Closed dependabot[bot] closed 7 months ago
[APPROVALNOTIFIER] This PR is NOT APPROVED
This pull-request has been approved by:
To complete the pull request process, please assign lcarva after the PR has been reviewed.
You can assign the PR to them by writing /assign @lcarva
in a comment when ready.
The full list of commands accepted by this bot can be found here.
Hi @dependabot[bot]. Thanks for your PR.
I'm waiting for a tektoncd member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test
on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.
Once the patch is verified, the new status will be reflected by the ok-to-test
label.
I understand the commands that are listed here.
@dependabot[bot]: The following tests failed, say /retest
to rerun all failed tests or /retest-required
to rerun all mandatory failed tests:
Test name | Commit | Details | Required | Rerun command |
---|---|---|---|---|
pull-tekton-chains-unit-tests | 5f3502de9991f86a5a5285f1a9841efa913dd8b6 | link | true | /test pull-tekton-chains-unit-tests |
pull-tekton-chains-build-tests | 5f3502de9991f86a5a5285f1a9841efa913dd8b6 | link | true | /test pull-tekton-chains-build-tests |
pull-tekton-chains-integration-tests | 5f3502de9991f86a5a5285f1a9841efa913dd8b6 | link | true | /test pull-tekton-chains-integration-tests |
Full PR test history. Your PR dashboard.
Looks like these dependencies are updatable in another way, so this is no longer needed.
Bumps the all group with 5 updates:
2.2.2
2.2.3
0.56.1
0.57.0
1.26.0
1.27.0
0.19.0
0.20.0
1.61.1
1.62.0
Updates
github.com/sigstore/cosign/v2
from 2.2.2 to 2.2.3Release notes
Sourced from github.com/sigstore/cosign/v2's releases.
Changelog
Sourced from github.com/sigstore/cosign/v2's changelog.
Commits
493e6e2
Add changelog for v2.2.3 (#3513)628df78
chore(deps): bump cpanato/vault-installer from 0.0.2 to 1.0.0 (#3510)7be8de0
chore(deps): bump google.golang.org/api from 0.157.0 to 0.159.0 (#3508)554015c
chore(deps): bump the actions group with 3 updates (#3509)8395d97
chore(deps): bump github.com/go-openapi/runtime from 0.26.2 to 0.27.1 (#3507)1c90a3a
chore(deps): bump github.com/open-policy-agent/opa from 0.60.0 to 0.61.0 (#3505)3f20bde
chore(deps): bump github.com/buildkite/agent/v3 from 3.61.0 to 3.62.0 (#3506)5d79ebf
chore(deps): bump the gomod group with 2 updates (#3504)381c657
fix cross test (#3502)a445167
Fix CI test failing (#3501)Updates
github.com/tektoncd/pipeline
from 0.56.1 to 0.57.0Release notes
Sourced from github.com/tektoncd/pipeline's releases.
... (truncated)
Changelog
Sourced from github.com/tektoncd/pipeline's changelog.
... (truncated)
Commits
d714545
Isolate new env nightly feature flag testf3d4fe6
chore(deps): bump github/codeql-action from 3.24.0 to 3.24.33d1ec13
chore(deps): bump tj-actions/changed-files from 42.0.2 to 42.0.460dde23
chore(deps): bump github.com/opencontainers/image-spec1f44652
chore(deps): bump github.com/google/cel-go from 0.19.0 to 0.20.0e160b59
chore(deps): bump k8s.io/client-go123f4a2
Update e2e-test script for per feature flag test73bac5a
Fix typo in publish taskfd17c74
wait for a given duration in case of imagePullBackOff9fd9383
Patch Release v0.56.1Updates
go.uber.org/zap
from 1.26.0 to 1.27.0Release notes
Sourced from go.uber.org/zap's releases.
Changelog
Sourced from go.uber.org/zap's changelog.
Commits
fcf8ee5
Release v1.27.0 (#1419)e5a56ee
Add WithPanicHook logger option for panic log tests (#1416)0e2aa4e
assets: Fix logo color profile (#1418)956a21c
Add methods for logging with level as argument (#1406)2a893f6
build(deps): bump golangci/golangci-lint-action from 3 to 4 (#1417)e5745d6
ci: Test with Go 1.22 (#1409)7db06bc
zapslog: rename Option to HandlerOption (#1411)35ded09
zapslog: fix all with slogtest, support inline group, ignore empty group. (#1...27b96e3
Make zaptest.NewTestingWriter public (#1399)70f61bb
zapslog: Bump zap from v1.24.0 to v1.26.0 (#1404)Updates
golang.org/x/crypto
from 0.19.0 to 0.20.0Commits
0aab8d0
all: update go.mod x/net dependency5bead59
ocsp: don't use iota for externally defined constants1a86580
x/crypto/internal/poly1305: improve sum_ppc64le.s1c981e6
ssh/test: don't use DSA keys in integrations tests, update test RSA key62c9f17
x509roots/nss: manually exclude a confusingly constrained rootUpdates
google.golang.org/grpc
from 1.61.1 to 1.62.0Release notes
Sourced from google.golang.org/grpc's releases.
Commits
d715b2e
Change version to 1.62.0 (#6994)d706a42
cherry-pick #6926 to 1.62 release branch (#6986)8a4ca0c
cherry-pick #6977 to 1.62.x release branch (#6979)d41b01d
encoding: fix typo (#6966)c2b50ee
deps: fix backwards compatibility with encoding (#6965)05b4a8b
Revert "xds/googlec2p: use xdstp names for LDS (#6949)" (#6964)03e76b3
grpc: add ability to compile with or without tracing (#6954)84b85ba
xds/googledirectpath: Check if ipv6 address is non empty (#6959)6f63f05
internal/grpcrand: use Go top-level random functions for go1.21+ (#6925)cd69b5d
.*: fix minor linter issues (#6958)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show