search

zalando / skipper

An HTTP router and reverse proxy for service composition, including use cases like Kubernetes Ingress
https://opensource.zalando.com/skipper/
Other
3.12k stars 351 forks source link

build(deps): bump the all-go-mod-patch-and-minor group across 1 directory with 9 updates #3276

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps the all-go-mod-patch-and-minor group with 8 updates in the / directory:

Package From To
github.com/andybalholm/brotli 1.1.0 1.1.1
github.com/open-policy-agent/opa 0.68.0 0.69.0
github.com/open-policy-agent/opa-envoy-plugin 0.68.0-envoy-4 0.69.0-envoy
github.com/tidwall/gjson 1.17.3 1.18.0
golang.org/x/crypto 0.27.0 0.28.0
golang.org/x/net 0.29.0 0.30.0
golang.org/x/time 0.6.0 0.7.0
google.golang.org/protobuf 1.34.2 1.35.1

Updates github.com/andybalholm/brotli from 1.1.0 to 1.1.1

Commits


Updates github.com/open-policy-agent/opa from 0.68.0 to 0.69.0

Release notes

Sourced from github.com/open-policy-agent/opa's releases.

v0.69.0

This release contains a mix of features, bugfixes and necessary tooling and test changes required to support the upcoming OPA 1.0 release.

Inter-Query Value Cache (#6908)

OPA now has a new inter-query value cache added to the SDK. It is intended to be used for values that are expensive to compute and can be reused across multiple queries. The cache can be leveraged by built-in functions to store values that otherwise aren't appropriate for the existing inter-query cache; for instance when the entry size isn't an appropriate or primary limiting factor for cache eviction.

The default size of the inter-query value cache is unbounded, but can be configured via the caching.inter_query_builtin_value_cache.max_num_entries configuration field. OPA will drop random items from the cache if this limit is exceeded.

The cache is used by the regex and glob built-in functions, which previously had individual, non-configurable caches with a max entry size of 100 each.

Currently, the cache is only exercised when running OPA in server mode (ie. opa run -s). Also this feature is unsupported for WASM.

Authored by @​ashutosh-narkar, reported by @​amirsalarsafaei

Topdown and Rego

Runtime, Tooling, SDK

  • Future-proofing tests in the sdk, downlaod, server , cmd etc. packages to be 1.0 compatible (authored by @​johanfylling)
  • cmd: Add --v0-compatible flag to make OPA behave as v0.x post v1.0 release (#7065) authored by @​johanfylling
  • util: Strip UTF-8 BOM from input JSON when found (#6988) authored by @​anderseknert reported by @​adhilto
  • plugins/rest: Support reading AWS token from the filesystem for the AWS container credential provider (#6997) authored by @​cmaddalozzo
  • debug: Add RegoOption launch option to debugger for setting custom Rego options (#7045) authored by @​johanfylling
  • debug: Always include Input and Data variable scopes to ease discoverability of the scopes (#7074) authored by @​johanfylling
  • wasm: Fix arithmetic comparison for large numbers, caused by an integer overflow (#6991) authored by @​Ptroger

Docs, Website, Ecosystem

Miscellaneous

... (truncated)

Changelog

Sourced from github.com/open-policy-agent/opa's changelog.

0.69.0

This release contains a mix of features, bugfixes and necessary tooling and test changes required to support the upcoming OPA 1.0 release.

Inter-Query Value Cache (#6908)

OPA now has a new inter-query value cache added to the SDK. It is intended to be used for values that are expensive to compute and can be reused across multiple queries. The cache can be leveraged by built-in functions to store values that otherwise aren't appropriate for the existing inter-query cache; for instance when the entry size isn't an appropriate or primary limiting factor for cache eviction.

The default size of the inter-query value cache is unbounded, but can be configured via the caching.inter_query_builtin_value_cache.max_num_entries configuration field. OPA will drop random items from the cache if this limit is exceeded.

The cache is used by the regex and glob built-in functions, which previously had individual, non-configurable caches with a max entry size of 100 each.

Currently, the cache is only exercised when running OPA in server mode (ie. opa run -s). Also this feature is unsupported for WASM.

Authored by @​ashutosh-narkar, reported by @​amirsalarsafaei

Topdown and Rego

Runtime, Tooling, SDK

  • Future-proofing tests in the sdk, downlaod, server , cmd etc. packages to be 1.0 compatible (authored by @​johanfylling)
  • cmd: Add --v0-compatible flag to make OPA behave as v0.x post v1.0 release (#7065) authored by @​johanfylling
  • util: Strip UTF-8 BOM from input JSON when found (#6988) authored by @​anderseknert reported by @​adhilto
  • plugins/rest: Support reading AWS token from the filesystem for the AWS container credential provider (#6997) authored by @​cmaddalozzo
  • debug: Add RegoOption launch option to debugger for setting custom Rego options (#7045) authored by @​johanfylling
  • debug: Always include Input and Data variable scopes to ease discoverability of the scopes (#7074) authored by @​johanfylling
  • wasm: Fix arithmetic comparison for large numbers, caused by an integer overflow (#6991) authored by @​Ptroger

Docs, Website, Ecosystem

... (truncated)

Commits
  • 4a3fd1a Prepare v0.69.0 release (#7076)
  • af8f915 Add mirror linter
  • 71ab7ba debug: Always including Input and Data variable scopes
  • e16f22a docs: Another minor update to README.md (#7072)
  • 27dcd29 rego-v1: Future-proofing misc tests to be 1.0 compatible
  • 0385717 build(deps): bump actions/checkout from 4.1.7 to 4.2.0 (#7069)
  • 5cbc1e0 topdown: glob|regex code nitpicks (#7071)
  • 4ba95d0 format: Bracketing keyword ref elements in formatter output (#7010)
  • 6148b0b Add APIwiz to adopters (#7067)
  • c487e39 docs: Update generated CLI docs
  • Additional commits viewable in compare view


Updates github.com/open-policy-agent/opa-envoy-plugin from 0.68.0-envoy-4 to 0.69.0-envoy

Release notes

Sourced from github.com/open-policy-agent/opa-envoy-plugin's releases.

v0.69.0-envoy

What's Changed

Commits
  • 420d0d0 build(deps): bump github.com/open-policy-agent/opa from 0.68.0 to 0.69.0
  • df3f81c cmd: avoid panic when starting with a bad config (#598)
  • 35d872f build(deps): bump google.golang.org/grpc from 1.66.2 to 1.67.0
  • 840ae78 build(deps): bump github.com/prometheus/client_golang
  • f16fcd7 set invalid request status if request parsing fails
  • dc328ea build(deps): bump google.golang.org/grpc from 1.66.1 to 1.66.2
  • cc89e9a build(deps): bump golang.org/x/tools from 0.24.0 to 0.25.0
  • 14bc09d build(deps): bump google.golang.org/grpc from 1.66.0 to 1.66.1
  • 0820cbe build(deps): bump github.com/prometheus/client_golang
  • See full diff in compare view


Updates github.com/tidwall/gjson from 1.17.3 to 1.18.0

Commits


Updates golang.org/x/crypto from 0.27.0 to 0.28.0

Commits
  • adef4cc go.mod: update golang.org/x dependencies
  • a0819fb sha3: fix cSHAKE initialization for extremely large N and or S
  • 42ee18b ssh: return ServerAuthError after too many auth failures
  • 9e92970 bn256: add missing symbols in comment
  • See full diff in compare view


Updates golang.org/x/net from 0.29.0 to 0.30.0

Commits
  • 6cc5ac4 go.mod: update golang.org/x dependencies
  • f88258d websocket: update nhooyr.io/websocket to github.com/coder/websocket
  • 7191757 http2: add support for net/http HTTP2 config field
  • 4790dc7 http2: add support for server-originated pings
  • 541dbe5 http2: add Server.WriteByteTimeout
  • 3c333c0 route: fix address parsing of messages on Darwin
  • See full diff in compare view


Updates golang.org/x/term from 0.24.0 to 0.25.0

Commits


Updates golang.org/x/time from 0.6.0 to 0.7.0

Commits


Updates google.golang.org/protobuf from 1.34.2 to 1.35.1

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
AlexanderYastrebov commented 1 month ago

@dependabot rebase

dependabot[bot] commented 1 month ago

Looks like these dependencies are updatable in another way, so this is no longer needed.