search

xmidt-org / caduceus

The Xmidt server for delivering events written in Go.
Apache License 2.0
16 stars 19 forks source link

chore(deps): bump github.com/xmidt-org/httpaux from 0.4.0 to 0.4.1 #521

Closed dependabot[bot] closed 3 months ago

dependabot[bot] commented 3 months ago

Bumps github.com/xmidt-org/httpaux from 0.4.0 to 0.4.1.

Release notes

Sourced from github.com/xmidt-org/httpaux's releases.

v0.4.1

Changelog

Dependency Updates

  • bd991c5f807eea9d795b80b3a6ac5fed10e47749: feat(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0 (@​dependabot[bot])

Other Work

  • 4670ee8dfcb5988e92f8c02d3144c7cbd2ca20dc: --- (#69) (@​dependabot[bot])
  • 6db57ef422116a72f1c8893027eae9e1bcf5df4a: Update dependabot to manage all dependencies. (@​schmidtw)
  • 8f8569d31c1aa7901e0f2135d76958e4c82a552a: added .reuse (@​johnabass)
  • 89af6ce3cfd10d3f6635faaca8e59a866ea4f582: added Apache-2.0 license file (@​johnabass)
  • c6414b74ddfaec778e8665a408703d40dffec79a: added SPDEX comment block (@​johnabass)
  • 2ff54665a3af5825e710d642c8e9af7b0f17329f: deprecated the retry package (@​johnabass)
  • e01535c6191e29da13923be112bed8193b7c404e: support go1.22 (@​johnabass)
  • d9e215c3c226889767d99bbcfc212238ddca4a56: turn on copyright checking (@​johnabass)
Commits
  • 1b4539b Merge pull request #87 from xmidt-org/feature/support-spdx
  • d9e215c turn on copyright checking
  • 1b494ef chore: added SPDX comment block
  • 5b86b9b chore: pruned this file, as we generate changelogs differently now
  • c6414b7 added SPDEX comment block
  • 8f8569d added .reuse
  • 89af6ce added Apache-2.0 license file
  • c0de98a Merge pull request #86 from xmidt-org/feature/go1.22
  • e01535c support go1.22
  • c9eb3bf Merge pull request #85 from xmidt-org/hotfix/fix-httpmock-tests
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
guardrails[bot] commented 3 months ago

:warning: We detected 1 security issue in this pull request:

Vulnerable Libraries (1)
Severity | Details :-: | :-- N/A | [pkg:golang/github.com/xmidt-org/sallust@v0.2.2](https://github.com/xmidt-org/caduceus/blob/c3ee0dfb30ea94a9722994483d6810fd2eb12d49/go.mod#L21) - **no patch available** More info on how to fix Vulnerable Libraries in [Go](https://docs.guardrails.io/docs/en/vulnerabilities/go/using_vulnerable_libraries.html?utm_source=ghpr).

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

dependabot[bot] commented 3 months ago

Superseded by #522.