Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update all non-major dependencies #141

Merged
merged 1 commit into from
Oct 30, 2024
Merged

Update all non-major dependencies #141

merged 1 commit into from
Oct 30, 2024

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Oct 7, 2024
edited
Loading

This PR contains the following updates:

Package Update Change Age Adoption Passing Confidence
argocd patch 2.12.4 -> 2.12.6 age adoption passing confidence
awscli patch 2.18.0 -> 2.18.17 age adoption passing confidence
dotnet-core patch 8.0.402 -> 8.0.403 age adoption passing confidence
flutter (source) patch 3.24.3 -> 3.24.4 age adoption passing confidence
helm patch 3.16.1 -> 3.16.2 age adoption passing confidence
java patch 17.0.12+7 -> 17.0.13+11 age adoption passing confidence
kubectl patch 1.31.1 -> 1.31.2 age adoption passing confidence
kustomize minor 5.4.3 -> 5.5.0 age adoption passing confidence
pnpm (source) patch 9.12.0 -> 9.12.3 age adoption passing confidence
python minor 3.12.7 -> 3.13.0 age adoption passing confidence
rust minor 1.81.0 -> 1.82.0 age adoption passing confidence
terraform patch 1.9.7 -> 1.9.8 age adoption passing confidence
terragrunt minor 0.67.16 -> 0.68.6 age adoption passing confidence
trivy patch 0.56.1 -> 0.56.2 age adoption passing confidence

Release Notes

argoproj/argo-cd (argocd)

v2.12.6

Compare Source

Quick Start

Non-HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.6/manifests/install.yaml
HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.6/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes

Full Changelog: argoproj/argo-cd@v2.12.5...v2.12.6

v2.12.5

Compare Source

Quick Start

Non-HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.5/manifests/install.yaml
HA:
kubectl create namespace argocd
kubectl apply -n argocd -f https://raw.githubusercontent.com/argoproj/argo-cd/v2.12.5/manifests/ha/install.yaml

Release Signatures and Provenance

All Argo CD container images are signed by cosign. A Provenance is generated for container images and CLI binaries which meet the SLSA Level 3 specifications. See the documentation on how to verify.

Upgrading

If upgrading from a different minor version, be sure to read the upgrading documentation.

Changelog

Bug fixes
Documentation
Other work

Full Changelog: argoproj/argo-cd@v2.12.4...v2.12.5

aws/aws-cli (awscli)

v2.18.17

Compare Source

v2.18.16

Compare Source

v2.18.15

Compare Source

v2.18.14

Compare Source

v2.18.13

Compare Source

v2.18.12

Compare Source

v2.18.11

Compare Source

v2.18.10

Compare Source

v2.18.9

Compare Source

v2.18.8

Compare Source

v2.18.7

Compare Source

v2.18.6

Compare Source

v2.18.5

Compare Source

v2.18.4

Compare Source

v2.18.3

Compare Source

v2.18.2

Compare Source

v2.18.1

Compare Source

dotnet/sdk (dotnet-core)

v8.0.403

Compare Source

flutter/flutter (flutter)

v3.24.4

Compare Source

  • dart 3.5.4 changelog
  • flutter/154915 - [iOS] Comply with the new Apple privacy manifest policy for the macOS Flutter engine framework and prevent the "Missing privacy manifest" warning when submitting a macOS app to the App Store.
  • flutter/155837 - [Tool] Fixes RPCError crash when setting up log filtering for Android devices.
helm/helm (helm)

v3.16.2: Helm v3.16.2

Compare Source

Helm v3.16.2 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.16.2. The common platform binaries are here:

This release was signed with 672C 657B E06B 4B30 969C 4A57 4614 49C2 5E36 B98E and can be found at @​mattfarina keybase account. Please use the attached signatures for verifying this release using gpg.

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.16.3 is the next patch release and will be on November 13, 2024
  • 3.17.0 is the next feature release and will be on January 15, 2025

Changelog

kubernetes/kubernetes (kubectl)

v1.31.2: Kubernetes v1.31.2

Compare Source

See kubernetes-announce@. Additional binary downloads are linked in the CHANGELOG.

See the CHANGELOG for more details.

kubernetes-sigs/kustomize (kustomize)

v5.5.0

Compare Source

Breaking change

A starlark support for krm functions was removed to cleanup dependencies. https://github.com/kubernetes-sigs/kustomize/pull/5768
This feature was deprecated 3 years ago and removed because there was no desire to continue using it.
https://github.com/kubernetes-sigs/kustomize/pull/5768#issuecomment-2374680641

Feature

#​5751: Add --helm-debug Flag to Kustomize for Enhanced Helm Debugging

Fix Bugs

#​5458: Sort built-in Namespace kind before CRDs with the same name
#​5745: Add Annotation to Control Inline List Conversion in Kustomize Resources"

Dependencies

#​5763: Update go 1.22.7
#​5781: Update kyaml to v0.18.1
#​5782: Update cmd/config to v0.15.0
#​5783: Update api to v0.18.0

pnpm/pnpm (pnpm)

v9.12.3

Compare Source

Patch Changes
  • Don't purge node_modules, when typing "n" in the prompt that asks whether to remove node_modules before installation #​8655.
  • Fix a bug causing pnpm to infinitely spawn itself when manage-package-manager-versions=true is set and the .tools directory is corrupt.
  • Use crypto.hash, when available, for improved performance #​8629.
  • Fixed a race condition in temporary file creation in the store by including worker thread ID in filename. Previously, multiple worker threads could attempt to use the same temporary file. Temporary files now include both process ID and thread ID for uniqueness #​8703.
  • All commands should read settings from the package.json at the root of the workspace #​8667.
  • When manage-package-manager-versions is set to true, errors spawning a self-managed version of pnpm will now be shown (instead of being silent).
  • Pass the find command to npm, it is an alias for npm search

v9.12.2

Compare Source

Patch Changes
  • When checking whether a file in the store has executable permissions, the new approach checks if at least one of the executable bits (owner, group, and others) is set to 1. Previously, a file was incorrectly considered executable only when all the executable bits were set to 1. This fix ensures that files with any executable permission, regardless of the user class, are now correctly identified as executable #​8546.

v9.12.1

Compare Source

Patch Changes
  • pnpm update --latest should not update the automatically installed peer dependencies #​6657.
  • pnpm publish should be able to publish from a local tarball #​7950.
  • The pnpx command should work correctly on Windows, when pnpm is installed via the standalone installation script #​8608.
  • Prevent EBUSY errors caused by creating symlinks in parallel dlx processes #​8604.
  • Fix maximum call stack size exceeded error related to circular workspace dependencies #​8599.
python/cpython (python)

v3.13.0

Compare Source

rust-lang/rust (rust)

v1.82.0

Compare Source

==========================

Language

Compiler

Libraries

Stabilized APIs

These APIs are now stable in const contexts:

Cargo

Compatibility Notes

  • We now disallow setting some built-in cfgs via the command-line with the newly added explicit_builtin_cfgs_in_flags lint in order to prevent incoherent state, eg. windows cfg active but target is Linux based. The appropriate rustc flag should be used instead.
  • The standard library has a new implementation of binary_search which is significantly improves performance (#​128254). However when a sorted slice has multiple values which compare equal, the new implementation may select a different value among the equal ones than the old implementation.
  • illumos/Solaris now sets MSG_NOSIGNAL when writing to sockets. This avoids killing the process with SIGPIPE when writing to a closed socket, which matches the existing behavior on other UNIX targets.
  • Removes a problematic hack that always passed the --whole-archive linker flag for tests, which may cause linker errors for code accidentally relying on it.
  • The WebAssembly target features multivalue and reference-types are now
    both enabled by default. These two features both have subtle changes implied
    for generated WebAssembly binaries. For the multivalue feature, WebAssembly
    target support has changed when upgrading to LLVM 19. Support for generating
    functions with multiple returns no longer works and
    -Ctarget-feature=+multivalue has a different meaning than it did in LLVM 18
    and prior. There is no longer any supported means to generate a module that has
    a function with multiple returns in WebAssembly from Rust source code. For the
    reference-types feature the encoding of immediates in the call_indirect, a
    commonly used instruction by the WebAssembly backend, has changed. Validators
    and parsers which don't understand the reference-types proposal will no
    longer accept modules produced by LLVM due to this change in encoding of
    immediates. Additionally these features being enabled are encoded in the
    target_features custom section and may affect downstream tooling such as
    wasm-opt consuming the module. Generating a WebAssembly module that disables
    default features requires -Zbuild-std support from Cargo and more information
    can be found at
    rust-lang/rust#128511.
  • Rust now raises unsafety errors for union patterns in parameter-position

Internal Changes

These changes do not affect any public interfaces of Rust, but they represent
significant improvements to the performance or internals of rustc and related
tools.

hashicorp/terraform (terraform)

v1.9.8

Compare Source

1.9.8 (October 16, 2024)

BUG FIXES:

  • init: Highlight missing subdirectories of registry modules in error message (#​35848)
  • init: Prevent crash when loading provider_meta blocks with invalid names (#​35842)
  • config generation: Escape all invalid syntax in generate map keys with quotes (#​35837)
  • plan: also validate provider requirements from state (#​35864)
gruntwork-io/terragrunt (terragrunt)

v0.68.6

Compare Source

Updated CLI args, config attributes and blocks

  • --terragrunt-out-dir
  • --terragrunt-json-out-dir

What's Changed

  • Updated --terragrunt-out-dir / --terragrunt-json-out-dir to handle relative paths.

Related links

v0.68.5

Compare Source

Updated CLI args, config attributes and blocks

  • dependency

What's Changed

  • Added strict flag for improved performance in dependency processing
    You can now enhance performance by setting the environment variable: 
    TERRAGRUNT_STRICT_CONTROL="skip-dependencies-inputs"
    This will skip input processing for dependencies, leading to faster execution times when running Terragrunt.
  • Improved CI/CD pipeline to build without Go proxy and detect checksum changes.
  • Enhanced error messages for invalid strict control flags.
  • Updated dependencies for better performance and stability.
  • Refined scaffold documentation.
  • Fixed panic issue in Sops decryption.
  • Corrected handling of pseudo-tty commands.

Related links

Full Changelog: gruntwork-io/terragrunt@v0.68.4...v0.68.5

v0.68.4

Compare Source

What's Changed

Full Changelog: gruntwork-io/terragrunt@v0.68.3...v0.68.4

v0.68.3

Compare Source

New Features

This release introduces the availability of Strict Mode, a new pattern that is going to be used for deprecation of functionality going forward in Terragrunt.

Starting with this release, any deprecated functionality will be deprecated using what are called Strict Controls. These controls will allow you to opt-in to having any deprecated functionality break immediately. This mechanism is being introduced to provide a way for users to future proof their codebase, and know that they can safely upgrade to new versions of Terragrunt.

This will be especially important to address the changes listed in #​3445.

To learn more, click here.

What's Changed

Full Changelog: gruntwork-io/terragrunt@v0.68.2...v0.68.3

v0.68.2

Compare Source

What's Changed

Full Changelog: gruntwork-io/terragrunt@v0.68.1...v0.68.2

v0.68.1

Compare Source

What's Changed

Full Changelog: gruntwork-io/terragrunt@v0.68.0...v0.68.1

v0.68.0

Compare Source

New Behavior

This release includes multiple behavioral changes including the following:

  • The skip attribute is now merged in from included files.
  • A secondary init is no longer marked as required after an explicit init in a clean directory.
  • The usage of go-getter in the scaffold command was upgraded to leverage v2.

What's Changed

New Contributors

Full Changelog: gruntwork-io/terragrunt@v0.67.16...v0.68.0

aquasecurity/trivy (trivy)

v0.56.2

Compare Source

Change

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the renovate label Oct 7, 2024
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 8 times, most recently from bfcc987 to 3cb5d49 Compare October 11, 2024 21:30
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 11 times, most recently from b213466 to 16e352f Compare October 21, 2024 20:09
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 10 times, most recently from 4e681aa to e3df570 Compare October 29, 2024 18:10
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from e3df570 to 5ceba77 Compare October 29, 2024 23:06
@renovate renovate bot force-pushed the renovate/all-minor-patch branch from 5ceba77 to b53a5a3 Compare October 30, 2024 07:23
@na2na-p na2na-p merged commit 8d385ed into main Oct 30, 2024
8 checks passed
@na2na-p na2na-p deleted the renovate/all-minor-patch branch October 30, 2024 11:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
renovate
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@na2na-p