search

openfga / cli

A cross-platform CLI to interact with an OpenFGA server
https://openfga.dev
Apache License 2.0
50 stars 25 forks source link

chore(deps): bump github.com/openfga/language/pkg/go from 0.2.0-beta.0 to 0.2.0-beta.2 in the dependencies group across 1 directory #393

Closed dependabot[bot] closed 2 months ago

dependabot[bot] commented 2 months ago

Bumps the dependencies group with 1 update in the / directory: github.com/openfga/language/pkg/go.

Updates github.com/openfga/language/pkg/go from 0.2.0-beta.0 to 0.2.0-beta.2

Release notes

Sourced from github.com/openfga/language/pkg/go's releases.

pkg/java/v0.2.0-beta.2

v0.2.0-beta.2 (2024-09-06)

Added:

  • Add getModuleForObjectTypeRelation utility method (#336)
  • Add isRelationAssignable utility method (#336)
  • Add utility validators for tuple fields and condition names (#294)

Fixed:

  • tupleuserset-not-direct is now prioritized above no-entrypoint error (#314)
  • correct based index for reported errors that was causing the wrong location to be highlighted (#331)

pkg/java/v0.2.0-beta.1

v0.2.0-beta.1 (2024-06-13)

  • Initial release

pkg/go/v0.2.0-beta.1

v0.2.0-beta.1 (2024-09-06)

Added:

  • Add GetModuleForObjectTypeRelation utility method (#336)
  • Add IsRelationAssignable utility method (#336)
  • Add utility validators for tuple fields and condition names (#294)
  • Add an initial implementation of a model graph (#307,#308,#309,#310,#316,#317,#321,#322,#330)

Note: this version does not include the validation logic that the JS and Java ports have. See issue: openfga/language#99

Commits
  • 8118aec release: js and go changelog entries (#340)
  • cd20b11 release: js and go changelog entries
  • 733d874 build: update generated code for go and js (#339)
  • 220da0e build: update generated code for js and go
  • 43e2347 ci(go): run tests on go 1.23
  • 3715b64 ci: check that generated code is updated during build
  • 7f8a568 release: release new versions of go, js and java (#338)
  • bb8a30e release: release new versions of go, js and java
  • 9a78e9b chore(deps): bump js and go dependencies (#337)
  • 9964028 chore(deps): bump js and go dependencies
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
stacklok-cloud[bot] commented 2 months ago

Minder Vulnerability Report ✅

Minder analyzed this PR and found it does not add any new vulnerable dependencies.

Vulnerability scan of a24d712a:

  • 🐞 vulnerable packages: 0
  • 🛠 fixes available for: 0
ewanharris commented 2 months ago

Because of the update to the openfga/api/proto dependency this is dependent on also updating openfga due to the work in this PR. Given that the released work in language isn't needed in CLI right now I propose we hold off on updating til an openfga release is out.

dependabot[bot] commented 2 months ago

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml