Closed dependabot[bot] closed 3 years ago
Viper v1.8.0 changed its dependencies in https://github.com/spf13/viper/pull/1154:
go: finding module for package google.golang.org/grpc/naming
github.com/ldez/traefik-certs-dumper/v2/cmd imports
github.com/abronan/valkeyrie/store/etcd/v2 imports
go.etcd.io/etcd/client tested by
go.etcd.io/etcd/client.test imports
github.com/coreos/etcd/integration imports
github.com/coreos/etcd/proxy/grpcproxy imports
google.golang.org/grpc/naming: module google.golang.org/grpc@latest found (v1.38.0), but does not contain package google.golang.org/grpc/naming
Viper depends on github.com/bketelsen/crypt
and github.com/bketelsen/crypt
has a dependency on one of the major members of the dependency hell in Go: GRPC.
https://deps.dev/go/github.com%2Fbketelsen%2Fcrypt/v0.0.4/dependencies
There is a lot of problems for the other dependencies if I upgrade viper. So I will not update this library.
Superseded by #156.
Bumps github.com/spf13/viper from 1.7.1 to 1.8.0.
Release notes
Sourced from github.com/spf13/viper's releases.
Commits
faa8ba0
chore: update gotestsum65ee986
chore(lint): fix gofumpt04ef5fa
chore: update golangci-lintacd965b
Add ini load options argument5f4d053
chore(deps): update dependenciesdd57ae6
chore(deps): update etcdcdb5e59
Fix merging a key into a nil target36be6bf
feat: make sure Viper compiles on WASM727a41c
doc: add a note about concurent Get/Set to godoccb41ae0
doc: discuss concurrency in READMEDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)