Closed dependabot[bot] closed 4 days ago
The following labels could not be found: dependency-management
, develop-team
.
This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.
To ignore these dependencies, configure ignore rules in dependabot.yml
Bumps the go_modules group with 1 update in the /repo-cloner directory: github.com/go-git/go-git/v5. Bumps the go_modules group with 1 update in the /gitea-oauth2-setup directory: google.golang.org/protobuf. Bumps the go_modules group with 3 updates in the /app/api directory: github.com/go-git/go-git/v5, google.golang.org/protobuf and github.com/vektah/gqlparser/v2.
Updates
github.com/go-git/go-git/v5
from 5.4.2 to 5.11.0Release notes
Sourced from github.com/go-git/go-git/v5's releases.
... (truncated)
Commits
5d08d3b
Merge pull request #958 from pjbgf/workval5bd1d8f
build: Ensure checkout is the first operationb2c1982
git: worktree, Align validation with upstream rulescec7da6
Merge pull request #953 from pjbgf/alternates8b47ceb
storage: filesystem, Add option to set a specific FS for alternates4f61489
Merge pull request #941 from djmoch/filestats-renameae552ce
Merge pull request #939 from dhoizner/fix-pull-after-shallowcc1895b
Merge pull request #950 from aymanbagabas/validate-refde1d5a5
git: validate reference namesd87110b
Merge pull request #948 from go-git/dependabot/go_modules/cli/go-git/github.c...Updates
google.golang.org/protobuf
from 1.28.1 to 1.33.0Updates
github.com/go-git/go-git/v5
from 5.4.2 to 5.11.0Release notes
Sourced from github.com/go-git/go-git/v5's releases.
... (truncated)
Commits
5d08d3b
Merge pull request #958 from pjbgf/workval5bd1d8f
build: Ensure checkout is the first operationb2c1982
git: worktree, Align validation with upstream rulescec7da6
Merge pull request #953 from pjbgf/alternates8b47ceb
storage: filesystem, Add option to set a specific FS for alternates4f61489
Merge pull request #941 from djmoch/filestats-renameae552ce
Merge pull request #939 from dhoizner/fix-pull-after-shallowcc1895b
Merge pull request #950 from aymanbagabas/validate-refde1d5a5
git: validate reference namesd87110b
Merge pull request #948 from go-git/dependabot/go_modules/cli/go-git/github.c...Updates
google.golang.org/protobuf
from 1.28.1 to 1.33.0Updates
github.com/vektah/gqlparser/v2
from 2.5.1 to 2.5.15Release notes
Sourced from github.com/vektah/gqlparser/v2's releases.
... (truncated)
Commits
55a3c47
Revert ParseSchema default token limit of 1500, add ParseSchemaWithLimit, Par...36a3658
Add ParseQueryWithLimit (#304)d457fc0
Token limit fix CVE-2023-49559 (#291)6db1bd3
Bump braces from 3.0.2 to 3.0.3 in /validator/imported (#302)3900414
Bump the actions-deps group in /validator/imported with 7 updates (#301)7c770f6
Bump prettier in /validator/imported in the actions-deps group (#299)0ed4973
Bump the actions-deps group in /validator/imported with 6 updates (#298)00fd36f
Bump the actions-deps group in /validator/imported with 8 updates (#297)9638a21
Bump github.com/stretchr/testify in the actions-deps group (#296)55ebe37
Add Dependabot.ymlDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show