ossf / scorecard

OpenSSF Scorecard - Security health metrics for Open Source
https://scorecard.dev
Apache License 2.0
4.62k stars 503 forks source link

:seedling: Bump github.com/goreleaser/goreleaser/v2 from 2.1.0 to 2.3.2 in /tools #4361

Closed dependabot[bot] closed 2 months ago

dependabot[bot] commented 2 months ago

Bumps github.com/goreleaser/goreleaser/v2 from 2.1.0 to 2.3.2.

Release notes

Sourced from github.com/goreleaser/goreleaser/v2's releases.

v2.3.2

Changelog

Bug fixes

  • e8c2ef77358b4b1e59b904322824ccbfa3487ab2: fix: upx UnknownExecutableFormatException (@​caarlos0)

Dependency updates

  • 7d1063f07d80b1fe0aaa287d480c08fa17339c66: chore(deps): bump github/codeql-action from 3.26.6 to 3.26.7 (#5140) (@​dependabot[bot])
  • 527485c58f8e2c8620030db861eb84194e7a55a6: chore(deps): update go-github to v65 (@​caarlos0)

Other work

  • ff84a3d703f3075da6c017cda5d6122da2bcd1bb: chore: auto-update generated files (@​actions-user)

Full Changelog: https://github.com/goreleaser/goreleaser/compare/v2.3.1...v2.3.2

Helping out

This release is only possible thanks to all the support of some awesome people!

Want to be one of them? You can sponsor, get a Pro License or contribute with code.

Where to go next?

v2.3.1

Changelog

Bug fixes

  • c7e50380776d042cf5affdb9e673bd9b3e7862d0: fix: jsonschema (@​caarlos0)

Dependency updates

  • c16bd531422325846d4c4f546d68dff4374e963a: chore(deps): bump cachix/install-nix-action from V27 to 28 (#5135) (@​dependabot[bot])

Documentation updates

  • 46b3d88ae5c148d8f48896f4dd88a473b52e6cfa: docs: Add GH Actions OIDC permission docs (#5137) (@​caffeine-addictt)
  • 586ce73ddbdd9cbd25f81fe0b2da5f30f04356df: docs: announce v2.3 (#5134) (@​caarlos0)
  • 3149a36750b18630ecd5d27e486bd23ddd91136c: docs: update schema (@​caarlos0)

Other work

  • 34974df0c6627a57f2f8fd37aaed75d87a7186cc: chore: auto-update generated files (@​actions-user)

Full Changelog: https://github.com/goreleaser/goreleaser/compare/v2.3.0...v2.3.1

Helping out

This release is only possible thanks to all the support of some awesome people!

Want to be one of them? You can sponsor, get a Pro License or contribute with code.

... (truncated)

Commits
  • e8c2ef7 fix: upx UnknownExecutableFormatException
  • 527485c chore(deps): update go-github to v65
  • 7d1063f chore(deps): bump github/codeql-action from 3.26.6 to 3.26.7 (#5140)
  • ff84a3d chore: auto-update generated files
  • c16bd53 chore(deps): bump cachix/install-nix-action from V27 to 28 (#5135)
  • 46b3d88 docs: Add GH Actions OIDC permission docs (#5137)
  • 586ce73 docs: announce v2.3 (#5134)
  • 3149a36 docs: update schema
  • 9f48583 Merge remote-tracking branch 'origin/main'
  • c7e5038 fix: jsonschema
  • Additional commits viewable in compare view


Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)