search

openfga / cli

A cross-platform CLI to interact with an OpenFGA server
https://openfga.dev
Apache License 2.0
50 stars 26 forks source link

chore(deps): bump the dependencies group across 1 directory with 6 updates #409

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps the dependencies group with 6 updates in the / directory:

Package From To
github.com/openfga/go-sdk 0.6.0 0.6.1
github.com/openfga/language/pkg/go 0.2.0-beta.0 0.2.0-beta.2
github.com/openfga/openfga 1.6.0 1.6.2
go.uber.org/mock 0.4.0 0.5.0
google.golang.org/protobuf 1.34.2 1.35.1
github.com/schollz/progressbar/v3 3.14.6 3.16.1

Updates github.com/openfga/go-sdk from 0.6.0 to 0.6.1

Release notes

Sourced from github.com/openfga/go-sdk's releases.

v0.6.1

0.6.1 (2024-09-23)

  • refactor(OpenTelemetry): move configuration API into public package namespace (#122)
  • docs(OpenTelemetry): initial documentation and example (#123)
Changelog

Sourced from github.com/openfga/go-sdk's changelog.

v0.6.1

0.6.1 (2024-09-23)

  • refactor(OpenTelemetry): move configuration API into public package namespace (#122)
  • docs(OpenTelemetry): initial documentation and example (#123)
Commits


Updates github.com/openfga/language/pkg/go from 0.2.0-beta.0 to 0.2.0-beta.2

Release notes

Sourced from github.com/openfga/language/pkg/go's releases.

pkg/java/v0.2.0-beta.2

v0.2.0-beta.2 (2024-09-06)

Added:

  • Add getModuleForObjectTypeRelation utility method (#336)
  • Add isRelationAssignable utility method (#336)
  • Add utility validators for tuple fields and condition names (#294)

Fixed:

  • tupleuserset-not-direct is now prioritized above no-entrypoint error (#314)
  • correct based index for reported errors that was causing the wrong location to be highlighted (#331)

pkg/java/v0.2.0-beta.1

v0.2.0-beta.1 (2024-06-13)

  • Initial release

pkg/go/v0.2.0-beta.1

v0.2.0-beta.1 (2024-09-06)

Added:

  • Add GetModuleForObjectTypeRelation utility method (#336)
  • Add IsRelationAssignable utility method (#336)
  • Add utility validators for tuple fields and condition names (#294)
  • Add an initial implementation of a model graph (#307,#308,#309,#310,#316,#317,#321,#322,#330)

Note: this version does not include the validation logic that the JS and Java ports have. See issue: openfga/language#99

Commits
  • 8118aec release: js and go changelog entries (#340)
  • cd20b11 release: js and go changelog entries
  • 733d874 build: update generated code for go and js (#339)
  • 220da0e build: update generated code for js and go
  • 43e2347 ci(go): run tests on go 1.23
  • 3715b64 ci: check that generated code is updated during build
  • 7f8a568 release: release new versions of go, js and java (#338)
  • bb8a30e release: release new versions of go, js and java
  • 9a78e9b chore(deps): bump js and go dependencies (#337)
  • 9964028 chore(deps): bump js and go dependencies
  • Additional commits viewable in compare view


Updates github.com/openfga/openfga from 1.6.0 to 1.6.2

Release notes

Sourced from github.com/openfga/openfga's releases.

v1.6.2

Added

  • Improve tracing in Check API by enhancing discoverability of model ID. #1964
  • Improve tracing in all APIs by adding the store ID to the span. #1965

Changed

  • ReadChanges now supports sorting. #1976.

    This is a breaking change related to the storage interface. If you are not implementing a storage adaptor, then these changes should not impact you.

Removed

  • Removed deprecated opentelemetry-connector memory_ballast extension. #1942.
  • Removed experimental logging of cache hits for each subproblem in Check API calls. #1960.

Fixed

v1.6.1

Changed

  • Support context in assertions #1907

Added

  • Stack trace when logging panics #1904

  • Throttling metric throttled_requests_count for observing the number of throttled requests for a given throttling configuration #1863

  • New metric on number of allowed vs. non-allowed Check responses #1911

  • New datastore engine: SQLite (beta) #1615 Thanks @​DanCech!

    openfga migrate --datastore-engine sqlite --datastore-uri openfga.sqlite
openfga run --datastore-engine sqlite --datastore-uri openfga.sqlite

Fixed

  • When a request gets cancelled by a client, throw a 4xx, not a 5xx. #1905
  • Makes the pkg.logger.Logger.With immutable by creating a child logger instead of mutating the delegate one to prevent side effects 1906
  • Extend request timeout to 10s for slow tests 1926
  • Improve performance of Check API in the case that the query involves resolving a tuple to userset and/or a userset, by streaming intermediate results. #1888
Changelog

Sourced from github.com/openfga/openfga's changelog.

[1.6.2] - 2024-10-03

Full changelog

Added

  • Improve tracing in Check API by enhancing discoverability of model ID. #1964

  • Improve tracing in all APIs by adding the store ID to the span. #1965

  • Add a cache for datastore iterators on Check API. #1924.

    Can be configured via OPENFGA_CHECK_ITERATOR_CACHE_ENABLED and OPENFGA_CHECK_ITERATOR_CACHE_MAX_RESULTS.

Changed

  • ReadChanges now supports sorting. #1976.

    This is a breaking change related to the storage interface. If you are not implementing a storage adaptor, then these changes should not impact you.

Removed

  • Removed deprecated opentelemetry-connector memory_ballast extension. #1942.
  • Removed experimental logging of cache hits for each subproblem in Check API calls. #1960.

Fixed

Performance

  • Improve check performance in the case that the query involves resolving nested userset. Enable via experimental flag enable-check-optimizations. #1945

[1.6.1] - 2024-09-12

Changed

  • Support context in assertions #1907

Added

  • Support for graceful shutdown on SIGTERM signal, improving termination handling in containerized environments #1928. Thanks @​flex-seongbok @​Siddhant-K-code
  • Stack trace when logging panics #1904
  • Throttling metric throttled_requests_count for observing the number of throttled requests for a given throttling configuration #1863
  • New metric on number of allowed vs. non-allowed Check responses #1911

New datastore engine: SQLite (beta) #1615

openfga migrate --datastore-engine sqlite --datastore-uri openfga.sqlite
openfga run --datastore-engine sqlite --datastore-uri openfga.sqlite
</tr></table>

... (truncated)

Commits
  • de050b4 Update CHANGELOG.md (#1988)
  • cf0d8f9 docs(v1.6.2): add release notes to CHANGELOG (#1973)
  • 55a1f17 chore(deps): bump grpc-ecosystem/grpc-health-probe from v0.4.29 to v0.4.33 in...
  • 1a4f70a deps: bump go patch version to 1.22.7 (#1987)
  • f472215 feat: increase fast path concurrency (#1981)
  • be41383 fix: amend #1980 (#1986)
  • 4199ed2 test: add tests for combinedtuplereader.go (#1968)
  • c45c5bc fix: faster tuple validation when reading from datastore (#1984)
  • fe5eb52 chore(deps): bump the dependencies group across 1 directory with 5 updates (#...
  • 540b94c fix: backwards compatible FindLatestModel storage method (#1980)
  • Additional commits viewable in compare view


Updates go.uber.org/mock from 0.4.0 to 0.5.0

Release notes

Sourced from go.uber.org/mock's releases.

v0.5.0

0.5.0 (15 Oct 2024)

Added

  • #153[]: Add --write_command_comment flag to specify whether to include Generated by this command comment.
  • #191[]: Add --build_constraint flag to add //go:build directives to generated mocks
  • #214[]: Add gob mode to support custom package loading techniques in place of --exec_only

Changed

  • #181[]: Made mockgen faster by changing flags passed to go list.
  • #183[]: Made Cond matcher generic.
  • #204[]: Removed ISGOMOCK() from generated mocks.
  • #207[]: Deprecated reflect mode and replaced it with the new package mode.

Fixed

  • #144[]: Fix a deadlock that can happen when mocking an interface that matches fmt.Stringer.
  • #168[]: Fix an issue where the "generated by" comment was being included in the package comment of generated mocks.

#144: uber-go/mock#144 #153: uber-go/mock#153 #168: uber-go/mock#168 #181: uber-go/mock#181 #183: uber-go/mock#183 #191: uber-go/mock#191 #204: uber-go/mock#204 #207: uber-go/mock#207 #214: uber-go/mock#214

Thanks to @​tulzke @​JacobOaks @​ARR4N @​sashamelentyev @​sywhang @​fasmat @​eyasy1217 @​ghouscht @​tie @​Neo2308 @​carson-brill @​alexandear @​sodul @​nbgraham for their contributions this release.

Changelog

Sourced from go.uber.org/mock's changelog.

0.5.0 (15 Oct 2024)

Added

  • #153[]: Add --write_command_comment flag to specify whether to include Generated by this command comment.
  • #191[]: Add --build_constraint flag to add //go:build directives to generated mocks
  • #214[]: Add gob mode to support custom package loading techniques in place of --exec_only

Changed

  • #181[]: Made mockgen faster by changing flags passed to go list.
  • #183[]: Made Cond matcher generic.
  • #204[]: Removed ISGOMOCK() from generated mocks.
  • #207[]: Deprecated reflect mode and replaced it with the new package mode.

Fixed

  • #144[]: Fix a deadlock that can happen when mocking an interface that matches fmt.Stringer.
  • #168[]: Fix an issue where the "generated by" comment was being included in the package comment of generated mocks.

#144: uber-go/mock#144 #153: uber-go/mock#153 #168: uber-go/mock#168 #181: uber-go/mock#181 #183: uber-go/mock#183 #191: uber-go/mock#191 #204: uber-go/mock#204 #207: uber-go/mock#207 #214: uber-go/mock#214

Thanks to @​tulzke @​JacobOaks @​ARR4N @​sashamelentyev @​sywhang @​fasmat @​eyasy1217 @​ghouscht @​tie @​Neo2308 @​carson-brill @​alexandear @​sodul @​nbgraham for their contributions this release.

Commits
  • a9c44d9 Release v0.5.0 (#213)
  • d164a16 Add gob mode to support custom package loading techniques in place of `--exec...
  • d01ed30 deprecated reflect mode has been replaced with package mode (#207)
  • 6d5eb71 Regenerate generated mocks (#206)
  • 8adc9de feat: mockgen flag --build_constraint to add //go:build directives (#191)
  • c50d83c Support Go 1.22 and Go 1.23 (#203)
  • 33ccc99 Avoid stringer-related deadlocks without adding ISGOMOCK (#204)
  • 60372e3 chore: gofumpt -w . (#202)
  • 70a5e8c Clarify documentation on Finish (#194)
  • ec32d99 Bump goreleaser/goreleaser-action from 4 to 6 (#182)
  • Additional commits viewable in compare view


Updates google.golang.org/protobuf from 1.34.2 to 1.35.1

Updates github.com/schollz/progressbar/v3 from 3.14.6 to 3.16.1

Release notes

Sourced from github.com/schollz/progressbar/v3's releases.

v3.16.1

What's Changed

Full Changelog: https://github.com/schollz/progressbar/compare/v3.16.0...v3.16.1

v3.16.0

What's Changed

Full Changelog: https://github.com/schollz/progressbar/compare/v3.15.0...v3.16.0

v3.15.0

What's Changed

New Contributors

Full Changelog: https://github.com/schollz/progressbar/compare/v3.14.6...v3.15.0

Commits
  • a10b636 add another theme
  • 787de03 add ascii theme from #203
  • 0e8db3d Merge pull request #204 from janpfeifer/main
  • e026913 Expanded Theme tests, and covered new BarStartFilled and BarEndFilled.
  • d1e3b99 Added BarStartFilled and BarEndFilled fields to Theme struct.
  • 06775f1 Merge pull request #201 from babiel/go-mod-tidy
  • 7b730f8 Merge pull request #202 from babiel/data-races
  • d5971f1 style: go mod tidy
  • 2d34dad fix: enable race detector for test and fix all detected races
  • f1b3580 Merge pull request #199 from chengxilo/update-spinner
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
stacklok-cloud[bot] commented 1 month ago

Minder Vulnerability Report ✅

Minder analyzed this PR and found it does not add any new vulnerable dependencies.

Vulnerability scan of 7b1c1ba2:

  • 🐞 vulnerable packages: 0
  • 🛠 fixes available for: 0
dependabot[bot] commented 1 month ago

Superseded by #412.