Updates google.golang.org/protobuf from 1.28.1 to 1.33.0
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/konstellation-io/kdl-server/network/alerts).
Bumps the go_modules group with 3 updates in the /app/api directory: github.com/go-git/go-git/v5, github.com/vektah/gqlparser/v2 and google.golang.org/protobuf.
Updates
github.com/go-git/go-git/v5
from 5.4.2 to 5.11.0Release notes
Sourced from github.com/go-git/go-git/v5's releases.
... (truncated)
Commits
5d08d3b
Merge pull request #958 from pjbgf/workval5bd1d8f
build: Ensure checkout is the first operationb2c1982
git: worktree, Align validation with upstream rulescec7da6
Merge pull request #953 from pjbgf/alternates8b47ceb
storage: filesystem, Add option to set a specific FS for alternates4f61489
Merge pull request #941 from djmoch/filestats-renameae552ce
Merge pull request #939 from dhoizner/fix-pull-after-shallowcc1895b
Merge pull request #950 from aymanbagabas/validate-refde1d5a5
git: validate reference namesd87110b
Merge pull request #948 from go-git/dependabot/go_modules/cli/go-git/github.c...Updates
github.com/vektah/gqlparser/v2
from 2.5.1 to 2.5.15Release notes
Sourced from github.com/vektah/gqlparser/v2's releases.
... (truncated)
Commits
55a3c47
Revert ParseSchema default token limit of 1500, add ParseSchemaWithLimit, Par...36a3658
Add ParseQueryWithLimit (#304)d457fc0
Token limit fix CVE-2023-49559 (#291)6db1bd3
Bump braces from 3.0.2 to 3.0.3 in /validator/imported (#302)3900414
Bump the actions-deps group in /validator/imported with 7 updates (#301)7c770f6
Bump prettier in /validator/imported in the actions-deps group (#299)0ed4973
Bump the actions-deps group in /validator/imported with 6 updates (#298)00fd36f
Bump the actions-deps group in /validator/imported with 8 updates (#297)9638a21
Bump github.com/stretchr/testify in the actions-deps group (#296)55ebe37
Add Dependabot.ymlUpdates
google.golang.org/protobuf
from 1.28.1 to 1.33.0Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show