search

opensbom-generator / parsers

Language and ecosystem parsers
Apache License 2.0
6 stars 10 forks source link

chore(deps): bump sigs.k8s.io/release-utils from 0.7.4 to 0.7.7 #82

Closed dependabot[bot] closed 5 months ago

dependabot[bot] commented 9 months ago

Bumps sigs.k8s.io/release-utils from 0.7.4 to 0.7.7.

Release notes

Sourced from sigs.k8s.io/release-utils's releases.

v0.7.7

What's Changed

Full Changelog: https://github.com/kubernetes-sigs/release-utils/compare/v0.7.6...v0.7.7

v0.7.6

Changes by Kind

Feature

  • Bump golangci-lint to 1.55.1 and ko to 0.15.0 (#94, @​cpanato) [SIG Release]
  • Set minimum go version to 1.20
    • bump cosign to v2.2.0
    • bump golangci-lint to v1.54.2 (#93, @​cpanato) [SIG Release]

Dependencies

Added

Nothing has changed.

Changed

Nothing has changed.

Removed

Nothing has changed.

Full Changelog: https://github.com/kubernetes-sigs/release-utils/compare/v0.7.5...v0.7.6

v0.7.5

Changes by Kind

Feature

  • Add CompressWithoutPreservingPath function to the tar package (#83, @​xmudrii) [SIG Release]
  • Set minimum go version to 1.20
    • bump cosign to v2.2.0
    • bump golangci-lint to v1.54.2 (#93, @​cpanato) [SIG Release]

Bug or Regression

  • Tar.Extract: ignore error if directory exists (#84, @​xmudrii) [SIG Release]

Other (Cleanup or Flake)

  • Fixed GenerateLDFlags for macos to not rely on GNU date any more. (#91, @​saschagrunert) [SIG Release]

... (truncated)

Commits
  • 441a2c4 Merge pull request #97 from cpanato/updates
  • f52143e bump golangci-lint to v1.55.2
  • d2a7c92 update zeitgeist to v0.4.3
  • bf65fd3 Merge pull request #95 from kubernetes-sigs/dependabot/go_modules/github.com/...
  • aaa7d2a build(deps): bump github.com/spf13/cobra from 1.7.0 to 1.8.0
  • 05e0f47 Merge pull request #94 from cpanato/updates
  • ec79463 update verifygomod mage function
  • 0a94973 update/fix lints
  • 8ff3680 update golangci-lint
  • abe1ffc bump ko to 0.15.0
  • Additional commits viewable in compare view


Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

dependabot[bot] commented 5 months ago

Superseded by #91.