chore(deps): bump github.com/expr-lang/expr from 1.16.9 to 1.17.0 in the go_modules group #14307

dependabot · 2025-03-18T00:16:01Z

Bumps the go_modules group with 1 update: github.com/expr-lang/expr.

Updates github.com/expr-lang/expr from 1.16.9 to 1.17.0

Release notes

Sourced from github.com/expr-lang/expr's releases.

v1.17.0

Expr is a Go-centric expression language designed to deliver dynamic configurations with unparalleled accuracy, safety, and speed.
program, err := expr.Compile(`let foo = bar(); baz(foo, foo)`)
In this release:

This release added the biggest change to the Expr language: if-else expressions and sequential expressions. #736 e750878
if foo > 42 {
    assert(foo);
    calc(foo, foo / 2)
} else {
    calc(0, 0)
}
A sequence of expression may be separated by ; char. The last semicolon must be omitted. Expr returns the value of the last expression in the sequence.

If-else is also expressions. Each if must have an else part. Result of if-else can be used as an expression:
let foo = if bar > 0 {
    process(bar)
} else {
    fallback()
};
foo + 42
Added:

Added ast.Find helper for easy AST searching. 579de74

Added compile node budget and memory limits (#762)

Added uniq() builtin (#705)

Added flatten() builtin (#684)

Added types pkg (#665 #667 #668)

Improvements:

Allow tailing comma in arguments (#623)

Improved type checker for named types 6fa83ad

Now len() return runes count for string e8bd7f8

... (truncated)

Commits

3be6386 Code style: remove repeated helper functions
25690fe chore: Added SOLO to the companies list (#769)
a9cda30 Test for issue 756
2bc0eed Remove duplicated dereferences
f4bbea5 Add support deref in all builtins
7d564c0 Remove print
80f0ea6 Correctly add OpDeref if needed
2d9f616 Add more tailing comma tests
8f83203 Allow tailing comma in arguments (#623)
435b79d Make sure get() returns nil for map[string]string on missing keys
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps the go_modules group with 1 update: [github.com/expr-lang/expr](https://github.com/expr-lang/expr). Updates `github.com/expr-lang/expr` from 1.16.9 to 1.17.0 - [Release notes](https://github.com/expr-lang/expr/releases) - [Commits](expr-lang/expr@v1.16.9...v1.17.0) --- updated-dependencies: - dependency-name: github.com/expr-lang/expr dependency-type: direct:production dependency-group: go_modules ... Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: Tianchu Zhao <evantczhao@gmail.com>

blkperl · 2025-04-18T16:06:01Z

/cherry-pick release-3.6

gcp-cherry-pick-bot · 2025-04-18T16:06:07Z

Cherry-pick failed with Merge error 9b7c0c4c4ce1ecb8e1d27df95d14ccef09cffe0f into temp-cherry-pick-266088-release-3.6

…the go_modules group (#14307) Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Tianchu Zhao <evantczhao@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Tianchu Zhao <evantczhao@gmail.com> (cherry picked from commit 9b7c0c4)

…4307) (release-3.6) (#14421) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…abilities fixes (Cr 28355) (#358) * fix: bump deps for k8schain to fix ecr-login (argoproj#14008) (release-3.6 cherry-pick) (argoproj#14174) * fix(ci): python sdk release process (release-3.6) (argoproj#14183) Signed-off-by: Alan Clucas <alan@clucas.org> * docs: clarify qps/burst on controller (cherry-pick argoproj#14190) (argoproj#14192) Signed-off-by: Tim Collins <tim@thecollins.team> Co-authored-by: Tim Collins <45351296+tico24@users.noreply.github.com> * fix(api/jsonschema): use unchanging JSON Schema version (cherry-pick argoproj#14092) (argoproj#14256) Signed-off-by: Roger Peppe <rogpeppe@gmail.com> Co-authored-by: Roger Peppe <rogpeppe@gmail.com> * fix(api/jsonschema): use working `$id` (cherry-pick argoproj#14257) (argoproj#14258) Signed-off-by: Roger Peppe <rogpeppe@gmail.com> Co-authored-by: Roger Peppe <rogpeppe@gmail.com> * docs: autogenerate tested k8s versions and centralize config (argoproj#14176) (release-3.6) (argoproj#14262) Signed-off-by: Mason Malone <651224+MasonM@users.noreply.github.com> Signed-off-by: Alan Clucas <alan@clucas.org> Co-authored-by: Mason Malone <651224+MasonM@users.noreply.github.com> * chore(deps): bump minio-go to newer version (argoproj#14185) (release-3.6) (argoproj#14261) Co-authored-by: Vaibhav Kaushik <vaibhavkaushik@salesforce.com> * fix: split pod controller from workflow controller (argoproj#14129) (release-3.6) (argoproj#14263) * chore(deps): fix snyk (argoproj#14264) (release-3.6) (argoproj#14268) * chore: revert to correct k8s versions Accidental bump from argoproj#14176 cherry-pick Signed-off-by: Alan Clucas <alan@clucas.org> * chore(deps): bump github.com/go-jose/go-jose/v3 from 3.0.3 to 3.0.4 in the go_modules group (cherry-pick argoproj#14231) (argoproj#14269) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: wait for workflow informer to sync before pod informer (cherry-pick argoproj#14248) (argoproj#14266) Signed-off-by: Rohan K <rohankmr414@gmail.com> Co-authored-by: Rohan K <rohankmr414@gmail.com> * fix(cli): remove red from log colour selection. Fixes argoproj#6740 (cherry-pick argoproj#14215) (argoproj#14278) Signed-off-by: Prabakaran Kumaresshan <4676330+nixphix@users.noreply.github.com> Co-authored-by: Prabakaran Kumaresshan <4676330+nixphix@users.noreply.github.com> * fix: correct semaphore configmap keys for multiple semaphores (argoproj#14184) (release-3.6) (argoproj#14281) * fix: don't print help for non-validation errors. Fixes argoproj#14234 (cherry-pick argoproj#14249) (argoproj#14283) Signed-off-by: Koichi Shimada <jumpe1programming@gmail.com> Signed-off-by: Mason Malone <651224+MasonM@users.noreply.github.com> Co-authored-by: koichi <51446844+jumpe1@users.noreply.github.com> Co-authored-by: Mason Malone <651224+MasonM@users.noreply.github.com> * docs: fix kubernetes versions (release-3.6) (argoproj#14273) Signed-off-by: Alan Clucas <alan@clucas.org> * fix(workflow/sync): use RWMutex to prevent concurrent map access (cherry-pick argoproj#14321) (argoproj#14322) Signed-off-by: Ryan Currah <ryan@currah.ca> Co-authored-by: Ryan Currah <ryan@currah.ca> * chore(lint): update golangci-lint to 2.1.1 (argoproj#14390) (cherry-pick release-3.6) (argoproj#14417) * chore: bump golang 1.23->1.24 (argoproj#14385) (cherry-pick release-3.6) (argoproj#14418) * fix: gracefully handle invalid CronWorkflows and simplify logic. (cherry-pick argoproj#14197) (argoproj#14419) Signed-off-by: Mason Malone <651224+MasonM@users.noreply.github.com> * fix: prevent dfs sorter infinite recursion on cycle. Fixes argoproj#13395 (cherry-pick argoproj#14391) (argoproj#14420) Signed-off-by: Adrien Delannoy <a.delannoyfr@gmail.com> Co-authored-by: Adrien Delannoy <a.delannoyfr@gmail.com> * chore(deps): bump github.com/expr-lang/expr from 1.16.9 to 1.17.0 (argoproj#14307) (release-3.6) (argoproj#14421) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps)!: update k8s and argo-events (release-3.6) (argoproj#14424) Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: william.vanhevelingen <william.vanhevelingen@acquia.com> Signed-off-by: Mason Malone <651224+MasonM@users.noreply.github.com> Signed-off-by: William Van Hevelingen <william.vanhevelingen@acquia.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: William Van Hevelingen <William.VanHevelingen@acquia.com> Co-authored-by: Mason Malone <651224+MasonM@users.noreply.github.com> * fix: correct retry logic (argoproj#13734) (release-3.6) (argoproj#14428) Signed-off-by: isubasinghe <isitha@pipekit.io> Signed-off-by: Alan Clucas <alan@clucas.org> Co-authored-by: Isitha Subasinghe <isitha@pipekit.io> * fix: manual retries exit handler cleanup. Fixes argoproj#14180 (argoproj#14181) (release-3.6) (argoproj#14429) Signed-off-by: isubasinghe <isitha@pipekit.io> Signed-off-by: Alan Clucas <alan@clucas.org> Co-authored-by: Isitha Subasinghe <isitha@pipekit.io> * fix: correct manual retry logic. Fixes argoproj#14124 (argoproj#14328) (release-3.6) (argoproj#14430) Signed-off-by: oninowang <oninowang@tencent.com> Signed-off-by: Alan Clucas <alan@clucas.org> Co-authored-by: jswxstw <jswxstw@gmail.com> * fix: disable ALPN in argo-server as a workaround (argoproj#14433) Signed-off-by: Alan Clucas <alan@clucas.org> * result of codegen Signed-off-by: Kim <kim.aharfi@codefresh.io> * fix:lint Signed-off-by: Kim <kim.aharfi@codefresh.io> --------- Signed-off-by: Alan Clucas <alan@clucas.org> Signed-off-by: Tim Collins <tim@thecollins.team> Signed-off-by: Roger Peppe <rogpeppe@gmail.com> Signed-off-by: Mason Malone <651224+MasonM@users.noreply.github.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Rohan K <rohankmr414@gmail.com> Signed-off-by: Prabakaran Kumaresshan <4676330+nixphix@users.noreply.github.com> Signed-off-by: Koichi Shimada <jumpe1programming@gmail.com> Signed-off-by: Ryan Currah <ryan@currah.ca> Signed-off-by: Adrien Delannoy <a.delannoyfr@gmail.com> Signed-off-by: william.vanhevelingen <william.vanhevelingen@acquia.com> Signed-off-by: William Van Hevelingen <william.vanhevelingen@acquia.com> Signed-off-by: isubasinghe <isitha@pipekit.io> Signed-off-by: oninowang <oninowang@tencent.com> Signed-off-by: Kim <kim.aharfi@codefresh.io> Co-authored-by: Alan Clucas <alan@clucas.org> Co-authored-by: gcp-cherry-pick-bot[bot] <98988430+gcp-cherry-pick-bot[bot]@users.noreply.github.com> Co-authored-by: Tim Collins <45351296+tico24@users.noreply.github.com> Co-authored-by: Roger Peppe <rogpeppe@gmail.com> Co-authored-by: Mason Malone <651224+MasonM@users.noreply.github.com> Co-authored-by: Vaibhav Kaushik <vaibhavkaushik@salesforce.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Rohan K <rohankmr414@gmail.com> Co-authored-by: Prabakaran Kumaresshan <4676330+nixphix@users.noreply.github.com> Co-authored-by: koichi <51446844+jumpe1@users.noreply.github.com> Co-authored-by: Ryan Currah <ryan@currah.ca> Co-authored-by: Adrien Delannoy <a.delannoyfr@gmail.com> Co-authored-by: William Van Hevelingen <William.VanHevelingen@acquia.com> Co-authored-by: Isitha Subasinghe <isitha@pipekit.io> Co-authored-by: jswxstw <jswxstw@gmail.com>

@dmarquez-splunk

As @dmarquez-splunk discovered, the Sprig upgrade in argoproj#14307 introduced a regression when evaluating an expression that has a call to a variadic Sprig function with `nil`. This was fixed in expr-lang/expr#868, which was released as [v1.17.7](https://github.com/expr-lang/expr/releases/tag/v1.17.7). I also added a test case to prevent regressions. Signed-off-by: Mason Malone <651224+MasonM@users.noreply.github.com>

dependabot bot added go Pull requests that update Go dependencies type/dependencies PRs and issues specific to updating dependencies labels Mar 18, 2025

github-actions bot approved these changes Mar 18, 2025

View reviewed changes

github-actions bot enabled auto-merge (squash) March 18, 2025 00:16

dependabot bot force-pushed the dependabot/go_modules/go_modules-30fd4a929d branch from c60735d to fa85caa Compare March 24, 2025 19:20

github-actions bot approved these changes Mar 24, 2025

View reviewed changes

fix: unit test

c1262ec

Signed-off-by: Tianchu Zhao <evantczhao@gmail.com>

github-actions bot merged commit 9b7c0c4 into main Apr 2, 2025
54 of 56 checks passed

github-actions bot deleted the dependabot/go_modules/go_modules-30fd4a929d branch April 2, 2025 03:27

Joibel mentioned this pull request Apr 23, 2025

Release v3.6 patch releases discussion #14259

Open

Joibel mentioned this pull request Apr 23, 2025

chore(deps): bump github.com/expr-lang/expr from 1.16.9 to 1.17.0 (#14307) (release-3.6) #14421

Merged

Joibel added a commit that referenced this pull request Apr 23, 2025

chore(deps): bump github.com/expr-lang/expr from 1.16.9 to 1.17.0 (#1…

f1cae21

…4307) (release-3.6) (#14421) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

MasonM mentioned this pull request Dec 16, 2025

fix: upgrade expr to bring in bugfix. Fixes #15093 #15168

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): bump github.com/expr-lang/expr from 1.16.9 to 1.17.0 in the go_modules group #14307

chore(deps): bump github.com/expr-lang/expr from 1.16.9 to 1.17.0 in the go_modules group #14307

Uh oh!

dependabot bot commented on behalf of github Mar 18, 2025 •

edited

Loading

Uh oh!

Uh oh!

blkperl commented Apr 18, 2025

Uh oh!

gcp-cherry-pick-bot bot commented Apr 18, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

chore(deps): bump github.com/expr-lang/expr from 1.16.9 to 1.17.0 in the go_modules group #14307

chore(deps): bump github.com/expr-lang/expr from 1.16.9 to 1.17.0 in the go_modules group #14307

Uh oh!

Conversation

dependabot bot commented on behalf of github Mar 18, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v1.17.0

Uh oh!

Uh oh!

blkperl commented Apr 18, 2025

Uh oh!

gcp-cherry-pick-bot bot commented Apr 18, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

dependabot bot commented on behalf of github Mar 18, 2025 •

edited

Loading