Closed dependabot[bot] closed 2 months ago
VIOLATION DESCRIPTION | NUMBER OF VIOLATIONS |
---|---|
HIGH/CRITICAL SECURITY VULNERABILITIES | 0 |
MAJOR UPDATES AVAILABLE | 0 |
LICENSE REQUIRES REVIEW | 4 |
HIGH RISK LICENSES | 9 |
RESTRICTIED LICENSE FOR ON-PREMISE DELIVERY | 0 |
Integration Tests for edaf5ea83b12bc43788a766fdb0294dec66f3b9d run with result: Success ✅!
Integration Tests for 84b9231805d321cdb805cc5b5ade82af3b72a47a run with result: Success ✅!
Integration Tests for 0c499cf271c21bca7fe2c7a1c1982d2038e07edb run with result: Success ✅!
Bumps the go group with 11 updates:
1.27.15
1.27.16
1.17.15
1.17.16
1.16.20
1.16.21
1.28.2
1.28.3
1.54.2
1.54.3
5.30.1
5.31.0
1.4.1
1.4.2
2.17.3
2.19.0
0.0.0-20240222234643-814bf88cf225
0.0.0-20240506185415-9bf2ced13842
3.15.0
3.15.1
0.18.2
0.18.3
Updates
github.com/aws/aws-sdk-go-v2/config
from 1.27.15 to 1.27.16Commits
8abec4c
Release 2024-05-2370e7095
Regenerated Clients0b2a340
Update partitions filec1eb2d9
Update endpoints model4c990d1
Update API modelc6c1626
s3: handle unrecognized values for Expires in responses (#2653)8209abb
Release 2024-05-2281ad168
Regenerated Clients5c92ae7
Update endpoints model6eeecd9
Update API modelUpdates
github.com/aws/aws-sdk-go-v2/credentials
from 1.17.15 to 1.17.16Commits
8abec4c
Release 2024-05-2370e7095
Regenerated Clients0b2a340
Update partitions filec1eb2d9
Update endpoints model4c990d1
Update API modelc6c1626
s3: handle unrecognized values for Expires in responses (#2653)8209abb
Release 2024-05-2281ad168
Regenerated Clients5c92ae7
Update endpoints model6eeecd9
Update API modelUpdates
github.com/aws/aws-sdk-go-v2/feature/s3/manager
from 1.16.20 to 1.16.21Commits
b08ae84
Release 2022-10-033176b00
Regenerated Clients4e7fe92
Update endpoints model8485699
Update API model9fa3861
Release 2022-09-30411f0f4
Regenerated Clients9279164
Update endpoints model000f6ac
Update API modele4f0cba
Release 2022-09-29bcf7080
Regenerated ClientsUpdates
github.com/aws/aws-sdk-go-v2/service/ecr
from 1.28.2 to 1.28.3Commits
Updates
github.com/aws/aws-sdk-go-v2/service/s3
from 1.54.2 to 1.54.3Commits
8abec4c
Release 2024-05-2370e7095
Regenerated Clients0b2a340
Update partitions filec1eb2d9
Update endpoints model4c990d1
Update API modelc6c1626
s3: handle unrecognized values for Expires in responses (#2653)8209abb
Release 2024-05-2281ad168
Regenerated Clients5c92ae7
Update endpoints model6eeecd9
Update API modelUpdates
github.com/containers/image/v5
from 5.30.1 to 5.31.0Release notes
Sourced from github.com/containers/image/v5's releases.
... (truncated)
Commits
b5a7587
Bump c/image to v5.31.021ac79b
Merge pull request #2428 from mtrmac/als-toc-fixes45f4f23
Don't completely ignore already-computed image size if we see an ALS layer27516f3
Don't modify a storage.Layer returned by c/storagec2327e4
Don't unnecessarily trust the ALS FUSE server about the TOC digestdb02dee
Merge pull request #2426 from containers/renovate/github.com-containers-stora...6db27e1
fix(deps): update module github.com/containers/storage to v1.54.0cf26b3c
Merge pull request #2416 from ktock/store-tocdigest-id52101a0
getSize: allow unknown uncompressed sizeebbd025
Enable to pass TOCDigest to Additional Layer StoreUpdates
github.com/go-logr/logr
from 1.4.1 to 1.4.2Release notes
Sourced from github.com/go-logr/logr's releases.
Commits
1205f42
Merge pull request #295 from go-logr/dependabot/github_actions/actions/checko...ccedcbd
Merge pull request #294 from go-logr/dependabot/github_actions/github/codeql-...bead577
build(deps): bump actions/checkout from 4.1.5 to 4.1.6a492d95
build(deps): bump github/codeql-action from 3.25.4 to 3.25.519ad07c
build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.31c97a21
build(deps): bump actions/checkout from 4.1.4 to 4.1.5f70c5b5
build(deps): bump github/codeql-action from 3.25.3 to 3.25.44ade8d3
build(deps): bump golangci/golangci-lint-action from 5.3.0 to 6.0.188d98bd
Merge pull request #289 from go-logr/dependabot/github_actions/golangci/golan...432cd86
Merge pull request #288 from go-logr/dependabot/github_actions/actions/setup-...Updates
github.com/onsi/ginkgo/v2
from 2.17.3 to 2.19.0Release notes
Sourced from github.com/onsi/ginkgo/v2's releases.
Changelog
Sourced from github.com/onsi/ginkgo/v2's changelog.
Commits
28fb5d6
v2.19.0e31f03a
fix another typo966a28c
Fix typos in label sets docscd231fd
Label sets allow for more expressive label filteringeb27ca8
v2.18.0f010b65
Add --slience-skips and --force-newlines42013d6
Fix table entry context edge case9e234ea
always rebuild and run ginkgo in makefile5ce8355
add --fail-on-empty to recommended CI flags in docs3ffbf8b
add makefileUpdates
golang.org/x/exp
from 0.0.0-20240222234643-814bf88cf225 to 0.0.0-20240506185415-9bf2ced13842Commits
Updates
helm.sh/helm/v3
from 3.15.0 to 3.15.1Release notes
Sourced from helm.sh/helm/v3's releases.
Commits
e211f2a
Fixing build issue where wrong version is usedUpdates
sigs.k8s.io/controller-runtime
from 0.18.2 to 0.18.3Release notes
Sourced from sigs.k8s.io/controller-runtime's releases.
Commits
be2f383
Merge pull request #2840 from sbueringer/pr-bump-k8s4720d17
Bump k8s.io/* to v0.30.1aa9ed14
Merge pull request #2837 from sbueringer/pr-setup-envtest-ct-rel-0.1835d7bbd
default --use-deprecated-gcs to truece4e4f5
some more deprecations56dcc14
setup-envtest: allow downloading envtest binaries from controller-toolsDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show