Bump alpine from 3.19.1 to 3.20.2 #95
Conversation
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
dependabot
bot
added
the
dependencies
|
@Erikvl87 Can this pull request be merged? We have several vulnerability issues because of deprecated versions. |
|
@Erikvl87 How about this PR? |
Bumps alpine from 3.19.1 to 3.20.2. --- updated-dependencies: - dependency-name: alpine dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Erikvl87
force-pushed
the
dependabot/docker/alpine-3.20.2
branch
from
c16b2f2
to
15a5dfa
Compare
|
@mlechler sorry that I was keeping you waiting for this. I just made a small change in the |
|
The release to Docker Hub is currently in progress and should be available to you shortly with the tag |
|
Unfortunately the pipeline failed to create a build for the ARM architecture. I'm attempting a temporary workaround by pinning the Bridj dependency to a specific commit, as I noticed recent changes that might be breaking the build. Hopefully, this will be successful and the release will go through. If not, I'll need to dive into this further. Unfortunately, I have some other commitments at the moment, but I'll try to get this sorted out as soon as possible (hopefully somewhere within the next few days). |
|
That workaround did the trick. Tag |
Bumps alpine from 3.19.1 to 3.20.2.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)