ivoronin / packer-plugin-sshkey

Packer plugin used to generate SSH keys.
17 stars 10 forks source link

Bump github.com/hashicorp/packer-plugin-sdk from 0.4.0 to 0.5.0 #45

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps github.com/hashicorp/packer-plugin-sdk from 0.4.0 to 0.5.0.

Release notes

Sourced from github.com/hashicorp/packer-plugin-sdk's releases.

v0.5.0

Advisory ⚠️

This release breaks the installation of the packer-sdc command using go install github.com/hashicorp/packer-plugin-sdk/cmd/packer-sdc@v0.5.0. Please hold-off upgrading for now, as we work on a fix for this issue and re-release the SDK.

Apologies for the inconvenience.

Upgrade Notes

This release contains changes to the API that introduce compatibility constraints for zclconf/go-cty. Namely, the bundled version of go-cty used by the SDK is now provided via a fork to resolve the encoding/gob incompatibility issue introduced by the breaking change in zclconf/go-cty v1.11.0. Before upgrading we ask that you carefully review this section and refer to packer-plugin-sdk#187 for details on upgrading your plugin dependencies.

  • Gob supported compile time check: we added a Go compile time check to the SDK for validating that a plugins' version of github.com/zclconf/go-cty contains encoding/gob support for cty.Type and cty.Value. GH-189
  • Replaced github.com/zclconf/go-cty with a temporary fork: to avoid introducing a major breaking change to the plugin API, we've created a temporary fork of github.com/zclconf/go-cty containing support for gob encoding to use in place of the upstream go-cty package. Consumers of the Packer plugin SDK now require a replace directive within their plugin's go module file to point to a compatible version of go-cty. The packer-sdc command has been updated to help apply these types of fixes. GH-189
  • Added a fix command to packer-sdc: to help with the manual intervention and future changes to the SDK, we've introduced a fix sub-command to apply the replace directive to your plugin with a recommended version of the fork. GH-190

What's Changed

Breaking Changes 🛠

Exciting New Features 🎉

Bug fixes🧑‍🔧 🐞

Doc improvements 📚

Other Changes

New Contributors

Full Changelog: https://github.com/hashicorp/packer-plugin-sdk/compare/v0.4.0...v0.5.0

Commits
  • 9115d64 Cut release v0.5.0
  • f014f4e Update pinned actions to latest trusted versions
  • 2b9991b Fix diff header for fix command
  • 7d3a4b2 [HPR-1190] Add packer-sdc fix command (#190)
  • 2a6d852 Remove extra backticks from HTTP server documentation (#191)
  • af18c71 Reset Go to version 1.18 in module file
  • 5e4aae7 Fix buildtags
  • 8c4e43c Bump github.com/hashicorp/hcl/v2 to v2.16.2
  • 2853bc0 Replace gitub.com/zclconf/go-cty@1.12.1 with fork github.com/nywilken/go-cty
  • df99313 Move check into rpc/init
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 year ago

Superseded by #46.