search

paketo-buildpacks / npm-install

A Cloud Native Buildpack for npm
Apache License 2.0
10 stars 17 forks source link

Bump the go-modules group with 6 updates #583

Closed dependabot[bot] closed 11 months ago

dependabot[bot] commented 11 months ago

Bumps the go-modules group with 6 updates:

Package From To
github.com/containerd/containerd 1.7.9 1.7.10
github.com/go-git/go-git/v5 5.10.0 5.10.1
github.com/google/go-containerregistry 0.16.1 0.17.0
github.com/spf13/afero 1.10.0 1.11.0
github.com/spf13/cast 1.5.1 1.6.0
golang.org/x/tools 0.15.0 0.16.0

Updates github.com/containerd/containerd from 1.7.9 to 1.7.10

Release notes

Sourced from github.com/containerd/containerd's releases.

containerd 1.7.10

Welcome to the v1.7.10 release of containerd!

The tenth patch release for containerd 1.7 contains various fixes and updates.

Notable Updates

  • Enhance container image unpack client logs (#9379)
  • cri: fix using the pinned label to pin image (#9381)
  • fix: ImagePull should close http connection if there is no available data to read. (#9409)

See the changelog for complete list of changes

Please try out the release binaries and report any issues at https://github.com/containerd/containerd/issues.

Contributors

  • Wei Fu
  • Iceber Gu
  • Austin Vazquez
  • Derek McGowan
  • Phil Estes
  • Samuel Karp
  • ruiwen-zhao

Changes

  • Add release notes for v1.7.10 (#9426)
  • [release/1.7] fix: ImagePull should close http connection if there is no available data to read. (#9409)
    • 206806128 remotes/docker: close connection if no more data
    • 328493962 integration: reproduce #9347
    • d1aab27cb fix: deflake TestCRIImagePullTimeout/HoldingContentOpenWriter
  • [release/1.7] cri: fix using the pinned label to pin image (#9381)
    • a2b16d7f9 cri: fix update of pinned label for images
    • 8dc861844 cri: fix using the pinned label to pin image
  • [release/1.7] Enhance container image unpack client logs (#9379)
    • 5930a3750 Enhance container image unpack client logs

Dependency Changes

This release has no dependency changes

Previous release can be found at v1.7.9

Commits
  • 4e1fe74 Merge pull request #9426 from ruiwen-zhao/1.7.10
  • a995fe3 Add release notes for v1.7.10
  • 21b85e9 Merge pull request #9409 from ruiwen-zhao/progress-fix-1.7
  • 2068061 remotes/docker: close connection if no more data
  • 3284939 integration: reproduce #9347
  • d1aab27 fix: deflake TestCRIImagePullTimeout/HoldingContentOpenWriter
  • b1c6f01 Merge pull request #9381 from Iceber/fix_pin_image_1.7
  • bb0e42a Merge pull request #9379 from austinvazquez/cherry-pick-v1.7-01c442147fd084cc...
  • a2b16d7 cri: fix update of pinned label for images
  • 8dc8618 cri: fix using the pinned label to pin image
  • Additional commits viewable in compare view


Updates github.com/go-git/go-git/v5 from 5.10.0 to 5.10.1

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.10.1

What's Changed

New Contributors

Full Changelog: https://github.com/go-git/go-git/compare/v5.10.0...v5.10.1

Commits
  • 90348bd Merge pull request #936 from aymanbagabas/more-packp
  • f46d04a plumbing: transport: use git-proto-request and decode error-line errors
  • e2c6ae3 plumbing: handle pktline erro-line as errors
  • e187533 plumbing: add git-proto-request type
  • fecea41 Merge pull request #930 from steiler/fixSockets
  • 5349b8a utils: merkletrie, Skip loading sockets as filesystem nodes. Fixes #312
  • c114af0 Merge pull request #752 from pjbgf/rt1
  • 2e14e3a plumbing: transport/git, Improve tests error message
  • 6d62dd1 Merge pull request #932 from aymanbagabas/fix-empty
  • 05551b7 plumbing: fix empty uploadpack request error
  • Additional commits viewable in compare view


Updates github.com/google/go-containerregistry from 0.16.1 to 0.17.0

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.17.0

What's Changed

Full Changelog: https://github.com/google/go-containerregistry/compare/v0.16.1...v0.17.0

Commits


Updates github.com/spf13/afero from 1.10.0 to 1.11.0

Release notes

Sourced from github.com/spf13/afero's releases.

v1.11.0

What's Changed

Full Changelog: https://github.com/spf13/afero/compare/v1.10.0...v1.11.0

Commits
  • 5c4385a github: Bump GitHub actions versions
  • eb6bef0 github: Format workflow file
  • 2fd19a1 github: Add permissions to workflow
  • 2a63c9c deps: Update all direct dependencies
  • c419971 github: Update Go versions
  • See full diff in compare view


Updates github.com/spf13/cast from 1.5.1 to 1.6.0

Release notes

Sourced from github.com/spf13/cast's releases.

v1.6.0

What's Changed

Full Changelog: https://github.com/spf13/cast/compare/v1.5.1...v1.6.0

Commits
  • 48ddde5 Bump Go version in go.mod to 1.19
  • b09a6f8 deps: update to github.com/frankban/quicktest v1.14.6
  • 268227c github: Replace the test workflow with the one used in Afero
  • e9ba3ce Merge pull request #190 from spf13/updates
  • 9d37e3a ci: fix dependabot config
  • a441ac7 ci: pin actions versions, fix checkout order
  • 9c5e91d docs: update badges
  • c49a664 ci: rename ci.yml to ci.yaml
  • 0b4af69 Merge pull request #185 from spf13/dependabot/go_modules/github.com/frankban/...
  • 235f028 Merge pull request #180 from spf13/dependabot/github_actions/actions/setup-go-4
  • Additional commits viewable in compare view


Updates golang.org/x/tools from 0.15.0 to 0.16.0

Commits
  • a9ef4cf go.mod: update golang.org/x dependencies
  • d9b9452 gopls/internal/lsp/cache: move quick-fix bundling logic to the cache pkg
  • 1733061 go/analysis/passes/testinggoroutine: report by enclosing regions
  • b19be0f gopls/internal/cmd/help_test.go: document
  • daa4aa5 gopls/internal/lsp/source: stubmethods: fix out-of-bounds index
  • a586d0d go/types/internal/play: show more types.Scope detail
  • 53ad329 gopls/internal/lsp/source: move edit logic into the protocol package
  • 3c677e3 gopls/internal/lsp/cache: move SuggestedFixFromCommand into cache
  • ab6af7d gopls/internal/lsp/source: extract InDir to a new pathutil package
  • e7d61d9 gopls/internal/lsp/cache: simplify named error values
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions