Skip to content

Bump the go group across 1 directory with 7 updates #443

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump the go group across 1 directory with 7 updates #443

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Mar 1, 2025
edited
Loading

Bumps the go group with 6 updates in the /build.assets/tooling directory:

Package From To
github.com/awalterschulze/goderive 0.0.0-20240309134105-e3f2fdff7d5e 0.5.1
github.com/bmatcuk/doublestar/v4 4.7.1 4.8.1
github.com/gravitational/trace 1.4.0 1.5.0
golang.org/x/mod 0.22.0 0.23.0
golang.org/x/oauth2 0.24.0 0.27.0
helm.sh/helm/v3 3.16.4 3.17.1

Updates github.com/awalterschulze/goderive from 0.0.0-20240309134105-e3f2fdff7d5e to 0.5.1

Commits

Updates github.com/bmatcuk/doublestar/v4 from 4.7.1 to 4.8.1

Release notes

Sourced from github.com/bmatcuk/doublestar/v4's releases.

Small Performance Improvement for MatchUnvalidated

Skip some additional validation checks in MatchUnvalidated. Thanks to @​lukemassa for the PR!

Additional documentation improvements from @​timo-reymann. Thanks!

What's Changed

New Contributors

Full Changelog: bmatcuk/doublestar@v4.8.0...v4.8.1

Fixed Escaped Meta in the "Base" of the Pattern

If the "base" of a pattern (ie, everything up to the first path slash before any meta characters) contains an escaped meta character, doublestar would fail to glob any files.

Thanks to @​tdurieux for finding and fixing this bug!

Breaking-ish Change

I've updated SplitPattern to unescape meta characters in the first returned string. I suspect this shouldn't cause issues for anyone because, if anyone was using this function, they've probably either never passed a pattern with escaped meta characters, or hand-rolled an unescape method to fix the bug - which will now be a no-op for them.

What's Changed

New Contributors

Full Changelog: bmatcuk/doublestar@v4.7.1...v4.8.0

Commits
  • b707fe4 Wording
  • 569c123 Add tests to make sure we're skipping validation
  • 3b1e3d1 Skip additional validations
  • 24bdb14 small updates to docs and tests
  • 32ab680 test: Add tests for number ranges and sets
  • 9ee73e3 docs: Document number ranges and sets in README
  • 29e67f4 fix windows tests
  • 28b892c remove sponsor =(
  • 4b5670c fix(#96) some minor corrections to escaping pattern base
  • 1e7ad31 fix: fix match when there is a escaped meta in the pattern
  • See full diff in compare view

Updates github.com/gravitational/trace from 1.4.0 to 1.5.0

Release notes

Sourced from github.com/gravitational/trace's releases.

v1.5.0

What's Changed

Breaking Changes

  • Remove trail package by @​rosstimothy in gravitational/trace#112. This helps reduce the dependency tree of trace by grpc-go. To continue using trail, you may use github.com/gravitational/api/trail.

Full Changelog: gravitational/trace@v1.4.1...v1.5.0

v1.4.1

What's Changed

  • Bump golang.org/x/net from 0.17.0 to 0.33.0 by @​dependabot in #113 (addresses CVEs on /x/net)

As an indirect consequence of #113 the minimum Go version for trace is now 1.20.

Full Changelog: gravitational/trace@v1.4.0...v1.4.1

Commits

Updates golang.org/x/mod from 0.22.0 to 0.23.0

Commits

Updates golang.org/x/oauth2 from 0.24.0 to 0.27.0

Commits
  • 681b4d8 jws: split token into fixed number of parts
  • 3f78298 all: upgrade go directive to at least 1.23.0 [generated]
  • 109dabf endpoints: add links/provider for Discord
  • ac571fa oauth2: fix docs for Config.DeviceAuth
  • 314ee5b endpoints: add patreon endpoint
  • b9c813b google: add warning about externally-provided credentials
  • 49a531d all: make method and struct comments match the names
  • See full diff in compare view

Updates helm.sh/helm/v3 from 3.16.4 to 3.17.1

Release notes

Sourced from helm.sh/helm/v3's releases.

Helm v3.17.1 is a patch release. Users are encouraged to upgrade for the best experience. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom
  • Test, debug, and contribute charts: ArtifactHub/packages

Installation and Upgrading

Download Helm v3.17.1. The common platform binaries are here:

The Quickstart Guide will get you going from there. For upgrade instructions or detailed installation notes, check the install guide. You can also use a script to install on any system with bash.

What's Next

  • 3.17.2 is the next patch release and will be on March 12, 2025
  • 3.18.0 is the next minor release and will be on May 14, 2025

Changelog

  • add test for nullifying nested global value 980d8ac1939e39138101364400756af2bdee1da5 (Ryan Hockstad)
  • Add test case for removing an entire object c23e3b6c495658bb1eec04b32c8e4bfc5ef4dd60 (Ryan Hockstad)
  • Tests for bugfix: Override subcharts with null values #12879 3110d5ff63a0edcf6decac8288106b55a6f41760 (Scott Rigby)
  • merge null child chart objects 9520c71fb04783cdab111759f0f3c5d1cdc83f1c (Ryan Hockstad)
  • build(deps): bump the k8s-io group with 7 updates ab7dedd4cf47cb7455a283d93a1627a35933d634 (dependabot[bot])
  • fix: check group for resource info match a2d36029d5dba292073d23acea2ef59cfb429ee9 (Jiasheng Zhu)

Helm v3.17.0 is a feature release. Users are encouraged to upgrade for the best experience.

The community keeps growing, and we'd love to see you there!

  • Join the discussion in Kubernetes Slack:
    • for questions and just to hang out
    • for discussing PRs, code, and bugs
  • Hang out at the Public Developer Call: Thursday, 9:30 Pacific via Zoom

... (truncated)

Commits
  • 980d8ac add test for nullifying nested global value
  • c23e3b6 Add test case for removing an entire object
  • 3110d5f Tests for bugfix: Override subcharts with null values #12879
  • 9520c71 merge null child chart objects
  • ab7dedd build(deps): bump the k8s-io group with 7 updates
  • a2d3602 fix: check group for resource info match
  • 301108e bump version to v3.17.0
  • 0ac5d28 Merge pull request #13588 from mattfarina/v3-backport-oci-digest
  • 949b2e6 fix: make ORAS reference private
  • aba95b9 fix: issue with helm template and oci chart
  • Additional commits viewable in compare view

Updates k8s.io/apiextensions-apiserver from 0.32.0 to 0.32.1

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the go group across 1 directory with 7 updates
925e638 
Bumps the go group with 6 updates in the /build.assets/tooling directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/awalterschulze/goderive](https://github.com/awalterschulze/goderive) | `0.0.0-20240309134105-e3f2fdff7d5e` | `0.5.1` |
| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.7.1` | `4.8.1` |
| [github.com/gravitational/trace](https://github.com/gravitational/trace) | `1.4.0` | `1.5.0` |
| [golang.org/x/mod](https://github.com/golang/mod) | `0.22.0` | `0.23.0` |
| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.24.0` | `0.27.0` |
| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.16.4` | `3.17.1` |



Updates `github.com/awalterschulze/goderive` from 0.0.0-20240309134105-e3f2fdff7d5e to 0.5.1
- [Release notes](https://github.com/awalterschulze/goderive/releases)
- [Commits](https://github.com/awalterschulze/goderive/commits/v0.5.1)

Updates `github.com/bmatcuk/doublestar/v4` from 4.7.1 to 4.8.1
- [Release notes](https://github.com/bmatcuk/doublestar/releases)
- [Commits](bmatcuk/doublestar@v4.7.1...v4.8.1)

Updates `github.com/gravitational/trace` from 1.4.0 to 1.5.0
- [Release notes](https://github.com/gravitational/trace/releases)
- [Commits](gravitational/trace@v1.4.0...v1.5.0)

Updates `golang.org/x/mod` from 0.22.0 to 0.23.0
- [Commits](golang/mod@v0.22.0...v0.23.0)

Updates `golang.org/x/oauth2` from 0.24.0 to 0.27.0
- [Commits](golang/oauth2@v0.24.0...v0.27.0)

Updates `helm.sh/helm/v3` from 3.16.4 to 3.17.1
- [Release notes](https://github.com/helm/helm/releases)
- [Commits](helm/helm@v3.16.4...v3.17.1)

Updates `k8s.io/apiextensions-apiserver` from 0.32.0 to 0.32.1
- [Release notes](https://github.com/kubernetes/apiextensions-apiserver/releases)
- [Commits](kubernetes/apiextensions-apiserver@v0.32.0...v0.32.1)

---
updated-dependencies:
- dependency-name: github.com/awalterschulze/goderive
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/bmatcuk/doublestar/v4
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/gravitational/trace
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: golang.org/x/mod
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: golang.org/x/oauth2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: helm.sh/helm/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: k8s.io/apiextensions-apiserver
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Mar 1, 2025
@dependabot Dependabot
Copy link
Author

dependabot bot commented on behalf of github Mar 1, 2025

Dependabot tried to add @codingllama, @fheinecke, @rosstimothy and @zmb3 as reviewers to this PR, but received the following error from GitHub:

POST https://api.github.com/repos/ulfox/teleport/pulls/443/requested_reviewers: 422 - Reviews may only be requested from collaborators. One or more of the users or teams you specified is not a collaborator of the ulfox/teleport repository. // See: https://docs.github.com/rest/pulls/review-requests#request-reviewers-for-a-pull-request

@dependabot Dependabot
Copy link
Author

dependabot bot commented on behalf of github Mar 1, 2025

The following labels could not be found: no-changelog.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants