Closed dependabot[bot] closed 4 months ago
VIOLATION DESCRIPTION | NUMBER OF VIOLATIONS |
---|---|
HIGH/CRITICAL SECURITY VULNERABILITIES | 2 |
MAJOR UPDATES AVAILABLE | 0 |
LICENSE REQUIRES REVIEW | 0 |
LICENSE RISK HIGH | 7 |
RESTRICTIED LICENSE FOR ON-PREMISE DELIVERY | 0 |
Looks like these dependencies are updatable in another way, so this is no longer needed.
Bumps the go group with 10 updates in the / directory:
5.23.0
5.31.0
2.0.0-rc.3
2.3.0
1.4.3
1.4.4
0.0.0-20230713123140-269aa4fb1338
0.4.3
0.9.0
0.12.1
0.4.0
0.6.1
0.7.0
0.8.0
0.11.0
0.13.1
0.2.0
0.4.0
0.35.0
0.36.0
Updates
github.com/containers/image/v5
from 5.23.0 to 5.31.0Release notes
Sourced from github.com/containers/image/v5's releases.
... (truncated)
Commits
b5a7587
Bump c/image to v5.31.021ac79b
Merge pull request #2428 from mtrmac/als-toc-fixes45f4f23
Don't completely ignore already-computed image size if we see an ALS layer27516f3
Don't modify a storage.Layer returned by c/storagec2327e4
Don't unnecessarily trust the ALS FUSE server about the TOC digestdb02dee
Merge pull request #2426 from containers/renovate/github.com-containers-stora...6db27e1
fix(deps): update module github.com/containers/storage to v1.54.0cf26b3c
Merge pull request #2416 from ktock/store-tocdigest-id52101a0
getSize: allow unknown uncompressed sizeebbd025
Enable to pass TOCDigest to Additional Layer StoreUpdates
github.com/cyphar/filepath-securejoin
from 0.2.4 to 0.2.5Release notes
Sourced from github.com/cyphar/filepath-securejoin's releases.
Commits
d861a11
VERSION: release v0.2.587bc53a
join: fix ELOOP error pathe9be397
join: don't allow .. and . in working path during resolution75cdbea
gha: update Go versionsb69b737
VERSION: back to developmentUpdates
github.com/fatih/color
from 1.15.0 to 1.16.0Release notes
Sourced from github.com/fatih/color's releases.
Commits
0f9779e
Merge pull request #213 from fatih/dependabot/go_modules/golang.org/x/sys-0.14.00c78604
Bump golang.org/x/sys from 0.13.0 to 0.14.096e0f73
Merge pull request #208 from fatih/dependabot/github_actions/actions/checkout-44c66e32
Bump actions/checkout from 3 to 42fb03d6
Merge pull request #202 from fatih/dependabot/github_actions/actions/setup-go-48ba7bbd
Bump actions/setup-go from 3 to 4e3f97f3
Merge pull request #209 from fatih/dependabot/go_modules/golang.org/x/sys-0.13.0e146575
Bump golang.org/x/sys from 0.10.0 to 0.13.0d2d7a5e
Merge pull request #212 from fatih/dependabot/go_modules/github.com/mattn/go-...f3e45da
Merge branch 'main' into dependabot/go_modules/github.com/mattn/go-isatty-0.0.20Updates
github.com/fluxcd/flux2/v2
from 2.0.0-rc.3 to 2.3.0Release notes
Sourced from github.com/fluxcd/flux2/v2's releases.
... (truncated)
Commits
896e0fa
Merge pull request #4785 from fluxcd/dependabot/github_actions/ci-f6abfb4cf08d75df8
build(deps): bump the ci group with 3 updatesdd7ef7d
Merge pull request #4766 from fluxcd/reconcile-hr-with-chartref5feee5c
Add support for creating HR with .spec.ChartRef0d0285a
Enable reconciling HelmReleases with ChartRef86b3581
Merge pull request #4783 from fluxcd/conformance-tests32804f6
ci: Consolidate conformance tests070fa0f
Merge pull request #4781 from fluxcd/drop-kubernetes-eol9ef9464
Update kubectl to 1.30.0 in flux-cli imaged8e6199
Set Kubernetes 1.28 as min required versionUpdates
github.com/fluxcd/go-git-providers
from 0.18.1-0.20230706132206-211750e8915d to 0.20.1Release notes
Sourced from github.com/fluxcd/go-git-providers's releases.
Commits
Updates
github.com/fluxcd/kustomize-controller/api
from 1.1.0 to 1.3.0Release notes
Sourced from github.com/fluxcd/kustomize-controller/api's releases.
... (truncated)
Changelog
Sourced from github.com/fluxcd/kustomize-controller/api's changelog.
... (truncated)
Commits
83fbfee
Merge pull request #1157 from fluxcd/release-v1.3.0458d7e2
Release v1.3.04a02b3f
Add changelog entry for v1.3.0882f6a7
Merge pull request #1154 from fluxcd/dependabot/github_actions/ci-b23e0286c6dfcd4ed
Merge pull request #1155 from fluxcd/source-controller-1.3.0e81120a
build(deps): bump actions/setup-go from 5.0.0 to 5.0.1 in the ci group780954f
Update source-controller API to v1.3.099792de
Merge pull request #1152 from dipti-pai/remove-deprecated-aad-podidentity-reffc663de
Remove references aad pod identityf0f9b03
Merge pull request #1149 from fluxcd/dependabot/github_actions/ci-cfa2b75493Updates
github.com/fluxcd/pkg/apis/meta
from 1.1.2 to 1.5.0Commits
e32ccc2
Merge pull request #763 from fluxcd/kubernetes-1.302b974af
Update sigs.k8s.io/controller-tools to v0.15.052c1fc5
Update sigs.k8s.io/controller-runtime to v0.18.0c906252
Update dependencies to Kubernetes 1.3092c1348
Merge pull request #764 from fluxcd/dependabot/github_actions/ci-e44cfae560ccb916a
build(deps): bump the ci group with 3 updates6081556
Merge pull request #761 from fluxcd/kustomize-name-prefix-suffixabf5675
kustomize: Add support fornamePrefix
andnameSuffix
98d2522
Merge pull request #760 from fluxcd/dependabot/github_actions/ci-8f082d4f6defcd824
build(deps): bump docker/setup-buildx-action in the ci groupUpdates
github.com/fluxcd/pkg/git
from 0.11.0 to 0.19.0Commits
e32ccc2
Merge pull request #763 from fluxcd/kubernetes-1.302b974af
Update sigs.k8s.io/controller-tools to v0.15.052c1fc5
Update sigs.k8s.io/controller-runtime to v0.18.0c906252
Update dependencies to Kubernetes 1.3092c1348
Merge pull request #764 from fluxcd/dependabot/github_actions/ci-e44cfae560ccb916a
build(deps): bump the ci group with 3 updates6081556
Merge pull request #761 from fluxcd/kustomize-name-prefix-suffixabf5675
kustomize: Add support fornamePrefix
andnameSuffix
98d2522
Merge pull request #760 from fluxcd/dependabot/github_actions/ci-8f082d4f6defcd824
build(deps): bump docker/setup-buildx-action in the ci groupUpdates
github.com/fluxcd/pkg/git/gogit
from 0.8.1 to 0.19.0Commits
e32ccc2
Merge pull request #763 from fluxcd/kubernetes-1.302b974af
Update sigs.k8s.io/controller-tools to v0.15.052c1fc5
Update sigs.k8s.io/controller-runtime to v0.18.0c906252
Update dependencies to Kubernetes 1.3092c1348
Merge pull request #764 from fluxcd/dependabot/github_actions/ci-e44cfae560ccb916a
build(deps): bump the ci group with 3 updates6081556
Merge pull request #761 from fluxcd/kustomize-name-prefix-suffixabf5675
kustomize: Add support fornamePrefix
andnameSuffix
98d2522
Merge pull request #760 from fluxcd/dependabot/github_actions/ci-8f082d4f6defcd824
build(deps): bump docker/setup-buildx-action in the ci groupUpdates
github.com/fluxcd/pkg/kustomize
from 1.3.4 to 1.11.0Commits
3790516
Merge pull request #767 from fluxcd/up-internal-deps37ea30c
Update internal dependenciese32ccc2
Merge pull request #763 from fluxcd/kubernetes-1.302b974af
Update sigs.k8s.io/controller-tools to v0.15.052c1fc5
Update sigs.k8s.io/controller-runtime to v0.18.0c906252
Update dependencies to Kubernetes 1.3092c1348
Merge pull request #764 from fluxcd/dependabot/github_actions/ci-e44cfae560ccb916a
build(deps): bump the ci group with 3 updates6081556
Merge pull request #761 from fluxcd/kustomize-name-prefix-suffixabf5675
kustomize: Add support fornamePrefix
andnameSuffix
Updates
github.com/fluxcd/pkg/ssa
from 0.28.2 to 0.39.1Commits
adcfcbe
Merge pull request #769 from fluxcd/controller-runtime-v0.18.10e74a82
Update runtime pkg docsb329d92
Update dependencies to controller-runtime v0.18.1d0bf8ed
Merge pull request #768 from fluxcd/dependabot/github_actions/ci-b93eff89fb14f05d7
build(deps): bump actions/checkout from 4.1.3 to 4.1.4 in the ci group3790516
Merge pull request #767 from fluxcd/up-internal-deps37ea30c
Update internal dependenciese32ccc2
Merge pull request #763 from fluxcd/kubernetes-1.302b974af
Update sigs.k8s.io/controller-tools to v0.15.052c1fc5
Update sigs.k8s.io/controller-runtime to v0.18.0Updates
github.com/fluxcd/source-controller/api
from 1.1.0 to 1.3.0Release notes
Sourced from github.com/fluxcd/source-controller/api's releases.
... (truncated)
Changelog
Sourced from github.com/fluxcd/source-controller/api's changelog.
... (truncated)
Commits
a80a99b
Merge pull request #1472 from fluxcd/release-v1.3.070901f8
Release v1.3.005ab8b1
Add changelog entry for v1.3.0c9bf167
Merge pull request #1298 from fluxcd/phony-buildcc3d495
ci: Print controller logs after e2e run0bd5b95
Rename make targetbuild
tomanager
edccfe9
Merge pull request #1470 from fluxcd/dependabot/github_actions/ci-b23e0286c69ce2d61
build(deps): bump actions/setup-go from 5.0.0 to 5.0.1 in the ci group16eeeef
Merge pull request #1469 from fluxcd/dependabot/go_modules/go-deps-4411c5bc338598b8d
build(deps): bump google.golang.org/apiUpdates
github.com/gabriel-vasile/mimetype
from 1.4.3 to 1.4.4Release notes
Sourced from github.com/gabriel-vasile/mimetype's releases.
Commits
43192c8
Bump the github-actions group across 1 directory with 3 updates (#534)07821d3
Using io.ReadAll instead of ioutil.ReadAll (#525)9bd6023
github actions & readme: remove codecov badge (#533)ff4d3d0
improve performance for text detection (#532)bc511b8
add defaultLimit and use it when resetting back (#531)341c422
Improve x-subrip detection performance (#524)043efb9
fix benchmark files order (#518)fd7639e
ftyp: exit asap to prevent mem allocs (#517)889166d
Merge pull request #505 from gabriel-vasile/dependabot/github_actions/github-...e938b0c
M... _Description has been truncated_