Closed dependabot[bot] closed 4 months ago
VIOLATION DESCRIPTION | NUMBER OF VIOLATIONS |
---|---|
HIGH/CRITICAL SECURITY VULNERABILITIES | 3 |
MAJOR UPDATES AVAILABLE | 0 |
LICENSE REQUIRES REVIEW | 0 |
LICENSE RISK HIGH | 7 |
RESTRICTIED LICENSE FOR ON-PREMISE DELIVERY | 0 |
This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.
To ignore these dependencies, configure ignore rules in dependabot.yml
Bumps the go group with 12 updates in the / directory:
5.23.0
5.31.0
2.0.0-rc.3
2.3.0
1.4.3
1.4.4
0.0.0-20230713123140-269aa4fb1338
0.4.3
0.9.0
0.12.1
0.4.0
0.6.1
0.7.0
0.9.1
0.11.0
0.13.1
0.2.0
0.4.0
1.8.0
1.8.1
0.35.0
0.36.0
0.2.0
0.4.0
Updates
github.com/containers/image/v5
from 5.23.0 to 5.31.0Release notes
Sourced from github.com/containers/image/v5's releases.
... (truncated)
Commits
b5a7587
Bump c/image to v5.31.021ac79b
Merge pull request #2428 from mtrmac/als-toc-fixes45f4f23
Don't completely ignore already-computed image size if we see an ALS layer27516f3
Don't modify a storage.Layer returned by c/storagec2327e4
Don't unnecessarily trust the ALS FUSE server about the TOC digestdb02dee
Merge pull request #2426 from containers/renovate/github.com-containers-stora...6db27e1
fix(deps): update module github.com/containers/storage to v1.54.0cf26b3c
Merge pull request #2416 from ktock/store-tocdigest-id52101a0
getSize: allow unknown uncompressed sizeebbd025
Enable to pass TOCDigest to Additional Layer StoreUpdates
github.com/cyphar/filepath-securejoin
from 0.2.4 to 0.2.5Release notes
Sourced from github.com/cyphar/filepath-securejoin's releases.
Commits
d861a11
VERSION: release v0.2.587bc53a
join: fix ELOOP error pathe9be397
join: don't allow .. and . in working path during resolution75cdbea
gha: update Go versionsb69b737
VERSION: back to developmentUpdates
github.com/fatih/color
from 1.15.0 to 1.16.0Release notes
Sourced from github.com/fatih/color's releases.
Commits
0f9779e
Merge pull request #213 from fatih/dependabot/go_modules/golang.org/x/sys-0.14.00c78604
Bump golang.org/x/sys from 0.13.0 to 0.14.096e0f73
Merge pull request #208 from fatih/dependabot/github_actions/actions/checkout-44c66e32
Bump actions/checkout from 3 to 42fb03d6
Merge pull request #202 from fatih/dependabot/github_actions/actions/setup-go-48ba7bbd
Bump actions/setup-go from 3 to 4e3f97f3
Merge pull request #209 from fatih/dependabot/go_modules/golang.org/x/sys-0.13.0e146575
Bump golang.org/x/sys from 0.10.0 to 0.13.0d2d7a5e
Merge pull request #212 from fatih/dependabot/go_modules/github.com/mattn/go-...f3e45da
Merge branch 'main' into dependabot/go_modules/github.com/mattn/go-isatty-0.0.20Updates
github.com/fluxcd/flux2/v2
from 2.0.0-rc.3 to 2.3.0Release notes
Sourced from github.com/fluxcd/flux2/v2's releases.
... (truncated)
Commits
896e0fa
Merge pull request #4785 from fluxcd/dependabot/github_actions/ci-f6abfb4cf08d75df8
build(deps): bump the ci group with 3 updatesdd7ef7d
Merge pull request #4766 from fluxcd/reconcile-hr-with-chartref5feee5c
Add support for creating HR with .spec.ChartRef0d0285a
Enable reconciling HelmReleases with ChartRef86b3581
Merge pull request #4783 from fluxcd/conformance-tests32804f6
ci: Consolidate conformance tests070fa0f
Merge pull request #4781 from fluxcd/drop-kubernetes-eol9ef9464
Update kubectl to 1.30.0 in flux-cli imaged8e6199
Set Kubernetes 1.28 as min required versionUpdates
github.com/fluxcd/go-git-providers
from 0.18.1-0.20230706132206-211750e8915d to 0.20.1Release notes
Sourced from github.com/fluxcd/go-git-providers's releases.
Commits
Updates
github.com/fluxcd/kustomize-controller/api
from 1.1.0 to 1.3.0Release notes
Sourced from github.com/fluxcd/kustomize-controller/api's releases.
... (truncated)
Changelog
Sourced from github.com/fluxcd/kustomize-controller/api's changelog.
... (truncated)
Commits
83fbfee
Merge pull request #1157 from fluxcd/release-v1.3.0458d7e2
Release v1.3.04a02b3f
Add changelog entry for v1.3.0882f6a7
Merge pull request #1154 from fluxcd/dependabot/github_actions/ci-b23e0286c6dfcd4ed
Merge pull request #1155 from fluxcd/source-controller-1.3.0e81120a
build(deps): bump actions/setup-go from 5.0.0 to 5.0.1 in the ci group780954f
Update source-controller API to v1.3.099792de
Merge pull request #1152 from dipti-pai/remove-deprecated-aad-podidentity-reffc663de
Remove references aad pod identityf0f9b03
Merge pull request #1149 from fluxcd/dependabot/github_actions/ci-cfa2b75493Updates
github.com/fluxcd/pkg/apis/meta
from 1.1.2 to 1.5.0Commits
e32ccc2
Merge pull request #763 from fluxcd/kubernetes-1.302b974af
Update sigs.k8s.io/controller-tools to v0.15.052c1fc5
Update sigs.k8s.io/controller-runtime to v0.18.0c906252
Update dependencies to Kubernetes 1.3092c1348
Merge pull request #764 from fluxcd/dependabot/github_actions/ci-e44cfae560ccb916a
build(deps): bump the ci group with 3 updates6081556
Merge pull request #761 from fluxcd/kustomize-name-prefix-suffixabf5675
kustomize: Add support fornamePrefix
andnameSuffix
98d2522
Merge pull request #760 from fluxcd/dependabot/github_actions/ci-8f082d4f6defcd824
build(deps): bump docker/setup-buildx-action in the ci groupUpdates
github.com/fluxcd/pkg/git
from 0.11.0 to 0.19.0Commits
e32ccc2
Merge pull request #763 from fluxcd/kubernetes-1.302b974af
Update sigs.k8s.io/controller-tools to v0.15.052c1fc5
Update sigs.k8s.io/controller-runtime to v0.18.0c906252
Update dependencies to Kubernetes 1.3092c1348
Merge pull request #764 from fluxcd/dependabot/github_actions/ci-e44cfae560ccb916a
build(deps): bump the ci group with 3 updates6081556
Merge pull request #761 from fluxcd/kustomize-name-prefix-suffixabf5675
kustomize: Add support fornamePrefix
andnameSuffix
98d2522
Merge pull request #760 from fluxcd/dependabot/github_actions/ci-8f082d4f6defcd824
build(deps): bump docker/setup-buildx-action in the ci groupUpdates
github.com/fluxcd/pkg/git/gogit
from 0.8.1 to 0.19.0Commits
e32ccc2
Merge pull request #763 from fluxcd/kubernetes-1.302b974af
Update sigs.k8s.io/controller-tools to v0.15.052c1fc5
Update sigs.k8s.io/controller-runtime to v0.18.0c906252
Update dependencies to Kubernetes 1.3092c1348
Merge pull request #764 from fluxcd/dependabot/github_actions/ci-e44cfae560ccb916a
build(deps): bump the ci group with 3 updates6081556
Merge pull request #761 from fluxcd/kustomize-name-prefix-suffixabf5675
kustomize: Add support fornamePrefix
andnameSuffix
98d2522
Merge pull request #760 from fluxcd/dependabot/github_actions/ci-8f082d4f6defcd824
build(deps): bump docker/setup-buildx-action in the ci groupUpdates
github.com/fluxcd/pkg/kustomize
from 1.3.4 to 1.11.0Commits
3790516
Merge pull request #767 from fluxcd/up-internal-deps37ea30c
Update internal dependenciese32ccc2
Merge pull request #763 from fluxcd/kubernetes-1.302b974af
Update sigs.k8s.io/controller-tools to v0.15.052c1fc5
Update sigs.k8s.io/controller-runtime to v0.18.0c906252
Update dependencies to Kubernetes 1.3092c1348
Merge pull request #764 from fluxcd/dependabot/github_actions/ci-e44cfae560ccb916a
build(deps): bump the ci group with 3 updates6081556
Merge pull request #761 from fluxcd/kustomize-name-prefix-suffixabf5675
kustomize: Add support fornamePrefix
andnameSuffix
Updates
github.com/fluxcd/pkg/ssa
from 0.28.2 to 0.39.1Commits
adcfcbe
Merge pull request #769 from fluxcd/controller-runtime-v0.18.10e74a82
Update runtime pkg docsb329d92
Update dependencies to controller-runtime v0.18.1d0bf8ed
Merge pull request #768 from fluxcd/dependabot/github_actions/ci-b93eff89fb14f05d7
build(deps): bump actions/checkout from 4.1.3 to 4.1.4 in the ci group3790516
Merge pull request #767 from fluxcd/up-internal-deps37ea30c
Update internal dependenciese32ccc2
Merge pull request #763 from fluxcd/kubernetes-1.302b974af
Update sigs.k8s.io/controller-tools to v0.15.052c1fc5
Update sigs.k8s.io/controller-runtime to v0.18.0Updates
github.com/fluxcd/source-controller/api
from 1.1.0 to 1.3.0Release notes
Sourced from github.com/fluxcd/source-controller/api's releases.
... (truncated)
Changelog
Sourced from github.com/fluxcd/source-controller/api's changelog.
... (truncated)
Commits
a80a99b
Merge pull request #1472 from fluxcd/release-v1.3.070901f8
Release v1.3.005ab8b1
Add changelog entry for v1.3.0c9bf167
Merge pull request #1298 from fluxcd/phony-buildcc3d495
ci: Print controller logs after e2e run0bd5b95
Rename make targetbuild
tomanager
edccfe9
Merge pull request #1470 from fluxcd/dependabot/github_actions/ci-b23e0286c69ce2d61
build(deps): bump actions/setup-go from 5.0.0 to 5.0.1 in the ci group16eeeef
Merge pull request #1469 from fluxcd/dependabot/go_modules/go-deps-4411c5bc338598b8d
build(deps): bump google.golang.org/apiUpdates
github.com/gabriel-vasile/mimetype
from 1.4.3 to 1.4.4Release notes
Sourced from github.com/gabriel-vasile/mimetype's releases.
Commits
43192c8
Bump the github-actions group across 1 directory with 3 updates (#534)07821d3
Using io.ReadAll instead of ioutil.ReadAll (#525)9bd6023
github actions & readme: remove codecov badge (#533)ff4d3d0
improve performance for text detection (#532)bc511b8
add defaultLimit and use it when resetting back (#531)341c422
Improve x-subrip detection performance (#524)043efb9
fix benchmark files order (#518)fd7639e
ftyp: exit asap to prevent mem allocs (#517)889166d
Merge pull request #505 from gabri... _Description has been truncated_