search

splunk / vault-plugin-secrets-artifactory

vault plugin for artifactory
Apache License 2.0
10 stars 5 forks source link

Bump github.com/jfrog/jfrog-client-go from 0.27.0 to 1.11.0 #40

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps github.com/jfrog/jfrog-client-go from 0.27.0 to 1.11.0.

Release notes

Sourced from github.com/jfrog/jfrog-client-go's releases.

v1.11.0

  • Emojis added to log messages
  • Static code analysis badge added to README
  • Support IncludePathPrefixPattern param in the replication API
  • Bug fix - Missing close call in Go publish

v1.10.0

  • Add capability to specify proxy for repository replications
  • Move npm dependencies checksum calculation to build-info-go
  • Change log level for missing LATEST build in Artifactory

v1.9.0

  • Support for managing project groups

v1.8.1

  • Bug fix - "nil pointer dereference" on http/httpclient/client.go:659

v1.8.0

  • Allow adding timestamps to the log messages
  • When uploading using the 'archive' option, you now can control the target path inside the uploaded archive using placeholders.
  • Minot logging improvement for the retry-executor
  • New 'servicesManager.IsRepoExists()' API
  • Bug fix - Avoid creating a redundant build-info module in some scenarios
  • Bug fix - When searching or downloading from Artifactory with the transitive setting, validate that only one repository is requested, since only one repository search is supported with transitive
  • Bug fix - When walking the file tree during an upload, the same file might be visited more than once, but a dir symlink should not be visited more than once.

v1.7.1

  • Bug fix - The CVSS' type in Xray reports was changed to float64 to match the response from Xray.

v1.7.0

  • New retryWaitMilliSecs option, allowing to wait between HTTP retry attempts
  • Bug fix - Use *bool instead bool in some service, to avoid overriding the default REST requests values
  • Bug fix - Remove repo from the path inside the build-info

v1.6.6

  • Dependencies upgrades.
  • Fix exclusions in transitive search.
  • Increase scan timeout to 45 minutes.

v1.6.5

  • Minor repositories service logging improvements

v1.6.4

  • Depedencies upgrades and utils improvements

v1.6.3

  • Adjust the progress interface for a more general use.

v1.6.2

  • Bug fix - Uploading to Artifactory with ANT patterns may include wrong files in some scenarios

... (truncated)

Commits
  • e3c6206 Promote version to v1.11.0
  • 39fdb6f Update tests cache
  • c3e2d42 Add emojis to logs and update go.mod dependencies (#533)
  • 940f00d Add Static Analysis (#537)
  • 956e355 Bugfix - missing close call in Go publish (#534)
  • 2929c6d Support IncludePathPrefixPattern param in replication (#532)
  • d8592e2 Promote version to v1.10.0
  • 4e32ce3 Fixes #523 Add capability to specify proxy for repository replications (#524)
  • 80ec317 Change log level for missing LATEST build in Artifactory (#530)
  • 3e29721 Move npm dependencies checksum calculation to build-info-go (#527)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
nickshine commented 2 years ago

Noting for the jfrog client breaking change that was fixed by @M0roSan https://github.com/jfrog/jfrog-client-go/commit/cd0b9ea5dbfac0b37ba87e8ff6a9b269c6a65c4f