search

xmidt-org / go-parodus

parodus client written in golang
Apache License 2.0
0 stars 2 forks source link

chore(deps): bump xmidt-org/shared-go from 3.0.0 to 4.1.0 #40

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps xmidt-org/shared-go from 3.0.0 to 4.1.0.

Release notes

Sourced from xmidt-org/shared-go's releases.

v4.1.0

Changelog

Other Work

  • 27ac2050b5a65111ee2bbd2d27dd60d6cac6b2cc: Add .whitesource configuration file (@​mend-bolt-for-github[bot])
  • 9d4069998edcde54e2b654625e618437daced32d: [create-pull-request] automated change (@​schmidtw)

v4.0.0

Changelog

New Features

  • 4cf52b59b0721e05098d2d28402ef910efee6158: feat:Change 'go generate' to be opt-in (@​schmidtw)

Bug Fixes

  • d0737af7255c581ce3cc09b69b96ba16a5913b4e: fix:The inputs was removed from the wrong file. (@​schmidtw)

Documentation Updates

  • 1e92633a77364b73fbf274cdf0bfc5d16219c5b3: doc:Remove the naked input as that is invalid. (@​schmidtw)

v3.2.0

Changelog

Documentation Updates

  • e37f9b5b78f0be9d805e84fb747d4e9bd04693d3: doc:Attempt to make the docs more clear. (@​schmidtw)
  • d767be797d3b0f91bab48c5fb4657e748a70543c: doc:Improve labeling. (@​schmidtw)
  • 385d51a85e5d4265d3b42eac4f390786090bbe1c: doc:Update documents. (@​schmidtw)

Other Work

  • 5614aad46d76c1fc39f892585e38b4436fe23fa6: Generate the table of contents. (@​schmidtw)
  • 2e531523e2d97ddea793c6dbcf17a4256c685c5f: [create-pull-request] automated change (@​schmidtw)
  • a0c06705dde1280d610dbb0bb7452c8842cb7b39: [create-pull-request] automated change (@​schmidtw)

v3.1.0

Changelog

Other Work

  • 6ea556f59c225e677d75f50a6030fc726cf8bba1: Add extra files so docker can have access to them. (@​schmidtw)
  • 83ec5d5ecf8cba66fcac16f97e87c25d13eb71ce: Fix the paths since they are relative to the workplace. (@​schmidtw)
  • 1067892ee852ec621ad54e2b81e717ed6262b784: Remove extra space. (@​schmidtw)
  • 8428c7effcff3a69a1f34ca63006fa405163e76f: Update the docs. (@​schmidtw)
  • d672321d13e91df8ee8f1756224d201942b01128: [create-pull-request] automated change (@​schmidtw)
Commits
  • 5bc4b83 Merge pull request #12 from xmidt-org/update-workflow-documentation
  • 42ae257 chore(deps): bump golangci/golangci-lint-action from 3.5.0 to 3.6.0 (#29)
  • 4590986 Merge pull request #1 from xmidt-org/whitesource/configure
  • 9d40699 [create-pull-request] automated change
  • f808536 Update the workflow with new action releases and support for building… (#33)
  • a428a1a chore(deps): bump fsfe/reuse-action from 1.2.0 to 2.0.0 (#32)
  • a85e5d3 chore(deps): bump ruby/setup-ruby from 1.151.0 to 1.152.0 (#31)
  • 62edd32 chore(deps): bump peter-evans/create-pull-request from 5.0.1 to 5.0.2 (#30)
  • 3829bba chore(deps): bump goreleaser/goreleaser-action from 4.2.0 to 4.3.0 (#28)
  • a19a754 chore(deps): bump actions/checkout from 3.5.2 to 3.5.3 (#27)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
guardrails[bot] commented 1 year ago

:warning: We detected 1 security issue in this pull request:

Hard-Coded Secrets (1)
Severity | Details | Docs :-: | :-- | :-: Medium | Title: **Github Key**
https://github.com/xmidt-org/go-parodus/blob/b7776f42cafe3c0db21432abacd28d578efe3709/.github/workflows/ci.yml#L23 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#github-key) More info on how to fix Hard-Coded Secrets in [General](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr).

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.