roboll / helmfile

Deploy Kubernetes Helm Charts
MIT License
4.05k stars 565 forks source link

Bump github.com/hashicorp/go-getter from 1.5.9 to 1.5.11 #2139

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps github.com/hashicorp/go-getter from 1.5.9 to 1.5.11.

Release notes

Sourced from github.com/hashicorp/go-getter's releases.

v1.5.11

What's Changed

New Contributors

Full Changelog: https://github.com/hashicorp/go-getter/compare/v1.5.10...v1.5.11

v1.5.10

  • When fetching files from Google Cloud Storage, go-getter will now consider the GOOGLE_OAUTH_ACCESS_TOKEN environment variable as a potential source of a Google Cloud Platform access token. (#302)
  • Fixed a regression from v1.5.9 where git:: sources would no longer accept direct commit ids in the optional ref argument, and would instead only allow named refs from the remote. As a compromise, go-getter will now accept for ref anything that git checkout would accept as a valid tree selector, unless you also set depth to activate shallow clone mode in which case ref must be a named ref due to requirements of the Git protocol in that case. (#345)
Commits
  • b1336de Merge pull request #349 from hashicorp/b-gcs-test
  • ca38515 gcs: only run oauth test if env var is set
  • f5cbbb4 Merge pull request #348 from macedogm/sshkey-redact
  • 17af21e Redact SSH key from URL query parameter
  • 36b68b2 Redact SSH key from URL query parameter
  • 23702d0 GitGetter: Re-allow ref=COMMIT_ID
  • 64f1c03 Feature Request: Add GOOGLE_OAUTH_ACCESS_TOKEN support for modules hosted on ...
  • 817ea41 Merge pull request #340 from hashicorp/signore-dont-write-secrets-to-disk
  • 9b47726 release.yml: stop writing signore secrets to disk
  • See full diff in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/roboll/helmfile/network/alerts).
dependabot[bot] commented 2 years ago

Superseded by #2145.