Closed dependabot[bot] closed 4 months ago
Name | Link |
---|---|
Latest commit | 7c2883412b5a3fb328886db31126308458727687 |
Latest deploy log | https://app.netlify.com/sites/odo-docusaurus-preview/deploys/65c6adcf9b5aff0008bba33f |
Hi @dependabot[bot]. Thanks for your PR.
I'm waiting for a redhat-developer member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test
on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.
Once the patch is verified, the new status will be reflected by the ok-to-test
label.
I understand the commands that are listed here.
@dependabot rebase
Issues
0 New issues
Measures
0 Security Hotspots
No data about Coverage
No data about Duplication
Bumps the go_modules group with 3 updates in the /. directory: github.com/cloudflare/circl, github.com/moby/buildkit and golang.org/x/net. Bumps the go_modules group with 2 updates in the /.ibm/tools/tests-results directory: golang.org/x/crypto and golang.org/x/net.
Updates
github.com/cloudflare/circl
from 1.3.3 to 1.3.7Release notes
Sourced from github.com/cloudflare/circl's releases.
Commits
c48866b
Releasing CIRCL v1.3.775ef91e
kyber: remove division by q in ciphertext compression899732a
build(deps): bump golang.org/x/crypto99f0f71
Releasing CIRCL v1.3.6e728d0d
Apply thibmeu code review suggestionsceb2d90
Updating blindrsa to be compliant with RFC9474.44133f7
spelling: trippedc2076d6
spelling: transposesdad2166
spelling: title171c418
spelling: thresholdUpdates
github.com/moby/buildkit
from 0.11.6 to 0.12.5Release notes
Sourced from github.com/moby/buildkit's releases.
... (truncated)
Commits
bac3f2b
update runc to v1.1.12f781267
exec: add extra validation for submount sourcesd089e0b
oci: fix error handling on submount calls00fe637
executor: recheck mount stub path within root after container run92cc595
llbsolver: make sure interactive container API validates entitlements5026d95
gateway: pass executor with build and not access worker directly7718bd5
pb: add extra validation to protobuf typese1924dc
sourcepolicy: add validations for nil values96663dd
exporter: add validation for platforms key value481d9c4
exporter: add validation for invalid platormUpdates
golang.org/x/crypto
from 0.16.0 to 0.17.0Commits
9d2ee97
ssh: implement strict KEX protocol changes4e5a261
ssh: close net.Conn on all NewServerConn errors152cdb1
x509roots/fallback: update bundlefdfe1f8
ssh: defer channel window adjustmentb8ffc16
blake2b: drop Go 1.6, Go 1.8 compatibility7e6fbd8
ssh: wrap errors from client handshakebda2f3f
argon2: avoid clobbering BP325b735
ssh/test: skip TestSSHCLIAuth on Windows1eadac5
go.mod: update golang.org/x dependenciesb2d7c26
ssh: add (*Client).DialContext methodUpdates
golang.org/x/net
from 0.19.0 to 0.21.0Commits
73d21fd
go.mod: update golang.org/x dependencies643fd16
html: fix SOLIDUS '/' handling in attribute parsing73e4b50
dns/dnsmessage: allow name compression for SRV resource parsingb2208d0
internal/quic/qlog: fix typo0d0b98c
http2: avoid goroutine starvation in TestServer_Push_RejectAfterGoAway07e05fd
http2: remove suspicious uint32->v conversion in frame code26b646e
quic: avoid deadlock in Endpoint.Closecb5b10f
go.mod: update golang.org/x dependencies689bbc7
quic: deflake TestStreamsCreateConcurrencyf12db26
internal/quic/cmd/interop: use wget --no-verbose in DockerfileUpdates
golang.org/x/crypto
from 0.9.0 to 0.17.0Commits
9d2ee97
ssh: implement strict KEX protocol changes4e5a261
ssh: close net.Conn on all NewServerConn errors152cdb1
x509roots/fallback: update bundlefdfe1f8
ssh: defer channel window adjustmentb8ffc16
blake2b: drop Go 1.6, Go 1.8 compatibility7e6fbd8
ssh: wrap errors from client handshakebda2f3f
argon2: avoid clobbering BP325b735
ssh/test: skip TestSSHCLIAuth on Windows1eadac5
go.mod: update golang.org/x dependenciesb2d7c26
ssh: add (*Client).DialContext methodUpdates
golang.org/x/net
from 0.10.0 to 0.17.0Commits
73d21fd
go.mod: update golang.org/x dependencies643fd16
html: fix SOLIDUS '/' handling in attribute parsing73e4b50
dns/dnsmessage: allow name compression for SRV resource parsingb2208d0
internal/quic/qlog: fix typo0d0b98c
http2: avoid goroutine starvation in TestServer_Push_RejectAfterGoAway07e05fd
http2: remove suspicious uint32->v conversion in frame code26b646e
quic: avoid deadlock in Endpoint.Closecb5b10f
go.mod: update golang.org/x dependencies689bbc7
quic: deflake TestStreamsCreateConcurrencyf12db26
internal/quic/cmd/interop: use wget --no-verbose in DockerfileDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show