From bd9c4d73ad70ed51fdaf8f5bb8c857add7c85e6c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 6 Oct 2023 22:26:04 +0000
Subject: [PATCH 01/11] Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#3126)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.2.0 to 2.3.0.
Release notes
Sourced from ossf/scorecard-action's releases.
v2.3.0
What's Changed
Documentation
New Contributors
Full Changelog: https://github.com/ossf/scorecard-action/compare/v2.2.0...v2.3.0
Commits
483ef80 :seedling: Bump docker tag for v2.3.0 release. (#1271)5d35913 :seedling: Bump github.com/ossf/scorecard/v4 from v4.11.0 to v4.13.0 (#1270)49787a6 :seedling: Bump distroless/base from 46c5b9b to a35b652 (#1269)4283c75 :seedling: Bump github/codeql-action from 2.21.8 to 2.21.9 (#1268)709ecd0 :seedling: Bump golang from 6974950 to c416cee (#1266)25bb02c :seedling: Bump actions/checkout from 4.0.0 to 4.1.0 (#1267)b687393 :seedling: Bump github/codeql-action from 2.21.5 to 2.21.8 (#1265)6a1c21f :seedling: Bump golang from cffaba7 to 6974950 (#1264)2dee8c1 :seedling: Bump github.com/sigstore/cosign/v2 from 2.1.1 to 2.2.0 (#1254)e79dcb6 :seedling: Upgrade to go 1.20 (#1262)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
.github/workflows/scorecards-analysis.yml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml
index 54cd00999..5948c4788 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -28,7 +28,7 @@ jobs:
persist-credentials: false
- name: "Run analysis"
- uses: ossf/scorecard-action@08b4669551908b1024bb425080c797723083c031
+ uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398
with:
results_file: results.sarif
results_format: sarif
From 785f91d89a4c76b8c6a962734302bb0e4a340f49 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Oct 2023 22:19:55 +0000
Subject: [PATCH 02/11] Bump mutex from 3.0.1 to 3.1.0 in /app_dart (#3127)
Bumps [mutex](https://github.com/hoylen/dart-mutex) from 3.0.1 to 3.1.0.
Changelog
Sourced from mutex's changelog.
3.1.0
- Increased minimum Dart SDK to 2.15.0 for
unawaited function.
- Added development dependencies lints ^2.1.1 and pana: ^0.21.37.
- Fixed code to remove lint warnings.
Commits
84ca903 Added development dependencies lints ^2.1.1 and pana: ^0.21.37.b9c797a Increased minimum Dart SDK to 2.15.0 for unawaited function.- See full diff in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
app_dart/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/app_dart/pubspec.yaml b/app_dart/pubspec.yaml
index 12cce4486..5191f08c7 100644
--- a/app_dart/pubspec.yaml
+++ b/app_dart/pubspec.yaml
@@ -31,7 +31,7 @@ dependencies:
logging: 1.2.0
meta: 1.10.0
mime: 1.0.4
- mutex: 3.0.1
+ mutex: 3.1.0
neat_cache: 2.0.3
path: 1.8.3
process: 4.2.4
From 4e90c4b8c0e1e36be90f64e1262d10e4ea73ad48 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Oct 2023 22:22:09 +0000
Subject: [PATCH 03/11] Bump platform from 3.1.2 to 3.1.3 in /app_dart (#3128)
Bumps [platform](https://github.com/flutter/packages/tree/main/packages) from 3.1.2 to 3.1.3.
Commits
0651975 [platform] Example app for platform (#4834)2c6800e Add a skip to an empty test group (#5080)e578a16 [image_picker] Fix XCTests in Xcode 15 (#5074)6714d50 [webview_flutter] Fix XCUITest in Xcode 15 (#5071)5badf97 [path_provider] Fix integration tests (#5075)dccde60 [flutter_markdown] Footnote support (#5058)d654f75 [pigeon] FlutterApi error handling (#5008)a66be0e [webview_flutter] [webview_flutter_wkwebview]Fix race condition in flaky test...c7008cf [webview_flutter_wkwebview] Fixes bug where `WebkitWebViewController.getUserA...cfe0c21 [flutter_markdown] Code decoration (#5060)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
app_dart/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/app_dart/pubspec.yaml b/app_dart/pubspec.yaml
index 5191f08c7..d29cd5ccf 100644
--- a/app_dart/pubspec.yaml
+++ b/app_dart/pubspec.yaml
@@ -48,7 +48,7 @@ dev_dependencies:
flutter_lints: 2.0.3
json_serializable: 6.7.1
mockito: 5.4.2
- platform: 3.1.2
+ platform: 3.1.3
test: 1.24.7
builders:
From 2360c470949f74f372c3f4d08ba796fb31980ff3 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Oct 2023 22:44:15 +0000
Subject: [PATCH 04/11] Bump mutex from 3.0.1 to 3.1.0 in /auto_submit (#3129)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
â ï¸ **Dependabot is rebasing this PR** â ï¸
Rebasing might not happen immediately, so don't worry if this takes some time.
Note: if you make any changes to this PR yourself, they will take precedence over the rebase.
---
Bumps [mutex](https://github.com/hoylen/dart-mutex) from 3.0.1 to 3.1.0.
Changelog
Sourced from mutex's changelog.
3.1.0
- Increased minimum Dart SDK to 2.15.0 for
unawaited function.
- Added development dependencies lints ^2.1.1 and pana: ^0.21.37.
- Fixed code to remove lint warnings.
Commits
84ca903 Added development dependencies lints ^2.1.1 and pana: ^0.21.37.b9c797a Increased minimum Dart SDK to 2.15.0 for unawaited function.- See full diff in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
auto_submit/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/auto_submit/pubspec.yaml b/auto_submit/pubspec.yaml
index a4254a365..5cdc7e691 100644
--- a/auto_submit/pubspec.yaml
+++ b/auto_submit/pubspec.yaml
@@ -28,7 +28,7 @@ dependencies:
logging: 1.2.0
retry: 3.1.2
yaml: 3.1.2
- mutex: 3.0.1
+ mutex: 3.1.0
dev_dependencies:
build_runner: 2.4.6
From c97ca5fd234bada06c3e1f24c40ca93b88454b77 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Oct 2023 22:53:59 +0000
Subject: [PATCH 05/11] Bump platform from 3.1.2 to 3.1.3 in /analyze (#3130)
Bumps [platform](https://github.com/flutter/packages/tree/main/packages) from 3.1.2 to 3.1.3.
Commits
0651975 [platform] Example app for platform (#4834)2c6800e Add a skip to an empty test group (#5080)e578a16 [image_picker] Fix XCTests in Xcode 15 (#5074)6714d50 [webview_flutter] Fix XCUITest in Xcode 15 (#5071)5badf97 [path_provider] Fix integration tests (#5075)dccde60 [flutter_markdown] Footnote support (#5058)d654f75 [pigeon] FlutterApi error handling (#5008)a66be0e [webview_flutter] [webview_flutter_wkwebview]Fix race condition in flaky test...c7008cf [webview_flutter_wkwebview] Fixes bug where `WebkitWebViewController.getUserA...cfe0c21 [flutter_markdown] Code decoration (#5060)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
analyze/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/analyze/pubspec.yaml b/analyze/pubspec.yaml
index 0209b7a97..46bce17e5 100644
--- a/analyze/pubspec.yaml
+++ b/analyze/pubspec.yaml
@@ -8,7 +8,7 @@ environment:
dependencies:
file: 7.0.0
path: 1.8.3
- platform: 3.1.2
+ platform: 3.1.3
dev_dependencies:
mockito: 5.4.2
From 2bc6d7bb7163093c9f223ce15570f598a0574d56 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Oct 2023 23:06:50 +0000
Subject: [PATCH 06/11] Bump platform from 3.1.2 to 3.1.3 in /licenses (#3131)
Bumps [platform](https://github.com/flutter/packages/tree/main/packages) from 3.1.2 to 3.1.3.
Commits
0651975 [platform] Example app for platform (#4834)2c6800e Add a skip to an empty test group (#5080)e578a16 [image_picker] Fix XCTests in Xcode 15 (#5074)6714d50 [webview_flutter] Fix XCUITest in Xcode 15 (#5071)5badf97 [path_provider] Fix integration tests (#5075)dccde60 [flutter_markdown] Footnote support (#5058)d654f75 [pigeon] FlutterApi error handling (#5008)a66be0e [webview_flutter] [webview_flutter_wkwebview]Fix race condition in flaky test...c7008cf [webview_flutter_wkwebview] Fixes bug where `WebkitWebViewController.getUserA...cfe0c21 [flutter_markdown] Code decoration (#5060)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
licenses/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/licenses/pubspec.yaml b/licenses/pubspec.yaml
index 0a5870eba..39f954358 100644
--- a/licenses/pubspec.yaml
+++ b/licenses/pubspec.yaml
@@ -6,7 +6,7 @@ environment:
dependencies:
path: 1.8.3
- platform: 3.1.2
+ platform: 3.1.3
dev_dependencies:
mockito: 5.4.2
From 7ca65a9ef559d08aa0083603716a5c48cc0512af Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Oct 2023 23:06:52 +0000
Subject: [PATCH 07/11] Bump archive from 3.4.4 to 3.4.5 in
/cipd_packages/codesign (#3132)
Bumps [archive](https://github.com/brendan-duncan/archive) from 3.4.4 to 3.4.5.
Changelog
Sourced from archive's changelog.
3.4.5 - October 01, 2023
- Rewrote InputFileStream to reduce overall memory by using a shared file cache.
- Added
DateTime lastModDateTime getter to ArchiveFile.
- Add support for zip encryption.
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
cipd_packages/codesign/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/cipd_packages/codesign/pubspec.yaml b/cipd_packages/codesign/pubspec.yaml
index 8364049ac..172c2a081 100644
--- a/cipd_packages/codesign/pubspec.yaml
+++ b/cipd_packages/codesign/pubspec.yaml
@@ -10,7 +10,7 @@ dev_dependencies:
lints: 2.1.1
test: 1.24.7
dependencies:
- archive: 3.4.4
+ archive: 3.4.5
args: 2.4.2
crypto: 3.0.3
fake_async: 1.3.1
From 32b0748d9b234f47ca5126e99fc1ed192c4e06da Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Oct 2023 23:07:35 +0000
Subject: [PATCH 08/11] Bump platform from 3.1.2 to 3.1.3 in
/cipd_packages/codesign (#3134)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
â ï¸ **Dependabot is rebasing this PR** â ï¸
Rebasing might not happen immediately, so don't worry if this takes some time.
Note: if you make any changes to this PR yourself, they will take precedence over the rebase.
---
Bumps [platform](https://github.com/flutter/packages/tree/main/packages) from 3.1.2 to 3.1.3.
Commits
0651975 [platform] Example app for platform (#4834)2c6800e Add a skip to an empty test group (#5080)e578a16 [image_picker] Fix XCTests in Xcode 15 (#5074)6714d50 [webview_flutter] Fix XCUITest in Xcode 15 (#5071)5badf97 [path_provider] Fix integration tests (#5075)dccde60 [flutter_markdown] Footnote support (#5058)d654f75 [pigeon] FlutterApi error handling (#5008)a66be0e [webview_flutter] [webview_flutter_wkwebview]Fix race condition in flaky test...c7008cf [webview_flutter_wkwebview] Fixes bug where `WebkitWebViewController.getUserA...cfe0c21 [flutter_markdown] Code decoration (#5060)- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
cipd_packages/codesign/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/cipd_packages/codesign/pubspec.yaml b/cipd_packages/codesign/pubspec.yaml
index 172c2a081..e2d50e201 100644
--- a/cipd_packages/codesign/pubspec.yaml
+++ b/cipd_packages/codesign/pubspec.yaml
@@ -18,5 +18,5 @@ dependencies:
flutter_lints: 2.0.3
logging: 1.2.0
meta: 1.10.0
- platform: 3.1.2
+ platform: 3.1.3
process: 5.0.0
From 069b013840c11c3d677e45560d1a03f7b773f528 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Oct 2023 23:18:05 +0000
Subject: [PATCH 09/11] Bump process from 5.0.0 to 5.0.1 in
/cipd_packages/device_doctor (#3135)
Bumps [process](https://github.com/flutter/packages/tree/main/packages) from 5.0.0 to 5.0.1.
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
cipd_packages/device_doctor/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/cipd_packages/device_doctor/pubspec.yaml b/cipd_packages/device_doctor/pubspec.yaml
index 5d0beb54a..6fdf84913 100644
--- a/cipd_packages/device_doctor/pubspec.yaml
+++ b/cipd_packages/device_doctor/pubspec.yaml
@@ -11,7 +11,7 @@ dependencies:
logging: 1.2.0
meta: 1.10.0
path: 1.8.3
- process: 5.0.0
+ process: 5.0.1
retry: 3.1.2
yaml: 3.1.2
From 92fe4e0df678ef4f34564490dab61dce661e6c9b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 10 Oct 2023 16:30:48 +0000
Subject: [PATCH 10/11] Bump process from 5.0.0 to 5.0.1 in
/cipd_packages/codesign (#3133)
Bumps [process](https://github.com/flutter/packages/tree/main/packages) from 5.0.0 to 5.0.1.
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
cipd_packages/codesign/pubspec.yaml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/cipd_packages/codesign/pubspec.yaml b/cipd_packages/codesign/pubspec.yaml
index e2d50e201..f77787b93 100644
--- a/cipd_packages/codesign/pubspec.yaml
+++ b/cipd_packages/codesign/pubspec.yaml
@@ -19,4 +19,4 @@ dependencies:
logging: 1.2.0
meta: 1.10.0
platform: 3.1.3
- process: 5.0.0
+ process: 5.0.1
From afe03881fd18206e029b8b247a7d9c8bf2084f93 Mon Sep 17 00:00:00 2001
From: Victoria Ashworth <15619084+vashworth@users.noreply.github.com>
Date: Tue, 10 Oct 2023 14:37:47 -0500
Subject: [PATCH 11/11] Run tests on either macOS 12 or macOS 13 (#3136)
In preparation for migrating our fleet to macOS 13, we're updating tests to run on either macOS 12 or macOS 13.
---
.ci.yaml | 2 +-
app_dart/integration_test/data/cocoon_config.json | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/.ci.yaml b/.ci.yaml
index a05be4219..f21601072 100644
--- a/.ci.yaml
+++ b/.ci.yaml
@@ -14,7 +14,7 @@ platform_properties:
os: Linux
mac:
properties:
- os: Mac-12
+ os: "Mac-12|Mac-13"
cpu: x86
windows:
properties:
diff --git a/app_dart/integration_test/data/cocoon_config.json b/app_dart/integration_test/data/cocoon_config.json
index 09eb602cb..c9bcc0b64 100644
--- a/app_dart/integration_test/data/cocoon_config.json
+++ b/app_dart/integration_test/data/cocoon_config.json
@@ -1 +1 @@
-{"targets":[{"name":"Linux Cocoon","properties":{"add_recipes_cq":"true"},"recipe":"cocoon/cocoon"},{"name":"Linux device_doctor","properties":{"script":"cipd_packages/device_doctor/tool/build.sh","cipd_name":"flutter/device_doctor/linux-amd64"},"runIf":["cipd_packages/device_doctor/**",".ci.yaml"],"recipe":"cocoon/cipd"},{"name":"Mac device_doctor","properties":{"script":"cipd_packages/device_doctor/tool/build.sh","cipd_name":"flutter/device_doctor/mac-amd64","device_type":"none"},"runIf":["cipd_packages/device_doctor/**",".ci.yaml"],"recipe":"cocoon/cipd"},{"name":"Windows device_doctor","properties":{"script":"cipd_packages\\device_doctor\\tool\\build.bat","cipd_name":"flutter/device_doctor/windows-amd64"},"runIf":["cipd_packages/device_doctor/**",".ci.yaml"],"recipe":"cocoon/cipd"},{"name":"Linux doxygen","properties":{"script":"cipd_packages/doxygen/tool/build.sh","cipd_name":"flutter/doxygen/linux-amd64"},"runIf":["cipd_packages/doxygen/**",".ci.yaml"],"recipe":"cocoon/cipd"},{"name":"Mac codesign","properties":{"script":"cipd_packages/codesign/tool/build.sh","cipd_name":"flutter/codesign/mac-amd64","device_type":"none"},"runIf":["cipd_packages/codesign/**",".ci.yaml"],"recipe":"cocoon/cipd"},{"name":"Mac arm_codesign","properties":{"script":"cipd_packages/codesign/tool/build.sh","cipd_name":"flutter/codesign/mac-arm64","cpu":"arm64","device_type":"none"},"runIf":["cipd_packages/codesign/**",".ci.yaml"],"recipe":"cocoon/cipd"},{"name":"Linux ci_yaml roller","properties":{"add_recipes_cq":"true","backfill":"false"},"recipe":"infra/ci_yaml"}],"enabledBranches":["main"],"platformProperties":{"linux":{"properties":{"os":"Linux"}},"mac":{"properties":{"os":"Mac-12","cpu":"x86"}},"windows":{"properties":{"os":"Windows"}}}}
+{"targets":[{"name":"Linux Cocoon","properties":{"add_recipes_cq":"true"},"recipe":"cocoon/cocoon"},{"name":"Linux device_doctor","properties":{"script":"cipd_packages/device_doctor/tool/build.sh","cipd_name":"flutter/device_doctor/linux-amd64"},"runIf":["cipd_packages/device_doctor/**",".ci.yaml"],"recipe":"cocoon/cipd"},{"name":"Mac device_doctor","properties":{"script":"cipd_packages/device_doctor/tool/build.sh","cipd_name":"flutter/device_doctor/mac-amd64","device_type":"none"},"runIf":["cipd_packages/device_doctor/**",".ci.yaml"],"recipe":"cocoon/cipd"},{"name":"Windows device_doctor","properties":{"script":"cipd_packages\\device_doctor\\tool\\build.bat","cipd_name":"flutter/device_doctor/windows-amd64"},"runIf":["cipd_packages/device_doctor/**",".ci.yaml"],"recipe":"cocoon/cipd"},{"name":"Linux doxygen","properties":{"script":"cipd_packages/doxygen/tool/build.sh","cipd_name":"flutter/doxygen/linux-amd64"},"runIf":["cipd_packages/doxygen/**",".ci.yaml"],"recipe":"cocoon/cipd"},{"name":"Mac codesign","properties":{"script":"cipd_packages/codesign/tool/build.sh","cipd_name":"flutter/codesign/mac-amd64","device_type":"none"},"runIf":["cipd_packages/codesign/**",".ci.yaml"],"recipe":"cocoon/cipd"},{"name":"Mac arm_codesign","properties":{"script":"cipd_packages/codesign/tool/build.sh","cipd_name":"flutter/codesign/mac-arm64","cpu":"arm64","device_type":"none"},"runIf":["cipd_packages/codesign/**",".ci.yaml"],"recipe":"cocoon/cipd"},{"name":"Linux ci_yaml roller","properties":{"add_recipes_cq":"true","backfill":"false"},"recipe":"infra/ci_yaml"}],"enabledBranches":["main"],"platformProperties":{"linux":{"properties":{"os":"Linux"}},"mac":{"properties":{"os":"Mac-12|Mac-13","cpu":"x86"}},"windows":{"properties":{"os":"Windows"}}}}