-
Notifications
You must be signed in to change notification settings - Fork 2.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
chore(deps): bump the common group across 1 directory with 12 updates #6904
Conversation
Bumps the common group with 8 updates in the / directory: | Package | From | To | | --- | --- | --- | | [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.11.1` | `1.12.0` | | [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.5.2` | `1.6.0` | | [github.com/aquasecurity/trivy-aws](https://github.com/aquasecurity/trivy-aws) | `0.9.0` | `0.10.0` | | [github.com/aquasecurity/trivy-checks](https://github.com/aquasecurity/trivy-checks) | `0.11.0` | `0.12.0` | | [github.com/containerd/containerd](https://github.com/containerd/containerd) | `1.7.17` | `1.7.18` | | [github.com/docker/docker](https://github.com/docker/docker) | `26.1.3+incompatible` | `26.1.4+incompatible` | | [golang.org/x/mod](https://github.com/golang/mod) | `0.17.0` | `0.18.0` | | [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.30.0` | `1.30.1` | Updates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.11.1 to 1.12.0 - [Release notes](https://github.com/Azure/azure-sdk-for-go/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-go/blob/main/documentation/release.md) - [Commits](Azure/azure-sdk-for-go@sdk/azcore/v1.11.1...sdk/azcore/v1.12.0) Updates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.5.2 to 1.6.0 - [Release notes](https://github.com/Azure/azure-sdk-for-go/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-go/blob/main/documentation/release.md) - [Commits](Azure/azure-sdk-for-go@sdk/internal/v1.5.2...sdk/azcore/v1.6.0) Updates `github.com/aquasecurity/trivy-aws` from 0.9.0 to 0.10.0 - [Release notes](https://github.com/aquasecurity/trivy-aws/releases) - [Commits](aquasecurity/trivy-aws@v0.9.0...v0.10.0) Updates `github.com/aquasecurity/trivy-checks` from 0.11.0 to 0.12.0 - [Release notes](https://github.com/aquasecurity/trivy-checks/releases) - [Commits](aquasecurity/trivy-checks@v0.11.0...v0.12.0) Updates `github.com/containerd/containerd` from 1.7.17 to 1.7.18 - [Release notes](https://github.com/containerd/containerd/releases) - [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md) - [Commits](containerd/containerd@v1.7.17...v1.7.18) Updates `github.com/docker/docker` from 26.1.3+incompatible to 26.1.4+incompatible - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v26.1.3...v26.1.4) Updates `golang.org/x/crypto` from 0.23.0 to 0.24.0 - [Commits](golang/crypto@v0.23.0...v0.24.0) Updates `golang.org/x/mod` from 0.17.0 to 0.18.0 - [Commits](golang/mod@v0.17.0...v0.18.0) Updates `golang.org/x/net` from 0.25.0 to 0.26.0 - [Commits](golang/net@v0.25.0...v0.26.0) Updates `golang.org/x/term` from 0.20.0 to 0.21.0 - [Commits](golang/term@v0.20.0...v0.21.0) Updates `golang.org/x/text` from 0.15.0 to 0.16.0 - [Release notes](https://github.com/golang/text/releases) - [Commits](golang/text@v0.15.0...v0.16.0) Updates `modernc.org/sqlite` from 1.30.0 to 1.30.1 - [Commits](https://gitlab.com/cznic/sqlite/compare/v1.30.0...v1.30.1) --- updated-dependencies: - dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azcore dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common - dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azidentity dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common - dependency-name: github.com/aquasecurity/trivy-aws dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common - dependency-name: github.com/aquasecurity/trivy-checks dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common - dependency-name: github.com/containerd/containerd dependency-type: direct:production update-type: version-update:semver-patch dependency-group: common - dependency-name: github.com/docker/docker dependency-type: direct:production update-type: version-update:semver-patch dependency-group: common - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common - dependency-name: golang.org/x/mod dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common - dependency-name: golang.org/x/net dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common - dependency-name: golang.org/x/term dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common - dependency-name: golang.org/x/text dependency-type: direct:production update-type: version-update:semver-minor dependency-group: common - dependency-name: modernc.org/sqlite dependency-type: direct:production update-type: version-update:semver-patch dependency-group: common ... Signed-off-by: dependabot[bot] <[email protected]>
@nikpivkin @simar7 can any of you take a look? |
@DmitriyLewen I think we should exclude |
yes. It make sense. I will create PR. |
@DmitriyLewen The test failed because in this PR some Kubernetes checks have an updated selector and they now apply to fewer files. In the Trivy we just need to update the tests. |
cc @chen-keinan |
Looks like these dependencies are updatable in another way, so this is no longer needed. |
Bumps the common group with 8 updates in the / directory:
1.11.1
1.12.0
1.5.2
1.6.0
0.9.0
0.10.0
0.11.0
0.12.0
1.7.17
1.7.18
26.1.3+incompatible
26.1.4+incompatible
0.17.0
0.18.0
1.30.0
1.30.1
Updates
github.com/Azure/azure-sdk-for-go/sdk/azcore
from 1.11.1 to 1.12.0Release notes
Sourced from github.com/Azure/azure-sdk-for-go/sdk/azcore's releases.
Commits
e58902b
Prep azcore v1.12.0 for release (#23005)9ad32c5
Increment package version after release of internal (#23004)897e903
Update ignore-links.txt (#23003)ac7cc04
[keyvault] fix test recording sanitizers (#22911)276cf8c
update readme (#22971)5eb479f
[azopenai] Updating hash to merged PR. (#22998)9c4f5c5
Prepare sdk/internal v1.9.0 for release (#22991)b407f56
Increment version for messaging/azwebpubsub releases (#22466)3af4c7e
update mgmt live test (#22996)b7d018e
fix sdk/resourcemanager/internal module (#22994)Updates
github.com/Azure/azure-sdk-for-go/sdk/azidentity
from 1.5.2 to 1.6.0Release notes
Sourced from github.com/Azure/azure-sdk-for-go/sdk/azidentity's releases.
Commits
36f766d
add sdk/resourcemanager/cosmos/armcosmos live test (#20705)c005ed6
sdk/resourcemanager/network/armnetwork live test (#20331)5fa7df4
add sdk/resourcemanager/compute/armcompute live test (#20048)0d22aed
add sdk/resourcemanager/eventhub/armeventhub live test (#20686)2a8d96d
add sdk/resourcemanager/postgresql/armpostgresql live test (#20685)b2cddab
[Release] sdk/resourcemanager/paloaltonetworksngfw/armpanngfw/0.1.0 (#20437)ed7f3c7
Fix azidentity troubleshooting guide link (#20736)6dfd0cb
[azeventhubs] Fixing checkpoint store race condition (#20727)745d967
pass along the artifact name so we can override it later (#20732)20b4dd8
Update changelog with latest features (#20730)Updates
github.com/aquasecurity/trivy-aws
from 0.9.0 to 0.10.0Release notes
Sourced from github.com/aquasecurity/trivy-aws's releases.
Commits
b0d71e5
chore(plugin): Update release URI (#171)c3999b2
chore(index): Add maintainer field to plugin.yaml (#170)8a7f09c
refactor(iam): remove adapting nested users and groups (#168)c92585c
feat(plugin): trivy-aws as a plugin for Trivy (#153)Updates
github.com/aquasecurity/trivy-checks
from 0.11.0 to 0.12.0Release notes
Sourced from github.com/aquasecurity/trivy-checks's releases.
Commits
32d7d75
fix: use regex to split command7663e7b
chore(deps): bump github.com/open-policy-agent/opa from 0.64.1 to 0.65.020a101a
Add OCI image annotations229cef1
feat: command id generator support663383b
feat: command id generator support0f7d945
feat: command id generator support7f7bdd4
feat: embedded commands fs supportc5432ce
feat: support node-collector commands and node info5bf5de4
feat: support node-collector commands and node info05e7df3
feat: support node-collector commands and node infoUpdates
github.com/containerd/containerd
from 1.7.17 to 1.7.18Release notes
Sourced from github.com/containerd/containerd's releases.
... (truncated)
Commits
ae71819
Merge pull request #10301 from dmcgowan/prepare-v1.7.189426aab
Prepare release notes for v1.7.181d324db
Merge pull request #10298 from dmcgowan/1.7-update-gocdd3ea9
Update Go version to 1.21.110a137f0
Merge pull request #10277 from thaJeztah/1.7_backport_remove_use_of_platform_...1e3c662
[release/1.7] remove uses of platforms.Platform alias300a6de
Merge pull request #10269 from thaJeztah/1.7_migrate_containerd_log0af6825
migrate logs imports to github.com/containerd/log modulebe820ac
Merge pull request #10266 from thaJeztah/1.7_migrate_to_errdefs_module566c535
Merge pull request #10261 from k8s-infra-cherrypick-robot/cherry-pick-10257-t...Updates
github.com/docker/docker
from 26.1.3+incompatible to 26.1.4+incompatibleRelease notes
Sourced from github.com/docker/docker's releases.
Commits
de5c9cf
Merge pull request #47912 from thaJeztah/26.1_backport_vendor_containerd_1.7.18c62dcf8
Merge pull request #47911 from thaJeztah/26.1_backport_bump_containerd_binary...17315a2
vendor: github.com/containerd/containerd v1.7.18cbd9418
update containerd binary to v1.7.18fb9f72a
Merge pull request #47904 from thaJeztah/26.1_backport_bump_go1.21.113115daa
update to go1.21.112861734
Merge pull request #47892 from thaJeztah/26.1_backport_api_docs_network_confi...9c95aea
Merge pull request #47893 from thaJeztah/26.1_backport_bump_docker_py3e09e19
Merge pull request #47894 from thaJeztah/26.1_backport_vendor_containerd_v1.7.1765b679a
Merge pull request #47889 from thaJeztah/26.1_backport_platforms_err_handlingUpdates
golang.org/x/crypto
from 0.23.0 to 0.24.0Commits
332fd65
go.mod: update golang.org/x dependencies0b431c7
x509roots/fallback: update bundle349231f
ssh: implement CryptoPublicKey on sk keys44c9b0f
ssh: allow server auth callbacks to send additional banners67b1361
sha3: reenable s390x assembly477a5b4
sha3: make APIs usable with zero allocations59b5a86
sha3: disable s390x assembly10f366e
sha3: simplify XOR functionsUpdates
golang.org/x/mod
from 0.17.0 to 0.18.0Commits
c0bdc7b
modfile: add API for godebug lines6686f41
module: add COM0 and LPT0 to badWindowsNamesUpdates
golang.org/x/net
from 0.25.0 to 0.26.0Commits
66e838c
go.mod: update golang.org/x dependencies6249541
http2: avoid race in server handler SetReadDeadine/SetWriteDeadline603e3e6
quic: disable X25519Kyber768Draft00 in tests67e8d0c
http2: report an error if goroutines outlive serverTester tests5608279
http2: avoid corruption in priority write scheduler0d515a5
http2: factor out frame read/write test functions9f5b79b
http2: drop unused retry function03c24c2
http2: use synthetic time in server tests022530c
http2: add a more full-featured test net.Conn410d19e
http2: avoid racy access to clientStream.requestedGzipUpdates
golang.org/x/term
from 0.20.0 to 0.21.0Commits
5f0bb72
go.mod: update golang.org/x dependenciesUpdates
golang.org/x/text
from 0.15.0 to 0.16.0Commits
9c2f3a2
cmd/gotext: fix segfault in extract & rewrite commands59e1219
message: optimize lookupAndFormat function for better performancea20a3e2
x/text: update x/tools for go/ssa range-over-func fixUpdates
modernc.org/sqlite
from 1.30.0 to 1.30.1Commits
504e519
fix linux/arm64 regression, updates #100, updates #185da1e35d
vfs_linux_arm64: adjust for [email protected], updates #185Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditions