search

in-toto / attestation-verifier

Prototype in-toto attestation verifier based on ITE-10 and ITE-11 layouts
Other
15 stars 7 forks source link

Bump github.com/google/cel-go from 0.16.1-0.20230623162609-310ebde9567d to 0.18.1 #13

Closed dependabot[bot] closed 11 months ago

dependabot[bot] commented 11 months ago

Bumps github.com/google/cel-go from 0.16.1-0.20230623162609-310ebde9567d to 0.18.1.

Release notes

Sourced from github.com/google/cel-go's releases.

Release v0.18.1

What's Changed

  • Add support for a relative offset within ast.SourceInfo by #836
  • Fix last optional element to be retained as an optional index while folding #841
  • Fix deprecation notice for string format validation #840
  • Update cel-spec and enable wrappers conformance tests #842
  • refactor: remove lexer and parser pools #838

New Contributors

Full Changelog: https://github.com/google/cel-go/compare/v0.18.0...v0.18.1

Release v0.18.0

Features

The latest release of CEL introduces validators (#775) and optimizers (#804, #827) and migrates the core CEL internals off of the protobuf expression and type representations (#789).

  • String format validator #775
  • Create a Function that Reverses a String #796
  • Introduce pre-order / post-order visitor pattern #813
  • Add Libraries() function to Env #822
  • Static optimizer for constant folding #804
  • Inlining optimizer #827
  • FindStructTypeFields support for types.Provider #814

Breaking Changes

The following PR changes the API signature of the checker.AstNode method Expr to return an ast.Expr.

  • Migrate the checker.Coster to the ast.Expr #798

Fixes

  • Nil safety checks for cel.Ast #784
  • Fix cost estimates to propagate result sizes #787
  • Catch invalid literals created from expression factories #810
  • Ensure stable ordering of overload candidates #817
  • Clarify replace with/by empty string #820
  • Fix functional exemptions for homogeneous literal checks #832
  • Fix logical operator folding that only involve literals #833
  • Upgrade go-genproto to latest #831

New Contributors

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)