-
Notifications
You must be signed in to change notification settings - Fork 646
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Keep all x-minio- headers as-is #1970
Merged
harshavardhana
merged 1 commit into
minio:master
from
klauspost:putobject-keep-all-x-minio
Jun 10, 2024
Merged
Keep all x-minio- headers as-is #1970
harshavardhana
merged 1 commit into
minio:master
from
klauspost:putobject-keep-all-x-minio
Jun 10, 2024
+6
−16
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Having a whitelist for minio headers is pointless. Remove so we don't have to keep these in sync.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Shouldn't we make sure to remove x-minio-internal?
@harshavardhana They already get sent, just with a So the current implementation doesn't give any double safety. They should be filtered out elsewhere (and are AFAICT). |
1 task
klauspost
added a commit
to klauspost/minio
that referenced
this pull request
Jun 10, 2024
`minio-go` renames the header. Fix in minio/minio-go#1970 Bonus 1: This also renames the header, in line with other replication headers. Bonus 2: Improve error message when local host not found in ellipsis.
1 task
harshavardhana
approved these changes
Jun 10, 2024
charithe
referenced
this pull request
in cerbos/cerbos
Jun 24, 2024
[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com) This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | Type | Update | |---|---|---|---|---|---|---|---| | [github.com/aws/aws-sdk-go](https://togithub.com/aws/aws-sdk-go) | `v1.54.2` -> `v1.54.6` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2faws%2faws-sdk-go/v1.54.6?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2faws%2faws-sdk-go/v1.54.6?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2faws%2faws-sdk-go/v1.54.2/v1.54.6?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2faws%2faws-sdk-go/v1.54.2/v1.54.6?slim=true)](https://docs.renovatebot.com/merge-confidence/) | require | patch | | [github.com/bufbuild/buf](https://togithub.com/bufbuild/buf) | `v1.33.0` -> `v1.34.0` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fbufbuild%2fbuf/v1.34.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2fbufbuild%2fbuf/v1.34.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2fbufbuild%2fbuf/v1.33.0/v1.34.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fbufbuild%2fbuf/v1.33.0/v1.34.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | require | minor | | [github.com/cerbos/cerbos-sdk-go](https://togithub.com/cerbos/cerbos-sdk-go) | `v0.2.7` -> `v0.2.8` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fcerbos%2fcerbos-sdk-go/v0.2.8?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2fcerbos%2fcerbos-sdk-go/v0.2.8?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2fcerbos%2fcerbos-sdk-go/v0.2.7/v0.2.8?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fcerbos%2fcerbos-sdk-go/v0.2.7/v0.2.8?slim=true)](https://docs.renovatebot.com/merge-confidence/) | require | patch | | [github.com/cerbos/cerbos/api/genpb](https://togithub.com/cerbos/cerbos) | `v0.36.1-0.20240612095234-af7a526c03b6` -> `v0.37.0` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fcerbos%2fcerbos%2fapi%2fgenpb/v0.37.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2fcerbos%2fcerbos%2fapi%2fgenpb/v0.37.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2fcerbos%2fcerbos%2fapi%2fgenpb/v0.36.1-0.20240612095234-af7a526c03b6/v0.37.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fcerbos%2fcerbos%2fapi%2fgenpb/v0.36.1-0.20240612095234-af7a526c03b6/v0.37.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | require | minor | | [github.com/go-cmd/cmd](https://togithub.com/go-cmd/cmd) | `v1.4.2` -> `v1.4.3` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fgo-cmd%2fcmd/v1.4.3?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2fgo-cmd%2fcmd/v1.4.3?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2fgo-cmd%2fcmd/v1.4.2/v1.4.3?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fgo-cmd%2fcmd/v1.4.2/v1.4.3?slim=true)](https://docs.renovatebot.com/merge-confidence/) | require | patch | | [github.com/lestrrat-go/jwx/v2](https://togithub.com/lestrrat-go/jwx) | `v2.0.21` -> `v2.1.0` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2flestrrat-go%2fjwx%2fv2/v2.1.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2flestrrat-go%2fjwx%2fv2/v2.1.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2flestrrat-go%2fjwx%2fv2/v2.0.21/v2.1.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2flestrrat-go%2fjwx%2fv2/v2.0.21/v2.1.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | require | minor | | [github.com/minio/minio-go/v7](https://togithub.com/minio/minio-go) | `v7.0.71` -> `v7.0.72` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fminio%2fminio-go%2fv7/v7.0.72?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2fminio%2fminio-go%2fv7/v7.0.72?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2fminio%2fminio-go%2fv7/v7.0.71/v7.0.72?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fminio%2fminio-go%2fv7/v7.0.71/v7.0.72?slim=true)](https://docs.renovatebot.com/merge-confidence/) | require | patch | | [github.com/rivo/tview](https://togithub.com/rivo/tview) | `23476fa` -> `c38c796` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2frivo%2ftview/v0.0.0-20240622152042-c38c796625fb?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2frivo%2ftview/v0.0.0-20240622152042-c38c796625fb?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2frivo%2ftview/v0.0.0-20240616192244-23476fa0bab2/v0.0.0-20240622152042-c38c796625fb?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2frivo%2ftview/v0.0.0-20240616192244-23476fa0bab2/v0.0.0-20240622152042-c38c796625fb?slim=true)](https://docs.renovatebot.com/merge-confidence/) | require | digest | | [go.elastic.co/go-licence-detector](https://togithub.com/elastic/go-licence-detector) | `v0.6.0` -> `v0.6.1` | [![age](https://developer.mend.io/api/mc/badges/age/go/go.elastic.co%2fgo-licence-detector/v0.6.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/go.elastic.co%2fgo-licence-detector/v0.6.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/go.elastic.co%2fgo-licence-detector/v0.6.0/v0.6.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/go.elastic.co%2fgo-licence-detector/v0.6.0/v0.6.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | require | patch | | [google.golang.org/genproto/googleapis/api](https://togithub.com/googleapis/go-genproto) | `a8a6208` -> `68d350f` | [![age](https://developer.mend.io/api/mc/badges/age/go/google.golang.org%2fgenproto%2fgoogleapis%2fapi/v0.0.0-20240617180043-68d350f18fd4?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/google.golang.org%2fgenproto%2fgoogleapis%2fapi/v0.0.0-20240617180043-68d350f18fd4?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/google.golang.org%2fgenproto%2fgoogleapis%2fapi/v0.0.0-20240610135401-a8a62080eff3/v0.0.0-20240617180043-68d350f18fd4?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/google.golang.org%2fgenproto%2fgoogleapis%2fapi/v0.0.0-20240610135401-a8a62080eff3/v0.0.0-20240617180043-68d350f18fd4?slim=true)](https://docs.renovatebot.com/merge-confidence/) | require | digest | --- ### Release Notes <details> <summary>aws/aws-sdk-go (github.com/aws/aws-sdk-go)</summary> ### [`v1.54.6`](https://togithub.com/aws/aws-sdk-go/blob/HEAD/CHANGELOG.md#Release-v1546-2024-06-20) [Compare Source](https://togithub.com/aws/aws-sdk-go/compare/v1.54.5...v1.54.6) \=== ##### Service Client Updates - `service/bedrock-runtime`: Updates service API and documentation - `service/codeartifact`: Updates service API and documentation - `service/compute-optimizer`: Updates service API and documentation - `service/cost-optimization-hub`: Updates service API, documentation, and waiters - `service/dynamodb`: Updates service API, documentation, waiters, paginators, and examples - Doc-only update for DynamoDB. Fixed Important note in 6 Global table APIs - CreateGlobalTable, DescribeGlobalTable, DescribeGlobalTableSettings, ListGlobalTables, UpdateGlobalTable, and UpdateGlobalTableSettings. - `service/glue`: Updates service paginators - Fix Glue paginators for Jobs, JobRuns, Triggers, Blueprints and Workflows. - `service/ivs-realtime`: Updates service API, documentation, and waiters - `service/sagemaker`: Updates service API and documentation - Adds support for model references in Hub service, and adds support for cross-account access of Hubs - `service/securityhub`: Updates service API and documentation ### [`v1.54.5`](https://togithub.com/aws/aws-sdk-go/blob/HEAD/CHANGELOG.md#Release-v1545-2024-06-19) [Compare Source](https://togithub.com/aws/aws-sdk-go/compare/v1.54.4...v1.54.5) \=== ##### Service Client Updates - `service/artifact`: Updates service API, documentation, waiters, and examples - `service/athena`: Updates service API - Add v2 smoke tests and smithy smokeTests trait for SDK testing. - `service/cur`: Updates service API - Add v2 smoke tests and smithy smokeTests trait for SDK testing. - `service/directconnect`: Updates service API - Add v2 smoke tests and smithy smokeTests trait for SDK testing. - `service/elastictranscoder`: Updates service API - Add v2 smoke tests and smithy smokeTests trait for SDK testing. - `service/opensearch`: Updates service API and documentation ### [`v1.54.4`](https://togithub.com/aws/aws-sdk-go/blob/HEAD/CHANGELOG.md#Release-v1544-2024-06-18) [Compare Source](https://togithub.com/aws/aws-sdk-go/compare/v1.54.3...v1.54.4) \=== ##### Service Client Updates - `service/bedrock-runtime`: Updates service API and documentation - `service/cloudtrail`: Updates service API - Add v2 smoke tests and smithy smokeTests trait for SDK testing. - `service/config`: Updates service API - `service/eks`: Updates service API and documentation - `service/lightsail`: Updates service API - Add v2 smoke tests and smithy smokeTests trait for SDK testing. - `service/polly`: Updates service API - Add v2 smoke tests and smithy smokeTests trait for SDK testing. - `service/rekognition`: Updates service API - Add v2 smoke tests and smithy smokeTests trait for SDK testing. - `service/sagemaker`: Updates service API, documentation, and paginators - Launched a new feature in SageMaker to provide managed MLflow Tracking Servers for customers to track ML experiments. This release also adds a new capability of attaching additional storage to SageMaker HyperPod cluster instances. - `service/shield`: Updates service API - Add v2 smoke tests and smithy smokeTests trait for SDK testing. - `service/snowball`: Updates service API - Add v2 smoke tests and smithy smokeTests trait for SDK testing. ### [`v1.54.3`](https://togithub.com/aws/aws-sdk-go/blob/HEAD/CHANGELOG.md#Release-v1543-2024-06-17) [Compare Source](https://togithub.com/aws/aws-sdk-go/compare/v1.54.2...v1.54.3) \=== ##### Service Client Updates - `service/acm-pca`: Updates service API and documentation - `service/batch`: Updates service API - Add v2 smoke tests and smithy smokeTests trait for SDK testing. - `service/codebuild`: Updates service API and documentation - AWS CodeBuild now supports global and organization GitHub webhooks - `service/cognito-idp`: Updates service API - `service/ds`: Updates service API - Add v2 smoke tests and smithy smokeTests trait for SDK testing. - `service/elasticfilesystem`: Updates service API - Add v2 smoke tests and smithy smokeTests trait for SDK testing. - `service/glue`: Updates service API, documentation, and paginators - This release introduces a new feature, Usage profiles. Usage profiles allow the AWS Glue admin to create different profiles for various classes of users within the account, enforcing limits and defaults for jobs and sessions. - `service/kms`: Updates service examples - Updating SDK example for KMS DeriveSharedSecret API. - `service/mediaconvert`: Updates service API and documentation - This release includes support for creating I-frame only video segments for DASH trick play. - `service/secretsmanager`: Updates service documentation - Doc only update for Secrets Manager - `service/waf`: Updates service API - Add v2 smoke tests and smithy smokeTests trait for SDK testing. </details> <details> <summary>bufbuild/buf (github.com/bufbuild/buf)</summary> ### [`v1.34.0`](https://togithub.com/bufbuild/buf/blob/HEAD/CHANGELOG.md#v1340---2024-06-21) [Compare Source](https://togithub.com/bufbuild/buf/compare/v1.33.0...v1.34.0) - Add `buf config ls-modules` command to list configured modules. - Fix issue where `buf generate` would succeed on missing insertion points and panic on empty insertion point files. - Update `buf generate` to allow the use of Editions syntax when doing local code generation by proxying to a `protoc` binary (for languages where code gen is implemented inside of `protoc` instead of in a plugin: Java, C++, Python, etc). - Allow use of an array of strings for the `protoc_path` property of for `buf.gen.yaml`, where the first array element is the actual path and other array elements are extra arguments that are passed to `protoc` each time it is invoked. </details> <details> <summary>cerbos/cerbos-sdk-go (github.com/cerbos/cerbos-sdk-go)</summary> ### [`v0.2.8`](https://togithub.com/cerbos/cerbos-sdk-go/compare/v0.2.7...v0.2.8) [Compare Source](https://togithub.com/cerbos/cerbos-sdk-go/compare/v0.2.7...v0.2.8) </details> <details> <summary>cerbos/cerbos (github.com/cerbos/cerbos/api/genpb)</summary> ### [`v0.37.0`](https://togithub.com/cerbos/cerbos/releases/tag/v0.37.0) [Compare Source](https://togithub.com/cerbos/cerbos/compare/v0.36.0...v0.37.0) ## Cerbos 0.37.0 View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.37.0.html #### Changelog ##### Features - [`f2ad52f`](https://togithub.com/cerbos/cerbos/commit/f2ad52fc) feat(repl): Autocomplete for REPL directives, and a small fix for filenames ([#​2169](https://togithub.com/cerbos/cerbos/issues/2169)) - [`89e6ee9`](https://togithub.com/cerbos/cerbos/commit/89e6ee9b) feat: Add filtering by policy IDs to InspectPolicies RPC ([#​2160](https://togithub.com/cerbos/cerbos/issues/2160)) - [`2efb5e5`](https://togithub.com/cerbos/cerbos/commit/2efb5e51) feat: List local and imported variables in the policy with InspectPolicies ([#​2141](https://togithub.com/cerbos/cerbos/issues/2141)) ##### Enhancements - [`7de21d8`](https://togithub.com/cerbos/cerbos/commit/7de21d8a) enhancement(helm): Allow deploying as a DaemonSet ([#​1658](https://togithub.com/cerbos/cerbos/issues/1658)) - [`57cf574`](https://togithub.com/cerbos/cerbos/commit/57cf5744) enhancement: Add policy id parameter to inspect command ([#​2174](https://togithub.com/cerbos/cerbos/issues/2174)) - [`9a6450e`](https://togithub.com/cerbos/cerbos/commit/9a6450ee) enhancement: Context for YAML syntax errors ([#​2151](https://togithub.com/cerbos/cerbos/issues/2151)) - [`b6f9a61`](https://togithub.com/cerbos/cerbos/commit/b6f9a615) enhancement: Ensure git protocol matches the URL ([#​2163](https://togithub.com/cerbos/cerbos/issues/2163)) - [`3ea1ea0`](https://togithub.com/cerbos/cerbos/commit/3ea1ea01) enhancement: Formatting options for cerbosctl inspect command ([#​2179](https://togithub.com/cerbos/cerbos/issues/2179)) - [`04f0373`](https://togithub.com/cerbos/cerbos/commit/04f03734) enhancement: InspectPolicies lists derived roles in the policy ([#​2186](https://togithub.com/cerbos/cerbos/issues/2186)) - [`90bae03`](https://togithub.com/cerbos/cerbos/commit/90bae03c) enhancement: Revise API limits ([#​2161](https://togithub.com/cerbos/cerbos/issues/2161)) ##### Bug fixes - [`df62cb6`](https://togithub.com/cerbos/cerbos/commit/df62cb6a) fix(docs): Wildcard action wording ([#​2178](https://togithub.com/cerbos/cerbos/issues/2178)) - [`f69dfc0`](https://togithub.com/cerbos/cerbos/commit/f69dfc0e) fix: Detect incorrectly indented YAML ([#​2153](https://togithub.com/cerbos/cerbos/issues/2153)) - [`c8edda5`](https://togithub.com/cerbos/cerbos/commit/c8edda5e) fix: Work around gRPC-Gateway bug in `X-Forwarded-For` handling ([#​2152](https://togithub.com/cerbos/cerbos/issues/2152)) ##### Chores - [`7cd8ffd`](https://togithub.com/cerbos/cerbos/commit/7cd8ffd4) chore(ci): Clear disk space for npm build ([#​2149](https://togithub.com/cerbos/cerbos/issues/2149)) - [`5ec9716`](https://togithub.com/cerbos/cerbos/commit/5ec97160) chore(ci): Clear disk space for release workflow ([#​2145](https://togithub.com/cerbos/cerbos/issues/2145)) - [`27df29e`](https://togithub.com/cerbos/cerbos/commit/27df29e2) chore(ci): Increase timeout for npm build stage ([#​2150](https://togithub.com/cerbos/cerbos/issues/2150)) - [`342e93b`](https://togithub.com/cerbos/cerbos/commit/342e93bb) chore(ci): Upgrade to GoReleaser v2 ([#​2184](https://togithub.com/cerbos/cerbos/issues/2184)) - [`af7a526`](https://togithub.com/cerbos/cerbos/commit/af7a526c) chore(deps): Bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.5.1 to 1.6.0 in /tools ([#​2185](https://togithub.com/cerbos/cerbos/issues/2185)) - [`c7e7860`](https://togithub.com/cerbos/cerbos/commit/c7e7860c) chore(deps): Bump github.com/goreleaser/goreleaser from 1.26.0 to 1.26.1 in /tools ([#​2154](https://togithub.com/cerbos/cerbos/issues/2154)) - [`f567f6e`](https://togithub.com/cerbos/cerbos/commit/f567f6ef) chore(deps): Update bufbuild/buf-setup-action action to v1.32.1 ([#​2164](https://togithub.com/cerbos/cerbos/issues/2164)) - [`c1c49f7`](https://togithub.com/cerbos/cerbos/commit/c1c49f73) chore(deps): Update bufbuild/buf-setup-action action to v1.32.2 ([#​2170](https://togithub.com/cerbos/cerbos/issues/2170)) - [`bea6ccc`](https://togithub.com/cerbos/cerbos/commit/bea6cccb) chore(deps): Update bufbuild/buf-setup-action action to v1.33.0 ([#​2188](https://togithub.com/cerbos/cerbos/issues/2188)) - [`b6d97dd`](https://togithub.com/cerbos/cerbos/commit/b6d97ddb) chore(deps): Update go deps ([#​2147](https://togithub.com/cerbos/cerbos/issues/2147)) - [`99c09ef`](https://togithub.com/cerbos/cerbos/commit/99c09ef6) chore(deps): Update go deps ([#​2165](https://togithub.com/cerbos/cerbos/issues/2165)) - [`d38b920`](https://togithub.com/cerbos/cerbos/commit/d38b9205) chore(deps): Update go deps ([#​2171](https://togithub.com/cerbos/cerbos/issues/2171)) - [`a059dd3`](https://togithub.com/cerbos/cerbos/commit/a059dd39) chore(deps): Update go deps ([#​2181](https://togithub.com/cerbos/cerbos/issues/2181)) - [`85c4161`](https://togithub.com/cerbos/cerbos/commit/85c41615) chore(deps): Update go deps ([#​2187](https://togithub.com/cerbos/cerbos/issues/2187)) - [`2b69f59`](https://togithub.com/cerbos/cerbos/commit/2b69f59f) chore(deps): Update go deps to v2 (major) ([#​2167](https://togithub.com/cerbos/cerbos/issues/2167)) - [`f55a92e`](https://togithub.com/cerbos/cerbos/commit/f55a92e7) chore(deps): Update golangci/golangci-lint-action action to v6 ([#​2173](https://togithub.com/cerbos/cerbos/issues/2173)) - [`cc94282`](https://togithub.com/cerbos/cerbos/commit/cc94282b) chore(deps): Update node.js deps ([#​2148](https://togithub.com/cerbos/cerbos/issues/2148)) - [`be936f2`](https://togithub.com/cerbos/cerbos/commit/be936f24) chore(deps): Update node.js deps ([#​2166](https://togithub.com/cerbos/cerbos/issues/2166)) - [`c5dc261`](https://togithub.com/cerbos/cerbos/commit/c5dc2612) chore(deps): Update node.js deps ([#​2172](https://togithub.com/cerbos/cerbos/issues/2172)) - [`32e6336`](https://togithub.com/cerbos/cerbos/commit/32e63365) chore(deps): Update node.js deps ([#​2182](https://togithub.com/cerbos/cerbos/issues/2182)) - [`10b0f0c`](https://togithub.com/cerbos/cerbos/commit/10b0f0c8) chore(docs): Redirect old versions with correct status code ([#​2168](https://togithub.com/cerbos/cerbos/issues/2168)) - [`ae7cfca`](https://togithub.com/cerbos/cerbos/commit/ae7cfcaf) chore(release): Add 0.37.0 release notes ([#​2189](https://togithub.com/cerbos/cerbos/issues/2189)) - [`bf41e87`](https://togithub.com/cerbos/cerbos/commit/bf41e876) chore(release): Prepare release 0.37.0 - [`c1c4049`](https://togithub.com/cerbos/cerbos/commit/c1c4049c) chore(version): Bump version to 0.37.0 - [`a1a7010`](https://togithub.com/cerbos/cerbos/commit/a1a7010a) chore: Migrate to Buf configuration v2 ([#​2180](https://togithub.com/cerbos/cerbos/issues/2180)) - [`7fdc055`](https://togithub.com/cerbos/cerbos/commit/7fdc055b) chore: Remove workaround for fixed gRPC-Gateway bug in `X-Forwarded-For` handling ([#​2157](https://togithub.com/cerbos/cerbos/issues/2157)) - [`1a25664`](https://togithub.com/cerbos/cerbos/commit/1a256644) chore: Update error message for invalid expression ([#​2156](https://togithub.com/cerbos/cerbos/issues/2156)) </details> <details> <summary>go-cmd/cmd (github.com/go-cmd/cmd)</summary> ### [`v1.4.3`](https://togithub.com/go-cmd/cmd/blob/HEAD/CHANGELOG.md#v143-2024-06-23) [Compare Source](https://togithub.com/go-cmd/cmd/compare/v1.4.2...v1.4.3) - Fixed issue 94: Command is still executed if Stop() is called during BeforeExec hooks - Added a note in docs about SIGINT (issue [#​100](https://togithub.com/go-cmd/cmd/issues/100)) - Updated test matrix to go1.22, go1.21, and go1.20 </details> <details> <summary>lestrrat-go/jwx (github.com/lestrrat-go/jwx/v2)</summary> ### [`v2.1.0`](https://togithub.com/lestrrat-go/jwx/releases/tag/v2.1.0) [Compare Source](https://togithub.com/lestrrat-go/jwx/compare/v2.0.21...v2.1.0) v2.1.0 18 Jun 2024 [New Features] * [jwt] Added `jwt.ParseCookie()` function * [jwt] `jwt.ParseRequest()` can now accept a new option, jwt.WithCookieKey() to specify a cookie name to extract the token from. * [jwt] `jwt.ParseRequest()` and `jwt.ParseCookie()` can accept the `jwt.WithCookie()` option, which will, upon successful token parsing, make the functions assign the *http.Cookie used to parse the token. This allows users to further inspect the cookie where the token came from, should the need arise. * [jwt] (BREAKING CHANGE) `jwt.ParseRequest()` no longer automatically looks for "Authorization" header when only `jwt.WithFormKey()` is used. This behavior is the same for `jwt.WithCookieKey()` and any similar options that may be implemented in the future. ### previously jwt.ParseRequest(req) // looks under Authorization jwt.ParseReuqest(req, jwt.WithFormKey("foo")) // looks under foo AND Authorization jwt.ParseReuqest(req, jwt.WithHeaderKey("Authorization"), jwt.WithFormKey("foo")) // looks under foo AND Authorization ### since this release jwt.ParseRequest(req) // same as before jwt.ParseRequest(req, jwt.WithFormKey("foo")) // looks under foo jwt.ParseReuqest(req, jwt.WithHeaderKey("Authorization"), jwt.WithFormKey("foo")) // looks under foo AND Authorization * [jwt] Add `jwt.WithResetValidators()` option to `jwt.Validate()`. This option will allow you to tell `jwt.Validate()` to NOT automatically check the default validators (`iat`, `exp`, and `nbf`), so that you can completely customize the validation with the validators you specify using `jwt.WithValidator()`. This sort of behavior is useful for special cases such as https://openid.net/specs/openid-connect-rpinitiated-1_0.html. However, you SHOULD NOT use this option unless you know exactly what you are doing, as this will pose significant security issues when used incorrectly. * [jwk] Provide a _stop-gap_ measure to work with PEM format ASN.1 DER encoded secp256k1 keys. In order to enable this feature, you must compile jwx with TWO build tags: `jwx_es256k` to enable ES256K/secp256k1, and `jwx_secp256k1_pem` to enable PEM handling. Not one, but BOTH tags need to be present. With this change, by suppliying the `WithPEM(true)` option, `jwk.Parse()` is now able to read sep256k1 keys. Also, `jwk.Pem()` should be able to handle `jwk.Key` objects that represent a secp256k1 key. Please do note that the implementation of this feature is dodgy at best. Currently Go's crypto/x509 does not allow handling additional EC curves, and thus in order to accomodate secp256k1 keys in PEM/ASN.1 DER format we need to "patch" the stdlib. We do this by copy-and-pasting relevant parts of go 1.22.2's crypto/x509 code and adding the minimum required code to make secp256k1 keys work. Because of the above, there are several important caveats for this feature: 1. This feature is provided solely as a stop-gap measure until such time Go's stdlib provides a way to handle non-standard EC curves, or another external module is able to solve this issue. 2. This feature should be considered unstable and not guaranteed by semantic versioning backward compatibility. At any given point we may drop or modify this feature. It may be because we can no longer maintain the code, or perhaps a security issue is found in the version of the code that we ship with, etc. 3. Please always remember that we are now bundling a static set of code for handling x509 formats. You are taking a possible security risk by code that could be outdated. Please always do your own research, and if possible, please notify us if the bundled code needs to be updated. Unless you know what you are doing, it is not recommended that you enable this feature. 4. Please note that because we imported the code from go 1.22's src/crypto/x509, it has some go1.20-isms in its code. Therefore you will not be able to use the `jwx_secp256k1_pem` tag to enable secp256k1 key PEM handling against codebases that are built using go 1.19 and below (the build will succeed, but the feature will be unavailable). 5. We have no plans to include more curves this way. One is already one too many. * [jwe] Fixed a bug when using encryption algorithms involving PBES2 along with the jwx.WithUseNumber() global option. Enabling this option would turn all values stored in the JSON content to be of type `json.Number`, but we did not account for it when checking for the value of `p2c` header, resulting in a conversion error. </details> <details> <summary>minio/minio-go (github.com/minio/minio-go/v7)</summary> ### [`v7.0.72`](https://togithub.com/minio/minio-go/releases/tag/v7.0.72): Bugfix Release [Compare Source](https://togithub.com/minio/minio-go/compare/v7.0.71...v7.0.72) #### What's Changed - Keep all x-minio- headers as-is by [@​klauspost](https://togithub.com/klauspost) in [https://github.com/minio/minio-go/pull/1970](https://togithub.com/minio/minio-go/pull/1970) **Full Changelog**: minio/minio-go@v7.0.71...v7.0.72 </details> <details> <summary>elastic/go-licence-detector (go.elastic.co/go-licence-detector)</summary> ### [`v0.6.1`](https://togithub.com/elastic/go-licence-detector/compare/v0.6.0...v0.6.1) [Compare Source](https://togithub.com/elastic/go-licence-detector/compare/v0.6.0...v0.6.1) </details> --- ### Configuration 📅 **Schedule**: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://togithub.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://developer.mend.io/github/cerbos/cerbos). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy40MTMuMiIsInVwZGF0ZWRJblZlciI6IjM3LjQxMy4yIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJhcmVhL2RlcGVuZGVuY2llcyIsImJvdHMiLCJraW5kL2Nob3JlIl19--> Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
mraerino
referenced
this pull request
in ffddorf/terraform-backend
Jun 30, 2024
[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com) This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [github.com/minio/minio-go/v7](https://togithub.com/minio/minio-go) | `v7.0.70` -> `v7.0.72` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fminio%2fminio-go%2fv7/v7.0.72?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2fminio%2fminio-go%2fv7/v7.0.72?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2fminio%2fminio-go%2fv7/v7.0.70/v7.0.72?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fminio%2fminio-go%2fv7/v7.0.70/v7.0.72?slim=true)](https://docs.renovatebot.com/merge-confidence/) | --- ### Release Notes <details> <summary>minio/minio-go (github.com/minio/minio-go/v7)</summary> ### [`v7.0.72`](https://togithub.com/minio/minio-go/releases/tag/v7.0.72): Bugfix Release [Compare Source](https://togithub.com/minio/minio-go/compare/v7.0.71...v7.0.72) #### What's Changed - Keep all x-minio- headers as-is by [@​klauspost](https://togithub.com/klauspost) in [https://github.com/minio/minio-go/pull/1970](https://togithub.com/minio/minio-go/pull/1970) **Full Changelog**: minio/minio-go@v7.0.71...v7.0.72 ### [`v7.0.71`](https://togithub.com/minio/minio-go/releases/tag/v7.0.71): Bugfix Release [Compare Source](https://togithub.com/minio/minio-go/compare/v7.0.70...v7.0.71) #### What's Changed - Add support for DelMarkerExpiration element by [@​krisis](https://togithub.com/krisis) in [https://github.com/minio/minio-go/pull/1959](https://togithub.com/minio/minio-go/pull/1959) - feat: support tags for postPolicy Upload by [@​jiuker](https://togithub.com/jiuker) in [https://github.com/minio/minio-go/pull/1967](https://togithub.com/minio/minio-go/pull/1967) - Add ListMultipartUploads mint test by [@​klauspost](https://togithub.com/klauspost) in [https://github.com/minio/minio-go/pull/1963](https://togithub.com/minio/minio-go/pull/1963) **Full Changelog**: minio/minio-go@v7.0.70...v7.0.71 </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://developer.mend.io/github/ffddorf/terraform-backend). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4zMjEuMiIsInVwZGF0ZWRJblZlciI6IjM3LjQyMS4wIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119--> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Having a whitelist for minio headers is pointless. Remove so we don't have to keep these in sync.