chore(deps): bump the dependencies group with 7 updates #1093

dependabot · 2025-01-01T00:40:14Z

Bumps the dependencies group with 7 updates:

Package	From	To
github.com/Scalingo/go-utils/logger	`1.3.0`	`1.3.1`
github.com/go-git/go-git/v5	`5.12.0`	`5.13.0`
github.com/cpuguy83/go-md2man/v2	`2.0.5`	`2.0.6`
github.com/cyphar/filepath-securejoin	`0.3.4`	`0.3.6`
github.com/go-git/go-billy/v5	`5.6.0`	`5.6.1`
github.com/pjbgf/sha1cd	`0.3.0`	`0.3.1`
golang.org/x/net	`0.31.0`	`0.33.0`

Updates github.com/Scalingo/go-utils/logger from 1.3.0 to 1.3.1

Commits

afc9c94 [mongo] Bump v1.3.1
678b67b Merge pull request #510 from Scalingo/fix/509/close-mongo-session-correctly
90fa91e chore(changelog): Add changelog item
e3f3828 fix(mongo): Close mongo session on CountUnscoped
See full diff in compare view

Updates github.com/go-git/go-git/v5 from 5.12.0 to 5.13.0

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.13.0

What's Changed

build: bump github.com/go-git/go-git/v5 from 5.11.0 to 5.12.0 in /cli/go-git by @dependabot in go-git/go-git#1065

build: bump golang.org/x/net from 0.22.0 to 0.23.0 by @dependabot in go-git/go-git#1068

build: bump golang.org/x/net from 0.23.0 to 0.24.0 by @dependabot in go-git/go-git#1071

Properly support skipping of non-mandatory extensions by @codablock in go-git/go-git#1066

git: Refine some codes in test and non-test. by @onee-only in go-git/go-git#1077

plumbing: protocol/packp, client-side filter capability support by @edigaryev in go-git/go-git#1000

build: bump golang.org/x/net from 0.22.0 to 0.23.0 in /cli/go-git by @dependabot in go-git/go-git#1078

plumbing: fix sideband demux on flush by @aymanbagabas in go-git/go-git#1084

storage: dotgit, head reference usually comes first by @aymanbagabas in go-git/go-git#1085

build: bump golang.org/x/text from 0.14.0 to 0.15.0 by @dependabot in go-git/go-git#1091

build: bump golang.org/x/crypto from 0.22.0 to 0.23.0 by @dependabot in go-git/go-git#1094

build: bump golang.org/x/net from 0.24.0 to 0.25.0 by @dependabot in go-git/go-git#1093

git: Added an example for Repository.Branches by @johnmatthiggins in go-git/go-git#1088

git: worktree_commit, Modify checking empty commit. Fixes #723 by @onee-only in go-git/go-git#1050

plumbing: transport/http, Wrap http errors to return reason. Fixes #1097 by @ggambetti in go-git/go-git#1100

build: bump golang.org/x/sys from 0.20.0 to 0.21.0 by @dependabot in go-git/go-git#1106

build: bump golang.org/x/text from 0.15.0 to 0.16.0 by @dependabot in go-git/go-git#1107

Bumps Go versions and go-billy by @pjbgf in go-git/go-git#1056

_examples: Fixed a dead link COMPATIBILITY.md by @gecko655 in go-git/go-git#1109

build: bump github.com/jessevdk/go-flags from 1.5.0 to 1.6.1 in /cli/go-git by @dependabot in go-git/go-git#1115

build: bump github.com/elazarl/goproxy from v0.0.0-20230808193330-2592e75ae04a to v0.0.0-20240618083138-03be62527ccb by @hbelmiro in go-git/go-git#1124

build: bump golang.org/x/net from 0.25.0 to 0.26.0 by @dependabot in go-git/go-git#1104

Add option approximating git clean -x flag. by @msuozzo in go-git/go-git#995

Revert "Add option approximating git clean -x flag." by @pjbgf in go-git/go-git#1129

Fix reference updated concurrently error for the filesystem storer by @Javier-varez in go-git/go-git#1116

build: bump golang.org/x/net from 0.26.0 to 0.27.0 by @dependabot in go-git/go-git#1134

utils: merkletrie, Align error message with upstream by @pjbgf in go-git/go-git#1142

plumbing: transport/file, Change paths to absolute by @pjbgf in go-git/go-git#1141

plumbing: gitignore, Fix loading of ignored .gitignore files. by @Achilleshiel in go-git/go-git#1114

build: bump github.com/skeema/knownhosts from 1.2.2 to 1.3.0 by @dependabot in go-git/go-git#1147

plumbing: transport/ssh, Add support for SSH @cert-authority. by @Javier-varez in go-git/go-git#1157

build: run example tests during CI workflow by @crazybolillo in go-git/go-git#1030

storage: filesystem, Fix object cache not working due to uninitialised objects being put into cache by @SatelliteMind in go-git/go-git#1138

git: Fix fetching missing commits by @AriehSchneier in go-git/go-git#1032

plumbing: format/packfile, remove duplicate checks in findMatch() by @edigaryev in go-git/go-git#1152

git: worktree, Fix file reported as Untracked while it is committed by @rodrigocam in go-git/go-git#1023

build: bump golang.org/x/sys from 0.22.0 to 0.23.0 by @dependabot in go-git/go-git#1160

plumbing: filemode, Remove check for setting size of .git/index file by @nicholasSUSE in go-git/go-git#1159

build: bump golang.org/x/net from 0.27.0 to 0.28.0 by @dependabot in go-git/go-git#1163

Fix some lint warning and increase stalebot to 180 days by @pjbgf in go-git/go-git#1128

adjust path extracted from file: url on Windows by @tomqwpl in go-git/go-git#416

build: bump golang.org/x/sys from 0.23.0 to 0.24.0 by @dependabot in go-git/go-git#1164

Add RestoreStaged to Worktree that mimics the behaviour of git restore --staged ... by @ben-tbotlabs in go-git/go-git#493

plumbing: signature, support the same x509 signature formats as git by @yoavamit in go-git/go-git#1169

fix: allow discovery of non bare repos in fsLoader by @jakobmoellerdev in go-git/go-git#1170

build: bump golang.org/x/sys from 0.24.0 to 0.25.0 by @dependabot in go-git/go-git#1178

build: bump golang.org/x/text from 0.17.0 to 0.18.0 by @dependabot in go-git/go-git#1179

build: bump golang.org/x/net from 0.28.0 to 0.29.0 by @dependabot in go-git/go-git#1184

... (truncated)

Commits

94bd4af Merge pull request #1261 from BeChris/issue680
8b7f5ba Merge pull request #1262 from go-git/dependabot/go_modules/github.com/elazarl...
41d80a0 build: bump github.com/elazarl/goproxy
4998140 git: worktree_commit, sanitize author and commiter name and email before crea...
9049625 Merge pull request #1260 from go-git/dependabot/github_actions/github/codeql-...
dae48b4 build: bump github/codeql-action from 3.27.9 to 3.28.0
7d6fbc2 Merge pull request #1220 from BeChris/accept_uppercase_hexa_in_pktline_length
62a77b7 plumbing: Fix invalid reference name error while cloning branches containing ...
5e11196 plumbing: format/pktline, accept upercase hexadecimal value as pktline length...
65f5e1a Merge pull request #1256 from go-git/dependabot/go_modules/golang-org-232a611e2d
Additional commits viewable in compare view

Updates github.com/cpuguy83/go-md2man/v2 from 2.0.5 to 2.0.6

Release notes

Sourced from github.com/cpuguy83/go-md2man/v2's releases.

v2.0.6

What's Changed

Fix typo, add links, and formatting by @grahammiln in cpuguy83/go-md2man#128

README change binary name in usage example by @mikelolasagasti in cpuguy83/go-md2man#126

gha: update golangci-lint to v1.62.2 by @thaJeztah in cpuguy83/go-md2man#131

Preserve compatibility with go <= 1.17 by @thaJeztah in cpuguy83/go-md2man#130

update minimum go version to go1.12, and test in gh by @thaJeztah in cpuguy83/go-md2man#129

New Contributors

@grahammiln made their first contribution in cpuguy83/go-md2man#128

@mikelolasagasti made their first contribution in cpuguy83/go-md2man#126

Full Changelog: cpuguy83/go-md2man@v2.0.5...v2.0.6

Commits

4416315 Merge pull request #129 from thaJeztah/gha_go_1.11
73f3da7 update minimum go version to go1.12, and test in gha
5edcd73 README: update instructions for installing and running
ae728a9 Merge pull request #130 from thaJeztah/keep_go111_compat
90cf377 md2man: use local copy of bytes.Copy for compat with go < 1.17
44f94ac Revert "md2man.go: rename ioutil to io" for compat with go <= 1.17
bb5af6e Merge pull request #131 from thaJeztah/bump_golangci_lint
469a148 Merge pull request #126 from mikelolasagasti/readme-change-name
67f97ff README change binary name in usage example
0ab6705 Merge pull request #128 from grahammiln/patch-1
Additional commits viewable in compare view

Updates github.com/cyphar/filepath-securejoin from 0.3.4 to 0.3.6

Release notes

Sourced from github.com/cyphar/filepath-securejoin's releases.

v0.3.6

This release lowers the minimum Go version to Go 1.18 as well as some library dependencies, in order to make it easier for folks that need to backport patches using the new filepath-securejoin API onto branches that are stuck using old Go compilers. For users using Go >= 1.21, this release contains no functional changes.

The minimum Go version requirement for filepath-securejoin is now Go 1.18 (we use generics internally).

For reference, [email protected] somewhat-arbitrarily bumped the Go version requirement to 1.21.

While we did make some use of Go 1.21 stdlib features (and in principle Go versions <= 1.21 are no longer even supported by upstream anymore), some downstreams have complained that the version bump has meant that they have to do workarounds when backporting fixes that use the new filepath-securejoin API onto old branches. This is not an ideal situation, but since using this library is probably better for most downstreams than a hand-rolled workaround, we now have compatibility shims that allow us to build on older Go versions.

Lower minimum version requirement for golang.org/x/sys to v0.18.0 (we need the wrappers for fsconfig(2)), which should also make backporting patches to older branches easier.

Signed-off-by: Aleksa Sarai [email protected]

v0.3.5

This release primarily includes a fix for an issue involving two programs racing to MkdirAll the same directory, which caused a regression with BuildKit.

MkdirAll will now no longer return an EEXIST error if two racing processes are creating the same directory. We will still verify that the path is a directory, but this will avoid spurious errors when multiple threads or programs are trying to MkdirAll the same path. opencontainers/runc#4543

Signed-off-by: Aleksa Sarai [email protected]

Changelog

Sourced from github.com/cyphar/filepath-securejoin's changelog.

[0.3.6] - 2024-12-17

Compatibility

The minimum Go version requirement for filepath-securejoin is now Go 1.18 (we use generics internally).

For reference, [email protected] somewhat-arbitrarily bumped the Go version requirement to 1.21.

While we did make some use of Go 1.21 stdlib features (and in principle Go versions <= 1.21 are no longer even supported by upstream anymore), some downstreams have complained that the version bump has meant that they have to do workarounds when backporting fixes that use the new filepath-securejoin API onto old branches. This is not an ideal situation, but since using this library is probably better for most downstreams than a hand-rolled workaround, we now have compatibility shims that allow us to build on older Go versions.

Lower minimum version requirement for golang.org/x/sys to v0.18.0 (we need the wrappers for fsconfig(2)), which should also make backporting patches to older branches easier.

[0.3.5] - 2024-12-06

Fixed

MkdirAll will now no longer return an EEXIST error if two racing processes are creating the same directory. We will still verify that the path is a directory, but this will avoid spurious errors when multiple threads or programs are trying to MkdirAll the same path. opencontainers/runc#4543

Commits

200008e VERSION: release v0.3.6
43784dc tests: lower github.com/stretchr/testify requirement to v1.7.1
2ec07d2 merge #37 into cyphar/filepath-securejoin:main
d17d372 gha: use stable/oldstable go versions
2d9831f gha: compile-test for all supported Go versions
31bfec2 gha: test older Go versions in CI
e11873c deps: downgrade golang.org/x/sys requirement
6ef6896 go: lower Go requirement to Go 1.18
a06a225 tests: don't call testing.Testing() in mocks
07ceaf0 merge #36 into cyphar/filepath-securejoin:main
Additional commits viewable in compare view

Updates github.com/go-git/go-billy/v5 from 5.6.0 to 5.6.1

Release notes

Sourced from github.com/go-git/go-billy/v5's releases.

v5.6.1

What's Changed

build: bump github/codeql-action from 3.26.11 to 3.27.0 by @dependabot in go-git/go-billy#88

build: bump github/codeql-action from 3.27.0 to 3.27.1 by @dependabot in go-git/go-billy#89

build: bump github/codeql-action from 3.27.1 to 3.27.4 by @dependabot in go-git/go-billy#90

build: bump github/codeql-action from 3.27.4 to 3.27.5 by @dependabot in go-git/go-billy#91

Bump dependencies and build housekeeping by @pjbgf in go-git/go-billy#95

Full Changelog: go-git/go-billy@v5.6.0...v5.6.1

Commits

a6c6b50 Merge pull request #95 from pjbgf/pre-release
f4615d3 build: Remove test_js workflow
ae8b61b build: Bump workflows Go versions
b412339 build: Align dependabot settings with go-git
d982317 build: Bump Go to 1.21 and dependencies
9ca623c Merge pull request #91 from go-git/dependabot/github_actions/github/codeql-ac...
2a3d754 build: bump github/codeql-action from 3.27.4 to 3.27.5
9706761 Merge pull request #90 from go-git/dependabot/github_actions/github/codeql-ac...
3bf2634 build: bump github/codeql-action from 3.27.1 to 3.27.4
1bb3aa5 Merge pull request #89 from go-git/dependabot/github_actions/github/codeql-ac...
Additional commits viewable in compare view

Updates github.com/pjbgf/sha1cd from 0.3.0 to 0.3.1

Release notes

Sourced from github.com/pjbgf/sha1cd's releases.

v0.3.1

What's Changed

build(deps): Bump github/codeql-action from 2.2.4 to 2.2.5 by @dependabot in pjbgf/sha1cd#35

build(deps): Bump golang from 2edf6aa to 52921e6 by @dependabot in pjbgf/sha1cd#36

goasm: Add amd64 implementation for ubc by @pjbgf in pjbgf/sha1cd#37

build(deps): Bump github/codeql-action from 2.2.5 to 2.2.6 by @dependabot in pjbgf/sha1cd#39

build(deps): Bump golang from 52921e6 to 74a3829 by @dependabot in pjbgf/sha1cd#40

build(deps): Bump github/codeql-action from 2.2.6 to 2.2.9 by @dependabot in pjbgf/sha1cd#47

build(deps): Bump golang from 74a3829 to 5990c4f by @dependabot in pjbgf/sha1cd#42

build(deps): Bump actions/setup-go from 3.5.0 to 4.0.0 by @dependabot in pjbgf/sha1cd#41

build(deps): Bump actions/checkout from 3.3.0 to 3.5.0 by @dependabot in pjbgf/sha1cd#45

build(deps): Bump github/codeql-action from 2.2.9 to 2.2.11 by @dependabot in pjbgf/sha1cd#49

build(deps): Bump golang from 5990c4f to 23050c2 by @dependabot in pjbgf/sha1cd#48

build(deps): Bump github/codeql-action from 2.2.11 to 2.2.12 by @dependabot in pjbgf/sha1cd#50

build(deps): Bump actions/checkout from 3.5.0 to 3.5.2 by @dependabot in pjbgf/sha1cd#51

build(deps): Bump golang from 23050c2 to 403f486 by @dependabot in pjbgf/sha1cd#52

build(deps): Bump github/codeql-action from 2.2.12 to 2.3.0 by @dependabot in pjbgf/sha1cd#53

build(deps): Bump github/codeql-action from 2.3.0 to 2.3.2 by @dependabot in pjbgf/sha1cd#54

build(deps): Bump github/codeql-action from 2.3.2 to 2.3.3 by @dependabot in pjbgf/sha1cd#55

build(deps): Bump golang from 403f486 to 31a8f92 by @dependabot in pjbgf/sha1cd#56

build(deps): Bump golang from 31a8f92 to 685a22e by @dependabot in pjbgf/sha1cd#57

build(deps): Bump actions/setup-go from 4.0.0 to 4.0.1 by @dependabot in pjbgf/sha1cd#58

build(deps): Bump github/codeql-action from 2.3.3 to 2.3.5 by @dependabot in pjbgf/sha1cd#60

build(deps): Bump golang from 685a22e to 690e413 by @dependabot in pjbgf/sha1cd#59

build(deps): Bump github/codeql-action from 2.3.5 to 2.3.6 by @dependabot in pjbgf/sha1cd#61

build(deps): Bump golang from 690e413 to 4b1fc02 by @dependabot in pjbgf/sha1cd#64

build(deps): Bump actions/checkout from 3.5.2 to 3.5.3 by @dependabot in pjbgf/sha1cd#63

build(deps): Bump github/codeql-action from 2.3.6 to 2.13.4 by @dependabot in pjbgf/sha1cd#62

Bump dependencies by @pjbgf in pjbgf/sha1cd#66

build(deps): Bump actions/setup-go from 4.0.1 to 4.1.0 by @dependabot in pjbgf/sha1cd#67

build(deps): Bump golang from 1.20 to 1.21 by @dependabot in pjbgf/sha1cd#68

build(deps): Bump golang from ec457a2 to b490ae1 by @dependabot in pjbgf/sha1cd#69

build(deps): Bump actions/checkout from 3.5.3 to 3.6.0 by @dependabot in pjbgf/sha1cd#70

Update LICENSE by @pjbgf in pjbgf/sha1cd#71

build(deps): Bump golang from b490ae1 to d2aad22 by @dependabot in pjbgf/sha1cd#72

build(deps): Bump actions/checkout from 3.6.0 to 4.0.0 by @dependabot in pjbgf/sha1cd#73

build(deps): Bump golang from d2aad22 to cffaba7 by @dependabot in pjbgf/sha1cd#74

Bump Go to 1.21 by @pjbgf in pjbgf/sha1cd#77

build(deps): Bump actions/checkout from 4.0.0 to 4.1.0 by @dependabot in pjbgf/sha1cd#76

build(deps): Bump actions/checkout from 4.1.0 to 4.1.1 by @dependabot in pjbgf/sha1cd#78

build(deps): Bump actions/setup-go from 4.1.0 to 5.0.0 by @dependabot in pjbgf/sha1cd#79

Bump github.com/mmcloughlin/avo v0.6.0 by @pjbgf in pjbgf/sha1cd#81

build(deps): Bump golang from 1.21 to 1.22 by @dependabot in pjbgf/sha1cd#82

build(deps): Bump golang from ef61a20 to 7b297d9 by @dependabot in pjbgf/sha1cd#83

build(deps): Bump golang from 7b297d9 to 34ce21a by @dependabot in pjbgf/sha1cd#84

build(deps): Bump actions/checkout from 4.1.1 to 4.1.2 by @dependabot in pjbgf/sha1cd#85

build(deps): Bump golang from 34ce21a to 0b55ab8 by @dependabot in pjbgf/sha1cd#86

build(deps): Bump golang from 0b55ab8 to c4fb952 by @dependabot in pjbgf/sha1cd#88

build(deps): Bump golang from c4fb952 to 450e382 by @dependabot in pjbgf/sha1cd#89

build(deps): Bump actions/checkout from 4.1.2 to 4.1.3 by @dependabot in pjbgf/sha1cd#90

... (truncated)

Commits

33de9d5 Merge pull request #145 from pjbgf/dependabot/github_actions/github/codeql-ac...
42cdae1 build(deps): Bump github/codeql-action from 3.27.9 to 3.28.0
48a2fbf Merge pull request #144 from pjbgf/dependabot/github_actions/github/codeql-ac...
479e04b Merge pull request #143 from pjbgf/dependabot/github_actions/actions/setup-go...
9660961 build(deps): Bump github/codeql-action from 3.27.6 to 3.27.9
f7588f5 build(deps): Bump actions/setup-go from 5.1.0 to 5.2.0
78215e2 Merge pull request #142 from pjbgf/dependabot/github_actions/github/codeql-ac...
67c1edb build(deps): Bump github/codeql-action from 3.27.5 to 3.27.6
fc79cbc Merge pull request #141 from pjbgf/dependabot/github_actions/github/codeql-ac...
d6f1f19 build(deps): Bump github/codeql-action from 3.27.4 to 3.27.5
Additional commits viewable in compare view

Updates golang.org/x/net from 0.31.0 to 0.33.0

Commits

dfc720d go.mod: update golang.org/x dependencies
8e66b04 html: use strings.EqualFold instead of lowering ourselves
b935f7b html: avoid endless loop on error token
9af49ef route: remove unused sizeof* consts
6705db9 quic: clean up crypto streams when dropping packet protection keys
4ef7588 quic: handle ACK frame in packet which drops number space
552d8ac Revert "route: change from syscall to x/sys/unix"
13a7c01 Revert "route: remove unused sizeof* consts on freebsd"
285e1cf go.mod: update golang.org/x dependencies
d0a1049 route: remove unused sizeof* consts on freebsd
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the dependencies group with 7 updates: | Package | From | To | | --- | --- | --- | | [github.com/Scalingo/go-utils/logger](https://github.com/Scalingo/go-utils) | `1.3.0` | `1.3.1` | | [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.12.0` | `5.13.0` | | [github.com/cpuguy83/go-md2man/v2](https://github.com/cpuguy83/go-md2man) | `2.0.5` | `2.0.6` | | [github.com/cyphar/filepath-securejoin](https://github.com/cyphar/filepath-securejoin) | `0.3.4` | `0.3.6` | | [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) | `5.6.0` | `5.6.1` | | [github.com/pjbgf/sha1cd](https://github.com/pjbgf/sha1cd) | `0.3.0` | `0.3.1` | | [golang.org/x/net](https://github.com/golang/net) | `0.31.0` | `0.33.0` | Updates `github.com/Scalingo/go-utils/logger` from 1.3.0 to 1.3.1 - [Release notes](https://github.com/Scalingo/go-utils/releases) - [Changelog](https://github.com/Scalingo/go-utils/blob/master/CHANGELOG_LEGACY.md) - [Commits](Scalingo/go-utils@mongo/v1.3.0...mongo/v1.3.1) Updates `github.com/go-git/go-git/v5` from 5.12.0 to 5.13.0 - [Release notes](https://github.com/go-git/go-git/releases) - [Commits](go-git/go-git@v5.12.0...v5.13.0) Updates `github.com/cpuguy83/go-md2man/v2` from 2.0.5 to 2.0.6 - [Release notes](https://github.com/cpuguy83/go-md2man/releases) - [Commits](cpuguy83/go-md2man@v2.0.5...v2.0.6) Updates `github.com/cyphar/filepath-securejoin` from 0.3.4 to 0.3.6 - [Release notes](https://github.com/cyphar/filepath-securejoin/releases) - [Changelog](https://github.com/cyphar/filepath-securejoin/blob/main/CHANGELOG.md) - [Commits](cyphar/filepath-securejoin@v0.3.4...v0.3.6) Updates `github.com/go-git/go-billy/v5` from 5.6.0 to 5.6.1 - [Release notes](https://github.com/go-git/go-billy/releases) - [Commits](go-git/go-billy@v5.6.0...v5.6.1) Updates `github.com/pjbgf/sha1cd` from 0.3.0 to 0.3.1 - [Release notes](https://github.com/pjbgf/sha1cd/releases) - [Commits](pjbgf/sha1cd@v0.3.0...v0.3.1) Updates `golang.org/x/net` from 0.31.0 to 0.33.0 - [Commits](golang/net@v0.31.0...v0.33.0) --- updated-dependencies: - dependency-name: github.com/Scalingo/go-utils/logger dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: github.com/go-git/go-git/v5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: github.com/cpuguy83/go-md2man/v2 dependency-type: indirect update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: github.com/cyphar/filepath-securejoin dependency-type: indirect update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: github.com/go-git/go-billy/v5 dependency-type: indirect update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: github.com/pjbgf/sha1cd dependency-type: indirect update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: golang.org/x/net dependency-type: indirect update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jan 1, 2025

dependabot bot requested a review from EtienneM January 1, 2025 00:40

github-actions bot enabled auto-merge January 1, 2025 00:40

github-actions bot approved these changes Jan 1, 2025

View reviewed changes

EtienneM added 2 commits January 2, 2025 09:21

build: update Go from 1.22.9 to 1.23.4

364739d

build: test 'go mod vendor' in GitHub Action

2943554

EtienneM force-pushed the dependabot/go_modules/dependencies-d373bdd175 branch from 75abb77 to 2943554 Compare January 2, 2025 08:43

github-actions bot merged commit e483007 into master Jan 2, 2025
6 of 7 checks passed

github-actions bot deleted the dependabot/go_modules/dependencies-d373bdd175 branch January 2, 2025 08:44

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the dependencies group with 7 updates #1093

chore(deps): bump the dependencies group with 7 updates #1093

dependabot bot commented on behalf of github Jan 1, 2025

chore(deps): bump the dependencies group with 7 updates #1093

chore(deps): bump the dependencies group with 7 updates #1093

Conversation

dependabot bot commented on behalf of github Jan 1, 2025

v5.13.0

What's Changed

v2.0.6

What's Changed

New Contributors

v0.3.6

v0.3.5

[0.3.6] - 2024-12-17

Compatibility

[0.3.5] - 2024-12-06

Fixed

v5.6.1

What's Changed

v0.3.1

What's Changed