search

ossf / scorecard

OpenSSF Scorecard - Security health metrics for Open Source
https://scorecard.dev
Apache License 2.0
4.25k stars 460 forks source link

:seedling: Bump github.com/goreleaser/goreleaser from 1.26.1 to 1.26.2 in /tools #4122

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps github.com/goreleaser/goreleaser from 1.26.1 to 1.26.2.

Release notes

Sourced from github.com/goreleaser/goreleaser's releases.

v1.26.2

Changelog

Bug fixes

  • b3d646069937d74c04623a4979c2e429b55a7439: fix(docs): version typo (#4878) (@​nullswan)

Dependency updates

  • 73a22e56dd7577034fa2d3769862f9154532c661: chore(deps): bump actions/checkout from 4.1.5 to 4.1.6 (#4876) (@​dependabot[bot])
  • 1c66ce40d063ea13b66a4df20fbc1d734a9a232c: chore(deps): bump anchore/sbom-action from 0.15.11 to 0.16.0 (#4881) (@​dependabot[bot])
  • 39d1f446f52bc5764db4c89bcbf5d6ef70b62575: chore(deps): bump cachix/install-nix-action from 26 to 27 (#4874) (@​dependabot[bot])
  • 1d49b225c67d38008d44f3320ba0597e7bc83ce5: chore(deps): bump codecov/codecov-action from 4.4.0 to 4.4.1 (#4882) (@​dependabot[bot])
  • fae464e2783c11958733929f1cd871db34aaf2e3: chore(deps): bump github.com/caarlos0/env/v11 from 11.0.0 to 11.0.1 (#4888) (@​dependabot[bot])
  • de796eb4e5ac03eef993300861803de792799080: chore(deps): bump github.com/google/ko from 0.15.2 to 0.15.4 (#4885) (@​dependabot[bot])
  • b4d768bf16160766cc04a5a5fcc288fd81de8c72: chore(deps): bump github.com/mattn/go-mastodon from 0.0.6 to 0.0.8 (#4872) (@​dependabot[bot])
  • a82491afe446295c8756a2c5f46950a11d717aa0: chore(deps): bump github.com/slack-go/slack from 0.12.5 to 0.13.0 (#4871) (@​dependabot[bot])
  • cf2c47a5895da1b0ce0de3620e8a8953d380b905: chore(deps): bump github/codeql-action from 2.13.4 to 3.25.5 (#4880) (@​dependabot[bot])
  • 79caa9c28a394f1949ef2a82d9aa7252c1758ee9: chore(deps): bump github/codeql-action from 3.25.5 to 3.25.6 (#4883) (@​dependabot[bot])
  • b534f07d5b2191e314862d94fccc8ce93a3461d5: chore(deps): bump golang from c24516e to f1fe698 (#4873) (@​dependabot[bot])
  • d7c23c168fa61d738cd6fba03a645071e174bba5: chore(deps): bump golang from f1fe698 to b8ded51 (#4887) (@​dependabot[bot])

Documentation updates

  • 2023d4bcc6891b28b56a0c7b5b7481c4a0d68023: docs: fix winget default path (#4875) (@​lionello)

Build process updates

  • f4cd8fc1561e288ce198c60105c8277fcc24de03: build: fix changelog not showing dependencies updates (@​caarlos0)

Other work

  • 919b132e0de38ac253fe83f7b92560f1d95cda32: chore: auto-update generated files (@​actions-user)

Full Changelog: https://github.com/goreleaser/goreleaser/compare/v1.26.1...v1.26.2

Helping out

This release is only possible thanks to all the support of some awesome people!

Want to be one of them? You can sponsor, get a Pro License or contribute with code.

Where to go next?

Commits
  • d7c23c1 chore(deps): bump golang from f1fe698 to b8ded51 (#4887)
  • fae464e chore(deps): bump github.com/caarlos0/env/v11 from 11.0.0 to 11.0.1 (#4888)
  • f4cd8fc build: fix changelog not showing dependencies updates
  • de796eb chore(deps): bump github.com/google/ko from 0.15.2 to 0.15.4 (#4885)
  • 1c66ce4 chore(deps): bump anchore/sbom-action from 0.15.11 to 0.16.0 (#4881)
  • 1d49b22 chore(deps): bump codecov/codecov-action from 4.4.0 to 4.4.1 (#4882)
  • 79caa9c chore(deps): bump github/codeql-action from 3.25.5 to 3.25.6 (#4883)
  • cf2c47a chore(deps): bump github/codeql-action from 2.13.4 to 3.25.5 (#4880)
  • b3d6460 fix(docs): version typo (#4878)
  • 73a22e5 chore(deps): bump actions/checkout from 4.1.5 to 4.1.6 (#4876)
  • Additional commits viewable in compare view


Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
codecov[bot] commented 1 month ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Project coverage is 66.11%. Comparing base (02f72e0) to head (33b2766). Report is 1 commits behind head on main.

Additional details and impacted files ```diff @@ Coverage Diff @@ ## main #4122 +/- ## ======================================= Coverage 66.11% 66.11% ======================================= Files 232 232 Lines 16567 16567 ======================================= Hits 10954 10954 Misses 4925 4925 Partials 688 688 ```