to 3.18.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2930](https://togithub.com/dexidp/dex/pull/2930) - build(deps): bump google.golang.org/grpc from 1.53.0 to 1.55.0 in /api/v2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2927](https://togithub.com/dexidp/dex/pull/2927) - build(deps): bump google.golang.org/api from 0.114.0 to 0.122.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2931](https://togithub.com/dexidp/dex/pull/2931) - build(deps): bump entgo.io/ent from 0.11.10 to 0.12.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2923](https://togithub.com/dexidp/dex/pull/2923) - build(deps): bump go.etcd.io/etcd/client/v3 from 3.5.7 to 3.5.9 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2944](https://togithub.com/dexidp/dex/pull/2944) - build(deps): bump github.com/prometheus/client_golang from 1.15.0 to 1.15.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2945](https://togithub.com/dexidp/dex/pull/2945) - build(deps): bump helm/kind-action from 1.5.0 to 1.7.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2956](https://togithub.com/dexidp/dex/pull/2956) - build(deps): bump github.com/sirupsen/logrus from 1.9.0 to 1.9.2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2957](https://togithub.com/dexidp/dex/pull/2957) - build(deps): bump actions/setup-go from 4.0.0 to 4.0.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2949](https://togithub.com/dexidp/dex/pull/2949) - build(deps): bump golang.org/x/crypto from 0.8.0 to 0.9.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2948](https://togithub.com/dexidp/dex/pull/2948) - build(deps): bump google.golang.org/api from 0.122.0 to 0.123.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2959](https://togithub.com/dexidp/dex/pull/2959) - build(deps): bump github.com/beevik/etree from 1.1.4 to 1.2.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2947](https://togithub.com/dexidp/dex/pull/2947) - build(deps): bump github/codeql-action from 2.3.3 to 2.3.5 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2970](https://togithub.com/dexidp/dex/pull/2970) - build(deps): bump google.golang.org/api from 0.123.0 to 0.124.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2968](https://togithub.com/dexidp/dex/pull/2968) - build(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2958](https://togithub.com/dexidp/dex/pull/2958) - build(deps): bump aquasecurity/trivy-action from 0.10.0 to 0.11.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2984](https://togithub.com/dexidp/dex/pull/2984) - build(deps): bump github/codeql-action from 2.3.5 to 2.3.6 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2982](https://togithub.com/dexidp/dex/pull/2982) - build(deps): bump actions/dependency-review-action from 3.0.4 to 3.0.6 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2978](https://togithub.com/dexidp/dex/pull/2978) - build(deps): bump github.com/sirupsen/logrus from 1.9.2 to 1.9.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2983](https://togithub.com/dexidp/dex/pull/2983) - build(deps): bump github.com/mattn/go-sqlite3 from 1.14.16 to 1.14.17 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2979](https://togithub.com/dexidp/dex/pull/2979) - build(deps): bump google.golang.org/api from 0.124.0 to 0.125.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2976](https://togithub.com/dexidp/dex/pull/2976) - build(deps): bump github.com/stretchr/testify from 1.8.3 to 1.8.4 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2977](https://togithub.com/dexidp/dex/pull/2977) - build(deps): bump docker/login-action from 2.1.0 to 2.2.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2987](https://togithub.com/dexidp/dex/pull/2987) - build(deps): bump docker/setup-qemu-action from 2.1.0 to 2.2.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2985](https://togithub.com/dexidp/dex/pull/2985) - build(deps): bump docker/metadata-action from 4.4.0 to 4.5.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2986](https://togithub.com/dexidp/dex/pull/2986) - build(deps): bump docker/setup-buildx-action from 2.5.0 to 2.6.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2988](https://togithub.com/dexidp/dex/pull/2988) - build(deps): bump mheap/github-action-required-labels from 4 to 5 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2990](https://togithub.com/dexidp/dex/pull/2990) - build(deps): bump aquasecurity/trivy-action from 0.11.0 to 0.11.2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2995](https://togithub.com/dexidp/dex/pull/2995) - build(deps): bump github/codeql-action from 2.3.6 to 2.20.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3002](https://togithub.com/dexidp/dex/pull/3002) - build(deps): bump google.golang.org/api from 0.125.0 to 0.127.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2999](https://togithub.com/dexidp/dex/pull/2999) - build(deps): bump docker/setup-buildx-action from 2.6.0 to 2.7.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3001](https://togithub.com/dexidp/dex/pull/3001) - build(deps): bump docker/build-push-action from 4.0.0 to 4.1.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3003](https://togithub.com/dexidp/dex/pull/3003) - build(deps): bump actions/checkout from 3.5.2 to 3.5.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2993](https://togithub.com/dexidp/dex/pull/2993) - build(deps): bump github.com/go-ldap/ldap/v3 from 3.4.4 to 3.4.5 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/2997](https://togithub.com/dexidp/dex/pull/2997) - build(deps): bump golang.org/x/net from 0.10.0 to 0.11.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3004](https://togithub.com/dexidp/dex/pull/3004) - build(deps): bump alpine from 3.18.0 to 3.18.2 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3008](https://togithub.com/dexidp/dex/pull/3008) - build(deps): bump docker/metadata-action from 4.5.0 to 4.6.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3007](https://togithub.com/dexidp/dex/pull/3007) - build(deps): bump golang.org/x/oauth2 from 0.8.0 to 0.9.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3005](https://togithub.com/dexidp/dex/pull/3005) - build(deps): bump google.golang.org/grpc from 1.55.0 to 1.56.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3009](https://togithub.com/dexidp/dex/pull/3009) - build(deps): bump github.com/prometheus/client_golang from 1.15.1 to 1.16.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3010](https://togithub.com/dexidp/dex/pull/3010) - build(deps): bump google.golang.org/grpc from 1.56.0 to 1.56.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3016](https://togithub.com/dexidp/dex/pull/3016) - build(deps): bump github/codeql-action from 2.20.0 to 2.20.1 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3015](https://togithub.com/dexidp/dex/pull/3015) - build(deps): bump anchore/sbom-action from 0.14.2 to 0.14.3 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3014](https://togithub.com/dexidp/dex/pull/3014) - build(deps): bump ossf/scorecard-action from 2.1.3 to 2.2.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3019](https://togithub.com/dexidp/dex/pull/3019) - build(deps): bump google.golang.org/api from 0.127.0 to 0.129.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3022](https://togithub.com/dexidp/dex/pull/3022) - build(deps): bump docker/setup-buildx-action from 2.7.0 to 2.8.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/dexidp/dex/pull/3023](https://togithub.com/dexidp/dex/pull/3023) #### New Contributors - [@marcofranssen](https://togithub.com/marcofranssen) made their first contribution in [https://github.com/dexidp/dex/pull/2981](https://togithub.com/dexidp/dex/pull/2981) - [@vsychov](https://togithub.com/vsychov) made their first contribution in [https://github.com/dexidp/dex/pull/2911](https://togithub.com/dexidp/dex/pull/2911) **Full Changelog**: https://github.com/dexidp/dex/compare/v2.36.0...v2.37.0Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.