in-toto / witness

Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.
https://witness.dev
Apache License 2.0
416 stars 60 forks source link

chore: bump golangci/golangci-lint-action from 2 to 3 #303

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps golangci/golangci-lint-action from 2 to 3.

Release notes

Sourced from golangci/golangci-lint-action's releases.

v3.0.0

What's Changed

New Contributors

Full Changelog: https://github.com/golangci/golangci-lint-action/compare/v2...v3.0.0

Bump version v2.5.2

Bug fixes

  • 5c56cd6 Extract and don't mangle User Args. (#200)

Dependencies

  • e3c53fe bump @​typescript-eslint/eslint-plugin (#194)
  • 3b9f80e bump @​typescript-eslint/parser from 4.18.0 to 4.19.0 (#195)
  • 9845713 bump @​types/node from 14.14.35 to 14.14.37 (#197)
  • e789ee1 bump eslint from 7.22.0 to 7.23.0 (#196)
  • f2e9a96 bump @​typescript-eslint/eslint-plugin (#188)
  • 818081a bump @​types/node from 14.14.34 to 14.14.35 (#189)
  • 6671836 bump @​typescript-eslint/parser from 4.17.0 to 4.18.0 (#190)
  • 526907e bump @​typescript-eslint/parser from 4.16.1 to 4.17.0 (#185)
  • 6b6ba16 bump @​typescript-eslint/eslint-plugin (#186)
  • 9cab4ef bump eslint from 7.21.0 to 7.22.0 (#187)
  • 0c76572 bump @​types/node from 14.14.32 to 14.14.34 (#184)
  • 0dfde21 bump @​typescript-eslint/parser from 4.15.2 to 4.16.1 (#182)
  • 9dcf389 bump typescript from 4.2.2 to 4.2.3 (#181)
  • 34d3904 bump @​types/node from 14.14.31 to 14.14.32 (#180)
  • e30b22f bump @​typescript-eslint/eslint-plugin (#179)
  • 8f30d25 bump eslint from 7.20.0 to 7.21.0 (#177)
  • 0b64a40 bump @​typescript-eslint/parser from 4.15.1 to 4.15.2 (#176)
  • 973b3a3 bump eslint-config-prettier from 8.0.0 to 8.1.0 (#178)
  • 6ea3de1 bump @​typescript-eslint/eslint-plugin (#175)
  • 6eec6af bump typescript from 4.1.5 to 4.2.2 (#174)

v2.5.1

Bug fixes:

  • d9f0e73 Check that go.mod exists in reading the version (#173)

v2.5.0

New Features:

  • 51485a4 Try to get version from go.mod file (#118)

... (truncated)

Commits
  • 3a91952 feat: working-directory with only-new-issues (#795)
  • 5e67631 build(deps): bump @​actions/cache from 3.2.1 to 3.2.2 (#825)
  • 18dad33 build(deps-dev): bump @​typescript-eslint/eslint-plugin from 6.2.1 to 6.3.0 (#...
  • 945dc98 build(deps): bump @​types/node from 20.4.8 to 20.5.0 (#824)
  • cac24f5 build(deps-dev): bump eslint from 8.45.0 to 8.47.0 (#823)
  • ab66454 build(deps-dev): bump @​typescript-eslint/parser from 6.2.0 to 6.3.0 (#821)
  • a252750 build(deps): bump @​actions/http-client from 2.1.0 to 2.1.1 (#819)
  • 44d9998 build(deps-dev): bump eslint-config-prettier from 8.9.0 to 9.0.0 (#818)
  • b6bdfb3 build(deps-dev): bump prettier from 3.0.0 to 3.0.1 (#817)
  • c0cd965 build(deps-dev): bump @​typescript-eslint/eslint-plugin from 6.2.0 to 6.2.1 (#...
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)