Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update all dependencies #131

Merged
merged 1 commit into from
Oct 20, 2023
Merged

chore(deps): update all dependencies #131

merged 1 commit into from
Oct 20, 2023

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Oct 12, 2023
edited
Loading

Mend Renovate

This PR contains the following updates:

Package Update Change
anchore/grype minor 0.70.0 -> 0.72.0
anchore/syft minor 0.93.0 -> 0.94.0
awscli patch 2.13.25 -> 2.13.28
defenseunicorns/build-harness patch 1.13.0 -> 1.13.1
defenseunicorns/zarf patch 0.30.0 -> 0.30.1
flux2 patch 2.1.1 -> 2.1.2
golangci-lint minor 1.54.2 -> 1.55.0
helm patch 3.13.0 -> 3.13.1
https://github.com/bridgecrewio/checkov.git patch 2.5.7 -> 2.5.15
kubectl patch 1.28.2 -> 1.28.3
opentofu/opentofu patch 1.6.0-alpha2 -> 1.6.0-alpha3
pre-commit minor 3.4.0 -> 3.5.0

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

anchore/grype (anchore/grype)

v0.72.0

Compare Source

Added Features
Bug Fixes

(Full Changelog)

v0.71.0

Compare Source

Added Features

(Full Changelog)

anchore/syft (anchore/syft)

v0.94.0

Compare Source

Added Features
Bug Fixes

(Full Changelog)

aws/aws-cli (awscli)

v2.13.28

Compare Source

v2.13.27

Compare Source

v2.13.26

Compare Source

defenseunicorns/build-harness (defenseunicorns/build-harness)

v1.13.1

Compare Source

Miscellaneous Chores
defenseunicorns/zarf (defenseunicorns/zarf)

v0.30.1

Compare Source

What's Changed

Features

Fixes

Docs

Development

Full Changelog: zarf-dev/zarf@v0.30.0...v0.30.1

fluxcd/flux2 (flux2)

v2.1.2

Compare Source

Highlights

Flux v2.1.2 is a patch release which comes with various fixes. Users are encouraged to upgrade for the best experience.

Fixes
  • Ensures faster recovery of Kustomization and HelmRelease resources when the source-controller has restarted and is working on restoring the storage.
  • Prevent source-controller from failing to reconcile OCIRepositories when artifacts contain symlinks.
  • Addresses issue with helm-controller miss-labeling Custom Resource Definitions.
  • Detect immutable field errors in Google Cloud resources managed by Flux Kustomizations.
  • Better error reporting for flux bootstrap when the owner doesn't match the identity associated with the given token.
  • Allow flux pull artifact to fetch OCI artifacts produced by other tools.

Components changelog

CLI Changelog

golangci/golangci-lint (golangci-lint)

v1.55.0

Compare Source

Changelog

  • 4b188db Add "inamedparam": checks for interface method with unnamed params (#​3793)
  • 2d5d29f Add testifylint linter (#​4103)
  • 3c34799 Add a pre-commit hook to check all files (#​4046)
  • de1c391 Add perfsprint linter (#​3714)
  • 8c178d3 add protogetter linter (#​4069)
  • c65ab4b build(deps): bump actions/checkout from 3 to 4 (#​4065)
  • b74ffbb build(deps): bump docker/build-push-action from 4 to 5 (#​4094)
  • b974c30 build(deps): bump docker/setup-buildx-action from 2 to 3 (#​4093)
  • 47d7785 build(deps): bump docker/setup-qemu-action from 2 to 3 (#​4095)
  • cf93cf5 build(deps): bump github.com/4meepo/tagalign from 1.3.2 to 1.3.3 (#​4143)
  • 95edd30 build(deps): bump github.com/Abirdcfly/dupword from 0.0.12 to 0.0.13 (#​4104)
  • 5b40213 build(deps): bump github.com/breml/bidichk from 0.2.4 to 0.2.6 (#​4044)
  • c6eae6c build(deps): bump github.com/breml/bidichk from 0.2.6 to 0.2.7 (#​4101)
  • f4b0ca7 build(deps): bump github.com/breml/errchkjson from 0.3.1 to 0.3.5 (#​4042)
  • c9956e8 build(deps): bump github.com/breml/errchkjson from 0.3.5 to 0.3.6 (#​4102)
  • 64e382b build(deps): bump github.com/butuzov/ireturn from 0.2.0 to 0.2.1 (#​4142)
  • cc02271 build(deps): bump github.com/daixiang0/gci from 0.11.0 to 0.11.1 (#​4068)
  • 615a52b build(deps): bump github.com/daixiang0/gci from 0.11.1 to 0.11.2 (#​4090)
  • 0605100 build(deps): bump github.com/ghostiam/protogetter from 0.2.2 to 0.2.3 (#​4130)
  • f18d712 build(deps): bump github.com/golangci/revgrep from 745bb2f to v0.5.0 (#​4064)
  • a69976a build(deps): bump github.com/jgautheron/goconst from 1.5.1 to 1.6.0 (#​4055)
  • 663d002 build(deps): bump github.com/mgechev/revive from 1.3.2 to 1.3.3 (#​4043)
  • eeb2088 build(deps): bump github.com/mgechev/revive from 1.3.3 to 1.3.4 (#​4087)
  • 0e82ef5 build(deps): bump github.com/nunnatsa/ginkgolinter from 0.13.5 to 0.14.0 (#​4117)
  • 452410c build(deps): bump github.com/polyfloyd/go-errorlint from 1.4.4 to 1.4.5 (#​4078)
  • b673fb7 build(deps): bump github.com/ryanrolds/sqlclosecheck from 0.4.0 to 0.5.1 (#​4071)
  • 823f02d build(deps): bump github.com/securego/gosec/v2 from 2.17.0 to 2.18.0 (#​4120)
  • e96af3a build(deps): bump github.com/securego/gosec/v2 from 2.18.0 to 2.18.1 (#​4131)
  • 2858394 build(deps): bump github.com/shirou/gopsutil/v3 from 3.23.7 to 3.23.8 (#​4063)
  • 1af49e3 build(deps): bump github.com/shirou/gopsutil/v3 from 3.23.8 to 3.23.9 (#​4111)
  • 22c6434 build(deps): bump github.com/tetafro/godot from 1.4.14 to 1.4.15 (#​4077)
  • 0946f2c build(deps): bump github.com/uudashr/gocognit from 1.0.7 to 1.1.1 (#​4129)
  • 904cec8 build(deps): bump github.com/uudashr/gocognit from 1.1.0 to 1.1.2 (#​4145)
  • ffb9608 build(deps): bump github.com/uudashr/gocognit from 1.1.1 to 1.1.0 (#​4144)
  • 865b93a build(deps): bump github.com/xen0n/gosmopolitan from 1.2.1 to 1.2.2 (#​4070)
  • 4b72aa5 build(deps): bump gitlab.com/bosi/decorder from 0.4.0 to 0.4.1 (#​4056)
  • 4b83e50 build(deps): bump golang.org/x/net from 0.10.0 to 0.17.0 in /tools (#​4124)
  • 6cd1bfd build(deps): bump golang.org/x/net from 0.16.0 to 0.17.0 in /scripts/gen_github_action_config (#​4125)
  • efb52af build(deps): bump golang.org/x/oauth2 from 0.11.0 to 0.12.0 in /scripts/gen_github_action_config (#​4079)
  • 2b73b3a build(deps): bump golang.org/x/oauth2 from 0.12.0 to 0.13.0 in /scripts/gen_github_action_config (#​4122)
  • 28d88a1 build(deps): bump golang.org/x/tools from 0.12.0 to 0.13.0 (#​4066)
  • dd58dd5 build(deps): bump golang.org/x/tools from 0.13.0 to 0.14.0 (#​4119)
  • 75b6a08 build(deps): bump golangci/golangci-lint-action from 3.6.0 to 3.7.0 (#​4036)
  • fd06dca build(deps): bump goreleaser/goreleaser-action from 4 to 5 (#​4080)
  • 41bfce9 build(deps): bump honnef.co/go/tools from 0.4.5 to 0.4.6 (#​4083)
  • 69d6cc9 feat: add gochecksumtype linter (#​3671)
  • 39c5fd1 feat: add sloglint linter (#​4133)
  • 3d8ae00 feat: update gofmt and goimports (#​4115)
  • 4254fad fix: update gofmt (#​4141)
  • 6491317 govet: add appends analyzer (#​4127)
  • bce3dfd unused: support passing in options (#​4086)
helm/helm (helm)

v3.13.1: Helm v3.13.1

Compare Source

Helm v3.13.1 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.13.1. The common platform binaries are here:

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.13.2 is a patch release and will be on November 08, 2023.
  • 3.14.0 is the next feature release and be on January 17, 2024.

Changelog

  • Fixing precedence issue with the import of values. 3547a4b (Matt Farina)
  • Add missing with clause to release gh action 6f9ad87 (Ian Zink)
  • FIX Default ServiceAccount yaml bae7b32 (Lars Zimmermann)
  • fix(registry): unswallow error 06e4fb1 (Hidde Beydals)
  • remove useless print during prepareUpgrade 0e7ec78 (b4nks)
  • fix(registry): address anonymous pull issue 0ac7894 (Hidde Beydals)
  • Fix missing run statement on release action 0901269 (Ian Zink)
  • Write latest version to get.helm.sh bucket 6101393 (Ian Zink)
  • chore(deps): bump oras.land/oras-go from 1.2.3 to 1.2.4 c99a8ac (dependabot[bot])
  • Increased release information key name max length. 52a029d (abrarcv170)
  • chore(deps): bump golang.org/x/text from 0.11.0 to 0.13.0 ff8e61d (dependabot[bot])
bridgecrewio/checkov (https://github.com/bridgecrewio/checkov.git)

v2.5.15

Compare Source

v2.5.14

Compare Source

v2.5.13

Compare Source

v2.5.12

Compare Source

v2.5.11

Compare Source

v2.5.10

Compare Source

v2.5.9

Compare Source

v2.5.8

Compare Source

Feature
  • general: Remove code upload for on-prem integrations - #​5624
kubernetes/kubernetes (kubectl)

v1.28.3: Kubernetes v1.28.3

Compare Source

See kubernetes-announce@. Additional binary downloads are linked in the CHANGELOG.

See the CHANGELOG for more details.

opentofu/opentofu (opentofu/opentofu)

v1.6.0-alpha3

Compare Source

Hey!

Since the last alpha release, there's been multiple bug fixes for

  • crashes caused by sensitive arguments to the import block;
  • KMS key aliases not being supported;
  • the new global provider schema cache not being used properly;
  • the inability to disable state snapshots when the x-terraform-snapshot-interval header is absent.

Additionally, there's been many improvements to the release process, more cleanup of the code, and removals of legacy TFC/TFE mentions in stdoud-printed text. We're extremely grateful to all external contributors for their contributions!

You can find more details in the updated changelog!

Full Diff: opentofu/opentofu@v1.6.0-alpha2...v1.6.0-alpha3

pre-commit/pre-commit (pre-commit)

v3.5.0

Compare Source

==================

Features
Fixes
Migrating

Configuration

📅 Schedule: Branch creation - "after 9am and before 5pm every weekday" in timezone America/New_York, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate renovate bot requested a review from a team as a code owner October 12, 2023 13:59
@renovate renovate bot added the renovate This PR was created by RenovateBot label Oct 12, 2023
@renovate renovate bot force-pushed the renovate/all branch 11 times, most recently from dda4a11 to f8c7a16 Compare October 19, 2023 13:25
@renovate renovate bot force-pushed the renovate/all branch 3 times, most recently from 624a7cd to 3dd3be5 Compare October 20, 2023 18:00
@RothAndrew RothAndrew added this pull request to the merge queue Oct 20, 2023
Merged via the queue into main with commit 3de15ff Oct 20, 2023
2 checks passed
@RothAndrew RothAndrew deleted the renovate/all branch October 20, 2023 20:41
@narwhal-bot narwhal-bot bot mentioned this pull request Oct 20, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@RothAndrew RothAndrew RothAndrew approved these changes

Assignees
No one assigned
Labels
renovate This PR was created by RenovateBot
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@RothAndrew